Secure server utilizing separate protocol stacks
First Claim
Patent Images
1. A secure commerce server system, comprising:
- a plurality of regions or burbs, including an internal burb and an external burb, wherein processes bound to one burb cannot communicate directly to processes and data objects bound to other burbs, and wherein the internal burb includes a first protocol stack and the external burb includes a second protocol stack separate from the first protocol stack;
a commerce server, wherein processes and data objects associated with the commerce server are bound to the external burb;
an administration server, wherein processes and data objects associated with the administration server are bound to the internal burb; and
means for restricting communication between the external burb and the administration server so that the administration server cannot be manipulated by a process bound to the external burb;
wherein the means for restricting communication include;
means for examining a message received by the administration server; and
means for routing the message up through the first protocol stack to a process bound to the first burb, transferring the message to a process bound to the second burb and routing the message down through the second protocol stack to the second network interface.
7 Assignments
0 Petitions
Accused Products
Abstract
A secure commerce server system and method. A secure commerce server system includes a plurality of regions or burbs, including an internal burb and an external burb, a commerce server and an administration server. Processes and data objects associated with the administration server are bound to the internal burb. Processes and data objects associated with the commerce server are bound to the external burb. Processes bound to one burb cannot communicate directly to processes and data objects bound to other burbs. The administration server cannot be manipulated by a process bound to the external burb.
182 Citations
9 Claims
-
1. A secure commerce server system, comprising:
-
a plurality of regions or burbs, including an internal burb and an external burb, wherein processes bound to one burb cannot communicate directly to processes and data objects bound to other burbs, and wherein the internal burb includes a first protocol stack and the external burb includes a second protocol stack separate from the first protocol stack; a commerce server, wherein processes and data objects associated with the commerce server are bound to the external burb; an administration server, wherein processes and data objects associated with the administration server are bound to the internal burb; and means for restricting communication between the external burb and the administration server so that the administration server cannot be manipulated by a process bound to the external burb;
wherein the means for restricting communication include;means for examining a message received by the administration server; and means for routing the message up through the first protocol stack to a process bound to the first burb, transferring the message to a process bound to the second burb and routing the message down through the second protocol stack to the second network interface. - View Dependent Claims (2, 3, 4, 5)
-
-
6. A method of conducting electronic commerce over a plurality of networks, including an external network and an internal network, wherein the internal network includes an administration server, the method comprising the steps of:
-
connecting a network interface to each of the plurality of networks, wherein the step of connecting includes the steps of connecting a first network interface to the external network and a second network interface to the internal network; defining a plurality of burbs, wherein the plurality of burbs includes a first and a second burb, wherein the first burb includes a first protocol stack and the second burb includes a second protocol stack separate from the first protocol stack; assigning each of the network interfaces to one of the plurality of burbs, wherein more than one network interface can be assigned to a particular burb, wherein the step of assigning includes the steps of assigning the first network interface to the first burb and the second network interface to the second burb; binding processes to burbs; receiving an electronic commerce request from the external network; and transferring the electronic commerce request to the administration server, wherein the step of transferring includes the steps of; routing the electronic commerce request up through the first protocol stack to a process bound to the first burb; sending the electronic commerce request to a process bound to the second burb; and routing the message down through the second protocol stack to the second network interface. - View Dependent Claims (7, 8, 9)
-
Specification