专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

41. 发明授权

US07707637B2 Distributed threat management 有权
标题翻译：分布式威胁管理
公开(公告)号：US07707637B2
公开(公告)日：2010-04-27
申请号：US12058156
申请日：2008-03-28
申请人： Christopher G. Kaler , Giovanni Moises Della-Libera , John P. Shewchuk
发明人： Christopher G. Kaler , Giovanni Moises Della-Libera , John P. Shewchuk
IPC分类号： G06F7/04 , G06F11/30 , H04L9/00
CPC分类号： G06F21/554
摘要： A method and system are provided for managing a security threat in a distributed system. A distributed element of the system detects and reports suspicious activity to a threat management agent. The threat management agent determines whether an attack is taking place and deploys a countermeasure to the attack when the attack is determined to be taking place. Another method and system are also provided for managing a security threat in a distributed system. A threat management agent reviews reported suspicious activity including suspicious activity reported from at least one distributed element of the system, determines, based on the reports, whether a pattern characteristic of an attack occurred, and predicts when a next attack is likely to occur. Deployment of a countermeasure to the predicted next attack is directed in a time window based on when the next attack is predicted to occur.
摘要翻译：提供了一种用于管理分布式系统中的安全威胁的方法和系统。系统的分布式元素会将威胁管理代理的可疑活动检测并报告。威胁管理代理确定攻击是否发生，并在攻击确定发生时部署对攻击的对策。还提供另一种方法和系统来管理分布式系统中的安全威胁。威胁管理代理审查报告了可疑活动，包括从系统的至少一个分布式元素报告的可疑活动，根据报告确定是否发生攻击的模式特征，并预测何时可能发生下一次攻击。基于预测发生下一次攻击的时间窗口，针对预测的下一次攻击的对策部署。

42. 发明授权

US07676540B2 Scoped referral statements 有权
标题翻译：范围介绍声明
公开(公告)号：US07676540B2
公开(公告)日：2010-03-09
申请号：US10270442
申请日：2002-10-15
申请人： Henrik F. Nielsen , Christopher G. Kaler , Steven E. Lucco , David E. Levin , Erik B. Christensen
发明人： Henrik F. Nielsen , Christopher G. Kaler , Steven E. Lucco , David E. Levin , Erik B. Christensen
IPC分类号： G06F15/16
CPC分类号： H04L63/04 , H04L45/02 , H04L63/0428 , H04L63/102 , H04L63/123 , H04L63/126 , H04L67/02
摘要： Methods, systems, and data structures for communicating object metadata are provided. A generic metadata container is presented that allows object metadata to be described in an extensible manner using protocol-neutral and platform-independent methodologies. A metadata scope refers to a dynamic universe of targets to which the included metadata statements correspond. Metadata properties provide a mechanism to describe the metadata itself, and metadata security can be used to ensure authentic metadata is sent and received. Mechanisms are also provided to allow refinement and replacement of metadata statements. The metadata container may be used to convey referral data to update routing tables in network nodes, and may also be used register referral statements and query a node for referral information.
摘要翻译：提供了传达对象元数据的方法，系统和数据结构。提出了一个通用的元数据容器，允许使用协议中立和平台无关的方法以可扩展的方式描述对象元数据。元数据范围是指所包含的元数据语句对应的目标的动态范围。元数据属性提供了一种描述元数据本身的机制，并且可以使用元数据安全性来确保发送和接收真实的元数据。还提供了机制来允许细化和替换元数据语句。元数据容器可以用于传送参考数据以更新网络节点中的路由表，并且还可以使用注册参考语句并查询节点以获得推荐信息。

43. 发明授权

US07664023B2 Dynamic protocol construction 有权
标题翻译：动态协议构建
公开(公告)号：US07664023B2
公开(公告)日：2010-02-16
申请号：US11754865
申请日：2007-05-29
申请人： David Levin , Erik B. Christensen , Saurab Nog , Donald F. Box , Christopher G. Kaler , Giovanni M. Della-Libera , Alfred Lee, IV , David Wortendyke
发明人： David Levin , Erik B. Christensen , Saurab Nog , Donald F. Box , Christopher G. Kaler , Giovanni M. Della-Libera , Alfred Lee, IV , David Wortendyke
IPC分类号： H04L1/00
CPC分类号： H04L41/0853 , H04L41/0873 , H04L67/141 , H04L69/03 , H04L69/24
摘要： A method includes advertising a policy characterizing communication properties supported by a node. The policy may be distributed to another node in response to a request for the policy. Policy expressions in the policy include one or more assertions that may be grouped and related to each other in a plurality of ways. A system includes a policy generator for generating at least one policy characterizing properties of a node. A policy retriever retrieves a policy from another node and a message generator generates a message to the other node, wherein the message conforms to the policy from the other node.
摘要翻译：一种方法包括广告表征由节点支持的通信属性的策略。响应于对策略的请求，该策略可以被分发到另一个节点。策略中的策略表达式包括可以以多种方式彼此分组和相关的一个或多个断言。系统包括用于生成节点的至少一个策略特性属性的策略生成器。策略检索器从另一节点检索策略，并且消息生成器向另一个节点生成消息，其中消息符合来自另一个节点的策略。

