专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明申请

US20080022086A1 Methods and system for a key recovery plan 有权
标题翻译：关键恢复计划的方法和系统
公开(公告)号：US20080022086A1
公开(公告)日：2008-01-24
申请号：US11446958
申请日：2006-06-06
申请人： Shuk Yee Ho , Christina Fu , Chandrasekar Kannan , Nang Kon Kwan
发明人： Shuk Yee Ho , Christina Fu , Chandrasekar Kannan , Nang Kon Kwan
IPC分类号： H04L9/00
CPC分类号： H04L9/0897 , H04L9/0891
摘要： Methods, systems and computer readable mediums are provided for recovering subject keys and/or certificates for a token. A unique identifier associated with the token is obtained. The token is associated with subject keys and with a first status of statuses, the statuses including a lost status state and an other status state. In response to the token being in the lost status state, a key recovery plan is determined to recover at least one of the subject keys and the certificates associated with the token.
摘要翻译：提供方法，系统和计算机可读介质用于恢复令牌的主体密钥和/或证书。获得与令牌相关联的唯一标识符。该令牌与主键和状态的第一状态相关联，状态包括丢失状态和其他状态。响应于令牌处于丢失状态状态，确定密钥恢复计划以恢复与令牌相关联的主题密钥和证书中的至少一个。

2. 发明授权

US08364952B2 Methods and system for a key recovery plan 有权
标题翻译：关键恢复计划的方法和系统
公开(公告)号：US08364952B2
公开(公告)日：2013-01-29
申请号：US11446958
申请日：2006-06-06
申请人： Shuk Yee Ho , Christina Fu , Chandrasekar Kannan , Nang Kon Kwan
发明人： Shuk Yee Ho , Christina Fu , Chandrasekar Kannan , Nang Kon Kwan
IPC分类号： H04L29/06
CPC分类号： H04L9/0897 , H04L9/0891
摘要： Methods, systems and computer readable mediums are provided for recovering subject keys and/or certificates for a token. A unique identifier associated with the token is obtained. The token is associated with subject keys and with a first status of statuses, the statuses including a lost status state and an other status state. In response to the token being in the lost status state, a key recovery plan is determined to recover at least one of the subject keys and the certificates associated with the token.
摘要翻译：提供方法，系统和计算机可读介质用于恢复令牌的主体密钥和/或证书。获得与令牌相关联的唯一标识符。该令牌与主键和状态的第一状态相关联，状态包括丢失状态和其他状态。响应于令牌处于丢失状态状态，确定密钥恢复计划以恢复与令牌相关联的主题密钥和证书中的至少一个。

3. 发明申请

US20070288745A1 Profile framework for token processing system 有权
标题翻译：轮询框架用于令牌处理系统
公开(公告)号：US20070288745A1
公开(公告)日：2007-12-13
申请号：US11448179
申请日：2006-06-07
申请人： Nang Kon Kwan , Chandrasekar Kannan , Shuk Yee Ho , Steven William Parkinson , Christina Fu
发明人： Nang Kon Kwan , Chandrasekar Kannan , Shuk Yee Ho , Steven William Parkinson , Christina Fu
IPC分类号： H04L9/00
CPC分类号： H04L9/0822 , H04L9/083
摘要： Embodiments of the present invention provide a profile framework for handling enrollment requests. In particular, when a token processing system receives an enrollment request, it selects an applicable profile based on information in the request. The profile may indicate a variety of parameters for fulfilling the enrollment request, such as the locations of the applicable certificate authority, token key service, and the like. The profile may also indicate items, such as the number of keys to generate on a token, a token label, and connection information to securely communicate with other components and the client making the enrollment request.
摘要翻译：本发明的实施例提供了一种用于处理注册请求的简档框架。特别地，当令牌处理系统接收到注册请求时，它根据请求中的信息选择适用的简档。该简档可以指示用于满足注册请求的各种参数，诸如适用的认证机构的位置，令牌密钥服务等。简档还可以指示项目，例如在令牌上生成的密钥的数量，令牌标签和连接信息，以安全地与其他组件和进行注册请求的客户端通信。

