-
公开(公告)号:US08140735B2
公开(公告)日:2012-03-20
申请号:US12706813
申请日:2010-02-17
申请人: Lloyd Leon Burch , Jason Allen Sabin , Kal A. Larsen , Nathaniel Brent Kranendonk , Michael John Jorgensen
发明人: Lloyd Leon Burch , Jason Allen Sabin , Kal A. Larsen , Nathaniel Brent Kranendonk , Michael John Jorgensen
IPC分类号: G06F21/00
CPC分类号: G06F9/45533 , G06F9/455 , G06F17/30067 , G06F17/3012 , G06F17/30129 , G06F17/30174 , G06F17/30179 , G06F2009/45562 , G06F2009/45583
摘要: Techniques for dynamic disk personalization are provided. A virtual image that is used to create an instance of a virtual machine (VM) is altered so that disk access operations are intercepted within the VM and redirected to a service that is external to the VM. The external service manages a personalized storage for a principal, the personalized storage used to personalize the virtual image without altering the virtual image.
摘要翻译: 提供了动态磁盘个性化技术。 用于创建虚拟机(VM)实例的虚拟映像被更改,以便磁盘访问操作在虚拟机内被拦截并重定向到VM外部的服务。 外部服务管理主体的个性化存储,用于个性化虚拟映像的个性化存储,而不改变虚拟映像。
-
公开(公告)号:US20120151132A1
公开(公告)日:2012-06-14
申请号:US13400224
申请日:2012-02-20
申请人: Lloyd Leon Burch , Jason Allen Sabin , Kal A. Larsen , Nathaniel Brent Kranendonk , Michael John Jorgensen
发明人: Lloyd Leon Burch , Jason Allen Sabin , Kal A. Larsen , Nathaniel Brent Kranendonk , Michael John Jorgensen
IPC分类号: G06F12/00
CPC分类号: G06F9/45533 , G06F9/455 , G06F17/30067 , G06F17/3012 , G06F17/30129 , G06F17/30174 , G06F17/30179 , G06F2009/45562 , G06F2009/45583
摘要: Techniques for dynamic disk personalization are provided. A virtual image that is used to create an instance of a virtual machine (VM) is altered so that disk access operations are intercepted within the VM and redirected to a service that is external to the VM. The external service manages a personalized storage for a principal, the personalized storage used to personalize the virtual image without altering the virtual image.
摘要翻译: 提供了动态磁盘个性化技术。 用于创建虚拟机(VM)实例的虚拟映像被更改,以便磁盘访问操作在虚拟机内被拦截并重定向到VM外部的服务。 外部服务管理主体的个性化存储,用于个性化虚拟映像的个性化存储,而不改变虚拟映像。
-
公开(公告)号:US20110202714A1
公开(公告)日:2011-08-18
申请号:US12706813
申请日:2010-02-17
申请人: Lloyd Leon Burch , Jason Allen Sabin , Kal A. Larsen , Nathaniel Brent Kranendonk , Michael John Jorgensen
发明人: Lloyd Leon Burch , Jason Allen Sabin , Kal A. Larsen , Nathaniel Brent Kranendonk , Michael John Jorgensen
CPC分类号: G06F9/45533 , G06F9/455 , G06F17/30067 , G06F17/3012 , G06F17/30129 , G06F17/30174 , G06F17/30179 , G06F2009/45562 , G06F2009/45583
摘要: Techniques for dynamic disk personalization are provided. A virtual image that is used to create an instance of a virtual machine (VM) is altered so that disk access operations are intercepted within the VM and redirected to a service that is external to the VM. The external service manages a personalized storage for a principal, the personalized storage used to personalize the virtual image without altering the virtual image.
