-
公开(公告)号:US08646047B2
公开(公告)日:2014-02-04
申请号:US12880699
申请日:2010-09-13
IPC分类号: H04L29/06
CPC分类号: H04L63/105 , G06F21/31 , H04L9/321 , H04L9/3242 , H04L63/0807 , H04L63/083
摘要: An approach is presented for authenticating access by a service. The server receives a request, from a service, for the server, wherein the request includes, at least in part, a service-specific secret or a derivation of the service-specific secret. Further, the server determines to generate a server-computed secret. Then, the server determines to authenticate the request based, at least in part, on a comparison of the service-specific secret or the derivation of the service-specific secret against the server-computed secret or a derivation of the server-computed secret.The service receives credentials from a credential manager. The secret is part of the credentials. The credential manager and the server share some secret pre-configured data like key tables. The generation of the service specific secrets is based on the shared data.
摘要翻译: 提出了一种用于认证服务访问的方法。 服务器从服务器接收针对服务器的服务的请求,其中请求至少部分地包括服务特定秘密或服务特定秘密的推导。 此外,服务器确定生成服务器计算的秘密。 然后,服务器至少部分地基于服务特定秘密或服务特定秘密的导出与服务器计算的秘密或服务器计算的秘密的推导进行比较来确认该请求。 服务从凭据管理器接收凭据。 秘密是证书的一部分。 凭证管理器和服务器共享一些秘密的预配置数据,如关键表。 服务特定秘密的生成是基于共享数据。
-
2.发明申请METHOD AND APPARATUS FOR PROVIDING COMMUNICATION WITH A SERVICE USING A RECIPIENT IDENTIFIER 审中-公开使用接收者识别器提供服务通信的方法和装置公开(公告)号:US20120066767A1
公开(公告)日:2012-03-15
申请号:US12880797
申请日:2010-09-13
IPC分类号: H04L9/00
CPC分类号: H04L9/3242 , G06Q20/3821 , G06Q20/40 , G06Q30/016 , H04L9/0866 , H04L63/0414 , H04L63/0428 , H04L63/123 , H04W4/60 , H04W12/06
摘要: An approach is presented for providing communication with a service using a recipient identifier. The data communication platform receives a request to generate a recipient identifier for indicating data exchanged between a service and an application on a device. Further, the data communication platform determines user identifier, one or more device identifiers associated with the device, one or more application identifiers associated with the application, or a combination thereof. Then, the data communication platform determines to generate the recipient identifier by encoding, at least in part, the user identifier, the one or more device identifiers, the one or more application identifiers, or a combination thereof in the recipient identifier. In one embodiment, the recipient identifier may be encrypted. The user identifier, the one or more device identifiers, the one or more application identifiers, or a combination thereof are decodable directly from the recipient identifier.
摘要翻译: 提出了一种用于使用接收者标识符提供与服务的通信的方法。 数据通信平台接收生成用于指示在服务和设备上的应用之间交换的数据的接收者标识符的请求。 此外,数据通信平台确定用户标识符,与设备相关联的一个或多个设备标识符,与应用相关联的一个或多个应用标识符,或其组合。 然后,数据通信平台通过至少部分地在接收者标识符中对用户标识符,一个或多个设备标识符,一个或多个应用标识符或其组合进行编码来确定生成接收者标识符。 在一个实施例中,可以对接收者标识符进行加密。 用户标识符,一个或多个设备标识符,一个或多个应用标识符或其组合可以从接收者标识符直接解码。
-
公开(公告)号:US20100325260A1
公开(公告)日:2010-12-23
申请号:US12487184
申请日:2009-06-18
申请人: Tero Mikael HALLA-AHO , Petri Tapani Liimatta , Matti Juhani Oikarinen , Juha Petri Hartikainen , Kristian Andreas Luoma , Markku Kalevi Vimpari
发明人: Tero Mikael HALLA-AHO , Petri Tapani Liimatta , Matti Juhani Oikarinen , Juha Petri Hartikainen , Kristian Andreas Luoma , Markku Kalevi Vimpari
IPC分类号: H04L9/32 , G06F21/00 , G06F15/16 , G06F15/173
CPC分类号: H04W4/02 , G06F17/30516 , H04L51/14 , H04L61/303 , H04L67/141 , H04L67/18
摘要: An approach is provided for optimizing message routing without repeatedly resolving a home location. A login request from a user equipment associated with a resource identifier is received. The user equipment is configured to operate within a network including a plurality of clusters. The resource identifier of the user equipment is modified to include home cluster information indicating a corresponding one of the clusters serving the user equipment.
