-
公开(公告)号:US07065784B2
公开(公告)日:2006-06-20
申请号:US10779221
申请日:2004-02-13
申请人: Alexander I. Hopmann , Van C. Van , Brian J. Deen
发明人: Alexander I. Hopmann , Van C. Van , Brian J. Deen
IPC分类号: H04L9/00
CPC分类号: H04L63/083 , G06F21/6218 , G06F2221/2141 , H04L63/104
摘要: Provided are methods and systems for integrating the access controls of computer resources into a namespace or domain. For a remote user, a computer network or system is a namespace represented by a URL. In order to enforce the access controls of the computer network being accesses, a remote user is impersonated by a server of the computer system such that access requests to the resources of a system are made by the server in the security context of the remote user. By impersonating the remote user, the actual rights of the remote user are being presented to the access controls rather than the rights of the server. In this manner, the access control of the system can be enforced directly on the remote user and the access control is effectively extended to the namespace.
摘要翻译: 提供了将计算机资源的访问控制集成到命名空间或域中的方法和系统。 对于远程用户,计算机网络或系统是由URL表示的命名空间。 为了强制被访问的计算机网络的访问控制,远程用户由计算机系统的服务器模拟,使得由远程用户的安全上下文中的服务器对系统的资源进行访问请求。 通过模拟远程用户,将远程用户的实际权限呈现给访问控制,而不是服务器的权限。 以这种方式,系统的访问控制可以直接在远程用户上实现,并且访问控制被有效地扩展到命名空间。
-
公开(公告)号:US06944642B1
公开(公告)日:2005-09-13
申请号:US09412738
申请日:1999-10-04
IPC分类号: G06F15/16
CPC分类号: G06F17/30356 , G06F17/30 , G06F17/30144 , G06F17/30168 , G06F17/30176
摘要: The present invention provides systems and methods for detecting and resolving resource conflicts. A resource conflict exists when a client version of a resource differs from a server version of the same resource. A resource conflict primarily arises when a client attempts to upload an altered resource to a server where the server version of the resource is no longer equivalent to the version that the client originally downloaded. The conflict is detected by the server and conflict resolution is initiated. The server is the first level of conflict resolution. The server can compare the conflicting versions of the resource to determine if the changes are not actually conflicting. If the server can resolve the conflict, it does and returns a resource tag to the client. The second level of conflict resolution is at the client. The client typically has knowledge of a schema related to the resource which may enable the client to resolve conflicts that the server could not. If the neither the server of the client can resolve the conflict, an end user is needed to resolve the conflict. After the conflict is resolved, it is uploaded to the server and the client receives a new resource tag.
摘要翻译: 本发明提供了用于检测和解决资源冲突的系统和方法。 当资源的客户端版本与同一资源的服务器版本不同时,存在资源冲突。 资源冲突主要发生在客户端尝试将更改的资源上传到服务器版本的资源不再等同于客户端最初下载的版本的服务器时。 服务器检测到冲突,启动冲突解决。 服务器是解决冲突的第一级。 服务器可以比较资源的冲突版本,以确定更改是否实际上不是冲突的。 如果服务器可以解决冲突,它会将资源标签返回给客户端。 第二层次的解决冲突是在客户端。 客户端通常具有与资源相关的模式的知识,这可以使得客户端能够解决服务器不能的冲突。 如果客户端的服务器都不能解决冲突,则需要最终用户来解决冲突。 冲突解决后,它被上传到服务器,客户端收到一个新的资源标签。
-
3.发明授权Method and system for supporting off-line mode of operation and synchronization 有权支持离线操作和同步操作的方法和系统公开(公告)号:US08972348B2
公开(公告)日:2015-03-03
申请号:US12975198
申请日:2010-12-21
CPC分类号: G06F17/30575 , G06F17/30578 , G06Q10/107 , H04L67/1095 , H04L67/2842 , Y10S707/959 , Y10S707/99952 , Y10S707/99953
摘要: Systems and methods for synchronizing multiple copies of data in a network environment that includes servers and clients so that incremental changes made to one copy of the data can be identified, transferred, and incorporated into all other copies of the data. The synchronization can be accomplished regardless of whether modifications to the data have been made by a client while the client is in an on-line or off-line mode of operation. The clients cache data locally as data are modified and downloaded. The caching enables the clients to access the data and allows the synchronization to be performed without transmitting a particular version more than once between a client and a server. Such elimination of redundant data transmission results in an efficient use of time and network bandwidth.
