公开(公告)号：US07017183B1

公开(公告)日：2006-03-21

申请号：US09896039

申请日：2001-06-29

申请人： Bridget J. Frey ,  Matthew S. Markoff ,  Michael E. Smedberg

发明人： Bridget J. Frey ,  Matthew S. Markoff ,  Michael E. Smedberg

IPC分类号： H04L9/32

CPC分类号： G06F21/6236 ,  G06F2221/2141 ,  Y10S707/99939

摘要： A method, system, and computer program product for corporate portal security are provided, wherein security information corresponding to an external object imported into the corporate portal is automatically mapped from the object's native security system into the corporate portal system. For each external object imported, the corporate portal maps external users and external groups identified by the native security into corresponding portal users and portal groups according to a predefined mapping process, and stores the results in a manner that associates the external object with those portal users and portal groups. A plurality of database tables and maps determines the outcome of the predefined mapping process. Advantageously, when new external users or groups are added, they are detected by a synchronization agent which then automatically updates the database tables and maps. When custom group security configurations are desired, or when new domains are added, the portal administrator may manipulate a subset of the database tables and maps to achieve the desired configuration. Advantageously, manually intensive operations such as object-by-object security stampings, and/or re-manipulation of individual security settings associated with re-instantiated crawls, are avoided.

摘要翻译： 提供了一种用于企业门户安全的方法，系统和计算机程序产品，其中对应于导入到企业门户中的外部对象的安全信息被自动地从对象的本机安全系统映射到企业门户系统中。 对于导入的每个外部对象，公司门户根据预定义的映射过程将外部用户和由本机安全性标识的外部组映射到相应的门户网站用户和门户组中，并以外部对象与门户网站用户相关联的方式存储结果 和门户组。 多个数据库表和映射确定预定义映射过程的结果。 有利地，当添加新的外部用户或组时，它们由同步代理检测，同步代理然后自动更新数据库表和映射。 当需要自定义组安全配置时，或添加新域时，门户网站管理员可以操纵数据库表和映射的子集，以实现所需的配置。 有利地，避免了手动密集的操作，例如逐个对象的安全标记，和/或重新操纵与重新实例化的爬行相关联的各个安全设置。

公开(公告)号：US08281404B2

公开(公告)日：2012-10-02

申请号：US11308377

申请日：2006-03-20

申请人： Bridget J. Frey ,  Matthew S. Markoff ,  Michael E. Smedberg

发明人： Bridget J. Frey ,  Matthew S. Markoff ,  Michael E. Smedberg

IPC分类号： H04L29/06

CPC分类号： G06F21/6236 ,  G06F2221/2141 ,  Y10S707/99939

摘要： A method, system, and computer program product for corporate portal security are provided, wherein security information corresponding to an external object imported into the corporate portal is automatically mapped from the object's native security system into the corporate portal system. For each external object imported, the corporate portal maps external users and external groups identified by the native security into corresponding portal users and portal groups according to a predefined mapping process, and stores the results in a manner that associates the external object with those portal users and portal groups. A plurality of database tables and maps determines the outcome of the predefined mapping process. Advantageously, when new external users or groups are added, they are detected by a synchronization agent which then automatically updates the database tables and maps. When custom group security configurations are desired, or when new domains are added, the portal administrator may manipulate a subset of the database tables and maps to achieve the desired configuration. Advantageously, manually intensive operations such as object-by-object security stampings, and/or re-manipulation of individual security settings associated with re-instantiated crawls, are avoided.

摘要翻译： 提供了一种用于企业门户安全的方法，系统和计算机程序产品，其中对应于导入到企业门户中的外部对象的安全信息被自动地从对象的本机安全系统映射到企业门户系统中。 对于导入的每个外部对象，公司门户根据预定义的映射过程将外部用户和由本机安全性标识的外部组映射到相应的门户网站用户和门户组中，并以外部对象与该门户网站用户相关联的方式存储结果 和门户组。 多个数据库表和映射确定预定义映射过程的结果。 有利地，当添加新的外部用户或组时，它们由同步代理检测，同步代理然后自动更新数据库表和映射。 当需要自定义组安全配置时，或添加新域时，门户网站管理员可以操纵数据库表和映射的子集，以实现所需的配置。 有利地，避免了手动密集的操作，例如逐个对象的安全标记，和/或重新操纵与重新实例化的爬行相关联的各个安全设置。

公开(公告)号：US07412720B1

公开(公告)日：2008-08-12

申请号：US10004301

申请日：2001-11-02

申请人： Bridget J. Frey ,  Michael Wei-Chin Young

发明人： Bridget J. Frey ,  Michael Wei-Chin Young

IPC分类号： G06F7/04 ,  G06F7/58 ,  G06F15/16 ,  G06F17/30 ,  G06K9/00 ,  G06K19/00 ,  H04L9/32

CPC分类号： H04L63/168 ,  H04L63/083

摘要： A method, apparatus, and computer-readable media include receiving a signal representing a request from a remote user for a secure resource residing on a network employing a generic application-layer network protocol; determining, without the intervention of the user, the type of security credential required to access the secure resource; and sending a signal representing a second request to the secure resource, the second request including a security credential for the user of the type required to access the secure resource.

摘要翻译： 一种方法，装置和计算机可读介质包括：接收来自远程用户的驻留在使用通用应用层网络协议的网络上的安全资源的请求的信号; 在没有用户干预的情况下确定访问安全资源所需的安全凭证的类型; 以及向所述安全资源发送表示第二请求的信号，所述第二请求包括用于访问所述安全资源所需类型的用户的安全凭证。