-
公开(公告)号:US20060123472A1
公开(公告)日:2006-06-08
申请号:US11173008
申请日:2005-06-30
申请人: Donald Schmidt , Ryan Johnson , Kahren Tevosyan , Jeffrey Spelman , Krishnanand Shenoy , Harini Raghavan , David Mowers , Matthew Hur
发明人: Donald Schmidt , Ryan Johnson , Kahren Tevosyan , Jeffrey Spelman , Krishnanand Shenoy , Harini Raghavan , David Mowers , Matthew Hur
IPC分类号: G06F17/30
CPC分类号: H04L63/08 , G06F21/41 , H04L63/0209 , H04L63/0815 , H04L63/101
摘要: A system for authenticating computer users comprising, a single active directory disposed in a federated partner, a web server disposed in a DMZ associated with the intranet; and a client disposed in the federated partner coupled to the web server through an internet connection that is capable of signing on to the web server.
摘要翻译: 一种用于认证计算机用户的系统,包括:设置在联合伙伴中的单个活动目录,设置在与所述内联网相关联的DMZ中的web服务器; 以及通过能够登录到web服务器的因特网连接而配置在联合对方中的客户端,其耦合到web服务器。
-
公开(公告)号:US20060123234A1
公开(公告)日:2006-06-08
申请号:US11173004
申请日:2005-06-30
申请人: Donald Schmidt , Ryan Johnson , Kahren Tevosyan , Jeffrey Spelman , Krishnanand Shenoy , Harini Raghavan , David Mowers , Matthew Hur
发明人: Donald Schmidt , Ryan Johnson , Kahren Tevosyan , Jeffrey Spelman , Krishnanand Shenoy , Harini Raghavan , David Mowers , Matthew Hur
IPC分类号: H04L9/00
CPC分类号: H04L63/0209 , H04L63/0815 , H04L63/168
摘要: A system for authenticating computer users comprising a single active directory disposed in an intranet, a web server disposed in a DMZ associated with the intranet, and a web client coupled to the web server through an internet connection that is capable of signing on to the web server.
-
公开(公告)号:US20050038906A1
公开(公告)日:2005-02-17
申请号:US10639727
申请日:2003-08-13
申请人: John Banes , Joseph Joy , David Mowers , Cem Paya , Feng Sun
发明人: John Banes , Joseph Joy , David Mowers , Cem Paya , Feng Sun
IPC分类号: H04L29/06 , H04L29/08 , G06F15/173
CPC分类号: H04L67/2804 , H04L29/06 , H04L67/1002 , H04L67/1008 , H04L67/1017 , H04L67/1019 , H04L67/1023 , H04L67/1027 , H04L67/14 , H04L67/2819 , H04L69/329 , H04L2029/06054
摘要: A first exemplary media implementation includes processor-executable instructions that direct a device to perform actions including: creating a session identifier using a host identifier; and formulating a host session initiation message with the created session identifier. A first exemplary device implementation includes: at least one processor; and one or more media including processor-executable instructions that direct the device to perform actions including: formulating a host session message with a session identifier that is created responsive to a host identifier; and sending the formulated host session message that includes the session identifier from the device. A second exemplary media implementation includes a data structure that has a message including a session identifier field, at least part of the session identifier field including a host identifier. A second exemplary device implementation includes: a host identifier; and a session identifier creator that is adapted to create a session identifier using the host identifier.
