公开(公告)号：US10263952B2

公开(公告)日：2019-04-16

申请号：US14068839

申请日：2013-10-31

Applicant: Avaya Inc.

Inventor： John H. Yoakum ,  Kundan Singh ,  Alan B. Johnston

IPC: G06F15/16 ,  H04L29/12 ,  G06F17/30 ,  H04L29/06 ,  H04L29/08

Abstract: Providing origin insight via Session Traversal Utilities for Network Address Translation (STUN) messages for web applications, and related methods, systems, and computer-readable media are disclosed herein. In one embodiment, a method for providing origin insight for web applications via STUN messages comprises determining an origin identifier for a web application attempting to send a STUN message to a STUN server; generating the STUN message incorporating the origin identifier for the web application; and transmitting the STUN message to the STUN server. In another embodiment, a method for providing STUN services to web applications comprises receiving a STUN message from a web client, and extracting an origin identifier for a web application. Provision of a STUN service to the web application is determined based on the origin identifier. If the STUN service should not be provided, the STUN message is rejected or disregarded; otherwise the STUN message is processed.

公开(公告)号：US09531808B2

公开(公告)日：2016-12-27

申请号：US14174371

申请日：2014-02-06

Applicant: Avaya Inc.

Inventor： Kundan Singh ,  Venkatesh Krishnaswamy

IPC: H04L29/08 ,  G06F21/62 ,  H04L29/06

CPC classification number: H04L67/1097 ,  G06F21/6218 ,  H04L63/20 ,  H04L67/02

Abstract: Providing data resource services within enterprise systems for resource level sharing among multiple applications, and related methods, systems, and computer-readable media are disclosed. In one embodiment, a method for providing a data resource service within an enterprise system is provided. The method includes receiving a user data request from a web application having application logic located outside of an enterprise system to access user data stored in memory within the enterprise system. The method further includes accessing the user data stored in the memory within the enterprise system in response to the user data request from the web application. The method also includes providing access to the user data stored in the memory within the enterprise system to the web application in response to the user data request.

Abstract translation: 在企业系统内提供数据资源服务，用于多个应用程序之间的资源级别共享，以及相关方法，系统和计算机可读介质。 在一个实施例中，提供了一种用于在企业系统内提供数据资源服务的方法。 该方法包括从具有位于企业系统外部的应用逻辑的web应用接收用户数据请求，以访问存储在企业系统内的存储器中的用户数据。 该方法还包括响应于来自web应用的用户数据请求，访问存储在企业系统内的存储器中的用户数据。 该方法还包括响应于用户数据请求，将存储在企业系统内的存储器中的用户数据提供给web应用程序。

公开(公告)号：US11012437B2

公开(公告)日：2021-05-18

申请号：US16144709

申请日：2018-09-27

Applicant: Avaya Inc.

Inventor： John H. Yoakum ,  Kundan Singh ,  Joel Ezell ,  Alan B. Johnston

IPC: H04L29/06 ,  H04L29/12

Abstract: Embodiments disclosed provide access to Traversal Using Relays around Network Address Translation (TURN) servers using trusted single-use credentials, and related methods, systems, and computer-readable media. In one embodiment, a method comprises receiving, by a TURN authentication agent, a request for a TURN server credential. Responsive to determining that the request is authorized, the agent generates a trusted single-use credential and transmits it to the requestor. Using this trusted single-use credential allows untrusted clients to access a TURN server without exposing a userid/password combination. In another embodiment, a method comprises receiving, by the TURN server, a request for a TURN service. The server challenges the request, and receives a userid and a password. Responsive to determining that the userid and the password constitute a trusted single-use credential and responsive to determining that the request is authorized, the server provides the TURN service for the requestor.

公开(公告)号：US20150121250A1

公开(公告)日：2015-04-30

申请号：US14068943

申请日：2013-10-31

Applicant: Avaya Inc.

Inventor： Harvey S. Waxman ,  John H. Yoakum ,  Kundan Singh

IPC: H04L29/06 ,  G06F3/0482 ,  G06F3/0486 ,  G06F3/0481 ,  G06F3/0484

CPC classification number: H04L65/403 ,  G06F3/04817 ,  G06F3/0482 ,  G06F3/04842 ,  G06F3/0486 ,  H04L67/02

Abstract: Intelligently managing Web Real-Time Communications (WebRTC) interactive flows, and related systems, methods, and computer-readable media are disclosed herein. In one embodiment, a system for intelligently managing WebRTC interactive flows comprises at least one communications interface, and an associated computing device comprising a WebRTC client. The WebRTC client is configured to receive a user input gesture directed to one or more visual representations corresponding to one or more WebRTC users, and determine a context for the WebRTC client based on a current state of the WebRTC client. The WebRTC client is further configured to obtain one or more identity attributes associated with the one or more WebRTC users, and provide one or more WebRTC interactive flows including the one or more WebRTC users based on the context, the user input gesture, and the one or more identity attributes.

