专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明申请

US20060061475A1 System and method for disabling RFID tags 有权
标题翻译：禁用RFID标签的系统和方法
公开(公告)号：US20060061475A1
公开(公告)日：2006-03-23
申请号：US10946975
申请日：2004-09-22
申请人： Paul Moskowitz , Robert von Gutfeld , Guenter Karjoth
发明人： Paul Moskowitz , Robert von Gutfeld , Guenter Karjoth
IPC分类号： G08B13/14
CPC分类号： G06K19/0739 , G08B13/2417 , G08B13/242
摘要： The invention provides protection to wireless portable transponders from unauthorized interrogation by employing a mechanical means for disabling reception by or from the antenna of the transponder. Transponders include RFID tags that are attached to items that a persons may purchase or carry. Such transponders generally have means for receiving and storing electronic and other information, commonly in binary form using memories as in electronic circuits, etc.. The invention is designed to provide privacy of electronic information. The tags can be protected from receiving or providing unauthorized or unwanted information. The invention provides the mechanical means that permit the owner to decide when reception/interrogation of personal or other information is not desired by employing the provided mechanical disable control means.
摘要翻译：本发明通过采用用于禁止或从该应答器的天线接收的机械装置来提供对来自未经授权的询问的无线便携式应答器的保护。应答器包括附着在人可以购买或携带的物品上的RFID标签。这样的转发器通常具有用于接收和存储电子和其他信息的装置，通常以使用诸如电子电路等的存储器的二进制形式存储。本发明被设计为提供电子信息的隐私。可以保护标签免受接收或提供未经授权或不需要的信息。本发明提供了机械装置，其允许所有者通过采用所提供的机械禁用控制装置来决定何时不希望接收/询问个人或其他信息。

2. 发明申请

US20070285250A1 System and Method for Disabling RFID Tags 失效
标题翻译：禁用RFID标签的系统和方法
公开(公告)号：US20070285250A1
公开(公告)日：2007-12-13
申请号：US11836059
申请日：2007-08-08
申请人： Paul Moskowitz , Robert von Gutfeld , Guenter Karjoth
发明人： Paul Moskowitz , Robert von Gutfeld , Guenter Karjoth
IPC分类号： H04Q5/22
CPC分类号： G06K19/0739 , G08B13/2417 , G08B13/242
摘要： The invention provides protection to wireless portable transponders from unauthorized interrogation by employing a mechanical means for disabling reception by or from the antenna of the transponder. Transponders include RFID tags that are attached to items that a persons may purchase or carry. Such transponders generally have means for receiving and storing electronic and other information, commonly in binary form using memories as in electronic circuits, etc. The invention is designed to provide privacy of electronic information. The tags can be protected from receiving or providing unauthorized or unwanted information. The invention provides the mechanical means that permit the owner to decide when reception/interrogation of personal or other information is not desired by employing the provided mechanical disable control means.
摘要翻译：本发明通过采用用于禁止或从该应答器的天线接收的机械装置来提供对来自未经授权的询问的无线便携式应答器的保护。应答器包括附着在人可以购买或携带的物品上的RFID标签。这样的转发器通常具有用于接收和存储电子信息和其他信息的装置，通常以二进制形式使用诸如电子电路中的存储器等。本发明旨在提供电子信息的隐私。可以保护标签免受接收或提供未经授权或不需要的信息。本发明提供了机械装置，其允许所有者通过采用所提供的机械禁用控制装置来决定何时不希望接收/询问个人或其他信息。

3. 发明授权

US08458764B2 Serialization of XACML policies 失效
标题翻译： XACML策略的序列化
公开(公告)号：US08458764B2
公开(公告)日：2013-06-04
申请号：US12419445
申请日：2009-04-07
申请人： Guenter Karjoth , Andreas Schade
发明人： Guenter Karjoth , Andreas Schade
IPC分类号： G06F17/00
CPC分类号： H04L63/101 , G06F21/6227 , G06F2221/2141 , G06F2221/2145 , G06F2221/2149 , H04L63/20 , H04L67/2823
摘要： A computer implemented access control system, the system includes a database for storing a serialized version of an XACML permissions hierarchy. The system also includes a memory for storing an original version of the XACML permissions hierarchy, and an XACML serialization engine configured to convert the XACML permissions hierarchy into the serialized version, wherein the serialized version contains a listing of at least a portion of the predicates possible in the XACML permission hierarchy and the effect on each of the portion of the predicates.
摘要翻译：一种计算机实现的访问控制系统，该系统包括用于存储XACML权限层级的序列化版本的数据库。该系统还包括用于存储XACML许可层次的原始版本的存储器，以及被配置为将XACML权限层级转换为序列化版本的XACML序列化引擎，其中序列化版本包含可能的至少一部分谓词的列表在XACML权限层次结构中以及对谓词中每一部分的影响。

