-
公开(公告)号:US07257817B2
公开(公告)日:2007-08-14
申请号:US09993656
申请日:2001-11-27
申请人: Luis F. Cabrera , Erik B. Christensen , Giovanni M. Della-Libera , Christopher G. Kaler , David E. Levin , Bradford H. Lovering , Steven E. Lucco , Stephen J. Millet , John P. Shewchuk , Robert S. Wahbe , David A. Wortendyke
发明人: Luis F. Cabrera , Erik B. Christensen , Giovanni M. Della-Libera , Christopher G. Kaler , David E. Levin , Bradford H. Lovering , Steven E. Lucco , Stephen J. Millet , John P. Shewchuk , Robert S. Wahbe , David A. Wortendyke
IPC分类号: G06F3/00
CPC分类号: H04L45/00 , H04L43/0811 , H04L45/306 , H04L45/308 , H04L45/34 , H04L45/56 , H04L45/566 , H04L67/02 , H04L67/327 , H04L69/08
摘要: Methods and systems for providing a virtual network are disclosed. At least one layer of abstraction is created between network service applications and conventional network protocols by inserting an adaptive dispatcher between applications and network transport services on each machine in a network. The message protocol in the virtual network is extensible, allowing application programs to create new headers within any message as needed. The adaptive dispatcher contains handlers that route and dispatch messages within the virtual network based on arbitrary content within each message, including any combination of headers and/or data content. Each device on the virtual network has a virtual address to which messages are directed, allowing devices to move within the network without reconfiguring routing tables. Handlers may be automatically created when an event meeting predefined criteria occurs, including the non-occurrence of a condition, making the virtual network self-healing and adaptive to reconfiguration.
摘要翻译: 公开了用于提供虚拟网络的方法和系统。 通过在网络中的每台机器上的应用程序和网络传输服务之间插入自适应调度器,在网络服务应用程序和常规网络协议之间创建至少一个抽象层。 虚拟网络中的消息协议是可扩展的,允许应用程序根据需要在任何消息内创建新头。 自适应调度器包含基于每个消息内的任意内容(包括报头和/或数据内容的任何组合)在虚拟网络内路由和调度消息的处理程序。 虚拟网络上的每个设备都具有指向消息的虚拟地址,允许设备在网络内移动而不重新配置路由表。 当满足预定义标准的事件发生时,可以自动创建处理程序,包括不发生条件,使虚拟网络自我修复并适应重新配置。
-
公开(公告)号:US06981215B1
公开(公告)日:2005-12-27
申请号:US09223773
申请日:1998-12-31
摘要: An environment for developing clientside/serverside code is disclosed. The environment supports programming in an event-driven paradigm while the execution of the resultant programs are executed in a serial execution paradigm. Through shielding the developer from complex scripting segments, the environment provides the developer with the suggestion that that resultant execution model is event-driven.
摘要翻译: 公开了开发客户端/服务器端代码的环境。 环境支持事件驱动范例中的编程,而执行结果程序在串行执行范例中执行。 通过将开发人员屏蔽为复杂的脚本段,环境为开发人员提供了结果执行模型是事件驱动的建议。
-
公开(公告)号:US06889379B1
公开(公告)日:2005-05-03
申请号:US09223558
申请日:1998-12-31
CPC分类号: G06F8/30 , G06F8/51 , G06F9/4493
摘要: An environment for developing clientside/serverside code is disclosed. The environment supports the perception that the server space and client space are seamlessly joined into a single program execution space. An outgrowth of the single execution space includes effective event handing on the server through enabling created objects to migrate effectively between the server and client.
摘要翻译: 公开了开发客户端/服务器端代码的环境。 环境支持将服务器空间和客户端空间无缝连接到单个程序执行空间的感觉。 单个执行空间的产物包括通过使创建的对象在服务器和客户端之间有效迁移来在服务器上进行有效的事件处理。
-
公开(公告)号:US06714219B2
公开(公告)日:2004-03-30
申请号:US09223565
申请日:1998-12-31
IPC分类号: G09G500
CPC分类号: G06F8/34 , Y10S715/967
摘要: An environment for developing clientside/serverside code is disclosed. The environment supports programming in an event-driven paradigm while the execution of the resultant programs are executed in a serial execution paradigm. Through shielding the developer from complex scripting segments, the environment provides the developer with the suggestion that that resultant execution model is event-driven. By treating scripts as later-definable objects, the designing phase of a page may be lessened, as the appropriate codings needed to implement a page are determined at a later date. In one example, the codings may be preliminary set as server side or client side, with the environment later adding the appropriate scripting language to complete the developed page.
