利索-全球专利检索

  1. 登录
  2. 注册

搜索结果

59 条记录 (耗时 0.021 秒)

    Identifying guests in web meetings
    2.
    发明授权
    Identifying guests in web meetings 失效
    在网络会议中识别客人

    公开(公告)号:US08555339B2

    公开(公告)日:2013-10-08

    申请号:US13345206

    申请日:2012-01-06

    申请人: Mark Alexander McGloin Olgierd Stanislaw Pieczul Mary Ellen Zurko

    发明人: Mark Alexander McGloin Olgierd Stanislaw Pieczul Mary Ellen Zurko

    IPC分类号: H04L9/32

    CPC分类号: G06Q10/10 H04L12/1818 H04L12/1822

    摘要: A technique that identifies registered or guest users in web meetings of the type wherein users must follow a supplied URL to attend the meeting. Registered and guest users are provided different forms of the meeting invite URL. Each registered user receives a common web meeting link (a URL) that he must follow to join the meeting. This link forces the registered user to authenticate to the service when used. A guest user invitee receives a unique URL for the meeting that is generated with a nonce value associated with the guess user's contact information. The nonce value does not expose the contact information. To join the meeting, each registered user must follow the common web meeting link and authenticate to the service. True identities of the web meeting participants are displayed.

    摘要翻译: 一种在网络会议中识别注册或访客用户的技术,其中用户必须遵循提供的URL来参加会议。 注册和访客用户提供不同形式的会议邀请URL。 每个注册用户都收到他必须遵循的公共网络会议链接(URL)才能加入会议。 此链接强制注册用户在使用时对服务进行身份验证。 访客用户被邀请者收到用与猜测用户的联系人信息相关联的随机数值生成的会议的唯一URL。 随机数值不会公开联系人信息。 要加入会议,每个注册用户都必须遵循常见的Web会议链接并对服务进行身份验证。 显示网络会议参与者的真实身份。

    Business pre-permissioning in delegated third party authorization
    3.
    发明授权
    Business pre-permissioning in delegated third party authorization 有权
    业务预授权授权第三方授权

    公开(公告)号:US08544068B2

    公开(公告)日:2013-09-24

    申请号:US12943218

    申请日:2010-11-10

    申请人: Robert Leslie Yates Prashant S. Kulkarni Mary Ellen Zurko

    发明人: Robert Leslie Yates Prashant S. Kulkarni Mary Ellen Zurko

    IPC分类号: G06F7/04

    CPC分类号: H04L63/101 H04L9/3213

    摘要: A method to manage access to end user-protected resources hosted in a shared pool of configurable computing resources, such as a cloud computing environment, begins by registering a particular application or service into the environment. The application or service is one that is being permitted to access resources on behalf of end users via a delegated authorization protocol, such as OAuth. For at least one end user associated with the organization, a permission is set, preferably by an organization entity, such as an organization administrator. The permission determines whether the application or service is permitted to access one or more resources associated with the end user. Then, in response to a request by the third party application to access a resource, where the request is received via the delegated authorization protocol, the permission is then used to determine whether the third party application is permitted to access the resource.

    摘要翻译: 管理对可配置计算资源(例如云计算环境)的共享池中托管的最终用户保护资源的访问方法,首先将特定应用或服务注册到环境中。 应用程序或服务是允许通过授权协议(如OAuth)代表最终用户访问资源的应用程序或服务。 对于与组织相关联的至少一个最终用户,优选地由组织实体(诸如组织管理员)设置许可。 权限确定应用程序或服务是允许访问与最终用户相关联的一个或多个资源。 然后,响应于第三方应用访问通过委托授权协议接收到请求的资源的请求,然后使用该许可来确定是否允许第三方应用访问该资源。

    Securing asynchronous client server transactions
    4.
    发明授权
    Securing asynchronous client server transactions 有权
    保护异步客户端服务器事务

