Adding biometric identification to the server security infrastructure for an enterprise service bus system

US 9,378,348 B2
Filed: 01/08/2009
Issued: 06/28/2016
Est. Priority Date: 01/08/2009
Status: Active Grant

First Claim

Patent Images

1. A method comprising:

receiving, by a processing device of a server, an enterprise service bus (ESB) message from an ESB client, wherein the ESB message comprises biometric information of a user;

sending, by the processing device, an ESB type message comprising a request to authenticate the user to an ESB-compliant trusted third party authenticator using only the user'"'"'s biometric information and without using a certificate, wherein the ESB type message comprises the biometric information of the user, and wherein the ESB-compliant trusted third party authenticator is an ESB-compliant system that stores biometric information and authenticates the request in view of analyzing the biometric information of the user and at least a portion of the stored biometric information;

establishing, by the processing device, a connection between an ESB service and the client in response to the ESB-compliant trusted third party authenticator providing a responsive ESB message comprising an authentication allowed response which indicates that the user is authenticated in view of analyzing only the biometric information of the user and at least a portion of the stored biometric information; and

allowing, by the processing device, access by the ESB client to the ESB service without using a certificate, wherein access to the ESB service is determined in view of only the biometric information of the user.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

An enterprise service bus server receives a user'"'"'s biometric information from a client. The enterprise service bus server requests authentication of the user by sending the user'"'"'s biometric information to a trusted third party authenticator. Furthermore, the enterprise service bus server establishes a connection with the enterprise service bus client if the trusted third party authenticator indicates that the user is authenticated. In addition, the enterprise service bus server allows access to an enterprise service bus service for the enterprise service client.

16 Citations

View as Search Results

10 Claims

1. A method comprising:
- receiving, by a processing device of a server, an enterprise service bus (ESB) message from an ESB client, wherein the ESB message comprises biometric information of a user;
  
  sending, by the processing device, an ESB type message comprising a request to authenticate the user to an ESB-compliant trusted third party authenticator using only the user'"'"'s biometric information and without using a certificate, wherein the ESB type message comprises the biometric information of the user, and wherein the ESB-compliant trusted third party authenticator is an ESB-compliant system that stores biometric information and authenticates the request in view of analyzing the biometric information of the user and at least a portion of the stored biometric information;
  
  establishing, by the processing device, a connection between an ESB service and the client in response to the ESB-compliant trusted third party authenticator providing a responsive ESB message comprising an authentication allowed response which indicates that the user is authenticated in view of analyzing only the biometric information of the user and at least a portion of the stored biometric information; and
  
  allowing, by the processing device, access by the ESB client to the ESB service without using a certificate, wherein access to the ESB service is determined in view of only the biometric information of the user.
- View Dependent Claims (2, 3)
- - 2. The method of claim 1, wherein the biometric information is at least one of fingerprint information, retinal information, facial characteristics, hand geometry, voice characteristics, or deoxyribonucleic acid information.
  - 3. The method of claim 1, wherein the user'"'"'s biometric information is accessed from a biometric module operatively coupled to the ESB client and the biometric module is at least one of a fingerprint scanner, a facial recognition system, a hand geometry recognition system, a voice analyzer, or a DNA analyzer.

4. A non-transitory computer readable storage medium having instructions stored thereon that, when executed by a processing device, cause the processing device to:
- receive, by the processing device, an enterprise service bus (ESB) message from an ESB client, wherein the ESB message comprises biometric information of a user;
  
  send, by the processing device, an ESB type message comprising a request to authenticate the user to an ESB-compliant trusted third party authenticator using only the user'"'"'s biometric information and without using a certificate, wherein the ESB type message comprises the biometric information of the user, and wherein the ESB-compliant trusted third party authenticator is an ESB-compliant system that stores biometric information and authenticates the request in view of analyzing the biometric information of the user and at least a portion of the stored biometric information;
  
  establish, by the processing device, a connection between an ESB service and the client in response to the ESB-compliant trusted third party authenticator providing a responsive ESB message comprising an authentication allowed response which indicates that the user is authenticated in view of analyzing only the biometric information of the user and at least a portion of the stored biometric information; and
  
  allow access by the ESB client to the ESB service without using a certificate, wherein access to the ESB service is determined in view of only the biometric information of the user.
- View Dependent Claims (5, 6)
- - 5. The non-transitory computer readable storage medium of claim 4, wherein the biometric information is at least one of fingerprint information, retinal information, facial characteristics, hand geometry, voice characteristics, or deoxyribonucleic acid information.
  - 6. The non-transitory computer readable storage medium of claim 4, wherein the biometric information of the user is accessed from a biometric module operatively coupled to the ESB client, and wherein the biometric module is at least one of a fingerprint scanner, a facial recognition system, a hand geometry recognition system, a voice analyzer, or a DNA analyzer.

7. A system comprising:
- a memory to store instructions; and
  
  a processing device, operatively coupled to the memory, the processing device to execute the instructions to;
  
  receive an enterprise service bus (ESB) message from an ESB client, wherein the ESB message comprises biometric information of a user;
  
  send an ESB type message comprising a request to authenticate the user to an ESB-compliant trusted third party authenticator using only the user'"'"'s biometric information and without using a certificate, wherein the ESB type message comprises the biometric information of the user, and wherein the ESB-compliant trusted third party authenticator is an ESB-compliant system that stores biometric information and authenticates the request in view of analyzing the biometric information of the user and at least a portion of the stored biometric information;
  
  establish, by the processing device, a connection between an ESB service and the client in response to the ESB-compliant trusted third party authenticator providing a responsive ESB message comprising an authentication allowed response which indicates that the user is authenticated in view of analyzing only the biometric information of the user and at least a portion of the stored biometric information; and
  
  allow access by the ESB client to the ESB service without using a certificate, wherein access to the ESB service is determined in view of only the biometric information of the user.
- View Dependent Claims (8, 9, 10)
- - 8. The system of claim 7, wherein the biometric information is at least one of fingerprint information, retinal information, facial characteristics, hand geometry, voice characteristics, or deoxyribonucleic acid information.
  - 9. The system of claim 7, wherein the biometric information of the user is accessed from a biometric device module coupled to the ESB client, and wherein the biometric device module is at least one of a fingerprint scanner, a facial recognition system, a hand geometry recognition system, a voice analyzer, or a DNA analyzer.
  - 10. The system of claim 7, wherein the ESB-compliant trusted third party authenticator stores biometric information and authenticates requests in view of at least a portion of the biometric information.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Red Hat, Inc. (International Business Machines Corporation)
Original Assignee
Red Hat, Inc. (International Business Machines Corporation)
Inventors
Little, Mark Cameron
Primary Examiner(s)
Siddiqi, Mohammad A

Application Number

US12/350,908
Publication Number

US 20100175114A1
Time in Patent Office

2,728 Days
Field of Search

726/5, 726/10, 713/155, 713/182, 713/186
US Class Current

1/1
CPC Class Codes

G06F 21/32   using biometric data, e.g. ...

G06F 2221/2115   Third party

H04L 63/0861   using biometrical features,...

H04L 9/0897   involving additional device...

H04L 9/321   involving a third party or ...

H04L 9/3231   Biological data, e.g. finge...

H04L 9/3271   using challenge-response

Adding biometric identification to the server security infrastructure for an enterprise service bus system

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

16 Citations

10 Claims

Specification

Solutions

Use Cases

Quick Links

Adding biometric identification to the server security infrastructure for an enterprise service bus system

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

16 Citations

10 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links