Routing messages between applications

US 9,948,644 B2
Filed: 07/21/2015
Issued: 04/17/2018
Est. Priority Date: 03/26/2001
Status: Expired due to Term

First Claim

Patent Images

1. A method comprising:

authenticating, by a message routing system, an entity having an account with an application service provider;

generating, by the message routing system, an authentication token for the entity, the authentication token indicating authentication of the entity by the message routing system;

receiving, by the message routing system, a selection of the application service provider from a directory that includes a plurality of application service providers accessible via the message routing system;

responsive to receiving the selection, transmitting, by the message routing system, the authentication token to the application service provider;

directing, by the message routing system, the entity to the application service provider; and

responsive to transmitting the authentication token to the application service provider, directing the entity to the application service provider, and the entity providing authentication credentials associated with the account to the applications service provider as part of associating the authentication token with the account, receiving, by the message routing system from the application service provider, a message indicating that the application service provider accepts the authentication token, the authentication token accepted by the application service provider as a substitute for the authentication credentials associated with the account.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A system and method for enabling the interchange of enterprise data through an open platform is disclosed. This open platform can be based on a standardized interface that enables parties to easily connect to and use the network. Services operating as senders, recipients, and in-transit parties can therefore leverage a framework that overlays a public network.

330 Citations

20 Claims

1. A method comprising:
- authenticating, by a message routing system, an entity having an account with an application service provider;
  
  generating, by the message routing system, an authentication token for the entity, the authentication token indicating authentication of the entity by the message routing system;
  
  receiving, by the message routing system, a selection of the application service provider from a directory that includes a plurality of application service providers accessible via the message routing system;
  
  responsive to receiving the selection, transmitting, by the message routing system, the authentication token to the application service provider;
  
  directing, by the message routing system, the entity to the application service provider; and
  
  responsive to transmitting the authentication token to the application service provider, directing the entity to the application service provider, and the entity providing authentication credentials associated with the account to the applications service provider as part of associating the authentication token with the account, receiving, by the message routing system from the application service provider, a message indicating that the application service provider accepts the authentication token, the authentication token accepted by the application service provider as a substitute for the authentication credentials associated with the account.
- View Dependent Claims (2, 3, 4, 5, 6)
- - 2. The method of claim 1, further comprising:
    - expiring the authentication token in response to not receiving the message within a set time period after initiating the generation of the authentication token.
  - 3. The method of claim 1, further comprising:
    - maintaining, by the message routing system, a mapping between the authentication token and the account;
      
      receiving, by the message routing system from the entity, an additional message that includes the authentication token; and
      
      transmitting, by the message routing system, the additional message to the application service provider, the additional message including an identifier associated with the account, the identifier identified based on the mapping.
  - 4. The method of claim 1, wherein the application service provider maintains a mapping between the authentication token and the account.
  - 5. The method of claim 1, wherein the authentication token is an eight byte hex number.
  - 6. The method of claim 1, further comprising:
    - receiving, by the message routing system, an additional message destined for the application service provider and including the authentication token;
      
      authenticating, by the message routing system, the additional message based on the authentication token; and
      
      transmitting, by the message routing system, the additional message to the application service provider, the application service provider authenticating the additional message in association with account based on the authentication token.

7. A method comprising:
- authenticating, by a message routing system, an entity having an account with an application service provider;
  
  generating, by the message routing system, an authentication token for the entity, the authentication token indicating authentication of the entity by the message routing system;
  
  transmitting, by the message routing system, the authentication token to the application service provider;
  
  receiving, by the message routing system, a first message indicating that the application service provider accepts the authentication token, the authentication token accepted by the application service provider as a substitute for the authentication credentials associated with the account;
  
  receiving, by the message routing system, a second message destined for the application service provider and including the authentication token;
  
  authenticating, by the message routing system, the second message based on the authentication token; and
  
  transmitting, by the message routing system, the second message to the application service provider, the application service provider authenticating the second message in association with the account based on the authentication token.
- View Dependent Claims (8, 9, 10, 11)
- - 8. The method of claim 7, wherein the authentication token is an eight byte hex number.
  - 9. The method of claim 7, further comprising:
    - expiring the authentication token in response to not receiving the message within a set time period after initiating the generation of the authentication token.
  - 10. The method of claim 7, further comprising:
    - maintaining, by the message routing system, a mapping between the authentication token and the account;
      
      receiving, by the message routing system from the entity, an additional message that includes the authentication token; and
      
      transmitting, by the message routing system, the additional message to the application service provider, the additional message including an identifier associated with the account, the identifier identified based on the mapping.
  - 11. The method of claim 7, wherein the application service provider maintains a mapping between the authentication token and the account.