摘要翻译: 第一示例性媒体实现包括指导设备执行动作的处理器可执行指令,包括:使用主机标识符创建会话标识符; 以及使用所创建的会话标识符来制定主机会话发起消息。 第一示例性设备实现包括:至少一个处理器; 以及一个或多个媒体,包括指导设备执行动作的处理器可执行指令,包括:使用响应于主机标识符创建的会话标识符来制定主机会话消息; 并且从设备发送包括会话标识符的配制主机会话消息。 第二示例性媒体实现包括具有包括会话标识符字段的消息的数据结构,该会话标识符字段的至少一部分包括主机标识符。 第二示例性设备实现包括:主机标识符; 以及适于使用主机标识符创建会话标识符的会话标识符创建器。
-
公开(公告)号:US20050038905A1
公开(公告)日:2005-02-17
申请号:US10639516
申请日:2003-08-13
申请人: John Banes , Joseph Joy , David Mowers , Cem Paya , Feng Sun
发明人: John Banes , Joseph Joy , David Mowers , Cem Paya , Feng Sun
IPC分类号: H04L29/06 , H04L29/08 , G06F15/173
CPC分类号: H04L29/06 , H04L29/06197 , H04L29/06319 , H04L29/06326 , H04L29/08252 , H04L29/08576 , H04L67/14 , H04L67/146 , H04L67/327
摘要: An exemplary network gateway is capable of accepting a session-related message having a session identifier field; the network gateway is adapted to extract a host identifier from a value populating the session identifier field and to perform a routing operation for the session-related message using the host identifier. For an exemplary media implementation, processor-executable instructions direct a device to perform actions including: ascertaining a host identifier from a session identifier field of a session message; and routing the session message responsive to the ascertained host identifier. An exemplary apparatus includes: at least one processor; and one or more media including processor-executable instructions that are capable of being executed by the at least one processor to direct the apparatus to perform actions including: receiving a session message having a session identifier including a host identifier; and routing the session message responsive to the host identifier.
摘要翻译: 示例性网络网关能够接受具有会话标识符字段的会话相关消息; 网络网关适于从填充会话标识符字段的值中提取主机标识符,并且使用主机标识符执行与会话相关消息的路由操作。 对于示例性媒体实现,处理器可执行指令指示设备执行动作,包括:从会话消息的会话标识符字段中确定主机标识符; 以及响应于所确定的主机标识符来路由会话消息。 示例性装置包括:至少一个处理器; 以及一个或多个媒体,包括能够由所述至少一个处理器执行以指导所述设备执行动作的处理器可执行指令,包括:接收具有包括主机标识符的会话标识符的会话消息; 以及响应于所述主机标识符路由所述会话消息。
-
公开(公告)号:US07188254B2
公开(公告)日:2007-03-06
申请号:US10645319
申请日:2003-08-20
IPC分类号: G06F9/00
CPC分类号: H04L63/102 , H04L67/104
摘要: Disclosed are peer-to-peer computer program products, methods, and systems in which a remote peer on a peer-to-peer network is granted or denied access to a resource based on the credentials presented by the remote peer. In accordance with the disclosed subject matter, an access token that includes one or more security identification values which represent respectively one or more access rights in an access control system is generated. An execution thread that is associated with the access token thus generated attempts to access the resource on behalf of the remote peer. In some embodiments, the access control system includes a generic user account, and the access token that is generated for the remote peer includes the security identification value associated with the generic user account in the access control system.
摘要翻译: 披露的是对等计算机程序产品,方法和系统,其中基于由远程对等体呈现的证书,对等网络上的远程对等体被授予或拒绝对资源的访问。 根据所公开的主题,生成包括在访问控制系统中分别表示一个或多个访问权限的一个或多个安全标识值的访问令牌。 与访问令牌相关联的执行线程因此产生代表远程对等体访问资源的尝试。 在一些实施例中,访问控制系统包括通用用户帐户,并且为远程对等方生成的访问令牌包括与访问控制系统中的通用用户帐户相关联的安全标识值。
-
公开(公告)号:US20050044411A1
公开(公告)日:2005-02-24
申请号:US10645319
申请日:2003-08-20
CPC分类号: H04L63/102 , H04L67/104
摘要: Disclosed are peer-to-peer computer program products, methods, and systems in which a remote peer on a peer-to-peer network is granted or denied access to a resource based on the credentials presented by the remote peer. In accordance with the disclosed subject matter, an access token that includes one or more security identification values which represent respectively one or more access rights in an access control system is generated. An execution thread that is associated with the access token thus generated attempts to access the resource on behalf of the remote peer. In some embodiments, the access control system includes a generic user account, and the access token that is generated for the remote peer includes the security identification value associated with the generic user account in the access control system.
摘要翻译: 披露的是对等计算机程序产品,方法和系统,其中基于由远程对等体呈现的证书,对等网络上的远程对等体被授予或拒绝对资源的访问。 根据所公开的主题,生成包括在访问控制系统中分别表示一个或多个访问权限的一个或多个安全标识值的访问令牌。 与访问令牌相关联的执行线程因此产生代表远程对等体访问资源的尝试。 在一些实施例中,访问控制系统包括通用用户帐户,并且为远程对等方生成的访问令牌包括与访问控制系统中的通用用户帐户相关联的安全标识值。
-
-
-
-
-