专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明授权

US08230228B2 Support of tamper detection for a log of records 失效
标题翻译：支持篡改检测记录日志
公开(公告)号：US08230228B2
公开(公告)日：2012-07-24
申请号：US12263427
申请日：2008-10-31
申请人： Timothy J. Hahn , Heather M. Hinton
发明人： Timothy J. Hahn , Heather M. Hinton
IPC分类号： H04L29/06 , H04L29/00
CPC分类号： G06F21/64 , G06F2221/2101
摘要： Tamper detection of audit records comprises configuring a proxy for adding tamper evidence information to audit information by obtaining audit records from at least one audit record generating source, grouping obtained audit records into subsets of audit records and providing tamper evidence processing to the subsets utilizing a cryptographic mechanism to calculate a signature over each subset of audit records. The proxy groups the subsets such that each subset contains at least one designated carryover audit record that overlaps into a next subset so that each carryover audit record is associated with at least two signatures. As such, the proxy creates an overlapping chain of digitally signed audit records subsets. The proxy further forwards the tamper evident audit records from the tamper evidence adding proxy to a corresponding audit log storage subsystem for storage, storing the calculated signatures.
摘要翻译：审计记录的篡改检测包括配置代理，通过从至少一个审计记录产生源获得审计记录，将获取的审计记录分组到审计记录的子集中，并通过加密方式向子集提供篡改证据处理，从而将审计信息添加到审计信息中计算每个审计记录子集签名的机制。代理对子集进行分组，使得每个子集包含至少一个与下一个子集重叠的指定的结转审核记录，使得每个结转审核记录与至少两个签名相关联。因此，代理创建一个数字签名的审计记录子集的重叠链。代理进一步将篡改明显的审计记录从篡改证据添加代理转发到相应的审计日志存储子系统进行存储，存储计算的签名。

2. 发明申请

US20100115284A1 SUPPORT OF TAMPER DETECTION FOR A LOG OF RECORDS 失效
标题翻译：支持记录记录的篡改检测
公开(公告)号：US20100115284A1
公开(公告)日：2010-05-06
申请号：US12263427
申请日：2008-10-31
申请人： Timothy J. Hahn , Heather M. Hinton
发明人： Timothy J. Hahn , Heather M. Hinton
IPC分类号： H04L9/32 , H04L9/06
CPC分类号： G06F21/64 , G06F2221/2101
摘要： Tamper detection of audit records comprises configuring a proxy for adding tamper evidence information to audit information by obtaining audit records from at least one audit record generating source, grouping obtained audit records into subsets of audit records and providing tamper evidence processing to the subsets utilizing a cryptographic mechanism to calculate a signature over each subset of audit records. The proxy groups the subsets such that each subset contains at least one designated carryover audit record that overlaps into a next subset so that each carryover audit record is associated with at least two signatures. As such, the proxy creates an overlapping chain of digitally signed audit records subsets. The proxy further forwards the tamper evident audit records from the tamper evidence adding proxy to a corresponding audit log storage subsystem for storage, storing the calculated signatures.
摘要翻译：审计记录的篡改检测包括配置代理，通过从至少一个审计记录产生源获得审计记录，将获取的审计记录分组到审计记录的子集中，并通过加密方式向子集提供篡改证据处理，从而将审计信息添加到审计信息中计算每个审计记录子集签名的机制。代理对子集进行分组，使得每个子集包含至少一个与下一个子集重叠的指定的结转审核记录，使得每个结转审核记录与至少两个签名相关联。因此，代理创建一个数字签名的审计记录子集的重叠链。代理进一步将篡改明显的审计记录从篡改证据添加代理转发到相应的审计日志存储子系统进行存储，存储计算的签名。