44. 发明授权

US07657745B2 Secure electronic transfer without requiring knowledge of secret data 失效
标题翻译：安全的电子传输，而不需要了解秘密数据
公开(公告)号：US07657745B2
公开(公告)日：2010-02-02
申请号：US10988875
申请日：2004-11-15
申请人： Max G. Morris , Christopher G. Kaler
发明人： Max G. Morris , Christopher G. Kaler
IPC分类号： H04L9/32 , H04L9/08 , G06F7/04 , G06Q20/00
CPC分类号： H04L9/3271 , G06Q20/382 , H04L63/0428 , H04L63/0853 , H04L2209/56
摘要： A secure electronic transfer mechanism that does not require that the computing entities that are parties to the transaction be aware of the secret data used to secure the transfer. A transferring computing entity provides a request from a billing agent computing entity to transfer the electronically transferable item to a computing entity. The billing agent computing entity responds to the request by providing approval data to the second computing entity, the approval data being encrypted using secret data known to the billing agent computing entity and a supplemental computing entity associated with the transferee computing entity, but not to the transferring and transferee computing entity. The approval is provided to the supplemental computing entity, which then credits the transferee account.
摘要翻译：一种安全的电子传输机制，不要求交易方的计算实体知道用于确保传输的秘密数据。转移计算实体提供来自计费代理计算实体的请求以将电子可转移项转移到计算实体。计费代理计算实体通过向第二计算实体提供批准数据来响应该请求，所述批准数据使用计费代理计算实体已知的秘密数据和与受让人计算实体相关联的补充计算实体进行加密，但不对转移和受让计算实体。批准提供给补充计算实体，然后补充计算实体将受让人账户记入账户。

45. 发明授权

US07631298B2 Extensible architecture for project development systems 失效
标题翻译：项目开发系统的可扩展架构
公开(公告)号：US07631298B2
公开(公告)日：2009-12-08
申请号：US11171768
申请日：2005-06-30
申请人： Christopher G. Kaler , Martyn S. Lovell , Michael J. Grier , Bradley J. Bartz
发明人： Christopher G. Kaler , Martyn S. Lovell , Michael J. Grier , Bradley J. Bartz
IPC分类号： G06F9/44
CPC分类号： A61M5/1689 , A61M2205/3306 , G06F8/20
摘要： A software-development system or versioning system has a collection of modules for performing individual development functions such as document editing, keyword processing, and private-copy management. Each module has an interface compatible with that of the others, so that modules can be added to or substituted for the original modules, if the new modules conform to the interface. The architecture of this system supports the performance of development actions such as document merging and keyword expansion at any location within the system. The system operates upon documents and files as objects in an object space, rather than in name spaces.
摘要翻译：软件开发系统或版本控制系统具有用于执行诸如文档编辑，关键词处理和私人副本管理之类的个人开发功能的模块集合。每个模块都具有与其他模块兼容的接口，因此如果新模块符合接口，则可以将模块添加到或替代原始模块。该系统的架构支持系统内任何位置的文档合并和关键字扩展等开发操作的性能。系统将文档和文件作为对象空间中的对象而不是名称空间进行操作。

46. 发明授权

US07567586B2 Above-transport layer message partial compression 有权
标题翻译：以上传输层消息部分压缩
公开(公告)号：US07567586B2
公开(公告)日：2009-07-28
申请号：US11263196
申请日：2005-10-31
申请人： Christopher G. Kaler , Steven E. Lucco
发明人： Christopher G. Kaler , Steven E. Lucco
IPC分类号： H04J3/22
CPC分类号： H04L69/04 , H04L67/02
摘要： Compression of a portion of a message at above a transport layer in a protocol stack. In the transmission direction, the message is accessed in a form that includes a number of initially parseable components, at least one of which being in compressed form. The message also includes a marker that identifies the component(s) that are compressed. The message is then passed to the transport layer in further preparation for transmission. In the receiving direction, the message is received from the transport layer. The message is initially parsed, and then the compressed component(s) are identified based on the marker.
摘要翻译：在协议栈中的传输层上方压缩消息的一部分。在传输方向上，消息以包括多个最初可解析组件的形式被访问，其中至少一个是压缩形式的。消息还包括标识被压缩的组件的标记。然后将消息传递到传输层，以进一步准备传输。在接收方向，从传输层接收消息。该消息最初被解析，然后基于该标记识别压缩的组件。

