专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明申请

US20080014931A1 Distributed Network Identity 有权
标题翻译：分布式网络身份
公开(公告)号：US20080014931A1
公开(公告)日：2008-01-17
申请号：US11864513
申请日：2007-09-28
申请人： Peter Yared , Gary Ellison , Mark Hapner , Larry Abrahams , Sheldon Finkelstein , Hal Stern , John Beatty , Aravindan Ranganathan , Sai Allavarpu
发明人： Peter Yared , Gary Ellison , Mark Hapner , Larry Abrahams , Sheldon Finkelstein , Hal Stern , John Beatty , Aravindan Ranganathan , Sai Allavarpu
IPC分类号： H04Q7/20
CPC分类号： H04L63/0807 , G06F21/41 , H04L29/12122 , H04L61/1547 , H04L63/0815 , H04L63/102 , H04L63/105 , H04L67/02
摘要： A distributed network identity is provided. An identity provider stores a portion of a user's personal information. A service provider accesses user information from one or more identity providers. System entities such as identity providers and service providers can be linked to enable information sharing and aggregation. User policies and privacy preferences are provided to control how information is shared. A single sign-on architecture is provided where an identity provider is used to facilitate cross-domain authentication and to enhance user convenience. Service delegation features are also provided.
摘要翻译：提供分布式网络身份。身份提供者存储用户个人信息的一部分。服务提供商从一个或多个身份提供者访问用户信息。系统实体（如身份提供商和服务提供商）可以链接，以实现信息共享和聚合。提供用户策略和隐私偏好以控制如何共享信息。提供单一登录架构，其中使用身份提供商来促进跨域认证并增强用户便利性。还提供了服务委托功能。

2. 发明授权

US08037194B2 Distributed network identity 有权
标题翻译：分布式网络身份
公开(公告)号：US08037194B2
公开(公告)日：2011-10-11
申请号：US11864537
申请日：2007-09-28
申请人： Peter Yared , Gary Ellison , Mark Hapner , Larry Abrahams , Sheldon J. Finkelstein , Hal Stern , John D. Beatty , Aravindan Ranganathan , Sai Allavarpu
发明人： Peter Yared , Gary Ellison , Mark Hapner , Larry Abrahams , Sheldon J. Finkelstein , Hal Stern , John D. Beatty , Aravindan Ranganathan , Sai Allavarpu
IPC分类号： G06F15/16
CPC分类号： H04L63/0807 , G06F21/41 , H04L29/12122 , H04L61/1547 , H04L63/0815 , H04L63/102 , H04L63/105 , H04L67/02
摘要： A distributed network identity is provided. An identity provider stores a portion of a user's personal information. A service provider accesses user information from one or more identity providers. System entities such as identity providers and service providers can be linked to enable information sharing and aggregation. User policies and privacy preferences are provided to control how information is shared. A single sign-on architecture is provided where an identity provider is used to facilitate cross-domain authentication and to enhance user convenience. Service delegation features are also provided.
摘要翻译：提供分布式网络身份。身份提供者存储用户个人信息的一部分。服务提供商从一个或多个身份提供者访问用户信息。系统实体（如身份提供商和服务提供商）可以链接，以实现信息共享和聚合。提供用户策略和隐私偏好以控制如何共享信息。提供单一登录架构，其中使用身份提供商来促进跨域认证并增强用户便利性。还提供了服务委托功能。

