[특허]System and method for secure communication

System and method for secure communication 원문보기

IPC분류정보
국가/구분	United States(US) Patent 등록
국제특허분류(IPC7판)	H04L-029/06
출원번호	US-0825044 (2010-06-28)
등록번호	US-8302163 (2012-10-30)
발명자 / 주소	Mereu, Stephen Schnarr, Matt Chin, Joseph
출원인 / 주소	Corel Corporation
대리인 / 주소	Danielson, Mark J.
인용정보	피인용 횟수 : 0 인용 특허 : 24

초록 ▼

A secure communication module is provided for securing communication between a client application and a network service. The secure communication module comprises an authentication identifier provider for providing the client application a pool of authentication identifiers for use in subsequent communication with the network service, and an authentication identifier validator for checking the validity of an authentication identifiers from the pool of authentication identifiers sent with the subsequent communication.

대표청구항 ▼

1. An authentication apparatus for authenticating communication between a client and one or more web services, the authentication apparatus comprising: a non-transitory computer readable memory storing instructions; anda processor for executing the instructions stored in the computer readable memory, the instructions when executed by the processor causing the processor to perform authentication tasks including:providing to a client application executed on the client a plurality of authentication identifiers over a secure communication channel established over a network, individual authentication identifiers of the plurality of authentication identifiers for use in validating subsequent client application requests to access functionality provided by a web service, wherein the secure communication channel is an encrypted communication channel;receiving, over an unsecure communication channel established over the network, a client application request to access a functionality provided by the web service and an associated authentication identifier from the plurality of authentication identifiers, wherein the unsecure communication channel is an unencrypted communication channel;validating an authorization for the client application to access the requested functionality of the web service using the associated authentication identifier from the plurality of authentication identifiers received with the client application request to access the functionality provided by the web service; andsending the request to access the functionality to the web service when the client application authorization to access the functionality of the web service is validated. 2. The authentication apparatus of claim 1, wherein each authentication identifier is invalidated after being validated, whereby each authentication identifier can only be used once. 3. The authentication apparatus of claim 1, wherein the instructions when executed by the processor further cause the processor to perform authentication tasks including: authenticating the client application prior to providing the client application the plurality of authentication identifiers. 4. The authentication apparatus of claim 1, wherein the instructions when executed by the processor further cause the processor to perform authentication tasks including: checking if the client application has authorization to access the functionality of the web service. 5. The authentication apparatus of claim 1, further comprising a repository for storing information relating to the plurality of authentication identifiers. 6. The authentication apparatus of claim 5, wherein the repository further stores information relating to the client application, and the web service. 7. The authentication apparatus of claim 1, wherein the instructions when executed by the processor further cause the processor to perform authentication tasks including: billing for the plurality of authentication identifiers. 8. The authentication apparatus of claim 1, wherein the instructions when executed by the processor further cause the processor to perform authentication tasks including: tracking usage of the plurality of authentication identifiers. 9. A system for authenticating communication over a network comprising: a client computing device coupled to the network, the client computing device executing a client application for receiving a plurality authentication identifiers over a secure communication channel through the network and sending over an unsecure communication channel through the network a client application request to access a functionality provided by a web service and an associated authentication identifier from the plurality of authentication identifiers;the web service coupled to an authentication apparatus through the network for receiving the request to access the functionality of the web service; andan authentication server coupled to the network for:providing the plurality of authentication identifiers to the client application over the secure communication channel established through the network, individual authentication identifiers of the plurality of authentication identifiers for use in validating subsequent client application requests to access functionality provided by the web service, wherein the secure communication channel is an encrypted communication channel;receiving, over the unsecure communication channel established through the network, the client application request to access the functionality provided by the web service and the associated authentication identifier from the plurality of authentication identifiers, wherein the unsecure communication channel is an unencrypted communication channel;validating an authorization for the client application to access the requested functionality of the web service using the associated authentication identifier from the plurality of authentication identifiers received with the client application request to access the functionality provided by the web service; andsending the request to access the functionality of the web service when the client application authorization to access the functionality of the web service is validated. 10. The system of claim 9, wherein each authentication identifier is invalidated after being validated by the authentication validator, whereby each authentication identifier can only be used once. 11. The system of claim 9, wherein the authentication server is further coupled to the network for: authenticating the client application prior to providing the client application the plurality of authentication identifiers. 12. The system of claim 9, wherein the authentication server is further coupled to the network for: checking if the client application has authorization to access the functionality of the web service. 13. The system of claim 9, wherein the authentication apparatus further comprises a repository for storing information relating to the plurality of authentication identifiers. 14. The system of claim 13, wherein the repository further stores information relating to the client application, and the web service. 15. The system of claim 9, wherein the authentication server is further coupled to the network for: billing for the plurality of authentication identifiers. 16. The system of claim 9, wherein the authentication server is further coupled to the network for: tracking usage of the plurality of authentication identifiers. 17. The system of claim 9, wherein the communication module of the authentication apparatus further receives a response from the web service and sends the response back to client. 18. A method of authenticating communication between a client and a web service, the method comprising: sending, from the client, client application credentials over a secure communication channel;receiving and authenticating, at a server, the client application credentials;providing a plurality of authentication identifiers to the client over the secure communication channel established through a network, individual authentication identifiers of the plurality of authentication identifiers for use in validating subsequent client application requests to access functionality provided by a web service, wherein the secure communication channel is an encrypted communication channel; receiving at the client the plurality of authentication identifiers;sending a client application request to access a functionality provided by the web service, the request including an associated authentication identifier from the plurality of received authentication identifiers;receiving, over an unsecure communication channel established through the network, the client application request to access the functionality provided by the web service and the associated authentication identifier, wherein the unsecure communication channel is an unencrypted communication channel;validating an authorization for the client application to access the requested functionality of the web service using the associated authentication identifier from the plurality of authentication identifiers received with the client application request to access the functionality provided by the web service; andsending the request to access the functionality of the web service when the client application authorization to access the web service is validated. 19. The method of claim 18, further comprising: receiving at the web service the web service request;processing at the web service the web service request;sending a web service response to the server in response to the received web service request; receiving the web service response at the server; andsending the web service response to the client. 20. The method of claim 19, further comprising: sending a second client application request to access the web service with a second associated authentication identifier from the plurality of received authentication identifiers.