摘要翻译: 提供了一种用于优化消息路由而不重复解析归属位置的方法。 接收与资源标识符相关联的用户设备的登录请求。 用户设备被配置为在包括多个集群的网络内操作。 修改用户设备的资源标识符,以包括指示为用户设备服务的对应的一个集群的归属集群信息。
-
4.发明授权Method and apparatus for providing service provider-controlled communication security 有权用于提供服务提供商控制的通信安全的方法和装置公开(公告)号:US09450752B2
公开(公告)日:2016-09-20
申请号:US13158148
申请日:2011-06-10
CPC分类号: H04L9/088 , H04L9/0872 , H04L9/14 , H04L63/0428 , H04L63/107 , H04L63/205 , H04L63/30 , H04L63/304
摘要: An approach is provided for service provider controlled communication security. A security platform receives a connection request from a client device. The security platform determines context information associated with the device, access network, a user of the device, or a combination thereof, and then processes and/or facilitates a processing of the context information to determine one or more encryption ciphers to offer for the session. Next, the security platform causes, at least in part, establishment of the connection request using, at least in part, the one of the offered encryption ciphers.
摘要翻译: 为服务提供商控制的通信安全性提供了一种方法。 安全平台从客户端设备接收连接请求。 安全平台确定与设备,接入网络,设备的用户或其组合相关联的上下文信息,然后处理和/或促进上下文信息的处理,以确定为会话提供的一个或多个加密密码 。 接下来,安全平台至少部分地使至少部分地使用所提供的加密密码之一建立连接请求。
-
公开(公告)号:US20100325306A1
公开(公告)日:2010-12-23
申请号:US12489985
申请日:2009-06-23
IPC分类号: G06F15/16
CPC分类号: H04L61/2553 , H04L29/12471 , H04L43/10 , H04L67/145 , H04L69/28
摘要: An approach is provided for determining an optimal keep-alive time period. A request is received from one of a plurality of user equipments for a keep-alive timer value. A specific network information related to a network serving the one user equipment is determined. A keep-alive timer value is determined based on the network information and advantageously using statistical analysis.
摘要翻译: 提供了一种用于确定最佳保持活动时间段的方法。 从多个用户设备之一接收到用于保持活动定时器值的请求。 确定与为一个用户设备服务的网络有关的特定网络信息。 基于网络信息确定保持活动定时器值,并且有利地使用统计分析。
-
6.发明申请METHOD AND APPARATUS FOR PROVIDING SERVICE PROVIDER-CONTROLLED COMMUNICATION SECURITY 有权提供服务提供者控制通信安全的方法和装置公开(公告)号:US20120275598A1
公开(公告)日:2012-11-01
申请号:US13158148
申请日:2011-06-10
IPC分类号: H04L9/00
CPC分类号: H04L9/088 , H04L9/0872 , H04L9/14 , H04L63/0428 , H04L63/107 , H04L63/205 , H04L63/30 , H04L63/304
摘要: An approach is provided for service provider controlled communication security. A security platform receives a connection request from a client device. The security platform determines context information associated with the device, access network, a user of the device, or a combination thereof, and then processes and/or facilitates a processing of the context information to determine one or more encryption ciphers to offer for the session. Next, the security platform causes, at least in part, establishment of the connection request using, at least in part, the one of the offered encryption ciphers.
摘要翻译: 为服务提供商控制的通信安全性提供了一种方法。 安全平台从客户端设备接收连接请求。 安全平台确定与设备,接入网络,设备的用户或其组合相关联的上下文信息,然后处理和/或促进上下文信息的处理,以确定为会话提供的一个或多个加密密码 。 接下来,安全平台至少部分地使至少部分地使用所提供的加密密码之一建立连接请求。
-
公开(公告)号:US20120066748A1
公开(公告)日:2012-03-15
申请号:US12880699
申请日:2010-09-13
IPC分类号: H04L9/00
CPC分类号: H04L63/105 , G06F21/31 , H04L9/321 , H04L9/3242 , H04L63/0807 , H04L63/083
摘要: An approach is presented for authenticating access by a service. The server receives a request, from a service, for the server, wherein the request includes, at least in part, a service-specific secret or a derivation of the service-specific secret. Further, the server determines to generate a server-computed secret. Then, the server determines to authenticate the request based, at least in part, on a comparison of the service-specific secret or the derivation of the service-specific secret against the server-computed secret or a derivation of the server-computed secret.The service receives credentials from a credential manager. The secret is part of the credentials. The credential manager and the server share some secret pre-configured data like key tables. The generation of the service specific secrets is based on the shared data.