摘要翻译: 提供了动态磁盘个性化技术。 用于创建虚拟机(VM)实例的虚拟映像被更改,以便磁盘访问操作在虚拟机内被拦截并重定向到VM外部的服务。 外部服务管理主体的个性化存储,用于个性化虚拟映像的个性化存储,而不改变虚拟映像。
-
公开(公告)号:US09391978B2
公开(公告)日:2016-07-12
申请号:US12786540
申请日:2010-05-25
CPC分类号: H04L63/0815
摘要: Apparatus, systems, and methods may operate to receive, at a generating identity provider (IDP), original user credentials sufficient to authenticate a user directly from a user machine, or indirectly from an initial identity provider. Additional activities may include generating, by the generating IDP, generated user credentials having the lifetime of a login session associated with the user, the lifetime initiated approximately when the original user credentials or a token associated with the user are/is validated at the generating IDP. Still further activities may include receiving a request associated with the user during the login session to access an application protected by an agent, and transmitting at least part of the generated user credentials from the generating IDP to the application to authenticate the user to the generating IDP while the login session is not terminated or expired. Additional apparatus, systems, and methods are disclosed.
摘要翻译: 设备,系统和方法可以操作以在生成身份提供者(IDP)处接收足以直接从用户机器或直接从初始身份提供者认证用户的原始用户凭证。 附加活动可以包括通过生成IDP生成具有与用户相关联的登录会话的生命周期的生成的用户凭证,大约在原始用户凭证或与该用户相关联的令牌在生成的IDP被验证时生效的生命周期 。 进一步的活动可以包括在登录会话期间接收与用户相关联的请求以访问由代理保护的应用,以及将生成的用户凭证的至少一部分从生成的IDP发送到应用以将用户认证为生成IDP 而登录会话未终止或过期。 公开了附加装置,系统和方法。
-
公开(公告)号:US08831993B2
公开(公告)日:2014-09-09
申请号:US12728115
申请日:2010-03-19
CPC分类号: H04L63/10 , G06F9/45533 , G06F9/45558 , G06F9/468 , G06F9/5077 , G06F21/53 , G06F2009/45587 , G06F2009/45595 , G06F2212/151 , H04L9/3247 , H04L29/06612 , H04L29/08468 , H04L29/08846 , H04L63/08 , H04L63/20
摘要: Techniques for sharing virtual machine (VM) resources are provided. A relative location for a resource within a VM is created; the relative location dynamically resolves to a particular physical location when a principal requests access to the resource at runtime. The principal is located outside an environment associated with the VM. Authentication and access restrictions are dynamically enforced against the requests made by the principal before a connection is permitted between the principal and the resource (the resource located within the environment of the VM).
摘要翻译: 提供了共享虚拟机(VM)资源的技术。 创建VM内资源的相对位置; 当主体在运行时请求访问资源时,相对位置会动态地解析为特定的物理位置。 主体位于与虚拟机相关的环境之外。 在主体和资源(位于VM环境中的资源)之间允许连接之前,认证和访问限制将针对主体发出的请求动态执行。
-
36.发明申请公开(公告)号:US20110041171A1
公开(公告)日:2011-02-17
申请号:US12608389
申请日:2009-10-29
CPC分类号: H04L63/20 , G06Q10/10 , H04L63/0281 , H04L63/08 , H04L63/0884
摘要: Techniques for virtual Representational State Transfer (REST) interfaces are provided. A proxy is interposed between a client and a REST service over a network. The proxy performs independent authentication of the client and provides credentials to the client and for the client to authenticate to the REST service using a REST service authentication mechanism. The proxy inspects requests and responses and translates the requests and responses into formats expected by the client and the REST service. Moreover, the proxy enforces policy and audits the requests and responses occurring between the client and the REST service over the network.
摘要翻译: 提供了虚拟表示状态转移(REST)接口的技术。 代理服务器介于客户端和通过网络的REST服务之间。 代理执行客户端的独立身份验证,并向客户端提供凭据,并为客户端使用REST服务验证机制向REST服务进行身份验证。 代理检查请求和响应,并将请求和响应转换为客户端和REST服务所期望的格式。 此外,代理强制执行策略并对通过网络在客户端和REST服务之间发生的请求和响应进行审计。
-
37.发明授权公开(公告)号:US09049182B2
公开(公告)日:2015-06-02
申请号:US12608389
申请日:2009-10-29
CPC分类号: H04L63/20 , G06Q10/10 , H04L63/0281 , H04L63/08 , H04L63/0884
摘要: Techniques for virtual Representational State Transfer (REST) interfaces are provided. A proxy is interposed between a client and a REST service over a network. The proxy performs independent authentication of the client and provides credentials to the client and for the client to authenticate to the REST service using a REST service authentication mechanism. The proxy inspects requests and responses and translates the requests and responses into formats expected by the client and the REST service. Moreover, the proxy enforces policy and audits the requests and responses occurring between the client and the REST service over the network.