이 특허에 인용된 특허 (24)

Buhle Gordon ; Wessman Richard R., Authentication and authorization in a multi-tier relational database management system.
상세보기
Ramasubramani Seetharaman ; King Peter F., Centralized certificate management system for two-way interactive communication devices in data networks.
상세보기
Van Horne Peter ; Olson Keith ; Miller Kevin, Communications network connection system and method.
상세보기
Brandt Marcia Lynn ; Brown Kenneth Edgar ; Dykes Pernell James ; Lindberg Erik Duane ; Olson Diane Elaine ; Selden Jeffrey Edward ; Snyder Devon Daniel ; Walts James Orrin, Computer apparatus and method for providing a common user interface for software applications accessed via the world-wid.
상세보기
Ho Randall S. ; Latham Richard D. ; Meenakshi Srikanth S., Concurrent server and method of operation having client-server affinity using exchanged client and server keys.
상세보기
Raz Uri, Information transfer systems and method with dynamic distribution of data, control and management of information.
상세보기
Bayeh Elias N. ; Montero Gabriel G. ; Will Robert C., Maintaining sessions in a clustered server environment.
상세보기
Jones Adrian,GBX ; Moore Alan,GBX, Method and apparatus for content processing and routing.
상세보기
Mirashrafi Mojtaba ; Buondonno Michael F. ; Elliott John D. ; Keeler Kenneth L. ; Pirkl Keith L. ; Simon Al J. ; Taylor George L. ; Zuber Mark D. ; Crutcher Paul D., Method and apparatus for synchronizing information browsing among multiple systems.
상세보기
Norihiro Ishikawa JP; Toshihiko Suguri JP; Masuo Yoshimoto JP, Method and system for billing on the internet.
상세보기
Pitchford Anthony Reginald ; Smith Christopher Eyre ; Stefaniak Joseph Peter, Method and system for controlling and tracking client access to server software.
상세보기
Benantar Messaoud ; High ; Jr. Robert Howard ; Rathi Mahesh Kumar, Method and system for maintaining client server security associations in a distributed computing system.
상세보기
Cian M. Quinlan, Method and system for providing session pools for high performance web browser and server communications.
상세보기
Yoon Chang Woo,KRX ; Kim Young Hoon,KRX ; Kim Dae Ung,KRX, Method of authenticating and charging a client using a web infoshop service system.
상세보기
Mighdoll Lee S. ; Leak Bruce A. ; Perlman Stephen G. ; Goldman Phillip Y., Method of using electronic tickets containing privileges for improved security.
상세보기
Karri Kalpio FI; Mika P. Nieminen FI; Jorma Rinkinen FI, Resource retrieval over a source network determined by checking a header of the requested resource for access restrictions.
상세보기
Ronen Yzhak, System and method for billing for transactions conducted over the internet from within an intranet.
상세보기
Jarmo Ilkka Saari FI; Timo Ilmari Taskinen FI; Matti Kalevi Kilkki FI, System and method for determining charges for usage of a network connection.
상세보기
Teper Jeffrey A. ; Koneru Sudheer ; Mangione Gordon ; Balaz Rudolph ; Contorer Aaron M. ; Chao Lucy, System and method for providing trusted brokering services over a distributed network.
상세보기
Kramer,Andre; Harwood,Will, System and method of exploiting the security of a secure communication channel to secure a non-secure communication channel.
상세보기
Crosskey James P. ; Mei Mark Gee-Gwo ; Ragavan Harish ; Wu Kun-Lung ; Yu Philip Shi-lung, System and method of multiparty billing for Web access.
상세보기
Koji Moriya JP, System for transferring information between a server and a data terminal through a network.
상세보기
Nguyen Trong ; Subramanian Mahadevan P. ; Haller Daniel R., System, method and article of manufacture for a gateway system architecture with system administration information accessible from a browser.
상세보기
Yamane Stanley ; Abbott Freeland ; DeBettencourt Jason ; Lara Marco, Web service.
상세보기

