-
1.发明申请公开(公告)号:US20060288228A1
公开(公告)日:2006-12-21
申请号:US11468139
申请日:2006-08-29
申请人: Patrick Botz , John Dayka , Donna Dillenberger , Richard Guski , Timothy Hahn , Margaret LaBelle , Mark Nelson
发明人: Patrick Botz , John Dayka , Donna Dillenberger , Richard Guski , Timothy Hahn , Margaret LaBelle , Mark Nelson
IPC分类号: G06F12/14 , H04L9/00 , G06F17/30 , H04K1/00 , G06F12/00 , G06F13/00 , G06F7/04 , G06F7/58 , G06K19/00 , G11C7/00 , H04L9/32
CPC分类号: H04L63/08 , G06F21/31 , G06F2221/2151
摘要: An authenticated identity propagation and translation technique is provided based on a trust relationship between multiple user identification and authentication services resident on different computing components of a multi-component transaction processing computing environment including distributed and mainframe computing components. The technique includes, in one embodiment, forwarding, in association with transaction requests, identified and authenticated user identification and authentication information from a distributed component to a mainframe component, facilitating the selection of the appropriate mainframe user identity with which to execute the mainframe portion of the transaction, and creating the appropriate run-time security context.
摘要翻译: 基于多个用户识别和驻留在包括分布式和大型计算组件的多组件事务处理计算环境的不同计算组件的认证服务之间的信任关系来提供认证身份传播和翻译技术。 在一个实施例中,该技术包括与事务请求相关联地将已识别和认证的用户标识和认证信息从分布式组件转发到主机组件,便于选择适当的主机用户身份,用于执行主机部分的主机部分 事务,并创建适当的运行时安全上下文。
-
2.发明申请IMPLEMENTATION AND USE OF PII DATA ACCESS CONTROL FACILITY EMPLOYING PERSONALLY IDENTIFYING INFORMATION LABELS AND PURPOSE SERVING FUNCTION SETS 有权使用个人识别信息标签和目的服务功能集的PII数据访问控制设施的实施和使用公开(公告)号:US20070250913A1
公开(公告)日:2007-10-25
申请号:US11764487
申请日:2007-06-18
申请人: Linda Betz , John Dayka , Walter Farrell , Richard Guski , Guenter Karjoth , Mark Nelson , Birgit Pfitzmann , Matthias Schunter , Michael Waidner
发明人: Linda Betz , John Dayka , Walter Farrell , Richard Guski , Guenter Karjoth , Mark Nelson , Birgit Pfitzmann , Matthias Schunter , Michael Waidner
IPC分类号: G06F15/16
CPC分类号: G06F21/629 , G06F21/6245 , G06F2221/2101 , G06F2221/2113 , G06F2221/2141 , G06F2221/2149
摘要: A data access control facility is implemented by assigning personally identifying information (PII) classification labels to PII data objects, with each PII data object having one PII classification label assigned thereto. The control facility further includes at least one PII purpose serving function set (PSFS) comprising a list of application functions that read or write PII data objects. Each PII PSFS is also assigned a PII classification label. A PII data object is accessible via an application function of a PII PSFS having a PII classification label that is identical to or dominant of the PII classification label of the PII object. A user of the control facility is assigned a PII clearance set which contains a list of at least one PII classification label, which is employed in determining whether the user is entitled to access a particular function.
摘要翻译: 通过将个人识别信息(PII)分类标签分配给PII数据对象来实现数据访问控制设施,每个PII数据对象分配有一个PII分类标签。 控制设备还包括至少一个PII目的服务功能集(PSFS),其包括读或写PII数据对象的应用功能列表。 每个PII PSFS也被分配了一个PII分类标签。 PII数据对象可通过具有与PII对象的PII分类标签相同或占优势的PII分类标签的PII PSFS的应用功能来访问。 控制设备的用户被分配有PII间隙组,其包含至少一个PII分类标签的列表,该列表用于确定用户是否有权访问特定功能。
-
3.发明申请Implementation and use of a PII data access control facility employing personally identifying information labels and purpose serving functions sets 有权实施和使用使用个人识别信息标签和目的服务功能集的PII数据访问控制设施公开(公告)号:US20050044409A1
公开(公告)日:2005-02-24
申请号:US10643798
申请日:2003-08-19
申请人: Linda Betz , John Dayka , Walter Farrell , Richard Guski , Guenter Karjoth , Mark Nelson , Birgit Pfitzmann , Matthias Schunter , Michael Waidner
发明人: Linda Betz , John Dayka , Walter Farrell , Richard Guski , Guenter Karjoth , Mark Nelson , Birgit Pfitzmann , Matthias Schunter , Michael Waidner
CPC分类号: G06F21/629 , G06F21/6245 , G06F2221/2101 , G06F2221/2113 , G06F2221/2141 , G06F2221/2149
摘要: A data access control facility is implemented by assigning personally identifying information (PII) classification labels to PII data objects, with each PII data object having one PII classification label assigned thereto. The control facility further includes at least one PII purpose serving function set (PSFS) comprising a list of application functions that read or write PII data objects. Each PII PSFS is also assigned a PII classification label. A PII data object is accessible via an application function of a PII PSFS having a PII classification label that is identical to or dominant of the PII classification label of the PII object. A user of the control facility is assigned a PII clearance set which contains a list of at least one PII classification label, which is employed in determining whether the user is entitled to access a particular function.
摘要翻译: 通过将个人识别信息(PII)分类标签分配给PII数据对象来实现数据访问控制设施,每个PII数据对象分配有一个PII分类标签。 控制设备还包括至少一个PII目的服务功能集(PSFS),其包括读或写PII数据对象的应用功能列表。 每个PII PSFS也被分配了一个PII分类标签。 PII数据对象可通过具有与PII对象的PII分类标签相同或占优势的PII分类标签的PII PSFS的应用功能来访问。 控制设备的用户被分配有PII间隙组,其包含至少一个PII分类标签的列表,该列表用于确定用户是否有权访问特定功能。
-
公开(公告)号:US20060137021A1
公开(公告)日:2006-06-22
申请号:US11018884
申请日:2004-12-21
申请人: Ernest Bender , Richard Guski , Deborah Mapes , Bruce Wells
发明人: Ernest Bender , Richard Guski , Deborah Mapes , Bruce Wells
IPC分类号: H04L9/32
CPC分类号: H04L63/08 , H04L63/104
摘要: A multi-identity security environment is created for use in controlling access to resources. The multi-identity security environment enables one process that is spawned by another process to access resources security accessible to the one process, as well as resources security accessible to the another process. The multi-identity security environment includes an identity of the one process and an identity of the another process.
摘要翻译: 创建了多身份安全环境,用于控制对资源的访问。 多身份安全环境使得由另一进程产生的一个进程可以访问一个进程可访问的资源安全以及另一进程可访问的资源安全性。 多身份安全环境包括一个进程的身份和另一个进程的身份。
-
-
-
搜索结果
4 条记录 (耗时 0.024 秒)