摘要翻译: 公开了开发客户端/服务器端代码的环境。 环境支持事件驱动范例中的编程,而执行结果程序在串行执行范例中执行。 通过将开发人员从复杂的脚本段中屏蔽,环境为开发人员提供了结果执行模型是事件驱动的建议。 通过将脚本作为可定义的对象,可以减少页面的设计阶段,因为在稍后的日期确定实现页面所需的适当编码。 在一个示例中,编码可以被初步设置为服务器端或客户端,随后环境添加适当的脚本语言以完成开发的页面。
-
公开(公告)号:US5878421A
公开(公告)日:1999-03-02
申请号:US503139
申请日:1995-07-17
CPC分类号: G06F17/212 , G06F17/30855 , Y10S707/99931 , Y10S707/99932 , Y10S707/99933 , Y10S707/99942 , Y10S707/99945
摘要: One of the controls on a page can call an information map at the time that the page which contains the control is being rendered. The information map interface provides access to the structure of both the title and the content within the title. The control can then display this structural information in any form it desires since it renders itself on the page at the customer computer. Navigation through the title is based on the customer's interactions with the information map control, i.e., clicking on a navigation link causes the title to navigate to that location. The information map determines which piece of the title and content structure to show, and the visual form in which it is shown. Information maps may have other applications including the efficient creation and modification of timelines and geographic maps in multimedia encyclopedias (e.g., Microsoft Encarta), as well as virtual reality programs.
摘要翻译: 页面上的控件之一可以在包含控件的页面被呈现的时候调用信息图。 信息地图界面提供对标题内的标题和内容的结构的访问。 然后,控件可以以任何形式显示此结构信息,因为它将自身呈现在客户计算机的页面上。 通过标题的导航是基于客户与信息图控件的交互,即点击导航链接导致标题导航到该位置。 信息图确定要显示的标题和内容结构的哪一部分以及显示的内容结构的视觉形式。 信息地图可能有其他应用,包括在多媒体百科全书(例如,Microsoft Encarta)中有效地创建和修改时间表和地理图,以及虚拟现实程序。
-
公开(公告)号:US09313252B2
公开(公告)日:2016-04-12
申请号:US13452433
申请日:2012-04-20
CPC分类号: H04L67/02 , G06F11/182 , H04L67/1095 , H04L67/28 , H04L67/42
摘要: Various embodiments enable redundant or replica services, such as “cloud” services, to be run at geographically distributed locations. Each replica is capable of performing operations that are generally, identically performed across all replicas. In the event of an interruption at one location, services in other locations can quickly and automatically take over operations. In one or more embodiments, a Distributed Agreement Protocol is utilized to bind a CRUD-type protocol as a state machine. Binding takes place through the use of a reverse proxy that is located at each of the locations at which the service is distributed. In at least some embodiments, the Distributed Agreement Protocol is implemented as the Paxos protocol or a variant thereof, and/or the CRUD-type protocol comprises the HTTP protocol.
摘要翻译: 各种实施例使得诸如“云”服务的冗余或复制服务能够在地理分布的位置上运行。 每个副本都能够执行通常在所有副本上执行相同操作的操作。 在一个位置发生中断的情况下,其他地点的服务可以快速自动接管操作。 在一个或多个实施例中,使用分布式协议协议来将CRUD类型协议绑定为状态机。 绑定通过使用位于服务分发的每个位置处的反向代理来进行。 在至少一些实施例中,分布式协议协议被实现为Paxos协议或其变体,和/或CRUD类型协议包括HTTP协议。
-
47.发明授权公开(公告)号:US08528058B2
公开(公告)日:2013-09-03
申请号:US11755968
申请日:2007-05-31
申请人: Liqiang Zhu , Gennady Medvinsky , Tanmoy Dutta , Cristian Ilac , Andreas Luther , John P Shewchuk
发明人: Liqiang Zhu , Gennady Medvinsky , Tanmoy Dutta , Cristian Ilac , Andreas Luther , John P Shewchuk
IPC分类号: H04L29/06
CPC分类号: H04L63/0823 , H04L63/166 , H04L67/02
摘要: Architecture for natively authenticating a client application to a web server via HTTP authentication. The Web Services Architecture, and more specifically, Web Services Security, is leveraged to enable legacy applications to access web services transparently to the existing legacy applications. A security support provider (SSP) is created that employs WS-* protocol to at least emulate ws-trust and ws-mex thereby enabling policy exchange via an HTTP protocol stack. Policy can be exchanged via a WWW-Authenticate header enabling legacy applications to use the WS-* family of protocols without modifying the client application. The WS-* protocols are abstracted into a generic programming interface for native client application use.