12. A computer program product comprising a non-transitory computer-readable storage medium containing computer program instructions which when executed by one or more processors cause the one or more processors to perform operations comprising:
- authenticating, by a message routing system, an entity having an account with an application service provider;
  
  generating, by the message routing system, an authentication token for the entity, the authentication token indicating authentication of the entity by the message routing system;
  
  receiving, by the message routing system, a selection of the application service provider from a directory that includes a plurality of application service providers accessible via the message routing system;
  
  responsive to receiving the selection, transmitting, by the message routing system, the authentication token to the application service provider; and
  
  responsive to the entity providing authentication credentials associated with the account to the applications service provider, receiving, by the message routing system, a message indicating that the application service provider accepts the authentication token, the authentication token accepted by the application service provider as a substitute for the authentication credentials associated with the account.
- View Dependent Claims (13, 14, 15, 16, 17)
- - 13. The computer program product of claim 12, wherein the computer program instructions are further for:
    - expiring the authentication token in response to not receiving the message within a set time period after initiating the generation of the authentication token.
  - 14. The computer program product of claim 12, wherein the computer program instructions are further for:
    - maintaining, by the message routing system, a mapping between the authentication token and the account;
      
      receiving, by the message routing system from the entity, an additional message that includes the authentication token; and
      
      transmitting, by the message routing system, the additional message to the application service provider, the additional message including an identifier associated with the account, the identifier identified based on the mapping.
  - 15. The computer program product of claim 12, wherein the application service provider maintains a mapping between the authentication token and the account.
  - 16. The computer program product of claim 12, wherein the computer program instructions are further for:
    - receiving, by the message routing system, an additional message destined for the application service provider and including the authentication token;
      
      authenticating, by the message routing system, the message based on the authentication token; and
      
      transmitting, by the message routing system, the additional message to the application service provider, the application service provider authenticating the additional message in association with account based on the authentication token.
  - 17. The computer program product of claim 12, wherein the authentication token is an eight byte hex number.

18. A computer program product comprising a non-transitory computer-readable storage medium containing computer program instructions which when executed by one or more processors cause the one or more processors to perform operations comprising:
- authenticating, by a message routing system, an entity having an account with an application service provider;
  
  generating, by the message routing system, an authentication token for the entity, the authentication token indicating authentication of the entity by the message routing system;
  
  receiving, by the message routing system, a selection of the application service provider from a directory that includes a plurality of application service providers accessible via the message routing system; and
  
  responsive to receiving the selection, transmitting, by the message routing system, the authentication token to the application service provider;
  
  directing, by the message routing system, the entity to the application service provider; and
  
  responsive to transmitting the authentication token to the application service provider, directing the entity to the application service provider, and the entity providing authentication credentials associated with the account to the applications service provider as part of associating the authentication token with the account, receiving, by the message routing system from the application service provider, a message indicating that the application service provider accepts the authentication token, the authentication token accepted by the application service provider as a substitute for the authentication credentials associated with the account.
- View Dependent Claims (19, 20)
- - 19. The computer program product of claim 18, wherein the computer program instructions are further for:
    - expiring the authentication token in response to not receiving the message within a set time period after initiating the generation of the authentication token.
  - 20. The computer program product of claim 18, wherein the computer program instructions are further for:
    - maintaining, by the message routing system, a mapping between the authentication token and the account;
      
      receiving, by the message routing system from the entity, an additional message that includes the authentication token; and
      
      transmitting, by the message routing system, the additional message to the application service provider, the additional message including an identifier associated with the account, the identifier identified based on the mapping.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Salesforce.com, Inc.
Original Assignee
Salesforce.com, Inc.
Inventors
Brouk, Lev, Norton, Kenneth, Douglas, Jason, Panec, Peter
Primary Examiner(s)
Scott, Randy

Application Number

US14/805,307
Publication Number

US 20160028729A1
Time in Patent Office

1,001 Days
Field of Search

726 2, 726 5, 726 7, 726 9, 726 12, 713153, 713155, 713188
US Class Current
CPC Class Codes

H04L 51/04   Real-time or near real-time...

H04L 51/214   using selective forwarding

H04L 63/08   for authentication of entit...

H04L 63/0884   by delegation of authentica...

H04L 63/20   for managing network securi...

Routing messages between applications

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

330 Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

Routing messages between applications

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

330 Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links