-
公开(公告)号:US08136146B2
公开(公告)日:2012-03-13
申请号:US11619728
申请日:2007-01-04
IPC分类号: H04L29/06
CPC分类号: G06F21/6245 , G06F21/6236 , G06F2221/2101
摘要: A computer implemented method, data processing system, and computer program product for allowing limited access to a federation partner's audit logs in a secure, controlled manner, for the purposes of compliance demonstration. A request for audit data is received by a partner in the federated environment. The partner validates the request and requests a local report using local parameters against a local audit log store. The partner then builds a response based on the local report.
摘要翻译: 计算机实现的方法,数据处理系统和计算机程序产品,以便以合规性示范的目的,以安全,受控的方式有限地访问联盟合作伙伴的审核日志。 审核数据的请求由联合环境中的合作伙伴接收。 伙伴验证请求,并使用本地审计日志存储区的本地参数请求本地报告。 合作伙伴随后根据本地报告建立回应。
-
公开(公告)号:US07953978B2
公开(公告)日:2011-05-31
申请号:US11530006
申请日:2006-09-07
CPC分类号: H04L9/083 , H04L63/062 , H04L2209/76
摘要: Provided are techniques for key generation and retrieval. Unique identifiers of two or more key servers are stored, wherein each key server is capable of generating keys for encryption of data and of returning keys for decryption of data. A key request is received. A technique for selecting one of the key servers to which the key request is to be forwarded is identified. One of the key servers is selected using the identified technique. The key request is sent to the identified key server.
摘要翻译: 提供了用于密钥生成和检索的技术。 存储两个或更多个密钥服务器的唯一标识符,其中每个密钥服务器能够生成用于加密数据的密钥和用于数据解密的返回密钥。 收到一个关键请求。 识别用于选择要转发密钥请求的密钥服务器之一的技术。 使用识别的技术选择其中一个关键服务器。 密钥请求被发送到识别的密钥服务器。
-
3.发明授权Methods, systems and computer program products for enhanced security identity utilizing an SSL proxy 有权使用SSL代理增强安全身份的方法,系统和计算机程序产品公开(公告)号:US06732269B1
公开(公告)日:2004-05-04
申请号:US09411471
申请日:1999-10-01
IPC分类号: G06F124
CPC分类号: H04L63/166 , H04L2463/102
摘要: Methods, systems and computer program products are provided which communicate between client applications and a transaction server by establishing a persistent secure connection between the transaction server and a Secure Socket Layer (SSL) proxy server. A first session specific SSL connection, different from the persistent secure connection, is also established between a first client application and the SSL proxy server. Communications between the first client application and the SSL proxy server transmitted over the first session specific SSL connection are then forwarded with the client's identity preserved to the transaction server over the persistent secure connection. Furthermore, a second session specific SSL connection between a second client application and the SSL proxy server may also be established and the communications between the second client application and the SSL proxy server transmitted over the second session specific SSL connection are forwarded to the transaction server over the persistent secure connection. Preferably, the persistent secure connection is an SSL connection.
摘要翻译: 提供了方法,系统和计算机程序产品,其通过在事务服务器和安全套接层(SSL)代理服务器之间建立持久的安全连接,在客户端应用程序和事务服务器之间进行通信。 第一个客户端应用程序和SSL代理服务器之间通过第一个会话特定的SSL连接传输的通信也被转发 客户端的身份通过持久的安全连接保留到事务服务器。 此外,还可以建立第二客户端应用和SSL代理服务器之间的第二会话特定SSL连接,并且通过第二会话特定SSL连接发送的第二客户端应用和SSL代理服务器之间的通信被转发到交易服务器 持久的安全连接。 优选地,持久安全连接是SSL连接。
-
公开(公告)号:US07752463B2
公开(公告)日:2010-07-06
申请号:US11530013
申请日:2006-09-07
CPC分类号: G06F21/6209 , G06F21/73
摘要: Provided are techniques for filling a drive table. A key request including at least one of a drive serial number and a world wide node name is received from a data storage drive. It is determined whether the drive serial number or a world wide node name are in an entry in a drive table. In response to determining that the drive serial number or a world wide node name are not in an entry in a drive table, a new entry is automatically added in the drive table that includes the at least one of a drive serial number and a world wide node name.
摘要翻译: 提供了用于填充驱动器表的技术。 从数据存储驱动器接收到包括驱动器序列号和世界范围节点名称中的至少一个的关键请求。 确定驱动器序列号或全球节点名称是否在驱动器表中的条目中。 响应于确定驱动器序列号或全球节点名称不在驱动器表中的条目中,新的条目被自动添加到驱动器表中,该驱动器表包括驱动器序列号和世界范围中的至少一个 节点名称。
-
公开(公告)号:US20090028339A1
公开(公告)日:2009-01-29
申请号:US11782580
申请日:2007-07-24
CPC分类号: G06F21/80
摘要: A method, a system and a computer program product are provided to auto configure a drive list. When information is received for a drive, the key manager compares the information to drive information on a drive list. If the drive is not on the drive list the drive list is auto configured by adding the drive to the drive list. By adding the drive to the drive list the drive is able to obtain keys from the key manager to perform encryption and decryption.
摘要翻译: 提供了一种方法,系统和计算机程序产品来自动配置驱动器列表。 当接收到驱动器的信息时,密钥管理器将信息与驱动器列表中的信息进行比较。 如果驱动器不在驱动器列表上,则通过将驱动器添加到驱动器列表来自动配置驱动器列表。 通过将驱动器添加到驱动器列表中,驱动器能够从密钥管理器获取密钥以执行加密和解密。
-
公开(公告)号:US20080066193A1
公开(公告)日:2008-03-13
申请号:US11530013
申请日:2006-09-07
IPC分类号: G06F17/30
CPC分类号: G06F21/6209 , G06F21/73
摘要: Provided are techniques for filling a drive table. A key request including at least one of a drive serial number and a world wide node name is received from a data storage drive. It is determined whether the drive serial number or a world wide node name are in an entry in a drive table. In response to determining that the drive serial number or a world wide node name are not in an entry in a drive table, a new entry is automatically added in the drive table that includes the at least one of a drive serial number and a world wide node name.
