Secure federation of data communications networks
First Claim
1. A method performed by an edge proxy server having a central processing unit for federating a network in a clearinghouse federation mode, comprising:
- receiving a list of trusted entities;
receiving by the central processing unit a message from a sending computing device, the message indicating a recipient;
upon receiving the message from the sending computing device,determining whether the recipient indicated by the message is associated with a trusted entity specified by the received list;
if the recipient indicated by the message is associated with a trusted entity specified by the received list,identifying a computing device associated with the trusted entity as a next hop for the received message and forwarding the message to the identified computing device associated with the trusted entity; and
if the recipient indicated by the message is not associated with a trusted entity specified by the received list,forwarding the received message to a clearinghouse server so that the clearinghouse server can identify a next hop for the message so that the message can be forwarded to the recipient specified in the message, the next hop identifying a computing device to which the message will be routed next, the clearinghouse server configured to enable federation of networks, thereby causing the sending computing device and the recipient to establish a session in which subsequent messages do not transit the clearinghouse server.
2 Assignments
0 Petitions
Accused Products
Abstract
Techniques for secure federation of data communications networks are provided. The techniques employ an edge proxy server to route messages depending on a federation mode. In Direct federation mode, an edge proxy server of a network is configured to exchange messages with a specified set of entities, such as other networks, servers, other devices, or users. In Automatic federation mode, an edge proxy server may accept all incoming messages from entities that have a valid certificate. In Clearinghouse federation mode, the edge proxy server forwards all outgoing messages to a specified, trusted clearinghouse server.
30 Citations
20 Claims
-
1. A method performed by an edge proxy server having a central processing unit for federating a network in a clearinghouse federation mode, comprising:
-
receiving a list of trusted entities; receiving by the central processing unit a message from a sending computing device, the message indicating a recipient; upon receiving the message from the sending computing device, determining whether the recipient indicated by the message is associated with a trusted entity specified by the received list; if the recipient indicated by the message is associated with a trusted entity specified by the received list, identifying a computing device associated with the trusted entity as a next hop for the received message and forwarding the message to the identified computing device associated with the trusted entity; and if the recipient indicated by the message is not associated with a trusted entity specified by the received list, forwarding the received message to a clearinghouse server so that the clearinghouse server can identify a next hop for the message so that the message can be forwarded to the recipient specified in the message, the next hop identifying a computing device to which the message will be routed next, the clearinghouse server configured to enable federation of networks, thereby causing the sending computing device and the recipient to establish a session in which subsequent messages do not transit the clearinghouse server. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A computer-readable storage device storing computer-executable instructions that, when executed, cause an edge proxy server to perform a method for federating a network in a clearinghouse federation mode, the method comprising:
-
receiving a list of trusted entities; receiving a message from a sending computing device, the message indicating a recipient; determining whether the recipient indicated by the message is associated with a trusted entity specified by the received list; if the recipient indicated by the message is associated with a trusted entity specified by the received list, identifying a computing device associated with the trusted entity as a next hop for the received message and forwarding the message to the identified computing device associated with the trusted entity; and if the recipient indicated by the message is not associated Pet-with a trusted entity specified by the received list, identifying a clearinghouse server as a next hop for the received message and forwarding the message to the clearinghouse server so that the clearinghouse server can identify a next hop for the message so that the message can be forwarded to the recipient specified in the message, the next hop identifying a computing device to which the message will be routed next, the clearinghouse server configured to enable federation of networks. - View Dependent Claims (12, 13, 14, 15)
-
-
16. An edge proxy server having a central processing unit for federating a network in a clearinghouse federation mode, comprising:
-
a processor and memory; a component that is configured to receive a message from a sending computing device, the message indicating a recipient; a received list of trusted entities; a component that is configured to process the received message based on the recipient indicated for the message, wherein if the recipient indicated by the message is associated with a trusted entity specified by the received list, the component configured to process identifies a computing device associated with the trusted entity as a next hop for the received message and forwarding the message to the identified computing device associated with the trusted entity, and if the recipient indicated by the message is not associated with a trusted entity specified by the received list, the component configured to process identifies a clearinghouse server as a next hop for the received message and forwards the received message to the clearinghouse server so that the clearinghouse server can identify a next hop for the message so that the message can be forwarded to the recipient specified in the message, the next hop identifying a computing device to which the message will be routed next, the clearinghouse server configured to enable federation of networks. - View Dependent Claims (17, 18, 19, 20)
-
Specification