专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

51. 发明申请

US20110153781A1 ROAMING PROFILES AND APPLICATION COMPATIBILITY IN MULTI-USER SYSTEMS 有权
标题翻译：多用户系统中的漫游配置文件和应用程序兼容性
公开(公告)号：US20110153781A1
公开(公告)日：2011-06-23
申请号：US12642646
申请日：2009-12-18
申请人： Nelamangal Krishnaswamy Srinivas, , Ashwin Palekar , Olga B. Ivanova , Ara Bernardi , Sriram Sampath
发明人： Nelamangal Krishnaswamy Srinivas, , Ashwin Palekar , Olga B. Ivanova , Ara Bernardi , Sriram Sampath
IPC分类号： G06F3/01 , G06F15/16
CPC分类号： H04L67/306 , G06F3/04842 , G06F9/4451 , H04L67/10
摘要： Systems, methods, and computer-readable storage media are disclosed for roaming profiles and application compatibility in multi-user systems. In an embodiment, a user profile exists on a plurality of client computers. Each client computer executes a roaming profile client that intercepts a change to an application's settings. The roaming profile client sends this change to a roaming profile server that stores it. When the user profile logs on to a second client computer, the roaming profile server sends an indication of the change to a second roaming profile client on the second client computer. This roaming profile client alters the settings for the application on the second client computer such that, when the user session executes the application on the second client computer, the application reflects the change.
摘要翻译：公开了用于多用户系统中的漫游简档和应用兼容性的系统，方法和计算机可读存储介质。在一个实施例中，用户简档存在于多个客户端计算机上。每个客户端计算机执行一个漫游配置文件客户端，拦截对应用程序设置的更改。漫游配置文件客户端将此更改发送到存储它的漫游配置文件服务器。当用户简档登录到第二客户端计算机时，漫游配置文件服务器向第二客户端计算机上的第二漫游配置文件客户端发送更改的指示。该漫游配置文件客户端改变在第二客户端计算机上的应用的设置，使得当用户会话在第二客户端计算机上执行应用时，应用程序反映该变化。

52. 发明申请

US20100161771A1 INTERNET PROTOCOL (IP) ADDRESS VIRTUALIZATION FOR TERMINAL SERVER SESSIONS 有权
标题翻译：互联网协议（IP）地址虚拟化终端服务器会话
公开(公告)号：US20100161771A1
公开(公告)日：2010-06-24
申请号：US12341523
申请日：2008-12-22
申请人： Huei Wang , NK Srinivas , Ashwin Palekar , Olga B. Ivanova , Costin Hagiu , Rouslan Beletski , Sriram Sampath , Seema J. Lukose
发明人： Huei Wang , NK Srinivas , Ashwin Palekar , Olga B. Ivanova , Costin Hagiu , Rouslan Beletski , Sriram Sampath , Seema J. Lukose
IPC分类号： G06F15/177 , G06F17/30
CPC分类号： H04L61/2015 , H04L45/745 , H04L61/103 , H04L61/1511 , H04L65/4069 , H04L67/146 , H04L67/16 , H04L67/306
摘要： Techniques are disclosed for virtualizing internet protocol (IP) addresses in terminal server sessions. A client component comprises a layer service provider (LSP) and a name service provider (NSP) that intercept a socket call to associate a port with a socket for a terminal server session. The client component queries a server component for a virtual IP address, and the server component determines whether the terminal server session can use a virtual IP address. Where the session can use a virtual IP address, the server returns a virtual IP address and the client component binds the socket call to the virtual IP address. Where the session cannot use a virtual IP address, the server returns an indication of that, and the client component acts as a proxy for that socket call and any future calls for that socket.
摘要翻译：公开了用于虚拟化终端服务器会话中的因特网协议（IP）地址的技术。客户端组件包括层服务提供商（LSP）和名称服务提供商（NSP），其拦截套接字调用以将端口与终端服务器会话的套接字相关联。客户端组件查询服务器组件的虚拟IP地址，服务器组件确定终端服务器会话是否可以使用虚拟IP地址。会话可以使用虚拟IP地址的位置，服务器返回虚拟IP地址，客户端组件将套接字调用绑定到虚拟IP地址。在会话无法使用虚拟IP地址的情况下，服务器返回该指示，并且客户端组件充当该套接字调用的代理，以及将来对该套接字的调用。

