-
公开(公告)号:US08561172B2
公开(公告)日:2013-10-15
申请号:US12201754
申请日:2008-08-29
申请人: Duane Buss , Andrew Hodgkinson , Tom Doman
发明人: Duane Buss , Andrew Hodgkinson , Tom Doman
摘要: A client includes a card selector, and receives a security policy from a relying party. If the client does not have an information card that can satisfy the security policy, the client can define a virtual information card, either from the security policy or by augmenting an existing information card. The client can also use a local security policy that controls how and when a virtual information card is defined. The virtual information card can then be used to generate a security token to satisfy the security policy.
摘要翻译: 客户端包括卡选择器,并从依赖方接收安全策略。 如果客户端没有可以满足安全策略的信息卡,则客户端可以从安全策略中或通过扩充现有信息卡来定义虚拟信息卡。 客户端还可以使用本地安全策略来控制虚拟信息卡的定义方式和时间。 然后可以使用虚拟信息卡来生成安全令牌以满足安全策略。
-
公开(公告)号:US20100058435A1
公开(公告)日:2010-03-04
申请号:US12201754
申请日:2008-08-29
申请人: Duane Buss , Andrew Hodgkinson , Tom Doman
发明人: Duane Buss , Andrew Hodgkinson , Tom Doman
摘要: A client includes a card selector, and receives a security policy from a relying party. If the client does not have an information card that can satisfy the security policy, the client can define a virtual information card, either from the security policy or by augmenting an existing information card. The client can also use a local security policy that controls how and when a virtual information card is defined. The virtual information card can then be used to generate a security token to satisfy the security policy.
摘要翻译: 客户端包括卡选择器,并从依赖方接收安全策略。 如果客户端没有可以满足安全策略的信息卡,则客户端可以从安全策略中或通过扩充现有信息卡来定义虚拟信息卡。 客户端还可以使用本地安全策略来控制虚拟信息卡的定义方式和时间。 然后可以使用虚拟信息卡来生成安全令牌以满足安全策略。
-
3.发明申请SYSTEM AND METHOD FOR PROVIDING REPUTATION RECIPROCITY WITH ANONYMOUS IDENTITIES 有权用匿名身份提供信誉重复的系统和方法公开(公告)号:US20090193520A1
公开(公告)日:2009-07-30
申请号:US12022518
申请日:2008-01-30
申请人: Duane Buss
发明人: Duane Buss
CPC分类号: H04L63/08 , G06F21/30 , G06Q10/107 , H04L63/0407 , H04L63/10
摘要: System and method for providing reciprocity in a reputation system are described. In one embodiment, the method comprises: responsive to receipt by a first entity of a Reputation Guarantee (“RG”) request from a second entity, creating a token in accordance with specifications set forth in the RG request and forwarding the token to the second entity, wherein the token may include reputation information developed using reputation forming information (“RFI”) of the second entity and policies concerning treatment of the RFI of the second entity; forwarding the token to a third entity by at least one of the first and second entities; responsive to the token received by the third entity not including the reputation information of the second entity: forwarding from the third entity to the first entity the token and an assertion request; and responsive to receipt of the token and the assertion request, forwarding by the first entity to the third entity an assertion including the reputation information in accordance with the policies concerning treatment of the RFI of the second entity.
摘要翻译: 描述在信誉系统中提供互惠的系统和方法。 在一个实施例中,该方法包括:响应于第一实体接收来自第二实体的信誉保证(“RG”)请求,根据在RG请求中阐述的规范创建令牌并将令牌转发到第二实体 实体,其中所述令牌可以包括使用所述第二实体的信誉形成信息(“RFI”)开发的信誉信息和关于所述第二实体的RFI的处理的策略; 由第一和第二实体中的至少一个将令牌转发给第三实体; 响应于不包括第二实体的信誉信息的第三实体接收的令牌:从第三实体转发到第一实体的令牌和断言请求; 以及响应于所述令牌和所述断言请求的接收,所述第一实体向所述第三实体转发包括所述信誉信息的声明,所述声明根据关于所述第二实体的RFI的处理的策略。
-
公开(公告)号:US20080222425A1
公开(公告)日:2008-09-11
申请号:US11682783
申请日:2007-03-06
申请人: Duane Buss
发明人: Duane Buss
IPC分类号: H04L9/00
CPC分类号: H04L63/126 , G06Q10/10 , H04L63/0823 , H04L63/123
摘要: A method for expressing and evaluating signed reputation assertions is disclosed. In one embodiment, a first entity receives a request to generate a signed assertion relating to a piece of content. The first entity generates a reputation statement about a second entity from reputation-forming information (RFI) about the second entity available to the first entity. The first entity then generates a signed assertion from the reputation statement and the piece of content at least in part by binding the piece of content to the reputation statement and signing a portion encompassing at least one of the bound piece of content and the bound reputation statement. The signed assertion is then transmitted to a receiving entity.
