公开(公告)号：US06205466B1

公开(公告)日：2001-03-20

申请号：US09118248

申请日：1998-07-17

申请人： Alan H. Karp ,  Rajiv Gupta ,  Arindam Banerji ,  Ernest Mak ,  Sandeep Kumar ,  Guillermo Rozas ,  Chia-Chiang Chao ,  Venkatesh Krishnan ,  Alexandre Bronstein

发明人： Alan H. Karp ,  Rajiv Gupta ,  Arindam Banerji ,  Ernest Mak ,  Sandeep Kumar ,  Guillermo Rozas ,  Chia-Chiang Chao ,  Venkatesh Krishnan ,  Alexandre Bronstein

IPC分类号： G06F900

CPC分类号： G06F9/468 ,  G06F21/6218 ,  G06F21/6236 ,  G06F2221/2141 ,  G06Q10/10 ,  Y10S707/99931 ,  Y10S707/99932

摘要： A software infrastructure for providing an open digital services marketplace including a naming manager that enables a requesting task to refer to a desired resource using a name which is local to the requesting task and a router that forwards the request to an appropriate handler for the desired resource and that enables at least one additional task to be invoked in response to the request. The infrastructure includes a permission manager that compares a set of access rights of the requesting task to the desired resource to a set of permissions associated with the desired resource such that the access rights are kept separately from the reference to the desired resource. The desired resource, the requesting task, the additional task, and a set of additional components used to handle the request are each modeled as a resource defined by a corresponding set of meta-data which includes a set of attributes and a reference to a grammar for interpreting the attributes.

摘要翻译： 一种用于提供开放数字服务市场的软件基础设施，包括命名管理器，其允许请求任务使用请求任务本地的名称引用期望的资源，以及将请求转发到所需资源的适当处理程序的路由器 并且这使得能够响应于该请求调用至少一个附加任务。 基础设施包括权限管理器，其将请求任务的一组访问权限与期望的资源进行比较，以与所需资源相关联的一组权限进行比较，使得访问权限与对期望的资源的引用分开地保持。 所需资源，请求任务，附加任务和用于处理请求的一组附加组件各自被建模为由对应的一组元数据定义的资源，该元数据包括一组属性和对语法的引用 用于解释属性。

公开(公告)号：US07107591B1

公开(公告)日：2006-09-12

申请号：US09186450

申请日：1998-11-05

申请人： Alan H. Karp ,  Rajiv Gupta ,  Arindam Banerji ,  Chia-Chiang Chao ,  Ernest Mak ,  Sandeep Kumar

发明人： Alan H. Karp ,  Rajiv Gupta ,  Arindam Banerji ,  Chia-Chiang Chao ,  Ernest Mak ,  Sandeep Kumar

IPC分类号： G06F9/00

CPC分类号： G06F9/50 ,  G06F9/465 ,  G06F2209/463

摘要： A software system with task-specific flexible bindings that enhance the ability to dynamically add and remove resources from availability to tasks and that eliminates the need for coordination of globally unique names. The software system includes a task-specific name space which corresponds to a task executing in the software system. The task-specific name space holds flexible bindings each of which associates a task-specific name used by the task to refer to a desired resource or a set of one or more resources of the computer system and to information that describes the desired resource. The software system includes a resource mediator that obtains a message from the task. The resource mediator keeps information for each resource that identifies a resource handler task for the desired resource by resolving the task-specific name using the flexible binding.

摘要翻译： 具有特定任务的灵活绑定的软件系统，可增强动态添加和删除资源从可用性到任务的能力，并消除了对全局唯一名称协调的需求。 软件系统包括对应于在软件系统中执行的任务的任务专用名称空间。 任务特定的名称空间保存灵活的绑定，每个绑定都将任务所使用的特定于任务的名称与指定计算机系统的所需资源或一组一个或多个资源相关联，以及描述所需资源的信息。 软件系统包括从任务获取消息的资源调解器。 资源调解器通过使用灵活的绑定解析特定于任务的名称来保存为所需资源标识资源处理程序任务的每个资源的信息。

公开(公告)号：US06493712B1

公开(公告)日：2002-12-10

申请号：US09376149

申请日：1999-08-17

申请人： Alan H. Karp ,  Rajiv Gupta ,  Arindam Banerji ,  Chia-Chiang Chao ,  Ernest Mak ,  Sandeep Kumar

