Client side actions validation

US 10,348,503 B2
Filed: 12/12/2016
Issued: 07/09/2019
Est. Priority Date: 12/12/2016
Status: Active Grant

First Claim

Patent Images

1. A system comprising:

a display;

a memory storing processor-executable process steps; and

a processor to execute the processor-executable process steps to cause the system to;

receive a first request at a server;

generate a first dataset and a second dataset at the server based on data in at least one database, wherein the second dataset is encrypted, and wherein the second dataset includes one or more items and one or more actions that may be performed on the one or more items in the second dataset;

transmit the first and second dataset to a client;

receive at the server a second request and the encrypted dataset, wherein the second request includes a request to execute an action with at least one data element in the first dataset; and

in response to receipt of the second request and encrypted dataset, decrypt the encrypted dataset to validate the second request, wherein the server determines a validity of the second request without accessing the at least one database.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method and system including a display; a memory storing processor-executable process steps; and a processor to execute the processor-executable process steps to cause the system to: receive a first request at a server; generate a first dataset and a second dataset at the server, wherein the second dataset is encrypted; transmit the first and second dataset to a client; receive at the server a second request and the encrypted dataset, wherein the second request includes a request to execute an action with at least one data element in the first data set; and in response to receipt of the second request and encrypted dataset, decrypt the encrypted dataset to validate the second request. Numerous other aspects are provided.

37 Citations

20 Claims

1. A system comprising:
- a display;
  
  a memory storing processor-executable process steps; and
  
  a processor to execute the processor-executable process steps to cause the system to;
  
  receive a first request at a server;
  
  generate a first dataset and a second dataset at the server based on data in at least one database, wherein the second dataset is encrypted, and wherein the second dataset includes one or more items and one or more actions that may be performed on the one or more items in the second dataset;
  
  transmit the first and second dataset to a client;
  
  receive at the server a second request and the encrypted dataset, wherein the second request includes a request to execute an action with at least one data element in the first dataset; and
  
  in response to receipt of the second request and encrypted dataset, decrypt the encrypted dataset to validate the second request, wherein the server determines a validity of the second request without accessing the at least one database.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
- - 2. The system of claim 1, wherein in response to decrypting the encrypted dataset, the server is further operative to one of:
    - approve or decline the second request.
  - 3. The system of claim 2, wherein the processor-executable process steps further cause the system to:
    - in response to decrypting the encrypted dataset, determine the action included in the second request is approved if at least one of;
      
      the action is requested in an allowed time frame and the action was not yet executed.
  - 4. The system of claim 1, wherein the second dataset includes one or more actions executable by the server.
  - 5. The system of claim 4, wherein the processor-executable process steps further cause the system to:
    - in response to decrypting the encrypted dataset, determine the action included in the second request is declined if the action is not one of the one or more actions included in the encrypted dataset.
  - 6. The system of claim 4, wherein the processor-executable process steps further cause the system to:
    - execute the action if the action is one of the one or more actions executable by the server.
  - 7. The system of claim 1, wherein each of the first request and the second request is received from the client.
  - 8. The system of claim 1, wherein the second request automatically includes the encrypted dataset.
  - 9. The system of claim 1, wherein the first dataset is in a plain text format.
  - 10. The system of claim 1, further comprising a private key at the server to decrypt the encrypted dataset.

11. A computer-implemented method comprising:
- receiving a first request at a server;
  
  generating a first dataset and a second dataset at the server based on data in at least one database, wherein the second dataset is encrypted, and wherein the second dataset includes one or more items and one or more actions that may be performed on the one or more items in the second dataset;
  
  transmitting the first and second dataset to a client;
  
  receiving at the server a second request and the encrypted dataset, wherein the second request includes a request to execute an action with at least one data element in the first data set;
  
  in response to receipt of the second request and the encrypted dataset, decrypting the encrypted dataset to validate the second request, wherein the server determines a validity of the second request without accessing the at least one database; and
  
  approving or declining the second request in response to decrypting the encrypted dataset.
- View Dependent Claims (12, 13, 14, 15)
- - 12. The method of claim 11, further comprising:
    - in response to decrypting the encrypted dataset, determining the action included in the second request is approved if at least one of;
      
      the action is requested in an allowed time frame and the action was not yet executed.
  - 13. The method of claim 11, further comprising:
    - in response to decrypting the encrypted dataset, determining the action included in the second request is declined if the action is not included in the encrypted dataset.
  - 14. The method of claim 11, wherein the second dataset includes one or more actions executable by the server.
  - 15. The method of claim 14, further comprising:
    - executing the action if the action is one of the one or more actions executable by the server.

16. A non-transitory computer-readable medium storing program code, the program code executable by a computer system to cause the computer system to:
- receive a first request at a server;
  
  generate a first dataset and a second dataset at the server based on data in at least one database, wherein the second dataset is encrypted, and wherein the second dataset includes one or more items and one or more actions that may performed on the one or more items in the second dataset;
  
  transmit the first and second dataset to a client;
  
  receive at the server a second request and the encrypted dataset, wherein the second request includes a request to execute an action with at least one data element in the first data set;
  
  in response to receipt of the second request, decrypt the encrypted dataset to validate the second request, wherein the server determines a validity of the second request without accessing the at least one database; and
  
  determine if the second request is valid.
- View Dependent Claims (17, 18, 19, 20)
- - 17. The medium of claim 16, wherein the second request is valid if the executable action and data element in the second request are also included in the encrypted dataset.
  - 18. The medium of claim 16, wherein the second dataset includes one or more actions executable by the server.
  - 19. The medium of claim 18, wherein the program code executable by a computer system further causes the computer system to:
    - execute the action if the action is one of the one or more actions executable by the server.
  - 20. The medium of claim 16, wherein the second request automatically includes the encrypted dataset.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Sap Portals Israel Ltd (SAP SE)
Original Assignee
Sap Portals Israel Ltd (SAP SE)
Inventors
Volchok, Alex
Primary Examiner(s)
Hirl, Joseph P
Assistant Examiner(s)
Gundry, Stephen T

Application Number

US15/375,750
Publication Number

US 20180167214A1
Time in Patent Office

939 Days
Field of Search
US Class Current
CPC Class Codes

H04L 63/0428   wherein the data content is...

H04L 63/06   for supporting key manageme...

H04L 63/10   for controlling access to d...

H04L 63/168   above the transport layer

H04L 67/02   based on web technology, e....

H04L 9/32   including means for verifyi...

H04L 9/3226   using a predetermined code,...

Client side actions validation

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

37 Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

Client side actions validation

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

37 Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links