利索-全球专利检索

  1. 登录
  2. 注册

搜索结果

38 条记录 (耗时 0.018 秒)

    Role-based access control utilizing token profiles
    2.
    发明授权
    Role-based access control utilizing token profiles 有权
    使用令牌简档的基于角色的访问控制

    公开(公告)号:US08387136B2

    公开(公告)日:2013-02-26

    申请号:US12652675

    申请日:2010-01-05

    申请人: Ade Lee Christina Fu

    发明人: Ade Lee Christina Fu

    IPC分类号: G06F7/04

    CPC分类号: H04L63/104 H04L63/0823 H04L63/20

    摘要: A method A method and system for managing role-based access control of token data using token profiles is described. In one method, a token processing system (TPS) receives a request from a TPS client over a network to perform an operation on entries of a token database. The TPS identifies a subset of the multiple groups that corresponds to the entries indicated in the request of the TPS client, determines to which of the identified groups the TPS client belongs using token profiles. For each group the TPS client belongs, the TPS determines a corresponding role for the TPS client from the token profiles. For each group the TPS belongs, the TPS allows the TPS client access to the entries of the respective group to perform the operation when the TPS client has the appropriate role assigned within the respective group.

    摘要翻译: 一种方法描述了使用令牌简档来管理令牌数据的基于角色的访问控制的方法和系统。 在一种方法中,令牌处理系统(TPS)通过网络从TPS客户端接收请求以对令牌数据库的条目执行操作。 TPS识别与TPS客户端的请求中指示的条目相对应的多个组的子集,使用令牌配置文件确定TPS客户端所属的哪个已标识的组。 对于TPS客户端所属的每个组,TPS从令牌配置文件确定TPS客户端的相应角色。 对于TPS属于的每个组,当TPS客户端具有在相应组内分配的适当角色时,TPS允许TPS客户端访问相应组的条目来执行操作。

    LDAP SECURITY DOMAIN DATA STORAGE
    4.
    发明申请
    LDAP SECURITY DOMAIN DATA STORAGE 有权
    LDAP安全域数据存储

    公开(公告)号:US20110078772A1

    公开(公告)日:2011-03-31

    申请号:US12571386

    申请日:2009-09-30

    申请人: Ade Lee Christina Fu Andrew Wnuk

    发明人: Ade Lee Christina Fu Andrew Wnuk

    IPC分类号: H04L9/32

    CPC分类号: H04L63/0823

    摘要: A Security Domain Access System (SDAS) provides highly available security domain data. The SDAS receives a request pertaining to a security domain. The request includes credentials for accessing a security domain manager server. The SDAS selects one of a plurality of security domain manager servers to process the request based on the credentials and the availability of each of the plurality of security domain manager servers. The SDAS forwards the request to the selected security domain manager server.

    摘要翻译: 安全域访问系统(SDAS)提供高度可用的安全域数据。 SDAS接收到与安全域有关的请求。 请求包括用于访问安全域管理器服务器的凭据。 SDAS选择多个安全域管理服务器中的一个来基于多个安全域管理服务器中的每一个的证书和可用性来处理该请求。 SDAS将请求转发到所选的安全域管理器服务器。

    Automatic server administration of serial numbers in a replicated certificate authority topology
    6.
    发明授权
    Automatic server administration of serial numbers in a replicated certificate authority topology 有权
    自动服务器管理复制的证书颁发机构拓扑中的序列号

    公开(公告)号:US08200811B2

    公开(公告)日:2012-06-12

    申请号:US12571369

    申请日:2009-09-30

    申请人: Ade Lee Christina Fu Andrew Wnuk

    发明人: Ade Lee Christina Fu Andrew Wnuk

    IPC分类号: G06F15/16 G06F12/00

    CPC分类号: H04L63/0823

    摘要: A Serial Number Management System (SNMS) automatically manages the allocation of unique serial numbers to certificate authority servers in a replicated server environment. The SNMS automatically detects that a Certificate Authority (CA) server has a need for additional unused serial numbers. The SNMS identifies a provider CA server that has unused serial numbers. The SNMS obtains a portion of the unused serial numbers from the provider CA server.