摘要翻译: 提出了一种用于认证服务访问的方法。 服务器从服务器接收针对服务器的服务的请求,其中请求至少部分地包括服务特定秘密或服务特定秘密的推导。 此外,服务器确定生成服务器计算的秘密。 然后,服务器至少部分地基于服务特定秘密或服务特定秘密的导出与服务器计算的秘密或服务器计算的秘密的推导进行比较来确认该请求。 服务从凭据管理器接收凭据。 秘密是证书的一部分。 凭证管理器和服务器共享一些秘密的预配置数据,如关键表。 服务特定秘密的生成是基于共享数据。
-
8.发明申请METHOD AND APPARATUS FOR PROVIDING A SCALABLE SERVICE PLATFORM USING A NETWORK CACHE 有权使用网络缓存提供可扩展服务平台的方法和装置公开(公告)号:US20100332834A1
公开(公告)日:2010-12-30
申请号:US12495071
申请日:2009-06-30
CPC分类号: H04L9/08 , H04L9/0822 , H04L2209/60 , H04L2209/80
摘要: An approach is provided for building a scalable service platform by initiating transmission of encrypted data from a public network cache. An access control server platform determines a first authorization key for a user and a second authorization key for a resource, and then encrypts the resource with the second authorization key, and encrypts the second authorization key with the first authorization key. The access control server platform initiates distribution of the encrypted second authorization key with the encrypted resource over a network. The access control server platform further initiates caching the encrypted second authorization key with the encrypted resource that meets a predefined threshold value (e.g., a data size, an access frequency, a modification frequency, or an auditing requirement) in a cache in the network, and initiates transmission of the cached and encrypted second authorization key with the cached and encrypted resource from the cache to at least one authorized entity.
摘要翻译: 提供了一种通过从公共网络缓存发起加密数据来构建可扩展服务平台的方法。 访问控制服务器平台确定用户的第一授权密钥和用于资源的第二授权密钥,然后用第二授权密钥对资源进行加密,并用第一授权密钥加密第二授权密钥。 访问控制服务器平台通过网络启动加密的第二授权密钥与加密的资源的分发。 访问控制服务器平台进一步发起加密的第二授权密钥与加密资源缓存,该加密的资源满足网络中的高速缓存中的预定阈值(例如,数据大小,访问频率,修改频率或审核要求) 并且启动具有缓存和加密的资源的缓存和加密的第二授权密钥从高速缓存传输到至少一个授权实体。
-
9.发明申请METHOD AND APPARATUS FOR MESSAGE ROUTING BETWEEN CLUSTERS USING PROXY CHANNELS 审中-公开使用代理通道的群集之间的消息路由的方法和设备公开(公告)号:US20100322236A1
公开(公告)日:2010-12-23
申请号:US12487192
申请日:2009-06-18
申请人: Markku Kalevi Vimpari , Petri Tapan Liimatta , Matti Juhani Oikarinen , Juha Petri Hartikainen , Tero Mikael Halla-Aho , Kristain Andreas Luoma
发明人: Markku Kalevi Vimpari , Petri Tapan Liimatta , Matti Juhani Oikarinen , Juha Petri Hartikainen , Tero Mikael Halla-Aho , Kristain Andreas Luoma
IPC分类号: H04L12/56
CPC分类号: H04L12/1886 , G06F16/174 , H04L12/189 , H04L29/12471 , H04L51/14
摘要: An approach is provided for message routing among clusters via a proxy channel. A subscription request is received from a node within a local cluster. The subscription request is for a service. It is determined that the service is provided by a remote cluster. A transmission of the subscription request to a service platform of the remote cluster is initiated. The service is provided to the node via a proxy channel.
摘要翻译: 提供了一种通过代理通道在群集之间进行消息路由的方法。 从本地集群中的节点接收订阅请求。 订阅请求是用于服务的。 确定该服务由远程集群提供。 启动向远程集群的服务平台发送订阅请求。 服务通过代理通道提供给节点。
-
公开(公告)号:US08667122B2
公开(公告)日:2014-03-04
申请号:US12487184
申请日:2009-06-18
申请人: Tero Mikael Halla-Aho , Petri Tapani Liimatta , Matti Juhani Oikarinen , Juha Petri Hartikainen , Kristian Andreas Luoma , Markku Kalevi Vimpari
发明人: Tero Mikael Halla-Aho , Petri Tapani Liimatta , Matti Juhani Oikarinen , Juha Petri Hartikainen , Kristian Andreas Luoma , Markku Kalevi Vimpari
IPC分类号: G06F15/173
CPC分类号: H04W4/02 , G06F17/30516 , H04L51/14 , H04L61/303 , H04L67/141 , H04L67/18
摘要: An approach is provided for optimizing message routing without repeatedly resolving a home location. A login request from a user equipment associated with a resource identifier is received. The user equipment is configured to operate within a network including a plurality of clusters. The resource identifier of the user equipment is modified to include home cluster information indicating a corresponding one of the clusters serving the user equipment.
摘要翻译: 提供了一种用于优化消息路由而不重复解析归属位置的方法。 接收与资源标识符相关联的用户设备的登录请求。 用户设备被配置为在包括多个集群的网络内操作。 修改用户设备的资源标识符,以包括指示为用户设备服务的对应的一个集群的归属集群信息。
-
-
-
-
-
-
-
-
-
搜索结果
12 条记录 (耗时 0.039 秒)