发明人： Alan H. Karp ,  Rajiv Gupta ,  Arindam Banerji ,  Chia-Chiang Chao ,  Ernest Mak ,  Sandeep Kumar

IPC分类号： G06F1730

CPC分类号： H04L29/12113 ,  H04L29/06 ,  H04L61/1541 ,  H04L67/16 ,  H04L69/329 ,  Y10S707/99936 ,  Y10S707/99943

摘要： A software system with self-describing attribute vocabularies that enhance the capability of service providers to advertise their resources and that facilitate the addition of new types of attributes and resources to the system. Each self-describing attribute vocabulary is characterized by a corresponding set of attribute properties and a corresponding set of:matching rules that are adapted to the corresponding attribute properties. The software system includes a matching engine that enables a service provider of a resource to describe the resource to the software system in terms of any one or more of the self-describing attribute vocabularies.

摘要翻译： 具有自描述属性词汇的软件系统，其增强服务提供商宣传其资源的能力，并且促进向系统添加新类型的属性和资源。 每个自描述属性词汇表都具有相应的一组属性属性和相应的一组：适应于相应属性属性的匹配规则。 软件系统包括匹配的引擎，使得资源的服务提供者能够根据任何一个或多个自描述属性词汇表将资源描述给软件系统。

公开(公告)号：US06470339B1

公开(公告)日：2002-10-22

申请号：US09281876

申请日：1999-03-31

申请人： Alan H. Karp ,  Rajiv Gupta ,  Arindam Banerji ,  Chia-Chiang Chao ,  Ernest Mak ,  Sandeep Kumar ,  Venkatesh Krishnan ,  Guillermo Rozas

发明人： Alan H. Karp ,  Rajiv Gupta ,  Arindam Banerji ,  Chia-Chiang Chao ,  Ernest Mak ,  Sandeep Kumar ,  Venkatesh Krishnan ,  Guillermo Rozas

IPC分类号： G06F1700

CPC分类号： G06F9/468 ,  Y10S707/99938 ,  Y10S707/99939

摘要： A software system that provides access control to resources and that disassociates access rights to resources from references to resources to prevent the formation of large and unwieldy access control lists and to enable advanced decentralized security controls. The software system includes a repository that holds a resource descriptor for each resource including lock/permission pairs. Access to particular resources or groups of resources is provided by providing users with the appropriate keys. The keys are themselves are resources with resource descriptors in the repository. Access rights for users may be revoked by deleting keys from the repository. The software system also provides visibility fields for compartmentalizing access to resources. In addition, the software system provides authorizers that maintain audit trails when critical resource such as keys are passed among users and that enable advanced security control when passing resources among users.

摘要翻译： 一种提供对资源的访问控制以及将资源的访问权限从资源引用分解的软件系统，以防止形成大而笨重的访问控制列表并实现高级分散安全控制。 该软件系统包括一个存储库，其中包含包含锁/权限对的每个资源的资源描述符。 通过向用户提供适当的密钥来提供对特定资源或资源组的访问。 密钥本身就是存储库中资源描述符的资源。 可以通过从存储库中删除密钥来撤消对用户的访问权限。 软件系统还提供可视化领域，用于区分对资源的访问。 此外，软件系统提供授权人员，当关键资源（如密钥在用户中传递）之间时，可以维护审计跟踪，并且在用户之间传递资源时可实现高级安全控制。

公开(公告)号：US07702687B2

公开(公告)日：2010-04-20

申请号：US11141839

申请日：2005-06-01

申请人： Kannan Govindarajan ,  Sekhar R. Sarukkai ,  Shamik Shama ,  Shankar Umamaheshwaran ,  Arindam Banerji ,  Alan H. Karp

发明人： Kannan Govindarajan ,  Sekhar R. Sarukkai ,  Shamik Shama ,  Shankar Umamaheshwaran ,  Arindam Banerji ,  Alan H. Karp

IPC分类号： G06F7/00

CPC分类号： G06F9/465 ,  G06F9/5027 ,  G06F2209/462 ,  G06F2209/463 ,  G06F2209/5015 ,  Y10S707/966 ,  Y10S707/99933 ,  Y10S707/99943

