公开(公告)号：EP2702540A4

公开(公告)日：2014-11-19

申请号：EP12776043

申请日：2012-04-27

申请人： HARVARD COLLEGE

发明人： KING GARY ,  MAZUR ERIC ,  LUKOFF BRIAN

IPC分类号： G06Q10/00

CPC分类号： G06F17/30598 ,  G06F17/30876 ,  G06F17/30893 ,  G06F17/30896 ,  G06F21/41 ,  G06Q10/06311 ,  H04W4/02 ,  H04W4/023 ,  H04W4/08

公开(公告)号：EP2401839A4

公开(公告)日：2014-04-30

申请号：EP10746622

申请日：2010-02-05

申请人： YODLEE INC

发明人： MANOHAR PRADHEESH ,  NALWAYA PRASHANT ,  AGRAWAL PRASHANT KUMAR

IPC分类号： H04L9/32 ,  G06F3/02 ,  G06F15/16 ,  G06F17/00 ,  G06F21/30

CPC分类号： G06F21/41 ,  G06F21/36 ,  G06K9/00 ,  G06K2209/01 ,  H04L63/08

摘要： A system for performing an automated network-based login procedure on an interactive keypad image includes a software agent executable from a digital medium connected to the network for navigating to a login page, accessing the keypad image, and performing an automated login, and an automated login support application executable from the same or a different digital medium connected to the network, the support application including at least an image processor, an optical character recognizer, and an image data encoder and decoder. The software agent performs a login at the virtual keypad image based on character image matching and location information acquisition for each character of a client's specific set of credential characters included in the image of the keypad.

摘要翻译： 一种用于在自动化基于网络的登录程序上交互的键盘图像执行系统包括从连接到网络的用于导航到登录页，访问小键盘图像，并且在自动登录执行数字介质中的软件代理的可执行文件，并自动 来自相同或连接到网络时，应用程序支持包含至少一个图像处理器，用于光学字符识别器，以及图像数据编码器和解码器中的不同的数字介质登录支持应用程序可执行文件。 该软件代理执行以基于图像匹配的字符和位置信息获取为一客户端的一组特定的凭证的字符中的每个字符的虚拟小键盘图像的登录包含在键盘图像英寸

公开(公告)号：EP2692110A1

公开(公告)日：2014-02-05

申请号：EP11712813.2

申请日：2011-03-29

申请人： Brainlab AG

发明人： DROSTE, Claudia ,  BREITSCHAFT, Klaus ,  BIRKENBACH, Rainer ,  BRAUN, Michael ,  NEUNER, Klaus ,  WIST, Henrik

IPC分类号： H04L29/08 ,  G06F21/20 ,  H04L29/06 ,  G06F9/455

CPC分类号： G06F19/321 ,  G06F19/00 ,  G06F21/41 ,  H04L61/306

摘要： The present invention relates to a virtual machine (VM) for processing digital data (MD), in particular medical data by executing a digital data processing application program, in particular a medical data application program called MeDPAP, the virtual machine (VM) being a simulation of a computer, the virtual machine comprising at least the following components: • a MeDPAP controller (MC) which is constituted —so that it can be addressed by a Uniform Resource Identifier called VM-URI via a wide area network (WAN), —to support direct interoperable interaction with a client application (MCA) over the wide area network (WAN), —to assign a Uniform Resource Identifier called MeDPAP-URI to the MeDPAP, and —to send the assigned MeDPAP-URI to the client application via the wide area network (WAN); and • the MeDPAP which is constituted —to process the digital data (MD), —so that it can be addressed by the client application via the wide area network (WAN) by using the MeDPAP-URI, and —to support direct interaction with the client application over the wide area network for receiving instructions from the client application (MCA) to process the digital data.

公开(公告)号：EP2684151A1

公开(公告)日：2014-01-15

申请号：EP11801582.5

申请日：2011-11-04

申请人： Telefonica S.A.

发明人： LORENZO, Jorge ,  LOZANO, David ,  GONZALEZ, Diego ,  VICENTE, David

IPC分类号： G06F21/00

CPC分类号： G06F21/45 ,  G06F21/41 ,  G06F21/6236 ,  H04L63/10

摘要： The protected resource, typically an API, is exposed by endpoints of a plurality of administrative domains. The endpoints are previously unknown by said service application and the method further comprises: i. using an intermediate or global entity for: a) selecting one of said administrative domains based on flexible criteria (i.e. at least on the identity of said end user but also considering varying user or service preferences); and b) performing, said selected administrative domain, a secure authorization to grant access to said end user by means of an open protocol; and ii. providing, said selected administrative domain to said service application, once performed said secure authorization, direct or proxy access to said user's protected resource via the endpoint established by said intermediate entity.

