专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明申请

US20050289536A1 Automated deployment of an application 审中-公开
标题翻译：自动部署应用程序
公开(公告)号：US20050289536A1
公开(公告)日：2005-12-29
申请号：US10874495
申请日：2004-06-23
申请人： Ranjit Nayak , Sridhar Sudarsan , Vishwanath Venkataramappa , Qinhua Wang , Leigh Williamson
发明人： Ranjit Nayak , Sridhar Sudarsan , Vishwanath Venkataramappa , Qinhua Wang , Leigh Williamson
IPC分类号： G06F9/44 , G06F9/445
CPC分类号： G06F8/61
摘要： Methods, systems, and media to automatically deploy an, e.g., a JS2EE file between environments are disclosed. Embodiments include hardware and/or software for selecting one or more applications in an original system for export. The applications along with their corresponding application data, configuration data, and descriptor files, are compressed into one or more archive files such as Enterprise Archives (EARs). Variable configuration data associated with the target environment is identified so the values of the variable configuration data can be adapted for the target environment. Then, the target environment is adapted for installation of the application and the application is installed in the target environment. Advantageously, this deployment of the application may reduce the chance of user error, require less J2EE knowledge and script maintenance, and complete faster than deployments effected manually.
摘要翻译：公开了在环境之间自动部署例如JS2EE文件的方法，系统和媒体。实施例包括用于选择用于输出的原始系统中的一个或多个应用的硬件和/或软件。应用程序及其相应的应用程序数据，配置数据和描述符文件被压缩成一个或多个存档文件，例如企业档案（EAR）。识别与目标环境相关联的可变配置数据，从而可以针对目标环境调整可变配置数据的值。然后，目标环境适用于安装应用程序，应用程序安装在目标环境中。有利地，应用程序的这种部署可能减少用户错误的机会，需要较少的J2EE知识和脚本维护，并且比手动实现的部署更快地完成。

2. 发明申请

US20060123016A1 Metadata driven method and apparatus to configure heterogenous distributed systems 审中-公开
标题翻译：配置异构分布式系统的元数据驱动方法和装置
公开(公告)号：US20060123016A1
公开(公告)日：2006-06-08
申请号：US11002696
申请日：2004-12-02
申请人： Rohith Ashok , Michael Cheng , Vishwanath Venkataramappa , Qinhua Wang
发明人： Rohith Ashok , Michael Cheng , Vishwanath Venkataramappa , Qinhua Wang
IPC分类号： G06F7/00
CPC分类号： H04L41/0803 , G06F16/256 , H04L41/0869 , H04L41/0893
摘要： A meta-data driven method and apparatus to manage configurations of coexisting heterogeneous subsystems. The present invention recognizes that schemas evolve incrementally from version to version. In a preferred embodiment, the present invention employs two stages: an identification specification stage, to identify and/or specify any changes in a heterogeneous distributed system, and a configuration validation stage, to implement and/or validate the changes thus identified or specified. In the first stage, the identification specification stage, the present invention programmably compares the next version of the schema from its previous version. This allows meta-data to be created that describes how a schema component evolves from version to version. In addition, a user may specify what appears in the schema. In the second stage, the configuration validation stage, the meta-data created in the first stage can be used to determine whether a particular component version of the subsystem is valid for a particular schema component, and vice versa, and/or to configure the subsystem to conform to the schema.
摘要翻译：一种用于管理并存异构子系统配置的元数据驱动方法和装置。本发明认识到，模式从版本到版本逐渐发展。在优选实施例中，本发明采用两个阶段：标识规范阶段，用于识别和/或指定异构分布式系统中的任何变化以及配置验证阶段，以实现和/或验证由此识别或指定的变化。在第一阶段中，识别规范阶段，本发明可编程地比较其先前版本的下一版本的模式。这允许创建描述模式组件从版本到版本的元数据。此外，用户可以指定模式中显示的内容。在第二阶段，配置验证阶段，在第一阶段创建的元数据可用于确定子系统的特定组件版本是否对特定模式组件有效，反之亦然，和/或配置子系统符合模式。

