(12) United States Patent ao) Patent No.: us 6,898,710 Bi
Aull (45) Date of Patent: May 24,2005
(54) SYSTEM AND METHOD FOR SECURE LEGACY ENCLAVES IN A PUBLIC KEY INFRASTRUCTURE
(75) Inventor: Kenneth W. Aull, Fairfax, VA (US)
(73) Assignee: Northop Grumman Corporation, Los
Angeles, CA (US)
( * ) Notice: Subject to any disclaimer, the term of this patent is extended or adjusted under 35 U.S.C. 154(b) by 895 days.
(21) Appl. No.: 09/730,044
(22) Filed: Dec. 5, 2000
Related U.S. Application Data
(60) Provisional application No. 60/229,336, filed on Sep. 1, 2000, and provisional application No. 60/210,521, filed on Jun. 9, 2000.
(51) Int. C I. G06F 1/24
(52) U.S. CI 713/182; 713/189; 713/200;
(58) Field of Search 713/182, 189,
(56) References Cited
U.S. PATENT DOCUMENTS
6,026,379 A * 2/2000 Haller et al 705/34
Frank P. Coyle, "Legacy Integration-Changing Perspectives", IEEE Software, Apr. 17, 2000, p. 37^11, No. 2, vol. 17.
System and method for secure legacy enclaves in a Public Key Infrastructure that includes one or more legacy servers, client platforms, directories, and a Virtual Private Network extranet gateway. The servers contain one or more legacy applications and are connected to a first network. The client plafforms are connected to a second network and contain legacy software employable by users to access the legacy applications. The directories are connected to the second network and contain information on user authorization to access the servers. The gateway is connected between the servers and the second network. The gateway requests a signature certificate of each user attempting access to a legacy application; queries the directory to confirm the user is allowed access to the server after authenticating the user; and establishes a connection between the legacy software and the legacy application if the user is allowed access to the server.
11 Claims, 3 Drawing Sheets