53. 发明申请

US20100146611A1 Credential Sharing Between Multiple Client Applications 有权
标题翻译：多个客户端应用程序之间的凭据共享
公开(公告)号：US20100146611A1
公开(公告)日：2010-06-10
申请号：US12331293
申请日：2008-12-09
申请人： Sergey Kuzin , Olga Ivanova , Ashwin Palekar , Kashif Mehmood , Sriram Sampath , Ersev Samim Erdogan
发明人： Sergey Kuzin , Olga Ivanova , Ashwin Palekar , Kashif Mehmood , Sriram Sampath , Ersev Samim Erdogan
IPC分类号： H04L9/32
CPC分类号： H04L63/0815 , G06F21/41
摘要： Disclosed are techniques for sharing user credentials between multiple client applications when connecting to a set of remote resources. The mechanism enables a single sign-on between a terminal server web access service and the remote applications, remote desktops and corresponding terminal servers accessible through the service. User credentials may be received by one of the client applications and passed to a credential store running as a local software object in association with the user's logon session. Further requests to launch a new remote connection may then pass through the credential store. Upon successful validation of the request, the credential store may attach user credential information to the request and pass the request to the requested client. The requested client may also execute as a software object associated with the current logon session. The client may then use the supplied credential for authentication to the requested resource or application.
摘要翻译：公开了在连接到一组远程资源时在多个客户端应用之间共享用户凭证的技术。该机制能够在终端服务器Web访问服务与通过服务访问的远程应用程序，远程桌面和相应的终端服务器之间进行单一登录。用户凭证可以由客户端应用程序之一接收，并被传递给作为与用户的登录会话相关联的本地软件对象运行的凭证存储。进一步请求启动新的远程连接可能会通过凭据存储。在成功验证请求之后，凭证存储可以将用户凭证信息附加到请求，并将请求传递给所请求的客户端。请求的客户端也可以作为与当前登录会话相关联的软件对象执行。然后，客户端可以使用提供的凭证来对所请求的资源或应用进行认证。

54. 发明申请

US20070157027A1 TLS TUNNELING 有权
标题翻译： TLS隧道
公开(公告)号：US20070157027A1
公开(公告)日：2007-07-05
申请号：US11685075
申请日：2007-03-12
申请人： Ashwin Palekar , Arun Ayyagari , Daniel Simon
发明人： Ashwin Palekar , Arun Ayyagari , Daniel Simon
IPC分类号： H04L9/00
CPC分类号： H04L63/0428 , H04L63/08 , H04L63/162
摘要： An authentication protocol can be used to establish a secure method of communication between two devices on a network. Once established, the secure communication can be used to authenticate a client through various authentication methods, providing security in environments where intermediate devices cannot be trusted, such as wireless networks, or foreign network access points. Additionally, the caching of session keys and other relevant information can enable the two securely communicating endpoints to quickly resume their communication despite interruptions, such as when one endpoint changes the access point through which it is connected to the network. Also, the secure communication between the two devices can enable users to roam off of their home network, providing a mechanism by which access through foreign networks can be granted, while allowing the foreign network to monitor and control the use of its bandwidth.
摘要翻译：可以使用认证协议来建立网络上的两个设备之间的安全通信方法。一旦建立，安全通信可以用于通过各种认证方法认证客户端，在中间设备不能被信任的环境中提供安全性，例如无线网络或外部网络接入点。此外，会话密钥和其他相关信息的高速缓存可以使得两个安全通信的端点能够快速恢复其通信，尽管中断，例如当一个端点改变其连接到网络的接入点时。而且，两台设备之间的安全通信可以使用户能够从家庭网络中漫游，从而提供通过外部网络进行访问的机制，同时允许外部网络监视和控制其带宽的使用。