公开(公告)号：EP2668762A1

公开(公告)日：2013-12-04

申请号：EP12712881.7

申请日：2012-01-26

申请人： LIN.K.N.V.

发明人： HOUTHOOFT, Mario ,  HOUTHOOFT, Dieter

IPC分类号： H04L29/06

CPC分类号： G06F21/41 ,  H04L63/0815

摘要： Device for providing an authenticated access to the Internet based services, which is remarkable in that it comprises a unified identity management system (2), which is centered on the user (3) for generating a unified identity means (23) intended for users (3) within a particular area, so that this user is able to use the same account to make himself known and to authenticate this for various applications (31, 32, 33, 34, 61), possibly based on different application owners (63); and associated method therefor.

公开(公告)号：EP2546774A4

公开(公告)日：2013-12-04

申请号：EP11802840

申请日：2011-06-13

申请人： KODAMA SHOJI

发明人： KODAMA SHOJI

IPC分类号： G06F21/31 ,  G06F21/36 ,  G06F21/41

CPC分类号： H04L63/083 ,  G06F21/31 ,  G06F21/36 ,  G06F21/41

摘要： Security is improved as compared to the security of conventional authentication systems, only by requesting a user to perform operations involving the same number of operations as that of the conventional authentication systems. When login information is registered, an authentication system (1, 1A) accepts registration of a type of a login image that composes an authentication button for initiating user authentication. When displaying an authentication page that is used for user authentication, the authentication system (1, 1A) displays buttons including the authentication button composed of the login image and dummy buttons composed of other images. The authentication system (1, 1A) performs user authentication in a case in which an operation button selected by the user is the authentication button.

摘要翻译： 与常规认证系统的安全性相比，仅通过请求用户执行涉及与传统认证系统相同数量的操作的操作来改进安全性。 当注册登录信息时，认证系统（1,1A）接受组成用于启动用户认证的认证按钮的登录图像的类型的注册。 当显示用于用户认证的认证页面时，认证系统（1,1A）显示包括由登录图像组成的认证按钮和由其他图像组成的虚拟按钮的按钮。 在用户选择的操作按钮是认证按钮的情况下，认证系统（1,1A）执行用户认证。

公开(公告)号：EP2634721A2

公开(公告)日：2013-09-04

申请号：EP13156683.8

申请日：2013-02-26

申请人： FUJITSU LIMITED

发明人： Shimono, Akio

IPC分类号： G06F21/41

CPC分类号： G06F21/31 ,  G06F21/41 ,  H04L63/0815

摘要： A service providing method executed by an information processing apparatus that provides a first service, the method includes receiving role information from a terminal apparatus in use by a user, the role information indicating that a second service provided by another information processing apparatus and a role assigned to the user in the second service; and determining a role assigned to the user in the first service according to the role information and relationship information that indicated a relationship between the local apparatus and the another information processing apparatus, in correspondence to the second service.

公开(公告)号：EP2634720A1

公开(公告)日：2013-09-04

申请号：EP13155908.0

申请日：2013-02-20

申请人： FUJITSU LIMITED

发明人： Shimono, Akio

IPC分类号： G06F21/41

CPC分类号： H04L63/0815 ,  G06F21/41

摘要： A service usage management method executed by an information processing device, the service usage management method includes receiving, from a terminal device used by a user, a piece of authentication information which authenticates a user's right to use a service provided by a device as an issuing source and includes a number of times of issuing processing for issuing, based on a piece of authentication information, another piece of authentication information and an identifier of the device as the issuing source, generating the authentication information which includes the number of times of addition of adding one to the number of times indicated in the received authentication information and the identifier of the information processing device and authenticates the user's right to use the service provided by the information processing device, and transmitting the generated authentication information to the terminal device.

