-
公开(公告)号:US09262490B2
公开(公告)日:2016-02-16
申请号:US12776341
申请日:2010-05-07
申请人: Carol Lyndall Colrain , Michael Ullrich Zoll , Vladimir Begun , Rajkumar Arockia Irudayaraj , Logan O'Sullivan Bruns
发明人: Carol Lyndall Colrain , Michael Ullrich Zoll , Vladimir Begun , Rajkumar Arockia Irudayaraj , Logan O'Sullivan Bruns
CPC分类号: G06F17/30377 , G06F9/5011 , G06F9/5027 , G06F17/30557 , G06F17/30595 , G06F17/30914 , G06F17/30917 , G06F2212/7201 , H04L67/32
摘要: A method and apparatus is provided for dynamically generating data to dataset mappings and dataset to logical instance mappings and distributing these mappings to subscribers for the purpose of routing work. An advisory engine updates the mappings of data to data sets based at least in part on changing demands and patterns of access to data, and updates the mappings of datasets to logical instances based at least in part on anticipated capacity and change in conditions of the database servers. The subscribers receive and store the mapping information that maps the data to dataset identifiers, and dataset identifiers to logical database instances. The subscribers may also receive information that describes the current availability conditions of database instances, which are used to override the mapping of logical database instances to physical database instances. Subscribers may use the data to dataset mapping to map data identified from in an incoming database request to a dataset. Subscribers may use the dataset to logical instance mapping to map a dataset to a possible database server, and the logical instance to physical instance mapping to map a possible database server to an available database server. In this manner, the subscribers may route data efficiently even when access patterns and server conditions change.
摘要翻译: 提供了一种方法和装置,用于动态生成数据到数据集映射和数据集到逻辑实例映射的数据,并将这些映射分发给用户以进行路由工作。 咨询引擎至少部分地基于不断变化的对数据访问的需求和模式来更新数据到数据集的映射,并且至少部分地基于数据库的预期容量和条件变化将数据集的映射更新为逻辑实例。 服务器 用户接收并存储将数据映射到数据集标识符的映射信息,以及数据集标识符存储到逻辑数据库实例。 用户还可以接收描述数据库实例的当前可用性条件的信息,其用于覆盖逻辑数据库实例到物理数据库实例的映射。 订阅者可以使用数据对数据集映射将从传入数据库请求标识的数据映射到数据集。 订阅者可以将数据集用于逻辑实例映射以将数据集映射到可能的数据库服务器,并将逻辑实例映射到物理实例映射,以将可能的数据库服务器映射到可用的数据库服务器。 以这种方式,即使当访问模式和服务器条件改变时,用户也可以有效地路由数据。
-
公开(公告)号:US20110276579A1
公开(公告)日:2011-11-10
申请号:US12776341
申请日:2010-05-07
申请人: Carol Lyndall Colrain , Michael Ullrich Zoll , Vladimir Begun , Rajkumar Arockia Irudayaraj , Logan O'Sullivan Bruns
发明人: Carol Lyndall Colrain , Michael Ullrich Zoll , Vladimir Begun , Rajkumar Arockia Irudayaraj , Logan O'Sullivan Bruns
IPC分类号: G06F17/30
CPC分类号: G06F17/30377 , G06F9/5011 , G06F9/5027 , G06F17/30557 , G06F17/30595 , G06F17/30914 , G06F17/30917 , G06F2212/7201 , H04L67/32
摘要: A method and apparatus is provided for dynamically generating data to dataset mappings and dataset to logical instance mappings and distributing these mappings to subscribers for the purpose of routing work. An advisory engine updates the mappings of data to data sets based at least in part on changing demands and patterns of access to data, and updates the mappings of datasets to logical instances based at least in part on anticipated capacity and change in conditions of the database servers. The subscribers receive and store the mapping information that maps the data to dataset identifiers, and dataset identifiers to logical database instances. The subscribers may also receive information that describes the current availability conditions of database instances, which are used to override the mapping of logical database instances to physical database instances. Subscribers may use the data to dataset mapping to map data identified from in an incoming database request to a dataset. Subscribers may use the dataset to logical instance mapping to map a dataset to a possible database server, and the logical instance to physical instance mapping to map a possible database server to an available database server. In this manner, the subscribers may route data efficiently even when access patterns and server conditions change.