4. 发明申请

US20110247046A1 Access control in data processing systems 失效
标题翻译：数据处理系统中的访问控制
公开(公告)号：US20110247046A1
公开(公告)日：2011-10-06
申请号：US13077881
申请日：2011-03-31
申请人： Thomas R. Gross , Guenter Karjoth
发明人： Thomas R. Gross , Guenter Karjoth
IPC分类号： G06F21/00
CPC分类号： H04L63/10 , G06F21/00 , G06F21/6218 , G06F2221/2141 , H04L63/20
摘要： A policy data structure defines predetermined authorizations, each relating to authorization of at least one user to access at least one resource as well as to dynamic access requests. Each dynamic access request indicates a condition to be satisfied by a respective set of attributes associated with a user request to access a resource and for the request to be granted in absence of an authorization determinative of the request. If the structure does not define an authorization for a request to access a resource, it is determined whether the structure defines a dynamic access requirement determinative for the request, and if so, whether to grant the request in accordance with the respective set of attributes associated with the request. For at least one request, after determining whether to grant the request, a dynamic authorization relating to authorization to access the resource within the request is added to the structure.
摘要翻译：策略数据结构定义了预定授权，每个授权涉及至少一个用户访问至少一个资源以及动态访问请求的授权。每个动态访问请求指示通过与访问资源的用户请求相关联的相应属性集以及在没有对请求的授权决定性的情况下被授予的请求来满足的条件。如果结构没有定义对访问资源的请求的授权，则确定结构是否定义了针对请求的动态访问需求确定性，如果是，则是否根据相关属性集合来授予请求与请求。对于至少一个请求，在确定是否授予请求之后，向该结构添加与请求中访问资源的授权有关的动态授权。

5. 发明申请

US20110035241A1 Anonymous Separation of Duties with Credentials 失效
标题翻译：匿名分离职责与证书
公开(公告)号：US20110035241A1
公开(公告)日：2011-02-10
申请号：US12536874
申请日：2009-08-06
申请人： Jan Camenisch , Christopher J. Giblin , Thomas R. Gross , Guenter Karjoth
发明人： Jan Camenisch , Christopher J. Giblin , Thomas R. Gross , Guenter Karjoth
IPC分类号： G06Q10/00 , G06Q99/00
CPC分类号： G06Q10/00 , G06Q10/063 , G06Q20/383 , G06Q30/018
摘要： A system for anonymous separation of duties with credentials includes an identity provider, the identity provider configured to issue anonymous credentials to a user based on one or more attributes of the user; a service provider, the service provider configured to issue a pseudonym to the user based on the user's anonymous credentials, and to associate the user's pseudonym with a step of an instance of a business process hosted on the service provider, the step being completed by the user; and an auditor, the auditor configured to determine if the completion of the step of the instance of the business process by the user is compliant with a separation of duties policy.
摘要翻译：用于凭借凭证匿名分离职责的系统包括身份提供者，身份提供者被配置为基于用户的一个或多个属性向用户发布匿名凭证; 服务提供商，所述服务提供商被配置为基于所述用户的匿名凭证向所述用户发布假名，并且将所述用户的假名与所述服务提供商上托管的业务流程的实例的步骤相关联，所述步骤由用户; 和审核员，审核员被配置为确定用户完成业务流程实例的步骤是否符合职责分离政策。

