公开(公告)号：US20020116647A1

公开(公告)日：2002-08-22

申请号：US10077853

申请日：2002-02-20

Applicant: HEWLETT PACKARD COMPANY

Inventor： Marco Casassa Mont ,  Richard Brown

IPC: H04L009/32

CPC classification number: H04L63/0407 ,  G06F21/33 ,  H04L63/0823 ,  H04L63/102 ,  H04L63/20 ,  H04L2463/102

Abstract: A computer system comprising a first computer node coupled to a network, the first node being arranged to provide a service to a second computer node via a connection over the network; a controller for determining access to the service based upon a digital credential associated with the connection, the controller being arranged to vary access to the service over the connection in response to a change in status of the digital credential.

Abstract translation: 一种计算机系统，包括耦合到网络的第一计算机节点，所述第一节点被布置成经由网络上的连接向第二计算机节点提供服务; 控制器，用于基于与所述连接相关联的数字证书来确定对所述服务的访问，所述控制器被布置为响应于所述数字凭证的状态的改变而改变通过所述连接对所述服务的访问。

公开(公告)号：US20010049786A1

公开(公告)日：2001-12-06

申请号：US09852262

申请日：2001-05-10

Applicant: HEWLETT-PACKARD COMPANY

Inventor： Keith Alexander Harrison ,  Brian Quentin Monahan ,  Marco Casassa Mont

IPC: H04L009/32

CPC classification number: H04L63/0823 ,  G06F21/6218 ,  G06F2211/007 ,  G06F2221/2115 ,  H04L63/12

Abstract: A distributed storage system for storing at least one credential (46), provided by an issuing authority and relating to an identity (42, 44), is described. The system comprises: a plurality of unique identities (42, 44) each having a local store (40). Each local store (40) securely stores credentials (46) relating to the owner of the identity (42, 44). The system also comprises one or more security certificates (66) provided at each identity (42, 44) for ensuring the authenticity of the credentials (46). The security certificates (66) provide secure references to the issuers of the credentials (46) and this can be used in verifying the origin of each credential (46). The identity can be provided a website or a mobile phone for example.

Abstract translation: 描述了用于存储由发布机构提供并与身份（42,44）相关的至少一个证书（46）的分布式存储系统。 该系统包括：多个唯一身份（42,44），每个唯一身份具有本地商店（40）。 每个本地商店（40）安全地存储与身份（42,44）的所有者有关的证件（46）。 系统还包括在每个身份（42,44）处提供的用于确保凭证（46）的真实性的一个或多个安全证书（66）。 安全证书（66）为证书（46）的颁发者提供安全的引用，并且这可以用于验证每个证书的起源（46）。 身份可以提供一个网站或一个手机例如。

公开(公告)号：US20020116646A1

公开(公告)日：2002-08-22

申请号：US10077851

申请日：2002-02-20

Applicant: HEWLETT PACKARD COMPANY

Inventor： Marco Casassa Mont ,  Richard Brown

IPC: H04L009/00

CPC classification number: H04L63/0823 ,  H04L63/104

Abstract: A computer system comprising a first computer node coupled to a second computer node via a communication network, the first node and second node being arranged to allow a secure connection to be established between the first and second nodes, the first node having a processor responsive to the interaction of a user for initiating the transfer of a digital credential over a secure connection established between the first node and second node.

Abstract translation: 一种计算机系统，包括经由通信网络耦合到第二计算机节点的第一计算机节点，所述第一节点和第二节点被布置成允许在所述第一和第二节点之间建立安全连接，所述第一节点具有响应于 用于启动在第一节点和第二节点之间建立的安全连接上传送数字凭证的用户的交互。

公开(公告)号：US20030145222A1

公开(公告)日：2003-07-31

申请号：US10313868

申请日：2002-12-06

Applicant: HEWLETT-PACKARD COMPANY

Inventor： Mihaela Gittler ,  Stephanie Riche ,  Marco Casassa Mont ,  Keith Alexander Harrison ,  Gavin Brebner

IPC: H04L009/00

CPC classification number: G06F21/62 ,  G06F21/6245 ,  G06F2221/2113

Abstract: A computer system comprising a trust engine for determining a trust level associated with a computer node and a policy engine for setting access requirements to a personal profile, from the computer node, based upon the determined trust level of the computer node and respective sensitivity levels associated with sub-components of the personal profile.

Abstract translation: 一种计算机系统，包括用于基于所确定的所述计算机节点的信任级别和相应的灵敏度级别，从所述计算机节点确定与计算机节点相关联的信任级别的信任引擎和用于设置对个人简档的访问要求的策略引擎 具有个人资料的子组件。