公开(公告)号：US06895510B1

公开(公告)日：2005-05-17

申请号：US08976778

申请日：1997-11-24

申请人： Messaoud Benantar ,  Virgil Albaugh ,  Liane Elizabeth Haybnes Acker

发明人： Messaoud Benantar ,  Virgil Albaugh ,  Liane Elizabeth Haybnes Acker

IPC分类号： G06F13/00 ,  G06F21/00 ,  H04L29/06

CPC分类号： H04L63/0869 ,  G06F21/31

摘要： Mutual authentication between a client and server over the Internet utilizing the IOP protocol in its current state is enabled by first engaging in a “dummy” request when a client initiates a request to a new target server for the first time. This provides the means for creating a two way authentication mechanism. Rather than creating an object reference for the dummy request, the object reference at hand in the client, which the client is about to utilize for a request, is reused by extracting a proxy object from the request. The request is intercepted in the client and the proxy object passed to the interception method. The client next issues a two-way remote method already defined for the proxy object, such as the “non_existent( )” method defined on the CORBA object. The client then computes a security token, and sends the dummy request to the server. The server intercepts the dummy request, validates the security token received in the dummy request, and acquires a new authentication token to be returned to the client. Upon interception of the outgoing message, the new security token is marshalled in the security service context and sent to the client on the response message. The client intercepts the reply message and demarshals the security service context to recover the security token and complete mutual authentication.

摘要翻译： 当客户端首次在新的目标服务器发起请求时首先参与“虚拟”请求，可以实现通过互联网在客户端和服务器之间使用当前状态的IOP协议进行的相互认证。 这提供了创建双向认证机制的方法。 不是为虚拟请求创建对象引用，客户端即将要用于请求的客户端的对象引用，通过从请求中提取代理对象来重用。 请求在客户端被拦截，代理对象传递给拦截方法。 客户端下一个将为代理对象定义的双向远程方法，例如在CORBA对象上定义的“non_existent（）”方法。 然后，客户端计算安全令牌，并将虚拟请求发送到服务器。 服务器拦截虚拟请求，验证虚拟请求中接收到的安全令牌，并获取一个新的认证令牌以返回给客户端。 在拦截传出的消息时，新的安全令牌被安排在安全服务上下文中，并在响应消息上发送给客户机。 客户端拦截回复消息，并对安全服务上下文进行解密以恢复安全令牌并完成相互认证。

公开(公告)号：US20080071824A1

公开(公告)日：2008-03-20

申请号：US11983923

申请日：2007-11-13

申请人： Virgil Albaugh ,  Messaoud Benantar ,  Philip Chang ,  Hari Madduri

发明人： Virgil Albaugh ,  Messaoud Benantar ,  Philip Chang ,  Hari Madduri

IPC分类号： G06F17/30

CPC分类号： G06Q30/0283 ,  G06F16/10 ,  Y10S707/954 ,  Y10S707/99937 ,  Y10S707/99954

摘要： A method and implementing computer system are provided in which a unique primary key is generated to identify an original message which is received for processing. The record for the original message is stored at the primary key. As the message is propagated to the services that are to be performed on the original message, the primary key is also passed to the service. Derivative messages which are produced as a result of the services applied to the original message are identified with the primary key code along with additional derivative key codes related to services applied to the original message. The resulting derivative message storing and tracking process provides a means by which derivative messages are readily identified and associated with an original message as well as the services performed upon the original message in generating the derivative message.

摘要翻译： 提供了一种方法和实现的计算机系统，其中生成唯一主键以识别被接收以用于处理的原始消息。 原始邮件的记录存储在主键上。 当消息传播到要在原始消息上执行的服务时，主键也被传递到服务。 作为应用于原始消息的服务的结果产生的衍生消息用主键代码以及与应用于原始消息的服务相关的附加导数键代码来标识。 所得到的派生消息存储和跟踪处理提供了一种方式，通过该方式，派生消息容易地被识别并与原始消息相关联，以及在生成导数消息时在原始消息上执行的服务。

公开(公告)号：US20050114158A1

公开(公告)日：2005-05-26

申请号：US10721432

申请日：2003-11-25

申请人： Virgil Albaugh ,  Grisselle Keller ,  Hari Madduri ,  Mark Waldroff

发明人： Virgil Albaugh ,  Grisselle Keller ,  Hari Madduri ,  Mark Waldroff

IPC分类号： G06Q30/00 ,  H04L12/14 ,  G06F17/60

CPC分类号： G06Q40/00 ,  G06Q10/06316 ,  G06Q30/04 ,  H04L12/14 ,  H04L12/1403 ,  H04L12/1432 ,  H04M15/41 ,  H04M15/44 ,  H04M15/52 ,  H04M15/53 ,  H04M15/70 ,  H04M15/73 ,  H04M2215/0104 ,  H04M2215/0164 ,  H04M2215/0172 ,  H04M2215/2026 ,  H04M2215/22 ,  H04M2215/32 ,  H04M2215/70 ,  H04M2215/7072 ,  H04W4/24

摘要： A method for metering on-demand service (ODS) resource consumption by a user comprising a web services interface, a processing engine, and configuration data. A data gathering agent in the ODS stores the usage data in records, combines the records into packets, and transmits the packets to the web services interface. The web services interface passes the packets onto the processing engine, which stores the records in the packet into a database. The generalized format of the record is critical because it allows the metrics to be stored in the record table with the usage data. When a record contains an instruction to close a UOW, the processing engine applies the configuration data comprising composition rules and record selection rules to the database. The record selection rules select the desired records from the database. The composition rules aggregate, normalize, and compose the selected records to produce a metric.

摘要翻译： 一种用于由包括web服务接口，处理引擎和配置数据的用户计量按需服务（ODS）资源消耗的方法。 ODS中的数据采集代理将使用数据存储在记录中，将记录组合​​成包，并将数据包发送到Web服务接口。 Web服务接口将数据包传递到处理引擎，处理引擎将数据包中的记录存储到数据库中。 记录的通用格式至关重要，因为它允许使用数据将度量存储在记录表中。 当记录包含关闭UOW的指令时，处理引擎将包含组合规则和记录选择规则的配置数据应用于数据库。 记录选择规则从数据库中选择所需的记录。 组合规则聚合，归一化和组合所选记录以生成度量。