Abstract translation: 本文公开了智能地管理Web实时通信（WebRTC）交互流，以及相关的系统，方法和计算机可读介质。 在一个实施例中，用于智能地管理WebRTC交互流的系统包括至少一个通信接口和包括WebRTC客户端的相关联的计算设备。 WebRTC客户端被配置为接收针对与一个或多个WebRTC用户相对应的一个或多个视觉表示的用户输入手势，并且基于WebRTC客户端的当前状态来确定WebRTC客户端的上下文。 WebRTC客户端还被配置为获得与一个或多个WebRTC用户相关联的一个或多个身份属性，并且基于上下文，用户输入手势和一个WebRTC用户提供包括一个或多个WebRTC用户的一个或多个WebRTC交互流 或更多身份属性。

公开(公告)号：US20150058418A1

公开(公告)日：2015-02-26

申请号：US14174371

申请日：2014-02-06

Applicant: AVAYA INC.

Inventor： Kundan Singh ,  Venkatesh Krishnaswamy

IPC: H04L29/08

CPC classification number: H04L67/1097 ,  G06F21/6218 ,  H04L63/20 ,  H04L67/02

Abstract: Providing data resource services within enterprise systems for resource level sharing among multiple applications, and related methods, systems, and computer-readable media are disclosed. In one embodiment, a method for providing a data resource service within an enterprise system is provided. The method includes receiving a user data request from a web application having application logic located outside of an enterprise system to access user data stored in memory within the enterprise system. The method further includes accessing the user data stored in the memory within the enterprise system in response to the user data request from the web application. The method also includes providing access to the user data stored in the memory within the enterprise system to the web application in response to the user data request.

Abstract translation: 在企业系统内提供数据资源服务，用于多个应用程序之间的资源级别共享，以及相关方法，系统和计算机可读介质。 在一个实施例中，提供了一种用于在企业系统内提供数据资源服务的方法。 该方法包括从具有位于企业系统外部的应用逻辑的web应用接收用户数据请求，以访问存储在企业系统内的存储器中的用户数据。 该方法还包括响应于来自web应用的用户数据请求，访问存储在企业系统内的存储器中的用户数据。 该方法还包括响应于用户数据请求，将存储在企业系统内的存储器中的用户数据提供给web应用程序。

公开(公告)号：US09294458B2

公开(公告)日：2016-03-22

申请号：US14050891

申请日：2013-10-10

Applicant: Avaya Inc.

Inventor： Kundan Singh ,  John H. Yoakum

IPC: G06F21/30 ,  H04L29/06 ,  H04L29/12

CPC classification number: H04L63/08 ,  H04L61/2575 ,  H04L61/2589 ,  H04L65/1069 ,  H04L65/4046 ,  H04L65/607

Abstract: Embodiments include managing Identity Provider (IdP) identifiers for Web Real-Time Communications (WebRTC) interactive flows, and related methods, systems, and computer-readable media. In one embodiment, a method for managing IdPs comprises selecting, by a WebRTC client executing on a computing device, one or more preferred IdP identifiers indicated by one or more preferences from a plurality of IdP identifiers corresponding to a plurality of IdPs for providing identity assertions during an establishment of a WebRTC interactive flow. The method further comprises obtaining one or more identity assertions from respective ones of the plurality of IdPs corresponding to the one or more preferred IdP identifiers. The method also comprises providing, during the establishment of the WebRTC interactive flow, the one or more identity assertions. In this manner, an entity may specify the IdP used for identity authentication, and the number of identity assertions provided during initiation of the WebRTC interactive flow.

Abstract translation: 实施例包括管理用于Web实时通信（WebRTC）交互流的身份提供商（IdP）标识符以及相关方法，系统和计算机可读介质。 在一个实施例中，一种用于管理IdP的方法包括通过在计算设备上执行的WebRTC客户端从由多个IdP对应的多个IdP标识符中选择一个或多个偏好来指示的一个或多个优选的IdP标识符，以提供身份断言 在建立WebRTC交互流程时。 该方法还包括从对应于一个或多个优选的IdP标识符的多个IdP中的相应的IdP获得一个或多个身份断言。 该方法还包括在建立WebRTC交互流程期间提供一个或多个身份断言。 以这种方式，实体可以指定用于身份认证的IdP以及在WebRTC交互流程启动期间提供的身份断言的数量。

公开(公告)号：US20150120879A1

公开(公告)日：2015-04-30

申请号：US14068839

申请日：2013-10-31

Applicant: Avaya Inc.

Inventor： John H. Yoakum ,  Kundan Singh ,  Alan B. Johnston

IPC: H04L29/12

CPC classification number: H04L61/2575 ,  H04L61/2514 ,  H04L61/2589 ,  H04L65/608 ,  H04L67/02

Abstract: Providing origin insight via Session Traversal Utilities for Network Address Translation (STUN) messages for web applications, and related methods, systems, and computer-readable media are disclosed herein. In one embodiment, a method for providing origin insight for web applications via STUN messages comprises determining an origin identifier for a web application attempting to send a STUN message to a STUN server; generating the STUN message incorporating the origin identifier for the web application; and transmitting the STUN message to the STUN server. In another embodiment, a method for providing STUN services to web applications comprises receiving a STUN message from a web client, and extracting an origin identifier for a web application. Provision of a STUN service to the web application is determined based on the origin identifier. If the STUN service should not be provided, the STUN message is rejected or disregarded; otherwise the STUN message is processed.

