Method and system to provide and manage secure access to internal computer systems from an external client
First Claim
1. A method of providing and managing secure access to computer resources from an external source, the method including the steps of :
- —
a) receiving a message from said external source at an authorisation check module, b) requesting credentials from the external source, c) sending the message and credentials to a session management module, d) checking the credentials of the external source, and, if valid, issuing a ticket to the external source, the ticket being valid for a plurality of trusted computer systems, e) receiving a further message together with said ticket from said external source at said authorisation check module, f) checking the validity of the ticket via the session management module, and g) passing the message and ticket to an impersonator module which provides secure communication between the external source and the desired destination computer system or resource, the impersonator module also providing usage information to the session management module.
2 Assignments
0 Petitions
Accused Products
Abstract
A method of providing and managing secure access to computer systems or resources from an external client, the method including the steps of a) receiving a message from the client at an authorisation module, b) requesting credentials from the client, c) sending the message and credentials to a session management module, d) checking the credentials of the client, and, if valid, issuing a ticket to the client, the ticket being valid for a plurality of trusted computer systems, e) receiving a further message together with said ticket from the client at the authorisation module, f) checking the validity of the ticket via the session management module, and g) passing the message and ticket to an impersonator module which provides secure communication between the client and the desired destination computer system or resource, the impersonator module also providing usage information to the session management module.
143 Citations
7 Claims
-
1. A method of providing and managing secure access to computer resources from an external source, the method including the steps of :
- —
a) receiving a message from said external source at an authorisation check module, b) requesting credentials from the external source, c) sending the message and credentials to a session management module, d) checking the credentials of the external source, and, if valid, issuing a ticket to the external source, the ticket being valid for a plurality of trusted computer systems, e) receiving a further message together with said ticket from said external source at said authorisation check module, f) checking the validity of the ticket via the session management module, and g) passing the message and ticket to an impersonator module which provides secure communication between the external source and the desired destination computer system or resource, the impersonator module also providing usage information to the session management module. - View Dependent Claims (2, 3, 4, 5, 6, 7)
- —
Specification