Patent · US Active

Controlling access of a client system to an access protected remote resource

US8646053B2 · kind B2 · utility

5Cited by

1References

14Claims

0Family size

Assignee

International Business Machines Corporation · US

Inventors

Stephan Laertz · Herrenberg, DE
Peter Fischer · Highlands Ranch, US
Carsten Leue · Eppelheim, DE
Thomas Schaeck · Eppelheim, DE

Key dates

Filing date	Dec 14, 2010
Grant date	Feb 4, 2014
Priority date	—
Expiry date	Jun 16, 2031

Classification

Technology area (CPC H)Electricity
CPC primaryH04L63/12
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

The present invention provides a security module for Web application, especially a portal application, using a rewriter proxy. The security module ensures that the rewritten URIs are appended by an authentication identifier for determining whether the rewritten URI has not been changed. Preferably, the authentication identifier can be generated by applying a secure hash algorithm and/or secret key to the original URIs of the remote resource or the entire rewritten URIs. When a client activates those URIs, a request is sent to the rewriter proxy. Before a connection to the access protected remote resource is established, the security module validates whether the URIs contained in the user client request have been changed by the user.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.