摘要： A system and method for typing resources in a distributed system is provided which enables flexible searching mechanisms for finding distributed resources. The distributed system includes at least three types of resources: service, vocabulary and contract resources. The service resource includes the implementation logic for the service. A contract resource contains interface data used for accessing resources. The vocabulary resource contains an attribute schema defining attributes used to describe resources. Each resource—including service, vocabulary and contract resources—is typed by associating one or more vocabulary resources and one or more contract resources with the resource. The vocabulary resources explain the meaning of attribute lists describing the resource and enable the resource to be discovered. The contract resources provide data for accessing the resource. Because vocabulary and contract resources are themselves resources, they are also typed by vocabulary and contract resources and are, accordingly, discoverable and accessible. Typing resources with vocabularies and contracts that are themselves discoverable resources, provides a structural mechanism for supporting robust resource discovery processes suitable for large, loosely-coupled distributed systems.

摘要翻译： 提供了一种用于在分布式系统中输入资源的系统和方法，其实现了用于查找分布式资源的灵活搜索机制。 分布式系统至少包含三种资源：服务，词汇和合同资源。 服务资源包括服务的实现逻辑。 合同资源包含用于访问资源的接口数据。 词汇资源包含定义用于描述资源的属性的属性模式。 通过将一个或多个词汇资源和一个或多个合同资源与资源相关联来分类每个包括资源的服务，词汇和合同资源。 词汇资源解释描述资源的属性列表的含义，并使资源被发现。 合同资源提供访问资源的数据。 因为词汇和合同资源本身就是资源，它们也是由词汇和合同资源打入的，因此可以发现和可访问。 使用本身是可发现资源的词汇和合同键入资源，为支持适用于大型，松散耦合的分布式系统的强大的资源发现过程提供了一种结构性机制。

公开(公告)号：US07165113B2

公开(公告)日：2007-01-16

申请号：US09994635

申请日：2001-11-28

申请人： Alan H. Karp ,  Kannan Govindarajan ,  Gregory Pogossiants ,  Scott L. Williams ,  Claudio Bartolini ,  Shamik D. Sharma ,  Arindam Banerji ,  Dorothea Beringer

发明人： Alan H. Karp ,  Kannan Govindarajan ,  Gregory Pogossiants ,  Scott L. Williams ,  Claudio Bartolini ,  Shamik D. Sharma ,  Arindam Banerji ,  Dorothea Beringer

IPC分类号： G06F15/16 ,  G06Q99/00

CPC分类号： G06F9/546 ,  G06Q50/188 ,  H04L29/06 ,  H04L67/02 ,  H04L67/16 ,  H04L69/329

摘要： A conversation definition language (CDL) is disclosed that programmers may use to define sequences of interactions for communicating with a web service to facilitate use of the web service. CDL enables web services provided by different entities to engage in flexible and autonomous interactions. Using CDL, services can communicate by exchanging messages, and the message exchanges are expected to follow a specific pattern (i.e., a conversation). CDL is used to define the conversation, such that a service may expect a particular message in response to transmitting a particular message. CDL includes document type descriptions, interactions and transitions for describing a conversation. The document type descriptions describe the messages that may be exchanged. The interactions describe the type of actions (e.g., receive and/or transmit a message) that may be performed, and the transitions describe the possible sequences of the interactions.

摘要翻译： 公开了一种会话定义语言（CDL），程序员可以用来定义与web服务通信的交互序列，以便于使用Web服务。 CDL使不同实体提供的Web服务能够进行灵活和自主的交互。 使用CDL，服务可以通过交换消息进行通信，并且消息交换被期望遵循特定模式（即，对话）。 CDL用于定义对话，使得服务可以期望响应于发送特定消息的特定消息。 CDL包括用于描述会话的文档类型描述，交互和转换。 文档类型描述描述可以交换的消息。 交互描述可以执行的动作的类型（例如，接收和/或发送消息），并且转换描述了可能的交互序列。

公开(公告)号：US07028035B1

公开(公告)日：2006-04-11

申请号：US09733012

申请日：2000-12-08

申请人： Kannan Govindarajan ,  Sekhar R. Sarukkai ,  Shamik Shama ,  Shankar Umamaheshwaran ,  Arindam Banerji ,  Alan H. Karp

