METHODS, SYSTEMS, AND COMPUTER PROGRAM PRODUCTS FOR ACCESS CONTROL SERVICES USING SOURCE PORT FILTERING
First Claim
1. A method of controlling access to a protected server, the method comprising:
- receiving an authentication request message at an authentication server computer, the authentication request message identifying a requesting client device;
authenticating the authentication request message at the authentication server computer; and
responsive to authentication of the authentication request message, determining a source port for a redirected communication between the requesting client device and the protected server and transmitting an access authorization message identifying the determined source port from the authentication server computer to a blocking device that controls access to the protected server.
1 Assignment
0 Petitions
Accused Products
Abstract
An authentication request message is received at an authentication server computer, the authentication request message identifying a requesting client device. The authentication request message is authenticated at the authentication server computer and, responsive to authentication of the authentication request message, a source port for a redirected communication between the requesting client device associated and the protected server is determined. An access authorization message identifying the determined source port is transmitted from the authentication server computer to a blocking device that controls access to the protected server. A redirect message may be transmitted from the authentication server to a browser resident at the client device responsive to authentication of the authentication request message. Embodiments include methods, apparatus and computer readable media.
-
Citations
18 Claims
-
1. A method of controlling access to a protected server, the method comprising:
-
receiving an authentication request message at an authentication server computer, the authentication request message identifying a requesting client device; authenticating the authentication request message at the authentication server computer; and responsive to authentication of the authentication request message, determining a source port for a redirected communication between the requesting client device and the protected server and transmitting an access authorization message identifying the determined source port from the authentication server computer to a blocking device that controls access to the protected server. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A system comprising:
-
an authentication server computer configured to receive an authentication request message identifying an authentication requesting client device, to authenticate the authentication request message, to determine a source port for a redirected communication between the requesting client device and the protected server, and to transmit an access authorization message identifying the determined source port responsive to authentication of the authentication request message; and a blocking device configured to receive the access authorization message from the authentication server computer and to control access to a protected server responsive to the received access authorization message. - View Dependent Claims (10, 11, 12, 13, 14)
-
-
15. An authentication server comprising:
-
a communications interface circuit configured to receive an authentication request message identifying a requesting client device; and an authenticator circuit coupled to the communications interface circuit and configured to authenticate the authentication request message and to determine a source port for a redirected communication between the requesting client device and a protected server, wherein the communications interface circuit is further configured to transmit an access authorization message identifying the determined source port from the authentication server computer to a blocking device that controls access to the protected server responsive to authentication of the authentication request message. - View Dependent Claims (16, 17, 18)
-
Specification