-
公开(公告)号:US07979896B2
公开(公告)日:2011-07-12
申请号:US12024896
申请日:2008-02-01
IPC分类号: H04L29/06
CPC分类号: G06F21/335 , G06F21/6227 , G06F2221/2141
摘要: A web service includes a protected resource. A requester requests access to the protected resource by sending a request to the web service. The web service prevents access to the web service until the request has been authorized by an authorizer. After the request has been authorized by the authorizer, the web service allows the requester to access the protected resource.
摘要翻译: Web服务包括受保护的资源。 请求者通过向Web服务发送请求来请求对受保护资源的访问。 网络服务防止访问Web服务,直到请求被授权者授权为止。 在请求被授权者授权之后,Web服务允许请求者访问受保护的资源。
-
公开(公告)号:US20080263652A1
公开(公告)日:2008-10-23
申请号:US12024901
申请日:2008-02-01
IPC分类号: H04L9/32
CPC分类号: H04L63/083 , G06F21/32 , G06F21/335 , G06F21/40 , G06F21/602 , H04L63/06 , H04L63/08 , H04L63/0861 , H04L63/0869 , H04L63/10
摘要: Requests for access to Web service resources are evaluated based on the type of request that is received. Requests are not granted unless sufficient proof of authentication is provided to grant that request. An authentication service evaluates one or more factors to determine whether or not to authenticate the client. After being authenticated by the authentication service, proof of authentication is provided to the Web service, which grants access to the Web service resource.
摘要翻译: 根据收到的请求类型,对Web服务资源的访问请求进行评估。 除非提供足够的验证证明以授予该请求,否则不会授予请求。 认证服务评估一个或多个因素以确定是否验证客户端。 认证服务认证后,向Web服务提供认证证明,授权对Web服务资源的访问。
-
公开(公告)号:US20080263638A1
公开(公告)日:2008-10-23
申请号:US12024896
申请日:2008-02-01
IPC分类号: G06F21/00
CPC分类号: G06F21/335 , G06F21/6227 , G06F2221/2141
摘要: A web service includes a protected resource. A requester requests access to the protected resource by sending a request to the web service. The web service prevents access to the web service until the request has been authorized by an authorizer. After the request has been authorized by the authorizer, the web service allows the requester to access the protected resource.
摘要翻译: Web服务包括受保护的资源。 请求者通过向Web服务发送请求来请求对受保护资源的访问。 网络服务防止访问Web服务,直到请求被授权者授权为止。 在请求被授权者授权之后,Web服务允许请求者访问受保护的资源。
-
4.发明授权公开(公告)号:US08656472B2
公开(公告)日:2014-02-18
申请号:US12024901
申请日:2008-02-01
IPC分类号: H04L29/06
CPC分类号: H04L63/083 , G06F21/32 , G06F21/335 , G06F21/40 , G06F21/602 , H04L63/06 , H04L63/08 , H04L63/0861 , H04L63/0869 , H04L63/10
摘要: Requests for access to Web service resources are evaluated based on the type of request that is received. Requests are not granted unless sufficient proof of authentication is provided to grant that request. An authentication service evaluates one or more factors to determine whether or not to authenticate the client. After being authenticated by the authentication service, proof of authentication is provided to the Web service, which grants access to the Web service resource.
摘要翻译: 根据收到的请求类型,对Web服务资源的访问请求进行评估。 除非提供足够的验证证明以授予该请求,否则不会授予请求。 认证服务评估一个或多个因素以确定是否验证客户端。 认证服务认证后,向Web服务提供认证证明,授权对Web服务资源的访问。
-
公开(公告)号:US20090222882A1
公开(公告)日:2009-09-03
申请号:US12163791
申请日:2008-06-27
申请人: Jack Kabat , Vadim Meleshuk , Jasjeet Gill , Alexander T. Weinert
发明人: Jack Kabat , Vadim Meleshuk , Jasjeet Gill , Alexander T. Weinert
IPC分类号: H04L9/00
CPC分类号: G06F21/604 , G06F21/6218
摘要: Defining a unified access management policy expression that unifies access control policy with events or workflows. Unified management policy information is stored. The unified management policy information defines permissions for access to resources together with events or workflows. A request is received to execute the one or more operations on one or more objects. The requested operation is verified against the unified management rules. Verifying includes performing a single retrieval, retrieving both the access control information and the events or workflows and calculating the applicability of the rule to the conditions represented by the request. Matching rules are applied, access control decisions performed and associated workflows are executed.
