会员体验
专利管家(专利管理)
工作空间(专利管理)
风险监控(情报监控)
数据分析(专利分析)
侵权分析(诉讼无效)
联系我们
交流群
官方交流:
QQ群: 891211   
微信请扫码    >>>
现在联系顾问~
热词
    • 3. 发明申请
    • METHODS AND SYSTEMS FOR PROVISIONING ACCESS TO CUSTOMER ORGANIZATION DATA IN A MULTI-TENANT SYSTEM
    • 在多个系统中提供客户组织数据的方法和系统
    • US20120096521A1
    • 2012-04-19
    • US13220486
    • 2011-08-29
    • Prasad Peddada
    • Prasad Peddada
    • G06F21/24G06F17/30G06F15/16
    • H04L63/105G06F21/629H04L41/28
    • Embodiments are described for providing support representative access to applications deployed in an enterprise network environment. An access provisioning system defines a support user class in a user profile database for an application executed on an organization partition within the network. The support user is granted read only privileges to metadata of the application. An organization administrator can grant support personnel access to the application as a support user, thus the ability to view, analyze, and possibly modify the metadata. The access provisioning system generates a Security Assertion Markup Language (SAML) assertion upon request by the support personnel to enable access to the data to the extent of the granted privileges. The SAML protocol includes authentication of the support representative as an authorized support user within the system.
    • 描述了实现以提供对在企业网络环境中部署的应用的代表性访问的支持。 访问配置系统在用户简档数据库中为在网络内的组织分区上执行的应用定义支持用户类。 支持用户被授予对应用程序的元数据的只读权限。 组织管理员可以支持人员作为支持用户访问应用程序,从而能够查看,分析和可能修改元数据。 访问配置系统根据支持人员的请求生成安全断言标记语言(Security Assertion Markup Language,SAML)断言,以便在授予的权限的范围内访问数据。 SAML协议包括作为系统内的授权支持用户的支持代表的认证。
    • 4. 发明申请
    • SYSTEM AND METHOD FOR SINGLE USE TRANSACTION SIGNATURES
    • 用于单一使用交易签名的系统和方法
    • US20120089519A1
    • 2012-04-12
    • US13171212
    • 2011-06-28
    • Prasad Peddada
    • Prasad Peddada
    • H04L9/32G06Q30/00
    • H04L9/3226G06Q20/3829H04L9/3247H04L9/3297H04L2209/56
    • A system and method for providing transaction-level security, such as authentication, authorization, or non-repudiation of business-related and other transactions, using shared keys and single use transaction signatures (SUTS). In accordance with an embodiment, to utilize the system, a user registers a client device with an identity service provider (IdP). The client device can be a computing device such as a mobile phone, personal digital assistant (PDA), netbook, or other specialized computer or computing device, each of which are hereinafter generally referred to as a “client device”. The registration process typically involves setting-up a shared secret key and personal identification number (pin). Once registered, all communication between the client device and the IdP is encrypted using a key generated with some combination of the secret key, pin, and/or timestamp, over a secured channel (e.g. https). For a particular transaction, users can generate digital transaction signatures using the client device, and third-party applications or parties can verify the transaction signature by providing a transaction identifier (id) and the signature to the IdP. In accordance with various embodiments, the transaction signature comprises encoding some combination of a transaction id, shared secret key (or manipulation thereof), secret pin, timestamp, and/or transaction type, which in accordance with some embodiments can be based on message authentication code (MAC). In accordance with an embodiment, a third-party, such as a bank, can validate a transaction themselves through a special arrangement with the IdP. In these scenarios, the bank can act as a delegated IdP between the user and a merchant, protecting the user and the merchant from malicious transactions.
