System and method for securely accessing data through web applications
First Claim
1. A system to provide information server security, said system comprising:
- a computer apparatus configured to transmit a solicitation of requests for service by a requestor via a public data network;
a server network infrastructure having;
a web server on a first secured network space, said web server configured to receive said solicitation of request for service and transmit said solicitation of request for service;
an application server configured to receive said solicitation of request for service from said web server and transmit said solicitation of requests for service;
a mediating entity client located on said first secured network space, said mediating entity client configured to receive said solicitation of request for service from said web server, authenticates said solicitation of request for service into a secure solicitation of request for service via an exchange of one or more credentials from a requestor, and transmit said secure solicitation of request for service, anda mediating entity server located on a second secured network space, said mediating entity server configured to receive said secure solicitation of request for service from said mediating entity client, said mediating entity server configured to authenticate said secure solicitation of request for service using a security protocol, wherein said security protocol further comprises an industry security protocol selected by a business organization without publicly disclosing the selected said industry security protocol and known only to privileged administrators and transmit an authenticated, secure solicitation of request for service; and
an information server located on said second secured network space, on a separate device from said mediating entity server on said second secured network space, said information server configured to receive said authenticated secure solicitation of request for service from said mediating entity server, said information server configured to extract data responsive to said authenticated secure solicitation of request for service from said requestor,wherein said server network infrastructure utilizes said mediating entity client as a secure communication intercessor amid said computer apparatus and said information server, to enable a secure communication initiated by said solicitation for service request received by said web server via said public data network from said requestor.
5 Assignments
0 Petitions
Accused Products
Abstract
A system for providing information server security in a distributed computing environment achieved by injecting a proprietary mediating entity into the solicitation of service request process via web server between application servers and information servers. The system comprises a computer apparatus, a mediating entity, solicitation for service requests and responses to the solicitations for service requests. The mediating entity is comprised of an application server hosting a proprietary mediating entity client and a mediating entity server, where the proprietary mediating entity client comprises industry-recognized business organization selected security protocols. The information server comprises a database server and a database, the database comprises data that is extracted or stored based on the service request.
21 Citations
11 Claims
-
1. A system to provide information server security, said system comprising:
-
a computer apparatus configured to transmit a solicitation of requests for service by a requestor via a public data network; a server network infrastructure having; a web server on a first secured network space, said web server configured to receive said solicitation of request for service and transmit said solicitation of request for service; an application server configured to receive said solicitation of request for service from said web server and transmit said solicitation of requests for service; a mediating entity client located on said first secured network space, said mediating entity client configured to receive said solicitation of request for service from said web server, authenticates said solicitation of request for service into a secure solicitation of request for service via an exchange of one or more credentials from a requestor, and transmit said secure solicitation of request for service, and a mediating entity server located on a second secured network space, said mediating entity server configured to receive said secure solicitation of request for service from said mediating entity client, said mediating entity server configured to authenticate said secure solicitation of request for service using a security protocol, wherein said security protocol further comprises an industry security protocol selected by a business organization without publicly disclosing the selected said industry security protocol and known only to privileged administrators and transmit an authenticated, secure solicitation of request for service; and an information server located on said second secured network space, on a separate device from said mediating entity server on said second secured network space, said information server configured to receive said authenticated secure solicitation of request for service from said mediating entity server, said information server configured to extract data responsive to said authenticated secure solicitation of request for service from said requestor, wherein said server network infrastructure utilizes said mediating entity client as a secure communication intercessor amid said computer apparatus and said information server, to enable a secure communication initiated by said solicitation for service request received by said web server via said public data network from said requestor. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A method of providing information server security, said method comprising the steps of:
-
providing a secure network infrastructure having; a web server on a first secured network space, said web server configured to receive a service request and transmit said service request; an application server configured to receive said service request from said web server and transmit said service request; a mediating entity client located on said first secured network space, said mediating entity client configured to receive said service request from said web server and transmit said service request for service; a mediating entity server located on a second secured network space, said mediating entity server configured to receive said service request from said mediating entity client, said mediating entity server configured with a security protocol; and an information server located on said second secured network space, on a separate device from said mediating entity server on said second secured network space; soliciting said service request from a computer apparatus to an information server via a public data network; receiving said service request from said web server at said mediating entity client, wherein said mediating entity client authenticates said service request into a secure service request via an exchange of one or more credentials from a requestor and transmits said secure service request to said mediating entity server; authenticating said secure service request via said security protocol, wherein said security protocol further comprises an industry security protocol selected by a business organization without publicly disclosing the selected said industry security protocol and known only to privileged administrators by said mediating entity server; transmitting said authenticated secure service request from said mediating entity server to said information server; and obtaining data from said information server responsive to said authenticated secure service request. - View Dependent Claims (9, 10, 11)
-
Specification