Establishing secure sessions for stateful cloud services
First Claim
Patent Images
1. A method for establishing a communication session between a client device and a stateful host, comprising:
- determining that a unique identifier has been added to an instruction queue, the unique identifier being associated with a client identification token and a client authorization token;
generating a stateful host on a virtual machine;
associating the unique identifier with the stateful host;
determining an internet protocol address associated with the stateful host;
associating the internet protocol address with the unique identifier to create a name-value pair, the name-value pair being used to establish the communication session between the client device and the stateful host; and
providing the name-value pair for securely storing in the cloud service.
2 Assignments
0 Petitions
Accused Products
Abstract
Aspects of the present disclosure relate to establishing a secure session between a client device and a stateful backend server or host. The system described herein uses an identity token and an authorization token to generate a globally unique identifier that is associated with the client device. The globally unique identifier is then used to create a one-to-one mapping between the client device and the backend server.
-
Citations
20 Claims
-
1. A method for establishing a communication session between a client device and a stateful host, comprising:
-
determining that a unique identifier has been added to an instruction queue, the unique identifier being associated with a client identification token and a client authorization token; generating a stateful host on a virtual machine; associating the unique identifier with the stateful host; determining an internet protocol address associated with the stateful host; associating the internet protocol address with the unique identifier to create a name-value pair, the name-value pair being used to establish the communication session between the client device and the stateful host; and providing the name-value pair for securely storing in the cloud service. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A system, comprising:
-
a processor; and a memory for storing instructions which, when executed by the processor, performs a method for establishing a communication session between a client device and stateful host, comprising; receiving a unique identifier from the client device, the unique identifier being associated with a client identification token and a client authorization token; using the unique identifier to determine an internet protocol address for the stateful host associated with the client device by accessing a storage cache that stores a name-value pair comprising the unique identifier associated with the client device and the internet protocol address associated with the stateful host; and establishing the communication session between the client device and the stateful host using the unique identifier, the client identification token and the client authorization token. - View Dependent Claims (9, 10, 11, 12, 13, 20)
-
-
14. A computer-readable storage medium comprising computer-executable instructions which, when executed by a processor, performs a method for establishing a communication session between a client and a stateful host, comprising:
-
determining that a unique identifier has been added to an instruction queue, the unique identifier being associated with an authorization token; using the unique identifier to instantiate the stateful host on a virtual machine; determining an internet protocol address associated with the stateful host; and associating the internet protocol address with the unique identifier to create a name-value pair, the name-value pair being used to establish the communication session between the client and the stateful host. - View Dependent Claims (15, 16, 17, 18, 19)
-
Specification