摘要翻译: 通过HTTP认证将客户端应用程序本地验证到Web服务器的体系结构。 Web服务体系结构,更具体地说,Web服务安全性是有利于使传统应用程序能够透明地访问现有的遗留应用程序的Web服务。 创建了一个安全支持提供程序(SSP),它使用WS- *协议来至少模拟ws-trust和ws-mex,从而通过HTTP协议栈实现策略交换。 可以通过WWW-Authenticate标头来交换策略,使得遗留应用程序能够使用WS- *系列协议,而无需修改客户端应用程序。 将WS- *协议抽象为通用编程接口,用于本机客户机应用程序的使用。
-
公开(公告)号:US08302149B2
公开(公告)日:2012-10-30
申请号:US11254519
申请日:2005-10-20
申请人: Giovanni M. Della-Libera , Christopher G. Kaler , Scott A. Konersmann , Butler W. Lampson , Paul J. Leach , Bradford H. Lovering , Steven E. Lucco , Stephen J. Millet , Richard F. Rashid , John P. Shewchuk
发明人: Giovanni M. Della-Libera , Christopher G. Kaler , Scott A. Konersmann , Butler W. Lampson , Paul J. Leach , Bradford H. Lovering , Steven E. Lucco , Stephen J. Millet , Richard F. Rashid , John P. Shewchuk
IPC分类号: H04L29/06
CPC分类号: H04L63/08 , G06Q20/3676 , H04L63/10 , H04L63/168 , H04L63/20 , H04L67/02 , H04L67/28 , H04L67/2804 , H04L67/2823
摘要: A distributed security system is provided. The distributed security system uses a security policy that is written in a policy language that is transport and security protocol independent as well as independent of cryptographic technologies. This security policy can be expressed using the language to create different security components allowing for greater scalability and flexibility. By abstracting underlying protocols and technologies, multiple environments and platforms can be supported.
摘要翻译: 提供分布式安全系统。 分布式安全系统使用以政策语言编写的安全策略,该策略语言是传输和安全协议独立的,而与密码技术无关。 该安全策略可以用语言来表示,以创建不同的安全组件,从而实现更大的可扩展性和灵活性。 通过抽象底层协议和技术,可以支持多个环境和平台。
-
公开(公告)号:US08086849B2
公开(公告)日:2011-12-27
申请号:US10210067
申请日:2002-08-02
IPC分类号: H04L9/00
CPC分类号: H04L63/0428 , H04L63/08 , H04L63/126
摘要: A method and system are provided for delivering event messages in a secure scalable manner. A network includes an event distribution device serving as an event generation device for generating and disseminating an event message through the network to event distribution devices serving as edge event delivery devices having recipient devices connected thereto. Event messages may be encrypted at the event generation device for each of the destination recipient devices or event messages may be encrypted at each of the edge event delivery devices for delivery to respective recipient devices connected thereto. A signing key may also be included with the encrypted message such that the respective recipient devices may authenticate a sender of the encrypted message based on the signing key. Encryption keys may be established based on policies of the network of event distribution devices or based on policies of the respective recipient devices.
摘要翻译: 提供了一种以安全可伸缩的方式传送事件消息的方法和系统。 网络包括作为事件发生设备的事件发布设备,用于通过网络生成和传播事件消息到用作具有连接到其的接收设备的边缘事件传递设备的事件分发设备。 事件消息可以在每个目的地接收者设备的事件生成设备处被加密,或者可以在每个边缘事件传递设备处对事件消息进行加密,以便递送到与之相连接的相应接收者设备。 签名密钥也可以包含在加密的消息中,使得相应的接收者设备可以基于签名密钥来认证加密消息的发送者。 加密密钥可以基于事件分发设备的网络的策略或基于各个接收方设备的策略来建立。
-
公开(公告)号:US08051469B2
公开(公告)日:2011-11-01
申请号:US12620444
申请日:2009-11-17
IPC分类号: G06F7/04
CPC分类号: H04L9/3271 , H04L9/3213 , H04L9/3297 , H04L2209/56 , H04L2209/80
摘要: A cryptographic session key is utilized to maintain security of a digital identity. The session key is valid only for a limited period of time. Additional security is provided via a bimodal credential allowing different levels of access to the digital identify. An identity token contains pertinent information associated with the digital identity. The identity token is encrypted utilizing public-key cryptography. An identifier utilized to verify the validity of the digital identity is encrypted with the cryptographic session key. The encrypted identity token and the encrypted identifier are provided to a service for example. The service decrypts the encrypted identity token utilizing public key cryptography, and decrypts, with the cryptographic session key obtained from the identity token, the encrypted identifier. If the identifier is determined to be valid, the transaction proceeds normally. If the identifier is determined to be invalid, the transaction is halted.
摘要翻译: 利用加密会话密钥来维护数字身份的安全性。 会话密钥仅在有限的时间内有效。 通过双峰凭证提供额外的安全性,允许不同级别的访问数字识别。 身份令牌包含与数字身份相关联的相关信息。 使用公钥密码术对身份令牌进行加密。 用于验证数字身份的有效性的标识符被加密会话密钥加密。 加密的身份令牌和加密的标识符例如被提供给服务。 该服务使用公钥加密来解密加密的身份令牌,并且利用从身份令牌获得的加密会话密钥对加密的标识符进行解密。 如果标识符被确定为有效,则事务正常进行。 如果标识符被确定为无效,则停止该事务。
-
-
-
-
-
-
-
-
-
搜索结果
57 条记录 (耗时 0.023 秒)
