专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明授权

US08490201B2 Protecting account security settings using strong proofs 有权
标题翻译：使用强大的证明保护帐户安全设置
公开(公告)号：US08490201B2
公开(公告)日：2013-07-16
申请号：US12748186
申请日：2010-03-26
申请人： Tarek Bahaa El-Din Mahmoud Kamel , Yordan I. Rouskov , David J. Steeves , Rammohan Nagasubramani , Pui-Yin Winfred Wong , WeiQiang Michael Guo , Vikas Rajvanshy , Orville C. McDonald , Sean Christian Wohlgemuth , Vikrant Minhas
发明人： Tarek Bahaa El-Din Mahmoud Kamel , Yordan I. Rouskov , David J. Steeves , Rammohan Nagasubramani , Pui-Yin Winfred Wong , WeiQiang Michael Guo , Vikas Rajvanshy , Orville C. McDonald , Sean Christian Wohlgemuth , Vikrant Minhas
IPC分类号： G06F7/04
CPC分类号： G06F21/34 , G06F21/45 , G06F2221/2129 , G06F2221/2131 , H04L63/20
摘要： One or more strong proofs are maintained as associated with an account of a user. In response to a request to change a security setting of the account, an attempt is made to confirm the request by using one of the one or more strong proofs to notify the user. The change is permitted if the request is confirmed via one or more of the strong proofs, and otherwise the change to the security setting of the account is kept unchanged.
摘要翻译：与用户的帐户相关联地维护一个或多个强证明。响应于更改帐户的安全设置的请求，尝试通过使用一个或多个强证明中的一个来通知用户来确认该请求。如果通过一个或多个强有力证明来确认请求，则允许进行更改，否则对帐户的安全设置的更改保持不变。

2. 发明授权

US07913084B2 Policy driven, credential delegation for single sign on and secure access to network resources 有权
标题翻译：政策驱动，凭据授权单点登录和安全访问网络资源
公开(公告)号：US07913084B2
公开(公告)日：2011-03-22
申请号：US11441588
申请日：2006-05-26
申请人： Gennady Medvinsky , Cristian Ilac , Costin Hagiu , John E. Parsons , Mohamed Emad El Din Fathalla , Paul J. Leach , Tarek Bahaa El-Din Mahmoud Kamel
发明人： Gennady Medvinsky , Cristian Ilac , Costin Hagiu , John E. Parsons , Mohamed Emad El Din Fathalla , Paul J. Leach , Tarek Bahaa El-Din Mahmoud Kamel
IPC分类号： H04L9/32
CPC分类号： H04L63/0815 , H04L9/3273 , H04L63/20 , H04L2209/80
摘要： A credential security support provider (Cred SSP) is provided that enables any application to securely delegate a user's credentials from the client, via client side Security Support Provider (SSP) software, to a target server, via server side SSP software in a networked computing environment. The Cred SSP of the invention provides a secure solution that is based in part upon a set of policies, including a default policy that is secure against a broad range of attacks, which are used to control and restrict the delegation of user credentials from a client to a server. The policies can be for any type of user credentials and the different policies are designed to mitigate a broad range of attacks so that appropriate delegation can occur for given delegation circumstances, network conditions, trust levels, etc. Additionally, only a trusted subsystem, e.g., a trusted subsystem of the Local Security Authority (LSA), has access to the clear text credentials such that neither the calling application of the Cred SSP APIs on the server side nor the calling application of the Cred SSP APIs on the client side have access to clear text credentials.
摘要翻译：提供了一种凭证安全支持提供者（Cred SSP），使任何应用程序能够通过客户端安全支持提供商（SSP）软件将客户端的凭据安全地委派给目标服务器，通过网络计算中的服务器端SSP软件环境。本发明的Cred SSP提供了一种安全解决方案，该解决方案部分地基于一组策略，包括针对广泛的攻击的安全性的默认策略，其用于控制和限制从客户机委派用户凭证到服务器。这些策略可以用于任何类型的用户凭证，并且不同的策略被设计为减轻广泛的攻击，从而可以针对给定的授权情况，网络条件，信任级别等进行适当的委托。此外，只有可信的子系统，例如，本地安全机构（LSA）的受信任的子系统可以访问明文凭据，使得服务器端的Cred SSP API的呼叫应用程序和客户端的Cred SSP API的呼叫应用都不具有访问权清除文本凭据。

3. 发明申请

US20110214173A1 PROTECTING ACCOUNT SECURITY SETTINGS USING STRONG PROOFS 有权
标题翻译：使用强大的PROOFS保护帐户安全设置
公开(公告)号：US20110214173A1
公开(公告)日：2011-09-01
申请号：US12748186
申请日：2010-03-26
申请人： Tarek Bahaa El-Din Mahmoud Kamel , Yordan I. Rouskov , David J. Steeves , Rammohan Nagasubramani , Pui-Yin Winfred Wong , WeiQiang Michael Guo , Vikas Rajvanshy , Orville C. McDonald , Sean Christian Wohlgemuth
发明人： Tarek Bahaa El-Din Mahmoud Kamel , Yordan I. Rouskov , David J. Steeves , Rammohan Nagasubramani , Pui-Yin Winfred Wong , WeiQiang Michael Guo , Vikas Rajvanshy , Orville C. McDonald , Sean Christian Wohlgemuth
IPC分类号： G06F15/16 , G06F17/30
CPC分类号： G06F21/34 , G06F21/45 , G06F2221/2129 , G06F2221/2131 , H04L63/20
摘要： One or more strong proofs are maintained as associated with an account of a user. In response to a request to change a security setting of the account, an attempt is made to confirm the request by using one of the one or more strong proofs to notify the user. The change is permitted if the request is confirmed via one or more of the strong proofs, and otherwise the change to the security setting of the account is kept unchanged.
摘要翻译：与用户的帐户相关联地维护一个或多个强证明。响应于更改帐户的安全设置的请求，尝试通过使用一个或多个强证明中的一个来通知用户来确认该请求。如果通过一个或多个强有力证明来确认请求，则允许进行更改，否则对帐户的安全设置的更改保持不变。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式