公开(公告)号：US20150100233A1

公开(公告)日：2015-04-09

申请号：US14048862

申请日：2013-10-08

Applicant: MOTOROLA SOLUTIONS, INC

Inventor： DANIEL J. PACHOLSKI ,  ANTHONY R. METKE

IPC: G01S19/14

CPC classification number: G01S19/17 ,  G01S19/39 ,  G06Q10/0631

Abstract: A computer aided dispatch (CAD) center operator can view a displayed location indicator indicative of a last location of a public safety (PS) device on a geographic information system (GIS) map, together with a displayed confidence indicator indicative of the likelihood that the displayed last location of the PS device is accurate, for use in dispatching a PS person to an incident scene, or locating the PS person.

Abstract translation: 计算机辅助调度（CAD）中心操作员可以在地理信息系统（GIS）地图上查看指示公共安全（PS）设备的最后位置的显示位置指示器，以及显示的指示 显示PS设备的最后位置是准确的，用于将PS人员发送到事件场景，或者定位PS人。

公开(公告)号：US20160285843A1

公开(公告)日：2016-09-29

申请号：US14671244

申请日：2015-03-27

Applicant: MOTOROLA SOLUTIONS, INC

Inventor： GEORGE POPOVICH ,  ADAM C. LEWIS ,  ANTHONY R. METKE ,  STEVEN D. UPP

IPC: H04L29/06

CPC classification number: H04L63/102 ,  H04L63/0815

Abstract: A system and method for enabling a primary and a secondary communication device to share a user identity assertion is presented. The user identity assertion enables the devices to access an application system. The primary and secondary devices are paired to place them in collaboration with each other. The primary device requests an identity provider system to issue a user identity assertion scoped to the primary and secondary communication device. The identity provider system authenticates the primary device and generates the user identity assertion scoped to the primary device and the secondary device identified in the request. The primary communication device receives the user identity assertion and communicates the user identity assertion to the secondary device. The primary device may request the user identity assertion by communicating a user identity assertion scoped to the primary device and a single sign on session cookie or a request for an extension assertion.

Abstract translation: 提出了一种能够使主要和次要通信设备共享用户身份断言的系统和方法。 用户身份断言使设备能够访问应用系统。 主设备和辅助设备配对，使它们彼此协作。 主设备请求身份提供者系统发布对主要和次要通信设备的用户身份断言。 身份提供者系统对主设备进行身份验证，并生成范围为主设备的用户身份断言和请求中标识的辅助设备。 主要通信设备接收用户身份断言，并将用户身份声明传达给辅助设备。 主设备可以通过传送作用于主设备的用户身份断言和会话cookie上的单一登录或扩展断言的请求来请求用户身份断言。

公开(公告)号：US20160192230A1

公开(公告)日：2016-06-30

申请号：US14587409

申请日：2014-12-31

Applicant: MOTOROLA SOLUTIONS, INC

Inventor： ANTHONY R. METKE ,  THOMAS J. SENESE

IPC: H04W28/02 ,  H04W76/02 ,  H04L12/26 ,  H04W12/06

CPC classification number: H04W28/021 ,  H04L12/28 ,  H04L12/462 ,  H04L12/4625 ,  H04L43/12 ,  H04L67/04 ,  H04L69/08 ,  H04W4/80 ,  H04W12/06 ,  H04W48/10 ,  H04W48/12 ,  H04W84/047 ,  H04W84/20 ,  H04W88/04 ,  H04W88/08

Abstract: An access point is provided that bridges a PAN with a LAN. When the access point receives, from a first mobile device, a request to authenticate with the access point for a first network service and a request to establish a second network service, wherein the second network service provides for bridging a PAN with a LAN, the access point determines a credential to be used by mobile devices who wish to join the second network service and, in response to determining that the first mobile device is authorized to make such a request, establishes the second network service. Further, in response to receiving, from a second mobile device, a request to join the second network service, which request includes the credential, the access point joins the second mobile device to the second network service and bridges traffic between the first and second mobile devices using the second network service.

