-
公开(公告)号:US20120159605A1
公开(公告)日:2012-06-21
申请号:US13408384
申请日:2012-02-29
IPC分类号: G06F21/00
CPC分类号: G06F21/34
摘要: An accessor function interfaces among a client, a relying party, and an identity provider. The identity provider can “manage” personal (i.e., self-asserted) information cards on behalf of a user, making the personal information cards available on clients on which the personal information cards are not installed. The client can be an untrusted client, vulnerable to attacks such as key logging, screen capture, and memory interrogation. The accessor function can also asked as a proxy for the relying party in terms of invoking and using the information cards system, for use with legacy relying parties.
摘要翻译: 访问器功能在客户端,依赖方和身份提供者之间进行接口。 身份提供者可以代表用户“管理”个人(即自我声明的)信息卡,使个人信息卡可以在没有安装个人信息卡的客户端上可用。 客户端可以是不受信任的客户端,易受攻击,例如密钥记录,屏幕捕获和内存询问。 在访问和使用信息卡系统方面,访问者功能也可以被要求作为依赖方的代理人,以便与传统依赖方一起使用。
-
公开(公告)号:US08151324B2
公开(公告)日:2012-04-03
申请号:US12111874
申请日:2008-04-29
IPC分类号: H04L29/06
CPC分类号: G06F21/34
摘要: An accessor function interfaces among a client, a relying party, and an identity provider. The identity provider can “manage” personal (i.e., self-asserted) information cards on behalf of a user, making the personal information cards available on clients on which the personal information cards are not installed. The client can be an untrusted client, vulnerable to attacks such as key logging, screen capture, and memory interrogation. The accessor function can also asked as a proxy for the relying party in terms of invoking and using the information cards system, for use with legacy relying parties.
摘要翻译: 访问器功能在客户端,依赖方和身份提供者之间进行接口。 身份提供者可以代表用户“管理”个人(即自我声明的)信息卡,使个人信息卡可以在没有安装个人信息卡的客户端上可用。 客户端可以是不受信任的客户端,易受攻击,例如密钥记录,屏幕捕获和内存询问。 在访问和使用信息卡系统方面,访问者功能也可以被要求作为依赖方的代理人,以便与传统依赖方一起使用。
-
23.发明申请公开(公告)号:US20110153499A1
公开(公告)日:2011-06-23
申请号:US13036996
申请日:2011-02-28
申请人: Patrick R. Felsted , Thomas E. Doman , James G. Sermersheim , Daniel S. Sanders , Andrew A. Hodgkinson , Dale R. Olds
发明人: Patrick R. Felsted , Thomas E. Doman , James G. Sermersheim , Daniel S. Sanders , Andrew A. Hodgkinson , Dale R. Olds
IPC分类号: G06Q40/00
CPC分类号: H04L63/0815 , G06F21/41 , G06Q20/10 , G06Q20/367 , G06Q20/382 , G06Q20/40 , H04L63/0807 , H04L63/20
摘要: A user engages in a transaction with a relying party. The relying party requests identity information from the user in a security policy and identifies transaction elements for an on-line business transaction. Typically, the security policy and transaction elements are transmitted together; the security policy can be as little as a request to conduct the on-line business transaction. The user identifies an information card that satisfies the security policy. The computer system requests a security token from the identity provider managing the information card, which can include requesting a transaction receipt for the transaction elements. The computer system then returns the security token (and the transaction receipt) to the relying party, to complete the transaction.
摘要翻译: 用户与依赖方进行交易。 依赖方在安全策略中从用户请求身份信息,并识别在线业务事务的事务元素。 通常,安全策略和事务元素一起传输; 安全政策可以与进行在线业务交易的请求一样少。 用户识别满足安全策略的信息卡。 计算机系统从管理信息卡的身份提供者请求安全令牌,其可以包括请求交易单元的交易收据。 计算机系统然后将安全令牌(和交易收据)返回给依赖方,以完成交易。
-
公开(公告)号:US20090272797A1
公开(公告)日:2009-11-05
申请号:US12112772
申请日:2008-04-30
申请人: Thomas E. Doman , Duane F. Buss , James G. Sermersheim , Daniel S. Sanders , Andrew A. Hodgkinson
发明人: Thomas E. Doman , Duane F. Buss , James G. Sermersheim , Daniel S. Sanders , Andrew A. Hodgkinson
IPC分类号: G06K5/00
摘要: A system and method for dynamic rendering of information cards is provided. A card selector uses policies and rendering content to modify the presentation of information cards in the card selector. The policies and rendering content can be obtained from identity providers and relying parties. The rendering content can be obtained each time the card selector is invoked, just prior to rendering the information cards, or at other times specified in the policy. The rendering content can be displayed in a display area of the information card or in a content canvas outside the display area of the information card.