    • 一种用于使用共享密钥和单用途交易签名(SUTS)提供事务级别安全性的方法,例如对业务相关和其他事务的认证,授权或不可否认性。 根据实施例,为了利用该系统,用户向客户端设备注册了身份服务提供商(IdP)。 客户端设备可以是诸如移动电话,个人数字助理(PDA),上网本或其他专用计算机或计算设备的计算设备,其中以下通常称之为“客户端设备”。 注册过程通常包括设置共享密钥和个人身份号码(PIN)。 一旦注册,客户端设备和IdP之间的所有通信都使用通过安全通道(例如https)的秘密密钥,引脚和/或时间戳的某种组合产生的密钥进行加密。 对于特定交易,用户可以使用客户端设备生成数字交易签名,第三方应用程序或方可以通过向IdP提供交易标识符(id)和签名来验证交易签名。 根据各种实施例,交易签名包括编码事务id,共享秘密密钥(或其操纵),秘密引脚,时间戳和/或事务类型的某些组合,这些组合根据一些实施例可以基于消息认证 代码(MAC)。 根据实施例,诸如银行的第三方可以通过与IdP的特殊安排来自己验证交易。 在这些情况下,银行可以在用户和商家之间充当代理的IdP,从而保护用户和商户免受恶意交易。
    • 7. 发明授权
    • System and method for dynamic remote object activation
    • 用于动态远程对象激活的系统和方法
    • US07793302B2
    • 2010-09-07
    • US10372464
    • 2003-02-21
    • Prasad PeddadaAdam MessingerAnno R. Langen
    • Prasad PeddadaAdam MessingerAnno R. Langen
    • G06F9/44G06F9/54
    • G06F9/548
    • A system and a method for dynamic or as-needed activation of Remote Method Invocation (RMI) layer remote objects in response to a client request. Object activation allows the system to clean up or delete currently unused remote objects, and then reactivate them when a client actually needs them. An object implementation can first be created in response to a client request. The client receives a remote reference (remote ref) and an activation identifier (activation id) identifying that particular implementation. The implementation can subsequently be cleaned up or deleted during garbage collection so as to save server resources, or alternatively the object can be reused if the system is set up to maintain a pool of objects. When the client requests the same object at a later point in time, the system activates an object based on the activation ID previously received from the server.
    • 用于响应于客户端请求动态或按需激活远程方法调用(RMI)层远程对象的系统和方法。 对象激活允许系统清理或删除当前未使用的远程对象,然后在客户端实际需要时重新激活它们。 可以首先根据客户端请求创建对象实现。 客户端接收远程引用(远程引用)和标识该特定实现的激活标识符(激活标识符)。 随后可以在垃圾收集期间清除或删除该实现,以便节省服务器资源,或者如果系统设置为维护对象池,则可以重新使用该对象。 当客户端在稍后的时间点请求相同的对象时,系统将基于先前从服务器接收到的激活ID激活对象。
    • 8. 发明授权
    • System and method for server load balancing and server affinity
    • 用于服务器负载平衡和服务器关联的系统和方法
    • US07406692B2
    • 2008-07-29
    • US10785778
    • 2004-02-24
    • Eric M. HalpernPrasad PeddadaNaresh Revanuru
    • Eric M. HalpernPrasad PeddadaNaresh Revanuru
    • G06F9/46G06F15/16
    • G06F9/5033G06F9/505
    • A system and method for server load balancing that includes server affinity. The system can be incorporated into application servers to support load balancing algorithms for RMI objects that provide server affinity. Server affinity uses smart load balancing for external client connections in such a way that it uses preexisting connection and reduces overhead: the client considers its existing connections to the application server instances when choosing the server instance on which to access a service. If a service is configured for server affinity, the client-side stub attempts to choose a server instance to which it is already connected, and continues to use the same server instance for method calls. All stubs on that client will attempt to use that server instance. If the server instance becomes unavailable, the stubs fail over, if possible, to a server instance to which the client is already connected.
    • 用于服务器负载平衡的系统和方法,包括服务器关联性。 该系统可以并入到应用程序服务器中,以支持提供服务器关联性的RMI对象的负载平衡算法。 服务器关联使用外部客户端连接的智能负载平衡,使得它使用预先存在的连接并减少开销:当选择要访问服务的服务器实例时,客户端会考虑其与应用服务器实例的现有连接。 如果将服务配置为服务器关联性,则客户端存根尝试选择已连接的服务器实例,并继续使用相同的服务器实例进行方法调用。 该客户端上的所有存根将尝试使用该服务器实例。 如果服务器实例变得不可用,则存根可能会故障切换到客户端已连接的服务器实例。