专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明申请

US20110047589A1 DYNAMIC SWITCHING OF SECURITY CONFIGURATIONS 有权
标题翻译：动态配置的动态切换
公开(公告)号：US20110047589A1
公开(公告)日：2011-02-24
申请号：US12544745
申请日：2009-08-20
申请人： Paul W. Bennett , Elisa A. Ferracane , Daniel E. Morris , Michael C. Thompson
发明人： Paul W. Bennett , Elisa A. Ferracane , Daniel E. Morris , Michael C. Thompson
IPC分类号： G06F21/00 , G06F9/00
CPC分类号： G06F21/6209
摘要： Disclosed is a computer implemented method, computer program product, and apparatus to switch security configurations. A data processing system accesses a first security configuration via a thread of execution, wherein a security configuration comprises at least one security parameter. The thread receives an incoming request. The thread switches to a second security configuration that specifies a resource, based on the incoming request, responsive to receiving the incoming request. The thread stores the second security configuration or a reference to the second security configuration to a stack. The thread authenticates the incoming request based on the second security configuration. The thread grants or denies access to the resource. The thread executes a method referenced in the incoming request. The thread restores to a first security configuration, responsive to completing the method.
摘要翻译：公开了一种计算机实现的方法，计算机程序产品和用于切换安全配置的装置。数据处理系统经由执行线程访问第一安全配置，其中安全配置包括至少一个安全参数。线程接收传入请求。线程根据接收到的请求，切换到第二个安全配置，根据传入请求指定资源。该线程将第二安全配置或对第二安全配置的引用存储到堆栈。该线程基于第二安全配置来认证传入请求。线程授予或拒绝对资源的访问。线程执行传入请求中引用的方法。线程恢复到第一个安全配置，响应完成该方法。

2. 发明授权

US09292702B2 Dynamic switching of security configurations 有权
标题翻译：动态切换安全配置
公开(公告)号：US09292702B2
公开(公告)日：2016-03-22
申请号：US12544745
申请日：2009-08-20
申请人： Paul W. Bennett , Elisa A. Ferracane , Daniel E. Morris , Michael C. Thompson
发明人： Paul W. Bennett , Elisa A. Ferracane , Daniel E. Morris , Michael C. Thompson
IPC分类号： G06F21/00 , G06F21/62
CPC分类号： G06F21/6209
摘要： Disclosed is a computer implemented method, computer program product, and apparatus to switch security configurations. A data processing system accesses a first security configuration via a thread of execution, wherein a security configuration comprises at least one security parameter. The thread receives an incoming request. The thread switches to a second security configuration that specifies a resource, based on the incoming request, responsive to receiving the incoming request. The thread stores the second security configuration or a reference to the second security configuration to a stack. The thread authenticates the incoming request based on the second security configuration. The thread grants or denies access to the resource. The thread executes a method referenced in the incoming request. The thread restores to a first security configuration, responsive to completing the method.
摘要翻译：公开了一种计算机实现的方法，计算机程序产品和用于切换安全配置的装置。数据处理系统经由执行线程访问第一安全配置，其中安全配置包括至少一个安全参数。线程接收传入请求。线程根据接收到的请求，切换到第二个安全配置，根据传入请求指定资源。该线程将第二安全配置或对第二安全配置的引用存储到堆栈。该线程基于第二安全配置来认证传入请求。线程授予或拒绝对资源的访问。线程执行传入请求中引用的方法。线程恢复到第一个安全配置，响应完成该方法。

