-
公开(公告)号:US20110107133A1
公开(公告)日:2011-05-05
申请号:US12612925
申请日:2009-11-05
IPC分类号: G06F1/00
CPC分类号: G06F1/06
摘要: One embodiment is a clocking system for a computing environment. The system comprises a first set of processes executing in a first computing environment; a first local clock mechanism associated with the first set of processes; and a first communications channel for connecting the first local clock mechanism with the first set of processes. The first local clock mechanism stores clock rates of the first set of processes, wherein each clock rate is specified by function and source and destination combination, the first local clock mechanism further coordinating the clock speeds of the first set of processes as necessary.
摘要翻译: 一个实施例是用于计算环境的计时系统。 该系统包括在第一计算环境中执行的第一组进程; 与第一组进程相关联的第一本地时钟机制; 以及用于将第一本地时钟机制与第一组进程连接的第一通信信道。 第一本地时钟机制存储第一组进程的时钟速率,其中每个时钟速率由功能和源和目的地组合来指定,第一本地时钟机制根据需要进一步协调第一组进程的时钟速度。
-
公开(公告)号:US20100325693A1
公开(公告)日:2010-12-23
申请号:US12871163
申请日:2010-08-30
CPC分类号: H04L63/062 , G06F21/33 , H04L63/08 , H04L63/102 , H04L2463/081
摘要: Techniques for the remote authorization of secure operations are provided. A secure security system restricts access to a secure operation via an access key. An authorization acquisition service obtains the access key on request from the secure security system when an attempt is made to initiate the secure operation. The authorization acquisition service gains access the access key from a secure store via a secret. That is, the secret store is accessible via the secret. The secret is obtained directly or indirectly from a remote authorization principal over a network.
摘要翻译: 提供了远程授权安全操作的技术。 安全的安全系统通过访问密钥限制对安全操作的访问。 当尝试启动安全操作时,授权获取服务从安全安全系统请求获得访问密钥。 授权获取服务通过秘密从安全商店访问访问密钥。 也就是说,秘密商店可以通过秘密访问。 秘密是通过网络从远程授权主体直接或间接获得的。
-
公开(公告)号:US07647624B2
公开(公告)日:2010-01-12
申请号:US11290971
申请日:2005-11-30
IPC分类号: H04L9/00
CPC分类号: H04L63/0807 , G06F21/31 , G06F21/552 , G06F21/6263
摘要: Techniques are provided for preserving and managing identities within an audit log. Initial entries into a log do not include an explicit and direct reference to an agent that performs a transaction; rather, the agent acquires a temporary transaction identity for the transaction and an indirect reference to the transaction identity is written to the log while the transaction is pending. Once the transaction completes a direct reference to the transaction identity is written to the log, the identity of agent remains transparent until the identity of the agent expires, if at all.
摘要翻译: 提供了在审核日志中保存和管理身份的技术。 日志中的初始条目不包括对执行事务的代理的显式和直接引用; 相反,代理获取事务的临时事务标识,并且在事务处于待处理状态时,将对事务标识的间接引用写入日志。 一旦事务完成,对事务身份的直接引用将被写入日志,代理的身份将保持透明,直到代理的身份到期为止(如果有的话)。
-
公开(公告)号:US20090328166A1
公开(公告)日:2009-12-31
申请号:US12111874
申请日:2008-04-29
IPC分类号: H04L9/32
CPC分类号: G06F21/34
摘要: An accessor function interfaces among a client, a relying party, and an identity provider. The identity provider can “manage” personal (i.e., self-asserted) information cards on behalf of a user, making the personal information cards available on clients on which the personal information cards are not installed. The client can be an untrusted client, vulnerable to attacks such as key logging, screen capture, and memory interrogation. The accessor function can also asked as a proxy for the relying party in terms of invoking and using the information cards system, for use with legacy relying parties.
摘要翻译: 访问器功能在客户端,依赖方和身份提供者之间进行接口。 身份提供者可以代表用户“管理”个人(即自我声明的)信息卡,使个人信息卡可以在没有安装个人信息卡的客户端上可用。 客户端可以是不受信任的客户端,易受攻击,例如密钥记录,屏幕捕获和内存询问。 在访问和使用信息卡系统方面,访问者功能也可以被要求作为依赖方的代理人,以便与传统依赖方一起使用。
-
公开(公告)号:US20090217351A1
公开(公告)日:2009-08-27
申请号:US12036523
申请日:2008-02-25
CPC分类号: H04L63/0281 , H04L63/0407
摘要: Techniques are presented for anonymous Internet access. Internet requests are intercepted within a firewalled environment before being routed over the Internet to destination sites. Each Internet requests is evaluated in view of policy and one or more anonymizers are selected in response to that evaluation. The Internet requests are then routed through the appropriate anonymizers for processing to the destination sites. A relationship between an Internet Protocol (IP) address associated with the firewalled environment and IP addresses of the destination sites is masked and hidden via the anonymizers from Internet observers. Moreover, a secure communication between the firewalled environment and the anonymizers is maintained.
摘要翻译: 为匿名上网提供技术。 互联网请求在通过Internet路由到目标站点之前在防火墙环境中被拦截。 根据策略评估每个互联网请求,并根据该评估选择一个或多个匿名器。 然后通过适当的匿名器路由Internet请求,以便处理到目标站点。 与防火墙环境相关联的因特网协议(IP)地址和目的地站点的IP地址之间的关系通过来自互联网观察者的匿名器被屏蔽和隐藏。 此外,保护防火墙环境和匿名者之间的安全通信。
-
公开(公告)号:US20080289049A1
公开(公告)日:2008-11-20
申请号:US11750778
申请日:2007-05-18
IPC分类号: H04L9/00
CPC分类号: G06F21/6218 , G06F17/30867 , G06F21/10
摘要: Techniques for personalizing content are presented. A principal requests access to content. Policy is evaluated in response to the request for the content. Scripts are processed in response to the policy evaluation to rewrite and modify the content. The modified content is then delivered to the requesting principal to personalize the content for the principal.
