Secure authentication proxy architecture for a web-based wireless Intranet application

US 7,184,999 B1
Filed: 11/05/2003
Issued: 02/27/2007
Est. Priority Date: 07/27/2001
Status: Expired due to Term

First Claim

Patent Images

1. A method performed on a server system for processing queries from a wireless electronic device comprising:

accessing a query from a wireless device;

identifying a link in said query that points to an application resident on an intranet;

accessing said identified link from said intranet;

rewriting said accessed link into a rewritten link which comprises a keyword that designates both a pointed-to application and an intranet server;

adding authentication parameters to each rewritten link to maintain an authentication session between said wireless device and said server system; and

routing said rewritten link to said wireless device in response to said query.

View all claims

10 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method and server system for exchanging data between a wireless electronic device and another computer system. This system allows a wireless electronic device to securely communicate with an Intranet by verifying authentication parameters. The first authentication parameter is the device serial number and a password which authenticates the network connection. The second authentication parameter is a user name and password that authenticates the user'"'"'s access to applications on the Intranet. The system uniquely integrates the authentication parameters into every query the wireless device makes to the Intranet to maintain the session between the wireless device and the Intranet. Beneficially, the authentication parameters are not stored on any particular network device and do not burden either the server or the wireless device with maintaining the session. In another embodiment of the present invention, the server system uses a link rewriter service for examining web pages generated by applications of the Intranet to identify links that target any application that is resident on the Intranet. The link rewriter uses a look up table in a database to rewrite the link to include a keyword that designates the targeted application and its Intranet server. The keyword is then used to route links to the Intranet and if a link is not resident on the Intranet, the query will be routed to the Internet.

Citations

21 Claims

1. A method performed on a server system for processing queries from a wireless electronic device comprising:
- accessing a query from a wireless device;
  
  identifying a link in said query that points to an application resident on an intranet;
  
  accessing said identified link from said intranet;
  
  rewriting said accessed link into a rewritten link which comprises a keyword that designates both a pointed-to application and an intranet server;
  
  adding authentication parameters to each rewritten link to maintain an authentication session between said wireless device and said server system; and
  
  routing said rewritten link to said wireless device in response to said query.
- View Dependent Claims (2, 3, 4, 5)
- - 2. The method as recited in claim 1 further comprising:
    - adding a device serial number and password to said rewritten link.
  - 3. The method as recited in claim 1 further comprising:
    - accessing a file path associated with said keyword that specifies an intranet server and an application within said intranet.
  - 4. The method as recited in claim 1 further comprising:
    - translating said query between ECC wireless protocol and IP protocol.
  - 5. The method as recited in claim 1 further comprising:
    - authenticating said wireless device with a user name and password.

6. A server system for processing queries from a wireless electronic device comprising:
- a translator for communicating with a wireless electronic device and translating between a wireless communication protocol and an IP communication protocol;
  
  a link rewriter for examining web pages generated by an application of an intranet to identify links that point to an application resident on said intranet, said link rewriter also for rewriting each identified link into a rewritten link comprising a keyword that designates both the pointed-to application and its intranet server; and
  
  an authentication adder for adding authentication parameters to each rewritten link that point to an application resident on said intranet to maintain an authentication session between said wireless electronic device and said server.
- View Dependent Claims (7, 8, 9, 10, 11)
- - 7. The server system as recited in claim 6 further comprising:
    - a router for routing queries with recognized keywords to said intranet and for routing others to the Internet.
  - 8. The server system as recited in claim 6 wherein said authentication parameters comprise a username and password.
  - 9. The server system as recited in claim 6 wherein said authentication parameters comprise a device serial number and a password.
  - 10. The server system as described in claim 6 further comprising:
    - a keyword database in which each recognized keyword has an associated file path that specifies an intranet server and an application within said intranet server.
  - 11. The server system as recited in claim 6 wherein said translator translates between ECC wireless protocol and IP protocol.

12. A method for controlling access to a network comprising:
- accessing a web page generated in response to a query for an application on a network;
  
  identifying links of said web page that point to an application on said network;
  
  rewriting each identified link into a rewritten link to comprise a keyword that designates both the pointed-to application and its network server;
  
  adding authentication parameters to each rewritten link to maintain an authentication session between an appropriate wireless electronic device and said server system; and
  
  routing rewritten links to said appropriate wireless electronic device.
- View Dependent Claims (13, 14)
- - 13. The method as recited in claim 12 further comprising:
    - for queries sent by said wireless electronic device, routing said queries comprising a recognized keyword to an intranet and otherwise routing received queries to the Internet.
  - 14. The method as recited in claim 12 further comprising:
    - adding a device serial number and password to said rewritten link for authentication.

15. A method for authenticating a wireless electronic device comprising:
- accessing a query from a wireless electronic device;
  
  translating said query from a wireless protocol to an IP protocol;
  
  authenticating said wireless electronic device;
  
  rewriting links generated by subsequent queries into rewritten links comprising a keyword that designates both the pointed-to application and its server and authentication data associated with said wireless electronic device; and
  
  adding authentication parameters to each rewritten link to maintain an authentication session between said wireless device and said server system.
- View Dependent Claims (16, 17, 18, 19, 20, 21)
- - 16. The method as recited in claim 15 further comprising:
    - rewriting said links into rewritten links comprising a device serial number and password.
  - 17. The method as recited in claim 15 further comprising:
    - translating said query from an ECC wireless protocol to an IP protocol.
  - 18. The method as recited in claim 15 further comprising:
    - authenticating said wireless device based on a device serial number ands password.
  - 19. The method as recited in claim 15 further comprising:
    - routing said rewritten links to said wireless electronic device.
  - 20. The method as recited in claim 15 further comprising:
    - accessing a subsequent query from said wireless electronic device and routing said subsequent query having a recognized keyword to an intranet.
  - 21. The method as recited in claim 20 further comprising:
    - accessing a subsequent query from said wireless electronic device and routing said subsequent query not having a recognized keyword to the Internet.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Qualcomm, Inc.
Original Assignee
Palm, Inc. (TCL Technology Group Corp.)
Inventors
Stantz, Mark, Watson, David M. Jr.
Primary Examiner(s)
Mofiz; Apu M.

Application Number

US10/703,006
Time in Patent Office

1,210 Days
Field of Search

707/10, 707/100, 707/101, 707/201, 707/203, 707/2, 707/3, 709/202, 709/205, 709/236, 709/248, 715/526
US Class Current

707/770
CPC Class Codes

G06F 21/31   User authentication

G06F 21/34   involving the use of extern...

G06F 21/35   communicating wirelessly

G06F 21/6218   to a system of files or obj...

G06F 2221/2129   Authenticate client device ...

H04L 63/08   for authentication of entit...

H04L 63/0884   by delegation of authentica...

H04L 67/02   based on web technology, e....

H04L 67/04   specially adapted for termi...

H04L 67/563   Data redirection of data ne...

H04L 67/63   Routing a service request d...

H04L 69/08   Protocols for interworking;...

H04L 69/329   in the application layer [O...

Y10S 707/99932   Access augmentation or opti...

Y10S 707/99933   Query processing, i.e. sear...

Y10S 707/99945   Object-oriented database st...

Secure authentication proxy architecture for a web-based wireless Intranet application

First Claim

10 Assignments

0 Petitions

Accused Products

Abstract

Citations

21 Claims

Specification

Solutions

Use Cases

Quick Links

Secure authentication proxy architecture for a web-based wireless Intranet application

First Claim

10 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

21 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links