3. 发明授权

US08522307B2 Flexibly assigning security configurations to applications 有权
标题翻译：灵活地将安全配置分配给应用程序
公开(公告)号：US08522307B2
公开(公告)日：2013-08-27
申请号：US13413631
申请日：2012-03-06
申请人： Paul W. Bennett , Elisa Ferracane , Daniel E. Morris , Michael C. Thompson
发明人： Paul W. Bennett , Elisa Ferracane , Daniel E. Morris , Michael C. Thompson
IPC分类号： H04L9/00 , H04L9/32
CPC分类号： H04L63/104 , G06F21/335
摘要： A method, system, and computer usable program product for flexibly assigning security configurations to applications are provided in the illustrative embodiments. An embodiment determines, forming a first determination, whether a first identifier identifying the application is mapped to the security configuration. The embodiment determines, forming a second determination, whether the application participates in a group by determining whether a second identifier identifying the group is mapped to the security configuration. The embodiment assigns, forming a first assignment, the security configuration to the application if either of the first and the second determinations is true. The embodiment assigns, forming a second assignment, the security configuration to the application using a determination by a first policy if the first and the second determinations are false.
摘要翻译：在说明性实施例中提供了用于将安全配置灵活地分配给应用的方法，系统和计算机可用程序产品。实施例确定形成第一确定，识别应用的第一标识符是否映射到安全配置。该实施例通过确定标识组的第二标识符是否映射到安全配置来确定应用程序是否参与组，确定第二确定。如果第一和第二确定中的任一个为真，则该实施例将安全配置分配给应用程序。如果第一和第二确定是假的，则该实施例使用第一策略的确定来将安全配置分配给应用。

4. 发明授权

US08230478B2 Flexibly assigning security configurations to applications 有权
标题翻译：灵活地将安全配置分配给应用程序
公开(公告)号：US08230478B2
公开(公告)日：2012-07-24
申请号：US12548767
申请日：2009-08-27
申请人： Paul W. Bennett , Elisa Ferracane , Daniel E. Morris , Michael C. Thompson
发明人： Paul W. Bennett , Elisa Ferracane , Daniel E. Morris , Michael C. Thompson
IPC分类号： H04L9/00 , H04L9/32
CPC分类号： H04L63/104 , G06F21/335
摘要： A method, system, and computer usable program product for flexibly assigning security configurations to applications are provided in the illustrative embodiments. An embodiment determines, forming a first determination, whether a first identifier identifying the application is mapped to the security configuration. The embodiment determines, forming a second determination, whether the application participates in a group by determining whether a second identifier identifying the group is mapped to the security configuration. The embodiment assigns, forming a first assignment, the security configuration to the application if either of the first and the second determinations is true. The embodiment assigns, forming a second assignment, the security configuration to the application using a determination by a first policy if the first and the second determinations are false.
摘要翻译：在说明性实施例中提供了用于将安全配置灵活地分配给应用的方法，系统和计算机可用程序产品。实施例确定形成第一确定，识别应用的第一标识符是否映射到安全配置。该实施例通过确定标识组的第二标识符是否映射到安全配置来确定应用程序是否参与组，确定第二确定。如果第一和第二确定中的任一个为真，则该实施例将安全配置分配给应用程序。如果第一和第二确定是假的，则该实施例使用第一策略的确定来将安全配置分配给应用。

5. 发明申请

US20110055926A1 FLEXIBLY ASSIGNING SECURITY CONFIGURATIONS TO APPLICATIONS 有权
标题翻译：灵活地将安全配置分配给应用程序
公开(公告)号：US20110055926A1
公开(公告)日：2011-03-03
申请号：US12548767
申请日：2009-08-27
申请人： Paul W. Bennett , Elisa Ferracane , Daniel E. Morris , Michael C. Thompson
发明人： Paul W. Bennett , Elisa Ferracane , Daniel E. Morris , Michael C. Thompson
IPC分类号： G06F21/00
CPC分类号： H04L63/104 , G06F21/335
摘要： A method, system, and computer usable program product for flexibly assigning security configurations to applications are provided in the illustrative embodiments. An embodiment determines, forming a first determination, whether a first identifier identifying the application is mapped to the security configuration. The embodiment determines, forming a second determination, whether the application participates in a group by determining whether a second identifier identifying the group is mapped to the security configuration. The embodiment assigns, forming a first assignment, the security configuration to the application if either of the first and the second determinations is true. The embodiment assigns, forming a second assignment, the security configuration to the application using a determination by a first policy if the first and the second determinations are false.
摘要翻译：在说明性实施例中提供了用于将安全配置灵活地分配给应用的方法，系统和计算机可用程序产品。实施例确定形成第一确定，识别应用的第一标识符是否映射到安全配置。该实施例通过确定标识组的第二标识符是否映射到安全配置来确定应用程序是否参与组，确定第二确定。如果第一和第二确定中的任一个为真，则该实施例将安全配置分配给应用程序。如果第一和第二确定是假的，则该实施例使用第一策略的确定来将安全配置分配给应用。