47. 发明授权

US07559080B2 Automatically generating security policies for web services 有权
标题翻译：自动生成Web服务的安全策略
公开(公告)号：US07559080B2
公开(公告)日：2009-07-07
申请号：US11025375
申请日：2004-12-29
申请人： Karthikeyan Bhargavan , Cedric Fournet , Andrew Donald Gordon , Christopher G. Kaler
发明人： Karthikeyan Bhargavan , Cedric Fournet , Andrew Donald Gordon , Christopher G. Kaler
IPC分类号： G06F21/00
CPC分类号： H04L63/08 , H04L63/102 , H04L63/12 , H04L63/20
摘要： Systems and methods for automatically generating security policy for a web service are described. In one aspect, one or more links between one or more endpoints are described with an abstract link description. The abstract link description describes, for each link of the one or more links, one or more security goals associated with exchange of message(s) between the one or more endpoints associated with the link. The one or more endpoints host respective principals networked in a distributed operating environment. Detailed security policies for enforcement during exchange of messages between the one or more endpoints are automatically generated from the abstract link description.
摘要翻译：描述了用于自动生成Web服务的安全策略的系统和方法。在一个方面，一个或多个端点之间的一个或多个链路用抽象链接描述来描述。抽象链接描述针对一个或多个链接的每个链接描述与在与链接相关联的一个或多个端点之间的消息交换相关联的一个或多个安全目标。一个或多个端点托管在分布式操作环境中联网的各个主体。在一个或多个端点之间的消息交换期间执行的详细的安全策略是从抽象链接描述中自动生成的。

48. 发明申请

US20090113534A1 GENERIC INTERACTIVE CHALLENGES IN A DISTRIBUTED SYSTEM 有权
标题翻译：分布式系统中的一般互动挑战
公开(公告)号：US20090113534A1
公开(公告)日：2009-04-30
申请号：US11925734
申请日：2007-10-26
申请人： Arun K. Nanda , Christopher G. Kaler , Tariq Sharif
发明人： Arun K. Nanda , Christopher G. Kaler , Tariq Sharif
IPC分类号： H04L9/32 , G06F17/00
CPC分类号： H04L63/08 , G06F21/31 , G06F2221/2103
摘要： A challenge mechanism in which a challenge is issued from one message processor to another. In generating the challenge, the message processor may select any one or more of a number of available interactive challenge types, where each type of challenge type might use different user-originated information. Upon receiving the challenge, the challengee message processor may identify the challenge type based on information provided in the challenge, and perform different actions depending on the challenge type. The challengee message processor then generates an appropriate challenge response, and issues that challenge response to the challenger message processor. The challenger message processor may then validate the challenge response.
摘要翻译：挑战机制，其中挑战是从一个消息处理器发出到另一个。在产生挑战时，消息处理器可以选择多个可用的交互式挑战类型中的任何一个或多个，其中每种类型的挑战类型可以使用不同的用户发起的信息。在接收到挑战时，挑战者消息处理器可以基于挑战中提供的信息识别挑战类型，并根据挑战类型执行不同的动作。挑战者消息处理器然后生成适当的挑战响应，并且向挑战者消息处理器发出挑战响应。挑战者消息处理器然后可以验证挑战响应。

