Method and apparatus for processing administration of a secured community

Abstract

A method and apparatus for processing administration in a secure community, or communication system, is accomplished by dividing the single computing devices functionality of the administrator/officer/server into physically separate computing devices that function as a serving entity and an administrative entity. In the secure system, when an administrative entity has an administrative function to perform for one of its end-users, it requests a permissions matrix from the serving entity. The serving entity, after authenticating the administrative entity, sends the permissions matrix to the requesting administrative entity in an encoded format. The permissions matrix indicates which administrative functions the requesting administrative entity is authorized to perform for its affiliated end-users. Upon receiving the permissions matrix, the administrative entity verifies the authenticity of the permissions matrix based on the encoded format. When the authenticity of the permissions matrix is verified, the administrative entity generates an administrative request based on an administrator's input and the permissions matrix and sends it to the serving entity over a secure communication link. Upon receiving the administrative request, the serving entity verifies the identity of the administrative entity, verifies validity of the request according to the permissions matrix, and, if verified, processes the administrative requests on behalf of the particular end-user.