摘要翻译: 在包括服务器和客户端的网络环境中同步多个数据副本的系统和方法,以便对数据的一个副本进行的增量更改可以被识别,传输和合并到数据的所有其他副本中。 无论在客户端处于在线还是离线操作模式下,客户端是否进行了对数据的修改,都可以实现同步。 当数据被修改和下载时,客户端在本地缓存数据。 缓存使客户端能够访问数据,并允许执行同步,而不会在客户端和服务器之间多次发送特定版本。 这种消除冗余数据传输导致有效利用时间和网络带宽。
-
公开(公告)号:US20110314520A1
公开(公告)日:2011-12-22
申请号:US12821103
申请日:2010-06-22
申请人: Marcin Olszewski , Jonathan Luk , Alexander I. Hopmann , Fabricio Chalub Barbosa do Rosario , David Paul Harris Gorbet , Jason Matthew Cahill
发明人: Marcin Olszewski , Jonathan Luk , Alexander I. Hopmann , Fabricio Chalub Barbosa do Rosario , David Paul Harris Gorbet , Jason Matthew Cahill
IPC分类号: G06F17/30 , G06F15/173
CPC分类号: G06F9/468 , G06F21/604 , G06F21/62 , G06F21/6218 , G06F2221/2117 , G06F2221/2141 , H04L63/104
摘要: Embodiments provide application and/or resource access control features of an online computing environment, but are not so limited. In an embodiment, a computer-implemented method provides access control features for an online application environment based in part on the use of a number of directory service instances isolated from direct customer access and deployed in a defined datacenter architecture. In one embodiment, a computing environment uses web-based access control features and a number of directory service instances having organizational units and corresponding mappings to maintain a support infrastructure as part of providing features of online application services to customers. Other embodiments are included and available.
摘要翻译: 实施例提供在线计算环境的应用和/或资源访问控制特征,但不限于此。 在一个实施例中,计算机实现的方法部分地基于与直接客户访问隔离的并且部署在定义的数据中心架构中的多个目录服务实例的使用来为在线应用环境提供访问控制特征。 在一个实施例中,计算环境使用基于web的访问控制特征和具有组织单元和对应映射的多个目录服务实例来维护支持基础设施,作为向客户提供在线应用服务的特征的一部分。 其他实施例包括并且可用。
-
5.发明申请Method and System for Supporting Off-Line Mode of Operation and Synchronization 有权支持离线操作和同步模式的方法和系统公开(公告)号:US20110093597A1
公开(公告)日:2011-04-21
申请号:US12975198
申请日:2010-12-21
IPC分类号: G06F15/173
CPC分类号: G06F17/30575 , G06F17/30578 , G06Q10/107 , H04L67/1095 , H04L67/2842 , Y10S707/959 , Y10S707/99952 , Y10S707/99953
摘要: Systems and methods for synchronizing multiple copies of data in a network environment that includes servers and clients so that incremental changes made to one copy of the data can be identified, transferred, and incorporated into all other copies of the data. The synchronization can be accomplished regardless of whether modifications to the data have been made by a client while the client is in an on-line or off-line mode of operation. The clients cache data locally as data are modified and downloaded. The caching enables the clients to access the data and allows the synchronization to be performed without transmitting a particular version more than once between a client and a server. Such elimination of redundant data transmission results in an efficient use of time and network bandwidth.
