Electronic commerce community networks and intra/inter community secure routing implementation
First Claim
Patent Images
1. An electronic registry of connectors belonging to a community, including at least one entry corresponding to a connector belonging to the community, the entry comprising:
- an identity of the connector;
one or more particular transport/envelope protocols that the connector supports;
capabilities of the connector to communicate peer-to-peer with other connectors;
translate among transport/envelope protocols;
rules for the particular transport/envelope protocols that determine routing of an electronic commerce document, including inbound and outbound links with other connectors.
8 Assignments
0 Petitions
Accused Products
Abstract
The present invention includes devices and methods to establish networks of communities, route documents among communities having dissimilar interfaces and do so in a trusted and trustworthy manner. Particular aspects of the present invention are described in the claims, specification and drawings.
-
Citations
40 Claims
-
1. An electronic registry of connectors belonging to a community, including at least one entry corresponding to a connector belonging to the community, the entry comprising:
-
an identity of the connector;
one or more particular transport/envelope protocols that the connector supports;
capabilities of the connector to communicate peer-to-peer with other connectors;
translate among transport/envelope protocols;
rules for the particular transport/envelope protocols that determine routing of an electronic commerce document, including inbound and outbound links with other connectors. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. An electronic registry of cross-community routings, a source-to-destination community routing including:
-
an address of a registry service corresponding to the destination community;
an external connector in the destination community; and
one or more transport/envelope protocols supported by the source-to-destination community routing of an electronic commerce document. - View Dependent Claims (12, 13)
-
-
14. A method of computing a route for sending an electronic commerce document from a source to a destination, compliant with routing rules expressed in a graph of parent-child relationships among connectors, including:
-
mapping the source and destination to connectors;
beginning at the source and destination connectors, building partial path lists of connectors, including traversing from a child connector to one or more parent connectors;
considering alternative transport/envelope protocols available to communicate from the child connector to the parent connectors and treating available transport/envelope protocols as separate partial paths;
completing the partial path list of connectors for a particular transport/envelope protocol upon reaching a connector that has no parent connector available to communicate using the particular transport/envelope protocol;
linking respective source and destination partial path lists, alternatively linking through a shared connector in the respective partial path lists, when the shared connector uses the same transport/envelope protocol in the respective partial path lists or when the shared connector has an ability to translate between transport/envelope protocols in the respective partial path lists;
linking between similar connectors in the respective partial path lists when the similar connectors support the same transport/envelop protocol. - View Dependent Claims (15)
-
-
16. A method of computing a route for sending an electronic commerce document from a source to a destination, compliant with routing rules expressed in a graph of parent-child relationships among connectors, including:
-
mapping the source and destination to connectors;
beginning at the source and destination connectors, building partial path lists of connectors, including traversing from a child connector to one or more parent connectors;
considering alternative transport/envelope protocols available to communicate from the child connector to the parent connectors and treating available transport/envelope protocols as separate partial paths;
completing the partial path list of connectors for a particular transport/envelope protocol upon reaching a connector that communicates peer-to-peer with other connectors for the particular transport/envelope protocol;
linking respective source and destination partial path lists, alternatively linking through a shared connector in the respective partial path lists, when the shared connector uses the same transport/envelope protocol in the respective partial path lists or when the shared connector has an ability to translate between transport/envelope protocols in the respective partial path lists;
linking between similar connectors in the respective partial path lists when the similar connectors support the same transport/envelop protocol. - View Dependent Claims (17)
-
-
18. A method of computing a route to send an electronic commerce document from a source to a destination in different communities, including:
-
mapping the source and destination to connectors within respective communities;
identifying one or more shared community networks in which the respective communities are registered and linking between similar external ports of the respective communities when the similar external ports use the same transport/envelope protocol;
computing intra-community routes within the respective communities from the source and destination connectors to respective external ports; and
specifying a route of intra-community connectors and external ports spanning from the source to the destination. - View Dependent Claims (19, 20, 21, 22)
-
-
23. A method to securely transmit an electronic commerce document from a source to a destination, between source and destination communities, comprising:
-
determining a security policy mutually acceptable to the source and destination communities;
authenticating the source to a SAML service;
receiving a SAML assertion from the SAML service;
packaging the SAML assertion and an electronic commerce document according to an envelope protocol;
routing the envelope to the destination through trusted connectors;
sending the envelope via the route to the destination. - View Dependent Claims (24, 25, 26, 27, 28)
-
-
29. A method to securely receive an electronic commerce document from a source at a destination, between source and destination communities, comprising:
-
providing a description of supported security protocols that the source or the source community may use;
receiving an envelope from the source, the envelope comprising an electronic commerce document and a SAML assertion;
comparing an electronic signature of the SAML assertion to an electronic signature for the source community that is registered with the destination community; and
determining from a destination community registry that the source community is trusted to send electronic commerce documents. - View Dependent Claims (30)
-
-
31. A method to securely transmit an electronic commerce document from a source to a destination, between source and destination communities via an envelope translation gateway, comprising:
-
determining a security policy mutually acceptable to the source and destination communities;
authenticating the source to a first security service;
receiving a first assertion from the first security service;
computing a route through a trusted gateway to the destination via trusted connectors;
wherein the trusted gateway includes one or more services to validate the first security credential, to decrypt the electronic commerce document and re-encrypt it, to translate a first envelope protocol to a second envelope protocol, and to forward a second security credential with the electronic commerce document according to the second envelope protocol;
forwarding the first assertion and the electronic commerce document according to the first envelope protocol via the route to the destination. - View Dependent Claims (32, 33, 34, 35, 36)
-
-
37. A method to securely receive an electronic commerce document from a source at a destination, between source and destination communities via an envelope translation gateway, comprising:
-
providing a description of supported security protocols that the source or the source community may use;
receiving an envelope from a trusted gateway, via trusted connectors, the envelope comprising an electronic commerce document from the source community and a second security credential;
wherein the trusted gateway includes one or more services to validate a first security credential from the source community, to decrypt the electronic commerce document and re-encrypt it, to translate a first envelope protocol to a second envelope protocol, and to forward the second security credential with the electronic commerce document according to the second envelope protocol;
comparing an electronic signature of the second security credential to an electronic signature for the trusted gateway that is registered with the destination community; and
determining from a destination community registry that the trusted gateway and the source community are trusted to send electronic commerce documents.
-
-
38. A method of establishing a network of commerce communities, a commerce community having a local registry and at least one service available to other commerce communities, the method including:
-
registering an operating arrangement, external port configurations and addresses, and security credentials in the local registries of at least two commerce communities;
establishing at least one global yellow pages service that exposes reference to services of the commerce communities in the network to members of the network;
establishing at least one global white pages including details of the services of the commerce communities, and the external port configurations and addresses of the commerce communities. - View Dependent Claims (39, 40)
-
Specification