摘要翻译: 提供了虚拟表示状态转移(REST)接口的技术。 代理服务器介于客户端和通过网络的REST服务之间。 代理执行客户端的独立身份验证,并向客户端提供凭据,并为客户端使用REST服务验证机制向REST服务进行身份验证。 代理检查请求和响应,并将请求和响应转换为客户端和REST服务所期望的格式。 此外,代理强制执行策略并对通过网络在客户端和REST服务之间发生的请求和响应进行审计。
-
公开(公告)号:US20110231840A1
公开(公告)日:2011-09-22
申请号:US12728115
申请日:2010-03-19
CPC分类号: H04L63/10 , G06F9/45533 , G06F9/45558 , G06F9/468 , G06F9/5077 , G06F21/53 , G06F2009/45587 , G06F2009/45595 , G06F2212/151 , H04L9/3247 , H04L29/06612 , H04L29/08468 , H04L29/08846 , H04L63/08 , H04L63/20
摘要: Techniques for sharing virtual machine (VM) resources are provided. A relative location for a resource within a VM is created; the relative location dynamically resolves to a particular physical location when a principal requests access to the resource at runtime. The principal is located outside an environment associated with the VM. Authentication and access restrictions are dynamically enforced against the requests made by the principal before a connection is permitted between the principal and the resource (the resource located within the environment of the VM).
摘要翻译: 提供了共享虚拟机(VM)资源的技术。 创建VM内资源的相对位置; 当主体在运行时请求访问资源时,相对位置会动态地解析为特定的物理位置。 主体位于与虚拟机相关的环境之外。 在主体和资源(位于VM环境中的资源)之间允许连接之前,认证和访问限制将针对主体发出的请求动态执行。
-
公开(公告)号:US20110214176A1
公开(公告)日:2011-09-01
申请号:US12714452
申请日:2010-02-27
CPC分类号: H04L63/08 , G06F9/455 , G06F9/45533 , G06F21/33 , G06F21/53 , G06F2221/2149 , H04L63/0272 , H04L63/10 , H04L67/10
摘要: Techniques for secure access management to virtual environments are provided. A user authenticates to a portal for purposes of establishing a virtual machine (VM). The portal interacts with a cloud server and an identity server to authenticate the user, to acquire an Internet Protocol (IP) address and port number for the VM, and to obtain a secure token. The user then interacts with a secure socket layer virtual private network (SSL VPN) server to establish a SSL VPN session with the VM. The SSL VPN server also authenticates the token through the identity server and acquires dynamic policies to enforce during the SSL VPN session between the user and the VM (the VM managed by the cloud server).
摘要翻译: 提供了对虚拟环境进行安全访问管理的技术。 为了建立虚拟机(VM),用户认证到门户。 门户与云服务器和身份服务器进行交互以验证用户,获取虚拟机的互联网协议(IP)地址和端口号,并获取安全令牌。 然后,用户与安全套接字层虚拟专用网(SSL VPN)服务器交互,以与VM建立SSL VPN会话。 SSL VPN服务器还通过身份服务器对令牌进行身份验证,并获取动态策略,以在用户与VM(由云端服务器管理的虚拟机)之间的SSL VPN会话期间执行。
-
公开(公告)号:US09497270B2
公开(公告)日:2016-11-15
申请号:US13599718
申请日:2012-08-30
CPC分类号: H04L67/14
摘要: Techniques for workload federated timeout are presented. A federated service manages communications between service components of a system. Each component queries the federated service to determine a last activity time by the other components of the system before timing out during a session. Each component can update its last activity time based on the discovered last activity time of one of the components to prevent a premature time out from the session.
摘要翻译: 介绍了工作负载联合超时的技术。 联合服务管理系统的服务组件之间的通信。 每个组件在会话中超时之前查询联合服务以确定系统的其他组件的最后活动时间。 每个组件可以根据发现的其中一个组件的最后一个活动时间来更新其最后的活动时间,以防止会话过早超时。
-
-
-
-
-
-
-
-
-
搜索结果
146 条记录 (耗时 0.028 秒)
