专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明授权

US07353535B2 Flexible, selectable, and fine-grained network trust policies 有权
标题翻译：灵活，可选择和细粒度的网络信任策略
公开(公告)号：US07353535B2
公开(公告)日：2008-04-01
申请号：US10404733
申请日：2003-03-31
申请人： Christopher G. Kaler , John P. Shewchuk , Giovanni M. Della-Libera , Praerit Garg , Brendan W. Dixon
发明人： Christopher G. Kaler , John P. Shewchuk , Giovanni M. Della-Libera , Praerit Garg , Brendan W. Dixon
IPC分类号： H04K1/00 , H04L9/00
CPC分类号： G06F21/64
摘要： A flexible way of expressing trust policies using, for example, XML. Multiple statement types may be expressed for a single authority type. Statement types may include less than all of the statements made by an authority type. Authority types may be defined using any manner interpretable by the computing system using the trust policy. In addition, trust policies may be updated as trust levels change. Even multiple trust policies may be used with reconciliation between the multiple trust policies being accomplished by using the more restrictive trust policy with respect to an assertion.
摘要翻译：使用例如XML来表达信任策略的灵活方式。单个授权类型可以表示多个语句类型。语句类型可能包括少于由权限类型所做的全部语句。可以使用使用信任策略的计算系统可解释的任何方式定义权限类型。此外，信任策略可能随着信任级别的变化而更新。甚至可以使用多个信任策略，以便通过使用关于断言的更严格的信任策略来实现多个信任策略之间的对帐。

2. 发明授权

US07899047B2 Virtual network with adaptive dispatcher 有权
标题翻译：具有自适应调度器的虚拟网络
公开(公告)号：US07899047B2
公开(公告)日：2011-03-01
申请号：US11838161
申请日：2007-08-13
申请人： Luis F. Cabrera , Erik B. Christensen , Giovanni M. Della-Libera , Christopher G. Kaler , David E. Levin , Bradford H. Lovering , Steven E. Lucco , Stephen J. Millet , John P. Shewchuk , Robert S. Wahbe , David A. Wortendyke
发明人： Luis F. Cabrera , Erik B. Christensen , Giovanni M. Della-Libera , Christopher G. Kaler , David E. Levin , Bradford H. Lovering , Steven E. Lucco , Stephen J. Millet , John P. Shewchuk , Robert S. Wahbe , David A. Wortendyke
IPC分类号： H04L12/56
CPC分类号： H04L61/15 , H04L29/12047 , H04L67/327 , H04L69/32
摘要： Methods and systems for providing a virtual network are disclosed. At least one layer of abstraction is created between network service applications and conventional network protocols by inserting an adaptive dispatcher between applications and network transport services on each machine in a network. The message protocol in the virtual network is extensible, allowing application programs to create new headers within any message as needed. The adaptive dispatcher contains handlers that route and dispatch messages within the virtual network based on arbitrary content within each message, including any combination of headers and/or data content. Each device on the virtual network has a virtual address to which messages are directed, allowing devices to move within the network without reconfiguring routing tables. Handlers may be automatically created when an event meeting predefined criteria occurs, including the non-occurrence of a condition, making the virtual network self-healing and adaptive to reconfiguration.
摘要翻译：公开了用于提供虚拟网络的方法和系统。通过在网络中的每台机器上的应用程序和网络传输服务之间插入自适应调度器，在网络服务应用程序和常规网络协议之间创建至少一个抽象层。虚拟网络中的消息协议是可扩展的，允许应用程序根据需要在任何消息内创建新头。自适应调度器包含基于每个消息内的任意内容（包括报头和/或数据内容的任何组合）在虚拟网络内路由和调度消息的处理程序。虚拟网络上的每个设备都具有指向消息的虚拟地址，允许设备在网络内移动而不重新配置路由表。当满足预定义标准的事件发生时，可以自动创建处理程序，包括不发生条件，使虚拟网络自我修复并适应重新配置。