3. 发明申请

US20050132220A1 Fine-grained authorization by authorization table associated with a resource 有权
标题翻译：与资源关联的授权表进行细粒度授权
公开(公告)号：US20050132220A1
公开(公告)日：2005-06-16
申请号：US10732628
申请日：2003-12-10
申请人： David Chang , Vishwanath Venkataramappa , Leigh Williamson
发明人： David Chang , Vishwanath Venkataramappa , Leigh Williamson
IPC分类号： G06F21/00 , H04L9/00 , H04L29/06
CPC分类号： H04L63/101 , G06F21/6218
摘要： Methods, systems, and media are disclosed for determining access rights to a resource managed by an application. One embodiment includes receiving a request by the application, wherein the request comprises an action a user seeks to perform on the resource. Further, the embodiment includes locating, based on the request, the resource in a structure having groupings of resources, wherein the groupings include a grouping having the resource. Typically the groupings comprise files having mappings of resources to assigned groups, and each group has an associated authorization table mapping roles or policies to users. Further still, the embodiment includes reading an authorization table associated with the grouping having the resource, and determining whether to grant the access rights for performing the action on the resource.
摘要翻译：公开了用于确定对由应用程序管理的资源的访问权限的方法，系统和媒体。一个实施例包括接收应用的请求，其中所述请求包括用户寻求对资源执行的动作。此外，实施例包括基于请求定位具有资源分组的结构中的资源，其中分组包括具有资源的分组。通常，分组包括具有分配组的资源映射的文件，并且每个组具有将角色或策略映射到用户的相关联的授权表。此外，实施例包括读取与具有资源的分组相关联的授权表，以及确定是否授予对资源执行动作的访问权限。

4. 发明申请

US20050132054A1 Fine-grained authorization by traversing generational relationships 审中-公开
标题翻译：遍历代际关系的细粒度授权
公开(公告)号：US20050132054A1
公开(公告)日：2005-06-16
申请号：US10732627
申请日：2003-12-10
申请人： David Chang , Vishwanath Venkataramappa , Leigh Williamson
发明人： David Chang , Vishwanath Venkataramappa , Leigh Williamson
IPC分类号： G06F15/16 , G06F21/00
CPC分类号： G06F21/6218
摘要： Methods, systems, and media are disclosed for determining access rights to a resource managed by an application. One embodiment includes receiving a request by the application, wherein the request comprises an action a user seeks to perform on the resource, and locating, based on the request, the resource in both a containment relationship graph and in a structure having groupings of resources, wherein the groupings comprise a grouping having the resource. Further, the embodiment includes traversing a vertex of the containment relationship graph, wherein the vertex comprises a generational resource of the resource, and reading an authorization table associated with a grouping having the generational resource in the groupings. Further still, the embodiment includes determining whether to grant the access rights for performing the action on the resource.
摘要翻译：公开了用于确定对由应用程序管理的资源的访问权限的方法，系统和媒体。一个实施例包括接收应用的请求，其中所述请求包括用户在资源上执行的动作，以及基于请求，在包含关系图和具有资源分组的结构中定位资源，其中所述分组包括具有所述资源的分组。此外，实施例包括遍历包容关系图的顶点，其中顶点包括资源的代数资源，以及读取与分组中具有代数资源的分组相关联的授权表。此外，该实施例还包括确定是否授予对资源执行动作的访问权限。

5. 发明申请

US20050131994A1 Fine-grained authorization using mbeans 失效
标题翻译：使用mbeans的细粒度授权
公开(公告)号：US20050131994A1
公开(公告)日：2005-06-16
申请号：US10732756
申请日：2003-12-10
申请人： David Chang , Vishwanath Venkataramappa , Leigh Williamson
发明人： David Chang , Vishwanath Venkataramappa , Leigh Williamson
IPC分类号： G06F15/16 , G06F21/00 , H04L29/06
CPC分类号： G06F21/6218 , G06F21/6209 , H04L63/0227 , H04L63/083 , H04L63/10 , Y10S707/99943
摘要： Methods, systems, and media are disclosed for managing a resource managed by a mbean server having an mbean. One embodiment includes receiving a request by the application, wherein the request constitutes an action a user seeks to perform on the resource, and adding a number of instance identifier fields to an mbean descriptor file associated with the mbean. Further, the embodiment includes populating the number of instance identifier fields with an equivalent number of properties from an objectname of the resource, thereby producing a populated mbean descriptor file that identifies the resource among resources. Further still, the embodiment includes reading the mbean descriptor file after the populating, and determining, based on the reading, whether the user has an authority to perform the request. If authority exists, then an mbean method performs the action on the resource, and filters the obtained results to coincide with the user's authority.
摘要翻译：公开了用于管理由具有mbean的mbean服务器管理的资源的方法，系统和媒体。一个实施例包括接收应用程序的请求，其中该请求构成用户寻求对该资源执行的动作，并将多个实例标识符字段添加到与该mbean相关联的mbean描述符文件。此外，该实施例包括从资源的对象名称填充具有等效数量的属性的实例标识符字段的数量，由此产生在资源之间标识资源的填充的mbean描述符文件。此外，实施例包括在填充之后读取mbean描述符文件，并且基于读取来确定用户是否具有执行请求的权限。如果权限存在，则mbean方法对资源执行操作，并对获取的结果进行过滤，以符合用户权限。

