会员体验
专利管家(专利管理)
工作空间(专利管理)
风险监控(情报监控)
数据分析(专利分析)
侵权分析(诉讼无效)
联系我们
交流群
官方交流:
QQ群: 891211   
微信请扫码    >>>
现在联系顾问~
热词
    • 7. 发明申请
    • Autonomic execution tracking and correction of functions
    • 自动执行跟踪和功能校正
    • US20050066311A1
    • 2005-03-24
    • US10876024
    • 2004-06-24
    • Joachim HagmeierAlbert SchaalTorsten Teich
    • Joachim HagmeierAlbert SchaalTorsten Teich
    • G06F9/44
    • G06F11/3636
    • The present invention relates to computing systems, and in particular to a method for tracking the execution of a computer program during execution thereof. In order to reduce errors or fraud in the execution flow of the program it is proposed to insert so-called trace code instructions (TCI) (220, 222, 224, 226, 228, 230) multiply into the program's source code (20) in particular at crucial locations thereof. Said trace code when executed or interpreted in Interpreter-based programming languages—calculates some verification information, which can be used by checking its calculation results for determining if or if not the program execution path was the expected one. If an unexpected result occurs, predetermined, programmed measures can be undertaken according to the respective environment, application or security policy.
    • 本发明涉及计算系统,特别涉及一种在执行期间跟踪计算机程序执行的方法。 为了减少程序的执行流程中的错误或欺诈,建议将所谓的跟踪代码指令(TCI)(220,222,224,226,228,230)乘以程序的源代码(20), 特别是在其关键位置。 所述跟踪代码在基于解释器的编程语言中执行或解释时,计算一些验证信息,可以通过检查其计算结果来确定程序执行路径是否为预期的程序来使用。 如果发生意外的结果,可以根据相应的环境,应用或安全策略进行预定的编程措施。
    • 10. 发明申请
    • System and method for authenticating clients in a client-server environment
    • 用于在客户端 - 服务器环境中验证客户端的系统和方法
    • US20060264202A1
    • 2006-11-23
    • US10564177
    • 2004-05-19
    • Joachim HagmeierJoachim BruchlosTimo Kussmaul
    • Joachim HagmeierJoachim BruchlosTimo Kussmaul
    • H04M1/66H04M1/68H04M3/16
    • H04L63/0823H04L63/0884H04L67/02H04L69/22
    • The idea of the present invention is to replace the existing password/user ID based authentication process by a new digital signature authentication process in which preferably the first HTTP-request header is extended by the client authentication information independently of the authentication process used by the destination server and without server requesting authentication information. The authentication information preferably includes the client certificate containing the client public key, signed by certification authority, and preferably a hash value calculated over the HTTP-request header data being sent in the request, and encrypted with the Client's private key. The certificate and digital signature may be added during the creation of the HTTP-request header in the client system itself, or may be added later in a server acting as a gateway, proxy, or tunnel. A destination server that does not support the new digital signature authentication process will simply ignore the certificate and digital signature in the HTTP-request header and will automatically initiate its own authentication process. The present invention simplifies the existing digital signature authentication process and concurrently allows the coexistence of different authentication processes without changing the HTTP-protocol or causing unnecessary network traffic.
    • 本发明的思想是通过新的数字签名认证过程替换现有的基于密码/用户ID的认证过程,其中优选地,第一HTTP请求报头由客户端认证信息扩展,独立于目的地使用的认证过程 服务器,无服务器请求认证信息。 认证信息优选地包括包含由认证机构签名的客户端公钥的客户端证书,并且优选地包括通过在请求中发送的HTTP请求报头数据计算的散列值,并且用客户端的私钥加密。 可以在客户端系统本身的HTTP请求头部的创建过程中添加证书和数字签名,或者可以在作为网关,代理或隧道的服务器中稍后添加。 不支持新的数字签名认证过程的目标服务器将简单地忽略HTTP请求头中的证书和数字签名,并自动启动自己的认证过程。 本发明简化了现有的数字签名认证过程,并且同时允许不同认证过程的共存而不改变HTTP协议或引起不必要的网络流量。