专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明授权

US10736844B2 Compositions and methods for treating viral infections 有权
公开(公告)号：US10736844B2
公开(公告)日：2020-08-11
申请号：US13979322
申请日：2012-01-13
申请人： David E. Anderson , Tanvir Ahmed , Jasminka Bozic , Marc Kirchmeier
发明人： David E. Anderson , Tanvir Ahmed , Jasminka Bozic , Marc Kirchmeier
IPC分类号： A61K45/00 , A61K9/127 , A61K39/00 , A61K39/12 , A61K47/14
摘要： The present disclosure provides compositions and methods useful for treating viral infections. As described herein, the compositions and methods are based on the development of immunogenic compositions that include an attenuated or inactivated virus in combination with a non-ionic surfactant vesicle (NISV).

2. 发明申请

US20130295165A1 COMPOSITIONS AND METHODS FOR TREATING VIRAL INFECTIONS 审中-公开
标题翻译：用于治疗病毒感染的组合物和方法
公开(公告)号：US20130295165A1
公开(公告)日：2013-11-07
申请号：US13979322
申请日：2012-01-13
申请人： David E. Anderson , Tanvir Ahmed , Jasminka Bozic , Marc Kirchmeier
发明人： David E. Anderson , Tanvir Ahmed , Jasminka Bozic , Marc Kirchmeier
IPC分类号： A61K9/127 , A61K47/14 , A61K39/00
摘要： The present disclosure provides compositions and methods useful for treating viral infections. As described herein, the compositions and methods are based on the development of immunogenic compositions that include an attenuated or inactivated virus in combination with a non-ionic surfactant vesicle (NISV).
摘要翻译：本公开提供了可用于治疗病毒感染的组合物和方法。如本文所述，组合物和方法基于免疫原性组合物的开发，其包括与非离子表面活性剂囊泡（NISV）组合的减毒或灭活的病毒。

3. 发明申请

US20100281060A1 TYPE SYSTEM FOR ACCESS CONTROL LISTS 有权
标题翻译：用于访问控制列表的类型系统
公开(公告)号：US20100281060A1
公开(公告)日：2010-11-04
申请号：US12433735
申请日：2009-04-30
申请人： Tanvir Ahmed , Thomas Keefee , Vikram Pesati , Eric Sedlar
发明人： Tanvir Ahmed , Thomas Keefee , Vikram Pesati , Eric Sedlar
IPC分类号： G06F17/30
CPC分类号： G06F21/6227 , G06F21/604 , G06F21/6218 , G06F2221/2141
摘要： A method and storage media for performing access resolution using ACL types is provided. Under an AND semantic, an intersection set formed from the types of multiple ACLs protecting a resource may be utilized to efficiently determine whether a request for a privilege to access the resource is granted or denied. If the privilege is not a member of the intersection set, the privilege cannot be granted. A union set may be used for an OR semantic. A global ACL type may represent all privileges system-wide or application-wide. A global ACL may represent a system-wide or application-wide access policy. A conjunction of a global ACL and a regular ACL may be stored in a cache. The union set, intersection set, or access resolution may also be cached for subsequent request processing.
摘要翻译：提供了一种使用ACL类型执行访问分辨率的方法和存储介质。在AND语义下，可以利用从保护资源的多个ACL的类型形成的交集，以有效地确定是否授予或拒绝访问资源的特权请求。如果权限不是交集集的成员，则不能授予权限。联合集合可以用于OR语义。全局ACL类型可以表示系统范围或应用程序范围内的所有权限。全局ACL可以表示全系统或应用程序范围的访问策略。全局ACL和常规ACL的连接可以存储在缓存中。联合集，交集或访问分辨率也可被缓存以用于后续请求处理。