Abstract translation: 提供了将PAN与LAN桥接的接入点。 当接入点从第一移动设备接收到用于第一网络服务的接入点认证的请求和建立第二网络服务的请求时，其中第二网络服务提供用于桥接PAN与LAN， 接入点确定希望加入第二网络服务的移动设备使用的凭证，并且响应于确定第一移动设备被授权进行这样的请求，建立第二网络服务。 此外，响应于从第二移动设备接收到加入第二网络服务的请求，哪个请求包括凭证，接入点将第二移动设备连接到第二网络服务并且桥接第一和第二移动台之间的业务 使用第二网络服务的设备。

公开(公告)号：US20160142404A1

公开(公告)日：2016-05-19

申请号：US14541599

申请日：2014-11-14

Applicant: Motorola Solutions, Inc.

Inventor： GEORGE POPOVICH ,  MICHAEL F. KORUS ,  ANTHONY R. METKE

IPC: H04L29/06

CPC classification number: H04L63/0861 ,  H04L63/0815 ,  H04L63/108 ,  H04L63/123 ,  H04W12/06 ,  H04W12/08 ,  H04W12/12

Abstract: A method and apparatus for providing a lifetime extension to an identity assertion is provided herein. During operation a user will authenticate to an identity management server (also known as an authorization server or an authentication server) to obtain an identity assertion. An identity assertion will be provided upon successful authentication. The lifetime of the identity assertion will be based on whether or not biometric information of the user will be used by the device to which the assertion is being issued to identify the user prior to allowing the use of the identity assertion.

Abstract translation: 本文提供了一种用于向身份断言提供终身延长的方法和装置。 在操作期间，用户将对身份管理服务器（也称为授权服务器或认证服务器）进行身份验证以获得身份断言。 验证成功后将提供身份认证。 身份声明的生命周期将基于用户的生物特征信息是否将由要发出断言的设备使用，以便在允许使用身份断言之前识别用户。

公开(公告)号：US20180048638A1

公开(公告)日：2018-02-15

申请号：US15234180

申请日：2016-08-11

Applicant: MOTOROLA SOLUTIONS, INC

Inventor： ADAM C. LEWIS ,  ANTHONY R. METKE ,  SHANTHI E. THOMAS

IPC: H04L29/06

CPC classification number: H04L63/0823 ,  G06F9/45533 ,  G06F9/45558 ,  G06F21/53 ,  G06F2009/45587 ,  H04L9/3228 ,  H04L9/3268 ,  H04L63/06 ,  H04L63/0807

Abstract: A method and is provided for obtaining a vetted certificate for a microservice in an elastic cloud environment. The microservice receives a one-time authentication credential. The microservice utilizes the one-time authentication credential to obtain a client secret. The microservice obtains an access token and CSR (Certificate Signing Request) attributes using the client secret and constructs a CSR utilizing the CSR attributes. The microservice requests a vetted certificate from a Certificate Authority (CA) and includes the access token and the CSR in the request. If the access token and the CSR pass vetting at the CA, the CA sends a vetted certificate to the microservice.

公开(公告)号：US20140189840A1

公开(公告)日：2014-07-03

申请号：US13728422

申请日：2012-12-27

Applicant: MOTOROLA SOLUTIONS, INC.

Inventor： ANTHONY R. METKE ,  Katrin Reitsma ,  Adam C. Lewis ,  George Popovich ,  Steven D. Upp

IPC: H04W12/06

CPC classification number: H04L63/0884 ,  G06F21/41 ,  H04L63/08 ,  H04L63/0815 ,  H04W12/06

Abstract: A system for, and method of, single sign-on collaboration among a plurality of mobile devices, includes a server for issuing a first identity token to subsequently authenticate a user of a first of the mobile devices to a service provider, and for generating and sending a collaboration credential to the first device based on the first identity token or user authentication. The first device sends the collaboration credential generated by the server to a second device paired with the first device. The server also issues a second identity token to subsequently authenticate to the service provider the user of the second device based on the collaboration credential received from the first device, to support single sign-on collaboration for the user across the plurality of mobile devices.

