专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明授权

US08355970B2 Intelligent trust management method and system 有权
标题翻译：智能信任管理方法与系统
公开(公告)号：US08355970B2
公开(公告)日：2013-01-15
申请号：US12979162
申请日：2010-12-27
申请人： Barbara L. Fox , Brian A. LaMacchia
发明人： Barbara L. Fox , Brian A. LaMacchia
IPC分类号： G06Q40/00
CPC分类号： G06F21/50 , G06F21/52 , G06F21/604 , G06Q40/00
摘要： Intelligent Trust Management provides a centralized security facility that gives system components a flexible mechanism for implementing security policies. System components such as applications create a request describing an action that needs to be checked against an appropriate security policy. The request is given to a trust system that determines which policy object applies to the request, and may pass request arguments to the policy. The policy objects include executable code that uses any arguments along with dynamically obtained variable information to make a decision. The decision is returned to the system component, which then operates accordingly. Policy objects may maintain state and interface with the user independent of the system component in order to obtain information to make their decisions. Policy objects may call other policy objects and/or mathematically combine the results of other policy objects to make a decision.
摘要翻译：智能信任管理提供了一个集中的安全设施，为系统组件提供了实施安全策略的灵活机制。系统组件（如应用程序）创建一个描述需要根据适当的安全策略进行检查的操作的请求。该请求被提供给确定哪个策略对象适用于请求的信任系统，并且可以将请求参数传递给该策略。策略对象包括使用任何参数以及动态获取的变量信息进行决策的可执行代码。该决定返回到系统组件，然后系统组件相应地进行操作。策略对象可以保持状态并且与用户无关的系统组件的接口，以便获取信息以作出决定。策略对象可以调用其他策略对象和/或以数学方式组合其他策略对象的结果作出决定。

2. 发明申请

US20110093423A1 INTELLIGENT TRUST MANAGEMENT METHOD AND SYSTEM 有权
标题翻译：智能信任管理方法与系统
公开(公告)号：US20110093423A1
公开(公告)日：2011-04-21
申请号：US12979162
申请日：2010-12-27
申请人： Barbara L. Fox , Brian A. LaMacchia
发明人： Barbara L. Fox , Brian A. LaMacchia
IPC分类号： G06N5/02
CPC分类号： G06F21/50 , G06F21/52 , G06F21/604 , G06Q40/00
摘要： Intelligent Trust Management provides a centralized security facility that gives system components a flexible mechanism for implementing security policies. System components such as applications create a request describing an action that needs to be checked against an appropriate security policy. The request is given to a trust system that determines which policy object applies to the request, and may pass request arguments to the policy. The policy objects include executable code that uses any arguments along with dynamically obtained variable information to make a decision. The decision is returned to the system component, which then operates accordingly. Policy objects may maintain state and interface with the user independent of the system component in order to obtain information to make their decisions. Policy objects may call other policy objects and/or mathematically combine the results of other policy objects to make a decision.
摘要翻译：智能信任管理提供了一个集中的安全设施，为系统组件提供了实施安全策略的灵活机制。系统组件（如应用程序）创建一个描述需要根据适当的安全策略进行检查的操作的请求。该请求被提供给确定哪个策略对象适用于请求的信任系统，并且可以将请求参数传递给该策略。策略对象包括使用任何参数以及动态获取的变量信息进行决策的可执行代码。该决定返回到系统组件，然后系统组件相应地进行操作。策略对象可以保持状态并且与用户无关的系统组件的接口，以便获取信息以作出决定。策略对象可以调用其他策略对象和/或以数学方式组合其他策略对象的结果作出决定。