3. 发明授权

US07447785B2 Dependent context trees for related network offerings 有权
标题翻译：相关网络产品的依赖上下文树
公开(公告)号：US07447785B2
公开(公告)日：2008-11-04
申请号：US10403857
申请日：2003-03-31
申请人： Christopher G. Kaler , Erik B. Christensen , Giovanni M. Della-Libera , John P. Shewchuk , Stephen J. Millet , Steven E. Lucco
发明人： Christopher G. Kaler , Erik B. Christensen , Giovanni M. Della-Libera , John P. Shewchuk , Stephen J. Millet , Steven E. Lucco
IPC分类号： G06F15/16
CPC分类号： H04L63/102 , H04L67/327 , H04L69/329 , H04L2463/102
摘要： A network site often provides multiple offerings, each having their own context. The complete context for one of the offerings is stored. That complete context represents a root node in a hierarchical tree of context nodes, each node representing the context information for one or more of the offerings. Each node in the tree includes a reference to its parent node, and then a description of incremental changes to the context information as compared to the context information from the parent node. Accordingly, the context information for a particular node in the tree may be obtained by combining the complete context for the root node offering with incremental changes described in other nodes in the ancestral chain that leads from the particular offering to the root offering.
摘要翻译：网络站点通常提供多个产品，每个产品都有自己的上下文。存储其中一个产品的完整上下文。该完整上下文表示上下文节点的分层树中的根节点，每个节点表示一个或多个提供的上下文信息。树中的每个节点都包含对其父节点的引用，然后是与父节点的上下文信息相比较，对上下文信息的增量更改的描述。因此，可以通过将根节点提供的完整上下文与从特定产品引导到根产品的祖先链中的其他节点中描述的增量变化相结合来获得树中的特定节点的上下文信息。

4. 发明授权

US07313687B2 Establishing a secure context at an electronic communications end-point 有权
标题翻译：在电子通信端点建立安全的环境
公开(公告)号：US07313687B2
公开(公告)日：2007-12-25
申请号：US10340694
申请日：2003-01-10
申请人： Christopher G. Kaler , Giovanni M. Della-Libera , John P. Shewchuk
发明人： Christopher G. Kaler , Giovanni M. Della-Libera , John P. Shewchuk
IPC分类号： H04L9/00
CPC分类号： H04L67/34 , H04L29/06 , H04L63/12 , H04L67/327 , H04L69/329
摘要： A first application layer at a first message processor identifies a first portion of context information. A second message processor receives the first portion of context information. A second application layer at the second message processor identifiers a second portion of context information. The second message processor sends the second portion of context information along with a first digital signature created from both the first and second portions of context information. The first message processor receives the second portion of context information and first digital signature. The first message processor sends a second digital signature created from the first and second portions of context information to the second message processor. If both the first and second digital signatures are authenticated, a secure context can be established between the first and second application layers.
摘要翻译：第一消息处理器处的第一应用层识别上下文信息的第一部分。第二消息处理器接收上下文信息的第一部分。第二消息处理器处的第二应用层识别上下文信息的第二部分。第二消息处理器发送上下文信息的第二部分以及从上下文信息的第一和第二部分创建的第一数字签名。第一消息处理器接收上下文信息和第一数字签名的第二部分。第一消息处理器将从上下文信息的第一和第二部分创建的第二数字签名发送到第二消息处理器。如果第一和第二数字签名都被认证，则可以在第一和第二应用层之间建立安全上下文。

5. 发明授权

US07809938B2 Virtual distributed security system 有权
标题翻译：虚拟分布式安全系统
公开(公告)号：US07809938B2
公开(公告)日：2010-10-05
申请号：US11254545
申请日：2005-10-20
申请人： Giovanni M. Della-Libera , Christopher G. Kaler , Scott A. Konersmann , Butler W. Lampson , Paul J. Leach , Bradford H. Lovering , Steven E. Lucco , Stephen J. Millet , Richard F. Rashid , John P. Shewchuk
发明人： Giovanni M. Della-Libera , Christopher G. Kaler , Scott A. Konersmann , Butler W. Lampson , Paul J. Leach , Bradford H. Lovering , Steven E. Lucco , Stephen J. Millet , Richard F. Rashid , John P. Shewchuk
IPC分类号： H04L29/06
CPC分类号： H04L63/08 , G06Q20/3676 , H04L63/10 , H04L63/168 , H04L63/20 , H04L67/02 , H04L67/28 , H04L67/2804 , H04L67/2823
摘要： A distributed security system is provided. The distributed security system uses a security policy that is written in a policy language that is transport and security protocol independent as well as independent of cryptographic technologies. This security policy can be expressed using the language to create different security components allowing for greater scalability and flexibility. By abstracting underlying protocols and technologies, multiple environments and platforms can be supported.
摘要翻译：提供分布式安全系统。分布式安全系统使用以政策语言编写的安全策略，该策略语言是传输和安全协议独立的，而与密码技术无关。该安全策略可以用语言来表示，以创建不同的安全组件，从而实现更大的可扩展性和灵活性。通过抽象底层协议和技术，可以支持多个环境和平台。