IPC	Description
A	생활필수품
A62	인명구조; 소방(사다리 E06C)
A62B	인명구조용의 기구, 장치 또는 방법(특히 의료용에 사용되는 밸브 A61M 39/00; 특히 물에서 쓰이는 인명구조 장치 또는 방법 B63C 9/00; 잠수장비 B63C 11/00; 특히 항공기에 쓰는 것, 예. 낙하산, 투출좌석 B64D; 특히 광산에서 쓰이는 구조장치 E21F 11/00)
A62B-1/08	.. 윈치 또는 풀리에 제동기구가 있는 것

내보내기 구분	파일저장 인쇄 메일전송
구성항목	기본정보 상세정보 관리번호, 국가코드, 자료구분, 상태, 출원번호, 출원일자, 공개번호, 공개일자, 등록번호, 등록일자, 발명명칭(한글), 발명명칭(영문), 출원인(한글), 출원인(영문), 출원인코드, 대표IPC 관리번호, 국가코드, 자료구분, 상태, 출원번호, 출원일자, 공개번호, 공개일자, 공고번호, 공고일자, 등록번호, 등록일자, 발명명칭(한글), 발명명칭(영문), 출원인(한글), 출원인(영문), 출원인코드, 대표출원인, 출원인국적, 출원인주소, 발명자, 발명자E, 발명자코드, 발명자주소, 발명자 우편번호, 발명자국적, 대표IPC, IPC코드, 요약, 미국특허분류, 대리인주소, 대리인코드, 대리인(한글), 대리인(영문), 국제공개일자, 국제공개번호, 국제출원일자, 국제출원번호, 우선권, 우선권주장일, 우선권국가, 우선권출원번호, 원출원일자, 원출원번호, 지정국, Citing Patents, Cited Patents
저장형식	Text(ASCII format) Excel format PIAS분석(.xls)
메일정보	받는사람 (필수) @ 보내는사람 (선택) @ 제목 내용 KISTI 검색결과 이메일 서비스
안내	총 건의 자료가 검색되었습니다. 다운받으실 자료의 인덱스를 입력하세요. (1-10,000) 검색결과의 순서대로 최대 10,000건 까지 다운로드가 가능합니다. 데이타가 많을 경우 속도가 느려질 수 있습니다.(최대 2~3분 소요) 다운로드 파일은 UTF-8 형태로 저장됩니다. 파일의 내용이 제대로 보이지 않을실 때는 웹브라우저 상단의 보기 -> 인코딩 -> 자동선택 여부를 확인하십시오. ~ Text(ASCII format) Excel format

연합인증

System and method for secure communication 원문보기

초록 ▼

대표청구항 ▼

연구과제 타임라인

이 특허에 인용된 특허 (24)

관련 콘텐츠

특허 원문 보기

IPC 상위 출원인

AI-Helper ※ AI-Helper는 오픈소스 모델을 사용합니다.

선택된 텍스트

연합인증

System and method for secure communication 원문보기

초록 ▼

대표청구항 ▼

연구과제 타임라인

전체(0) 논문(0) 특허(0) 보고서(0)

전체(0) 논문(0) 특허(0) 보고서(0)

이 특허에 인용된 특허 (24)

관련 콘텐츠

특허 원문 보기

IPC 상위 출원인

AI-Helper ※ AI-Helper는 오픈소스 모델을 사용합니다.

선택된 텍스트