STATISTICAL SECURITY FOR ANONYMOUS MESH-UP ORIENTED ONLINE SERVICES
First Claim
1. A system for validating service execution requests from anonymous applications, comprising:
- a client ticket granting module configured to;
provide to a user a client ticket comprising a reputation;
monitor service execution associated with the user; and
update the reputation of the client ticket based upon the monitored service execution;
a ticket validating module configured to;
receive a service execution request from an application with which the user is engaged, the service execution request comprising an application ticket associated with the application, the client ticket associated with the user, and request for execution of a service; and
provide the application access to the service based upon validating the service execution request with a service policy; and
a service policy manager configured to;
maintain a service policy for the service.
3 Assignments
0 Petitions
Accused Products
Abstract
Web pages and applications commonly consume functionality provided by services to provide users with a rich experience. For example, a backend mapping service may provide access to these services. However, the users and application consuming the services may be anonymous and unverified. Accordingly, a two ticket validation technique is provided to validate service execution requests from anonymous applications. In particular, a user is provided with a client ticket comprising a reputation. The reputation may be adjusted over time based upon how the user consumes services. An application may request access to a service by providing the client ticket and an application ticket for validation. The reputation of the user may be used to determine an access level at which the application may access the service. Users with a high reputation may receive high quality access to the service, while users with a low reputation may receive lower quality access.
127 Citations
20 Claims
-
1. A system for validating service execution requests from anonymous applications, comprising:
-
a client ticket granting module configured to; provide to a user a client ticket comprising a reputation; monitor service execution associated with the user; and update the reputation of the client ticket based upon the monitored service execution; a ticket validating module configured to; receive a service execution request from an application with which the user is engaged, the service execution request comprising an application ticket associated with the application, the client ticket associated with the user, and request for execution of a service; and provide the application access to the service based upon validating the service execution request with a service policy; and a service policy manager configured to; maintain a service policy for the service. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14)
-
-
15. A method for validating server execution requests from anonymous applications, comprising:
-
receiving a service execution request from an application with which a user is engaged, the service execution request comprising an application ticket associated with the application, a client ticket comprising a reputation associated with the user, and request for execution of a service; determining an access level for the user based upon validating the service execution request with a service policy associated with the service; and providing the application access to the service at the determined access level. - View Dependent Claims (16, 17, 18, 19)
-
-
20. A system for validating service execution requests from anonymous applications, comprising:
-
a client ticket granting module configured to; provide a user with a client ticket comprising a reputation for the user; monitor service execution associated with the user; and update the reputation of the client ticket based upon the monitored service execution; a ticket validating module configured to; receive a service execution request from an application with which the user is engaged, the service execution request comprising an application ticket associated with the application, a client ticket comprising a reputation associated with the user, and request for execution of a service; determine an access level for the application based upon the reputation associated with the user falling within a reputation threshold of a service policy associated with the service; and provide the application access to the service at the access level; and a service policy manager configured to; maintain service policies for services, a service policy comprising reputation thresholds and corresponding access levels.
-
Specification