3. 发明授权

US08370796B2 Development tooling enablement for audit event generation 失效
公开(公告)号：US08370796B2
公开(公告)日：2013-02-05
申请号：US12198606
申请日：2008-08-26
申请人： Timothy J. Hahn , Heather M. Hinton
发明人： Timothy J. Hahn , Heather M. Hinton
IPC分类号： G06F9/44
CPC分类号： G06F11/3065 , G06F8/70 , G06F11/302 , G06F11/3612 , G06F11/3692
摘要： Mechanisms for development tooling enablement of audit event generation are provided. The mechanisms automatically generate and insert compliance audit record generation code where appropriate in identified portions of program instructions based on established compliance policies and labels associated with keywords/library functions appearing in the source code. The mechanisms may analyze the program instructions to identify at least one portion of program instructions meeting a compliance policy requirement for generation of a compliance audit record. Compliance audit record generation code for generating the compliance audit record may be generated. The compliance audit record generation code may be inserted into the at least one portion of program instructions to generate modified program instructions. The modified program instructions may be output for execution on a computing device.

4. 发明申请

US20130019226A1 Development Tooling Enablement for Audit Event Generation 审中-公开
标题翻译：开发工具启用审计事件生成
公开(公告)号：US20130019226A1
公开(公告)日：2013-01-17
申请号：US13617461
申请日：2012-09-14
申请人： Timothy J. Hahn , Heather M. Hinton
发明人： Timothy J. Hahn , Heather M. Hinton
IPC分类号： G06F9/44
CPC分类号： G06F11/3065 , G06F8/70 , G06F11/302 , G06F11/3612 , G06F11/3692
摘要： Mechanisms for development tooling enablement of audit event generation are provided. The mechanisms automatically generate and insert compliance audit record generation code where appropriate in identified portions of program instructions based on established compliance policies and labels associated with keywords/library functions appearing in the source code. The mechanisms may analyze the program instructions to identify at least one portion of program instructions meeting a compliance policy requirement for generation of a compliance audit record. Compliance audit record generation code for generating the compliance audit record may be generated. The compliance audit record generation code may be inserted into the at least one portion of program instructions to generate modified program instructions. The modified program instructions may be output for execution on a computing device.
摘要翻译：提供了开发工具启用审计事件生成的机制。这些机制根据建立的符合性策略和与源代码中出现的关键字/库函数相关联的标签，自动生成并插入符合性审计记录生成代码。这些机制可以分析程序指令以识别程序指令的至少一部分，其满足用于生成合规性审计记录的合规性策略要求。可以生成用于生成合规审计记录的合规性审计记录生成代码。合规性审核记录生成代码可被插入程序指令的至少一部分以产生修改的程序指令。可以输出经修改的程序指令以在计算设备上执行。

5. 发明申请

US20100058291A1 DEVELOPMENT TOOLING ENABLEMENT FOR AUDIT EVENT GENERATION 失效
标题翻译：发展审计事件发生的工具
公开(公告)号：US20100058291A1
公开(公告)日：2010-03-04
申请号：US12198606
申请日：2008-08-26
申请人： Timothy J. Hahn , Heather M. Hinton
发明人： Timothy J. Hahn , Heather M. Hinton
IPC分类号： G06F9/44
CPC分类号： G06F11/3065 , G06F8/70 , G06F11/302 , G06F11/3612 , G06F11/3692
摘要： Mechanisms for development tooling enablement of audit event generation are provided. The mechanisms automatically generate and insert compliance audit record generation code where appropriate in identified portions of program instructions based on established compliance policies and labels associated with keywords/library functions appearing in the source code. The mechanisms may analyze the program instructions to identify at least one portion of program instructions meeting a compliance policy requirement for generation of a compliance audit record. Compliance audit record generation code for generating the compliance audit record may be generated. The compliance audit record generation code may be inserted into the at least one portion of program instructions to generate modified program instructions. The modified program instructions may be output for execution on a computing device.
摘要翻译：提供了开发工具启用审计事件生成的机制。这些机制根据建立的符合性策略和与源代码中出现的关键字/库函数相关联的标签，自动生成并插入符合性审计记录生成代码。这些机制可以分析程序指令以识别程序指令的至少一部分，其满足用于生成合规性审计记录的合规性策略要求。可以生成用于生成合规审计记录的合规性审计记录生成代码。合规性审核记录生成代码可被插入程序指令的至少一部分以产生修改的程序指令。可以输出经修改的程序指令以在计算设备上执行。