6. 发明申请

US20060184995A1 Creating a privacy policy from a process model and verifying the compliance 审中-公开
标题翻译：从过程模型创建隐私策略并验证合规性
公开(公告)号：US20060184995A1
公开(公告)日：2006-08-17
申请号：US11317396
申请日：2005-12-22
申请人： Michael Backes , Guenter Karjoth , Birgit Pfitzmann , Matthias Schunter , Michael Waidner
发明人： Michael Backes , Guenter Karjoth , Birgit Pfitzmann , Matthias Schunter , Michael Waidner
IPC分类号： H04L9/00
CPC分类号： G06Q10/06 , G06Q10/063
摘要： The present invention provides methods and apparatus for creating a privacy policy from a process model, and methods and apparatus for checking the compliance of a privacy policy. An example of a method for creating a privacy policy from a process model according to the invention comprises the following steps. First, a task from the process model is chosen. Then one or more of the elements role, data, purpose, action, obligation, and condition are gathered from the task and a rule is build up by means of these elements. Finally the rule is added to the privacy policy.
摘要翻译：本发明提供了用于从过程模型创建隐私策略的方法和装置，以及用于检查隐私策略的合规性的方法和装置。根据本发明的用于从过程模型创建隐私策略的方法的示例包括以下步骤。首先，选择过程模型的任务。然后，从任务中收集一个或多个元素的角色，数据，目的，行为，义务和条件，并通过这些元素建立规则。最后将规则添加到隐私政策中。

7. 发明授权

US07069427B2 Using a rules model to improve handling of personally identifiable information 失效
公开(公告)号：US07069427B2
公开(公告)日：2006-06-27
申请号：US09884153
申请日：2001-06-19
申请人： Steven B. Adler , Endre Felix Bangerter , Nigel Howard Julian Brown , Jan Camenisch , Arthur M. Gilbert , Guenter Karjoth , Dogan Kesdogan , Michael Robert McCullough , Adam Charles Nelson , Charles Campbell Palmer , Martin Joseph Clayton Presler-Marshall , Michael Schnyder , Elsie Van Herreweghen , Michael Waidner
发明人： Steven B. Adler , Endre Felix Bangerter , Nigel Howard Julian Brown , Jan Camenisch , Arthur M. Gilbert , Guenter Karjoth , Dogan Kesdogan , Michael Robert McCullough , Adam Charles Nelson , Charles Campbell Palmer , Martin Joseph Clayton Presler-Marshall , Michael Schnyder , Elsie Van Herreweghen , Michael Waidner
IPC分类号： G06F9/00
CPC分类号： G06F21/6254 , G06F21/6245
摘要： The present invention is a system and method for handling personally identifiable information, using a rules model. The invention involves defining a limited number of privacy-related actions regarding personally identifiable information; constructing a rule for each circumstance in which one of said privacy-related actions may be taken or must be taken; allowing for the input of dynamic contextual information to precisely specify the condition for evaluation of a rule; creating a programming object containing at least one of said rules; associating the programming object with personally identifiable information; processing a request; and providing an output. The invention does not merely give a “yes-or-no answer. The invention has the advantage of being able to specify additional actions that must be taken. The invention may use a computer system and network. One aspect of the present invention is a method for handling personally identifiable information. Another aspect of the present invention is a system for executing the method of the present invention. A third aspect of the present invention is as a set of instructions on a computer-usable medium, or resident in a computer system, for executing the method of the present invention.

8. 发明授权

US08875224B2 Access control in data processing system 有权
标题翻译：数据处理系统中的访问控制
公开(公告)号：US08875224B2
公开(公告)日：2014-10-28
申请号：US13460842
申请日：2012-05-01
申请人： Thomas R. Gross , Guenter Karjoth
发明人： Thomas R. Gross , Guenter Karjoth
IPC分类号： G06F9/00 , G06F21/00
CPC分类号： H04L63/10 , G06F21/00 , G06F21/6218 , G06F2221/2141 , H04L63/20
摘要： A policy data structure defines predetermined authorizations, each relating to authorization of at least one user to access at least one resource as well as to dynamic access requests. Each dynamic access request indicates a condition to be satisfied by a respective set of attributes associated with a user request to access a resource and for the request to be granted in absence of an authorization determinative of the request. If the structure does not define an authorization for a request to access a resource, it is determined whether the structure defines a dynamic access requirement determinative for the request, and if so, whether to grant the request in accordance with the respective set of attributes associated with the request. For at least one request, after determining whether to grant the request, a dynamic authorization relating to authorization to access the resource within the request is added to the structure.
摘要翻译：策略数据结构定义了预定授权，每个授权涉及至少一个用户访问至少一个资源以及动态访问请求的授权。每个动态访问请求指示通过与访问资源的用户请求相关联的相应属性集以及在没有对请求的授权决定性的情况下被授予的请求来满足的条件。如果结构没有定义用于访问资源的请求的授权，则确定结构是否定义了针对请求的动态访问需求确定性，并且如果是，是否根据相关属性集合来授予请求与请求。对于至少一个请求，在确定是否授予请求之后，向该结构添加与请求中访问资源的授权有关的动态授权。