3. 发明授权

US07237256B2 Method and system for providing an open and interoperable system 有权
标题翻译：提供开放和可互操作的系统的方法和系统
公开(公告)号：US07237256B2
公开(公告)日：2007-06-26
申请号：US10619657
申请日：2003-07-14
申请人： Qingwen Cheng , Bhavna Bhatnagar , Hong Xu , Wei Sun , Ping Luo , Shivaram Bhat , Aravindan Ranganathan
发明人： Qingwen Cheng , Bhavna Bhatnagar , Hong Xu , Wei Sun , Ping Luo , Shivaram Bhat , Aravindan Ranganathan
IPC分类号： H04L9/32
CPC分类号： H04L63/0815
摘要： Embodiments of the present invention provide an open and interoperable single sign-on session in a heterogeneous communication network. The open and interoperable single sign-on system is configured by exchanging an entity identifier, an account mapping, an attribute mapping, a site attribute list, an action mapping and/or the like. The entity identifier, account mapping, attribute mapping, site attribute list, action mapping and the like for each partner entity is stored in a partner list accessable to the particular entity. Thereafter, the open and interoperable single sign-on session may be provided upon receipt of a SAML request or assertion containing an entity identifier. The entity identifier contained in the SAML request or assertion is looked-up in the partner list of the particular entity which received the SAML request or assertion. A record containing a matching entity identifier provides the applicable account mapping, attribute mapping, site attribute list, and/or action mapping. The one or more mappings are then utilized to process the SAML request or assertion.
摘要翻译：本发明的实施例提供了在异构通信网络中的开放和可互操作的单点登录会话。通过交换实体标识符，帐号映射，属性映射，站点属性列表，动作映射等来配置开放和可互操作的单点登录系统。每个伙伴实体的实体标识符，帐户映射，属性映射，站点属性列表，操作映射等存储在可访问特定实体的合作伙伴列表中。此后，可以在接收到包含实体标识符的SAML请求或断言时提供开放和可互操作的单点登录会话。包含在SAML请求或断言中的实体标识符在接收到SAML请求或断言的特定实体的合作伙伴列表中查找。包含匹配实体标识符的记录提供适用的帐户映射，属性映射，站点属性列表和/或动作映射。然后利用一个或多个映射来处理SAML请求或断言。

4. 发明授权

US07032014B2 Service management system for configuration information 有权
公开(公告)号：US07032014B2
公开(公告)日：2006-04-18
申请号：US10053986
申请日：2002-01-18
申请人： Pirasenna Velandi Thiyagarajan , Aravindan Ranganathan , Mrudil P. Uchil , Deepa Mahendraker
发明人： Pirasenna Velandi Thiyagarajan , Aravindan Ranganathan , Mrudil P. Uchil , Deepa Mahendraker
IPC分类号： G06F15/177
CPC分类号： H04L41/22 , H04L41/0869 , H04L41/0893 , H04L41/509 , H04L41/5093
摘要： A method for system management of configuration data used by server or groups of servers. In one embodiment, the present invention is comprised of providing information relative to components of the system being managed. A common language is utilized to express the information. An interface is provided to enable inputting of said information. The interface also enables management of the inputted information. In one embodiment, the information is validated during inputting. The validation of inputted information ensures that the information inputted is compliant with a schema of the information. In one embodiment, the information is comprised of defined tasks that are performed by the components of the system. The information is further comprised of specified configurations relative to the defined tasks. The information further comprises a declared schema for representing the information.

5. 发明授权

US07849204B2 Distributed network identity 有权
标题翻译：分布式网络身份
公开(公告)号：US07849204B2
公开(公告)日：2010-12-07
申请号：US11864513
申请日：2007-09-28
申请人： Peter Yared , Gary Ellison , Mark Hapner , Larry Abrahams , Sheldon J. Finkelstein , Hal Stern , John D. Beatty , Aravindan Ranganathan , Sai Allavarpu
发明人： Peter Yared , Gary Ellison , Mark Hapner , Larry Abrahams , Sheldon J. Finkelstein , Hal Stern , John D. Beatty , Aravindan Ranganathan , Sai Allavarpu
IPC分类号： G06F15/16
CPC分类号： H04L63/0807 , G06F21/41 , H04L29/12122 , H04L61/1547 , H04L63/0815 , H04L63/102 , H04L63/105 , H04L67/02
摘要： A distributed network identity is provided. An identity provider stores a portion of a user's personal information. A service provider accesses user information from one or more identity providers. System entities such as identity providers and service providers can be linked to enable information sharing and aggregation. User policies and privacy preferences are provided to control how information is shared. A single sign-on architecture is provided where an identity provider is used to facilitate cross-domain authentication and to enhance user convenience. Service delegation features are also provided.
摘要翻译：提供分布式网络身份。身份提供者存储用户个人信息的一部分。服务提供商从一个或多个身份提供者访问用户信息。系统实体（如身份提供商和服务提供商）可以链接，以实现信息共享和聚合。提供用户策略和隐私偏好以控制如何共享信息。提供单一登录架构，其中使用身份提供商来促进跨域认证并增强用户便利性。还提供了服务委托功能。