摘要翻译: 介绍了个性化内容的技巧。 主体请求访问内容。 响应于对内容的请求来评估策略。 响应于策略评估处理脚本以重写和修改内容。 修改的内容然后被传递给请求主体以个性化主体的内容。
-
公开(公告)号:US20080289013A1
公开(公告)日:2008-11-20
申请号:US11750791
申请日:2007-05-18
CPC分类号: G06F17/30905 , G06F21/6209 , G06F2221/2149
摘要: Techniques for the local personalization of content are presented. A content personalization service is dynamically pushed from a server environment to a client processing environment associated with a principal on demand. The content personalization service interjects itself between content that the principal attempts to view and access within the client processing environment and modifies and personalizes that content on behalf of the principal before the principal can view or access the content.
摘要翻译: 介绍了本地个性化内容的技术。 将内容个性化服务从服务器环境动态推送到与主服务器相关联的客户端处理环境。 内容个性化服务在客户端处理环境中试图查看和访问的内容之间插入内容,并在主体可以查看或访问内容之前代表主体修改和个性化该内容。
-
公开(公告)号:US07316027B2
公开(公告)日:2008-01-01
申请号:US10770677
申请日:2004-02-03
IPC分类号: H04L9/00
CPC分类号: G06F21/41 , H04L63/0428 , H04L63/08 , H04L63/20
摘要: Techniques are provided for dynamically establishing and managing trust relationships. A first principal initially requests a community list. The community list includes identities of one or more second principals with which the first principal can establish trusted relationships with. The community list is associated with a trust specification. The trust specification defines the policies and access rights associated with interactions between the first principal and the second principals during any active trusted relationships. The first principal can dynamically subdivide, manage, and modify entries of the community list and the trust specification, assuming any such modifications are permissible according to global contracts and policies associated with the first principal.
摘要翻译: 提供了动态建立和管理信任关系的技术。 第一位校长最初要求社区名单。 社区列表包括一个或多个第二主体的身份,第一个主体可以与之建立信任关系。 社区列表与信任规范相关联。 信任规范定义了在任何主动信任关系期间与第一主体和第二主体之间的交互相关联的策略和访问权限。 假设根据与第一主体相关的全球合同和政策允许的任何此类修改,第一委员可以动态细分,管理和修改社区列表和信任规范的条目。
-
公开(公告)号:US20070294752A1
公开(公告)日:2007-12-20
申请号:US11444944
申请日:2006-06-01
IPC分类号: G06F17/30 , G06F15/16 , G06F17/00 , G06F7/04 , G06F9/00 , G06F7/58 , G06K19/00 , G06K9/00 , H04L9/32
CPC分类号: H04L63/0815 , G06F21/33 , G06F21/41
摘要: Techniques for proxing services with a single sign on are provided. A principal authenticates to a first identity service. The first identity service is in a trusted relationship with a second identity service. An authentication request is sent to the second identity service and the request includes an authentication response supplied by the first identity service in response to successful authentication of the principal to the first identity service. In response to the authentication request and the accompanying response, the principal is authenticated for access to the second identity service. Furthermore, targeted services accessible to the second identity service are proxied from and to the principal during interactions between the principal and an external service of that principal.
摘要翻译: 提供使用单点登录服务的技术。 主体认证第一身份服务。 第一个身份服务与第二个身份服务处于可信赖的关系中。 认证请求被发送到第二身份服务,并且请求包括由第一身份服务提供的认证响应,以响应对第一身份服务的主体的成功认证。 响应于认证请求和伴随的响应,主体被认证用于访问第二身份服务。 此外,第二身份服务可访问的目标服务在委托人的主体和外部服务之间的交互中由委托人代理。
-
70.发明授权Techniques for dynamically establishing and managing authentication and trust relationships 有权用于动态建立和管理身份验证和信任关系的技术公开(公告)号:US07299493B1
公开(公告)日:2007-11-20
申请号:US10765523
申请日:2004-01-27
IPC分类号: G06F7/04 , G06F7/58 , G06F15/16 , G06F17/30 , G06K9/00 , G06K19/00 , G06Q40/00 , H04K1/00 , H04L9/00 , H04L9/28
CPC分类号: H04L63/0815 , G06Q40/04
摘要: Techniques are provided for dynamically establishing and managing authentication and trust relationships. An identity service acquires and evaluates contracts associated with relationships between principals. The contracts permit the identity service to assemble authentication information, aggregated attributes, and aggregated policies which will drive and define the various relationships. That assembled information is consumed by the principals during interactions with one another and constrains those interactions. In some embodiments, the constraints are dynamically modified during on-going interactions between the principals.
摘要翻译: 提供了动态建立和管理认证和信任关系的技术。 身份服务获取和评估与校长之间关系相关的合同。 合同允许身份服务组合认证信息,聚合属性和聚合策略,以驱动和定义各种关系。 这些组合信息在彼此交互过程中由主体消耗,并限制这些交互。 在一些实施例中,约束在主体之间的持续交互期间被动态修改。
-
-
-
-
-
-
-
-
-
搜索结果
146 条记录 (耗时 0.053 秒)
