-
公开(公告)号:US20050097322A1
公开(公告)日:2005-05-05
申请号:US10699665
申请日:2003-11-04
CPC分类号: H04L63/0815 , G06F21/41 , H04L29/06027 , H04L63/0853
摘要: A distributed authentication framework is presented. The framework includes an authentication stack that is created by an authentication server. The server receives an authentication request from an end-user, the request including an authentication domain ID that distinguishes the end-user. The authentication stack has entries that trigger local or remote specific authentication actions providing respective results. When the results are consolidated the authentication status of the end-user is determined.
摘要翻译: 提出了分布式认证框架。 该框架包括由认证服务器创建的认证堆栈。 服务器从最终用户接收认证请求,该请求包括区分最终用户的认证域ID。 身份验证堆栈具有触发本地或远程特定身份验证操作以提供相应结果的条目。 当结果合并时,确定最终用户的认证状态。
-
公开(公告)号:US08031596B2
公开(公告)日:2011-10-04
申请号:US12455708
申请日:2009-06-05
申请人: Emmanuel Onfroy , Evren Bulut , Bertrand Marquet , José Araujo , Arnaud Ansiaux
发明人: Emmanuel Onfroy , Evren Bulut , Bertrand Marquet , José Araujo , Arnaud Ansiaux
CPC分类号: H04L45/00 , H04L45/60 , H04L63/0853 , H04L63/1441
摘要: The invention concerns a router associated to a secure device (DC) and included in a communication network (RC), comprising an interface (IRT) to communicate with the secure device following an authentication of the router by the secure device, and comprising a protocol interpreter (INT) to command the execution of the critical operations of one or more routing protocols by the secure device. The sensitive or critical portions of a routing protocol are executed in a secure and reliable manner in the secured device, for example of a chip card type.
摘要翻译: 本发明涉及与安全设备(DC)相关联并包括在通信网络(RC)中的路由器,其包括在安全设备对路由器的认证之后与安全设备通信的接口(IRT),并且包括协议 解释器(INT)来命令由安全设备执行一个或多个路由协议的关键操作。 路由协议的敏感或关键部分以安全可靠的方式在例如芯片卡类型的安全设备中执行。
-
13.发明授权公开(公告)号:US07743421B2
公开(公告)日:2010-06-22
申请号:US11132118
申请日:2005-05-18
申请人: Francois J. N. Cosquer , Bertrand Marquet , Robert W. MacIntosh , Yvon Leclerc , Scott David D'Souza
发明人: Francois J. N. Cosquer , Bertrand Marquet , Robert W. MacIntosh , Yvon Leclerc , Scott David D'Souza
CPC分类号: H04L63/1416 , H04L63/1441
摘要: Communication network security risk exposure management systems and methods are disclosed. Risks to a communication network are determined by analyzing assets of the communication network and vulnerabilities affecting the assets. Assets may include physical assets such as equipment or logical assets such as software or data. Risk analysis may be adapted to assess risks to a particular feature of a communication network by analyzing assets of the communication network which are associated with that feature and one or more of vulnerabilities which affect the feature and vulnerabilities which affect the assets associated with the feature. A feature may be an asset itself or a function or service offered in the network and supported by particular assets, for example.
摘要翻译: 披露了通信网络安全风险管理系统和方法。 通信网络的风险是通过分析通信网络的资产和影响资产的漏洞来确定的。 资产可能包括物理资产,如设备或逻辑资产,如软件或数据。 可以通过分析与该特征相关联的通信网络的资产以及影响影响与特征相关联的资产的特征和漏洞的一个或多个漏洞来评估风险分析来评估通信网络的特定特征的风险。 特征可以是资产本身或网络中提供并由特定资产支持的功能或服务。
-
公开(公告)号:US20100014515A1
公开(公告)日:2010-01-21
申请号:US12455708
申请日:2009-06-05
申请人: Emmanuel Onfroy , Evren Bulut , Bertrand Marquet , José Araujo , Arnaud Ansiaux
发明人: Emmanuel Onfroy , Evren Bulut , Bertrand Marquet , José Araujo , Arnaud Ansiaux
IPC分类号: H04L12/56
CPC分类号: H04L45/00 , H04L45/60 , H04L63/0853 , H04L63/1441
摘要: The invention concerns a router associated to a secure device (DC) and included in a communication network (RC), comprising an interface (IRT) to communicate with the secure device following an authentication of the router by the secure device, and comprising a protocol interpreter (INT) to command the execution of the critical operations of one or more routing protocols by the secure device. The sensitive or critical portions of a routing protocol are executed in a secure and reliable manner in the secured device, for example of a chip card type.