Abstract translation: 本文公开了通过会话遍历实用程序提供用于网络应用程序的网络地址转换（STUN）消息以及相关方法，系统和计算机可读介质的原始洞察。 在一个实施例中，一种用于通过STUN消息为web应用提供原始洞察的方法包括确定尝试向STUN服务器发送STUN消息的web应用的源标识符; 生成包含web应用的原始标识符的STUN消息; 并向STUN服务器发送STUN消息。 在另一个实施例中，用于向web应用提供STUN服务的方法包括从Web客户端接收STUN消息，以及提取web应用的原始标识符。 基于原始标识符确定向Web应用程序提供STUN服务。 如果不提供STUN服务，STUN消息被拒绝或忽略; 否则STUN消息被处理。

公开(公告)号：US20140282903A1

公开(公告)日：2014-09-18

申请号：US14050891

申请日：2013-10-10

Applicant: Avaya Inc.

Inventor： Kundan Singh ,  John H. Yoakum

IPC: H04L29/06

CPC classification number: H04L63/08 ,  H04L61/2575 ,  H04L61/2589 ,  H04L65/1069 ,  H04L65/4046 ,  H04L65/607

Abstract: Embodiments include managing Identity Provider (IdP) identifiers for Web Real-Time Communications (WebRTC) interactive flows, and related methods, systems, and computer-readable media. In one embodiment, a method for managing IdPs comprises selecting, by a WebRTC client executing on a computing device, one or more preferred IdP identifiers indicated by one or more preferences from a plurality of IdP identifiers corresponding to a plurality of IdPs for providing identity assertions during an establishment of a WebRTC interactive flow. The method further comprises obtaining one or more identity assertions from respective ones of the plurality of IdPs corresponding to the one or more preferred IdP identifiers. The method also comprises providing, during the establishment of the WebRTC interactive flow, the one or more identity assertions. In this manner, an entity may specify the IdP used for identity authentication, and the number of identity assertions provided during initiation of the WebRTC interactive flow.

Abstract translation: 实施例包括管理用于Web实时通信（WebRTC）交互流的身份提供者（IdP）标识符以及相关方法，系统和计算机可读介质。 在一个实施例中，一种用于管理IdP的方法包括通过在计算设备上执行的WebRTC客户端从由多个IdP对应的多个IdP标识符中选择一个或多个偏好来指示的一个或多个优选的IdP标识符，以提供身份断言 在建立WebRTC交互流程时。 该方法还包括从对应于一个或多个优选的IdP标识符的多个IdP中的相应的IdP获得一个或多个身份断言。 该方法还包括在建立WebRTC交互流程期间提供一个或多个身份断言。 以这种方式，实体可以指定用于身份认证的IdP以及在WebRTC交互流程启动期间提供的身份断言的数量。

公开(公告)号：US20190044937A1

公开(公告)日：2019-02-07

申请号：US16144709

申请日：2018-09-27

Applicant: Avaya Inc.

Inventor： John H. Yoakum ,  Kundan Singh ,  Joel Ezell ,  Alan B. Johnston

IPC: H04L29/06

Abstract: Embodiments disclosed provide access to Traversal Using Relays around Network Address Translation (TURN) servers using trusted single-use credentials, and related methods, systems, and computer-readable media. In one embodiment, a method comprises receiving, by a TURN authentication agent, a request for a TURN server credential. Responsive to determining that the request is authorized, the agent generates a trusted single-use credential and transmits it to the requestor. Using this trusted single-use credential allows untrusted clients to access a TURN server without exposing a userid/password combination. In another embodiment, a method comprises receiving, by the TURN server, a request for a TURN service. The server challenges the request, and receives a userid and a password. Responsive to determining that the userid and the password constitute a trusted single-use credential and responsive to determining that the request is authorized, the server provides the TURN service for the requestor.

公开(公告)号：US10129243B2

公开(公告)日：2018-11-13

申请号：US14141798

申请日：2013-12-27

Applicant: Avaya Inc.

Inventor： John H. Yoakum ,  Kundan Singh ,  Joel Ezell ,  Alan B. Johnston

IPC: H04L29/06 ,  H04L29/12

Abstract: Embodiments disclosed provide access to Traversal Using Relays around Network Address Translation (TURN) servers using trusted single-use credentials, and related methods, systems, and computer-readable media. In one embodiment, a method comprises receiving, by a TURN authentication agent, a request for a TURN server credential. Responsive to determining that the request is authorized, the agent generates a trusted single-use credential and transmits it to the requestor. Using this trusted single-use credential allows untrusted clients to access a TURN server without exposing a userid/password combination. In another embodiment, a method comprises receiving, by the TURN server, a request for a TURN service. The server challenges the request, and receives a userid and a password. Responsive to determining that the userid and the password constitute a trusted single-use credential and responsive to determining that the request is authorized, the server provides the TURN service for the requestor.