专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明申请

US20080148344A1 DYNAMIC WEB SERVICE POLICY BROADCASTING/ENFORCEMENT FOR APPLICATIONS 有权
标题翻译：动态WEB服务政策广播/应用执行
公开(公告)号：US20080148344A1
公开(公告)日：2008-06-19
申请号：US11613128
申请日：2006-12-19
申请人： Ramon Rubio , Wei-Jhy Chern
发明人： Ramon Rubio , Wei-Jhy Chern
IPC分类号： G06F21/00
CPC分类号： G06F21/31 , G06F21/33 , G06F21/335 , H04L63/0807 , H04L63/0815 , H04L63/105
摘要： A system enables a client coupled to a server via a network to exchange security policy information across the network. The client is configured to determine security policy associated with the server based on a notification returned from the server. The notification having policy information embedded therein is issued by the server in response to the server's decision to deny client's access request. Based on the policy information embedded in the notification, the client is configured to generate a new access request by either acquiring information from a client user or selecting a different credential from a library of credentials.
摘要翻译：系统使客户端可以通过网络耦合到服务器，以跨网络交换安全策略信息。客户端被配置为基于从服务器返回的通知来确定与服务器相关联的安全策略。响应于服务器拒绝客户端访问请求的决定，由服务器发出具有嵌入其中的策略信息的通知。基于嵌入在通知中的策略信息，客户端被配置为通过从客户端用户获取信息或从凭证库中选择不同的凭证来生成新的访问请求。

2. 发明授权

US08171535B2 Dynamic web service policy broadcasting/enforcement for applications 有权
标题翻译：动态Web服务策略广播/执行应用程序
公开(公告)号：US08171535B2
公开(公告)日：2012-05-01
申请号：US11613128
申请日：2006-12-19
申请人： Ramon Rubio , Wei-Jhy Chern
发明人： Ramon Rubio , Wei-Jhy Chern
IPC分类号： G06F21/00
CPC分类号： G06F21/31 , G06F21/33 , G06F21/335 , H04L63/0807 , H04L63/0815 , H04L63/105
摘要： A system enables a client coupled to a server via a network to exchange security policy information across the network. The client is configured to determine security policy associated with the server based on a notification returned from the server. The notification having policy information embedded therein is issued by the server in response to the server's decision to deny client's access request. Based on the policy information embedded in the notification, the client is configured to generate a new access request by either acquiring information from a client user or selecting a different credential from a library of credentials.
摘要翻译：系统使客户端可以通过网络耦合到服务器，以跨网络交换安全策略信息。客户端被配置为基于从服务器返回的通知来确定与服务器相关联的安全策略。响应于服务器拒绝客户端访问请求的决定，由服务器发出具有嵌入其中的策略信息的通知。基于嵌入在通知中的策略信息，客户端被配置为通过从客户端用户获取信息或从凭证库中选择不同的凭证来生成新的访问请求。

3. 发明授权

US08732811B2 Systems and methods for implementing security services 有权
标题翻译：用于实施安全服务的系统和方法
公开(公告)号：US08732811B2
公开(公告)日：2014-05-20
申请号：US13420462
申请日：2012-03-14
申请人： Eliza Khosrova , Harishankar Karantothu , Craig Mazzagatte , Wei-Jhy Chern
发明人： Eliza Khosrova , Harishankar Karantothu , Craig Mazzagatte , Wei-Jhy Chern
IPC分类号： G06F21/00 , G06F21/41 , H04L29/06 , G06F9/445 , G06F9/455
CPC分类号： G06F21/41 , G06F9/44521 , G06F9/45504 , G06F2221/2149 , H04L63/08 , H04L63/105
摘要： Systems and methods for providing a login context operate a virtual machine, wherein the virtual machine includes an open services platform and an authentication service, wherein the authentication service includes a classloader, and an initial classloader is designated as the classloader of the authentication service, register a login module, receive an authentication request from a first application, and responsive to receiving the authentication request designate a classloader associated with the login module as the classloader of the authentication service, generate a login context of the login module, and provide the login context of the login module to the first application, whereby the first application uses the login context to perform an authentication.
摘要翻译：用于提供登录上下文的系统和方法操作虚拟机，其中所述虚拟机包括开放服务平台和认证服务，其中所述认证服务包括类加载器，并且初始类加载器被指定为所述认证服务的类加载器，寄存器登录模块，接收来自第一应用的认证请求，并且响应于接收到认证请求，指定与登录模块相关联的类加载器作为认证服务的类加载器，生成登录模块的登录上下文，并提供登录上下文登录模块的第一应用程序，由此第一应用程序使用登录上下文来执行认证。

