-
公开(公告)号:US08479254B2
公开(公告)日:2013-07-02
申请号:US11843591
申请日:2007-08-22
IPC分类号: G06F17/00
CPC分类号: H04L63/0815 , G06F21/41 , G06Q20/10 , G06Q20/367 , G06Q20/382 , G06Q20/40 , H04L63/0807 , H04L63/20
摘要: The user can associate metadata with information cards. The metadata can include, among other possibilities, string names, icons, user policies, containers, and hierarchies. The metadata is stored by the computer system. The metadata can then be used to filter the set of information cards that can satisfy a security policy from a relying party.
摘要翻译: 用户可以将元数据与信息卡相关联。 除了其他可能性之外,元数据可以包括字符串名称,图标,用户策略,容器和层次结构。 元数据由计算机系统存储。 然后可以使用元数据来过滤可以满足来自依赖方的安全策略的一组信息卡。
-
公开(公告)号:US08074257B2
公开(公告)日:2011-12-06
申请号:US11843640
申请日:2007-08-22
申请人: Patrick R. Felsted , Andrew A. Hodgkinson , Daniel S. Sanders , James G. Sermersheim , James Mark Norman
发明人: Patrick R. Felsted , Andrew A. Hodgkinson , Daniel S. Sanders , James G. Sermersheim , James Mark Norman
CPC分类号: H04L63/0815 , G06F21/41 , G06Q20/10 , G06Q20/367 , G06Q20/382 , G06Q20/40 , H04L63/0807 , H04L63/20
摘要: When a user connects a pluggable card store to a machine, the machine plugs a pluggable card provider into a card provider registry. The pluggable card store can be an object portable to the user, or can be a remote store available via some connection, such as an FTP connection. The user can then use the information cards stored on the pluggable card store in a transaction.
摘要翻译: 当用户将可插拔卡存储器连接到机器时,机器将可插拔卡提供程序插入卡提供商注册表。 可插拔卡存储器可以是可移植到用户的对象,或者可以是通过诸如FTP连接的某些连接可用的远程存储器。 然后,用户可以在交易中使用存储在可插拔卡存储器上的信息卡。
-
公开(公告)号:US20100095372A1
公开(公告)日:2010-04-15
申请号:US12248815
申请日:2008-10-09
CPC分类号: H04L9/3226 , G06F21/41 , H04L9/3213
摘要: An apparatus can include a secret mapping module running on a machine and configured to create a mapping that maps a secret to a claim stored in an information card, a receiver running on the machine and configured to receive a request for the secret from a remote application, a mapping query module running on the machine and configured to perform a search for the mapping, a credential provider application running on the machine and configured to retrieve the secret based at least in part on the claim, and a transmitter configured to transmit the secret to the remote application.
摘要翻译: 装置可以包括在机器上运行的并且被配置为创建将秘密映射到存储在信息卡中的权利要求的映射的映射模块,在机器上运行的接收器并且被配置为从远程应用程序接收对秘密的请求 ,运行在所述机器上并被配置为执行所述映射的搜索的映射查询模块,所述映射查询模块至少部分地基于所述权利要求而被配置为在所述机器上运行并被配置为基于所述权利要求来检索所述秘密;以及发射机,被配置为发送所述秘密 到远程应用程序。
-
公开(公告)号:US20090228885A1
公开(公告)日:2009-09-10
申请号:US12044816
申请日:2008-03-07
申请人: Duane F. Buss , Thomas E. Doman , Andrew A. Hodgkinson , Daniel S. Sanders , James G. Sermersheim
发明人: Duane F. Buss , Thomas E. Doman , Andrew A. Hodgkinson , Daniel S. Sanders , James G. Sermersheim
IPC分类号: G06F9/46
CPC分类号: H04L63/0807 , G06F21/33 , G06F21/34 , G06F21/41 , G06Q10/06 , H04L63/102
摘要: A system and method for managing information cards using workflows is provided. A workflow manager in a card selector allows the user to initiate cardflows in the card selector. The workflow manager is extensible and programmable so that additional user-defined or industry-defined cardflows can be added to the workflow manager.
摘要翻译: 提供了一种使用工作流管理信息卡的系统和方法。 卡选择器中的工作流程管理器允许用户在卡选择器中启动卡流。 工作流管理器是可扩展和可编程的,以便可以向工作流管理器添加额外的用户定义或行业定义的卡流。
-
5.发明申请公开(公告)号:US20090199284A1
公开(公告)日:2009-08-06
申请号:US12026775
申请日:2008-02-06
IPC分类号: G06F21/00
CPC分类号: G06F21/34
摘要: An identity provider issues information cards in which the credential type and/or the credential data is not specified at the time of issuance. A card selector installs the information cards and either prompts a user for the credential at the time of installation or afterwards. The card selector updates the credential type, the credential data, and/or authentication materials associated with an information card after the information card has been installed, and informs the identity provider about the credential type, credential data, and authentication materials before the information card is used.
摘要翻译: 身份提供者发布信息卡,其中凭证类型和/或凭证数据在发行时未被指定。 卡选择器安装信息卡,并在安装时或之后提示用户提供凭证。 在信息卡已经安装之后,卡片选择器更新凭证类型,证书数据和/或与信息卡相关联的认证材料,并且在信息卡之前通知身份提供商关于凭证类型,凭证数据和认证材料 用来。
-
6.发明申请PROCESSING HTML EXTENSIONS TO ENABLE SUPPORT OF INFORMATION CARDS BY A RELYING PARTY 审中-公开处理HTML扩展,以便依靠一方支持信息卡公开(公告)号:US20090077655A1
公开(公告)日:2009-03-19
申请号:US12019104
申请日:2008-01-24
IPC分类号: G06F21/00
CPC分类号: G06F21/33 , G06F21/335 , G06F21/41
摘要: A user engages in a transaction with a relying party through a computer system. The relying party requests identity information from the user using HTML extensions. The computer system includes a web browser having browser extensions. The HTML extensions cause the web browser to call a card selector invoker. The card selector invoker invokes a card selector to provide a security token. The card selector invoker extracts identity information from the security token and provides the identity information to the web browser. The computer system then returns the identity information to the relying party.
