Propagating user identities in a secure federated search system
First Claim
1. A method of implementing a universal framework for searching across multiple search platforms in a secure federated search, the method comprising:
- receiving, at a federated broker, a query from an authenticated user;
obtaining, by the federated broker, a plurality of user credentials associated with the authenticated user, wherein each of the plurality of user credentials is used to access at least one source of a plurality of sources;
obtaining, by the federated broker, a plurality of security attributes associated with the authenticated user, wherein;
the plurality of security attributes are distinct from the plurality of user credentials; and
the plurality of user credentials are first used to access the plurality of sources, and then the plurality of security attributes are compared to security attributes of individual documents within the plurality of sources to determine if the authenticated user can access the individual documents;
determining, by the federated broker, a required query format for each of the plurality of sources;
translating, by the federated broker, the query into a plurality of queries formatted according to the required query format of each of the plurality of sources;
propagating, by the federated broker, the plurality of translated queries, the plurality of security attributes, and the plurality of user credentials to each corresponding source to appear to each corresponding source to be the authenticated user;
receiving, at the federated broker, results of each of the plurality of queries from each source of the plurality of sources; and
consolidating, by the federated broker, the results of each of the plurality of queries to be displayed in a uniform manner.
0 Assignments
0 Petitions
Accused Products
Abstract
A method of implementing a universal framework for searching across multiple search platforms in a secure federated search. The method includes receiving, at a federated broker, a query from an authorized user, obtaining a plurality of user credentials associated with the authenticated user, wherein each of the plurality of user credentials are used to access at least one source of a plurality of sources, determining a required query format for each of the plurality of sources, translating the query into a plurality of queries formatted according to the required query format of each of the plurality of sources, propagating the plurality of translated queries and the plurality of user credentials to each corresponding source to appear to each corresponding source to be the authorized user, receiving, at the federated broker, results of each of the plurality of queries from each source of the plurality of sources, and consolidating the results of each of the plurality of queries to be displayed in a uniform manner.
230 Citations
19 Claims
-
1. A method of implementing a universal framework for searching across multiple search platforms in a secure federated search, the method comprising:
-
receiving, at a federated broker, a query from an authenticated user; obtaining, by the federated broker, a plurality of user credentials associated with the authenticated user, wherein each of the plurality of user credentials is used to access at least one source of a plurality of sources; obtaining, by the federated broker, a plurality of security attributes associated with the authenticated user, wherein; the plurality of security attributes are distinct from the plurality of user credentials; and the plurality of user credentials are first used to access the plurality of sources, and then the plurality of security attributes are compared to security attributes of individual documents within the plurality of sources to determine if the authenticated user can access the individual documents; determining, by the federated broker, a required query format for each of the plurality of sources; translating, by the federated broker, the query into a plurality of queries formatted according to the required query format of each of the plurality of sources; propagating, by the federated broker, the plurality of translated queries, the plurality of security attributes, and the plurality of user credentials to each corresponding source to appear to each corresponding source to be the authenticated user; receiving, at the federated broker, results of each of the plurality of queries from each source of the plurality of sources; and consolidating, by the federated broker, the results of each of the plurality of queries to be displayed in a uniform manner. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A non-transitory computer-readable medium having sets of instructions stored thereon which, when executed by a computer, cause the computer to:
-
receive, at a federated broker, a query from an authenticated user; obtain, by the federated broker, a plurality of user credentials associated with the authenticated user, wherein each of the plurality of user credentials is used to access at least one source of a plurality of sources; obtain, by the federated broker, a plurality of security attributes associated with the authenticated user, wherein; the plurality of security attributes are distinct from the plurality of user credentials; and the plurality of user credentials are first used to access the plurality of sources, and then the plurality of security attributes are compared to security attributes of individual documents within the plurality of sources to determine if the authenticated user can access the individual documents; determine, by the federated broker, a required query format for each of the plurality of sources; translate, by the federated broker, the query into a plurality of queries formatted according to the required query format of each of the plurality of sources; propagate, by the federated broker, the plurality of translated queries, the plurality of security attributes, and the plurality of user credentials to each corresponding source to appear to each corresponding source to be the authenticated user; receive, at the federated broker, results of each of the plurality of queries from each source of the plurality of sources; and consolidate, by the federated broker, the results of each of the plurality of queries to be displayed in a uniform manner. - View Dependent Claims (9, 10, 11, 12, 13, 14)
-
-
15. A system for implementing a universal framework for searching across multiple search platforms in a secure federated search, the system comprising
a computer processor; - and
a memory device in communication with the computer processor, the memory device having sets of instructions stored thereon which, when executed by the computer processor, cause the computer processor to; receive, at a federated broker, a query from an authenticated user; obtain, by the federated broker, a plurality of user credentials associated with the authenticated user, wherein each of the plurality of user credentials is used to access at least one source of a plurality of sources; obtain, by the federated broker, a plurality of security attributes associated with the authenticated user, wherein; the plurality of security attributes are distinct from the plurality of user credentials; and the plurality of user credentials are first used to access the plurality of sources, and then the plurality of security attributes are compared to security attributes of individual documents within the plurality of sources to determine if the authenticated user can access the individual documents; determine, by the federated broker, a required query format for each of the plurality of sources; translate, by the federated broker, the query into a plurality of queries formatted according to the required query format of each of the plurality of sources; propagate, by the federated broker, the plurality of translated queries, the plurality of security attributes, and the plurality of user credentials to each corresponding source to appear to each corresponding source to be the authenticated user; receive, at the federated broker, results of each of the plurality of queries from each source of the plurality of sources; and consolidate, by the federated broker, the results of each of the plurality of queries to be displayed in a uniform manner. - View Dependent Claims (16, 17, 18, 19)
- and
Specification