-
5.发明授权System and method for implementing an extended authentication and authorization credential store 有权用于实现扩展认证和授权凭证存储的系统和方法公开(公告)号:US08707400B2
公开(公告)日:2014-04-22
申请号:US11625663
申请日:2007-01-22
申请人: Duane Buss
发明人: Duane Buss
IPC分类号: H04L29/06
CPC分类号: H04L63/083 , G06F21/31 , G06F21/41 , G06F21/445 , G06F2221/2119 , G06Q20/4014 , H04L63/166
摘要: A system and method for consumer-side authorization and authentication is disclosed. In one embodiment, the method comprises receiving a request for a credential from a business-side party, matching the credential request to a set of available credentials, the available credentials comprising consumer-side information. The credential is retrieved from a credential store, and the authorization of the business-side party to receive the credential is evaluated before returning a response. In another embodiment, the system comprises a receiver module adapted to receive credential requests from business-side parties. The credential request is passed to a selection and matching module for matching against consumer-side credentials. The credential is retrieved from a storage and retrieval module, but is not passed until an authorization module allows a sender module to return a credential response to the business-side party.
摘要翻译: 公开了一种用于消费者侧授权和认证的系统和方法。 在一个实施例中,该方法包括从商业方接收对凭证的请求,将凭证请求与一组可用凭证相匹配,所述可用凭证包括消费者端信息。 从凭证存储中检索凭证,并在返回响应之前评估业务方对接收凭证的授权。 在另一个实施例中,系统包括适于从业务方接收凭证请求的接收器模块。 将凭证请求传递给选择和匹配模块,以匹配消费者端凭证。 凭证从存储和检索模块检索,但是不被传递,直到授权模块允许发送者模块向业务方返回凭证响应。
-
公开(公告)号:US20090094041A1
公开(公告)日:2009-04-09
申请号:US11869089
申请日:2007-10-09
申请人: Duane Buss
发明人: Duane Buss
IPC分类号: G06Q99/00
CPC分类号: G06Q30/06
摘要: System and method for representing agreements as reputation are disclosed. In one embodiment, the method comprises, in response to a request to generate an assertion relating to a piece of content, regenerating a reputation statement concerning an agreement from reputation-forming information (RFI) associated with an agreement; and generating an assertion from the reputation statement and the piece of content, the generating comprising binding the piece of content to the reputation statement.
摘要翻译: 披露代表协议作为声誉的制度和方法。 在一个实施例中,该方法响应于产生与一条内容相关的断言的请求,重新生成与协议相关联的信誉形成信息(RFI)的协议的声誉声明; 以及从所述声明语句和所述内容生成断言,所述生成包括将所述内容绑定到所述声明语句。
-
7.发明申请公开(公告)号:US20080288278A1
公开(公告)日:2008-11-20
申请号:US12184420
申请日:2008-08-01
申请人: Duane Buss
发明人: Duane Buss
CPC分类号: H04L63/126 , G06Q10/10 , H04L63/0823 , H04L63/123
摘要: A method for expressing and evaluating signed reputation assertions is disclosed. In one embodiment, a first entity receives a request to generate a signed assertion relating to a piece of content. The first entity generates a reputation statement about a second entity from reputation-forming information (RFI) about the second entity available to the first entity. The first entity then generates a signed assertion from the reputation statement and the piece of content at least in part by binding the piece of content to the reputation statement and signing a portion encompassing at least one of the bound piece of content and the bound reputation statement. The signed assertion is then transmitted to a receiving entity.