摘要翻译: 定义将访问控制策略与事件或工作流统一的统一访问管理策略表达式。 存储统一的管理策略信息。 统一的管理策略信息定义了访问资源以及事件或工作流的权限。 接收到请求以对一个或多个对象执行一个或多个操作。 所要求的操作根据统一管理规则进行验证。 验证包括执行单个检索,检索访问控制信息和事件或工作流程,并计算规则对请求所表示的条件的适用性。 应用匹配规则,执行访问控制决策和相关工作流程。
-
公开(公告)号:US20090222881A1
公开(公告)日:2009-09-03
申请号:US12163782
申请日:2008-06-27
申请人: Jack Kabat , Vadim Meleshuk , Alexander T. Weinert
发明人: Jack Kabat , Vadim Meleshuk , Alexander T. Weinert
IPC分类号: G06F21/00
CPC分类号: G06F21/604 , G06F21/6218
摘要: Enforcing access control based on resource state. A method includes receiving a request for an operation on one or more objects stored on computer readable media. One or more pre-operation states of the one or more objects are determined. One or more post-operation states of the one or more objects are determined. One or more access control rules are referenced. The access control rules control access to resources based on pre-operation state and post operation state. It can then be determined that the one or more access control rules allow the operation to succeed based on the one or more pre-operation states and the one or more post operation states. Based on determining that the one or more access control rules allow the operation to succeed, the operation is allowed to succeed.
摘要翻译: 基于资源状态执行访问控制。 一种方法包括在存储在计算机可读介质上的一个或多个对象上接收对操作的请求。 确定一个或多个对象的一个或多个预操作状态。 确定一个或多个对象的一个或多个后操作状态。 引用一个或多个访问控制规则。 访问控制规则基于操作前状态和后操作状态来控制对资源的访问。 然后可以确定一个或多个访问控制规则基于一个或多个预操作状态和一个或多个后操作状态来允许操作成功。 基于确定一个或多个访问控制规则允许操作成功,允许操作成功。
-
公开(公告)号:US08196187B2
公开(公告)日:2012-06-05
申请号:US12163782
申请日:2008-06-27
申请人: Jack Kabat , Vadim Meleshuk , Alexander T. Weinert
发明人: Jack Kabat , Vadim Meleshuk , Alexander T. Weinert
IPC分类号: G06F21/00
CPC分类号: G06F21/604 , G06F21/6218
摘要: Enforcing access control based on resource state. A method includes receiving a request for an operation on one or more objects stored on computer readable media. One or more pre-operation states of the one or more objects are determined. One or more post-operation states of the one or more objects are determined. One or more access control rules are referenced. The access control rules control access to resources based on pre-operation state and post operation state. It can then be determined that the one or more access control rules allow the operation to succeed based on the one or more pre-operation states and the one or more post operation states. Based on determining that the one or more access control rules allow the operation to succeed, the operation is allowed to succeed.
摘要翻译: 基于资源状态执行访问控制。 一种方法包括在存储在计算机可读介质上的一个或多个对象上接收对操作的请求。 确定一个或多个对象的一个或多个预操作状态。 确定一个或多个对象的一个或多个后操作状态。 引用一个或多个访问控制规则。 访问控制规则基于操作前状态和后操作状态来控制对资源的访问。 然后可以确定一个或多个访问控制规则基于一个或多个预操作状态和一个或多个后操作状态来允许操作成功。 基于确定一个或多个访问控制规则允许操作成功,允许操作成功。
-
公开(公告)号:US20090007157A1
公开(公告)日:2009-01-01
申请号:US11770532
申请日:2007-06-28
IPC分类号: G06F9/44
CPC分类号: G06F8/24
摘要: Described are embodiments directed to use of workflows for developing management agents that connect operations of a data source to a procedural API of an application. The management agents include a workflow that corresponds to an operation of a data source. The workflow includes a number of activities that make calls to the procedural API in order to perform the operation of the data source with respect to an object of the application. The use of workflows makes the development of management agents easier and more efficient.
