Automatically Handling Proxy Server and Web Server Authentication

US 20110004926A1
Filed: 07/01/2009
Published: 01/06/2011
Est. Priority Date: 07/01/2009
Status: Abandoned Application

First Claim

Patent Images

1. A method, in a data processing system, for automatically handling server authentication, the method comprising:

determining, by the data processing system, whether a response from a server to a synthetic transaction in a set of synthetic transactions contains an authentication challenge;

responsive to the response containing the authentication challenge, parsing, by the data processing system, the response to identify one or more attributes associated with the authentication challenge;

determining, by the data processing system, whether one or more attributes associated with each realm in a set of realms stored in a realm list matches the one or more attributes associated with the authentication challenge;

responsive to a match of the one or more attributes associated with a realm in the set of realms to the one or more attributes of the authentication challenge, generating, by the data processing system, an authentication response to the authentication challenge for the matched realm; and

sending, by the data processing system, the authentication response automatically to the server in order to authenticate the synthetic transaction.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A mechanism is provided for automatically handling server authentication. Responsive to receiving a response to a synthetic transaction from a server, a determination is made as to whether the response contains an authentication challenge. If the response contains the authentication challenge, the response is parsed to identify one or more attributes associated with the authentication challenge. A determination is made as to whether one or more attributes associated with each realm in a set of realms stored in a realm list matches the one or more attributes associated with the authentication challenge. If there is a match, an authentication response to the authentication challenge is generated for the matched realm. The authentication response is then sent automatically to the server in order to authenticate the synthetic transaction.

23 Citations

View as Search Results

20 Claims

1. A method, in a data processing system, for automatically handling server authentication, the method comprising:
- determining, by the data processing system, whether a response from a server to a synthetic transaction in a set of synthetic transactions contains an authentication challenge;
  
  responsive to the response containing the authentication challenge, parsing, by the data processing system, the response to identify one or more attributes associated with the authentication challenge;
  
  determining, by the data processing system, whether one or more attributes associated with each realm in a set of realms stored in a realm list matches the one or more attributes associated with the authentication challenge;
  
  responsive to a match of the one or more attributes associated with a realm in the set of realms to the one or more attributes of the authentication challenge, generating, by the data processing system, an authentication response to the authentication challenge for the matched realm; and
  
  sending, by the data processing system, the authentication response automatically to the server in order to authenticate the synthetic transaction.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
- - 2. The method of claim 1, wherein the server is at least one of a web server or a proxy server and wherein the realm is at least one of a web server realm or a proxy server realm.
  - 3. The method of claim 1, further comprising:
    - responsive to a failure to determine a match of the one or more attributes associated with the realm in the set of realms to the one or more attributes of the authentication challenge, determining, by the data processing system, whether there is a realm identified for a transaction being performed by the synthetic transaction;
      
      responsive to determining an existence of the realm for the transaction being performed by the synthetic request, generating, by the data processing system, the authentication response to the authentication challenge for the matched realm; and
      
      sending, by the data processing system, the authentication response to the server in order to authenticate the synthetic transaction.
  - 4. The method of claim 3, further comprising:
    - responsive to a failure in determining a realm identity within a set of known realms associated with the synthetic transaction, generating, by the data processing system, a system alert to a system administrator; and
      
      aborting, by the data processing system, the synthetic transaction.
  - 5. The method of claim 3, further comprising:
    - responsive to a failure in determining a realm identity within a set of known realms associated with the synthetic transaction, prompting, by the data processing system, to save the identified attributes as associated with a new realm; and
      
      responsive to a positive indication that the identified attributes as associated with the new realm, generating, by the data processing system, the new realm in the realm list.
  - 6. The method of claim 1, further comprising:
    - responsive to the response from the server to the synthetic transaction in the set of synthetic transactions containing an authentication challenge, recording, by a recording component, a set of attributes comprising at least one of a type, a subnet, a realm name, a username, or a password associated with the server; and
      
      storing, by the recording component, the set of attributes in a centralized storage.
  - 7. The method of claim 1, further comprising:
    - determining, by a recording component, whether a response from a server to a user transaction contains an authentication challenge;
      
      responsive to the response containing the authentication challenge, parsing, by the recording component, the response to identify one or more attributes associated with the authentication challenge;
      
      associating, by the recording component, the one or more attributes with a new realm in a set of realms in a realm list so that future detection of the one or more attributes can be matched with an authentication challenge in the new realm; and
      
      storing, by the recording component, the set of attributes and realm list in a computer storage.
  - 8. The method of claim 1, further comprising:
    - responsive to the response failing to contain an authentication challenge, proceeding, by the data processing system, to a next synthetic transaction in the set of synthetic transactions based on the a set of synthetic transactions.
  - 9. The method of claim 1, wherein the one or more attributes associated with the authentication challenge are at least one of a type, a subnet, a realm name, a username, or a password.

