×

System and method for facilitating the provision of web services across different internet security domains

  • US 8,572,675 B2
  • Filed: 04/03/2009
  • Issued: 10/29/2013
  • Est. Priority Date: 04/03/2009
  • Status: Active Grant
First Claim
Patent Images

1. A cross-domain Web service publishing system embodied on one or more processing devices comprising:

  • a source security domain having a first security clearance classification;

    a first cross-domain publishing service located in the source security domain to;

    receive a Web service publication request from a service publication requester;

    retrieve a Web services description language reference for the Web service from a remote source;

    create a call to publish the Web service; and

    transmit the call to a first security server located in the source security domain;

    a destination security domain having a second security clearance classification;

    a second cross-domain publishing service within the destination security domain to;

    receive the Web service publication request;

    establish a surrogate end point within the destination security domain; and

    publish at the surrogate end point a Web services description language reference regarding the provision of the Web service by the Web service provider; and

    a high assurance guard (HAG) service configured to provide communication connections between the first cross-domain publishing service and the second cross-domain publishing service;

    wherein the HAG service comprises a source HAG node in the source security domain and a destination HAG node in the destination security domain;

    wherein the source HAG node is configured to receive the Web service publication request, and to determine whether the Web service publication request violates one or more security rules;

    wherein the destination HAG node is configured to receive the Web service publication request from the source HAG node, unwrap the Web service publication request, and pass the Web service publication request to the second cross-domain publishing service; and

    wherein the second cross-domain publishing service is configured to determine whether the service identified in the Web service publication request violates one or more security rules, and to create a repository and directory for the service identified in the Web service publication request.

View all claims
  • 1 Assignment
Timeline View
Assignment View
    ×
    ×