6. 发明授权

US09087120B2 Development tooling enablement for audit event generation 有权
标题翻译：开发工具实现审计事件生成
公开(公告)号：US09087120B2
公开(公告)日：2015-07-21
申请号：US13617461
申请日：2012-09-14
申请人： Timothy J. Hahn , Heather M. Hinton
发明人： Timothy J. Hahn , Heather M. Hinton
IPC分类号： G06F9/44 , G06F11/30 , G06F11/36
CPC分类号： G06F11/3065 , G06F8/70 , G06F11/302 , G06F11/3612 , G06F11/3692
摘要： Mechanisms for development tooling enablement of audit event generation are provided. The mechanisms automatically generate and insert compliance audit record generation code where appropriate in identified portions of program instructions based on established compliance policies and labels associated with keywords/library functions appearing in the source code. The mechanisms may analyze the program instructions to identify at least one portion of program instructions meeting a compliance policy requirement for generation of a compliance audit record. Compliance audit record generation code for generating the compliance audit record may be generated. The compliance audit record generation code may be inserted into the at least one portion of program instructions to generate modified program instructions. The modified program instructions may be output for execution on a computing device.
摘要翻译：提供了开发工具启用审计事件生成的机制。这些机制根据建立的符合性策略和与源代码中出现的关键字/库函数相关联的标签，自动生成并插入符合性审计记录生成代码。这些机制可以分析程序指令以识别程序指令的至少一部分，其满足用于生成合规性审计记录的合规性策略要求。可以生成用于生成合规审计记录的合规性审计记录生成代码。合规性审核记录生成代码可被插入程序指令的至少一部分以产生修改的程序指令。可以输出经修改的程序指令以在计算设备上执行。

7. 发明授权

US07676831B2 Role-based access control management for multiple heterogeneous application components 失效
标题翻译：基于角色的多个异构应用程序组件的访问控制管理
公开(公告)号：US07676831B2
公开(公告)日：2010-03-09
申请号：US11221630
申请日：2005-09-08
申请人： Kathryn H. Britton , Dieter Buehler , Ching-Yun Chao , Timothy J. Hahn , Anthony J. Nadalin , Nataraj Nagaratnam , Yi-Hsiu Wei , ChunHui Yang
发明人： Kathryn H. Britton , Dieter Buehler , Ching-Yun Chao , Timothy J. Hahn , Anthony J. Nadalin , Nataraj Nagaratnam , Yi-Hsiu Wei , ChunHui Yang
IPC分类号： H04L9/32 , H04L9/00 , G06F7/04
CPC分类号： G06F21/6236
摘要： Embodiments of the present invention address deficiencies of the art in respect to access control and provide a method, system and computer program product for access control management for a collection of heterogeneous application components. In a first embodiment, a data processing system for role-based access control management for multiple heterogeneous application components can include at least one business role descriptor associating a business role with multiple, different application roles for corresponding, disparate application components. The system also can include at least one access policy associating a user with the business role. Finally, the system can include policy deployment logic include program code enabled to process the access policy to assign the user to the different application roles in the disparate application components.
摘要翻译：本发明的实施例解决了本领域在访问控制方面的缺陷，并提供了用于异构应用组件的集合的访问控制管理的方法，系统和计算机程序产品。在第一实施例中，用于多个异构应用组件的用于基于角色的访问控制管理的数据处理系统可以包括将业务角色与用于相应的不同应用组件的多个不同应用角色相关联的至少一个业务角色描述符。系统还可以包括将用户与业务角色相关联的至少一个访问策略。最后，系统可以包括策略部署逻辑，包括能够处理访问策略的程序代码，以将用户分配给不同应用程序组件中的不同应用程序角色。