摘要翻译: 描述了针对使用工作流来开发将数据源的操作连接到应用程序的API的管理代理的实施例。 管理代理包括对应于数据源的操作的工作流。 该工作流程包括一些活动,调用过程API以执行关于应用程序对象的数据源的操作。 使用工作流使管理代理的开发变得更加轻松,更有效率。
-
公开(公告)号:US08353005B2
公开(公告)日:2013-01-08
申请号:US12163791
申请日:2008-06-27
申请人: Jack Kabat , Vadim Meleshuk , Jasjeet Gill , Alexander T. Weinert
发明人: Jack Kabat , Vadim Meleshuk , Jasjeet Gill , Alexander T. Weinert
CPC分类号: G06F21/604 , G06F21/6218
摘要: Defining a unified access management policy expression that unifies access control policy with events or workflows. Unified management policy information is stored. The unified management policy information defines permissions for access to resources together with events or workflows. A request is received to execute the one or more operations on one or more objects. The requested operation is verified against the unified management rules. Verifying includes performing a single retrieval, retrieving both the access control information and the events or workflows and calculating the applicability of the rule to the conditions represented by the request. Matching rules are applied, access control decisions performed and associated workflows are executed.
摘要翻译: 定义将访问控制策略与事件或工作流统一的统一访问管理策略表达式。 存储统一的管理策略信息。 统一的管理策略信息定义了访问资源以及事件或工作流的权限。 接收到请求以对一个或多个对象执行一个或多个操作。 所要求的操作根据统一管理规则进行验证。 验证包括执行单个检索,检索访问控制信息和事件或工作流程,并计算规则对请求所表示的条件的适用性。 应用匹配规则,执行访问控制决策和相关工作流程。
-
10.发明申请公开(公告)号:US20090119500A1
公开(公告)日:2009-05-07
申请号:US11934619
申请日:2007-11-02
申请人: Dan Roth , Asaf Kashi , Alexander T. Weinert , Craig V. McMurtry
发明人: Dan Roth , Asaf Kashi , Alexander T. Weinert , Craig V. McMurtry
CPC分类号: G06Q10/06
摘要: The embodiments described herein generally relate to a method and system of injecting automated repeatable processes, or workflows, into software configuration management sequences. The benefits of such a system include the ability to delegate configurability change abilities to an IT administrator while still maintaining efficiency and management control over such changes. A request made by a system administrator to process configuration data may be subject to multiple phases of processing, such as, authentication, authorization, and action. A declarative mapping associates workflows, or meaningful repeatable processes, with the configuration process request criteria and processing phase. The mapping may be created by, or at the direction of, management through the application of the processing concept in API or UI. Upon a triggering event, e.g., receiving a configuration processing request, a stored mapping based on the attributes of the principal and request type may be consulted to determine the workflows which may then execute.
摘要翻译: 本文描述的实施例通常涉及将自动重复过程或工作流注入到软件配置管理序列中的方法和系统。 这种系统的好处包括将可配置性更改功能委派给IT管理员的能力,同时仍然保持对这些更改的效率和管理控制。 系统管理员处理配置数据的请求可能需要进行多个处理阶段,例如认证,授权和操作。 声明性映射将工作流或有意义的可重复过程与配置过程请求标准和处理阶段相关联。 可以通过在API或UI中应用处理概念来创建或通过管理方向来创建映射。 在触发事件(例如,接收配置处理请求)时,可以参考基于主体和请求类型的属性的存储的映射来确定可以执行的工作流。
-
-
-
-
-
-
-
-
-
搜索结果
23 条记录 (耗时 0.021 秒)