6. 发明授权

US07716469B2 Method and system for providing a circle of trust on a network 有权
标题翻译：在网络上提供信任圈的方法和系统
公开(公告)号：US07716469B2
公开(公告)日：2010-05-11
申请号：US10627019
申请日：2003-07-25
申请人： Bhavna Bhatnagar , Ping Luo , Qingwen Cheng , Shivaram Bhat , Hong Xu , Wei Sun , Aravindan Ranganathan
发明人： Bhavna Bhatnagar , Ping Luo , Qingwen Cheng , Shivaram Bhat , Hong Xu , Wei Sun , Aravindan Ranganathan
IPC分类号： H04L29/06 , H04L9/32 , G06F7/04
CPC分类号： H04L63/0815 , H04L9/3263 , H04L63/0823
摘要： Embodiments of the present invention provide a circle of trust on a network. The circle of trust is configured by exchanging credential of a first and a second affiliated entity. The credentials of the first affiliated entity is stored in a trusted partner list of the second affiliated entity. The credentials of the second affiliated entity is stored in a trusted partner list of the first affiliated entity. Thereafter, a circle of trust session may be provided when a client device initiates use of a resource on a relying party device by providing an authentication assertion reference. The identity of the issuing party of the authentication is determined as a function of the authentication assertion reference. The relying party sends an authentication query containing its credential to the issuing party. The issuing party determines if the relying party is a trusted entity based upon whether the relying party's credential is contained in the trusted partner list of the issuing party.
摘要翻译：本发明的实施例提供了一种网络上的信任圈。通过交换第一个和第二个附属实体的凭证来配置信任圈。第一个关联实体的凭证存储在第二个关联实体的可信合作伙伴列表中。第二个关联实体的凭证存储在第一个关联实体的可信赖的合作伙伴列表中。此后，当客户端设备通过提供认证断言引用来在依赖方设备上启动资源的使用时，可以提供一个信任圈。认证的发行方的身份被确定为认证断言参考的函数。依赖方向发卡方发送包含其凭据的认证查询。发行方基于信任方的凭证是否包含在发行方的受信任的合作伙伴列表中来确定依赖方是否是可信赖的实体。

7. 发明授权

US07610390B2 Distributed network identity 有权
标题翻译：分布式网络身份
公开(公告)号：US07610390B2
公开(公告)日：2009-10-27
申请号：US10309773
申请日：2002-12-03
申请人： Peter Yared , Gary Ellison , Mark Hapner , Larry Abrahams , Sheldon J. Finkelstein , Hal Stern , John D. Beatty , Aravindan Ranganathan , Sai Allavarpu
发明人： Peter Yared , Gary Ellison , Mark Hapner , Larry Abrahams , Sheldon J. Finkelstein , Hal Stern , John D. Beatty , Aravindan Ranganathan , Sai Allavarpu
IPC分类号： G06F15/16
CPC分类号： H04L63/0807 , G06F21/41 , H04L29/12122 , H04L61/1547 , H04L63/0815 , H04L63/102 , H04L63/105 , H04L67/02
摘要： A distributed network identity is provided. An identity provider stores a portion of a user's personal information. A service provider accesses user information from one or more identity providers. System entities such as identity providers and service providers can be linked to enable information sharing and aggregation. User policies and privacy preferences are provided to control how information is shared. A single sign-on architecture is provided where an identity provider is used to facilitate cross-domain authentication and to enhance user convenience. Service delegation features are also provided.
摘要翻译：提供分布式网络身份。身份提供者存储用户个人信息的一部分。服务提供商从一个或多个身份提供者访问用户信息。系统实体（如身份提供商和服务提供商）可以链接，以实现信息共享和聚合。提供用户策略和隐私偏好以控制如何共享信息。提供单一登录架构，其中使用身份提供商来促进跨域认证并增强用户便利性。还提供了服务委托功能。

8. 发明申请

US20080016232A1 Distributed Network Identity 有权
公开(公告)号：US20080016232A1
公开(公告)日：2008-01-17
申请号：US11864537
申请日：2007-09-28
申请人： Peter Yared , Gary Ellison , Mark Hapner , Larry Abrahams , Sheldon Finkelstein , Hal Stern , John Beatty , Aravindan Ranganathan , Sai Allavarpu
发明人： Peter Yared , Gary Ellison , Mark Hapner , Larry Abrahams , Sheldon Finkelstein , Hal Stern , John Beatty , Aravindan Ranganathan , Sai Allavarpu
IPC分类号： G06F15/16
CPC分类号： H04L63/0807 , G06F21/41 , H04L29/12122 , H04L61/1547 , H04L63/0815 , H04L63/102 , H04L63/105 , H04L67/02
摘要： A distributed network identity is provided. An identity provider stores a portion of a user's personal information. A service provider accesses user information from one or more identity providers. System entities such as identity providers and service providers can be linked to enable information sharing and aggregation. User policies and privacy preferences are provided to control how information is shared. A single sign-on architecture is provided where an identity provider is used to facilitate cross-domain authentication and to enhance user convenience. Service delegation features are also provided.

