公开(公告)号：US20100029371A1

公开(公告)日：2010-02-04

申请号：US12184411

申请日：2008-08-01

申请人： Gennady Medvinsky ,  Gregory D. Hartrell ,  Patrick W. O'Kelley, II

发明人： Gennady Medvinsky ,  Gregory D. Hartrell ,  Patrick W. O'Kelley, II

IPC分类号： A63F9/24

CPC分类号： G06Q30/06 ,  A63F13/12 ,  A63F13/792 ,  A63F2300/575 ,  G06Q10/10 ,  H04L29/12103 ,  H04L61/1535 ,  H04L67/16 ,  H04L67/38

摘要： A Personal Game Services Commerce System is disclosed. The system allows a user to contract with another user to perform service within a virtual environment. The services may include operating in a virtual environment on behalf of another user, operating as a team member, or operating as an opponent in competition. Memory state may be copied and used by the service-providing user. The user requesting the service may confirm that the service has been satisfactorily rendered before making the copied memory state permanent and/or before paying for the service. Users may select service-providing users based on any available criteria. Funds to pay for the service may be frozen while the service is being performed and until the recipient of the service confirms successful performance of the service.

摘要翻译： 披露个人游戏服务商业系统。 该系统允许用户与另一用户签约以在虚拟环境中执行服务。 这些服务可能包括代表另一个用户在虚拟环境中运行，作为团队成员运行，或作为竞争对手的对手。 服务提供用户可能会复制和使用内存状态。 请求服务的用户可以在使复制的存储器状态为永久和/或在支付服务之前确认服务已经令人满意地呈现。 用户可以根据任何可用的条件选择服务提供用户。 支付服务的资金可能在执行服务时冻结，直到服务的接收方确认服务的成功执行。

公开(公告)号：US07434253B2

公开(公告)日：2008-10-07

申请号：US11181525

申请日：2005-07-14

申请人： Christopher J. Crall ,  Gennady Medvinsky ,  Joshua Ball ,  Karthik Jaganathan ,  Paul J. Leach ,  Liqiang Zhu ,  David B. Cross

发明人： Christopher J. Crall ,  Gennady Medvinsky ,  Joshua Ball ,  Karthik Jaganathan ,  Paul J. Leach ,  Liqiang Zhu ,  David B. Cross

IPC分类号： H04L9/32 ,  H04L9/00

CPC分类号： H04L9/3263 ,  H04L9/3273 ,  H04L63/0807 ,  H04L63/0823 ,  H04L63/0876 ,  H04L63/10 ,  H04L63/166

摘要： A hint containing user mapping information is provided in messages that may be exchanged during authentication handshakes. For example, a client may provide user mapping information to the server during authentication. The hint (e.g., in the form of a TLS extension mechanism) may be used to send the domain/user name information of a client to aid the server in mapping the user's certificate to an account. The extension mechanism provides integrity and authenticity of the mapping data sent by the client. The user provides a hint as to where to find the right account or domain controller (which points to, or otherwise maintains, the correct account). Based on the hint and other information in the certificate, the user is mapped to an account. The hint may be provided by the user when he logs in. Thus, a certificate is mapped to an identity to authenticate the user. A hint is sent along with the certificate information to perform the binding. Existing protocols may be extended to communicate the additional mapping information (the hint) to perform the binding. A vendor specific extension to Kerberos is defined to obtain the authorization data based on an X.509 certificate and the mapping user name hint.

摘要翻译： 在认证握手期间可以交换的消息中提供了包含用户映射信息的提示。 例如，客户端可以在认证期间向服务器提供用户映射信息。 提示（例如，以TLS扩展机制的形式）可以用于发送客户端的域/用户名信息，以帮助服务器将用户的证书映射到帐户。 扩展机制提供客户端发送的映射数据的完整性和真实性。 用户提供关于在哪里找到正确的帐户或域控制器（指向或以其他方式维护正确的帐户）的提示。 根据证书中的提示和其他信息，用户被映射到一个帐户。 提示可以由用户在登录时提供。因此，证书被映射到身份以验证用户。 发送提示与证书信息一起执行绑定。 可以扩展现有协议以传达额外的映射信息（提示）来执行绑定。 定义了针对Kerberos的供应商特定扩展，以根据X.509证书和映射用户名提示获取授权数据。

公开(公告)号：US20080134311A1

公开(公告)日：2008-06-05

申请号：US11607720

申请日：2006-12-01

申请人： Gennady Medvinsky ,  Nir Nice ,  Tomer Shiran ,  Alexander Teplitsky ,  Paul Leach ,  John Neystadt

发明人： Gennady Medvinsky ,  Nir Nice ,  Tomer Shiran ,  Alexander Teplitsky ,  Paul Leach ,  John Neystadt

IPC分类号： H04L9/32 ,  G06F21/00

CPC分类号： H04L63/166 ,  G06F21/33 ,  G06F2221/2115 ,  H04L9/3213 ,  H04L9/3263 ,  H04L9/3271 ,  H04L29/06965 ,  H04L63/0823 ,  H04L2209/38

摘要： The method of delegating authentication, within a chain of entities, relies upon a recording of at least a portion of a TLS handshake between a gateway device and user, in which the user needs access to a desired server. The method then relies upon re-verification of cryptographic evidence in the recorded portion of the TLS handshake, which is forwarded either (1) to the server to which access is desired, in which case the server re-verifies the recorded portion to confirm authentication, or, (2) to a third party entity, in which case the third party entity confirms authentication and provides credentials to the gateway server which then uses the credentials to authenticate to the server as the user.

摘要翻译： 在实体链中委托认证的方法依赖于在网关设备和用户之间的至少一部分TLS握手的记录，其中用户需要访问期望的服务器。 然后，该方法依赖于在TLS握手的记录部分中重新验证加密证据，TLS握手被转发到（1）到需要访问的服务器，在这种情况下，服务器重新验证记录部分以确认认证 ，或者（2）到第三方实体，在这种情况下，第三方实体确认认证，并向网关服务器提供凭证，然后网关服务器使用凭证作为用户对服务器进行认证。