摘要翻译: 提供了用于填充驱动器表的技术。 从数据存储驱动器接收到包括驱动器序列号和世界范围节点名称中的至少一个的关键请求。 确定驱动器序列号或全球节点名称是否在驱动器表中的条目中。 响应于确定驱动器序列号或全球节点名称不在驱动器表中的条目中,新的条目被自动添加到驱动器表中,该驱动器表包括驱动器序列号和世界范围中的至少一个 节点名称。
-
公开(公告)号:US20080065889A1
公开(公告)日:2008-03-13
申请号:US11530006
申请日:2006-09-07
IPC分类号: H04L9/00
CPC分类号: H04L9/083 , H04L63/062 , H04L2209/76
摘要: Provided are techniques for key generation and retrieval. Unique identifiers of two or more key servers are stored, wherein each key server is capable of generating keys for encryption of data and of returning keys for decryption of data. A key request is received. A technique for selecting one of the key servers to which the key request is to be forwarded is identified. One of the key servers is selected using the identified technique. The key request is sent to the identified key server.
摘要翻译: 提供了用于密钥生成和检索的技术。 存储两个或更多个密钥服务器的唯一标识符,其中每个密钥服务器能够生成用于加密数据的密钥和用于数据解密的返回密钥。 收到一个关键请求。 识别用于选择要转发密钥请求的密钥服务器之一的技术。 使用识别的技术选择其中一个关键服务器。 密钥请求被发送到识别的密钥服务器。
-
公开(公告)号:US07076795B2
公开(公告)日:2006-07-11
申请号:US10044186
申请日:2002-01-11
申请人: Timothy James Hahn
发明人: Timothy James Hahn
CPC分类号: G06F21/6218 , Y10S707/99931 , Y10S707/99939
摘要: A method and system for authorizing access to resources requested by a first user. To begin the process, the first user submits an ID of the first user as an individual requesting access to one of the resources. The first user is also a member of a group comprising a plurality of individual users. A first table indicates at least one group of a plurality of individual users. A second table indicates which resources are accessible by which of the users and which resources are accessible by which of the groups. An authorization program compares the first user to entries in the first table to determine which group or groups the first user is a member. Next, the authorization program compares the first user and the group or groups in which the first user is a member to entries in the second table to determine which resources the first user is authorized to access. Thus, the resources that the user ID is authorized to access are based not only on the user as an individual, but the group or groups in which the user is a member. The user need submit only one ID of the user as an individual to access both sets of resources.
-
9.发明授权Apparatus and method for managing multiple user identities on a networked computer system 有权用于在联网的计算机系统上管理多个用户身份的装置和方法公开(公告)号:US06981043B2
公开(公告)日:2005-12-27
申请号:US09818064
申请日:2001-03-27
IPC分类号: G06F13/00 , G06F15/16 , G06F15/173 , G06F21/00
CPC分类号: G06F21/41 , Y10S707/99945 , Y10S707/99948
摘要: An apparatus and method allow a system administrator to manage multiple user identities in multiple user registries in different processing environments. An identity mapping mechanism is provided that includes a directory service that includes entries that reference user identities in the multiple registries, and that reference identity mappings between those entries. The identity mapping mechanism includes an interface defined by a plurality of APIs that allow accessing and correlating the multiple user identities and the identity mappings. A programmer can generate an application or tool that uses the identity mapping mechanism by calling the APIs in the interface. In this manner, administration of user identities occurs with the user as the primary focus, rather than the platform. In addition, a common tool can be used to manage the user identities of different environments, making administration of user identities in a heterogenous network more efficient and cost-effective.
摘要翻译: 一种装置和方法允许系统管理员在不同处理环境中管理多个用户注册表中的多个用户身份。 提供了一种身份映射机制,其包括目录服务,其包括引用多个注册表中的用户身份的条目,以及引用这些条目之间的身份映射。 身份映射机制包括由允许访问和关联多个用户身份和身份映射的多个API定义的接口。 程序员可以通过调用接口中的API来生成使用身份映射机制的应用程序或工具。 以这种方式,用户身份的管理发生在用户作为主要焦点,而不是平台。 此外,可以使用通用工具来管理不同环境的用户身份,从而使异构网络中的用户身份管理更加高效和具有成本效益。
-
公开(公告)号:US20080168567A1
公开(公告)日:2008-07-10
申请号:US11619728
申请日:2007-01-04
IPC分类号: G06F21/00
CPC分类号: G06F21/6245 , G06F21/6236 , G06F2221/2101
摘要: A computer implemented method, data processing system, and computer program product for allowing limited access to a federation partner's audit logs in a secure, controlled manner, for the purposes of compliance demonstration. A request for audit data is received by a partner in the federated environment. The partner validates the request and requests a local report using local parameters against a local audit log store. The partner then builds a response based on the local report.
摘要翻译: 计算机实现的方法,数据处理系统和计算机程序产品,以便以合规性示范的目的,以安全,受控的方式有限地访问联盟合作伙伴的审核日志。 审核数据的请求由联合环境中的合作伙伴接收。 伙伴验证请求,并使用本地审核日志存储区的本地参数请求本地报告。 合作伙伴随后根据本地报告建立回应。
-
-
-
-
-
-
-
-
-
搜索结果
10 条记录 (耗时 0.02 秒)