6. 发明申请

US20090046726A1 VIRTUAL NETWORK WITH ADAPTIVE DISPATCHER 有权
标题翻译：具有自适应分配器的虚拟网络
公开(公告)号：US20090046726A1
公开(公告)日：2009-02-19
申请号：US11838161
申请日：2007-08-13
申请人： Luis Felipe Cabrera , Erik B. Christensen , Giovanni M. Della-Libera , Christopher G. Kaler , David E. Levin , Bradford H. Lovering , Steven E. Lucco , Stephen J. Millet , John P. Shewchuk , Robert S. Wahbe , David A. Wortendyke
发明人： Luis Felipe Cabrera , Erik B. Christensen , Giovanni M. Della-Libera , Christopher G. Kaler , David E. Levin , Bradford H. Lovering , Steven E. Lucco , Stephen J. Millet , John P. Shewchuk , Robert S. Wahbe , David A. Wortendyke
IPC分类号： H04L12/56
CPC分类号： H04L61/15 , H04L29/12047 , H04L67/327 , H04L69/32
摘要： Methods and systems for providing a virtual network are disclosed. At least one layer of abstraction is created between network service applications and conventional network protocols by inserting an adaptive dispatcher between applications and network transport services on each machine in a network. The message protocol in the virtual network is extensible, allowing application programs to create new headers within any message as needed. The adaptive dispatcher contains handlers that route and dispatch messages within the virtual network based on arbitrary content within each message, including any combination of headers and/or data content. Each device on the virtual network has a virtual address to which messages are directed, allowing devices to move within the network without reconfiguring routing tables. Handlers may be automatically created when an event meeting predefined criteria occurs, including the non-occurrence of a condition, making the virtual network self-healing and adaptive to reconfiguration.
摘要翻译：公开了用于提供虚拟网络的方法和系统。通过在网络中的每台机器上的应用程序和网络传输服务之间插入自适应调度器，在网络服务应用程序和常规网络协议之间创建至少一个抽象层。虚拟网络中的消息协议是可扩展的，允许应用程序根据需要在任何消息内创建新头。自适应调度器包含基于每个消息内的任意内容（包括报头和/或数据内容的任何组合）在虚拟网络内路由和调度消息的处理程序。虚拟网络上的每个设备都具有指向消息的虚拟地址，允许设备在网络内移动而不重新配置路由表。当满足预定义标准的事件发生时，可以自动创建处理程序，包括不发生条件，使虚拟网络自我修复并适应重新配置。

7. 发明授权

US07293283B2 Flexible electronic message security mechanism 有权
标题翻译：灵活的电子信息安全机制
公开(公告)号：US07293283B2
公开(公告)日：2007-11-06
申请号：US10219898
申请日：2002-08-14
申请人： Christopher G. Kaler , Giovanni M. Della-Libera , John P. Shewchuk
发明人： Christopher G. Kaler , Giovanni M. Della-Libera , John P. Shewchuk
IPC分类号： H04L29/00
CPC分类号： H04L63/123 , H04L51/00 , H04L63/0428 , H04L63/126 , H04L67/02 , H04L67/28 , H04L67/2804
摘要： Multiple different credentials and/or signatures based on different credentials may be included in a header portion of a single electronic message. Different recipients of intermediary computing systems may use the different credentials/signatures to identify the signer. The electronic message may include an encoding algorithm and a type identification of a credential included in the electronic message, allowing the recipient to decode and process the credential as appropriate given the type of credential. Also, the electronic message may include a pointer that references a credential associated with a signature included in the electronic message. That referenced credential may be accessed from the same electronic message, or from some other location. The recipient may then compare the references credential from the credentials used to generate the signature. If a match occurs, the integrity of the electronic message has more likely been preserved.
摘要翻译：基于不同凭证的多个不同凭证和/或签名可以被包括在单个电子消息的报头部分中。中间计算系统的不同接收者可以使用不同的凭证/签名来识别签名者。电子消息可以包括编码算法和包括在电子消息中的凭证的类型标识，允许接收者在给定证书类型的情况下对其进行解码和处理。此外，电子消息可以包括引用与包括在电子消息中的签名相关联的证书的指针。可以从相同的电子消息或从某个其他位置访问该参考凭证。然后，收件人可以比较用于生成签名的凭据的引用凭证。如果发生匹配，电子信息的完整性更有可能被保留。