9. 发明申请

US20120216247A1 Access control in data processing system 有权
标题翻译：数据处理系统中的访问控制
公开(公告)号：US20120216247A1
公开(公告)日：2012-08-23
申请号：US13460842
申请日：2012-05-01
申请人： Thomas R. Gross , Guenter Karjoth
发明人： Thomas R. Gross , Guenter Karjoth
IPC分类号： G06F21/00
CPC分类号： H04L63/10 , G06F21/00 , G06F21/6218 , G06F2221/2141 , H04L63/20
摘要： A policy data structure defines predetermined authorizations, each relating to authorization of at least one user to access at least one resource as well as to dynamic access requests. Each dynamic access request indicates a condition to be satisfied by a respective set of attributes associated with a user request to access a resource and for the request to be granted in absence of an authorization determinative of the request. If the structure does not define an authorization for a request to access a resource, it is determined whether the structure defines a dynamic access requirement determinative for the request, and if so, whether to grant the request in accordance with the respective set of attributes associated with the request. For at least one request, after determining whether to grant the request, a dynamic authorization relating to authorization to access the resource within the request is added to the structure.
摘要翻译：策略数据结构定义了预定授权，每个授权涉及至少一个用户访问至少一个资源以及动态访问请求的授权。每个动态访问请求指示通过与访问资源的用户请求相关联的相应属性集以及在没有对请求的授权决定性的情况下被授予的请求来满足的条件。如果结构没有定义用于访问资源的请求的授权，则确定结构是否定义了针对请求的动态访问需求确定性，并且如果是，是否根据相关属性集合来授予请求与请求。对于至少一个请求，在确定是否授予请求之后，向该结构添加与请求中访问资源的授权有关的动态授权。

10. 发明授权

US07617393B2 Implementation and use of PII data access control facility employing personally identifying information labels and purpose serving function sets 有权
标题翻译：实施和使用使用个人识别信息标签和目的服务功能集的PII数据访问控制设施
公开(公告)号：US07617393B2
公开(公告)日：2009-11-10
申请号：US11764487
申请日：2007-06-18
申请人： Linda Betz , John C. Dayka , Walter B. Farrell , Richard H. Guski , Guenter Karjoth , Mark A. Nelson , Birgit M. Pfitzmann , Michael P. Waidner , Matthias Schunter
发明人： Linda Betz , John C. Dayka , Walter B. Farrell , Richard H. Guski , Guenter Karjoth , Mark A. Nelson , Birgit M. Pfitzmann , Michael P. Waidner , Matthias Schunter
IPC分类号： H04L29/00
CPC分类号： G06F21/629 , G06F21/6245 , G06F2221/2101 , G06F2221/2113 , G06F2221/2141 , G06F2221/2149
摘要： A data access control facility is implemented by assigning personally identifying information (PII) classification labels to PII data objects, with each PII data object having one PII classification label assigned thereto. The control facility further includes at least one PII purpose serving function set (PSFS) comprising a list of application functions that read or write PII data objects. Each PII PSFS is also assigned a PII classification label. A PII data object is accessible via an application function of a PII PSFS having a PII classification label that is identical to or dominant of the PII classification label of the PII object. A user of the control facility is assigned a PII clearance set which contains a list of at least one PII classification label, which is employed in determining whether the user is entitled to access a particular function.
摘要翻译：通过将个人识别信息（PII）分类标签分配给PII数据对象来实现数据访问控制设施，每个PII数据对象分配有一个PII分类标签。控制设备还包括至少一个PII目的服务功能集（PSFS），其包括读或写PII数据对象的应用功能列表。每个PII PSFS也被分配了一个PII分类标签。 PII数据对象可通过具有与PII对象的PII分类标签相同或占优势的PII分类标签的PII PSFS的应用功能来访问。控制设备的用户被分配有PII间隙组，其包含至少一个PII分类标签的列表，该列表用于确定用户是否有权访问特定功能。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式