Remote services wide area network connection anti-spoofing control
First Claim
1. An architecture for confirming the identity of a message sender on a remote services system, comprising:
- a communications module operable to transmit a message;
a cryptographic module in said communication module for providing encryption of a data stream in said message;
a mid-level manager operating in conjunction with said communications module for controlling the flow of messages in said remote services system and for verifying the identity of a sender by comparing first and second data identities in said data stream.
1 Assignment
0 Petitions
Accused Products
Abstract
The remote services system provides a process for confirming the identity of a message sender by comparing the claimed identity contained in the message itself against the network identity of the sender. The identity verification is implemented by a communication module that performs a validation process upon receipt of a message. The identity verification process implemented by the remote services system is accomplished by linking the claimed identity at the network level with the identity indicated at the application level. The invention relates to an architecture for confirming the identity of a message sender on a remote services system, which includes a communication module and a mid-level manager. The communications module is operable to transmit a message. The cryptographic module contained in the communication module encrypts the data stream in the message. A mid-level manager operates in conjunction with the communications module to control the flow of messages in the remote services system and verifies the identity of a sender by comparing first and second data identities in said data stream.
-
Citations
20 Claims
-
1. An architecture for confirming the identity of a message sender on a remote services system, comprising:
-
a communications module operable to transmit a message;
a cryptographic module in said communication module for providing encryption of a data stream in said message;
a mid-level manager operating in conjunction with said communications module for controlling the flow of messages in said remote services system and for verifying the identity of a sender by comparing first and second data identities in said data stream.
-
- 2. The architecture according to claim 2, said first data identify comprising data in a network software layer, said second data identity comprising data in an application software layer.
-
9. A method of confirming the identity of a message sender on a remote services system, comprising:
-
obtaining a first identity related to a message, said first identity being obtained from a first software layer in said remote services system;
obtaining a second identity related to the sender of a messages, said second identity being obtained from a second software layer in said remote services system; and
comparing said first identity with said second identity to verify the identity of the sender of said message. - View Dependent Claims (10, 11, 12, 13, 14)
-
-
15. A method of confirming the identity of a message sender on a remote services system, comprising:
-
transmitting a message using a communications module of said remote services system;
encrypting a data stream in said message using an encryption module in said communications module; and
controlling the flow of said message in said remote services system using a mid-level manager, said mid-level manager verifying the identity of a sender by comparing first and second data identities in said data stream. - View Dependent Claims (16, 17, 18, 19, 20)
-
Specification