Patent · US Active

System and method for bridging identities in a service oriented architectureprofiling

US9130921B2 · kind B2 · utility

22Cited by

2References

11Claims

0Family size

Assignee

CA, Inc. · US

Inventors

Toufic Boubez · Vancouver, CA
Dimitri Sirota · Vancouver, CA
Scott Morrison · Mount Pleasant, US

Key dates

Filing date	Apr 2, 2013
Grant date	Sep 8, 2015
Priority date	—
Expiry date	Apr 21, 2033

Classification

Technology area (CPC H)Electricity
CPC primaryH04L63/168
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

A system for bridging user identities between at least a first and a second security domain, including a bridge associated with the first security domain for intercepting messages for service in the second domain from users in the first domain. The bridge authenticates the user identities against a local authentication source by using an established key relationship and binds a security token with the message. A gateway is associated with the second domain for gating inbound access and outbound communication with a service in the second domain and for receiving the authenticated message and verifying the authenticity of the security token by using a certificate of the trusted authentication source and authorizing access to the service upon confirmation of the authorization, such that the authorization is independent of the identity of the user.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.