Abstract translation: 用于多个移动设备之间的单点登录协作的系统和方法包括用于发出第一身份令牌以随后向服务提供商认证第一移动设备的用户的服务器，以及用于生成和 基于第一身份令牌或用户认证向第一设备发送协作凭证。 第一个设备将由服务器生成的协作凭证发送到与第一个设备配对的第二个设备。 服务器还发出第二身份令牌，以随后基于从第一设备接收到的协作凭证向服务提供商验证第二设备的用户，以支持跨多个移动设备的用户的单点登录协作。

公开(公告)号：US20160337956A1

公开(公告)日：2016-11-17

申请号：US14710800

申请日：2015-05-13

Applicant: MOTOROLA SOLUTIONS, INC

Inventor： LIN LIN ,  ANTHONY R. METKE ,  JUANA E. NAKFOUR ,  KAREN M. SUTTMANN

IPC: H04W48/18 ,  H04W72/08 ,  H04W72/04 ,  H04W4/02 ,  H04L29/08

CPC classification number: H04W48/18 ,  H04L67/34 ,  H04W4/021 ,  H04W4/08 ,  H04W4/90

Abstract: A method and apparatus are provided that select an instance of a service for use by a mobile device. A list of multiple instances of the service is assembled, wherein each instance of the service of the multiple instances of the service is hosted by a different mobile device of multiple mobile devices. For each of the multiple instances of the service, situational information and environmental information is determined in association with the mobile device hosting the instance, wherein the situational information comprises information associated with an operating condition of a user of the hosting mobile device and wherein the environmental information comprises information associated with environmental conditions in which the hosting mobile device is operating. An instance of the service then is selected from among the multiple instances based on the environmental information and the situational information determined for each of the multiple instances.

Abstract translation: 提供了一种方法和装置，其选择服务的实例以供移动设备使用。 组合服务的多个实例的列表，其中服务的多个实例的服务的每个实例由多个移动设备的不同移动设备托管。 对于服务的多个实例中的每一个，情境信息和环境信息与托管实例的移动设备相关联地确定，其中情境信息包括与主机移动设备的用户的操作条件相关联的信息，并且其中环境 信息包括与托管移动设备正在运行的环境条件相关联的信息。 然后，基于环境信息和针对多个实例中的每个实例确定的情境信息，从多个实例中选择服务的实例。

公开(公告)号：US20160192189A1

公开(公告)日：2016-06-30

申请号：US14587389

申请日：2014-12-31

Applicant: MOTOROLA SOLUTIONS, INC

Inventor： ANTHONY R. METKE ,  THOMAS J. SENESE

IPC: H04W12/06 ,  H04W28/02 ,  H04W4/00

CPC classification number: H04W12/06 ,  H04L63/062 ,  H04W4/80 ,  H04W12/04 ,  H04W76/00 ,  H04W84/08 ,  H04W88/06

Abstract: A collaboration manager server is provided that bridges a PAN with a WAN. When the collaboration manager server receives, from the first mobile device, a request to establish a second network service, wherein the second network service provides for bridging a PAN with a WAN, the collaboration manager server determines a credential to be used by mobile devices who wish to join the second network service and, in response to determining that the first mobile device is authorized to make such a request, establishes the second network service. Further, in response to receiving, from a second mobile device, a request to join the second network service, wherein the request to join the second network service comprises the credential, the collaboration manager server joins the second mobile device to the second network service and bridges traffic between the first mobile device and the second mobile device using the second network service.