4. 发明授权

US08412927B2 Profile framework for token processing system 有权
标题翻译：轮询框架用于令牌处理系统
公开(公告)号：US08412927B2
公开(公告)日：2013-04-02
申请号：US11448179
申请日：2006-06-07
申请人： Nang Kon Kwan , Chandrasekar Kannan , Shuk Yee Ho , Steven William Parkinson , Christina Fu
发明人： Nang Kon Kwan , Chandrasekar Kannan , Shuk Yee Ho , Steven William Parkinson , Christina Fu
IPC分类号： H04L29/06
CPC分类号： H04L9/0822 , H04L9/083
摘要： Embodiments of the present invention provide a profile framework for handling enrollment requests. In particular, when a token processing system receives an enrollment request, it selects an applicable profile based on information in the request. The profile may indicate a variety of parameters for fulfilling the enrollment request, such as the locations of the applicable certificate authority, token key service, and the like. The profile may also indicate items, such as the number of keys to generate on a token, a token label, and connection information to securely communicate with other components and the client making the enrollment request.
摘要翻译：本发明的实施例提供了一种用于处理注册请求的简档框架。特别地，当令牌处理系统接收到注册请求时，它根据请求中的信息选择适用的简档。该简档可以指示用于满足注册请求的各种参数，诸如适用的认证机构的位置，令牌密钥服务等。简档还可以指示项目，例如在令牌上生成的密钥的数量，令牌标签和连接信息，以安全地与其他组件和进行注册请求的客户端通信。

5. 发明授权

US08707024B2 Methods and systems for managing identity management security domains 有权
标题翻译：用于管理身份管理安全域的方法和系统
公开(公告)号：US08707024B2
公开(公告)日：2014-04-22
申请号：US11462606
申请日：2006-08-04
申请人： Nang Kon Kwan , Chandrasekar Kannan , Shuk Yee Ho , Steven William Parkinson
发明人： Nang Kon Kwan , Chandrasekar Kannan , Shuk Yee Ho , Steven William Parkinson
IPC分类号： H04L29/00
CPC分类号： H04L9/3213 , H04L9/0822 , H04L9/0891 , H04L9/3268 , H04L2209/603
摘要： Embodiments of the present invention provide identity management security domains that may be used in an enterprise security system. A security domain provides a centralized registry of services provided by the enterprise security system. For example, certificate authorities and other services, such as key archives, and the like, in the enterprise security system may register information about themselves in the security domain. Authorized users can then discover the location of these services. In some embodiments, the security domain may provide an interface that indicates a topology between services of the enterprise security system. The security domain may also serve as a distribution point for security policies. A security policy may comprise information that indicates, for example, a set of trusted certificate authorities, certificate templates, certificate revocation lists, and the locations of the services in the enterprise security system.
摘要翻译：本发明的实施例提供可以在企业安全系统中使用的身份管理安全域。安全域提供由企业安全系统提供的服务的集中注册。例如，企业安全系统中的证书机构和其他服务（如密钥档案等）可以在安全域中注册自己的信息。然后，授权用户可以发现这些服务的位置。在一些实施例中，安全域可以提供指示企业安全系统的服务之间的拓扑的接口。安全域也可以作为安全策略的分发点。安全策略可以包括例如指示一组可信证书颁发机构，证书模板，证书吊销列表以及企业安全系统中的服务的位置的信息。

