Propagating User Identities In A Secure Federated Search System
First Claim
1. A method of propagating user identities in a secure federated search environment, comprising:
- authenticating a user to the secure federated search environment and obtaining security credentials for the authenticated user;
normalizing the security credentials and translating user identities from a plurality of secure data sources;
receiving a query for the authenticated user;
translating the query for the plurality of data sources and propagating the translated queries to the plurality of secure data sources using the translated user identities and normalized security credentials to access the plurality of secure data sources; and
consolidating query results received from the plurality of secure data sources and displaying the consolidated query results to the user in response to the query.
1 Assignment
0 Petitions
Accused Products
Abstract
A flexible and extensible architecture allows for secure searching across an enterprise. Such an architecture can provide a simple Internet-like search experience to users searching secure content inside (and outside) the enterprise. The architecture allows for the crawling and searching of a variety or sources across an enterprise, regardless of whether any of these sources conform to a conventional user role model. The architecture further allows for security attributes to be submitted at query time, for example, in order to provide real-time secure access to enterprise resources. The user query also can be transformed to provide for dynamic querying that provides for a more current result list than can be obtained for static queries.
206 Citations
17 Claims
-
1. A method of propagating user identities in a secure federated search environment, comprising:
-
authenticating a user to the secure federated search environment and obtaining security credentials for the authenticated user;
normalizing the security credentials and translating user identities from a plurality of secure data sources;
receiving a query for the authenticated user;
translating the query for the plurality of data sources and propagating the translated queries to the plurality of secure data sources using the translated user identities and normalized security credentials to access the plurality of secure data sources; and
consolidating query results received from the plurality of secure data sources and displaying the consolidated query results to the user in response to the query. - View Dependent Claims (2, 3, 4)
-
-
5. A method of propagating user identities in a secure federated search environment, comprising:
-
authenticating a user to the secure federated search environment using a single sign-on process and obtaining security credentials for the authenticated user;
receiving a query for the authenticated user;
translating the query for the plurality of data sources and propagating the translated queries and security credentials to the plurality of secure data sources; and
consolidating query results received from the plurality of secure data sources and displaying the consolidated query results to the user in response to the query.
-
-
6. A system for propagating user identities in a secure federated search environment, comprising:
-
a user authentication component operable to authenticate a user of the secure federated search environment and provide security credentials for the authenticated user;
a query component operable to receive a query for the authenticated user; and
a federated broker operable to normalize the security credentials and translate user identities from a plurality of secure data sources, the federated broker being further operable to translate the received query for the plurality of secure data sources and propagate the translated queries to the plurality of secure data sources using the translated user identities and normalized security credentials to access the plurality of secure data sources, the federated broker being further operable to consolidate query results received from the plurality of secure data sources and transmit the consolidated query results to the user in to be displayed as query results. - View Dependent Claims (7, 8, 9)
-
-
10. A system for propagating user identities in a secure federated search environment, comprising:
-
a single sign-on component operable to authenticate a user of the secure federated search environment and provide security credentials for the authenticated user;
a query component operable to receive a query for the authenticated user; and
a federated broker operable to translate user identities from a plurality of secure data sources, the federated broker being further operable to translate the received query for the plurality of secure data sources and propagate the translated queries and security credentials to the plurality of secure data sources, the federated broker being further operable to consolidate query results received from the plurality of secure data sources and transmit the consolidated query results to the user in to be displayed as query results. - View Dependent Claims (11, 12)
-
-
13. A computer program product embedded in a computer readable medium for propagating user identities in a secure federated search environment, comprising:
-
program code for authenticating a user to the secure federated search environment and obtaining security credentials for the authenticated user;
program code for normalizing the security credentials and translating user identities from a plurality of secure data sources;
program code for receiving a query for the authenticated user;
program code for translating the query for the plurality of data sources and propagating the translated queries to the plurality of secure data sources using the translated user identities and normalized security credentials to access the plurality of secure data sources; and
program code for consolidating query results received from the plurality of secure data sources and displaying the consolidated query results to the user in response to the query. - View Dependent Claims (14, 15, 16)
-
-
17. A computer program product embedded in a computer readable medium for propagating user identities in a secure federated search environment, comprising:
-
program code for authenticating a user to the secure federated search environment using a single sign-on process and obtaining security credentials for the authenticated user;
program code for receiving a query for the authenticated user;
program code for translating the query for the plurality of data sources and propagating the translated queries and security credentials to the plurality of secure data sources; and
program code for consolidating query results received from the plurality of secure data sources and displaying the consolidated query results to the user in response to the query.
-
Specification