4. 发明授权

US08732847B2 Access control model of function privileges for enterprise-wide applications 有权
标题翻译：企业级应用程序功能特权的访问控制模型
公开(公告)号：US08732847B2
公开(公告)日：2014-05-20
申请号：US12551217
申请日：2009-08-31
申请人： Thomas Keefe , Tanvir Ahmed , Vikram Pesati , Roger Wigenstam
发明人： Thomas Keefe , Tanvir Ahmed , Vikram Pesati , Roger Wigenstam
IPC分类号： G06F7/04 , G06F7/00
CPC分类号： G06F21/6218 , G06F2221/2141
摘要： Techniques are provided for access control in a system. A request is received for checking whether a subject has a privilege for a resource. A security class that defines a plurality of privileges that include the requested privilege is determined. One or more access control lists have been configured for the security class. The one or more access control lists comprise one or more access control entries. Each of the one more access control entry defines whether one or more subjects has been granted or denied to zero, one or more of the plurality of privileges defined in the security class. Based on the access control lists configured for the security class, it is determined whether the subject should be granted the privilege for the requested resource.
摘要翻译：为系统中的访问控制提供了技术。接收到用于检查被摄体是否具有资源特权的请求。确定定义包括所请求特权的多个特权的安全类。为安全类配置了一个或多个访问控制列表。一个或多个访问控制列表包括一个或多个访问控制条目。一个更多的访问控制条目中的每一个定义一个或多个主体是否被授予或拒绝为零，在安全级别中定义的多个权限中的一个或多个。基于为安全类配置的访问控制列表，确定是否应该为被请求资源授予主体权限。

5. 发明授权

US08095557B2 Type system for access control lists 有权
标题翻译：输入访问控制列表的系统
公开(公告)号：US08095557B2
公开(公告)日：2012-01-10
申请号：US12433735
申请日：2009-04-30
申请人： Tanvir Ahmed , Thomas Keefee , Vikram Pesati , Eric Sedlar
发明人： Tanvir Ahmed , Thomas Keefee , Vikram Pesati , Eric Sedlar
IPC分类号： G06F17/30
CPC分类号： G06F21/6227 , G06F21/604 , G06F21/6218 , G06F2221/2141
摘要： A method and storage media for performing access resolution using ACL types is provided. Under an AND semantic, an intersection set formed from the types of multiple ACLs protecting a resource may be utilized to efficiently determine whether a request for a privilege to access the resource is granted or denied. If the privilege is not a member of the intersection set, the privilege cannot be granted. A union set may be used for an OR semantic. A global ACL type may represent all privileges system-wide or application-wide. A global ACL may represent a system-wide or application-wide access policy. A conjunction of a global ACL and a regular ACL may be stored in a cache. The union set, intersection set, or access resolution may also be cached for subsequent request processing.
摘要翻译：提供了一种使用ACL类型执行访问分辨率的方法和存储介质。在AND语义下，可以利用从保护资源的多个ACL的类型形成的交集，以有效地确定是否授予或拒绝访问资源的特权请求。如果权限不是交集集的成员，则不能授予权限。联合集合可以用于OR语义。全局ACL类型可以表示系统范围或应用程序范围内的所有权限。全局ACL可以表示全系统或应用程序范围的访问策略。全局ACL和常规ACL的连接可以存储在缓存中。联合集，交集或访问分辨率也可被缓存以用于后续请求处理。

6. 发明申请

US20090144804A1 METHOD AND APPARATUS TO SUPPORT PRIVILEGES AT MULTIPLE LEVELS OF AUTHENTICATION USING A CONSTRAINING ACL 有权
标题翻译：使用约束ACL在多个级别的认证中支持特权的方法和装置
公开(公告)号：US20090144804A1
公开(公告)日：2009-06-04
申请号：US11947235
申请日：2007-11-29
申请人： Sam Idicula , Thomas Keefe , Mohammed Irfan Rafiq , Tanvir Ahmed , Vikram Pesati , Nipun Agarwal
发明人： Sam Idicula , Thomas Keefe , Mohammed Irfan Rafiq , Tanvir Ahmed , Vikram Pesati , Nipun Agarwal
IPC分类号： H04L9/32
CPC分类号： G06F21/6218 , G06F2221/2141
摘要： Embodiments of the present invention provide systems and techniques for creating, updating, and using an ACL (access control list). A database system may include a constraining ACL which represents a global security policy that is to be applied to all applications that interact with the database. By ensuring that all ACLs inherit from the constraining ACL, the database system can ensure that the global security policy is applied to all applications that interact with the database. During operation, the system may receive a request to create or update an ACL. Before creating or updating the ACL, the system may modify the ACL to ensure that it inherits from the constraining ACL. In an embodiment, the system grants a privilege to a user only if both the ACL and the constraining ACL grant the privilege.
摘要翻译：本发明的实施例提供了用于创建，更新和使用ACL（访问控制列表）的系统和技术。数据库系统可以包括约束ACL，其表示要应用于与数据库交互的所有应用的全局安全策略。通过确保所有ACL从约束ACL继承，数据库系统可以确保将全局安全策略应用于与数据库交互的所有应用程序。在操作期间，系统可能会收到创建或更新ACL的请求。在创建或更新ACL之前，系统可能会修改ACL，以确保其从约束ACL继承。在一个实施例中，只有当ACL和约束ACL同时授予特权时，系统才向用户授予权限。

