Cross domain security information conversion
First Claim
1. A computer-implemented method for cross domain security information conversion, the computer comprising a computer processor and a computer memory operatively coupled to the computer processor, the computer memory having disposed within it computer program instructions that execute the method, the method comprising:
- receiving from a system entity, in a security service, security information in a native format of a first security domain regarding a system entity having an identity in at least one security domain, wherein the system entity comprises automated computing machinery;
translating the security information to a canonical format for security information, wherein the canonical format is a data format for security information that is standardized for use in data transformations of security information;
transforming the security information in the canonical format using a predefined mapping from the first security domain to a second security domain;
translating the transformed security information in the canonical format to a native format of the second security domain; and
returning to the system entity the security information in the native format of the second security domain.
1 Assignment
0 Petitions
Accused Products
Abstract
Methods, systems, and computer program products are provided for cross domain security information conversion. Embodiments include receiving from a system entity, in a security service, security information in a native format of a first security domain regarding a system entity having an identity in at least one security domain; translating the security information to a canonical format for security information; transforming the security information in the canonical format using a predefined mapping from the first security domain to a second security domain; translating the transformed security information in the canonical format to a native format of the second security domain; and returning to the system entity the security information in the native format of the second security domain.
17 Citations
28 Claims
-
1. A computer-implemented method for cross domain security information conversion, the computer comprising a computer processor and a computer memory operatively coupled to the computer processor, the computer memory having disposed within it computer program instructions that execute the method, the method comprising:
-
receiving from a system entity, in a security service, security information in a native format of a first security domain regarding a system entity having an identity in at least one security domain, wherein the system entity comprises automated computing machinery; translating the security information to a canonical format for security information, wherein the canonical format is a data format for security information that is standardized for use in data transformations of security information; transforming the security information in the canonical format using a predefined mapping from the first security domain to a second security domain; translating the transformed security information in the canonical format to a native format of the second security domain; and returning to the system entity the security information in the native format of the second security domain. - View Dependent Claims (2, 3, 4, 5, 7, 8, 9)
-
-
6. The method of claim l wherein translating the security information in a native format of a first security domain to a canonical format is carried out through a procedural software function.
-
10. A system for cross domain security information conversion, the system comprising a computer processor operatively coupled to a computer memory. the computer memory having disposed within it computer program instructions for:
-
receiving from a system entity, in a security service, security information in a native format of a first security domain regarding a system entity having an identity in at least one security domain; translating the security information to a canonical format for security information; transforming the security information in the canonical format using a predefined mapping from the first security domain to a second security domain; translating the transformed security information in the canonical format to a native format of the second security domain; and returning to the system entity the security information in the native format of the second security domain. - View Dependent Claims (11, 12, 13, 14, 15, 16, 17, 18)
-
-
19. A computer program product for cross domain security information conversion, the computer program product embodied on a recordable computer-readable medium, the computer program product comprising computer program instructions which when installed and executed on a data processing system, are capable causing the data processing system to carry out the steps of:
-
receiving from system entity, in a security service, security information in a native format of a first security domain regarding a system entity having an identity in at least one security domain, wherein the system entity comprises automated computing machinery translating the security information to a canonical format for security information; transforming the security information in the canonical format using a predefined mapping from the first security domain to a second security domain; translating the transformed security information in the canonical format to a native format of the second security domain; and returning to the system entity the security information in the native format of the second security domain. - View Dependent Claims (20, 21, 22, 23, 24, 25, 26, 27, 28)
-
Specification