公开(公告)号：US07130839B2

公开(公告)日：2006-10-31

申请号：US09867790

申请日：2001-05-29

申请人： David Boreham ,  Peter Rowley ,  Mark C. Smith

发明人： David Boreham ,  Peter Rowley ,  Mark C. Smith

IPC分类号： G06F17/30

CPC分类号： H04L29/1215 ,  H04L29/12132 ,  H04L41/08 ,  H04L41/0893 ,  H04L61/1552 ,  H04L61/1564 ,  Y10S707/99933

摘要： Role is a comprehensive grouping mechanism. In a client-server directory system, roles transfer some of the complexity to the directory server. A role is defined by its role definition entry. Assigning entries to roles enables applications to locate the roles of an entry, rather than select a group and browse the members list. Additionally, roles allow for support of generated attribute values, and directory server-performed membership verification for clients. By changing a role definition, a user can change an entire organization with ease. Any client with appropriate access privileges can discover, identify and examine any role definition.

公开(公告)号：US06768988B2

公开(公告)日：2004-07-27

申请号：US09867788

申请日：2001-05-29

申请人： David Boreham ,  Peter Rowley ,  Mark C. Smith

发明人： David Boreham ,  Peter Rowley ,  Mark C. Smith

IPC分类号： G06F1730

CPC分类号： G06F17/30067 ,  Y10S707/956 ,  Y10S707/99933 ,  Y10S707/99939

摘要： Several types of roles are disclosed herein. The difference between the role types relates to their capabilities, which in turn derive from how they are implemented. When a client application whishes to identify all entries with some characteristic, e.g., everyone who is a manager and works in a designated building, a filtered role, which uses an LDAP filter in order to search a designated portion of the directory system and to identify those entries that possess the characteristics described in filter, is used.

摘要翻译： 本文公开了几种类型的角色。 角色类型之间的差异与其能力有关，而这些能力又源于实现方式。 当客户端应用程序用于识别具有某些特性的所有条目时，例如，所有作为管理员并且在指定的建筑物中工作的所有作者，过滤的角色使用LDAP过滤器来搜索目录系统的指定部分并识别 使用具有过滤器中描述的特征的条目。

公开(公告)号：US07016907B2

公开(公告)日：2006-03-21

申请号：US09867508

申请日：2001-05-29

申请人： David Boreham ,  Peter Rowley ,  Mark C. Smith

发明人： David Boreham ,  Peter Rowley ,  Mark C. Smith

IPC分类号： G06F17/00 ,  G06F7/00 ,  G06F17/30

CPC分类号： G06F17/30067 ,  Y10S707/99933 ,  Y10S707/99942 ,  Y10S707/99943 ,  Y10S707/99945

摘要： Role is a comprehensive grouping mechanism used in a directory server. In a client-server directory system, roles transfer some of the complexity to the directory server. A role is defined by its role definition entry. Assigning entries to roles enables applications to locate the roles of a target entry, rather than select a group and browse the members list. By changing a role definition, a user can change an entire organization with ease. Any client with appropriate access privileges can discover, identify and examine any role definition.An enumerated role is one that contains a list of target entries as members. By simply searching for the membership of the enumerated role, a client application will obtain a list of all members that possess that enumerated role.

公开(公告)号：US06785686B2

公开(公告)日：2004-08-31

申请号：US09867789

申请日：2001-05-29

申请人： David Boreham ,  Peter Rowley ,  Mark C. Smith

发明人： David Boreham ,  Peter Rowley ,  Mark C. Smith

IPC分类号： G06F1700

CPC分类号： H04L63/102 ,  G06F21/6227 ,  H04L61/1523 ,  H04L63/20 ,  Y10S707/99943

摘要： Role is a comprehensive grouping mechanism. In a client-server directory system, roles transfer some of the complexity to the directory server. A role is defined by its role definition entry. Any client with appropriate access privileges can discover, identify and examine any role definition. A “managed” role is one that can be configured to provide search results similar to those available with a static grouping mechanism, i.e., to create a group entry that contains a list of members. Managed roles allow a user to create an explicit enumerated list of members. A managed role is a label stored with a directory entry.