6. 发明申请

US20110017821A1 ACCESS TO A REMOTE MACHINE FROM A LOCAL MACHINE VIA SMART CARD 有权
标题翻译：通过智能卡从本地机器获取远程机器
公开(公告)号：US20110017821A1
公开(公告)日：2011-01-27
申请号：US12898290
申请日：2010-10-05
申请人： Chandrasekar Kannan
发明人： Chandrasekar Kannan
IPC分类号： G06K5/00
CPC分类号： G06F21/34 , G06F21/305
摘要： A method and apparatus for accessing a remote machine from a local machine via a smart card. In one embodiment, the presence of the smart card coupled to the local machine is detected. A card reader reads the credentials from the smart card and communicates them to a remote access client application of the local machine. The remote access client application transmits the credentials to the remote machine. The remote machine sends a query for login information to the local machine upon valid credentials. The local machine transmits the login information to the remote machine and is granted permission to access the remote machine upon valid login information.
摘要翻译：一种用于经由智能卡从本地机器访问远程机器的方法和装置。在一个实施例中，检测到耦合到本地机器的智能卡的存在。读卡器从智能卡读取凭证并将其传送到本地机器的远程访问客户端应用程序。远程访问客户端应用程序将凭据传输到远程机器。远程机器根据有效的凭证向本地机器发送登录信息查询。本地机器将登录信息发送到远程机器，并在有效的登录信息时被授权访问远程机器。

7. 发明授权

US07823775B2 Access to a remote machine from a local machine via smart card 有权
标题翻译：通过智能卡从本地机器访问远程机器
公开(公告)号：US07823775B2
公开(公告)日：2010-11-02
申请号：US11712760
申请日：2007-02-28
申请人： Chandrasekar Kannan
发明人： Chandrasekar Kannan
IPC分类号： G06K5/00
CPC分类号： G06F21/34 , G06F21/305
摘要： A method and apparatus for accessing a remote machine from a local machine via a smart card. In one embodiment, the presence of the smart card coupled to the local machine is detected. A card reader reads the credentials from the smart card and communicates them to a remote access client application of the local machine. The remote access client application transmits the credentials to the remote machine. The remote machine sends a query for login information to the local machine upon valid credentials. The local machine transmits the login information to the remote machine and is granted permission to access the remote machine upon valid login information.
摘要翻译：一种用于经由智能卡从本地机器访问远程机器的方法和装置。在一个实施例中，检测到耦合到本地机器的智能卡的存在。读卡器从智能卡读取凭证并将其传送到本地机器的远程访问客户端应用程序。远程访问客户端应用程序将凭据传输到远程机器。远程机器根据有效的凭证向本地机器发送登录信息查询。本地机器将登录信息发送到远程机器，并在有效的登录信息时被授权访问远程机器。

8. 发明申请

US20080203154A1 Access to a remote machine from a local machine via smart card 有权
标题翻译：通过智能卡从本地机器访问远程机器
公开(公告)号：US20080203154A1
公开(公告)日：2008-08-28
申请号：US11712760
申请日：2007-02-28
申请人： Chandrasekar Kannan
发明人： Chandrasekar Kannan
IPC分类号： G06K5/00
CPC分类号： G06F21/34 , G06F21/305
摘要： A method and apparatus for accessing a remote machine from a local machine via a smart card. In one embodiment, the presence of the smart card coupled to the local machine is detected. A card reader reads the credentials from the smart card and communicates them to a remote access client application of the local machine. The remote access client application transmits the credentials to the remote machine. The remote machine sends a query for login information to the local machine upon valid credentials. The local machine transmits the login information to the remote machine and is granted permission to access the remote machine upon valid login information.
摘要翻译：一种用于经由智能卡从本地机器访问远程机器的方法和装置。在一个实施例中，检测到耦合到本地机器的智能卡的存在。读卡器从智能卡读取凭证并将其传送到本地机器的远程访问客户端应用程序。远程访问客户端应用程序将凭据传输到远程机器。远程机器根据有效的凭证向本地机器发送登录信息查询。本地机器将登录信息发送到远程机器，并在有效的登录信息时被授权访问远程机器。

