Secure authentication proxy architecture for a web-based wireless Intranet application
First Claim
1. A method performed on a server system for processing queries from a wireless electronic device comprising:
- accessing a query from a wireless device;
identifying a link in said query that points to an application resident on an intranet;
accessing said identified link from said intranet;
rewriting said accessed link into a rewritten link which comprises a keyword that designates both a pointed-to application and an intranet server;
adding authentication parameters to each rewritten link to maintain an authentication session between said wireless device and said server system; and
routing said rewritten link to said wireless device in response to said query.
10 Assignments
0 Petitions
Accused Products
Abstract
A method and server system for exchanging data between a wireless electronic device and another computer system. This system allows a wireless electronic device to securely communicate with an Intranet by verifying authentication parameters. The first authentication parameter is the device serial number and a password which authenticates the network connection. The second authentication parameter is a user name and password that authenticates the user'"'"'s access to applications on the Intranet. The system uniquely integrates the authentication parameters into every query the wireless device makes to the Intranet to maintain the session between the wireless device and the Intranet. Beneficially, the authentication parameters are not stored on any particular network device and do not burden either the server or the wireless device with maintaining the session. In another embodiment of the present invention, the server system uses a link rewriter service for examining web pages generated by applications of the Intranet to identify links that target any application that is resident on the Intranet. The link rewriter uses a look up table in a database to rewrite the link to include a keyword that designates the targeted application and its Intranet server. The keyword is then used to route links to the Intranet and if a link is not resident on the Intranet, the query will be routed to the Internet.
-
Citations
21 Claims
-
1. A method performed on a server system for processing queries from a wireless electronic device comprising:
-
accessing a query from a wireless device; identifying a link in said query that points to an application resident on an intranet; accessing said identified link from said intranet; rewriting said accessed link into a rewritten link which comprises a keyword that designates both a pointed-to application and an intranet server; adding authentication parameters to each rewritten link to maintain an authentication session between said wireless device and said server system; and routing said rewritten link to said wireless device in response to said query. - View Dependent Claims (2, 3, 4, 5)
-
-
6. A server system for processing queries from a wireless electronic device comprising:
-
a translator for communicating with a wireless electronic device and translating between a wireless communication protocol and an IP communication protocol; a link rewriter for examining web pages generated by an application of an intranet to identify links that point to an application resident on said intranet, said link rewriter also for rewriting each identified link into a rewritten link comprising a keyword that designates both the pointed-to application and its intranet server; and an authentication adder for adding authentication parameters to each rewritten link that point to an application resident on said intranet to maintain an authentication session between said wireless electronic device and said server. - View Dependent Claims (7, 8, 9, 10, 11)
-
-
12. A method for controlling access to a network comprising:
-
accessing a web page generated in response to a query for an application on a network; identifying links of said web page that point to an application on said network; rewriting each identified link into a rewritten link to comprise a keyword that designates both the pointed-to application and its network server; adding authentication parameters to each rewritten link to maintain an authentication session between an appropriate wireless electronic device and said server system; and routing rewritten links to said appropriate wireless electronic device. - View Dependent Claims (13, 14)
-
-
15. A method for authenticating a wireless electronic device comprising:
-
accessing a query from a wireless electronic device; translating said query from a wireless protocol to an IP protocol;
authenticating said wireless electronic device;rewriting links generated by subsequent queries into rewritten links comprising a keyword that designates both the pointed-to application and its server and authentication data associated with said wireless electronic device; and adding authentication parameters to each rewritten link to maintain an authentication session between said wireless device and said server system. - View Dependent Claims (16, 17, 18, 19, 20, 21)
-
Specification