摘要翻译: 公开了一种表达和评估签名声誉声明的方法。 在一个实施例中,第一实体接收生成与一条内容相关的签名断言的请求。 第一实体从关于可用于第一实体的第二实体的信誉形成信息(RFI)生成关于第二实体的声明声明。 所述第一实体然后至少部分地通过将所述内容绑定到所述声誉声明并且签署包含所述限制的内容和绑定的声明声明中的至少一个的部分,从所述信誉声明和所述内容片段生成签名声明 。 签名的断言然后被传送到接收实体。
-
8.发明授权System and method for providing reputation reciprocity with anonymous identities 有权用匿名身份提供声誉互惠的系统和方法公开(公告)号:US08793773B2
公开(公告)日:2014-07-29
申请号:US12022518
申请日:2008-01-30
申请人: Duane Buss
发明人: Duane Buss
CPC分类号: H04L63/08 , G06F21/30 , G06Q10/107 , H04L63/0407 , H04L63/10
摘要: System and method for providing reciprocity in a reputation system are described. In one embodiment, the method comprises: responsive to receipt by a first entity of a Reputation Guarantee (“RG”) request from a second entity, creating a token in accordance with specifications set forth in the RG request and forwarding the token to the second entity, wherein the token may include reputation information developed using reputation forming information (“RFI”) of the second entity and policies concerning treatment of the RFI of the second entity; forwarding the token to a third entity by at least one of the first and second entities; responsive to the token received by the third entity not including the reputation information of the second entity: forwarding from the third entity to the first entity the token and an assertion request; and responsive to receipt of the token and the assertion request, forwarding by the first entity to the third entity an assertion including the reputation information in accordance with the policies concerning treatment of the RFI of the second entity.
摘要翻译: 描述在信誉系统中提供互惠的系统和方法。 在一个实施例中,该方法包括:响应于第一实体接收来自第二实体的信誉保证(“RG”)请求,根据在RG请求中阐述的规范创建令牌并将令牌转发到第二实体 实体,其中所述令牌可以包括使用所述第二实体的信誉形成信息(“RFI”)开发的信誉信息和关于所述第二实体的RFI的处理的策略; 由第一和第二实体中的至少一个将令牌转发给第三实体; 响应于不包括第二实体的信誉信息的第三实体接收的令牌:从第三实体转发到第一实体的令牌和断言请求; 以及响应于所述令牌和所述断言请求的接收,所述第一实体向所述第三实体转发包括所述信誉信息的声明,所述声明根据关于所述第二实体的RFI的处理的策略。
-
9.发明授权公开(公告)号:US08301901B2
公开(公告)日:2012-10-30
申请号:US11682783
申请日:2007-03-06
申请人: Duane Buss
发明人: Duane Buss
IPC分类号: G06F21/00
CPC分类号: H04L63/126 , G06Q10/10 , H04L63/0823 , H04L63/123
摘要: A method for expressing and evaluating signed reputation assertions is disclosed. In one embodiment, a first entity receives a request to generate a signed assertion relating to a piece of content. The first entity generates a reputation statement about a second entity from reputation-forming information (RFI) about the second entity available to the first entity. The first entity then generates a signed assertion from the reputation statement and the piece of content at least in part by binding the piece of content to the reputation statement and signing a portion encompassing at least one of the bound piece of content and the bound reputation statement. The signed assertion is then transmitted to a receiving entity.
摘要翻译: 公开了一种表达和评估签名声誉声明的方法。 在一个实施例中,第一实体接收生成与一条内容相关的签名断言的请求。 第一实体从关于可用于第一实体的第二实体的信誉形成信息(RFI)生成关于第二实体的声明声明。 所述第一实体然后至少部分地通过将所述内容绑定到所述声誉声明并且签署包含所述限制的内容和绑定的声明声明中的至少一个的部分,从所述信誉声明和所述内容片段生成签名声明 。 签名的断言然后被传送到接收实体。
-
公开(公告)号:US20070179802A1
公开(公告)日:2007-08-02
申请号:US11638121
申请日:2006-12-13
申请人: Duane Buss , Stephen Carter
发明人: Duane Buss , Stephen Carter
IPC分类号: G06Q99/00
CPC分类号: G06Q10/00 , G06Q10/06 , H04L63/102
摘要: Policy enforcement via attestations is provided. A principal operates within an environment and assumes roles having certain access rights to resources and the principal takes actions while assuming those roles. The roles and actions are monitored and attestations are raised under the proper set of circumstances. The attestations trigger policy restrictions that are enforced against the principal. The policy restrictions circumscribe the access rights to the resources.
摘要翻译: 提供通过认证的政策执行。 主体在环境中运行,并承担对资源具有特定访问权限的角色,并且主体在承担这些角色时采取行动。 监督角色和行动,并在适当的情况下提出认证。 证明会触发对委托人执行的政策限制。 政策限制限制了对资源的访问权限。
-
-
-
-
-
-
-
-
-
搜索结果
20 条记录 (耗时 0.02 秒)