3. 发明授权

US07003480B2 GUMP: grand unified meta-protocol for simple standards-based electronic commerce transactions 失效
标题翻译： GUMP：宏观统一元协议，用于简单的基于标准的电子商务交易
公开(公告)号：US07003480B2
公开(公告)日：2006-02-21
申请号：US09032407
申请日：1998-02-27
申请人： Barbara L. Fox , Brian A. LaMacchia , Brian C. Beckman
发明人： Barbara L. Fox , Brian A. LaMacchia , Brian C. Beckman
IPC分类号： G06F17/60
CPC分类号： H04L63/0869 , G06Q20/3821 , G06Q30/06 , G06Q30/0617 , H04L63/0823 , H04L63/12 , H04L2463/102
摘要： A method for facilitating two-party electronic commerce transactions between trading partners on an unsecure network, such as the Internet. In one example, a client makes application for registration by a financial institution in which the client has one or more accounts. The client submits satisfactory proof of identity and a public key portion for a digital signature to the financial institution. The financial institution may provide the client a one time secret by a secure route, such as conventional mail, which can then be used by the client to show proof of its identity. The financial institution authenticates the one time secret and combines it with the client's public key in a GUMP Relationship Certificate (GRC), which it issues to the client over the network. Once issued, the GRC can be used by the client to authenticate its right to access its account(s) or other products or services at the financial institution and when conducting other electronic transactions over the network. The client digitally signs any such transaction to authenticate its right to conduct the transaction. A delegate may be enlisted by the client to negotiate the purchase of goods from a seller or for other purposes, using a GUMP Delegate Certificate. The concept can be extended to other three party transactions, such as issuing an electronic Letter of Credit (LOC).
摘要翻译：一种促进贸易伙伴之间在不安全网络（如因特网）上的双方电子商务交易的方法。在一个示例中，客户端由客户端具有一个或多个帐户的金融机构申请注册。客户向金融机构提交令人满意的身份证明和数字签名的公钥部分。金融机构可以通过诸如常规邮件的安全路线向客户提供一次性秘密，然后可以由客户使用它来证明其身份。金融机构认证一次性秘密，并将其与GUMP关系证书（GRC）中的客户端公钥相结合，并通过网络向客户端发送。一旦发放，客户可以使用GRC来验证其在金融机构访问其帐户或其他产品或服务的权利，以及在网络上进行其他电子交易时的权利。客户数字签署任何此类交易以验证其进行交易的权利。代理人可以由客户参与，以使用GUMP代表证书协商从卖方购买商品或为了其他目的。该概念可以扩展到其他三方交易，例如发行电子信用证（LOC）。

4. 发明授权

US06560581B1 System and method for secure electronic commerce transaction 失效
公开(公告)号：US06560581B1
公开(公告)日：2003-05-06
申请号：US09093436
申请日：1998-06-08
申请人： Barbara L. Fox , Lester L. Waters , Jeffrey F. Spelman , Robert B. Seidensticker , Matthew W. Thomlinson
发明人： Barbara L. Fox , Lester L. Waters , Jeffrey F. Spelman , Robert B. Seidensticker , Matthew W. Thomlinson
IPC分类号： G06F1760
CPC分类号： G06Q20/3829 , G06Q20/00 , G06Q20/02 , G06Q20/0855 , G06Q20/10 , G06Q20/12 , G06Q20/3823 , G06Q20/401 , G06Q20/4014 , G06Q30/018 , G06Q30/06 , G06Q30/0609 , H04N21/2543 , H04N21/47805
摘要： An electronic commerce system facilitates secure electronic commerce transactions among multiple participants. Each electronic commerce transaction involves at least one commerce document defining the transaction and at least one commerce instrument defining a payment for the transaction. The electronic commerce system has a credential binding server at a trusted credential authority, multiple computing units at associated participants, and a communication system interconnecting the credential binding server and the multiple computing units. The electronic commerce system operates in two phases: a registration phase and a transaction phase. During the registration phase, each of the computing units generate and send a registration packet over the communication system to the credential binding server. Unique credentials are produced by the credential binding server based upon the registration packets sent back to the computing units. During the transaction phase, an originating computing unit initially requests, receives, and verifies the credentials of expected recipient computing units to ensure communication between authenticate participants. Thereafter, the originating computing unit signs and encrypts the commerce document(s) and the commerce instrument(s) in a manner which ensures that only the intended recipients can decrypt them. The originating computing unit then sends both the commerce document(s) and instrument(s) over the communication system to a first recipient computing unit. The first recipient computing unit decrypts and verifies the commerce document (s) and/or instruments intended for it. The first recipient computing unit then passes the balance of the encrypted commerce document(s) and/or instrument(s) over the communication system to a second recipient computing unit, which decrypts and verifies the commerce document(s) and/or instrument(s) intended for it. This process is continued until all commerce documents and commerce instruments are distributed, decrypted, and verified by their intended recipients.