摘要翻译: 提供了一种方法和装置,用于动态生成数据到数据集映射和数据集到逻辑实例映射的数据,并将这些映射分发给用户以进行路由工作。 咨询引擎至少部分地基于不断变化的对数据访问的需求和模式来更新数据到数据集的映射,并且至少部分地基于数据库的预期容量和条件变化将数据集的映射更新为逻辑实例。 服务器 用户接收并存储将数据映射到数据集标识符的映射信息,以及数据集标识符存储到逻辑数据库实例。 用户还可以接收描述数据库实例的当前可用性条件的信息,其用于覆盖逻辑数据库实例到物理数据库实例的映射。 订阅者可以使用数据对数据集映射将从传入数据库请求标识的数据映射到数据集。 订阅者可以将数据集用于逻辑实例映射以将数据集映射到可能的数据库服务器,并将逻辑实例映射到物理实例映射,以将可能的数据库服务器映射到可用的数据库服务器。 以这种方式,即使当访问模式和服务器条件改变时,用户也可以有效地路由数据。
-
公开(公告)号:US07783044B2
公开(公告)日:2010-08-24
申请号:US10250004
申请日:2003-05-27
CPC分类号: H04L63/0435 , G06Q20/401 , H04L9/083 , H04L9/0841 , H04L63/08
摘要: A secure communication system wherein message decryption may be performed while off-line, or optionally while on-line. A sender encrypts a message based on the message key and sends it to the recipient. An envelope containing a message key is created by encrypting the message key based on a verifier, where the verifier is based on a secret of the recipient. The recipient is provided the envelope, along with the message or separately, from the sender or from another party, contemporaneous with receipt of the message or otherwise. The recipient can then open the envelope while off-line, based on their secret, and retrieve the message key from the envelope to decrypt the message. In the event the recipient cannot open the envelope, optional on-line access permits obtaining assistance that may include obtaining an alternate envelope that the recipient can open.
摘要翻译: 一种安全通信系统,其中可以在离线或可选地在线时执行消息解密。 发件人根据消息密钥加密消息并将其发送给收件人。 通过基于验证者加密消息密钥来创建包含消息密钥的信封,其中验证者基于接收者的秘密。 收件人与邮件或单独地从发件人或另一方提供信封,同时收到信息或其他信息。 收件人可以根据其秘密离线打开信封,并从信封中取回消息密钥以解密该消息。 如果收件人无法打开信封,可选的在线访问允许获得帮助,其中可能包括获取收件人可以打开的替代信封。
-
公开(公告)号:US08315393B2
公开(公告)日:2012-11-20
申请号:US12839879
申请日:2010-07-20
CPC分类号: H04L63/0435 , G06Q20/401 , H04L9/083 , H04L9/0841 , H04L63/08
摘要: A secure communication system wherein message decryption may be performed while off-line, or optionally while on-line. A sender encrypts a message based on the message key and sends it to the recipient. An envelope containing a message key is created by encrypting the message key based on a verifier, where the verifier is based on a secret of the recipient. The recipient is provided the envelope, along with the message or separately, from the sender or from another party, contemporaneous with receipt of the message or otherwise. The recipient can then open the envelope while off-line, based on their secret, and retrieve the message key from the envelope to decrypt the message. In the event the recipient cannot open the envelope, optional on-line access permits obtaining assistance that may include obtaining an alternate envelope that the recipient can open.
摘要翻译: 一种安全通信系统,其中可以在离线或可选地在线时执行消息解密。 发件人根据消息密钥加密消息并将其发送给收件人。 通过基于验证者加密消息密钥来创建包含消息密钥的信封,其中验证者基于接收者的秘密。 收件人与邮件或单独地从发件人或另一方提供信封,同时收到信息或其他信息。 收件人可以根据其秘密离线打开信封,并从信封中取回消息密钥以解密该消息。 如果收件人无法打开信封,可选的在线访问允许获得帮助,其中可能包括获取收件人可以打开的替代信封。
-
5.发明授权METHOD AND SYSTEM OF FEDERATED AUTHENTICATION SERVICE FOR INTERACTING BETWEEN AGENT AND CLIENT AND COMMUNICATING WITH OTHER COMPONENTS OF THE SYSTEM TO CHOOSE AN APPROPRIATE MECHANISM FOR THE SUBJECT FROM AMONG THE PLURALITY OF AUTHENTICATION MECHANISMS WHEREIN THE SUBJECT IS SELECTED FROM HUMANS, CLIENT APPLICATIONS AND APPLETS 有权联合认证服务的方法和系统,用于与代理和客户之间的交互,并与系统的其他组成部分进行通信,以便从人员,客户应用程序和应用程序中选择主体的认证机构的多样性,为主体选择适当的机制公开(公告)号:US06959336B2
公开(公告)日:2005-10-25
申请号:US09827697
申请日:2001-04-07
CPC分类号: H04L63/0281 , H04L63/0815 , H04L63/0884 , H04L63/205
摘要: A federated authentication service technology (10) for authenticating a subject (20) residing in a subject domain (12) on a network to a server application (38) residing in a server domain (18), wherein an authentication mechanism (32) residing in an authentication domain (16) affects the service provided by the server application (38). A client (22), which may be integrated non-human instances of the subject (20), authenticates the subject (20) and a protocol proxy (34) mediates with the authentication mechanism (32) to obtain a name assertion which the client can use to access the server application (38). When multiple authentication mechanisms (32) are available, an optional agent (24), mechanism resolution process (26) and mechanism repository (28), all residing in an agent domain (14), may be used to resolve to one suitable authentication mechanism (32).
