Method and apparatus for accessing Web services and URL resources for both primary and shared users over a reverse tunnel mechanism
First Claim
1. In a computing environment comprising a secure device or network, the secure device or network comprising one or more data or application sources together providing both Web services and URL resources, an apparatus for providing remote access to said services and resources comprising:
- an agent on said secure device or network capable of interfacing with said secure device or network and with said Web services and URL resources contained within either or both; and
a secure middleware server configured to communicate with a user and pass communications securely between said user and said agent bi-directionally.
1 Assignment
0 Petitions
Accused Products
Abstract
A method and apparatus for accessing Web services and URL resources for both primary and shared users over a reverse tunnel mechanism are provided. Current limitations on accessing Web services and URL resources located behind firewalls or otherwise made secure and largely inaccessible are overcome through a novel use of a “reverse tunneling” mechanism. The mechanism uses an Agent to obfuscate physical address endpoints of Web services and other resources, as well as to package SOAP service requests in such a way that they can be passed through firewalls unimpeded. All of this data transfer is made secure through encryption, strong authentication, and by making use of the security environment on both a user'"'"'s individual device and the LAN proper. In addition, a primary user may share data access rights within the secure LAN environment to a secondary user and, using the present invention, provide only those access rights to the shared user over the open Internet.
-
Citations
92 Claims
-
1. In a computing environment comprising a secure device or network, the secure device or network comprising one or more data or application sources together providing both Web services and URL resources, an apparatus for providing remote access to said services and resources comprising:
-
an agent on said secure device or network capable of interfacing with said secure device or network and with said Web services and URL resources contained within either or both; and
a secure middleware server configured to communicate with a user and pass communications securely between said user and said agent bi-directionally. - View Dependent Claims (2, 3, 4, 5, 7, 8, 10, 12, 13, 15, 18, 20, 30, 31, 32, 34, 35, 40, 41, 42, 43, 91)
-
-
6. (canceled)
-
9. (canceled)
-
11. (canceled)
-
14. (canceled)
-
16. (canceled)
-
17. (canceled)
-
19. (canceled)
-
21. (canceled)
-
22. (canceled)
-
23. (canceled)
-
24. (canceled)
-
25. (canceled)
-
26. (canceled)
-
27. (canceled)
-
28. (canceled)
-
29. (canceled)
-
33. (canceled)
-
36. (canceled)
-
37. (canceled)
-
38. (canceled)
-
39. (canceled)
-
44. (canceled)
-
45. (canceled)
-
46. In a computing system, a method for remotely accessing Web services and URL resources located on a secure device or network, the method comprising:
-
interfacing with said Web services and URL resources from a remote location wherein said interfacing is managed locally via an agent located on said secure device or network; and
passing communications securely back and forth between said Web services and a remote user via a communications path comprising said agent and a middleware server. - View Dependent Claims (47, 48, 49, 50, 52, 53, 55, 57, 58, 60, 63, 65, 75, 76, 77, 79, 80, 85, 86, 87, 88, 92)
-
-
51. (canceled)
-
54. (canceled)
-
56. (canceled)
-
59. (canceled)
-
61. (canceled)
-
62. (canceled)
-
64. (canceled)
-
66. (canceled)
-
67. (canceled)
-
68. (canceled)
-
69. (canceled)
-
70. (canceled)
-
71. (canceled)
-
72. (canceled)
-
73. (canceled)
-
74. (canceled)
-
78. (canceled)
-
81. (canceled)
-
82. (canceled)
-
83. (canceled)
-
84. (canceled)
-
89. (canceled)
-
90. (canceled)
Specification