摘要翻译: 在包括服务器和客户端的网络环境中同步多个数据副本的系统和方法,以便对数据的一个副本进行的增量更改可以被识别,传输和合并到数据的所有其他副本中。 无论在客户端处于在线还是离线操作模式下,客户端是否进行了对数据的修改,都可以实现同步。 当数据被修改和下载时,客户端在本地缓存数据。 缓存使客户端能够访问数据,并允许执行同步,而不会在客户端和服务器之间多次发送特定版本。 这种消除冗余数据传输导致有效利用时间和网络带宽。
-
公开(公告)号:US07519969B2
公开(公告)日:2009-04-14
申请号:US10692316
申请日:2003-10-23
CPC分类号: G06F9/451
摘要: Described is a system and method for controlling user interface (UI) properties with data. An application is separated into independent parts, a logic portion and a UI portion. The logic portion manipulates data values within the application. The UI portion is responsible for displaying UI properties. A binding specification describes a relationship between the UI property and the data value. The binding specification is used by system level code to determine the manner in which it is notified when the data value undergoes a change and the manner in which it directs the UI portion to reflect the change in the UI property. The binding specification identifies a source data item, a path to the data value in the source data item, a target UI element, and the UI property on the target UI element. The binding may be specified using code or markup language.
-
公开(公告)号:US08782748B2
公开(公告)日:2014-07-15
申请号:US12821103
申请日:2010-06-22
申请人: Marcin Olszewski , Jonathan Luk , Alexander I. Hopmann , Fabricio Chalub Barbosa do Rosario , David Paul Harris Gorbet , Jason Matthew Cahill
发明人: Marcin Olszewski , Jonathan Luk , Alexander I. Hopmann , Fabricio Chalub Barbosa do Rosario , David Paul Harris Gorbet , Jason Matthew Cahill
CPC分类号: G06F9/468 , G06F21/604 , G06F21/62 , G06F21/6218 , G06F2221/2117 , G06F2221/2141 , H04L63/104
摘要: Embodiments provide application and/or resource access control features of an online computing environment, but are not so limited. In an embodiment, a computer-implemented method provides access control features for an online application environment based in part on the use of a number of directory service instances isolated from direct customer access and deployed in a defined datacenter architecture. In one embodiment, a computing environment uses web-based access control features and a number of directory service instances having organizational units and corresponding mappings to maintain a support infrastructure as part of providing features of online application services to customers. Other embodiments are included and available.
摘要翻译: 实施例提供在线计算环境的应用和/或资源访问控制特征,但不限于此。 在一个实施例中,计算机实现的方法部分地基于与直接客户访问隔离的并且部署在定义的数据中心架构中的多个目录服务实例的使用来为在线应用环境提供访问控制特征。 在一个实施例中,计算环境使用基于web的访问控制特征和具有组织单元和对应映射的多个目录服务实例来维护支持基础设施,作为向客户提供在线应用服务的特征的一部分。 其他实施例包括并且可用。
-
8.发明授权Method and system for supporting off-line mode of operation and synchronization 有权支持离线操作和同步操作的方法和系统公开(公告)号:US07865469B2
公开(公告)日:2011-01-04
申请号:US11613157
申请日:2006-12-19
CPC分类号: G06F17/30575 , G06F17/30578 , G06Q10/107 , H04L67/1095 , H04L67/2842 , Y10S707/959 , Y10S707/99952 , Y10S707/99953
摘要: Systems and methods for synchronizing multiple copies of data in a network environment that includes servers and clients so that incremental changes made to one copy of the data can be identified, transferred, and incorporated into all other copies of the data. The synchronization can be accomplished regardless of whether modifications to the data have been made by a client while the client is in an on-line or off-line mode of operation. The clients cache data locally as data are modified and downloaded. The caching enables the clients to access the data and allows the synchronization to be performed without transmitting a particular version more than once between a client and a server. Such elimination of redundant data transmission results in an efficient use of time and network bandwidth.