55. 发明授权

US06941465B1 Method of enforcing a policy on a computer network 失效
标题翻译：在计算机网络上执行策略的方法
公开(公告)号：US06941465B1
公开(公告)日：2005-09-06
申请号：US09360912
申请日：1999-07-26
申请人： Ashwin Palekar , Bernard D. Aboba , Narendra C. Gidwani , Michel Guittet , Todd L. Paul , David L. Eitelbach , Stephen E. Bensley
发明人： Ashwin Palekar , Bernard D. Aboba , Narendra C. Gidwani , Michel Guittet , Todd L. Paul , David L. Eitelbach , Stephen E. Bensley
IPC分类号： G06F21/00 , H04L9/00 , H04L29/06
CPC分类号： H04L63/102 , G06F21/6218 , H04L63/20
摘要： A policy server program evaluates one or more policy statements based on the group or groups to which a user belongs as well as other conditions. Each policy statement expresses an implementation of the access policy of the network, and is associated with a profile. The profile contains one or more actions that are to be applied to the user. The policy server program determines the identity of the group or groups to which the user belongs by referencing one or more group attributes contained in a user object which is located in a directory on the network. The user object and its group parameters are established when the user is added to the directory, while a policy statement for a group can be created at any time.
摘要翻译：策略服务器程序根据用户所属的组或其他条件来评估一个或多个策略语句。每个策略语句表示网络的访问策略的实现，并且与配置文件相关联。配置文件包含要应用于用户的一个或多个操作。策略服务器程序通过引用位于网络上的目录中的用户对象中包含的一个或多个组属性来确定用户所属的组或组的身份。当用户添加到目录时，建立用户对象及其组参数，同时可以创建组的策略语句。

56. 发明申请

US20050131997A1 System and methods for providing network quarantine 有权
标题翻译：提供网络检疫的系统和方法
公开(公告)号：US20050131997A1
公开(公告)日：2005-06-16
申请号：US10823686
申请日：2004-04-14
申请人： Elliot Lewis , Hakan Berk , Narendra Gidwani , Jesper Johansson , Timothy Moore , Ashwin Palekar
发明人： Elliot Lewis , Hakan Berk , Narendra Gidwani , Jesper Johansson , Timothy Moore , Ashwin Palekar
IPC分类号： G06F15/16 , G06F21/00 , H04L29/06 , H04L29/08 , H04L29/12
CPC分类号： H04L63/10 , G06F21/552 , G06F21/57 , G06F21/577 , G06F2221/2105 , H04L29/12226 , H04L61/2015 , H04L67/34
摘要： A system and method for ensuring that machines having invalid or corrupt states are restricted from accessing network resources are provided. A quarantine server located on a trusted machine in a network provides a bill of health to a quarantine agent located on a client computer that wishes to gain access to network resources administered by an organization. The quarantine agent requests bill of health from the quarantine server, and receives a manifest of checks that the client computer must perform. The quarantine agent then sends a status report on the checks back to the quarantine server. If the client computer is in a valid security state, the bill of health is issued to the client. If the client computer is in an invalid state, the client is directed to install the appropriate software/patches to achieve a valid state. When a client requests the use of network resources from a network administrator, the network administrator requests the client's bill of health. If the bill of health is valid, the client is admitted to the network. If the bill of health is invalid, or if the client does not have a quarantine agent, the client is placed in quarantine, in which the only network resources accessible to the client are those necessary to install the quarantine agent and requisite software/patches to achieve a valid state.
摘要翻译：提供了一种用于确保具有无效或损坏状态的机器被限制访问网络资源的系统和方法。位于网络中的受信任计算机上的隔离服务器为位于客户端计算机上的隔离代理提供健康清单，希望访问组织管理的网络资源。隔离代理从隔离服务器请求健康状况，并收到客户端计算机必须执行的检查清单。然后，隔离代理将检查的状态报告发送到隔离服务器。如果客户端计算机处于有效的安全状态，则会向客户端发送健康证明。如果客户端计算机处于无效状态，客户端将被指示安装相应的软件/修补程序以实现有效状态。当客户端请求网络管理员使用网络资源时，网络管理员请求客户的健康状况。如果身体健康状况有效，客户可以进入网络。如果健康状况无效，或客户端没有隔离代理，则客户端将被隔离，客户端可访问的唯一网络资源是安装隔离代理程序和必需的软件/修补程序所必需的网络资源达到有效状态。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式