摘要翻译: 用于将驻留在网络上的主题域(12)中的对象(20)认证到驻留在服务器域(18)中的服务器应用(38)的联合身份验证服务技术(10),其中驻留的身份验证机制(32) 在认证域(16)中,影响由服务器应用(38)提供的服务。 可以集成主体(20)的非人类实例的客户端(22)对主体(20)进行认证,并且协议代理(34)与认证机制(32)中介以获得客户端的名称声明 可以使用来访问服务器应用程序(38)。 当多个认证机制(32)可用时,可以使用所有驻留在代理域(14)中的可选代理(24),机制解析过程(26)和机制库(28)来解析为一个合适的认证机制 (32)。
-
公开(公告)号:US20110110524A1
公开(公告)日:2011-05-12
申请号:US12839879
申请日:2010-07-20
CPC分类号: H04L63/0435 , G06Q20/401 , H04L9/083 , H04L9/0841 , H04L63/08
摘要: A secure communication system wherein message decryption may be performed while off-line, or optionally while on-line. A sender encrypts a message based on the message key and sends it to the recipient. An envelope containing a message key is created by encrypting the message key based on a verifier, where the verifier is based on a secret of the recipient. The recipient is provided the envelope, along with the message or separately, from the sender or from another party, contemporaneous with receipt of the message or otherwise. The recipient can then open the envelope while off-line, based on their secret, and retrieve the message key from the envelope to decrypt the message. In the event the recipient cannot open the envelope, optional on-line access permits obtaining assistance that may include obtaining an alternate envelope that the recipient can open.
摘要翻译: 一种安全通信系统,其中可以在离线或可选地在线时执行消息解密。 发件人根据消息密钥加密消息并将其发送给收件人。 通过基于验证者加密消息密钥来创建包含消息密钥的信封,其中验证者基于接收者的秘密。 收件人与邮件或单独地从发件人或另一方提供信封,同时收到信息或其他信息。 收件人可以根据其秘密离线打开信封,并从信封中取回消息密钥以解密该消息。 如果收件人无法打开信封,可选的在线访问允许获得帮助,其中可能包括获取收件人可以打开的替代信封。
-
公开(公告)号:US07594116B2
公开(公告)日:2009-09-22
申请号:US10908124
申请日:2005-04-28
CPC分类号: H04L9/0822 , H04L9/3013
摘要: A system for communicating a message securely between a sender and a receiver. The sender provides a key server with a string specifying the receiver. The key server obtains a message key and a particular envelope encryption key corresponding with a particular envelope decryption key, encrypts the message key with the envelope encryption key (creating the envelope), and provides the envelope to the sender-client. The sender-client encrypts the message with the message key and provides it and the envelope to the receiver. The receiver-client receives these and asks an authentication server for the envelope decryption key. The authentication server obtains the envelope decryption key and provides it to the receiver. The receiver then decrypts the envelope with the envelope decryption key, to get the message key, and decrypts the message.
摘要翻译: 一种用于在发送者和接收者之间安全地传送消息的系统。 发送方向密钥服务器提供一个指定接收方的字符串。 密钥服务器获得与特定信封解密密钥对应的消息密钥和特定信封加密密钥,用信封加密密钥加密消息密钥(创建信封),并向发送者 - 客户端提供信封。 发件人 - 客户端使用消息密钥加密消息,并将其提供给接收者。 接收者 - 客户端收到这些信息,并向认证服务器询问信封解密密钥。 认证服务器获取信封解密密钥并将其提供给接收者。 然后,接收方使用信封解密密钥解密信封,获得消息密钥,并对消息进行解密。
-
公开(公告)号:US07194547B2
公开(公告)日:2007-03-20
申请号:US11163596
申请日:2005-10-24
IPC分类号: G06F15/16
CPC分类号: H04L63/0281 , H04L63/0815 , H04L63/0884 , H04L63/205
摘要: A federated authentication service technology (10) for authenticating a subject (20) residing in a subject domain (12) on a network to a server application (38) residing in a server domain (18), wherein an authentication mechanism (32) residing in an authentication domain (16) affects the service provided by the server application (38). A client (22), which may be integrated non-human instances of the subject (20), authenticates the subject (20) and a protocol proxy (34) mediates with the authentication mechanism (32) to obtain a name assertion which the client can use to access the server application (38). When multiple authentication mechanisms (32) are available, an optional agent (24), mechanism resolution process (26) and mechanism repository (28), all residing in an agent domain (14), may be used to resolve to one suitable authentication mechanism (32).
摘要翻译: 用于将驻留在网络上的主题域(12)中的对象(20)认证到驻留在服务器域(18)中的服务器应用(38)的联合身份验证服务技术(10),其中驻留的身份验证机制(32) 在认证域(16)中,影响由服务器应用(38)提供的服务。 可以集成主体(20)的非人类实例的客户端(22)对主体(20)进行认证,并且协议代理(34)与认证机制(32)中介以获得客户端的名称声明 可以使用来访问服务器应用程序(38)。 当多个认证机制(32)可用时,可以使用所有驻留在代理域(14)中的可选代理(24),机制解析过程(26)和机制库(28)来解析为一个合适的认证机制 (32)。
-
-
-
-
-
-
-
搜索结果
8 条记录 (耗时 0.016 秒)