    摘要翻译: 序列号管理系统(SNMS)会自动管理复制服务器环境中的证书颁发机构服务器的唯一序列号分配。 SNMS自动检测到证书颁发机构(CA)服务器需要其他未使用的序列号。 SNMS标识具有未使用序列号的提供商CA服务器。 SNMS从提供商CA服务器获取一部分未使用的序列号。

    Methods and systems for key recovery for a token
    7.
    发明申请
    Methods and systems for key recovery for a token 有权
    用于令牌的密钥恢复的方法和系统

    公开(公告)号:US20070280483A1

    公开(公告)日:2007-12-06

    申请号:US11447179

    申请日:2006-06-06

    申请人: Christina Fu Nang Kon Kwan Steven William Parkinson Robert Relyea

    发明人: Christina Fu Nang Kon Kwan Steven William Parkinson Robert Relyea

    IPC分类号: H04L9/00

    CPC分类号: H04L9/0822 H04L9/0897

    摘要: Methods, systems and computer readable mediums are provided for recovering keys. A key transport session key is generated, and a key encryption key is derived based on a server master key and an identification associated with a token. The key transport session key is encrypted with the key encryption key as a first wrapped key transport session key. An encrypted storage session key and an encrypted private key are retrieved from an archive. The encrypted storage session key is decrypted with a server storage key as a storage session key. The encrypted private key is decrypted with the storage session key. The decrypted private key is encrypted with the key transport session key as a wrapped private key. The wrapped private key and the first wrapped key transport session key are forwarded.

    摘要翻译: 提供方法,系统和计算机可读介质用于恢复密钥。 生成密钥传输会话密钥,并且基于服务器主密钥和与令牌相关联的标识来导出密钥加密密钥。 密钥传输会话密钥通过密钥加密密钥加密,作为第一个包装密钥传输会话密钥。 从归档中检索加密的存储会话密钥和加密的私钥。 加密存储会话密钥用服务器存储密钥解密为存储会话密钥。 加密的私钥用存储会话密钥解密。 解密的私钥用密钥传输会话密钥作为包装的私钥加密。 包裹的私钥和第一个包裹密钥传输会话密钥被转发。

    Renewal of expired certificates
    9.
    发明授权
    Renewal of expired certificates 有权
    续期过期证书

    公开(公告)号:US09130758B2

    公开(公告)日:2015-09-08

    申请号:US12616036

    申请日:2009-11-10

    申请人: Christina Fu Ade Lee

    发明人: Christina Fu Ade Lee

    IPC分类号: H04L29/06 H04L9/32

    CPC分类号: H04L9/3268 H04L9/3226 H04L63/0823 H04L63/123 H04L63/166 H04L2209/60 H04L2209/805

    摘要: A method and system for renewal of expired certificates is described. In one embodiment, a method, implemented by a computing system programmed to perform operations, includes receiving, at a certificate manager of a computing system from a requester, a certificate renewal request for an original digital certificate that has already expired, and renewing the expired certificate as a renewed certificate by the certificate manager when the certificate renewal request is approved. The renewed certificate comprises the same key pair as the original certificate, but includes a new expiration date, and wherein the renewed certificate is functionally identical to the original certificate.

    摘要翻译: 描述了更新过期证书的方法和系统。 在一个实施例中,由被编程为执行操作的计算系统实现的方法包括在来自请求者的计算系统的证书管理器处接收对已经过期的原始数字证书的证书更新请求,并且更新已过期 当证书更新请求被批准时,证书作为证书管理者的续签证书。 更新的证书包括与原始证书相同的密钥对,但包括新的到期日期,并且其中更新的证书在功能上与原始证书相同。