4. 发明申请

US20110145900A1 DELEGATING AUTHENTICATION USING A CHALLENGE/RESPONSE PROTOCOL 有权
标题翻译：使用挑战/响应协议来删除认证
公开(公告)号：US20110145900A1
公开(公告)日：2011-06-16
申请号：US12636609
申请日：2009-12-11
申请人： Wei-Jhy Chern
发明人： Wei-Jhy Chern
IPC分类号： H04L29/06 , H04L9/32
CPC分类号： H04L9/3271 , H04L63/08 , H04L63/0884 , H04L67/02
摘要： A method for delegating authentication using a challenge/response protocol is provided. The method may initiate with a challenge/response sequence between a client application and a server application to authenticate the client application. Then the server application authenticates to a second server application using the credentials associated with the client application by acting as a conduit between the client application and the second server application.
摘要翻译：提供了一种使用质询/响应协议进行认证委托的方法。该方法可以通过客户端应用程序和服务器应用程序之间的挑战/响应序列来启动，以验证客户端应用程序。然后，服务器应用程序通过充当客户端应用程序和第二个服务器应用程序之间的管道，使用与客户端应用程序关联的凭据来向第二个服务器应用程序进行身份

5. 发明授权

US07925767B2 Device access based on centralized authentication 有权
标题翻译：基于集中认证的设备访问
公开(公告)号：US07925767B2
公开(公告)日：2011-04-12
申请号：US12320134
申请日：2009-01-21
申请人： Neil Y Iwamoto , Attullah Seikh , Jeanette Y Paek , Martin Martinez , Royce E Slick , Wei-Jhy Chern , Eliza Khosrova , Joseph Yang
发明人： Neil Y Iwamoto , Attullah Seikh , Jeanette Y Paek , Martin Martinez , Royce E Slick , Wei-Jhy Chern , Eliza Khosrova , Joseph Yang
IPC分类号： G06F15/16
CPC分类号： H04L63/083 , G06F21/604 , G06F21/6218 , G06F21/84 , G06F2221/2113 , G06F2221/2149 , H04L63/105 , H04N1/00509
摘要： Access control to a networked peripheral device by a walk-up user, wherein the networked peripheral device is accessible by both the walk-up user and a remote user, based on centralized access management information. Access control comprises receiving authenticated information for the walk-up user from the networked peripheral device at a centralized location, determining at the networked peripheral device a level of access to the networked peripheral device by the walk-up user based on received access management information for the walk-up user, and allowing the walk-up user to access the determined user-available features of the networked peripheral device based on the determined level of access.
摘要翻译：基于集中访问管理信息，步行用户对网络外围设备进行访问控制，其中所述网络外围设备可以由所述步行用户和远程用户访问。访问控制包括：在集中位置处从网络外围设备接收用于步行用户的认证信息，基于所接收的访问管理信息，由网络外围设备确定由所述步行用户对所述联网的外围设备的访问级别步行用户，并且允许步行用户基于所确定的访问级别来访问所确定的网络外围设备的用户可用特征。

6. 发明授权

US08631480B2 Systems and methods for implementing security services 失效
公开(公告)号：US08631480B2
公开(公告)日：2014-01-14
申请号：US13073882
申请日：2011-03-28
申请人： Eliza Khosrova , Harishankar Karantothu , Craig Mazzagatte , Wei-Jhy Chern
发明人： Eliza Khosrova , Harishankar Karantothu , Craig Mazzagatte , Wei-Jhy Chern
IPC分类号： H04L9/32
CPC分类号： H04L63/08 , G06F9/44521 , G06F9/45558 , G06F21/53 , G06F2009/45575 , G06F2221/2141 , G06F2221/2149
摘要： Systems and methods for providing a login context operate a virtual machine, wherein the virtual machine includes an open services platform and an authentication service, wherein the authentication service includes a classloader, and an initial classloader is designated as the classloader of the authentication service, register a login module, receive an authentication request from a first application, and responsive to receiving the authentication request designate a classloader associated with the login module as the classloader of the authentication service, generate a login context of the login module, and provide the login context of the login module to the first application, whereby the first application uses the login context to perform an authentication.

7. 发明授权

US08353019B2 Security token destined for multiple or group of service providers 有权
标题翻译：安全令牌用于多个或一组服务提供商
公开(公告)号：US08353019B2
公开(公告)日：2013-01-08
申请号：US12732543
申请日：2010-03-26
申请人： Wei-Jhy Chern
发明人： Wei-Jhy Chern
IPC分类号： G06F7/04
CPC分类号： H04L63/0815 , G06F21/33 , H04L9/0869 , H04L9/3213
摘要： An authentication server generates a security token to be used by a client for accessing multiple service providers by obtaining a secret key for each specified service provider, generating a saltbase, generating a salt for each service providers using the saltbase, the secret key, and a hashing algorithm, generating a session key that includes the salt, assigning an order to each of the generated salts, and arranging the salts based on the orders, generating a presalt for each provider using the salt for each previous provider, generating a postsalt for each of the specified service providers using the salt for each following provider, generating a blob for each of the specified service providers using the saltbase, the respective presalt, and the respective postsalt, inserting the generated blobs for the specified service providers in the security token, and providing the generated security token to the client workstation.
摘要翻译：身份验证服务器生成一个安全令牌，供客户端使用以访问多个服务提供者，方法是获取每个指定服务提供商的密钥，产生一个盐碱值，为每个服务提供商使用saltbase，秘密密钥和生成包含盐的会话密钥，为每个生成的盐分配一个顺序，以及根据该顺序排列盐，为每个先前提供者使用盐生成每个提供者的presalt，为每个提供者生成一个postalt 指定服务提供商使用salt为每个后续提供商生成每个指定的服务提供商使用saltbase，相应的presalt和相应的postalt的blob，将生成的指定服务提供商的blob插入到安全令牌中，并将生成的安全令牌提供给客户端工作站。