摘要翻译: 提供了一种用于信息卡的动态渲染的系统和方法。 卡选择器使用策略和呈现内容来修改卡选择器中的信息卡的呈现。 政策和呈现内容可以从身份提供者和依赖方获得。 每次在卡片选择器被调用之前,恰好在呈现信息卡之前,或者在策略中指定的其他时间,可以获得呈现内容。 呈现内容可以显示在信息卡的显示区域或信息卡显示区域外的内容画布中。
-
公开(公告)号:US20090249430A1
公开(公告)日:2009-10-01
申请号:US12054774
申请日:2008-03-25
IPC分类号: G06F21/00
CPC分类号: G06F21/6218 , G06F2221/2115
摘要: A relying party can have a security policy. The security policy can include claims that are categorized other than “required” and “optional”. The user can specify, in a user policy, whether or not to include in a request for a security token from an identity provider claims that are not “required”.
摘要翻译: 依赖方可以拥有安全策略。 安全策略可以包括除“必需”和“可选”之外的分类的声明。 用户可以在用户策略中指定是否在不是“必需”的身份提供者声明的请求中包括安全令牌。
-
26.发明申请INFO CARD SELECTOR RECEPTION OF IDENTITY PROVIDER BASED DATA PERTAINING TO INFO CARDS 审中-公开信息卡选择器接收基于提供者的基于信息卡的数据公开(公告)号:US20090205035A1
公开(公告)日:2009-08-13
申请号:US12030063
申请日:2008-02-12
申请人: James G. Sermersheim , Duane F. Buss , Thomas E. Doman , Andrew A. Hodgkinson , Dale R. Olds , Daniel S. Sanders
发明人: James G. Sermersheim , Duane F. Buss , Thomas E. Doman , Andrew A. Hodgkinson , Dale R. Olds , Daniel S. Sanders
IPC分类号: G06F21/00
摘要: A computer system accesses metadata about an information card. The metadata can be stored locally or remotely (for example, at an identity provider). A metadata engine can be used to generate data to be provided to the user from the metadata: this data can take any desired form, such as an advertisement, a state of the user's account, or a policy update, among other possibilities.
摘要翻译: 计算机系统访问关于信息卡的元数据。 元数据可以在本地或远程存储(例如,在身份提供者处)。 元数据引擎可用于从元数据生成要提供给用户的数据:该数据可以采取任何期望的形式,诸如广告,用户帐户的状态或策略更新以及其他可能性。
-
27.发明申请VISUAL AND NON-VISUAL CUES FOR CONVEYING STATE OF INFORMATION CARDS, ELECTRONIC WALLETS, AND KEYRINGS 审中-公开信息卡,电子钱包和钥匙传送状态的视觉和非可视性公开(公告)号:US20090204622A1
公开(公告)日:2009-08-13
申请号:US12029373
申请日:2008-02-11
申请人: Daniel S. Sanders , Duane F. Buss , Thomas E. Doman , Andrew A. Hodgkinson , James G. Sermersheim , John M. Calcote
发明人: Daniel S. Sanders , Duane F. Buss , Thomas E. Doman , Andrew A. Hodgkinson , James G. Sermersheim , John M. Calcote
CPC分类号: G07F7/1008 , G06Q20/341 , G06Q20/3574 , G06Q20/363 , G07F7/084
摘要: A user desires to select information about himself. The system uses policies applicable to the display of the user's information and metadata about the user and the information to determine modified presentations of the user's information. The modified information can include visual and non-visual cues (such as aural, olfactory, or tactile). The system then displays the modified information, presenting the user with the visual and non-visual cues about the information.
