公开(公告)号：US20150106895A1

公开(公告)日：2015-04-16

申请号：US14051073

申请日：2013-10-10

Applicant: Bank of America Corporation

Inventor： Abbie Barbir ,  Radu Marian ,  Cynthia A. Frick ,  John H. Kling ,  Michael Simon

IPC: H04L29/06

CPC classification number: H04L63/08 ,  H04L63/104 ,  H04L63/105 ,  H04L63/107 ,  H04L63/065

Abstract: Aspects of the present disclosure are directed to methods and systems dynamic trust federation. In one aspect, a computer implemented method may include a security token that enables sign-on into a group applications based on applicable trust criteria. In one aspect, when a user interacts with one application in the group, the trust is elevated through the application internal authentication application program interface (API). The trust may be included in the security token to make available to other applications in the group. Applications can be in multiple groups with variable level of authentication based on location and other transactions variables.

Abstract translation: 本公开的方面涉及方法和系统动态信任联合。 在一个方面，计算机实现的方法可以包括可以基于适用的信任标准登录到组应用程序中的安全令牌。 在一个方面，当用户与组中的一个应用交互时，通过应用内部认证应用程序接口（API）提升信任。 该信任可能包含在安全令牌中，以供组合中的其他应用程序使用。 应用程序可以在多个组中，基于位置和其他事务变量的可变级别的身份验证。

公开(公告)号：US20140181003A1

公开(公告)日：2014-06-26

申请号：US13801314

申请日：2013-03-13

Applicant: BANK OF AMERICA CORPORATION

Inventor： John H. Kling ,  Abdulkader Barbir ,  Cynthia A. Frick ,  Radu Marian ,  Ronald W. Ritchey

IPC: G06F17/30

CPC classification number: G06F17/30592 ,  G06F17/30563

Abstract: A data model for managing identity and access management (IAM) data implemented at an electronic database may include a set of logical resource elements, a set of physical resource elements, and a set of access requests elements that respectively model logical resources, physical resources, and access requests received at an access request manager of an enterprise. The physical resource elements may be respectively associated with the logical resource elements such that access rights for the physical resources may be obtained based on a logical resource specified in the access request. A system for managing IAM may include a mapping module configured to transform heterogeneous IAM data provided by a plurality of IAM data sources into homogeneous IAM data formatted according to the common IAM data format. A data store may implement the IAM data model such that the data store is configured to store the homogeneous IAM data.

Abstract translation: 用于管理在电子数据库中实现的身份和访问管理（IAM）数据的数据模型可以包括一组逻辑资源元素，一组物理资源元素和一组访问请求元素，其分别对逻辑资源，物理资源， 以及在企业的访问请求管理器处接收的访问请求。 物理资源元素可以分别与逻辑资源元素相关联，使得可以基于访问请求中指定的逻辑资源来获得物理资源的访问权限。 用于管理IAM的系统可以包括映射模块，其被配置为将由多个IAM数据源提供的异构IAM数据转换成根据公共IAM数据格式格式化的均匀IAM数据。 数据存储可以实现IAM数据模型，使得数据存储被配置为存储均匀的IAM数据。

公开(公告)号：US09094391B2

公开(公告)日：2015-07-28

申请号：US14051073

申请日：2013-10-10

Applicant: Bank of America Corporation

Inventor： Abbie Barbir ,  Radu Marian ,  Cynthia A. Frick ,  John H. Kling ,  Michael Simon

IPC: H04L29/06

CPC classification number: H04L63/08 ,  H04L63/104 ,  H04L63/105 ,  H04L63/107 ,  H04L63/065

Abstract: Aspects of the present disclosure are directed to methods and systems dynamic trust federation. In one aspect, a computer implemented method may include a security token that enables sign-on into a group applications based on applicable trust criteria. In one aspect, when a user interacts with one application in the group, the trust is elevated through the application internal authentication application program interface (API). The trust may be included in the security token to make available to other applications in the group. Applications can be in multiple groups with variable level of authentication based on location and other transactions variables.

Abstract translation: 本公开的方面涉及方法和系统动态信任联合。 在一个方面，计算机实现的方法可以包括可以基于适用的信任标准登录到组应用程序中的安全令牌。 在一个方面，当用户与组中的一个应用交互时，通过应用内部认证应用程序接口（API）提升信任。 该信任可能包含在安全令牌中，以供组合中的其他应用程序使用。 应用程序可以在多个组中，基于位置和其他事务变量的可变级别的身份验证。

公开(公告)号：US09075791B2

公开(公告)日：2015-07-07

申请号：US13801286

申请日：2013-03-13

Applicant: Bank of America Corporation

Inventor： Radu Marian ,  Abdulkader Barbir ,  Cynthia A. Frick ,  John H. Kling

IPC: G06F17/27

CPC classification number: G06F17/2735

Abstract: A system for managing an enterprise concept dictionary may include an electronic master dictionary and electronic local dictionaries. The master dictionary may include concept entries respectively associated with concept identifiers and with one or more concept definitions. The local dictionaries may include one or more of the concept identifiers of the master dictionary. A dictionary management module may be in signal communication with the master dictionary and the local dictionaries. The dictionary management module may be configured to query the master dictionary for a concept entry that corresponds to a concept associated with a modeling component. If a concept entry is found, the concept identifier may be provided. If a concept entry is not found, a new concept entry may be added to the master dictionary. A notification module may be in signal communication with the master dictionary and automatically provide notification when a concept entry is added or updated.

