System and method for bridging identities in a service oriented architecture
US8452881B2 · kind B2 · utility
Inventors
Key dates
| Filing date | Sep 28, 2005 |
| Grant date | May 28, 2013 |
| Priority date | — |
| Expiry date | Sep 2, 2027 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04L69/329
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
A system for bridging user identities between at least a first and a second security domain, including a bridge associated with the first security domain for intercepting messages for service in the second domain from users in the first domain. The bridge authenticates the user identities against a local authentication source by using an established key relationship and binds a security token with the message. A gateway is associated with the second domain for gating inbound access and outbound communication with a service in the second domain and for receiving the authenticated message and verifying the authenticity of the security token by using a certificate of the trusted authentication source and authorising access to the service upon confirmation of the authorisation, such that the authorisation is independent of the identity of the user.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.