Browse Prior Art Database

System and Method to Improve the Implementation of the Open Authorization Standard in a Server

IP.com Disclosure Number: IPCOM000222838D
Publication Date: 2012-Oct-24
Document File: 3 page(s) / 155K

Publishing Venue

The IP.com Prior Art Database

Abstract

As method to implement the Open Authorization (OAuth) standard in a server such that the token persistence is guaranteed and latency issues are addressed.

This text was extracted from a PDF file.
This is the abbreviated version, containing approximately 52% of the total text.

Page 01 of 3

System and Method to Improve the Implementation of the Open Authorization Standard in a Server

Open Authorization (OAuth) is an open standard in the Internet Engineering Task Force (IETF) that provides a simple way to publish and interact with protected data and provides a safer and more secure way to allow people to give access to their data. It allows users to share their private resources such as photos, videos, contact lists, etc. that are stored on one site with another site without the need to providing a User ID and password. The OAuth standard outlines the notion of persisting Authorization, but does not cover the details on how to implement persistence.

A server, such as a Java* Enterprise Edition (JEE) application server may implement the OAuth standard. JEE servers today can utilize these capabilities in order to facilitate implementation of the OAuth standard:

1. A dynamic cache can be used to facilitate high performance in-memory and distributed data access

2. The dynamic cache may provide the option to flush cache data to disk upon server stop

3. The dynamic cache might not guarantee to deliver to other servers if the original server goes down prior to delivery. In addition, it might not guarantee the data is available to other servers immediately in a distributed server environment (i.e., there is a latency).

4. Using persistent data storage such as database or file without any in-memory cache has performance issue due to repeating Input/Output (I/O) access

In order to prope...