摘要翻译: 在包括服务器和客户端的网络环境中同步多个数据副本的系统和方法,以便对数据的一个副本进行的增量更改可以被识别,传输和合并到数据的所有其他副本中。 无论在客户端处于在线还是离线操作模式下,客户端是否进行了对数据的修改,都可以实现同步。 当数据被修改和下载时,客户端在本地缓存数据。 缓存使客户端能够访问数据,并允许执行同步,而不会在客户端和服务器之间多次发送特定版本。 这种消除冗余数据传输导致有效利用时间和网络带宽。
-
9.发明授权Method and system for supporting off-line mode of operation and synchronization 有权支持离线操作和同步操作的方法和系统公开(公告)号:US07240091B1
公开(公告)日:2007-07-03
申请号:US10459380
申请日:2003-06-10
CPC分类号: G06F17/30575 , G06F17/30578 , G06Q10/107 , H04L67/1095 , H04L67/2842 , Y10S707/959 , Y10S707/99952 , Y10S707/99953
摘要: Systems and methods for synchronizing multiple copies of data in a network environment that includes servers and clients so that incremental changes made to one copy of the data can be identified, transferred, and incorporated into all other copies of the data. The synchronization can be accomplished regardless of whether modifications to the data have been made by a client while the client is in an on-line or off-line mode of operation. The clients cache data locally as data are modified and downloaded. The caching enables the clients to access the data and allows the synchronization to be performed without transmitting a particular version more than once between a client and a server. Such elimination of redundant data transmission results in an efficient use of time and network bandwidth.
摘要翻译: 在包括服务器和客户端的网络环境中同步多个数据副本的系统和方法,以便对数据的一个副本进行的增量更改可以被识别,传输和合并到数据的所有其他副本中。 无论在客户端处于在线还是离线操作模式下,客户端是否进行了对数据的修改,都可以实现同步。 当数据被修改和下载时,客户端在本地缓存数据。 缓存使客户端能够访问数据,并允许执行同步,而不会在客户端和服务器之间多次发送特定版本。 这种消除冗余数据传输导致有效利用时间和网络带宽。
-
公开(公告)号:US06499031B1
公开(公告)日:2002-12-24
申请号:US09360753
申请日:1999-07-26
申请人: Alexander I. Hopmann , Van C. Van , Brian J. Deen
发明人: Alexander I. Hopmann , Van C. Van , Brian J. Deen
IPC分类号: G06F1730
CPC分类号: G06F21/6218 , G06F2221/2147 , Y10S707/99938 , Y10S707/99939
摘要: Provided is a method for locking computer resources and for accessing locked computer resources. Resources being used by remote users can be locked such that other remote users and local users have restricted access to those resources. The remote user provides the resource to be locked, the type of lock to place on the resource and the duration of the lock. If the resource is available and the user has the proper credentials and the proper access permissions, the resource is locked and a lock token is provided to the remote user. A resource handle is also provided to the remote user. Once a resource has been locked, the lock token must be provided and verified before access to the resource is granted. Because the locks can be discovered, a security token of the owner of the lock is associated with the lock token. The security token of the remote user must also match the security token associated with the stored lock token before access to the resource is granted. The locks can either expire or be refreshed. If a lock expires, it is removed from memory and the resource handle is released. Also, particular user agents are given a fixed lock token in order to access system resources. These particular agents view the resource as locked, but the non-unique fixed lock token indicates to the system that the resource is not in fact locked. Other particular agents are given an extended timeout period to account for real time latencies of the computer system.
摘要翻译: 提供了一种用于锁定计算机资源和访问锁定的计算机资源的方法。 远程用户使用的资源可以被锁定,以便其他远程用户和本地用户对这些资源的访问受到限制。 远程用户提供要锁定的资源,要在资源上放置的锁的类型和锁的持续时间。 如果资源可用,并且用户具有正确的凭据和正确的访问权限,则资源被锁定,并且向远程用户提供锁定令牌。 还向远程用户提供资源句柄。 一旦资源被锁定,在给予资源的访问权限之前,必须提供和验证锁定令牌。 因为可以发现锁,锁的所有者的安全令牌与锁令牌相关联。 远程用户的安全令牌还必须与授予对资源的访问权限之前匹配与存储的锁定令牌相关联的安全令牌。 锁可以到期或刷新。 如果锁过期,它将从内存中删除,并释放资源句柄。 此外,为了访问系统资源,给予特定用户代理一个固定的锁定令牌。 这些特定代理将资源视为已锁定,但非唯一固定锁定令牌向系统指示资源实际上未锁定。 其他特定代理被给予延长的超时时间段以解决计算机系统的实时延迟。
-
-
-
-
-
-
-
-
-
搜索结果
19 条记录 (耗时 0.022 秒)