发明人： Kannan Govindarajan ,  Sekhar R. Sarukkai ,  Shamik Shama ,  Shankar Umamaheshwaran ,  Arindam Banerji ,  Alan H. Karp

IPC分类号： G06F7/00 ,  G06F17/30 ,  G06F17/00

CPC分类号： G06F9/465 ,  G06F9/5027 ,  G06F2209/462 ,  G06F2209/463 ,  G06F2209/5015 ,  Y10S707/966 ,  Y10S707/99933 ,  Y10S707/99943

摘要： A system and method for typing resources in a distributed system is provided which enables flexible searching mechanisms for finding distributed resources. The distributed system includes at least three types of resources: service, vocabulary and contract resources. The service resource includes the implementation logic for the service. A contract resource contains interface data used for accessing resources. The vocabulary resource contains an attribute schema defining attributes used to describe resources. Each resource—including service, vocabulary and contract resources—is typed by associating one or more vocabulary resources and one or more contract resources with the resource. The vocabulary resources explain the meaning of attribute lists describing the resource and enable the resource to be discovered. The contract resources provide data for accessing the resource. Because vocabulary and contract resources are themselves resources, they are also typed by vocabulary and contract resources and are, accordingly, discoverable and accessible. Typing resources with vocabularies and contracts that are themselves discoverable resources, provides a structural mechanism for supporting robust resource discovery processes suitable for large, loosely-coupled distributed systems.

摘要翻译： 提供了一种用于在分布式系统中输入资源的系统和方法，其实现了用于查找分布式资源的灵活搜索机制。 分布式系统至少包含三种资源：服务，词汇和合同资源。 服务资源包括服务的实现逻辑。 合同资源包含用于访问资源的接口数据。 词汇资源包含定义用于描述资源的属性的属性模式。 通过将一个或多个词汇资源和一个或多个合同资源与资源相关联来分类每个包括资源的服务，词汇和合同资源。 词汇资源解释描述资源的属性列表的含义，并使资源被发现。 合同资源提供访问资源的数据。 因为词汇和合同资源本身就是资源，它们也是由词汇和合同资源打入的，因此可以发现和可访问。 使用本身是可发现资源的词汇和合同键入资源，为支持适用于大型，松散耦合的分布式系统的强大的资源发现过程提供了一种结构性机制。

公开(公告)号：US07596694B1

公开(公告)日：2009-09-29

申请号：US10796690

申请日：2004-03-08

申请人： Alan Karp ,  Arindam Banerji ,  Thomas Wylegala ,  Rajiv Gupta ,  Peter Phaal

发明人： Alan Karp ,  Arindam Banerji ,  Thomas Wylegala ,  Rajiv Gupta ,  Peter Phaal

IPC分类号： H04L29/06

CPC分类号： H04L63/123 ,  H04L67/34

摘要： Embodiments of the present invention include a system and method for making it safe to execute downloaded code. The method includes accessing an application, the application making a system call to a library of a computer system for a resource, establishing a requesting thread. The method further includes the library sending a request message to a local security filter; the local security filter validating the requesting thread and returning a digital signature, that uniquely identifies the requesting thread, to the application. The application making a system call to a kernel of the computer system wherein the kernel uses the digital signature from the security filter to validate the requesting thread before allowing access to the requested resource.

摘要翻译： 本发明的实施例包括用于执行下载代码的安全的系统和方法。 所述方法包括访问应用程序，所述应用程序对资源的计算机系统的库进行系统调用，建立请求线程。 该方法还包括库向本地安全过滤器发送请求消息; 本地安全过滤器验证请求线程并且向应用程序返回唯一地标识请求线程的数字签名。 所述应用程序对所述计算机系统的内核进行系统调用，其中所述内核使用来自所述安全过滤器的数字签名在允许访问所请求的资源之前验证所述请求线程。

公开(公告)号：US20070239858A1

公开(公告)日：2007-10-11

申请号：US11401533

申请日：2006-04-10

申请人： Arindam Banerji ,  Ramchandar Krishnamurthy ,  Surjit Kaladharan ,  Ganapathy Raman

发明人： Arindam Banerji ,  Ramchandar Krishnamurthy ,  Surjit Kaladharan ,  Ganapathy Raman