    公开(公告)号:US08474019B2

    公开(公告)日:2013-06-25

    申请号:US13413641

    申请日:2012-03-06

    申请人: Steven A Bade Harold Moss Mary Ellen Zurko

    发明人: Steven A Bade Harold Moss Mary Ellen Zurko

    IPC分类号: G06F21/00

    CPC分类号: H04L63/12 G06F21/10 G06F21/30 H04L9/32 H04L63/10 H04L63/101 H04L63/1466 H04L67/10 H04L67/42 H04W12/06

    摘要: A method for securing asynchronous client server transactions is provided in the illustrative embodiments. A request including an application identifier and a version of a second application is received at a first application. A service identifier is generated if a session with the second application is valid. A registry is generated at the first application. A catalog is generated based on the registry and the service identifier and the catalog are sent to the second application. A sub-request including the service identifier is received as part of an asynchronous client server transaction. Validity of the sub-request is determined by determining whether the service identifier has expired, whether the sub-request requests a service that is permissible according to the catalog, whether the service identifier is used in conjunction with the second application, or a combination thereof. If the sub-request is valid, the service is provided.

    摘要翻译: 在说明性实施例中提供了用于保护异步客户端服务器事务的方法。 在第一应用中接收到包括应用标识符和第二应用的版本的请求。 如果与第二应用程序的会话有效,则生成服务标识符。 在第一个应用程序生成注册表。 基于注册表和服务标识符生成目录,并将目录发送到第二个应用程序。 作为异步客户端服务器事务的一部分接收到包含服务标识符的子请求。 通过确定服务标识符是否过期,子请求是否请求根据目录允许的服务,确定服务标识符是否与第二应用一起使用或其组合来确定子请求的有效性 。 如果子请求有效,则提供服务。

    TECHNIQUES FOR ADDRESSING GEOGRAPHICAL LOCATION ISSUES IN COMPUTING ENVIRONMENTS
    5.
    发明申请
    TECHNIQUES FOR ADDRESSING GEOGRAPHICAL LOCATION ISSUES IN COMPUTING ENVIRONMENTS 有权
    解决计算环境中的地理位置问题的技术

    公开(公告)号:US20120179817A1

    公开(公告)日:2012-07-12

    申请号:US12985529

    申请日:2011-01-06

    申请人: STEVEN A. BADE HAROLD MOSS, III MARY ELLEN ZURKO

    发明人: STEVEN A. BADE HAROLD MOSS, III MARY ELLEN ZURKO

    IPC分类号: G06F15/173

    CPC分类号: H04L67/38 G06F8/61 G06F9/45558 H04L67/18

    摘要: A technique for addressing geographical location issues in a computing environment includes receiving, at a data processing system, location information indicating a permissible geographical location in which a virtual machine image for a consumer may be deployed. A request for an exception to deploy the virtual machine image outside of the permissible geographical location is issued, from the data processing system. An exception grant or an exception denial is received, at the data processing system, from the consumer in response to the request. The virtual machine image is deployed, using the data processing system, to one or more servers in the computing environment that are outside of the permissible geographical location in response to receipt of the exception grant. The virtual machine image is deployed, using the data processing system, to one or more servers in the computing environment that are within the permissible geographical location in response to receipt of the exception denial.

    摘要翻译: 用于在计算环境中解决地理位置问题的技术包括在数据处理系统处接收指示可以部署消费者的虚拟机映像的允许地理位置的位置信息。 从数据处理系统发出请求异常以在允许的地理位置之外部署虚拟机映像。 在数据处理系统中,从消费者接收到响应请求的异常授权或异常拒绝。 响应于接收到异常授权,虚拟机映像使用数据处理系统部署在计算环境中的一个或多个服务器之外,该服务器在允许的地理位置之外。 响应于接收到异常拒绝,虚拟机映像使用数据处理系统部署在计算环境中的可允许的地理位置内的一个或多个服务器。

    Method and system for authenticating a rich client to a web or cloud application
    6.
    发明申请
    Method and system for authenticating a rich client to a web or cloud application 有权
    将富客户端认证到Web或云应用程序的方法和系统

    公开(公告)号:US20120151568A1

    公开(公告)日:2012-06-14

    申请号:US12966165

    申请日:2010-12-13

    申请人: Olgierd Stanislaw Pieczul Mark Alexander McGloin Mary Ellen Zurko David Scott Kern Brent Allan Hepburn