8. 发明授权

US07257817B2 Virtual network with adaptive dispatcher 有权
标题翻译：具有自适应调度器的虚拟网络
公开(公告)号：US07257817B2
公开(公告)日：2007-08-14
申请号：US09993656
申请日：2001-11-27
申请人： Luis F. Cabrera , Erik B. Christensen , Giovanni M. Della-Libera , Christopher G. Kaler , David E. Levin , Bradford H. Lovering , Steven E. Lucco , Stephen J. Millet , John P. Shewchuk , Robert S. Wahbe , David A. Wortendyke
发明人： Luis F. Cabrera , Erik B. Christensen , Giovanni M. Della-Libera , Christopher G. Kaler , David E. Levin , Bradford H. Lovering , Steven E. Lucco , Stephen J. Millet , John P. Shewchuk , Robert S. Wahbe , David A. Wortendyke
IPC分类号： G06F3/00
CPC分类号： H04L45/00 , H04L43/0811 , H04L45/306 , H04L45/308 , H04L45/34 , H04L45/56 , H04L45/566 , H04L67/02 , H04L67/327 , H04L69/08
摘要： Methods and systems for providing a virtual network are disclosed. At least one layer of abstraction is created between network service applications and conventional network protocols by inserting an adaptive dispatcher between applications and network transport services on each machine in a network. The message protocol in the virtual network is extensible, allowing application programs to create new headers within any message as needed. The adaptive dispatcher contains handlers that route and dispatch messages within the virtual network based on arbitrary content within each message, including any combination of headers and/or data content. Each device on the virtual network has a virtual address to which messages are directed, allowing devices to move within the network without reconfiguring routing tables. Handlers may be automatically created when an event meeting predefined criteria occurs, including the non-occurrence of a condition, making the virtual network self-healing and adaptive to reconfiguration.
摘要翻译：公开了用于提供虚拟网络的方法和系统。通过在网络中的每台机器上的应用程序和网络传输服务之间插入自适应调度器，在网络服务应用程序和常规网络协议之间创建至少一个抽象层。虚拟网络中的消息协议是可扩展的，允许应用程序根据需要在任何消息内创建新头。自适应调度器包含基于每个消息内的任意内容（包括报头和/或数据内容的任何组合）在虚拟网络内路由和调度消息的处理程序。虚拟网络上的每个设备都具有指向消息的虚拟地址，允许设备在网络内移动而不重新配置路由表。当满足预定义标准的事件发生时，可以自动创建处理程序，包括不发生条件，使虚拟网络自我修复并适应重新配置。

9. 发明授权

US08302149B2 Virtual distributed security system 有权
标题翻译：虚拟分布式安全系统
公开(公告)号：US08302149B2
公开(公告)日：2012-10-30
申请号：US11254519
申请日：2005-10-20
申请人： Giovanni M. Della-Libera , Christopher G. Kaler , Scott A. Konersmann , Butler W. Lampson , Paul J. Leach , Bradford H. Lovering , Steven E. Lucco , Stephen J. Millet , Richard F. Rashid , John P. Shewchuk
发明人： Giovanni M. Della-Libera , Christopher G. Kaler , Scott A. Konersmann , Butler W. Lampson , Paul J. Leach , Bradford H. Lovering , Steven E. Lucco , Stephen J. Millet , Richard F. Rashid , John P. Shewchuk
IPC分类号： H04L29/06
CPC分类号： H04L63/08 , G06Q20/3676 , H04L63/10 , H04L63/168 , H04L63/20 , H04L67/02 , H04L67/28 , H04L67/2804 , H04L67/2823
摘要： A distributed security system is provided. The distributed security system uses a security policy that is written in a policy language that is transport and security protocol independent as well as independent of cryptographic technologies. This security policy can be expressed using the language to create different security components allowing for greater scalability and flexibility. By abstracting underlying protocols and technologies, multiple environments and platforms can be supported.
摘要翻译：提供分布式安全系统。分布式安全系统使用以政策语言编写的安全策略，该策略语言是传输和安全协议独立的，而与密码技术无关。该安全策略可以用语言来表示，以创建不同的安全组件，从而实现更大的可扩展性和灵活性。通过抽象底层协议和技术，可以支持多个环境和平台。

10. 发明授权

US07752442B2 Virtual distributed security system 有权
公开(公告)号：US07752442B2
公开(公告)日：2010-07-06
申请号：US11254539
申请日：2005-10-20
申请人： Giovanni M. Della-Libera , Christopher G. Kaler , Scott A. Konersmann , Butler W. Lampson , Paul J. Leach , Bradford H. Lovering , Steven E. Luocco , Stephen J. Millet , Richard F. Rashid , John P. Shewchuk
发明人： Giovanni M. Della-Libera , Christopher G. Kaler , Scott A. Konersmann , Butler W. Lampson , Paul J. Leach , Bradford H. Lovering , Steven E. Luocco , Stephen J. Millet , Richard F. Rashid , John P. Shewchuk
IPC分类号： H04L9/32
CPC分类号： H04L63/08 , G06Q20/3676 , H04L63/10 , H04L63/168 , H04L63/20 , H04L67/02 , H04L67/28 , H04L67/2804 , H04L67/2823
摘要： A distributed security system is provided. The distributed security system uses a security policy that is written in a policy language that is transport and security protocol independent as well as independent of cryptographic technologies. This security policy can be expressed using the language to create different security components allowing for greater scalability and flexibility. By abstracting underlying protocols and technologies, multiple environments and platforms can be supported.

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式