摘要翻译： 一种由信息处理设备执行的服务使用管理方法，所述服务使用管理方法包括从用户使用的终端设备接收认证用户使用由设备提供的服务的权利作为发行的认证信息 源，并且包括多次发行处理，用于基于一条认证信息发出另一条认证信息和该设备的标识符作为发布源，生成包括添加次数的认证信息 将接收到的认证信息中指示的次数和信息处理设备的标识符加1，并且验证用户使用由信息处理设备提供的服务的权利，并将生成的认证信息发送到终端设备。

公开(公告)号：EP2600270A1

公开(公告)日：2013-06-05

申请号：EP11191675.5

申请日：2011-12-02

申请人： Deutsche Telekom AG ,  Technische Universität Darmstadt

发明人： Baumöller, Claas ,  Schaaf, Joachim ,  Horsch, Moritz ,  Wiesmaier, Alexander ,  Braun, Johannes

IPC分类号： G06F21/00

CPC分类号： G06F21/34 ,  G06F21/41 ,  H04L63/0815

摘要： Die vorliegende Erfindung beschreibt ein Verfahren zur Authentifizierung und Identifizierung eines Benutzers anhand eines personalisierten Identifikations-Elements zur Nutzung von Diensten, wobei ein Computersystem für die Nutzung und ein Computersystem für den Authentifizierungs- bzw. Identifizierungsprozess verwendet wird.
Es ist Stand der Technik, dass Identifikations-Elemente für eine sichere Authentisierung benutzt werden. Ebenfalls haben sich mobile Endgeräte als Terminals für interne oder externe Identifikations-Elemente etabliert. Die Verfahren gemäß des Standes der Technik haben insbesondere den Nachteil, dass die Authentisierung und Nutzung eines Dienstes auf dem gleichen Computersystem stattfinden und so erhebliche Sicherheitsrisiken bestehen. Diese resultieren insbesondere durch das Aufzeichnen der PIN zum Freischalten des Identifikations-Elements und somit einem Missbrauch durch unberechtigte Dritte.
Die vorliegende Erfindung kompensiert diese Sicherheitsrisiken und bietet eine zusätzliche Mehr-Kanal-Authentisierung auf Basis mehrerer Vertrauensanker. Damit kann die Sicherheit des Passwortes (z.B. einer PIN) des Benutzers, was im Allgemeinen zum Freischalten des Identifikations-Elements bzw. zur Authentisierung des Benutzers gegenüber dem Identifikations-Element verwendet wird, auch bei der Dienstnutzung über ein nicht sicheres Computersystem gewahrt bleiben.

摘要翻译： 服务请求由用户计算机系统的用户（100）发送到服务计算机系统（120）。 用户计算机系统和服务请求根据第一个属性分配。 执行用户和识别元件（130）的认证以及识别元件和身份管理计算机系统之间的认证。 从识别元素中读出第二个属性。 第三个属性提交给服务计算机系统，服务计算机系统的用户计算机系统得到批准。 包括以下独立权利要求：（1）用于访问服务计算机系统服务的用户的认证和识别系统; 和（2）用于访问服务计算机系统服务的用户的认证和识别程序。

公开(公告)号：EP2592579A1

公开(公告)日：2013-05-15

申请号：EP11803258.0

申请日：2011-04-20

申请人： NEC Corporation

发明人： KAWATO, Masahiro

IPC分类号： G06F21/20

CPC分类号： H04L65/40 ,  G06F21/41 ,  H04L29/06 ,  H04L29/08072 ,  H04L63/0815 ,  H04L67/306 ,  H04L69/329

摘要： A system 100 includes a first service providing part 110 for providing a first service, and a second service providing part 120 for providing a second service. The first service providing part 110 transmits a first individual ID that is associated with a common ID included in an ID information provision request and that is for identifying a user in the first service, to a user terminal. The second service providing part 120 receives a service ID for identifying the first service, the first individual ID and the common ID from the user terminal, and transmits the service ID and first individual ID having been received with the common ID associated with a second individual ID that is included in an ID information acquisition request and that is for identifying a user in the second service, to a user terminal

摘要翻译： 系统100包括用于提供第一服务的第一服务提供部分110和用于提供第二服务的第二服务提供部分120。 第一服务提供部件110向用户终端发送与包括在ID信息提供请求中的用于识别第一服务中的用户的公共ID相关联的第一个人ID。 第二服务提供部120从用户终端接收用于识别第一服务，第一个人ID和公共ID的服务ID，并且发送已经接收到的服务ID和与第二个人相关联的公共ID的第一个人ID 将ID信息包含在ID信息获取请求中，用于识别第二服务中的用户的用户终端