摘要翻译: 用户通过计算机系统与依赖方进行交易。 依赖方使用HTML扩展从用户请求身份信息。 计算机系统包括具有浏览器扩展的网络浏览器。 HTML扩展使Web浏览器调用卡片选择器调用器。 卡选择器调用者调用卡选择器来提供安全令牌。 卡选择器调用者从安全令牌中提取身份信息,并将标识信息提供给Web浏览器。 计算机系统然后将身份信息返回给依赖方。
-
公开(公告)号:US20080229411A1
公开(公告)日:2008-09-18
申请号:US11843608
申请日:2007-08-22
申请人: James M. NORMAN , Daniel S. SANDERS
发明人: James M. NORMAN , Daniel S. SANDERS
IPC分类号: G06F7/04
CPC分类号: H04L63/0815 , G06F21/41 , G06Q20/10 , G06Q20/367 , G06Q20/382 , G06Q20/40 , H04L63/0807 , H04L63/20
摘要: A machine includes card stores to store information cards. For each card store, one or more card selectors can be provided. When performing a transaction involving information cards, a generic card selector, using a selector policy engine, can identify a card selector to use for the transaction. The identified card selector can be used to identify an information card in a card store to use in performing the transaction, which can be used to provide a security token to the relying party.
摘要翻译: 一台机器包括存储信息卡的卡片商店。 对于每个卡存储,可以提供一个或多个卡片选择器。 当执行涉及信息卡的事务时,使用选择器策略引擎的通用卡选择器可以识别用于该事务的卡选择器。 所识别的卡选择器可用于识别卡存储器中用于执行交易的信息卡,其可用于向依赖方提供安全令牌。
-
公开(公告)号:US20130024908A1
公开(公告)日:2013-01-24
申请号:US13619572
申请日:2012-09-14
申请人: Thomas E. Doman , Duane F. Buss , Daniel S. Sanders , Andrew A. Hodgkinson , James G. Sermersheim , James M. Norman
发明人: Thomas E. Doman , Duane F. Buss , Daniel S. Sanders , Andrew A. Hodgkinson , James G. Sermersheim , James M. Norman
IPC分类号: G06F21/00
CPC分类号: G06F21/34
摘要: A selector daemon can run in the background of a computer. Applications that are capable of processing information cards directly, without requiring the use of a card selector, can request the selector daemon to list information cards that satisfy security policy. Upon receiving such a request, selector daemon can determine the information cards available on the computer that satisfy the security policy, and can identify these information cards to the requesting application. The applications can then use the identified information cards in any manner desired, without having to use a card selector: for example, by requesting a security token based on one of the information cards directly from an identity provider.
-
公开(公告)号:US20130014245A1
公开(公告)日:2013-01-10
申请号:US13619554
申请日:2012-09-14
IPC分类号: G06F21/00
CPC分类号: G06F21/34
摘要: An accessor function interfaces among a client, a relying party, and an identity provider. The identity provider can “manage” personal (i.e., self-asserted) information cards on behalf of a user, making the personal information cards available on clients on which the personal information cards are not installed. The client can be an untrusted client, vulnerable to attacks such as key logging, screen capture, and memory interrogation. The accessor function can also asked as a proxy for the relying party in terms of invoking and using the information cards system, for use with legacy relying parties.
摘要翻译: 访问器功能在客户端,依赖方和身份提供者之间进行接口。 身份提供者可以代表用户管理个人(即自称的)信息卡,使个人信息卡可以在没有安装个人信息卡的客户端上可用。 客户端可以是不受信任的客户端,易受攻击,例如密钥记录,屏幕捕获和内存询问。 在访问和使用信息卡系统方面,访问者功能也可以被要求作为依赖方的代理人,以便与传统依赖方一起使用。
-
公开(公告)号:US20130014208A1
公开(公告)日:2013-01-10
申请号:US13619594
申请日:2012-09-14
申请人: James M. NORMAN , Daniel S. SANDERS
发明人: James M. NORMAN , Daniel S. SANDERS
IPC分类号: G06F21/00
CPC分类号: H04L63/0815 , G06F21/41 , G06Q20/10 , G06Q20/367 , G06Q20/382 , G06Q20/40 , H04L63/0807 , H04L63/20
摘要: A machine includes card stores to store information cards. For each card store, one or more card selectors can be provided. When performing a transaction involving information cards, a generic card selector, using a selector policy engine, can identify a card selector to use for the transaction. The identified card selector can be used to identify an information card in a card store to use in performing the transaction, which can be used to provide a security token to the relying party.
摘要翻译: 一台机器包括存储信息卡的卡片商店。 对于每个卡存储,可以提供一个或多个卡片选择器。 当执行涉及信息卡的事务时,使用选择器策略引擎的通用卡选择器可以识别用于该事务的卡选择器。 所识别的卡选择器可用于识别卡存储器中用于执行交易的信息卡,其可用于向依赖方提供安全令牌。
-
-
-
-
-
-
-
-
-
搜索结果
36 条记录 (耗时 0.023 秒)