Abstract translation: 用于管理企业概念词典的系统可以包括电子主词典和电子本地词典。 主字典可以包括分别与概念标识符和一个或多个概念定义相关联的概念条目。 本地字典可以包括主字典的一个或多个概念标识符。 字典管理模块可以与主字典和本地字典进行信号通信。 字典管理模块可以被配置为向主字典查询对应于与建模组件相关联的概念的概念条目。 如果找到概念条目，则可以提供概念标识符。 如果未找到概念条目，则可以将新概念条目添加到主字典。 通知模块可以与主字典进行信号通信，并且在添加或更新概念条目时自动提供通知。

公开(公告)号：US20220222648A1

公开(公告)日：2022-07-14

申请号：US17146905

申请日：2021-01-12

Applicant: BANK OF AMERICA CORPORATION

Inventor： Cynthia A. Frick ,  Melissa Major Summitt ,  Andrea M. Weisberger ,  Nicholas Gregory Grant ,  Mark Trenton Cimijotti ,  Khyree B. Bolden ,  Steven E. Sinks

IPC: G06Q20/32 ,  G06Q20/40 ,  G06K19/077

Abstract: Embodiments of the invention are directed to a system, method, and computer program product for completion of a resource transfer using a temporary resource patch. The system receives a request for a resource transaction associated with a temporary resource patch. The system determines whether the temporary resource patch can complete the resource transaction. The system executes the transaction if the temporary resource patch can complete the resource transaction.

公开(公告)号：US09639594B2

公开(公告)日：2017-05-02

申请号：US13801314

申请日：2013-03-13

Applicant: Bank of America Corporation

Inventor： John H. Kling ,  Abdulkader Barbir ,  Cynthia A. Frick ,  Radu Marian ,  Ronald W. Ritchey

IPC: G06F17/00 ,  G06F17/30

CPC classification number: G06F17/30592 ,  G06F17/30563

Abstract: A data model for managing identity and access management (IAM) data implemented at an electronic database may include a set of logical resource elements, a set of physical resource elements, and a set of access requests elements that respectively model logical resources, physical resources, and access requests received at an access request manager of an enterprise. The physical resource elements may be respectively associated with the logical resource elements such that access rights for the physical resources may be obtained based on a logical resource specified in the access request. A system for managing IAM may include a mapping module configured to transform heterogeneous IAM data provided by a plurality of IAM data sources into homogeneous IAM data formatted according to the common IAM data format. A data store may implement the IAM data model such that the data store is configured to store the homogeneous IAM data.

公开(公告)号：US20140180678A1

公开(公告)日：2014-06-26

申请号：US13801286

申请日：2013-03-13

Applicant: BANK OF AMERICA CORPORATION

Inventor： Radu Marian ,  Abdulkader Barbir ,  Cynthia A. Frick ,  John H. Kling

IPC: G06F17/27

CPC classification number: G06F17/2735

Abstract: A system for managing an enterprise concept dictionary may include an electronic master dictionary and electronic local dictionaries. The master dictionary may include concept entries respectively associated with concept identifiers and with one or more concept definitions. The local dictionaries may include one or more of the concept identifiers of the master dictionary. A dictionary management module may be in signal communication with the master dictionary and the local dictionaries. The dictionary management module may be configured to query the master dictionary for a concept entry that corresponds to a concept associated with a modeling component. If a concept entry is found, the concept identifier may be provided. If a concept entry is not found, a new concept entry may be added to the master dictionary. A notification module may be in signal communication with the master dictionary and automatically provide notification when a concept entry is added or updated.

Abstract translation: 用于管理企业概念词典的系统可以包括电子主词典和电子本地词典。 主字典可以包括分别与概念标识符和一个或多个概念定义相关联的概念条目。 本地字典可以包括主字典的一个或多个概念标识符。 字典管理模块可以与主字典和本地字典进行信号通信。 字典管理模块可以被配置为向主字典查询对应于与建模组件相关联的概念的概念条目。 如果找到概念条目，则可以提供概念标识符。 如果未找到概念条目，则可以将新概念条目添加到主字典。 通知模块可以与主字典进行信号通信，并且在添加或更新概念条目时自动提供通知。