会员体验
专利管家(专利管理)
工作空间(专利管理)
风险监控(情报监控)
数据分析(专利分析)
侵权分析(诉讼无效)
联系我们
交流群
官方交流:
QQ群: 891211   
微信请扫码    >>>
现在联系顾问~
热词
    • 5. 发明授权
    • Methods and systems for managing identity management security domains
    • 用于管理身份管理安全域的方法和系统
    • US08707024B2
    • 2014-04-22
    • US11462606
    • 2006-08-04
    • Nang Kon KwanChandrasekar KannanShuk Yee HoSteven William Parkinson
    • Nang Kon KwanChandrasekar KannanShuk Yee HoSteven William Parkinson
    • H04L29/00
    • H04L9/3213H04L9/0822H04L9/0891H04L9/3268H04L2209/603
    • Embodiments of the present invention provide identity management security domains that may be used in an enterprise security system. A security domain provides a centralized registry of services provided by the enterprise security system. For example, certificate authorities and other services, such as key archives, and the like, in the enterprise security system may register information about themselves in the security domain. Authorized users can then discover the location of these services. In some embodiments, the security domain may provide an interface that indicates a topology between services of the enterprise security system. The security domain may also serve as a distribution point for security policies. A security policy may comprise information that indicates, for example, a set of trusted certificate authorities, certificate templates, certificate revocation lists, and the locations of the services in the enterprise security system.
    • 本发明的实施例提供可以在企业安全系统中使用的身份管理安全域。 安全域提供由企业安全系统提供的服务的集中注册。 例如,企业安全系统中的证书机构和其他服务(如密钥档案等)可以在安全域中注册自己的信息。 然后,授权用户可以发现这些服务的位置。 在一些实施例中,安全域可以提供指示企业安全系统的服务之间的拓扑的接口。 安全域也可以作为安全策略的分发点。 安全策略可以包括例如指示一组可信证书颁发机构,证书模板,证书吊销列表以及企业安全系统中的服务的位置的信息。
    • 6. 发明申请
    • ACCESS TO A REMOTE MACHINE FROM A LOCAL MACHINE VIA SMART CARD
    • 通过智能卡从本地机器获取远程机器
    • US20110017821A1
    • 2011-01-27
    • US12898290
    • 2010-10-05
    • Chandrasekar Kannan
    • Chandrasekar Kannan
    • G06K5/00
    • G06F21/34G06F21/305
    • A method and apparatus for accessing a remote machine from a local machine via a smart card. In one embodiment, the presence of the smart card coupled to the local machine is detected. A card reader reads the credentials from the smart card and communicates them to a remote access client application of the local machine. The remote access client application transmits the credentials to the remote machine. The remote machine sends a query for login information to the local machine upon valid credentials. The local machine transmits the login information to the remote machine and is granted permission to access the remote machine upon valid login information.
    • 一种用于经由智能卡从本地机器访问远程机器的方法和装置。 在一个实施例中,检测到耦合到本地机器的智能卡的存在。 读卡器从智能卡读取凭证并将其传送到本地机器的远程访问客户端应用程序。 远程访问客户端应用程序将凭据传输到远程机器。 远程机器根据有效的凭证向本地机器发送登录信息查询。 本地机器将登录信息发送到远程机器,并在有效的登录信息时被授权访问远程机器。
    • 7. 发明授权
    • Access to a remote machine from a local machine via smart card
    • 通过智能卡从本地机器访问远程机器
    • US07823775B2
    • 2010-11-02
    • US11712760
    • 2007-02-28
    • Chandrasekar Kannan
    • Chandrasekar Kannan
    • G06K5/00
    • G06F21/34G06F21/305
    • A method and apparatus for accessing a remote machine from a local machine via a smart card. In one embodiment, the presence of the smart card coupled to the local machine is detected. A card reader reads the credentials from the smart card and communicates them to a remote access client application of the local machine. The remote access client application transmits the credentials to the remote machine. The remote machine sends a query for login information to the local machine upon valid credentials. The local machine transmits the login information to the remote machine and is granted permission to access the remote machine upon valid login information.
    • 一种用于经由智能卡从本地机器访问远程机器的方法和装置。 在一个实施例中,检测到耦合到本地机器的智能卡的存在。 读卡器从智能卡读取凭证并将其传送到本地机器的远程访问客户端应用程序。 远程访问客户端应用程序将凭据传输到远程机器。 远程机器根据有效的凭证向本地机器发送登录信息查询。 本地机器将登录信息发送到远程机器,并在有效的登录信息时被授权访问远程机器。
    • 8. 发明申请
    • Access to a remote machine from a local machine via smart card
    • 通过智能卡从本地机器访问远程机器
    • US20080203154A1
    • 2008-08-28
    • US11712760
    • 2007-02-28
    • Chandrasekar Kannan
    • Chandrasekar Kannan
    • G06K5/00
    • G06F21/34G06F21/305
    • A method and apparatus for accessing a remote machine from a local machine via a smart card. In one embodiment, the presence of the smart card coupled to the local machine is detected. A card reader reads the credentials from the smart card and communicates them to a remote access client application of the local machine. The remote access client application transmits the credentials to the remote machine. The remote machine sends a query for login information to the local machine upon valid credentials. The local machine transmits the login information to the remote machine and is granted permission to access the remote machine upon valid login information.
