会员体验
专利管家(专利管理)
工作空间(专利管理)
风险监控(情报监控)
数据分析(专利分析)
侵权分析(诉讼无效)
联系我们
交流群
官方交流:
QQ群: 891211   
微信请扫码    >>>
现在联系顾问~
热词
    • 4. 发明授权
    • Community of interest-based secured communications over IPsec
    • 基于IPsec的基于兴趣的安全通信社区
    • US09596077B2
    • 2017-03-14
    • US14042212
    • 2013-09-30
    • Robert A JohnsonKathleen WildSarah K InforzatoTed Hinaman
    • Robert A JohnsonKathleen WildSarah K InforzatoTed Hinaman
    • H04L29/06H04L9/08G06F21/53G06F21/00
    • H04L63/02G06F21/00G06F21/53H04L9/0838H04L9/0841H04L63/0227H04L63/0236H04L63/0485H04L63/061H04L63/164H04L63/166H04L63/205H04L69/18
    • A method and system for establishing secure communications between endpoints includes transmitting a first message including a token having one or more entries each corresponding to a community of interest associated with a user of the first endpoint and including an encryption key and a validation key associated with the first endpoint. The method includes receiving a second message including a second authorization token including one or more entries, each entry corresponding to a community of interest associated with a second user and including an encryption key and a validation key associated with the second endpoint. The method includes, for each community of interest associated with both users, decrypting an associated entry in the second authorization token to obtain the encryption key and validation key associated with the second endpoint. The method also includes generating a shared secret based on the key pair, transmitting a third message including the created key pair to the second endpoint, and initializing tunnel using the shared secret to derive encryption keys used for IPsec-secured communications between the endpoints.
    • 一种用于在端点之间建立安全通信的方法和系统包括:发送包括令牌的第一消息,所述令牌具有一个或多个条目,每个条目对应于与所述第一端点的用户相关联的感兴趣社区,并且包括与所述第一端点相关联的加密密钥和验证密钥 第一个端点。 该方法包括接收第二消息,其包括包括一个或多个条目的第二授权令牌,每个条目对应于与第二用户相关联的感兴趣社区,并且包括加密密钥和与第二端点相关联的验证密钥。 对于与两个用户相关联的每个感兴趣社区,该方法包括在第二授权令牌中解密相关联的条目以获得与第二端点相关联的加密密钥和验证密钥。 该方法还包括基于密钥对生成共享密钥,将包括所创建的密钥对的第三消息发送到第二端点,以及使用共享密钥初始化隧道以导出用于端点之间的IPsec安全通信的加密密钥。
    • 9. 发明申请
    • ENTERPRISE MANAGEMENT FOR SECURE NETWORK COMMUNICATIONS OVER IPSEC
    • IPSEC安全网络通信企业管理
    • US20150381597A1
    • 2015-12-31
    • US14688348
    • 2015-04-16
    • Robert A JohnsonDavid S DodgsonDaniel KeiserJawahar Bharatia
    • Robert A JohnsonDavid S DodgsonDaniel KeiserJawahar Bharatia
    • H04L29/06H04L12/24G06F21/10H04L29/08
    • H04L63/08G06F21/604H04L41/0843H04L63/20H04L67/02H04L67/30
    • Methods and systems for managing a secure enterprise are disclosed. One method includes initiating a management service at a server within the secure enterprise, the management service including a web interface providing administrative access to configuration settings associated with the secure enterprise, the management service initializing a secure communications protocol and managing access to a credential store, the credential store including a plurality of credentials defining communities of interest within the secure enterprise, each of the communities of interest defining a collection of authenticated endpoints having common access and usage rights. The method includes initiating an object management service at the server defining an interface to a configuration database, and accessing the configuration database to obtain data defining a configuration of the enterprise according to a configuration profile. The method includes applying configuration settings to the secure enterprise based on the data defining the configuration of the secure enterprise.
    • 公开了用于管理安全企业的方法和系统。 一种方法包括在安全企业内的服务器上启动管理服务,管理服务包括提供对与安全企业相关联的配置设置的管理访问的web界面,初始化安全通信协议的管理服务以及管理对凭证存储的访问, 证书存储包括在安全企业内定义感兴趣社区的多个凭证,感兴趣的社区每个定义具有共同访问权限和使用权限的认证端点的集合。 该方法包括在定义与配置数据库的接口的服务器上启动对象管理服务,以及根据配置简档访问配置数据库以获取定义企业配置的数据。 该方法包括基于定义安全企业的配置的数据将配置设置应用于安全企业。
    • 10. 发明申请
    • SECURE INTEGRATION OF HYBRID CLOUDS WITH ENTERPRISE NETWORKS
    • 混合云与企业网络的安全整合
    • US20150381568A1
    • 2015-12-31
    • US14474459
    • 2014-09-02
    • Robert A JohnsonMARK S BRANDTCHRISTOPHER A BYRDKATHY Y JAING
    • Robert A JohnsonMARK S BRANDTCHRISTOPHER A BYRDKATHY Y JAING
    • H04L29/06G06F21/10
    • H04L63/0272G06F9/45533G06F21/105G06Q10/10H04L63/0209H04L63/029H04L63/04H04L63/0485H04L63/08H04L63/164
    • A system and method of managing secure integration of a cloud-based computing resource with a private domain are disclosed. One system includes a hybrid cloud arrangement including a plurality of virtual machines, the plurality of virtual machines including at least a first virtual machine within the private domain and a second virtual machine within a public cloud. The system also includes a virtual data relay within the private domain and associated with the second virtual machine. The virtual data relay includes a private domain interface used to establish a secure communication link according to a first security protocol with each virtual machine within the private domain that is a member of a community of interest, the virtual data relay assigned a community of interest key used by the private domain interface and defining the community of interest of which the second virtual machine is a member. The virtual data relay also includes a public cloud interface used to establish a secure communication link with the second virtual machine, the public cloud interface using a second security protocol different from the first security protocol.
    • 公开了一种管理基于云的计算资源与私有域的安全集成的系统和方法。 一个系统包括包括多个虚拟机的混合云布置,所述多个虚拟机至少包括私有域内的第一虚拟机和公共云内的第二虚拟机。 该系统还包括私有域内的虚拟数据中继并与第二虚拟机相关联。 虚拟数据中继包括用于根据第一安全协议建立安全通信链路的专用域接口,私有域内的每个虚拟机是感兴趣社区的成员,虚拟数据中继器被分配了感兴趣的密钥 由私有域接口使用,并定义第二个虚拟机所属的兴趣社区。 虚拟数据中继还包括用于与第二虚拟机建立安全通信链路的公共云接口,公共云接口使用不同于第一安全协议的第二安全协议。