摘要翻译: 用户希望选择有关自己的信息。 系统使用适用于显示用户的信息和关于用户的元数据的策略以及信息来确定用户信息的修改的呈现。 修改后的信息可以包括视觉和非视觉提示(如听觉,嗅觉或触觉)。 然后,系统显示修改的信息,向用户呈现关于信息的视觉和非视觉提示。
-
28.发明申请公开(公告)号:US20090204542A1
公开(公告)日:2009-08-13
申请号:US12042205
申请日:2008-03-04
申请人: Thomas E. Doman , Daniel S. Sanders , Duane F. Buss , Andrew A. Hodgkinson , James G. Sermersheim
发明人: Thomas E. Doman , Daniel S. Sanders , Duane F. Buss , Andrew A. Hodgkinson , James G. Sermersheim
摘要: A computer system accesses reputation information about a relying party. The reputation information can be stored locally or remotely (for example, at an identity provider or reputation service). A reputation information engine can be used to provide the reputation information to the user. The user can then use the reputation information in performing a transaction with the relying party.
摘要翻译: 计算机系统访问有关依赖方的信誉信息。 信誉信息可以在本地或远程存储(例如,在身份提供商或信誉服务处)。 信誉信息引擎可用于向用户提供信誉信息。 然后,用户可以在与依赖方进行交易时使用信誉信息。
-
公开(公告)号:US20080229383A1
公开(公告)日:2008-09-18
申请号:US11843591
申请日:2007-08-22
CPC分类号: H04L63/0815 , G06F21/41 , G06Q20/10 , G06Q20/367 , G06Q20/382 , G06Q20/40 , H04L63/0807 , H04L63/20
摘要: The user can associate metadata with information cards. The metadata can include, among other possibilities, string names, icons, user policies, containers, and hierarchies. The metadata is stored by the computer system. The metadata can then be used to filter the set of information cards that can satisfy a security policy from a relying party.
摘要翻译: 用户可以将元数据与信息卡相关联。 除了其他可能性之外,元数据可以包括字符串名称,图标,用户策略,容器和层次结构。 元数据由计算机系统存储。 然后可以使用元数据来过滤可以满足来自依赖方的安全策略的一组信息卡。
-
公开(公告)号:US06560595B1
公开(公告)日:2003-05-06
申请号:US09440482
申请日:1999-11-15
IPC分类号: G06F1730
CPC分类号: G06F17/30412 , G06F17/30421 , Y10S707/99932 , Y10S707/99933 , Y10S707/99944
摘要: A correlation operator &THgr; provides a way for the results of sub-queries to be correlated. The correlation operator &THgr; has an implied existential quantifier property (i.e., a “for some” property) and is satisfied if any record matches its sub-query. If no record is found that matches the correlation operator &THgr;'s sub-query, then the correlation operator &THgr; query fails. The implicit existential quantifier property of the correlation operator &THgr; can be converted into a universal quantifier property (i.e., a “for all” property) by transformation of the query. The correlation operator &THgr; uses an algebra to resolve into flags attached to appropriate operators in the sub-query. After the correlation operator &THgr; is eliminated from the query, the query can be performed. The operator flags perform the correlation as part of the sub-query. The correlation operator &THgr; can be inserted explicitly by the user if she knows what data she desires to be correlated. Alternatively, the correlation operator can be inserted by the schema automatically to improve the expected results of the query.
摘要翻译: 相关运算符THETA提供了一种使子查询的结果相关的方法。 相关运算符THETA具有隐含的存在量词属性(即,对于一些“属性”),并且如果任何记录与其子查询匹配则满足。 如果没有找到与相关运算符THETA的子查询匹配的记录,则相关运算符THETA查询失败。 相关算子THETA的隐式存在量词属性可以通过查询的转换转换为通用量词属性(即“全部”属性)。相关运算符THETA使用代数来解析为附加到适当运算符的标志 子查询。 在关联运算符THETA从查询中消除后,可以执行查询。 运营商标志执行相关作为子查询的一部分。如果她知道她想要什么数据相关,则用户可以明确地插入相关运算符THETA。 或者,可以自动地通过模式插入关联运算符以改进查询的预期结果。
-
-
-
-
-
-
-
-
-
搜索结果
32 条记录 (耗时 0.031 秒)