7. 发明授权

US09043309B2 SQL transformation-based optimization techniques for enforcement of data access control 有权
标题翻译：用于执行数据访问控制的基于SQL变换的优化技术
公开(公告)号：US09043309B2
公开(公告)日：2015-05-26
申请号：US13488739
申请日：2012-06-05
申请人： Tanvir Ahmed , Thomas Keefe , Chao Liang , Vikram Pesati
发明人： Tanvir Ahmed , Thomas Keefe , Chao Liang , Vikram Pesati
IPC分类号： G06F17/30 , G06F21/62
CPC分类号： G06F21/30 , G06F17/30448 , G06F21/6218 , G06F21/6227 , G06F2221/2141
摘要： Techniques are provided for a database server to identify a query that comprises an access check operator specifying a data access control policy, and if so, to re-write the query to produce an optimized query execution plan. A first technique rewrites a query comprising an access check operator based on the privileges associated with the database principal requesting the query. The rewritten query exposes the access predicates relevant to the requesting principal to subsequent database optimization processes. A second technique rewrites a query comprising an access check operator that specifies a data security policy that does not include a denied privilege. A third technique rewrites a query that comprises an access check operator specifying one or more database table columns that store row-specific access control lists. The rewritten queries are used to generate a query execution plan that provides for several query execution optimizations.
摘要翻译：为数据库服务器提供技术以识别包括指定数据访问控制策略的访问检查运算符的查询，如果是，则重写该查询以产生优化的查询执行计划。第一种技术基于与请求查询的数据库主体相关联的特权来重写包括访问检查运算符的查询。重写的查询将与请求主体相关的访问谓词公开给后续的数据库优化过程。第二种技术重写包括访问检查运算符的查询，其指定不包括被拒绝的特权的数据安全策略。第三种技术重写包含访问检查运算符的查询，该查询运算符指定存储行特定访问控制列表的一个或多个数据库表列。重写的查询用于生成提供多个查询执行优化的查询执行计划。

8. 发明授权

US09471801B2 Method and apparatus to support privileges at multiple levels of authentication using a constraining ACL 有权
标题翻译：使用约束ACL支持多级身份验证的权限的方法和装置
公开(公告)号：US09471801B2
公开(公告)日：2016-10-18
申请号：US11947235
申请日：2007-11-29
申请人： Sam Idicula , Thomas Keefe , Mohammed Irfan Rafiq , Tanvir Ahmed , Vikram Pesati , Nipun Agarwal
发明人： Sam Idicula , Thomas Keefe , Mohammed Irfan Rafiq , Tanvir Ahmed , Vikram Pesati , Nipun Agarwal
IPC分类号： G06F21/62
CPC分类号： G06F21/6218 , G06F2221/2141
摘要： Embodiments of the present invention provide systems and techniques for creating, updating, and using an ACL (access control list). A database system may include a constraining ACL which represents a global security policy that is to be applied to all applications that interact with the database. By ensuring that all ACLs inherit from the constraining ACL, the database system can ensure that the global security policy is applied to all applications that interact with the database. During operation, the system may receive a request to create or update an ACL. Before creating or updating the ACL, the system may modify the ACL to ensure that it inherits from the constraining ACL. In an embodiment, the system grants a privilege to a user only if both the ACL and the constraining ACL grant the privilege.
摘要翻译：本发明的实施例提供了用于创建，更新和使用ACL（访问控制列表）的系统和技术。数据库系统可以包括约束ACL，其表示要应用于与数据库交互的所有应用的全局安全策略。通过确保所有ACL从约束ACL继承，数据库系统可以确保将全局安全策略应用于与数据库交互的所有应用程序。在操作期间，系统可能会收到创建或更新ACL的请求。在创建或更新ACL之前，系统可能会修改ACL，以确保其从约束ACL继承。在一个实施例中，只有当ACL和约束ACL同时授予特权时，系统才向用户授予权限。

