System and method for secure data transmission
First Claim
Patent Images
1. A system for secure data transmission comprising:
- a session layer that maps authentication of at least one request to session level authorization, the authorization defining permitted communications between at least one resource and the at least one request.
1 Assignment
0 Petitions
Accused Products
Abstract
A system for secure data transmission includes trusted session sub-layer for maintaining a virtual air gap between a plurality of resource requesters and a plurality of resource providers, and a session manager for a transfer of data between the plurality of resource requesters and the plurality of resource providers.
67 Citations
64 Claims
-
1. A system for secure data transmission comprising:
a session layer that maps authentication of at least one request to session level authorization, the authorization defining permitted communications between at least one resource and the at least one request. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21)
-
22. A system for secure data transmission comprising:
a virtual air gap provided by;
a trusted session sub-layer for session authorization and maintenance;
a trusted operating system for session separation; and
a reverse proxy for data transfer between a user and a resource provider. - View Dependent Claims (23, 24, 25, 26, 27, 28, 29, 30, 31, 32, 33, 34, 35, 37, 38, 39, 40, 41, 42, 43, 44, 45, 47, 48, 49, 50, 51, 52)
-
36. A system for secure data transmission comprising:
-
a trusted session sub-layer maintaining a virtual air gap between a plurality of resource requesters and a plurality of resource providers;
a session manager for a transfer of data between the plurality of resource requesters and the plurality of resource providers.
-
-
46. A system for secure data transmission comprising:
-
a trusted session sub-layer for peer-to-peer communication between a plurality of resource requesters and a plurality of resource providers;
a rulebase for authenticating authorization of the plurality of resource requesters on a dynamic basis, wherein the trusted session sub-layer forms a bundle of transport layer connections between the plurality of resource providers and the plurality of resource requesters.
-
-
53. A system for secure data transmission comprising:
-
a session layer for a transfer of data between a plurality of resource requesters and a plurality of resource providers, wherein no peer-to-peer connections exist below the session layer; and
a trusted session sub-layer maintaining a virtual air gap, wherein no physical resources are time-division shared between any resource provider and any resource requester.
-
-
54. A system for secure data transmission comprising:
session layer means for mapping authentication of at least one request to session level authorization, the authorization defining permitted communications between at least one resource and the at least one request.
-
55. A system for secure data transmission comprising:
- virtual air gap means provided by;
trusted session sub-layer means for session authorization and maintenance;
a trusted operating system for session separation; and
reverse proxy means for data transfer between a user and a resource provider.
- virtual air gap means provided by;
-
56. A system for secure data transmission comprising:
-
trusted session sub-layer means maintaining a virtual air gap between a plurality of resource requesters and a plurality of resource providers;
session manager means for transferring data between the plurality of resource requesters and the plurality of resource providers.
-
-
57. A system for secure data transmission comprising:
-
trusted session sub-layer means for peer-to-peer communication between a plurality of resource requesters and a plurality of resource providers;
a rulebase for authenticating authorization of the plurality of resource requesters on a dynamic basis, wherein the trusted session sub-layer means forms a bundle of transport layer connections between the plurality of resource providers and the plurality of resource requesters.
-
-
58. A system for secure data transmission comprising:
-
session layer means for a transfer of data between a plurality of resource requesters and a plurality of resource providers, wherein no peer-to-peer connections exist below the session layer means; and
trusted session sub-layer means maintaining a virtual air gap, wherein no physical resources are time-division shared between any resource provider and any resource requester.
-
-
59. A computer program product for secure data transmission comprising:
-
a computer usable medium having computer readable program code means embodied in the computer usable medium for causing an application program to execute on a computer system, the computer readable program code means comprising;
computer readable program session layer code means for mapping authentication of at least one request to session level authorization, the authorization defining permitted communications between at least one resource and the at least one request.
-
-
60. A computer program product for secure data transmission comprising:
a computer usable medium having computer readable program code means embodied in the computer usable medium for causing an application program to execute on a computer system, the computer readable program code means comprising;
computer readable program code means for a virtual air gap provided by;
computer readable program code trusted session sub-layer means for session authorization and maintenance;
a trusted operating system for session separation; and
computer readable program code reverse proxy means for data transfer between a user and a resource provider.
-
61. A computer program product for secure data transmission comprising:
a computer usable medium having computer readable program code means embodied in the computer usable medium for causing an application program to execute on a computer system, the computer readable program code means comprising;
computer readable program code trusted session sub-layer means for maintaining a virtual air gap between a plurality of resource requesters and a plurality of resource providers;
computer readable program code session manager means for transferring data between the plurality of resource requesters and the plurality of resource providers.
-
62. A computer program product for secure data transmission comprising:
a computer usable medium having computer readable program code means embodied in the computer usable medium for causing an application program to execute on a computer system, the computer readable program code means comprising;
computer readable program code trusted session sub-layer means for peer-to-peer communication between a plurality of resource requesters and a plurality of resource providers;
a rulebase for authenticating authorization of the plurality of resource requesters on a dynamic basis, wherein the trusted session sub-layer means forms a bundle of transport layer connections between the plurality of resource providers and the plurality of resource requesters.
-
63. A computer program product for secure data transmission comprising:
a computer usable medium having computer readable program code means embodied in the computer usable medium for causing an application program to execute on a computer system, the computer readable program code means comprising;
computer readable program code session layer means for transferring data between a plurality of resource requesters and a plurality of resource providers, wherein no peer-to-peer connections exist below the computer readable program code session layer means; and
computer readable program code trusted session sub-layer means for maintaining a virtual air gap, wherein no physical resources are time-division shared between any resource provider and any resource requester.
-
64. A method for secure data transmission comprising:
mapping authentication of at least one request to session level authorization in a session layer, the authorization defining permitted communications between at least one resource and the at least one request.
Specification