Abstract translation: 提供了一个协作管理器服务器，它将PAN与WAN桥接。 当协作管理器服务器从第一移动设备接收到建立第二网络服务的请求时，其中第二网络服务提供将WAN与WAN桥接，协作管理器服务器确定将由移动设备使用的凭证 希望加入第二网络服务，并且响应于确定第一移动设备被授权进行这样的请求，建立第二网络服务。 此外，响应于从第二移动设备接收到加入第二网络服务的请求，其中，加入第二网络服务的请求包括凭证，协作管理服务器将第二移动设备加入第二网络服务，以及 使用第二网络服务来桥接第一移动设备和第二移动设备之间的业务。

公开(公告)号：US20160142215A1

公开(公告)日：2016-05-19

申请号：US14945405

申请日：2015-11-18

Applicant: MOTOROLA SOLUTIONS, INC

Inventor： CHRIS A. KRUEGEL ,  ANDRZEJ GRZESIK ,  ERWIN HIMAWAN ,  ANTHONY R. METKE ,  SHANTHI E. THOMAS ,  STEVEN K. TURNER

IPC: H04L9/32

CPC classification number: H04L9/3263 ,  H04L9/006 ,  H04L9/3268

Abstract: A certificate management processor (CMP) in a public key infrastructure (PKI) receives a request for a certificate management operation. The CMP determines that the request is associated with at least one of an end entity and a service. The CMP identifies a certificate management identifier associated with at least one of the end entity and the service. The CMP retrieves at least one status associated with the certificate management identifier and/or at least one status associated with the certificate management operation. The CMP performs the certificate management operation on a certificate when the retrieved at least one status is determined to not be suspended.

Abstract translation: 公共密钥基础设施（PKI）中的证书管理处理器（CMP）接收证书管理操作的请求。 CMP确定该请求与终端实体和服务中的至少一个相关联。 CMP标识与终端实体和服务中的至少一个相关联的证书管理标识符。 CMP检索与证书管理标识符相关联的至少一个状态和/或与证书管理操作相关联的至少一个状态。 当检索到的至少一个状态被确定为不被暂停时，CMP对证书执行证书管理操作。

公开(公告)号：US20150134953A1

公开(公告)日：2015-05-14

申请号：US14075624

申请日：2013-11-08

Applicant: MOTOROLA SOLUTIONS, INC

Inventor： MARK D. SEABORN ,  ANTHONY R. METKE

IPC: H04L29/06 ,  H04L9/08

CPC classification number: H04L63/08 ,  G06F21/57 ,  G06F21/602 ,  G06F2221/2153 ,  H04L9/0861 ,  H04L63/0428 ,  H04L63/0823

Abstract: A HSM service controller receives an administrative request to enable a cloud-based application to have access to a cloud-based HSM service. The HSM service controller segments a cloud-based HSM into a plurality of VHSMs. The HSM service controller allocates to the cloud-based application, a source VHSM from among the plurality of VHSMs. The source VHSM includes an initial set of credentials, roles and/or metadata. The HSM service controller stores a handle for the source VHSM in association with a handle for the cloud-based application. The HSM service controller routes cryptography requests between the cloud-based application and the VHSM based on the handle for the source VHSM and the handle for the cloud-based application. The HSM service controller receives one or more management requests from the cloud-based application and executes cloud administrator functions responsive to the management request.

Abstract translation: HSM服务控制器接收管理请求，使基于云的应用程序能够访问基于云的HSM服务。 HSM服务控制器将基于云的HSM分为多个VHSM。 HSM服务控制器分配给基于云的应用程序，来自多个VHSM之间的源VHSM。 源VHSM包括一组初始凭证，角色和/或元数据。 HSM服务控制器为源VHSM存储与基于云的应用程序的句柄相关联的句柄。 HSM服务控制器在基于云的应用程序和VHSM之间基于源VHSM的处理和基于云的应用程序的句柄来路由加密请求。 HSM服务控制器从基于云的应用程序接收一个或多个管理请求，并根据管理请求执行云管理员功能。