49. 发明授权

US07512957B2 Interface infrastructure for creating and interacting with web services 有权
标题翻译：用于创建和与Web服务交互的接口基础设施
公开(公告)号：US07512957B2
公开(公告)日：2009-03-31
申请号：US11003307
申请日：2004-12-03
申请人： Shy Cohen , Geary L. Eppley , Douglas M. Purdy , James E. Johnson , Stephen J. Millet , Stephen T. Swartz , Vijay K. Gajjala , Aaron Abraham Stern , Alexander Martin DeJarnatt , Alfred M. Lee, IV , Anand Rjagopalan , Anastasios Kasiolas , Chaitanya D. Upadhyay , Christopher G. Kaler , Craig Andrew Critchley , David Edwin Levin , David Owen Driver , David Wortendyke , Douglas A. Walter , Elliot Lee Waingold , Erik Bo Christensen , Erin P. Honeycutt , Eugene Shvets , Evgeny Osovetsky , Giovanni M. Della-Libera , Jesus Ruiz-Scougall , John David Doty , Jonathan T. Wheeler , Kapil Gupta , Kenneth David Wolf , Krishnan Srinivasan , Lance E. Olson , Matthew Thomas Tavis , Mauro Ottaviani , Max Attar Feingold , Michael James Coulson , Michael Jon Marucheck , Michael Steven Vernal , Michael Thomas Dice , Mohamed-Hany Essam Ramadan , Mohammad Makarechian , Natasha Harish Jethanandani , Richard Dievendorff , Richard Douglas Hill , Ryan Thomas Sturgell , Saurab Nog , Scott Christopher Seely , Serge Sverdlov , Siddhartha Puri , Sowmyanarayanan K. Srinivasan , Stefan Batres , Stefan Harrington Pharies , Tirunelveli Vishwanath , Tomasz Janczuk , Uday S. Hegde , Umesh Madan , Vaithialingam B. Balayogan , Vipul Arunkant Modi , Yaniv Pessach , Yasser Shohoud
发明人： Shy Cohen , Geary L. Eppley , Douglas M. Purdy , James E. Johnson , Stephen J. Millet , Stephen T. Swartz , Vijay K. Gajjala , Aaron Abraham Stern , Alexander Martin DeJarnatt , Alfred M. Lee, IV , Anand Rjagopalan , Anastasios Kasiolas , Chaitanya D. Upadhyay , Christopher G. Kaler , Craig Andrew Critchley , David Edwin Levin , David Owen Driver , David Wortendyke , Douglas A. Walter , Elliot Lee Waingold , Erik Bo Christensen , Erin P. Honeycutt , Eugene Shvets , Evgeny Osovetsky , Giovanni M. Della-Libera , Jesus Ruiz-Scougall , John David Doty , Jonathan T. Wheeler , Kapil Gupta , Kenneth David Wolf , Krishnan Srinivasan , Lance E. Olson , Matthew Thomas Tavis , Mauro Ottaviani , Max Attar Feingold , Michael James Coulson , Michael Jon Marucheck , Michael Steven Vernal , Michael Thomas Dice , Mohamed-Hany Essam Ramadan , Mohammad Makarechian , Natasha Harish Jethanandani , Richard Dievendorff , Richard Douglas Hill , Ryan Thomas Sturgell , Saurab Nog , Scott Christopher Seely , Serge Sverdlov , Siddhartha Puri , Sowmyanarayanan K. Srinivasan , Stefan Batres , Stefan Harrington Pharies , Tirunelveli Vishwanath , Tomasz Janczuk , Uday S. Hegde , Umesh Madan , Vaithialingam B. Balayogan , Vipul Arunkant Modi , Yaniv Pessach , Yasser Shohoud
IPC分类号： G06F3/00
CPC分类号： G06F9/547 , H04L67/02
摘要： A web services namespace pertains to an infrastructure for enabling creation of a wide variety of applications. The infrastructure provides a foundation for building message-based applications of various scale and complexity. The infrastructure or framework provides APIs for basic messaging, secure messaging, reliable messaging and transacted messaging. In some embodiments, the associated APIs are factored into a hierarchy of namespaces in a manner that balances utility, usability, extensibility and versionability.
摘要翻译： Web服务命名空间涉及用于创建各种应用程序的基础架构。该基础设施为构建各种规模和复杂性的基于消息的应用程序提供了基础。基础架构或框架提供基本消息传递，安全消息传递，可靠消息传递和事务消息传递的API。在一些实施例中，相关联的API以平衡实用性，可用性，可扩展性和可版本性的方式考虑到命名空间的层级中。

50. 发明授权

US07512782B2 Method and system for using a web service license 有权
标题翻译：使用Web服务许可证的方法和系统
公开(公告)号：US07512782B2
公开(公告)日：2009-03-31
申请号：US10218584
申请日：2002-08-15
申请人： Christopher G. Kaler , John P. Shewchuk , Giovanni Moises Della-Libera , Robert George Atkinson
发明人： Christopher G. Kaler , John P. Shewchuk , Giovanni Moises Della-Libera , Robert George Atkinson
IPC分类号： H04L9/00 , G06F7/04 , G06F7/58 , G06F17/30 , H04K1/00 , G06K15/00 , G09F3/00
CPC分类号： G06Q30/02 , G06F21/10 , G06F21/31
摘要： A method and system are provided such that a universal license may be used for authentication and authorization purposes and may include one or more cryptographic keys as well as assertions and related indications of authenticity. In an aspect of the invention, a license may be presented that includes access information, such that authentication and authorization decisions may be made based only on the access information. In other aspects of the invention, rights may be delegated and a trusted party may assert that another party can be trusted.
摘要翻译：提供了一种方法和系统，使得通用许可证可以用于认证和授权目的，并且可以包括一个或多个密码密钥以及真实性的断言和相关的指示。在本发明的一个方面，可以呈现包括访问信息的许可证，使得可以仅基于访问信息进行认证和授权决定。在本发明的其他方面，可以委托权利，并且可信方可以断言另一方可以被信任。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式