6. 发明申请

US20110296496A1 System and Method for Maintaining Dual Identity in a Server Process 有权
标题翻译：在服务器进程中维护双重身份的系统和方法
公开(公告)号：US20110296496A1
公开(公告)日：2011-12-01
申请号：US12788682
申请日：2010-05-27
申请人： William J. O'Donnell , Elisa Ferracane , Paul W. Bennett , Michael C. Thompson
发明人： William J. O'Donnell , Elisa Ferracane , Paul W. Bennett , Michael C. Thompson
IPC分类号： G06F15/16 , G06F17/00
CPC分类号： H04L63/102 , G06F21/31 , G06F21/629 , H04L63/08 , H04L63/0815 , H04L63/10
摘要： A method, system and computer-usable medium are disclosed for managing identity authorizations to access information processing system resources. An application thread requiring access to target resources is initiated and associated with an authenticated client identity and a server identity. The resource authorization attribute of a resource required for execution of the application thread designates the use of a client identity, a server identity, or a client identity and server identity when attempting authorized access of the resource. The client identity, the server identity, or the client identity and server identity is then respectively used to access the target resource and the application thread is executed.
摘要翻译：公开了用于管理身份授权以访问信息处理系统资源的方法，系统和计算机可用介质。启动需要访问目标资源的应用程序线程，并与经过身份验证的客户端身份和服务器身份相关联。执行应用程序线程所需的资源的资源授权属性在尝试授权访问资源时指定使用客户端标识，服务器标识或客户端标识和服务器标识。然后分别使用客户端身份，服务器身份或客户端身份和服务器身份来访问目标资源，并执行应用程序线程。

7. 发明授权

US08955052B2 System and method for maintaining dual identity in a server process 有权
标题翻译：在服务器进程中维护双重身份的系统和方法
公开(公告)号：US08955052B2
公开(公告)日：2015-02-10
申请号：US12788682
申请日：2010-05-27
申请人： William J. O'Donnell , Elisa Ferracane , Paul W. Bennett , Michael C. Thompson
发明人： William J. O'Donnell , Elisa Ferracane , Paul W. Bennett , Michael C. Thompson
IPC分类号： H04L29/06 , G06F21/62 , G06F21/31
CPC分类号： H04L63/102 , G06F21/31 , G06F21/629 , H04L63/08 , H04L63/0815 , H04L63/10
摘要： A method, system and computer-usable medium are disclosed for managing identity authorizations to access information processing system resources. An application thread requiring access to target resources is initiated and associated with an authenticated client identity and a server identity. The resource authorization attribute of a resource required for execution of the application thread designates the use of a client identity, a server identity, or a client identity and server identity when attempting authorized access of the resource. The client identity, the server identity, or the client identity and server identity is then respectively used to access the target resource and the application thread is executed.
摘要翻译：公开了用于管理身份授权以访问信息处理系统资源的方法，系统和计算机可用介质。启动需要访问目标资源的应用程序线程，并与经过身份验证的客户端身份和服务器身份相关联。执行应用程序线程所需的资源的资源授权属性在尝试授权访问资源时指定使用客户端标识，服务器标识或客户端标识和服务器标识。然后分别使用客户端身份，服务器身份或客户端身份和服务器身份来访问目标资源，并执行应用程序线程。