8. 发明授权

US09946848B2 Software protection using an installation product having an entitlement file 有权
公开(公告)号：US09946848B2
公开(公告)日：2018-04-17
申请号：US12393242
申请日：2009-02-26
申请人： Timothy J. Hahn , Bernard P. Palmer, Jr. , Michael P. Waidner , James J. Whitmore
发明人： Timothy J. Hahn , Bernard P. Palmer, Jr. , Michael P. Waidner , James J. Whitmore
IPC分类号： G06F21/10 , G06F21/12 , H04L9/32
CPC分类号： G06F21/10 , G06F21/105 , G06F21/12 , G06F2221/0737 , H04L9/3247 , H04L9/3263 , H04L2209/60 , H04L2209/68
摘要： Techniques for establishing entitlement to a computer program product are provided, and include providing a client identity in a registration process to produce an entitlement file, obtaining an encoded version of a computer program product, and transforming the computer program product into an installation product in a computer storage medium, wherein the installation product comprises the entitlement file to establish entitled use of the computer program product. Also, techniques for facilitating security compliance of a computer program product include providing an encoded version of a computer program product, and providing an installation product builder for the computer program product, wherein the installation product builder creates an installation product in a computer storage medium using a client identity and the encoded version of the computer program product during a registration process, and wherein the created installation product comprises an entitlement file to facilitate security compliance of the computer program product.

9. 发明授权

US09898587B2 Software protection using an installation product having an entitlement file 有权
公开(公告)号：US09898587B2
公开(公告)日：2018-02-20
申请号：US13454555
申请日：2012-04-24
申请人： Timothy J. Hahn , Bernard P. Palmer, Jr. , Michael P. Waidner , James J. Whitmore
发明人： Timothy J. Hahn , Bernard P. Palmer, Jr. , Michael P. Waidner , James J. Whitmore
IPC分类号： G06F21/00 , G06F21/10 , H04L9/32
CPC分类号： G06F21/10 , G06F21/105 , G06F21/12 , G06F2221/0737 , H04L9/3247 , H04L9/3263 , H04L2209/60 , H04L2209/68
摘要： Techniques for establishing entitlement to a computer program product are provided, and include providing a client identity in a registration process to produce an entitlement file, obtaining an encoded version of a computer program product, and transforming the computer program product into an installation product in a computer storage medium, wherein the installation product comprises the entitlement file to establish entitled use of the computer program product. Also, techniques for facilitating security compliance of a computer program product include providing an encoded version of a computer program product, and providing an installation product builder for the computer program product, wherein the installation product builder creates an installation product in a computer storage medium using a client identity and the encoded version of the computer program product during a registration process, and wherein the created installation product comprises an entitlement file to facilitate security compliance of the computer program product.

10. 发明授权

US08422686B2 Automated validation and execution of cryptographic key and certificate deployment and distribution 有权
标题翻译：加密密钥和证书部署和分发的自动验证和执行
公开(公告)号：US08422686B2
公开(公告)日：2013-04-16
申请号：US12142009
申请日：2008-06-19
申请人： Christian Cachin , Robert Haas , Timothy J. Hahn , Xiaoyu Hu , Ilias Iliadis , Rene Pawlitzek , John T. Peck
发明人： Christian Cachin , Robert Haas , Timothy J. Hahn , Xiaoyu Hu , Ilias Iliadis , Rene Pawlitzek , John T. Peck
IPC分类号： H04L29/06
CPC分类号： H04L9/083 , H04L9/0891
摘要： A method for automated validation and execution of cryptographic key and certificate deployment and distribution includes providing one or more keys; providing one or more key deployment points; and distributing the one or more keys to the one or more key deployment points in an automated manner based on a matrix or pattern mapping of each of the one or more keys to be distributed to each of the one or more key deployment points.
摘要翻译：用于自动验证和执行加密密钥和证书部署和分发的方法包括提供一个或多个密钥; 提供一个或多个关键部署点; 以及基于要分配给所述一个或多个关键部署点中的每一个的所述一个或多个密钥中的每一个的矩阵或模式映射，以自动方式将所述一个或多个密钥分发到所述一个或多个密钥部署点。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式