10. A computer program product comprising a computer recordable medium having a computer readable program recorded thereon, wherein the computer readable program, when executed on a computing device, causes the computing device to:
- determine whether a response from a server to a synthetic transaction in a set of synthetic transactions contains an authentication challenge;
  
  responsive to the response containing the authentication challenge, parse the response to identify one or more attributes associated with the authentication challenge;
  
  determine whether one or more attributes associated with each realm in a set of realms stored in a realm list matches the one or more attributes associated with the authentication challenge;
  
  responsive to a match of the one or more attributes associated with a realm in the set of realms to the one or more attributes of the authentication challenge, generate an authentication response to the authentication challenge for the matched realm; and
  
  send the authentication response automatically to the server in order to authenticate the synthetic transaction.
- View Dependent Claims (11, 12, 13, 14, 15, 16, 17, 18, 19)
- - 11. The computer program product of claim 10, wherein the server is at least one of a web server or a proxy server and wherein the realm is at least one of a web server realm or a proxy server realm.
  - 12. The computer program product of claim 10, wherein the computer readable program further causes the computing device to:
    - responsive to a failure to determine a match of the one or more attributes associated with the realm in the set of realms to the one or more attributes of the authentication challenge, determine whether there is a realm identified for a transaction being performed by the synthetic transaction;
      
      responsive to determining an existence of the realm for the transaction being performed by the synthetic request, generate the authentication response to the authentication challenge for the matched realm; and
      
      send the authentication response to the server in order to authenticate the synthetic transaction.
  - 13. The computer program product of claim 12, wherein the computer readable program further causes the computing device to:
    - responsive to a failure in determining a realm identity within a set of known realms associated with the synthetic transaction, generating a system alert to a system administrator; and
      
      aborting the synthetic transaction.
  - 14. The computer program product of claim 12, wherein the computer readable program further causes the computing device to:
    - responsive to a failure in determining a realm identity within a set of known realms associated with the synthetic transaction, prompt to save the identified attributes as associated with a new realm; and
      
      responsive to a positive indication that the identified attributes associated with the new realm, generating the new realm in the realm list.
  - 15. The computer program product of claim 10, wherein the computer readable program further causes the computing device to:
    - responsive to the response from the server to the synthetic transaction in the set of synthetic transactions containing an authentication challenge, record a set of attributes comprising at least one of a type, a subnet, a realm name, a username, or a password associated with the server; and
      
      store the set of attributes in a centralized storage.
  - 16. The computer program product of claim 10, wherein the computer readable program further causes the computing device to:
    - determine whether a response from a server to a user transaction contains an authentication challenge;
      
      responsive to the response containing the authentication challenge, parse the response to identify one or more attributes associated with the authentication challenge;
      
      associate the one or more attributes with a new realm in a set of realms in a realm list so that future detection of the one or more attributes can be matched with an authentication challenge in the new realm; and
      
      store the set of attributes and realm list in a computer storage.
  - 17. The computer program product of claim 10, wherein the one or more attributes associated with the authentication challenge are at least one of a type, a subnet, a realm name, a username, or a password.
  - 18. The computer program product of claim 10, wherein the computer readable program is stored in a computer readable storage medium in a data processing system and wherein the computer readable program was downloaded over a network from a remote data processing system.
  - 19. The computer program product of claim 10, wherein the computer readable program is stored in a computer readable storage medium in a server data processing system and wherein the computer readable program is downloaded over a network to a remote data processing system for use in a computer readable storage medium with the remote system.

20. An apparatus, comprising:
- a processor; and
  
  a memory coupled to the processor, wherein the memory comprises instructions which, when executed by the processor, cause the processor to;
  
  determine whether a response from a server to a synthetic transaction in a set of synthetic transactions contains an authentication challenge;
  
  responsive to the response containing the authentication challenge, parse the response to identify one or more attributes associated with the authentication challenge;
  
  determine whether one or more attributes associated with each realm in a set of realms stored in a realm list matches the one or more attributes associated with the authentication challenge;
  
  responsive to a match of the one or more attributes associated with a realm in the set of realms to the one or more attributes of the authentication challenge, generate an authentication response to the authentication challenge for the matched realm; and
  
  send the authentication response automatically to the server in order to authenticate the synthetic transaction.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
International Business Machines Corporation
Original Assignee
International Business Machines Corporation
Inventors
Vykunta, Rama S., O'Donnell, James P. III

Application Number

US12/496,116
Publication Number

US 20110004926A1
Time in Patent Office

Days
Field of Search
US Class Current

726/7
CPC Class Codes

G06F 21/305   by remotely controlling dev...

G06F 2221/2101   Auditing as a secondary aspect

G06F 2221/2103   Challenge-response

H04L 2209/56   Financial cryptography, e.g...

H04L 2209/76   Proxy, i.e. using intermedi...

H04L 63/08   for authentication of entit...

H04L 63/102   Entity profiles

H04L 9/3271   using challenge-response

Automatically Handling Proxy Server and Web Server Authentication

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

23 Citations

20 Claims

Specification

Use Cases

Quick Links

Others

Automatically Handling Proxy Server and Web Server Authentication

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

23 Citations

20 Claims

Specification

Subscription Required

Use Cases

Quick Links

Others