Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

ISAPI access control system for Session ID fully transparent transmission

An access control and transparent technology, applied in transmission systems, electrical components, etc., to solve problems such as being disabled, unable to be found by developers, and heavy modification work

Inactive Publication Date: 2008-08-20
WUHAN UNIV OF TECH +1
View PDF0 Cites 34 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0004] (1) The modification workload may be very large, and the whole body may be affected by a single move, which may involve modifying the entire system;
[0005] (2) Modification and development costs are high;
[0006] (3) The original system development documents and developers can no longer be found, and the system is very complicated;
[0008] (5) It may be necessary to suspend the service for a long time, which is not allowed in many cases
[0022] The Session ID transfer of the ISAPI filter-based access control system can either use cookies or URL rewriting. The cookie mechanism has the problem of being not completely transparent to the client and being disabled as mentioned above; using URL rewriting, that is The ISAPI access control filter intercepts the response message and rewrites the URL link pointing to the local in the response content, and there are some technical difficulties

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • ISAPI access control system for Session ID fully transparent transmission
  • ISAPI access control system for Session ID fully transparent transmission

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0106] The present invention will be described in further detail below in conjunction with the accompanying drawings and embodiments.

[0107] The overall structure of the system involved in the present invention is as figure 1 As shown, the components that constitute the access control system of the present invention are: ISAPI access control filter S11, Session maintenance engine S12, authorization decision engine S13, and identity and authority management system S14. Since the ISAPI access control filter is the core part of the present invention, its implementation will be explained emphatically. In the following description, for the sake of brevity, and without causing misunderstanding, an ellipsis ... indicates the passing parameters of the function.

[0108] 1) ISAPI access control filter

[0109] The ISAPI access control filter is an ISAPI-based filter dynamic link library (DLL). One of its implementations is written in VC++ language, extending an ISAPI implementation...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The present invention relates to ISAPI access control system with Session full transparent transfer, which can realize user Session maintenance and SessionID transfer without involving, modifying and using Cookie in Web system, and provides user identity identification and visiting control function for Web application on IIS server. It includes four components: ISAPI accessing control filter, Session maintenance engines, authorization decision engines, and identity and authority management system. The present invention resolves referred key technology problem about ISAPI visiting URL chaining adding SessionID information in control filter rewrite respond message successfully, such as transfering related information between filter call-back function, correctly modifying length indication in respond message data block, etc.

Description

technical field [0001] The invention belongs to the technical field of network information security, and is an access control system based on an ISAPI filter, which provides access control functions for Web applications deployed on IIS servers in a manner transparent to Web application systems, especially in The transparent transmission of Session ID is realized without relying on the web system (web container or web application) and without using cookies. Background technique [0002] For many Web application service systems deployed on the Internet, user authentication (Authentication) and access control (Access Control) are essential security functions. Identity authentication, that is, knowing who the other party is, confirming that the other party is the person (or entity) it claims; and access control, that is, deciding whether to allow the user to access a certain resource and perform related operations online according to the user's authority and access control polic...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
IPC IPC(8): H04L29/06H04L29/08
Inventor 龙毅宏张海松唐志红汪克炎
Owner WUHAN UNIV OF TECH
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com