9. 发明申请

US20080126378A1 METHOD AND SYSTEM FOR CERTIFICATE REVOCATION LIST COMPRESSION 有权
标题翻译：用于证书转载列表压缩的方法和系统
公开(公告)号：US20080126378A1
公开(公告)日：2008-05-29
申请号：US11564623
申请日：2006-11-29
申请人： Steven William Parkinson , Chandrasekar Kannan
发明人： Steven William Parkinson , Chandrasekar Kannan
IPC分类号： G06F17/30
CPC分类号： H03M7/30 , G06F21/33 , G06F2221/2149 , G06F2221/2151 , H04L9/3268 , H04L2209/60
摘要： Embodiments of the present invention provide a compression capability for compressing a CRL, such as an X.509 CRL, stored as a file, data structure or data object in a computer system having a certification authority (CA) and a security client. An exemplary method provides for accessing the CRL contents including a certificate revocation record and performing compression procedure, such as a lossless compression procedure on the contents of the CRL. The compressed CRL contents can be stored in another file, data structure or data object. A request for the compressed CRL is from a security client whereupon the compressed CRL is returned to the security client by transferring the compressed CRL contents to the security client. The security can client un-compress the compressed CRL contents. In some cases the uncompressed CRL contents can be transferred to the security client. The compression procedure can further compress a body portion of the CRL and modify a header portion of the CRL to indicate that the body portion is compressed. The security client can read the header portion to determine that the CRL is compressed and can un-compresses the CRL.
摘要翻译：本发明的实施例提供了一种用于压缩在具有证书颁发机构（CA）和安全客户端的计算机系统中存储为文件，数据结构或数据对象的诸如X.509CRL之类的CRL的压缩能力。一种示例性方法提供了访问包括证书吊销记录的CRL内容，并对CRL的内容执行诸如无损压缩过程之类的压缩过程。压缩的CRL内容可以存储在另一个文件，数据结构或数据对象中。对压缩CRL的请求来自安全客户端，因此通过将压缩的CRL内容传送到安全客户端将压缩的CRL返回给安全客户机。安全性可以客户端解压缩压缩的CRL内容。在某些情况下，未压缩的CRL内容可以传输到安全客户端。压缩过程可以进一步压缩CRL的主体部分并且修改CRL的头部部分以指示主体部分被压缩。安全客户端可以读取头部分，以确定CRL是被压缩的，并可以解压缩CRL。

10. 发明授权

US08112624B2 Method and system for certificate revocation list compression 有权
标题翻译：证书撤销列表压缩的方法和系统
公开(公告)号：US08112624B2
公开(公告)日：2012-02-07
申请号：US11564623
申请日：2006-11-29
申请人： Steven William Parkinson , Chandrasekar Kannan
发明人： Steven William Parkinson , Chandrasekar Kannan
IPC分类号： H04L29/00 , H04L9/32
CPC分类号： H03M7/30 , G06F21/33 , G06F2221/2149 , G06F2221/2151 , H04L9/3268 , H04L2209/60
摘要： Embodiments of the present invention provide a compression capability for compressing a CRL, such as an X.509 CRL, stored as a file, data structure or data object in a computer system having a certification authority (CA) and a security client. An exemplary method provides for accessing the CRL contents including a certificate revocation record and performing compression procedure, such as a lossless compression procedure on the contents of the CRL. The compressed CRL contents can be stored in another file, data structure or data object. A request for the compressed CRL is from a security client whereupon the compressed CRL is returned to the security client by transferring the compressed CRL contents to the security client. The security can client un-compress the compressed CRL contents. In some cases the uncompressed CRL contents can be transferred to the security client. The compression procedure can further compress a body portion of the CRL and modify a header portion of the CRL to indicate that the body portion is compressed. The security client can read the header portion to determine that the CRL is compressed and can un-compresses the CRL.
摘要翻译：本发明的实施例提供了一种用于压缩在具有证书颁发机构（CA）和安全客户端的计算机系统中存储为文件，数据结构或数据对象的诸如X.509CRL之类的CRL的压缩能力。一种示例性方法提供了访问包括证书吊销记录的CRL内容，并对CRL的内容执行诸如无损压缩过程之类的压缩过程。压缩的CRL内容可以存储在另一个文件，数据结构或数据对象中。对压缩CRL的请求来自安全客户端，因此通过将压缩的CRL内容传送到安全客户端将压缩的CRL返回给安全客户机。安全性可以客户端解压缩压缩的CRL内容。在某些情况下，未压缩的CRL内容可以传输到安全客户端。压缩过程可以进一步压缩CRL的主体部分并且修改CRL的头部部分以指示主体部分被压缩。安全客户端可以读取头部分，以确定CRL是被压缩的，并可以解压缩CRL。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式