9. 发明申请

US20130325841A1 SQL TRANSFORMATION-BASED OPTIMIZATION TECHNIQUES FOR ENFORCEMENT OF DATA ACCESS CONTROL 有权
标题翻译：用于执行数据访问控制的基于SQL变换的优化技术
公开(公告)号：US20130325841A1
公开(公告)日：2013-12-05
申请号：US13488739
申请日：2012-06-05
申请人： Tanvir Ahmed , Thomas Keefe , Chao Liang , Vikram Pesati
发明人： Tanvir Ahmed , Thomas Keefe , Chao Liang , Vikram Pesati
IPC分类号： G06F17/30
CPC分类号： G06F21/30 , G06F17/30448 , G06F21/6218 , G06F21/6227 , G06F2221/2141
摘要： Techniques are provided for a database server to identify a query that comprises an access check operator specifying a data access control policy, and if so, to re-write the query to produce an optimized query execution plan. A first technique rewrites a query comprising an access check operator based on the privileges associated with the database principal requesting the query. The rewritten query exposes the access predicates relevant to the requesting principal to subsequent database optimization processes. A second technique rewrites a query comprising an access check operator that specifies a data security policy that does not include a denied privilege. A third technique rewrites a query that comprises an access check operator specifying one or more database table columns that store row-specific access control lists. The rewritten queries are used to generate a query execution plan that provides for several query execution optimizations.
摘要翻译：为数据库服务器提供技术以识别包括指定数据访问控制策略的访问检查运算符的查询，如果是，则重写该查询以产生优化的查询执行计划。第一种技术基于与请求查询的数据库主体相关联的特权来重写包括访问检查运算符的查询。重写的查询将与请求主体相关的访问谓词公开给后续的数据库优化过程。第二种技术重写包括访问检查运算符的查询，其指定不包括被拒绝的特权的数据安全策略。第三种技术重写包含访问检查运算符的查询，该查询运算符指定存储行特定访问控制列表的一个或多个数据库表列。重写的查询用于生成提供多个查询执行优化的查询执行计划。

10. 发明申请

US20110055918A1 ACCESS CONTROL MODEL OF FUNCTION PRIVILEGES FOR ENTERPRISE-WIDE APPLICATIONS 有权
标题翻译：企业应用功能特权的访问控制模型
公开(公告)号：US20110055918A1
公开(公告)日：2011-03-03
申请号：US12551217
申请日：2009-08-31
申请人： Thomas Keefe , Tanvir Ahmed , Vikram Pesati , Roger Wigenstam
发明人： Thomas Keefe , Tanvir Ahmed , Vikram Pesati , Roger Wigenstam
IPC分类号： G06F21/00 , G06F17/30
CPC分类号： G06F21/6218 , G06F2221/2141
摘要： Techniques are provided for access control in a system. A request is received for checking whether a subject has a privilege for a resource. A security class that defines a plurality of privileges that include the requested privilege is determined. One or more access control lists have been configured for the security class. The one or more access control lists comprise one or more access control entries. Each of the one more access control entry defines whether one or more subjects has been granted or denied to zero, one or more of the plurality of privileges defined in the security class. Based on the access control lists configured for the security class, it is determined whether the subject should be granted the privilege for the requested resource.
摘要翻译：为系统中的访问控制提供了技术。接收到用于检查被摄体是否具有资源特权的请求。确定定义包括所请求特权的多个特权的安全类。为安全类配置了一个或多个访问控制列表。一个或多个访问控制列表包括一个或多个访问控制条目。一个更多的访问控制条目中的每一个定义一个或多个主体是否被授予或拒绝为零，在安全级别中定义的多个权限中的一个或多个。基于为安全类配置的访问控制列表，确定是否应该为被请求资源授予主体权限。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式