6. 发明授权

US08290163B2 Automatic wireless network password update 失效
标题翻译：自动无线网络密码更新
公开(公告)号：US08290163B2
公开(公告)日：2012-10-16
申请号：US12049294
申请日：2008-03-15
申请人： David Yu Chang , John Yow-Chun Chang , Vishwanath Venkataramappa
发明人： David Yu Chang , John Yow-Chun Chang , Vishwanath Venkataramappa
IPC分类号： H04L29/06
CPC分类号： H04L63/0846 , H04L63/0428 , H04W12/02 , H04W12/06
摘要： An approach is provided that allows an administrator to set a new password at a wireless access point, such as a traditional WAP or a wireless router. The wireless access point creates a message that includes the new password. The message is encrypted using the old password that was previously set for the wireless network. The encrypted message is wirelessly transmitted from the wireless access point to the active client devices (those clients currently accessing the wireless network). The clients decrypt the message using the old password that was previously provided to the clients. The clients retrieve the new password from the message. The clients construct a new message that is encrypted using the new password. The new message is wirelessly transmitted from the clients to the wireless access device and serves as an acknowledgement.
摘要翻译：提供了一种允许管理员在无线接入点（例如传统WAP或无线路由器）设置新密码的方法。无线接入点创建一个包含新密码的消息。该消息是使用之前为无线网络设置的旧密码加密的。加密的消息从无线接入点无线地发送到活动客户端设备（当前正在接入无线网络的那些客户端）。客户端使用之前提供给客户端的旧密码解密邮件。客户端从邮件中检索新密码。客户端构造使用新密码加密的新消息。新消息从客户端无线传输到无线接入设备，并作为确认。

7. 发明申请

US20050005090A1 Method and system for dynamic client authentication in support of JAAS programming model 失效
标题翻译：支持JAAS编程模型的动态客户端认证的方法和系统
公开(公告)号：US20050005090A1
公开(公告)日：2005-01-06
申请号：US10611022
申请日：2003-07-01
申请人： Vishwanath Venkataramappa , Shyamala Vishwanath
发明人： Vishwanath Venkataramappa , Shyamala Vishwanath
IPC分类号： H04L9/00
CPC分类号： G06F21/31 , G06F9/468 , G06F21/335 , G06F2221/2149
摘要： Authentication operations are performed within a CORBA-compliant environment with client applications using the JAAS programming model. A client application obtains an interoperable object reference (IOR) for a target object on a remote server that is protected within a security domain. After the client application invokes the target object, an object request is generated, and a request-level interceptor obtains the IOR for the target object and extracts an identifier for the security domain from the IOR. If a credential for the security domain is not in the current execution context of the client application, i.e., the current JAAS subject in the JAAS programming model, then the request-level interceptor performs an authentication operation with the security domain on behalf of the client application, receives an authentication credential, and places the authentication credential into the execution context of the client application. The object request is further processed in association with the obtained credential.
摘要翻译：使用JAAS编程模型的客户端应用程序在符合CORBA的环境中执行身份验证操作。客户端应用程序获取在安全域内受保护的远程服务器上的目标对象的可互操作对象引用（IOR）。客户端应用程序调用目标对象后，生成对象请求，请求级拦截器获取目标对象的IOR，并从IOR中提取安全域的标识符。如果安全域的凭证不在客户端应用程序的当前执行上下文中，即JAAS编程模型中的当前JAAS主题，则请求级拦截器代表客户机与安全域执行身份验证操作应用程序，接收认证凭证，并将认证凭证放入客户端应用程序的执行上下文中。与所获得的证书相关联地进一步处理对象请求。

