System and method securing web services
First Claim
1. A system for securing Web services on one or more server computers by one or more client computers, the computers connected to one or more networks through one or more network interfaces, each computer having one or more memories and one or more central processing units (CPUs), the system comprising:
- a. one or more logical expressions that define constraints on one or more service releases; and
b. a gateway process receiving service request messages from one or more of said clients for;
i. identifying said service request message;
ii. processing said service request message in accordance with one or more of said logical expressions associated with the requested service; and
iii. providing access to said requested service if the constraints are satisfied.
3 Assignments
0 Petitions
Accused Products
Abstract
A method and system for securing web services on one or more server computers by one or more client computers, the computers connected to one or more networks through one or more network interfaces, each computer having one or more memories and one or more central processing units (CPUs), the system comprising one or more logical expressions that define constraints on one or more service releases; a gateway process receiving service request messages from one or more of the clients for i) identifying the service request message, ii) processing the service request message in accordance with one or more of the logical expressions associated with the requested service and iii) providing access to the requested service if the constraints are satisfied. The system includes an agent process associated with one or more the clients, for receiving service request messages from an associated client, the message destined for a requested service and applying to the received request message one or more of a subset of the logical expressions associated with the requested service for forwarding to the gateway process.
-
Citations
9 Claims
-
1. A system for securing Web services on one or more server computers by one or more client computers, the computers connected to one or more networks through one or more network interfaces, each computer having one or more memories and one or more central processing units (CPUs), the system comprising:
-
a. one or more logical expressions that define constraints on one or more service releases; and
b. a gateway process receiving service request messages from one or more of said clients for;
i. identifying said service request message;
ii. processing said service request message in accordance with one or more of said logical expressions associated with the requested service; and
iii. providing access to said requested service if the constraints are satisfied. - View Dependent Claims (2, 3, 4, 5, 9)
-
-
6. A method for enforcing policies on access to web services on one or more server computers by one or more client computers, the computers connected to one or more networks through one or more network interfaces, each computer having one or more memories and one or more central processing units (CPUs), the method comprising:
- defining one or more logical expressions that place constraints on one or more service releases;
receiving at a gateway process service request messages from one or more of said clients;
identifying said service request message;
processing said service request message in accordance with one or more of said logical expressions associated with the requested service and providing access to said requested service if the constraints are satisfied.
- defining one or more logical expressions that place constraints on one or more service releases;
-
7. A method of doing business for enforcing policies on access to web services on one or more server computers by one or more client computers, the computers connected to one or more networks through one or more network interfaces, each computer having one or more memories and one or more central processing units (CPUs), the method comprising:
- defining one or more logical expressions that place constraints on one or more service releases;
receiving at a gateway process service request messages from one or more of said clients;
identifying said service request message;
processing said service request message in accordance with one or more of said logical expressions associated with the requested service and providing access to said requested service if the constraints are satisfied.
- defining one or more logical expressions that place constraints on one or more service releases;
-
8. A method for enforcing policies on access to web services on one or more server computers by one or more client computers, the computers connected to one or more networks through one or more network interfaces, each computer having one or more memories and one or more central processing units (CPUs), the method comprising:
- defining one or more logical expressions that place constraints on one or more service releases;
receiving service request messages by an agent process associated with one or more of said clients, said message destined for a requested service and said agent applying to said received request message one or more of a subset of said logical expressions associated with the requested service; and
receiving by a gateway process said message from said agent, said gateway verifying said constraints associated with the requested service and providing access to said requested service if the constraints are satisfied.
- defining one or more logical expressions that place constraints on one or more service releases;
Specification