IPC分类号： G06F15/177 ,  G06F15/16

CPC分类号： G06Q30/06

摘要： The present technique includes a software framework which makes it possible for providing Business-to-Business (B2B) integration software as a service (SaaS). The framework follows a hub and spoke model wherein the hub and spoke communicate through web services. While the hub and spokes act as integration gateways with the enterprise systems, the hub also acts as a centralized remote command, control and configuration center for the entire setup. The hub software provides the ability to generate and remotely deploy the spoke environments and also manage them remotely. The generated spoke environment can be downloaded, installed and configured to connect to the local systems and act as a mediator for B2B integration between hub and the local systems. Once installed the environments are remotely managed through the management console provided by the hub software. This invention reduces the on boarding time of trading partners and reduces the cost of B2B integration by amortizing the cost of remotely managing multiple trading partner gateways through a single management console.

摘要翻译： 本技术包括一个软件框架，可以提供企业对企业（B2B）集成软件即服务（SaaS）。 框架遵循中心和辐射模型，其中中心和辐条通过网络服务进行通信。 虽然集线器和辐条作为与企业系统的集成网关，但集线器也可用作整个设备的集中式远程命令，控制和配置中心。 集线器软件提供生成和远程部署辐条环境的能力，并远程管理它们。 生成的辐条环境可以下载，安装和配置为连接到本地系统，并作为中枢和本地系统之间的B2B集成的调解器。 一旦安装，环境通过集线器软件提供的管理控制台进行远程管理。 本发明减少了贸易伙伴的登船时间，并通过单个管理控制台摊销远程管理多个贸易伙伴网关的成本，降低了B2B集成的成本。

公开(公告)号：US20050240651A1

公开(公告)日：2005-10-27

申请号：US11141839

申请日：2005-06-01

申请人： Kannan Govindarajan ,  Sekhar Sarukkai ,  Shamik Shama ,  Shankar Umamaheshwaran ,  Arindam Banerji ,  Alan Karp

发明人： Kannan Govindarajan ,  Sekhar Sarukkai ,  Shamik Shama ,  Shankar Umamaheshwaran ,  Arindam Banerji ,  Alan Karp

IPC分类号： G06F9/46

CPC分类号： G06F9/465 ,  G06F9/5027 ,  G06F2209/462 ,  G06F2209/463 ,  G06F2209/5015 ,  Y10S707/966 ,  Y10S707/99933 ,  Y10S707/99943

摘要： A system and method for typing resources in a distributed system is provided which enables flexible searching mechanisms for finding distributed resources. The distributed system includes at least three types of resources: service, vocabulary and contract resources. The service resource includes the implementation logic for the service. A contract resource contains interface data used for accessing resources. The vocabulary resource contains an attribute schema defining attributes used to describe resources. Each resource—including service, vocabulary and contract resources—is typed by associating one or more vocabulary resources and one or more contract resources with the resource. The vocabulary resources explain the meaning of attribute lists describing the resource and enable the resource to be discovered. The contract resources provide data for accessing the resource. Because vocabulary and contract resources are themselves resources, they are also typed by vocabulary and contract resources and are, accordingly, discoverable and accessible. Typing resources with vocabularies and contracts that are themselves discoverable resources, provides a structural mechanism for supporting robust resource discovery processes suitable for large, loosely-coupled distributed systems.

摘要翻译： 提供了一种用于在分布式系统中输入资源的系统和方法，其实现了用于查找分布式资源的灵活搜索机制。 分布式系统至少包含三种资源：服务，词汇和合同资源。 服务资源包括服务的实现逻辑。 合同资源包含用于访问资源的接口数据。 词汇资源包含定义用于描述资源的属性的属性模式。 通过将一个或多个词汇资源和一个或多个合同资源与资源相关联来分类每个包括资源的服务，词汇和合同资源。 词汇资源解释描述资源的属性列表的含义，并使资源被发现。 合同资源提供访问资源的数据。 因为词汇和合同资源本身就是资源，它们也是由词汇和合同资源打入的，因此可以发现和可访问。 使用本身是可发现资源的词汇和合同键入资源，为支持适用于大型，松散耦合的分布式系统的强大的资源发现过程提供了一种结构性机制。