System and method for secure configuration of sensitive web services
First Claim
11. A client system for configuration of sensitive Web-Services provided by a server system having a communication component for establishing communication with a client SOAP-communication component, a configuration data file providing access rights to a sensitive Web-Service, a sensitive Web-Service, a filter component for identifying and discarding non-valid requests, an access control manager component for providing authentication examination for incoming SOAP-requests indicating configuration of the configuration data file, a component for updating said current configuration data file with an updated configuration data file being offline updated by a client system, wherein said client system is connected via a data link to said server system, comprising:
- a SOAP-communication component for establishing communication with said communication component of said server system, a browser component, a configuration data file containing access rights for said sensitive Web-Service, and a client configuration component for updating said configuration data file.
3 Assignments
0 Petitions
Accused Products
Abstract
The present invention discloses a system and method for configuration of access rights to sensitive information handled by a sensitive Web-Service. In a case of requested configuration changes initiated by the client system the Web-Server system provides a configuration data file to the client system preferably using a SOAP-communication protocol. The changes of the configuration data file are exclusively performed offline at the client side and the updated configuration data file is signed with authentication information and sent as a part of a SOAP-request to the Web-Server system. The Web-Server system provides a filter component for identifying and discarding non-SOAP requests as well as an access control manager for providing authentication examination for incoming SOAP-requests. After successful passing these components the SOAP-request is used for updating the existing configuration data file.
222 Citations
20 Claims
-
11. A client system for configuration of sensitive Web-Services provided by a server system having a communication component for establishing communication with a client SOAP-communication component, a configuration data file providing access rights to a sensitive Web-Service, a sensitive Web-Service, a filter component for identifying and discarding non-valid requests, an access control manager component for providing authentication examination for incoming SOAP-requests indicating configuration of the configuration data file, a component for updating said current configuration data file with an updated configuration data file being offline updated by a client system, wherein said client system is connected via a data link to said server system, comprising:
-
a SOAP-communication component for establishing communication with said communication component of said server system, a browser component, a configuration data file containing access rights for said sensitive Web-Service, and a client configuration component for updating said configuration data file. - View Dependent Claims (1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 12, 13, 14, 15, 17, 18, 19, 20)
-
-
12-1. A method according to claim 11, wherein said communication between said client and said server system is based on a SOAP/HTTP protocol.
-
16. A method according 11, wherein said configuration component is an Java applet being provided from the server system to the client system before a configuration request is being sent.
Specification