摘要翻译： 角色是一个综合的分组机制。 在客户机 - 服务器目录系统中，角色将一些复杂性传输到目录服务器。 角色由角色定义条目定义。 具有适当访问权限的任何客户端都可以发现，识别和检查任何角色定义。 “管理”角色是可以配置为提供类似于静态分组机制可用的搜索结果的角色，即创建包含成员列表的组条目。 受管角色允许用户创建一个显式枚举的成员列表。 受管角色是与目录条目一起存储的标签。

公开(公告)号：US07873614B2

公开(公告)日：2011-01-18

申请号：US10889451

申请日：2004-07-12

申请人： David Boreham ,  Peter Rowley ,  Mark C. Smith

发明人： David Boreham ,  Peter Rowley ,  Mark C. Smith

IPC分类号： G06F7/00

CPC分类号： H04L63/102 ,  G06F21/6227 ,  H04L61/1523 ,  H04L63/20 ,  Y10S707/99943

摘要： Role is a comprehensive grouping mechanism. In a client-server directory system, roles transfer some of the complexity to the directory server. A role is defined by its role definition entry. Any client with appropriate access privileges can discover, identify and examine any role definition. A “managed” role is one that can be configured to provide search results similar to those available with a static grouping mechanism, i.e., to create a group entry that contains a list of members. Managed roles allow a user to create an explicit enumerated list of members. A managed role is a label stored with a directory entry.

摘要翻译： 角色是一个综合的分组机制。 在客户机 - 服务器目录系统中，角色将一些复杂性传输到目录服务器。 角色由角色定义条目定义。 具有适当访问权限的任何客户端都可以发现，识别和检查任何角色定义。 “管理”角色是可以配置为提供类似于静态分组机制可用的搜索结果的角色，即创建包含成员列表的组条目。 受管角色允许用户创建一个明确列举的成员列表。 受管角色是与目录条目一起存储的标签。

公开(公告)号：US20050021498A1

公开(公告)日：2005-01-27

申请号：US10889451

申请日：2004-07-12

申请人： David Boreham ,  Peter Rowley ,  Mark Smith

发明人： David Boreham ,  Peter Rowley ,  Mark Smith

IPC分类号： G06F7/00 ,  G06F17/00 ,  G06F17/30 ,  G06F21/00 ,  H04L29/06 ,  H04L29/12

CPC分类号： H04L63/102 ,  G06F21/6227 ,  H04L61/1523 ,  H04L63/20 ,  Y10S707/99943

摘要： Role is a comprehensive grouping mechanism. In a client-server directory system, roles transfer some of the complexity to the directory server. A role is defined by its role definition entry. Any client with appropriate access privileges can discover, identify and examine any role definition. A “managed” role is one that can be configured to provide search results similar to those available with a static grouping mechanism, i.e., to create a group entry that contains a list of members. Managed roles allow a user to create an explicit enumerated list of members. A managed role is a label stored with a directory entry.

摘要翻译： 角色是一个综合的分组机制。 在客户机 - 服务器目录系统中，角色将一些复杂性传输到目录服务器。 角色由角色定义条目定义。 具有适当访问权限的任何客户端都可以发现，识别和检查任何角色定义。 “管理”角色是可以配置为提供类似于静态分组机制可用的搜索结果的角色，即创建包含成员列表的组条目。 受管角色允许用户创建一个显式枚举的成员列表。 受管角色是与目录条目一起存储的标签。