    • 一种用于经由智能卡从本地机器访问远程机器的方法和装置。 在一个实施例中,检测到耦合到本地机器的智能卡的存在。 读卡器从智能卡读取凭证并将其传送到本地机器的远程访问客户端应用程序。 远程访问客户端应用程序将凭据传输到远程机器。 远程机器根据有效的凭证向本地机器发送登录信息查询。 本地机器将登录信息发送到远程机器,并在有效的登录信息时被授权访问远程机器。
    • 9. 发明申请
    • METHOD AND SYSTEM FOR CERTIFICATE REVOCATION LIST COMPRESSION
    • 用于证书转载列表压缩的方法和系统
    • US20080126378A1
    • 2008-05-29
    • US11564623
    • 2006-11-29
    • Steven William ParkinsonChandrasekar Kannan
    • Steven William ParkinsonChandrasekar Kannan
    • G06F17/30
    • H03M7/30G06F21/33G06F2221/2149G06F2221/2151H04L9/3268H04L2209/60
    • Embodiments of the present invention provide a compression capability for compressing a CRL, such as an X.509 CRL, stored as a file, data structure or data object in a computer system having a certification authority (CA) and a security client. An exemplary method provides for accessing the CRL contents including a certificate revocation record and performing compression procedure, such as a lossless compression procedure on the contents of the CRL. The compressed CRL contents can be stored in another file, data structure or data object. A request for the compressed CRL is from a security client whereupon the compressed CRL is returned to the security client by transferring the compressed CRL contents to the security client. The security can client un-compress the compressed CRL contents. In some cases the uncompressed CRL contents can be transferred to the security client. The compression procedure can further compress a body portion of the CRL and modify a header portion of the CRL to indicate that the body portion is compressed. The security client can read the header portion to determine that the CRL is compressed and can un-compresses the CRL.
    • 本发明的实施例提供了一种用于压缩在具有证书颁发机构(CA)和安全客户端的计算机系统中存储为文件,数据结构或数据对象的诸如X.509CRL之类的CRL的压缩能力。 一种示例性方法提供了访问包括证书吊销记录的CRL内容,并对CRL的内容执行诸如无损压缩过程之类的压缩过程。 压缩的CRL内容可以存储在另一个文件,数据结构或数据对象中。 对压缩CRL的请求来自安全客户端,因此通过将压缩的CRL内容传送到安全客户端将压缩的CRL返回给安全客户机。 安全性可以客户端解压缩压缩的CRL内容。 在某些情况下,未压缩的CRL内容可以传输到安全客户端。 压缩过程可以进一步压缩CRL的主体部分并且修改CRL的头部部分以指示主体部分被压缩。 安全客户端可以读取头部分,以确定CRL是被压缩的,并可以解压缩CRL。
    • 10. 发明授权
    • Method and system for certificate revocation list compression
    • 证书撤销列表压缩的方法和系统
    • US08112624B2
    • 2012-02-07
    • US11564623
    • 2006-11-29
    • Steven William ParkinsonChandrasekar Kannan
    • Steven William ParkinsonChandrasekar Kannan
    • H04L29/00H04L9/32
    • H03M7/30G06F21/33G06F2221/2149G06F2221/2151H04L9/3268H04L2209/60
    • Embodiments of the present invention provide a compression capability for compressing a CRL, such as an X.509 CRL, stored as a file, data structure or data object in a computer system having a certification authority (CA) and a security client. An exemplary method provides for accessing the CRL contents including a certificate revocation record and performing compression procedure, such as a lossless compression procedure on the contents of the CRL. The compressed CRL contents can be stored in another file, data structure or data object. A request for the compressed CRL is from a security client whereupon the compressed CRL is returned to the security client by transferring the compressed CRL contents to the security client. The security can client un-compress the compressed CRL contents. In some cases the uncompressed CRL contents can be transferred to the security client. The compression procedure can further compress a body portion of the CRL and modify a header portion of the CRL to indicate that the body portion is compressed. The security client can read the header portion to determine that the CRL is compressed and can un-compresses the CRL.
    • 本发明的实施例提供了一种用于压缩在具有证书颁发机构(CA)和安全客户端的计算机系统中存储为文件,数据结构或数据对象的诸如X.509CRL之类的CRL的压缩能力。 一种示例性方法提供了访问包括证书吊销记录的CRL内容,并对CRL的内容执行诸如无损压缩过程之类的压缩过程。 压缩的CRL内容可以存储在另一个文件,数据结构或数据对象中。 对压缩CRL的请求来自安全客户端,因此通过将压缩的CRL内容传送到安全客户端将压缩的CRL返回给安全客户机。 安全性可以客户端解压缩压缩的CRL内容。 在某些情况下,未压缩的CRL内容可以传输到安全客户端。 压缩过程可以进一步压缩CRL的主体部分并且修改CRL的头部部分以指示主体部分被压缩。 安全客户端可以读取头部分,以确定CRL是被压缩的,并可以解压缩CRL。