8. 发明授权

US09147062B2 Renewal of user identification information 有权
标题翻译：更新用户识别信息
公开(公告)号：US09147062B2
公开(公告)日：2015-09-29
申请号：US13172699
申请日：2011-06-29
申请人： Paul W. Bennett , Christopher M. Dettlaff , Elisa Ferracane , William J. O'Donnell , Michael C. Thompson
发明人： Paul W. Bennett , Christopher M. Dettlaff , Elisa Ferracane , William J. O'Donnell , Michael C. Thompson
IPC分类号： H04L9/00 , G06F21/33
CPC分类号： G06F21/33
摘要： A method, data processing system, and computer program product for managing user identification information. A determination is made whether an instance of security information in use on the first application server and referenced by a token that has expired was generated by an application server compatible with a first application server in response to receiving the token. A determination is made whether the instance of the security information is managed by a set of rules for a group of users of the first application server. A determination is made whether a user identifier from the token is authorized to access the first application server. The token is renewed in response to determining that the user identifier is authorized to access the first application server.
摘要翻译：一种用于管理用户识别信息的方法，数据处理系统和计算机程序产品。确定在与第一应用服务器兼容的应用服务器响应于接收到令牌而生成了在第一应用服务器上使用并被具有过期的令牌引用的安全信息的实例是否由与第一应用服务器兼容的应用服务器生成。确定安全信息的实例是否由第一应用服务器的用户组的一组规则管理。确定来自令牌的用户标识符是否被授权访问第一应用服务器。响应于确定用户标识符被授权访问第一应用服务器而更新令牌。

9. 发明授权

US09582407B2 Security role testing using an embeddable container and properties object 有权
标题翻译：使用可嵌入容器和属性对象进行安全角色测试
公开(公告)号：US09582407B2
公开(公告)日：2017-02-28
申请号：US13034907
申请日：2011-02-25
申请人： Paul W. Bennett , Elisa Ferracane , William J. O'Donnell , Michael C. Thompson
发明人： Paul W. Bennett , Elisa Ferracane , William J. O'Donnell , Michael C. Thompson
IPC分类号： G06F9/44 , G06F11/36 , G06F21/62
CPC分类号： G06F11/3688 , G06F21/6218
摘要： Mechanisms are provided for performing security role definition testing. An application is received in a container of a runtime environment of the data processing system. The application has methods and security role definitions associated with the methods. A properties object, which specifies a user identifier to security role mapping, is received in the container. A test application is executed, in the container, by the processor, on an execution of the methods of the application based on the user identifier to security role mapping and the security role definitions. The test application tests an operation of the application with regard to the security role definitions. A result of the execution of the test application on the execution of the methods of the application is then output.
摘要翻译：提供了执行安全角色定义测试的机制。在数据处理系统的运行时环境的容器中接收应用程序。该应用程序具有与方法相关联的方法和安全角色定义。在容器中收到一个属性对象，它指定安全角色映射的用户标识符。测试应用程序在容器中由处理器根据用户标识符对安全角色映射和安全角色定义执行应用程序的方法。测试应用程序测试应用程序对安全角色定义的操作。然后输出在执行应用程序的方法时执行测试应用程序的结果。

10. 发明申请

US20130007856A1 RENEWAL OF USER IDENTIFICATION INFORMATION 有权
标题翻译：更新用户识别信息
公开(公告)号：US20130007856A1
公开(公告)日：2013-01-03
申请号：US13172699
申请日：2011-06-29
申请人： Paul W. Bennett , Christopher M. Dettlaff , Elisa Ferracane , William J. O'Donnell , Michael C. Thompson
发明人： Paul W. Bennett , Christopher M. Dettlaff , Elisa Ferracane , William J. O'Donnell , Michael C. Thompson
IPC分类号： G06F17/00
CPC分类号： G06F21/33
摘要： A method, data processing system, and computer program product for managing user identification information. A determination is made whether an instance of security information in use on the first application server and referenced by a token that has expired was generated by an application server compatible with a first application server in response to receiving the token. A determination is made whether the instance of the security information is managed by a set of rules for a group of users of the first application server. A determination is made whether a user identifier from the token is authorized to access the first application server. The token is renewed in response to determining that the user identifier is authorized to access the first application server.
摘要翻译：一种用于管理用户识别信息的方法，数据处理系统和计算机程序产品。确定在与第一应用服务器兼容的应用服务器响应于接收到令牌而生成了在第一应用服务器上使用并被具有过期的令牌引用的安全信息的实例是否由与第一应用服务器兼容的应用服务器生成。确定安全信息的实例是否由第一应用服务器的用户组的一组规则管理。确定来自令牌的用户标识符是否被授权访问第一应用服务器。响应于确定用户标识符被授权访问第一应用服务器而更新令牌。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式