摘要翻译: 本发明涉及与安全设备(DC)相关联并包括在通信网络(RC)中的路由器,其包括在安全设备对路由器的认证之后与安全设备通信的接口(IRT),并且包括协议 解释器(INT)来命令由安全设备执行一个或多个路由协议的关键操作。 路由协议的敏感或关键部分以安全可靠的方式在例如芯片卡类型的安全设备中执行。
-
公开(公告)号:US07631344B2
公开(公告)日:2009-12-08
申请号:US10699665
申请日:2003-11-04
CPC分类号: H04L63/0815 , G06F21/41 , H04L29/06027 , H04L63/0853
摘要: A distributed authentication framework is presented. The framework includes an authentication stack that is created by an authentication server. The server receives an authentication request from an end-user, the request including an authentication domain ID that distinguishes the end-user. The authentication stack has entries that trigger local or remote specific authentication actions providing respective results. When the results are consolidated the authentication status of the end-user is determined.
摘要翻译: 提出了分布式认证框架。 该框架包括由认证服务器创建的认证堆栈。 服务器从最终用户接收认证请求,该请求包括区分最终用户的认证域ID。 身份验证堆栈具有触发本地或远程特定身份验证操作以提供相应结果的条目。 当结果合并时,确定最终用户的认证状态。
-
16.发明授权Data processing system providing secure communication between software components 失效数据处理系统提供软件组件之间的安全通信公开(公告)号:US07171684B1
公开(公告)日:2007-01-30
申请号:US09564695
申请日:2000-05-04
申请人: Bertrand Marquet , Guy Fouquet , Laurent Ballester
发明人: Bertrand Marquet , Guy Fouquet , Laurent Ballester
CPC分类号: H04L63/0428 , G06F21/602 , H04L29/06 , H04L63/08 , H04L69/24
摘要: A virtual security server enabling a set of applications to access a plurality of security services. In response to a service request from a software application, the virtual security server receive service determines which of the security servers is able to provide the requested service. The virtual security server sends to a selected security server data enabling the selected security server to provide the security service corresponding to the service request. Accordingly, communication between the applications and the security servers is simplified because the application are not required to manage negotiation protocols associated with the security servers and choose the security server(s) appropriate for the required service.
摘要翻译: 一种支持一组应用程序访问多个安全服务的虚拟安全服务器。 响应于来自软件应用的服务请求,虚拟安全服务器接收服务确定哪些安全服务器能够提供所请求的服务。 虚拟安全服务器向所选择的安全服务器发送数据,使得所选择的安全服务器能够提供对应于服务请求的安全服务。 因此,应用程序和安全服务器之间的通信被简化,因为不需要应用来管理与安全服务器相关联的协商协议并选择适合所需服务的安全服务器。
-
公开(公告)号:US20050257047A1
公开(公告)日:2005-11-17
申请号:US10846542
申请日:2004-05-17
CPC分类号: H04L63/0853 , H04L41/28
摘要: A system for improving security of management and control functions at a network element in a communications network is described. The control card of the network element is configured to function in association with an execution device such as a smartcard. The execution device has embedded thereon one or several processors each implementing specific security related operations. This limits access to the network element which, in turn, minimizes access to sensitive and confidential information.
摘要翻译: 描述了一种用于提高通信网络中的网元的管理和控制功能的安全性的系统。 网元的控制卡被配置为与诸如智能卡的执行装置相关联地起作用。 执行装置在其上嵌入有一个或多个处理器,每个处理器实现特定的安全相关操作。 这限制了对网络的访问,这又使得对敏感和机密信息的访问最小化。
-
-
-
-
-
-
搜索结果
17 条记录 (耗时 0.013 秒)