9. 发明申请

US20050240763A9 Web based applications single sign on system and method 审中-公开
标题翻译：基于Web的应用程序单点登录系统和方法
公开(公告)号：US20050240763A9
公开(公告)日：2005-10-27
申请号：US10128415
申请日：2002-04-22
申请人： Shivaram Bhat , Aravindan Ranganathan , Sai Allavarpu
发明人： Shivaram Bhat , Aravindan Ranganathan , Sai Allavarpu
IPC分类号： H04L29/06 , H04L9/32
CPC分类号： H04L63/0815
摘要： In an enterprise server system having a server, a web-base applications single sign-on method and system. The single sign-on system includes logic for assigning and retrieving uniquely identifying tokens that are assigned to a user attempting to access one of many applications in the server. The token is assigned after the user has successfully logged into the server. The assigned token enables the user to access different applications in the server without having to authenticate every time the user goes from one application to the other. In one embodiment of the present invention, the single sign-on system includes a token that provides a listening mechanism for the applications that need to be notified when a token expires in order to deny access to the particular user identified with the expired token.
摘要翻译：在具有服务器，基于Web的应用程序单点登录方法和系统的企业服务器系统中。单点登录系统包括用于分配和检索分配给尝试访问服务器中的许多应用程序之一的用户的唯一标识令牌的逻辑。在用户成功登录到服务器之后，会分配令牌。分配的令牌使用户能够访问服务器中的不同应用程序，而无需每次用户从一个应用程序到另一个应用程序进行身份验证。在本发明的一个实施例中，单点登录系统包括令牌，该令牌为令牌期满时需要被通知的应用提供侦听机制，以便拒绝访问由过期令牌识别的特定用户。

10. 发明申请

US20050015593A1 Method and system for providing an open and interoperable system 有权
标题翻译：提供开放和可互操作的系统的方法和系统
公开(公告)号：US20050015593A1
公开(公告)日：2005-01-20
申请号：US10619657
申请日：2003-07-14
申请人： Qingwen Cheng , Bhavna Bhatnagar , Hong Xu , Wei Sun , Ping Luo , Shivaram Bhat , Aravindan Ranganathan
发明人： Qingwen Cheng , Bhavna Bhatnagar , Hong Xu , Wei Sun , Ping Luo , Shivaram Bhat , Aravindan Ranganathan
IPC分类号： H04L9/00 , H04L29/06
CPC分类号： H04L63/0815
摘要： Embodiments of the present invention provide an open and interoperable single sign-on session in a heterogeneous communication network. The open and interoperable single sign-on system is configured by exchanging an entity identifier, an account mapping, an attribute mapping, a site attribute list, an action mapping and/or the like. The entity identifier, account mapping, attribute mapping, site attribute list, action mapping and the like for each partner entity is stored in a partner list accessable to the particular entity. Thereafter, the open and interoperable single sign-on session may be provided upon receipt of a SAML request or assertion containing an entity identifier. The entity identifier contained in the SAML request or assertion is looked-up in the partner list of the particular entity which received the SAML request or assertion. A record containing a matching entity identifier provides the applicable account mapping, attribute mapping, site attribute list, and/or action mapping. The one or more mappings are then utilized to process the SAML request or assertion.
摘要翻译：本发明的实施例提供了在异构通信网络中的开放和可互操作的单点登录会话。通过交换实体标识符，帐户映射，属性映射，站点属性列表，动作映射等来配置开放和可互操作的单点登录系统。每个伙伴实体的实体标识符，帐户映射，属性映射，站点属性列表，操作映射等存储在可访问特定实体的合作伙伴列表中。此后，可以在接收到包含实体标识符的SAML请求或断言时提供开放和可互操作的单点登录会话。包含在SAML请求或断言中的实体标识符在接收到SAML请求或断言的特定实体的合作伙伴列表中查找。包含匹配实体标识符的记录提供适用的帐户映射，属性映射，站点属性列表和/或动作映射。然后利用一个或多个映射来处理SAML请求或断言。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式