8. 发明申请

US20120254969A1 SYSTEMS AND METHODS FOR IMPLEMENTING SECURITY SERVICES 有权
标题翻译：实施安全服务的系统和方法
公开(公告)号：US20120254969A1
公开(公告)日：2012-10-04
申请号：US13420462
申请日：2012-03-14
申请人： Eliza Khosrova , Harishankar Karantothu , Craig Mazzagatte , Wei-Jhy Chern
发明人： Eliza Khosrova , Harishankar Karantothu , Craig Mazzagatte , Wei-Jhy Chern
IPC分类号： G06F21/00
CPC分类号： G06F21/41 , G06F9/44521 , G06F9/45504 , G06F2221/2149 , H04L63/08 , H04L63/105
摘要： Systems and methods for providing a login context operate a virtual machine, wherein the virtual machine includes an open services platform and an authentication service, wherein the authentication service includes a classloader, and an initial classloader is designated as the classloader of the authentication service, register a login module, receive an authentication request from a first application, and responsive to receiving the authentication request designate a classloader associated with the login module as the classloader of the authentication service, generate a login context of the login module, and provide the login context of the login module to the first application, whereby the first application uses the login context to perform an authentication.
摘要翻译：用于提供登录上下文的系统和方法操作虚拟机，其中所述虚拟机包括开放服务平台和认证服务，其中所述认证服务包括类加载器，并且初始类加载器被指定为所述认证服务的类加载器，寄存器登录模块，接收来自第一应用的认证请求，并且响应于接收到认证请求，指定与登录模块相关联的类加载器作为认证服务的类加载器，生成登录模块的登录上下文，并提供登录上下文登录模块的第一应用程序，由此第一应用程序使用登录上下文来执行认证。

9. 发明申请

US20110239283A1 SECURITY TOKEN DESTINED FOR MULTIPLE OR GROUP OF SERVICE PROVIDERS 有权
标题翻译：为多个或一组服务提供者安全保养
公开(公告)号：US20110239283A1
公开(公告)日：2011-09-29
申请号：US12732543
申请日：2010-03-26
申请人： Wei-Jhy Chern
发明人： Wei-Jhy Chern
IPC分类号： G06F21/20
CPC分类号： H04L63/0815 , G06F21/33 , H04L9/0869 , H04L9/3213
摘要： An authentication server generates a security token to be used by a client for accessing multiple service providers by obtaining a secret key for each specified service provider, generating a saltbase, generating a salt for each service providers using the saltbase, the secret key, and a hashing algorithm, generating a session key that includes the salt, assigning an order to each of the generated salts, and arranging the salts based on the orders, generating a presalt for each provider using the salt for each previous provider, generating a postsalt for each of the specified service providers using the salt for each following provider, generating a blob for each of the specified service providers using the saltbase, the respective presalt, and the respective postsalt, inserting the generated blobs for the specified service providers in the security token, and providing the generated security token to the client workstation.
摘要翻译：身份验证服务器生成一个安全令牌，供客户端使用以访问多个服务提供者，方法是获取每个指定服务提供商的密钥，产生一个盐碱值，为每个服务提供商使用saltbase，秘密密钥和生成包含盐的会话密钥，为每个生成的盐分配一个顺序，以及根据该顺序排列盐，为每个先前提供者使用盐生成每个提供者的presalt，为每个提供者生成一个postalt 指定服务提供商使用salt为每个后续提供商生成每个指定的服务提供商使用saltbase，相应的presalt和相应的postalt的blob，将生成的指定服务提供商的blob插入到安全令牌中，并将生成的安全令牌提供给客户端工作站。

10. 发明授权

US08484708B2 Delegating authentication using a challenge/response protocol 有权
标题翻译：使用挑战/响应协议委派认证
公开(公告)号：US08484708B2
公开(公告)日：2013-07-09
申请号：US12636609
申请日：2009-12-11
申请人： Wei-Jhy Chern
发明人： Wei-Jhy Chern
IPC分类号： H04L29/06
CPC分类号： H04L9/3271 , H04L63/08 , H04L63/0884 , H04L67/02
摘要： A method for delegating authentication using a challenge/response protocol is provided. The method may initiate with a challenge/response sequence between a client application and a server application to authenticate the client application. Then the server application authenticates to a second server application using the credentials associated with the client application by acting as a conduit between the client application and the second server application.
摘要翻译：提供了一种使用质询/响应协议进行认证委托的方法。该方法可以通过客户端应用程序和服务器应用程序之间的挑战/响应序列来启动，以验证客户端应用程序。然后，服务器应用程序通过充当客户端应用程序和第二个服务器应用程序之间的管道，使用与客户端应用程序关联的凭据来向第二个服务器应用程序进行身份

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式