5. 发明授权

US5790677A System and method for secure electronic commerce transactions 失效
公开(公告)号：US5790677A
公开(公告)日：1998-08-04
申请号：US496830
申请日：1995-06-29
申请人： Barbara L. Fox , Lester L. Waters , Jeffrey F. Spelman , Robert B. Seidensticker , Matthew W. Thomlinson
发明人： Barbara L. Fox , Lester L. Waters , Jeffrey F. Spelman , Robert B. Seidensticker , Matthew W. Thomlinson
IPC分类号： G06Q20/00 , G07F7/08 , H04N21/2543 , H04N21/478 , H04K1/00 , G06F17/60 , H04L9/00
CPC分类号： G06Q20/3829 , G06Q20/00 , G06Q20/02 , G06Q20/0855 , G06Q20/10 , G06Q20/12 , G06Q20/3823 , G06Q20/401 , G06Q20/4014 , G06Q30/018 , G06Q30/06 , G06Q30/0609 , H04N21/2543 , H04N21/47805
摘要： An electronic commerce system facilitates secure electronic commerce transactions among multiple participants. Each electronic commerce transaction involves at least one commerce document defining the transaction and at least one commerce instrument defining a payment for the transaction. The electronic commerce system has a credential binding server at a trusted credential authority, multiple computing units at associated participants, and a communication system interconnecting the credential binding server and the multiple computing units. The electronic commerce system operates in two phases: a registration phase and a transaction phase. During the registration phase, each of the computing units generate and send a registration packet over the communication system to the credential binding server. Unique credentials are produced by the credential binding server based upon the registration packets sent back to the computing units. During the transaction phase, an originating computing unit initially requests, receives, and verifies the credentials of expected recipient computing units to ensure communication between authenticate participants. Thereafter, the originating computing unit signs and encrypts the commerce document(s) and the commerce instrument(s) in a manner which ensures that only the intended recipients can decrypt them. The originating computing unit then sends both the commerce document(s) and instrument(s) over the communication system to a first recipient computing unit. The first recipient computing unit decrypts and verifies the commerce document(s) and/or instruments intended for it. The first recipient computing unit then passes the balance of the encrypted commerce document(s) and/or instrument(s) over the communication system to a second recipient computing unit, which decrypts and verifies the commerce document(s) and/or instrument(s) intended for it. This process is continued until all commerce documents and commerce instruments are distributed, decrypted, and verified by their intended recipients.

6. 发明授权

US07877264B2 Intelligent trust management method and system 有权
标题翻译：智能信任管理方法与系统
公开(公告)号：US07877264B2
公开(公告)日：2011-01-25
申请号：US11273143
申请日：2005-11-14
申请人： Barbara L. Fox , Brian A. LaMacchia
发明人： Barbara L. Fox , Brian A. LaMacchia
IPC分类号： G06Q40/00
CPC分类号： G06F21/50 , G06F21/52 , G06F21/604 , G06Q40/00
摘要： Intelligent Trust Management provides a centralized security facility that gives system components a flexible mechanism for implementing security policies. System components such as applications create a request describing an action that needs to be checked against an appropriate security policy. The request is given to a trust system that determines which policy object applies to the request, and may pass request arguments to the policy. The policy objects include executable code that uses any arguments along with dynamically obtained variable information to make a decision. The decision is returned to the system component, which then operates accordingly. Policy objects may maintain state and interface with the user independent of the system component in order to obtain information to make their decisions. Policy objects may call other policy objects and/or mathematically combine the results of other policy objects to make a decision.
摘要翻译：智能信任管理提供了一个集中的安全设施，为系统组件提供了实施安全策略的灵活机制。系统组件（如应用程序）创建一个描述需要根据适当的安全策略进行检查的操作的请求。该请求被提供给确定哪个策略对象适用于请求的信任系统，并且可以将请求参数传递给该策略。策略对象包括使用任何参数以及动态获取的变量信息进行决策的可执行代码。该决定返回到系统组件，然后系统组件相应地进行操作。策略对象可以保持状态并且与用户无关的系统组件的接口，以便获取信息以作出决定。策略对象可以调用其他策略对象和/或以数学方式组合其他策略对象的结果作出决定。