公开(公告)号：US07016893B2

公开(公告)日：2006-03-21

申请号：US09867791

申请日：2001-05-29

申请人： David Boreham ,  Peter Rowley

发明人： David Boreham ,  Peter Rowley

IPC分类号： G06F7/00 ,  G06F17/00 ,  G06F17/30 ,  G06F15/173 ,  G06F15/16

CPC分类号： G06F17/30067 ,  Y10S707/99933 ,  Y10S707/99943

摘要： Class of Service (CoS) allows a user to share attributes between entries in a way that is transparent to an application. This is achieved by generating the values of the attributes by a CoS logic at the time of or immediately prior to the time the entry is transmitted to an application, rather than storing the values of the attributes with the attribute itself. In alternative embodiments, the attributes may be generated at a time well before the time the entry is transmitted to an application.A CoS includes a CoS Definition entry and a Template entry. These two entries interact to provide attribute values to target entries within their CoS “scope” based on the target entry's DN, presence or absence of the target entry's CoS attribute, the attribute value stored in the target entry's CoS Template, and other factors. The CoS Definition entry, which is stored as an LDAP subentry below the branch at which it is effective, identifies the type of CoS being used. The Template entry contains a list of attribute values that are shared. Any change made to the template entry's attribute values is automatically applied to all entries that share the attribute.

公开(公告)号：US07020662B2

公开(公告)日：2006-03-28

申请号：US09867595

申请日：2001-05-29

申请人： David Boreham ,  Peter Rowley

发明人： David Boreham ,  Peter Rowley

IPC分类号： G06F7/00 ,  G06F17/00 ,  G06F17/30 ,  G06F15/177

CPC分类号： H04L61/1511 ,  H04L29/12066 ,  H04L61/1523 ,  H04L67/42 ,  H04L69/324 ,  Y10S707/962 ,  Y10S707/99933 ,  Y10S707/99942 ,  Y10S707/99945

摘要： Class of Service (CoS) is a mechanism that allows a user to share attributes between directory entries in a way transparent to an application. A CoS scheme includes a CoS Definition entry and a CoS Template entry. These two entries interact to provide attribute values to target entries within their CoS “scope”. In Classic CoS, an attribute-value pair is matched with a target entry based on the target entry's DN. The CoS Definition entry, which is stored as an LDAP subentry below the branch at which it is effective, identifies the type of CoS being used. The Template entry contains a list of attribute values that are shared. Any change made to the template entry's attribute values is automatically applied to all entries that share the attribute.

公开(公告)号：US09660812B2

公开(公告)日：2017-05-23

申请号：US11680049

申请日：2007-02-28

申请人： Peter Rowley

发明人： Peter Rowley

IPC分类号： G06Q20/00 ,  H04L9/32 ,  H04L29/08 ,  H04L29/06

CPC分类号： H04L9/3247 ,  H04L63/0442 ,  H04L63/126 ,  H04L67/306

摘要： A social networking site host includes, in a user's profile, information that has been attested to and verified by both the user and an independent verifier. The independent verifier is an accepted authority with direct knowledge of the information. Both the user and verifier attest to the information by digitally signing the information and including the digital signature with the information. The host or visitors to the social networking site can authenticate the information by using both digital signatures. By authenticating the information, visitors and users viewing information on the social networking site can assume that the information is trusted and accurate.

公开(公告)号：US20080208895A1

公开(公告)日：2008-08-28

申请号：US11679696

申请日：2007-02-27

申请人： Peter Rowley

发明人： Peter Rowley

IPC分类号： G06F7/00

CPC分类号： G06F17/30289 ,  H04L29/12132 ,  H04L41/0233 ,  H04L41/22 ,  H04L61/1552

摘要： Embodiments of the present invention provide a method and system for dynamically creating a view in a distributed processing system. The system can have nodes such as a service node and a directory with entries. An object class of a view can be defined as including an attribute type that accommodates a new attribute value. An attribute value associated with one of the nodes can be received at the service node whereupon it can be determined whether the attribute value is associated with the new attribute value. A new view can be created if the attribute value is associated with the new attribute value.

摘要翻译： 本发明的实施例提供了一种用于在分布式处理系统中动态创建视图的方法和系统。 系统可以具有诸如服务节点和具有条目的目录之类的节点。 视图的对象类可以被定义为包含适应新属性值的属性类型。 可以在服务节点处接收与节点之一相关联的属性值，从而可以确定属性值是否与新的属性值相关联。 如果属性值与新属性值相关联，则可以创建新视图。