Standardized transmission and exchange of data with security and non-repudiation functions
First Claim
Patent Images
1. A secure service network generating the normalized transmission of data among participants comprising:
- an interface adapter interconnected with each network user including a) a communication protocol;
b) a proxy for the channel or participant device;
c) a channel specific converter;
d) a channel specific translator from a native format to a standardized language offered by a service in the network;
e) a session map generator; and
f) a unique identifier for document and message tracking;
the translator allowing either or both of a non-native request and/or a non-native response to the service request to and from a normalized format required for processing a participant'"'"'s request and the response by a service provider on the network;
one or more service managers that expose one or more services in a normalized format to a network user wherein the decision as to what service or series of services to execute and wherein the service or series of services reside is a function of;
a) data passed in the service request;
b) the origination point of a participant'"'"'s request; and
c) the security credentials presented at the point of origination of a participant'"'"'s request;
a session manager network service infrastructure that a) tracks the sequence of events that occur as a result of a service request by a participant;
b) maps internal and external correlation session IDs;
c) controls message processing by the adapter and service manager;
d) maintains sign-on information; and
e) performs the authorization of services according to network participant relationships i) verifying the credentials of users;
ii) maintaining contextual data associated with all service requests from network participant interaction, internal processing, and one or more than one external system of record; and
iii) formatting an electronic request from one or more user wherein data contained in a participant request is translated into an object recognizable by one or more service providers connected to the network; and
a secure connection validated by a session manager service through the network assigning a unique ID associated with the invocation of each an every service request between participants to allow processing of a specific requested service or series of services by one or more providers to one or more participants;
wherein a) the session manager service assigns a unique session key marker to each instance of participant interaction upon the validation of participant credentials, the marker allowing the unique tracking of each service used in the network and related service invocations;
b) neither participant in the interconnection is aware of other services in the network to which the other participant is entitled;
c) the session manager service is external to the network or networks with which the participants are affiliated; and
d) each service invocation is executed in an associated security context that includes authentication, authorization, encryption, and logging specific to the participant'"'"'s to the service independent of other activity on physical network connections.
1 Assignment
0 Petitions
Accused Products
Abstract
A system and method of providing standardized transmission of data by translating non-native requests and or non-native responses to and from a normalized format or to a format needed for processing the request and or response. The system works with trusted and untrusted connections and systems and supports encryption at multiple layers to establish non-repudiation for a security service that integrates and/or aggregates external security applications into a single service that can provide authentication and/or authorization.
-
Citations
22 Claims
-
1. A secure service network generating the normalized transmission of data among participants comprising:
-
an interface adapter interconnected with each network user including a) a communication protocol;
b) a proxy for the channel or participant device;
c) a channel specific converter;
d) a channel specific translator from a native format to a standardized language offered by a service in the network;
e) a session map generator; and
f) a unique identifier for document and message tracking;
the translator allowing either or both of a non-native request and/or a non-native response to the service request to and from a normalized format required for processing a participant'"'"'s request and the response by a service provider on the network;one or more service managers that expose one or more services in a normalized format to a network user wherein the decision as to what service or series of services to execute and wherein the service or series of services reside is a function of;
a) data passed in the service request;
b) the origination point of a participant'"'"'s request; and
c) the security credentials presented at the point of origination of a participant'"'"'s request;a session manager network service infrastructure that a) tracks the sequence of events that occur as a result of a service request by a participant;
b) maps internal and external correlation session IDs;
c) controls message processing by the adapter and service manager;
d) maintains sign-on information; and
e) performs the authorization of services according to network participant relationships i) verifying the credentials of users;
ii) maintaining contextual data associated with all service requests from network participant interaction, internal processing, and one or more than one external system of record; and
iii) formatting an electronic request from one or more user wherein data contained in a participant request is translated into an object recognizable by one or more service providers connected to the network; anda secure connection validated by a session manager service through the network assigning a unique ID associated with the invocation of each an every service request between participants to allow processing of a specific requested service or series of services by one or more providers to one or more participants; wherein a) the session manager service assigns a unique session key marker to each instance of participant interaction upon the validation of participant credentials, the marker allowing the unique tracking of each service used in the network and related service invocations;
b) neither participant in the interconnection is aware of other services in the network to which the other participant is entitled;
c) the session manager service is external to the network or networks with which the participants are affiliated; and
d) each service invocation is executed in an associated security context that includes authentication, authorization, encryption, and logging specific to the participant'"'"'s to the service independent of other activity on physical network connections. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21)
-
-
22. A secure normalized network comprising:
-
an interface adapter interconnected with each network user including a) a communication protocol;
b) a proxy for the channel or participant device;
c) a channel specific converter;
d) a channel specific translator from a native format to a standardized language offered by a service in the network;
e) a session map generator; and
f) a unique identifier for document and message tracking;
the translator allowing either or both of a non-native request and/or a non-native response to the service request to and from a normalized format required for processing a participant'"'"'s request and the response by a service provider on the network;
the adapter formatting an electronic request by translating data contained in the request, preserving a communication infrastructure for the participants, and producing an object recognizable by one or more service platform of one or more non-affiliated participant;one or more service managers that expose one or more services in a normalized format to a network user wherein the decision as to what service or series of services to execute and wherein the service or series of services reside is a function of;
a) data passed in the service request;
b) the origination point of a participant'"'"'s request; and
c) the security credentials presented at the point of origination of a participant'"'"'s request;a session manager network service infrastructure that a) tracks the sequence of events that occur as a result of a service request by a participant;
b) maps internal and external correlation session IDs;
c) controls message processing by the adapter and service manager;
d) maintains sign-on information; and
e) performs the authorization of services according to network participant relationships i) verifying the credentials of users;
ii) maintaining contextual data associated with all service requests from network participant interaction, internal processing, and one or more man one external of record; and
iii) formatting an electronic request from one or more user wherein data contained in a participant'"'"' request is translated into an object recognizable by one or more service providers connected to the network;
the session manager
1) building one or more connection for one or more service platform used by one participant to communicate with the platform of another participant utilizing a different modality,2) creating an interconnection between a participant making a request and one or more service provider responding to the participant making a request,
3) generating a session and creating a map of the session,
4) generating at least one unique identifier for each request and response,
5) logging identifiers,6) generating one or more unique session object associated with the a network participants, and
7) creating one or more file selected from me group consisting of a log, a journal, and an error report based on the unique session object; anda secure connection validated by a session manager service through the network assigning a unique ID associated with the invocation of each an every service request between participants to allow processing of a specific requested service or series of services by one or more providers to one or more participants; wherein a) the session manager service assigns a unique session key marker to each instance of participant interaction upon the validation of participant credentials, the marker allowing the unique tracking of each service used in the network and related service invocations;
b) neither participant in the interconnection is aware of other services in the network to which the other participant is entitled;
c) the session manager service is external to the network or networks with which the participants are affiliated; and
d) each service invocation is executed in an associated security context that includes authentication, authorization encryption, and logging specific to the participant'"'"'s to the service independent of other activity on physical network connections.
-
Specification