7. 发明授权

US06965999B2 Intelligent trust management method and system 失效
标题翻译：智能信任管理方法与系统
公开(公告)号：US06965999B2
公开(公告)日：2005-11-15
申请号：US09071594
申请日：1998-05-01
申请人： Barbara L. Fox , Brian A. LaMacchia
发明人： Barbara L. Fox , Brian A. LaMacchia
IPC分类号： G06F21/22 , G06F1/00 , G06F21/00 , G06F21/20 , G06Q40/00 , G06F15/63
CPC分类号： G06F21/50 , G06F21/52 , G06F21/604 , G06Q40/00
摘要： Intelligent Trust Management provides a centralized security facility that gives system components a flexible mechanism for implementing security policies. System components such as applications create a request describing an action that needs to be checked against an appropriate security policy. The request is given to a trust system that determines which policy object applies to the request, and may pass request arguments to the policy. The policy objects include executable code that uses any arguments along with dynamically obtained variable information to make a decision. The decision is returned to the system component, which then operates accordingly. Policy objects may maintain state and interface with the user independent of the system component in order to obtain information to make their decisions. Policy objects may call other policy objects and/or mathematically combine the results of other policy objects to make a decision.
摘要翻译：智能信任管理提供了一个集中的安全设施，为系统组件提供了实施安全策略的灵活机制。系统组件（如应用程序）创建一个描述需要根据适当的安全策略进行检查的操作的请求。该请求被提供给确定哪个策略对象适用于请求的信任系统，并且可以将请求参数传递给该策略。策略对象包括使用任何参数以及动态获取的变量信息进行决策的可执行代码。该决定返回到系统组件，然后系统组件相应地进行操作。策略对象可以保持状态并且与用户无关的系统组件的接口，以便获取信息以作出决定。策略对象可以调用其他策略对象和/或以数学方式组合其他策略对象的结果作出决定。

8. 发明授权

US07506158B2 Certificate reissuance for checking the status of a certificate in financial transactions 有权
标题翻译：用于检查金融交易中证书状态的证书重新发行
公开(公告)号：US07506158B2
公开(公告)日：2009-03-17
申请号：US11032833
申请日：2005-01-10
申请人： Barbara L. Fox , Brian A. LaMacchia
发明人： Barbara L. Fox , Brian A. LaMacchia
IPC分类号： H04L9/32
CPC分类号： H04L9/3263 , H04L2209/56
摘要： A system for using a certificate authority to first provide a customer with a digital certificate, and then having a relying party that receives that digital certificate access a status authority (the certificate authority or its designated agent) to receive a reissued certificate on that certificate. The reissued certificate has a much shorter validity period, which ensures that the information is timely. Moreover, the certificate may serve as a receipt, including an accumulated record of the signatures (digital certificates) and policy applied throughout the financial transaction. As a result, each transfer of the transaction forms a digitally-signed chain of evidence recording each step of the transaction and policy applied thereto, whereby risk may be assumed and charged for appropriately and in accordance with the risk purchaser's policy.
摘要翻译：一种使用证书颁发机构首先向客户提供数字证书，然后使具有接收该数字证书的依赖方访问状态授权机构（认证机构或其指定代理人）以在该证书上接收重发证书的系统。重发证书的有效期短得多，确保信息及时。此外，证书可以作为收据，包括在整个金融交易中应用的签名（数字证书）和政策的累积记录。因此，交易的每次转让形成数字签名的证据链，记录交易的每个步骤和适用的政策，从而适当地并根据风险购买者的政策来承担风险并收取风险。

9. 发明授权

US06842863B1 Certificate reissuance for checking the status of a certificate in financial transactions 有权
公开(公告)号：US06842863B1
公开(公告)日：2005-01-11
申请号：US09448854
申请日：1999-11-23
申请人： Barbara L. Fox , Brian A. LaMacchia
发明人： Barbara L. Fox , Brian A. LaMacchia
IPC分类号： H04L9/32 , H04L9/00
CPC分类号： H04L9/3263 , H04L2209/56
摘要： A system for using a certificate authority to first provide a customer with a digital certificate, and then having a relying party that receives that digital certificate access a status authority (the certificate authority or its designated agent) to receive a reissued certificate on that certificate. The reissued certificate has a much shorter validity period, which ensures that the information is timely. Moreover, the certificate may serve as a receipt, including an accumulated record of the signatures (digital certificates) and policy applied throughout the financial transaction. As a result, each transfer of the transaction forms a digitally-signed chain of evidence recording each step of the transaction and policy applied thereto, whereby risk may be assumed and charged for appropriately and in accordance with the risk purchaser's policy.

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式