    发明人: Olgierd Stanislaw Pieczul Mark Alexander McGloin Mary Ellen Zurko David Scott Kern Brent Allan Hepburn

    IPC分类号: G06F15/16 H04L9/00

    CPC分类号: H04L63/0815 H04L63/0884 H04L67/02

    摘要: A rich client performs single sign-on (SSO) to access a web- or cloud-based application. According to the described SSO approach, the rich client delegates to its native application server the task of obtaining a credential, such as a SAML assertion. The native server, acting on behalf of the user, obtains an assertion from a federated identity provider (IdP) that is then returned to the rich client. The rich client provides the assertion to a cloud-based proxy, which presents the assertion to an identity manager to attempt to prove that the user is entitled to access the web- or cloud-based application using the rich client. If the assertion can be verified, it is exchanged with a signed token, such as a token designed to protect against cross-site request forgery (CSRF). The rich client then accesses the web- or cloud-based application making a REST call that includes the signed token. The application, which recognizes the request as trustworthy, responds to the call with the requested data.

    摘要翻译: 丰富的客户端执行单点登录(SSO)以访问基于Web或云的应用程序。 根据描述的SSO方法,富客户端将其本机应用服务器委托给获取凭证的任务,如SAML断言。 代表用户行事的本地服务器从联合身份提供商(IdP)获取断言,然后将其返回给富客户端。 富客户端向基于云的代理提供断言,该代理向身份管理器提供断言,以尝试证明用户有权使用富客户端访问基于Web或云的应用程序。 如果断言可以被验证,它将与一个有符号的令牌进行交换,例如旨在防止跨站点请求伪造(CSRF)的令牌。 然后,富客户端访问基于Web或基于云的应用程序,进行包括签名令牌的REST调用。 将请求识别为可信赖的应用程序使用请求的数据响应呼叫。

    SECURE EXTRANET ACCESS TO COLLABORATIVE ACTIVITIES IN A COLLABORATIVE COMPUTING ENVIRONMENT
    8.
    发明申请
    SECURE EXTRANET ACCESS TO COLLABORATIVE ACTIVITIES IN A COLLABORATIVE COMPUTING ENVIRONMENT 审中-公开
    协调计算环境中的协调活动安全获取

    公开(公告)号:US20080148368A1

    公开(公告)日:2008-06-19

    申请号:US11610787

    申请日:2006-12-14

    申请人: Mary Ellen Zurko David E. Wilson

    发明人: Mary Ellen Zurko David E. Wilson

    IPC分类号: H04L9/32

    CPC分类号: H04L63/0442 H04L63/02

    摘要: Embodiments of the present invention address deficiencies of the art in respect to securing extranet access to a collaborative environment and provide a method, system and computer program product for secure extranet access to collaborative activities in a collaborative environment. In an embodiment of the invention, a method for secure extranet access to collaborative activities in a collaborative environment can be provided. The method can include adding an extranet collaborator to a collaborative space within a collaborative environment and establishing encryption credentials for the extranet collaborator. Thereafter, in response to detecting a change to the collaborative space, the change can be encrypted with the credentials and the change can be messaged to the extranet collaborator. Notably, a contribution to the activity can be received from the extranet collaborator. Once received, the contribution can be decrypted with the credentials and the contribution can be posted to the activity.

    摘要翻译: 本发明的实施例解决了本领域在确保对协作环境的外部网访问方面的缺陷,并且提供了用于在协作环境中安全的外部网访问协作活动的方法,系统和计算机程序产品。 在本发明的一个实施例中,可以提供一种用于在协作环境中对协作活动进行安全的外部网访问的方法。 该方法可以包括将外部网络协作者添加到协作环境中的协作空间并为外部网络协作者建立加密凭据。 此后,响应于检测到协作空间的改变,可以用证书加密改变,并且可以将改变消息到外联网协作者。 值得注意的是,可以从外部网络协作者处获得对活动的贡献。 一旦收到,贡献可以用凭证解密,并且贡献可以发布到活动。