Some content of this application is unavailable at the moment.
If this situation persist, please contact us atFeedback&Contact
1. (WO2018144581) INVOCATION PATH SECURITY IN DISTRIBUTED SYSTEMS
Latest bibliographic data on file with the International Bureau    Submit observation

Pub. No.: WO/2018/144581 International Application No.: PCT/US2018/016204
Publication Date: 09.08.2018 International Filing Date: 31.01.2018
IPC:
G06F 21/30 (2013.01) ,H04L 29/06 (2006.01) ,H04W 12/06 (2009.01)
G PHYSICS
06
COMPUTING; CALCULATING; COUNTING
F
ELECTRIC DIGITAL DATA PROCESSING
21
Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
30
Authentication, i.e. establishing the identity or authorisation of security principals
H ELECTRICITY
04
ELECTRIC COMMUNICATION TECHNIQUE
L
TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
29
Arrangements, apparatus, circuits or systems, not covered by a single one of groups H04L1/-H04L27/136
02
Communication control; Communication processing
06
characterised by a protocol
H ELECTRICITY
04
ELECTRIC COMMUNICATION TECHNIQUE
W
WIRELESS COMMUNICATION NETWORKS
12
Security arrangements, e.g. access security or fraud detection; Authentication, e.g. verifying user identity or authorisation; Protecting privacy or anonymity
06
Authentication
Applicants:
PIVOTAL SOFTWARE, INC. [US/US]; 875 Howard Street, 5th Floor San Francisco, California 94103, US
Inventors:
TRAN, William; US
Agent:
MA, Xin; US
TROESCH, Hans R.; US
Priority Data:
15/421,25531.01.2017US
Title (EN) INVOCATION PATH SECURITY IN DISTRIBUTED SYSTEMS
(FR) SÉCURITÉ DE TRAJET D'APPEL DANS DES SYSTÈMES DISTRIBUÉS
Abstract:
(EN) Systems, methods, and computer program products for an application to securely record and propagate an invocation context for invoking other applications are described. The applications being invoked not only receive a user's authentication token, but also authentication tokens of an entire invocation chain. Accordingly, the applications being invoked can verify a chain of custody through verification of nested, cryptographically signed payloads of a chain of authentication tokens. An application can thus verify identities of each application in the chain of custody, as well as the invocation contexts (e.g. the HTTP request method and path) in which each application in the chain invoked the next application.
(FR) La présente invention concerne des systèmes, des procédés et des produits programmes d'ordinateur, pour une application, pour enregistrer et propager de manière sécurisée un contexte d'appel pour appeler d'autres applications. Les applications appelées non seulement reçoivent un jeton d'authentification de l'utilisateur, mais également des jetons d'authentification d'une chaîne d'appel entière. En conséquence, les applications appelées peuvent vérifier une chaîne de contrôle par vérification de charges utiles imbriquées et signées de manière cryptographique d'une chaîne de jetons d'authentification. Une application peut ainsi vérifier les identités de chaque application dans la chaîne de contrôle, ainsi que les contextes d'appel (par exemple le procédé et le trajet de demande HTTP) dans lesquels chaque application dans la chaîne a appelé l'application suivante.
front page image
Designated States: AE, AG, AL, AM, AO, AT, AU, AZ, BA, BB, BG, BH, BN, BR, BW, BY, BZ, CA, CH, CL, CN, CO, CR, CU, CZ, DE, DJ, DK, DM, DO, DZ, EC, EE, EG, ES, FI, GB, GD, GE, GH, GM, GT, HN, HR, HU, ID, IL, IN, IR, IS, JO, JP, KE, KG, KH, KN, KP, KR, KW, KZ, LA, LC, LK, LR, LS, LU, LY, MA, MD, ME, MG, MK, MN, MW, MX, MY, MZ, NA, NG, NI, NO, NZ, OM, PA, PE, PG, PH, PL, PT, QA, RO, RS, RU, RW, SA, SC, SD, SE, SG, SK, SL, SM, ST, SV, SY, TH, TJ, TM, TN, TR, TT, TZ, UA, UG, US, UZ, VC, VN, ZA, ZM, ZW
African Regional Intellectual Property Organization (ARIPO) (BW, GH, GM, KE, LR, LS, MW, MZ, NA, RW, SD, SL, ST, SZ, TZ, UG, ZM, ZW)
Eurasian Patent Office (AM, AZ, BY, KG, KZ, RU, TJ, TM)
European Patent Office (EPO) (AL, AT, BE, BG, CH, CY, CZ, DE, DK, EE, ES, FI, FR, GB, GR, HR, HU, IE, IS, IT, LT, LU, LV, MC, MK, MT, NL, NO, PL, PT, RO, RS, SE, SI, SK, SM, TR)
African Intellectual Property Organization (BF, BJ, CF, CG, CI, CM, GA, GN, GQ, GW, KM, ML, MR, NE, SN, TD, TG)
Publication Language: English (EN)
Filing Language: English (EN)