8. 发明申请

US20130007845A1 Authentication and authorization methods for cloud computing security platform 有权
标题翻译：云计算安全平台的认证和授权方法
公开(公告)号：US20130007845A1
公开(公告)日：2013-01-03
申请号：US13173563
申请日：2011-06-30
申请人： David Yu Chang , Messaoud Benantar , John Yow-Chun Chang , Vishwanath Venkataramappa
发明人： David Yu Chang , Messaoud Benantar , John Yow-Chun Chang , Vishwanath Venkataramappa
IPC分类号： G06F17/30
CPC分类号： H04L63/104 , G06F21/62 , G06F21/6218 , G06F21/78 , G06F2221/2115 , H04L63/08 , H04L63/0815 , H04L67/10 , H04L67/34 , H04L67/42
摘要： An authentication and authorization plug-in model for a cloud computing environment enables cloud customers to retain control over their enterprise information when their applications are deployed in the cloud. The cloud service provider provides a pluggable interface for customer security modules. When a customer deploys an application, the cloud environment administrator allocates a resource group (e.g., processors, storage, and memory) for the customer's application and data. The customer registers its own authentication and authorization security module with the cloud security service, and that security module is then used to control what persons or entities can access information associated with the deployed application. The cloud environment administrator, however, typically is not registered (as a permitted user) within the customer's security module; thus, the cloud environment administrator is not able to access (or release to others, or to the cloud's general resource pool) the resources assigned to the cloud customer (even though the administrator itself assigned those resources) or the associated business information. To further balance the rights of the various parties, a third party notary service protects the privacy and the access right of the customer when its application and information are deployed in the cloud.
摘要翻译：云计算环境的认证和授权插件模型使云客户在将应用程序部署在云中时能够保留对其企业信息的控制。云服务提供商为客户安全模块提供可插拔的界面。当客户部署应用程序时，云环境管理员为客户的应用程序和数据分配资源组（例如，处理器，存储和内存）。客户将其自己的认证和授权安全模块注册到云安全服务，然后该安全模块用于控制哪些人员或实体可以访问与部署的应用程序相关的信息。然而，云环境管理员通常没有在客户的安全模块中注册（作为允许的用户）; 因此，云环境管理员无法访问（或向其他人或云的一般资源池）访问分配给云客户的资源（即使管理员自己分配了这些资源）或相关联的业务信息。为了进一步平衡各方的权利，第三方公证服务在将应用程序和信息部署在云中时保护客户的隐私和访问权限。

9. 发明授权

US08301910B2 Intelligent, export/import restriction-compliant portable computer device 失效
标题翻译：智能，导出/导入限制兼容便携式计算机设备
公开(公告)号：US08301910B2
公开(公告)日：2012-10-30
申请号：US10755829
申请日：2004-01-12
申请人： Bhargav V. Perepa , Sujatha Perepa , Vishwanath Venkataramappa
发明人： Bhargav V. Perepa , Sujatha Perepa , Vishwanath Venkataramappa
IPC分类号： G06F21/00 , G06F11/30 , G06F12/14
CPC分类号： G06F21/12 , G06F21/10 , G06F21/62 , G06F21/6218 , G06F2221/2111
摘要： A method and system that enables cross-border compliance with export restrictions of particular computer technology, including software loaded on a computing device. The computing device is loaded with software, and has a country location device, such as a low-end GPS device. The country location device (country locator) stores the present geographic location of the device in a location register. When the computing device is turned on or the software is activated for operation on the computing device, a security utility of the software compares the value in the register against a list of pre-established locations that are export-restricted. When the value matches (or falls within a range) of one of pre-established locations, the features of the software that are export restricted are automatically disabled.
摘要翻译：一种方法和系统，使得跨境符合特定计算机技术的出口限制，包括计算设备上加载的软件。计算机装载有软件，并具有国家定位装置，如低端GPS装置。国家位置设备（国家定位器）将设备的当前地理位置存储在位置寄存器中。当计算设备被打开或软件被激活以在计算设备上操作时，软件的安全性实用程序将寄存器中的值与导出限制的预先建立的位置的列表进行比较。当值与预先确定的位置之一匹配（或落在范围内）时，导出受限的软件的功能将被自动禁用。

10. 发明申请

US20080222697A1 Application Server Object-level Security for Distributed Computing Domains 有权
标题翻译：分布式计算域的应用服务器对象级安全性
公开(公告)号：US20080222697A1
公开(公告)日：2008-09-11
申请号：US12123693
申请日：2008-05-20
申请人： Peter Daniel Birk , Ching-Yun Chao , Hyen Vui Chung , Carlton Keith Mason , Ajaykumar Karkala Reddy , Vishwanath Venkataramappa
发明人： Peter Daniel Birk , Ching-Yun Chao , Hyen Vui Chung , Carlton Keith Mason , Ajaykumar Karkala Reddy , Vishwanath Venkataramappa
IPC分类号： G06F21/00
CPC分类号： G06F21/31
摘要： Objects on application servers may be defined into classes which receive different levels of security protection, such as definition of user objects and administrative objects. Domain-wide security may be enforced on administrative objects, which user object security may be configured separately for each application server in a domain. In a CORBA architecture, IOR's for shared objects which are to be secured on a domain-wide basis, such as administrative objects, are provided with tagged components during IOR creation and exporting to a name server. Later, when the IOR is used by a client, the client invokes necessary security measures such as authentication, authorization and transport protection according to the tagged components.
摘要翻译：应用服务器上的对象可以被定义为接收不同级别的安全保护的类，例如用户对象和管理对象的定义。可以在管理对象上实施全域安全性，可以为域中的每个应用程序服务器单独配置哪些用户对象安全性。在CORBA体系结构中，IOR对于在域范围内进行安全保护的共享对象（如管理对象）在IOR创建和导出到名称服务器期间提供了已标记组件。之后，当客户端使用IOR时，客户机根据标记的组件调用必要的安全措施，如认证，授权和传输保护。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式