Shared authorization data authentication method for transaction delegation in service-based computing environments

US 20060129488A1
Filed: 01/31/2006
Published: 06/15/2006
Est. Priority Date: 10/10/2001
Status: Active Grant

First Claim

Patent Images

1. A computer implemented method for providing data to a client computer, comprising:

accepting, at a first computer from a client computer, a request for data; and

transmitting, in response to the accepting, a partial response to the client computer, wherein the partial response contains a nonce value, and wherein the nonce value is used to authorize a limited number of accesses to data on a remote computer.

View all claims

0 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A system and method for allowing client computers to access data or processing on remote computers without requiring the remote computer'"'"'s recognition of the client computer. An authorizing computer provides client computers with a data specification and remote computer address along with an authorization code that may only be used for a limited number of times. A client computer then accesses the remote computer to access secure data. The authorization codes of the example embodiment are stored on the authorizing computer and the remote computer and simple look up and comparison is used to validate the authorization code on the remote computer.

Citations

19 Claims

1. A computer implemented method for providing data to a client computer, comprising:
- accepting, at a first computer from a client computer, a request for data; and
  
  transmitting, in response to the accepting, a partial response to the client computer, wherein the partial response contains a nonce value, and wherein the nonce value is used to authorize a limited number of accesses to data on a remote computer.
- View Dependent Claims (2, 3, 4, 5, 6, 7)
- - 2. The method according to claim 1, further comprising charging an entity upon use of the nonce value for at least one of the accesses.
  - 3. The method according to claim 1, wherein the nonce value is obtained by retrieval from a nonce value list shared between the first computer and the remote computer.
  - 4. The method according to claim 1, wherein the nonce value comprises an expiration time.
  - 5. The method according to claim 1, wherein the first computer is different than the remote computer.
  - 6. The method according to claim 1, further comprising the steps of:
    - accepting, at the client computer, the partial response from the first computer, wherein the partial response comprises the nonce value and a specification of the remote computer;
      
      transmitting a service request to the remote computer, wherein the service request comprises the nonce value; and
      
      receiving a service response from the remote computer if the nonce value was valid.
  - 7. The method according to claim 6, wherein the service request comprises a request for the data and the service response comprises the data.

8. An automated system for providing data to a client computer, the system comprising:
- a first computer, the first computer comprising;
  
  a request message receiver for accepting, from a client computer, a request for data; and
  
  a partial response transmitter, coupled to the request message receiver, for transmitting, in response to the request message receiver accepting the request, a partial response to the client computer, wherein the partial response contains a nonce value that is used to authorize a limited number of accesses to the data on a remote computer.
- View Dependent Claims (9, 10, 11, 12, 13)
- - 9. The system according to claim 8, further comprising a billing module for charging an entity upon use of the nonce value for at least one of the accesses.
  - 10. The system according to claim 8, wherein the nonce value is obtained by retrieval from a nonce value list shared between the first computer and the remote computer.
  - 11. The system according to claim 8, wherein the nonce value comprises an expiration time.
  - 12. The system according to claim 8, further comprising the client computer, the client computer comprising:
    - a partial response receiver for accepting the partial response from the first computer, wherein the partial response comprises the nonce value and a specification of the remote computer;
      
      a request transmitter for transmitting a service request to the remote computer, wherein the service request comprises the nonce value; and
      
      a service response receiver for receiving a service response from the remote computer if the nonce value was valid.
  - 13. The system according to claim 12, wherein the service request comprises a request for the data and the service response comprises the data.

14. A computer program product for automated processing to control communications access to remote processors, the computer program product comprising:
- a storage medium readable by a processing circuit and storing instructions for execution by the processing circuit for performing a method comprising;
  
  accepting, at a first computer, a request for data from a client computer; and
  
  transmitting, in response to the accepting, a partial response to the client computer, wherein the partial response contains a nonce value, and wherein the nonce value is used to authorize a limited number of accesses to data on a remote computer.
- View Dependent Claims (15, 16, 17, 18, 19)
- - 15. The computer program product of claim 14, the method further comprising charging an entity for at least one of the accesses.
  - 16. The computer program product of claim 14, wherein the nonce value is obtained by retrieval from the nonce value list shared between the first computer and the remote computer.
  - 17. The computer program product of claim 14, wherein the nonce value comprises an expiration time.
  - 18. The computer program product of claim 14, the method further comprising:
    - accepting, at the client computer, the partial response from the first computer, wherein the partial response comprises the nonce value and a specification of the remote computer;
      
      transmitting a service request to the remote computer, wherein the service request comprises the nonce value; and
      
      receiving a service response from the remote computer if the nonce value was valid.
  - 19. The computer program product according to claim 18, wherein the service request comprises a request for the data and the service response comprises the data.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
International Business Machines Corporation
Original Assignee
International Business Machines Corporation
Inventors
Vincent, Christopher R.

Granted Patent

US 7,565,324 B2
Time in Patent Office

Days
Field of Search
US Class Current

705/50
CPC Class Codes

G06F 21/6218 to a system of files or obj...

Shared authorization data authentication method for transaction delegation in service-based computing environments

First Claim

0 Assignments

0 Petitions

Accused Products

Abstract

Citations

19 Claims

Specification

Solutions

Use Cases

Quick Links

Shared authorization data authentication method for transaction delegation in service-based computing environments

First Claim

0 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

19 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links