公开(公告)号：US07809938B2

公开(公告)日：2010-10-05

申请号：US11254545

申请日：2005-10-20

申请人： Giovanni M. Della-Libera ,  Christopher G. Kaler ,  Scott A. Konersmann ,  Butler W. Lampson ,  Paul J. Leach ,  Bradford H. Lovering ,  Steven E. Lucco ,  Stephen J. Millet ,  Richard F. Rashid ,  John P. Shewchuk

发明人： Giovanni M. Della-Libera ,  Christopher G. Kaler ,  Scott A. Konersmann ,  Butler W. Lampson ,  Paul J. Leach ,  Bradford H. Lovering ,  Steven E. Lucco ,  Stephen J. Millet ,  Richard F. Rashid ,  John P. Shewchuk

IPC分类号： H04L29/06

CPC分类号： H04L63/08 ,  G06Q20/3676 ,  H04L63/10 ,  H04L63/168 ,  H04L63/20 ,  H04L67/02 ,  H04L67/28 ,  H04L67/2804 ,  H04L67/2823

摘要： A distributed security system is provided. The distributed security system uses a security policy that is written in a policy language that is transport and security protocol independent as well as independent of cryptographic technologies. This security policy can be expressed using the language to create different security components allowing for greater scalability and flexibility. By abstracting underlying protocols and technologies, multiple environments and platforms can be supported.

摘要翻译： 提供分布式安全系统。 分布式安全系统使用以政策语言编写的安全策略，该策略语言是传输和安全协议独立的，而与密码技术无关。 该安全策略可以用语言来表示，以创建不同的安全组件，从而实现更大的可扩展性和灵活性。 通过抽象底层协议和技术，可以支持多个环境和平台。

公开(公告)号：US08302149B2

公开(公告)日：2012-10-30

申请号：US11254519

申请日：2005-10-20

申请人： Giovanni M. Della-Libera ,  Christopher G. Kaler ,  Scott A. Konersmann ,  Butler W. Lampson ,  Paul J. Leach ,  Bradford H. Lovering ,  Steven E. Lucco ,  Stephen J. Millet ,  Richard F. Rashid ,  John P. Shewchuk

发明人： Giovanni M. Della-Libera ,  Christopher G. Kaler ,  Scott A. Konersmann ,  Butler W. Lampson ,  Paul J. Leach ,  Bradford H. Lovering ,  Steven E. Lucco ,  Stephen J. Millet ,  Richard F. Rashid ,  John P. Shewchuk

IPC分类号： H04L29/06

CPC分类号： H04L63/08 ,  G06Q20/3676 ,  H04L63/10 ,  H04L63/168 ,  H04L63/20 ,  H04L67/02 ,  H04L67/28 ,  H04L67/2804 ,  H04L67/2823

摘要： A distributed security system is provided. The distributed security system uses a security policy that is written in a policy language that is transport and security protocol independent as well as independent of cryptographic technologies. This security policy can be expressed using the language to create different security components allowing for greater scalability and flexibility. By abstracting underlying protocols and technologies, multiple environments and platforms can be supported.

摘要翻译： 提供分布式安全系统。 分布式安全系统使用以政策语言编写的安全策略，该策略语言是传输和安全协议独立的，而与密码技术无关。 该安全策略可以用语言来表示，以创建不同的安全组件，从而实现更大的可扩展性和灵活性。 通过抽象底层协议和技术，可以支持多个环境和平台。

公开(公告)号：US07752431B2

公开(公告)日：2010-07-06

申请号：US11254264

申请日：2005-10-20

申请人： Giovanni M. Della-Libera ,  Christopher G. Kaler ,  Scott A. Konersmann ,  Butler W. Lampson ,  Paul J. Leach ,  Bradford H. Lovering ,  Steven E. Lucco ,  Stephen J. Millet ,  Richard F. Rashid ,  John P. Shewchuk

发明人： Giovanni M. Della-Libera ,  Christopher G. Kaler ,  Scott A. Konersmann ,  Butler W. Lampson ,  Paul J. Leach ,  Bradford H. Lovering ,  Steven E. Lucco ,  Stephen J. Millet ,  Richard F. Rashid ,  John P. Shewchuk

IPC分类号： H04L29/06

CPC分类号： H04L63/08 ,  G06Q20/3676 ,  H04L63/10 ,  H04L63/168 ,  H04L63/20 ,  H04L67/02 ,  H04L67/28 ,  H04L67/2804 ,  H04L67/2823

摘要： A distributed security system is provided. The distributed security system uses a security policy that is written in a policy language that is transport and security protocol independent as well as independent of cryptographic technologies. This security policy can be expressed using the language to create different security components allowing for greater scalability and flexibility. By abstracting underlying protocols and technologies, multiple environments and platforms can be supported.

公开(公告)号：US07752442B2

公开(公告)日：2010-07-06

申请号：US11254539

申请日：2005-10-20

申请人： Giovanni M. Della-Libera ,  Christopher G. Kaler ,  Scott A. Konersmann ,  Butler W. Lampson ,  Paul J. Leach ,  Bradford H. Lovering ,  Steven E. Luocco ,  Stephen J. Millet ,  Richard F. Rashid ,  John P. Shewchuk

发明人： Giovanni M. Della-Libera ,  Christopher G. Kaler ,  Scott A. Konersmann ,  Butler W. Lampson ,  Paul J. Leach ,  Bradford H. Lovering ,  Steven E. Luocco ,  Stephen J. Millet ,  Richard F. Rashid ,  John P. Shewchuk

IPC分类号： H04L9/32

CPC分类号： H04L63/08 ,  G06Q20/3676 ,  H04L63/10 ,  H04L63/168 ,  H04L63/20 ,  H04L67/02 ,  H04L67/28 ,  H04L67/2804 ,  H04L67/2823

摘要： A distributed security system is provided. The distributed security system uses a security policy that is written in a policy language that is transport and security protocol independent as well as independent of cryptographic technologies. This security policy can be expressed using the language to create different security components allowing for greater scalability and flexibility. By abstracting underlying protocols and technologies, multiple environments and platforms can be supported.

公开(公告)号：US08006295B2

公开(公告)日：2011-08-23

申请号：US11770677

申请日：2007-06-28

申请人： Carl M. Ellison ,  Paul J. Leach ,  Butler W. Lampson ,  Melissa W. Dunn ,  Ravindra N. Pandya ,  Charles W. Kaufman

发明人： Carl M. Ellison ,  Paul J. Leach ,  Butler W. Lampson ,  Melissa W. Dunn ,  Ravindra N. Pandya ,  Charles W. Kaufman

IPC分类号： G06F7/04

CPC分类号： H04L63/145 ,  G06F21/445 ,  G06F2221/2115 ,  G06F2221/2129 ,  H04L9/0891 ,  H04L63/0442 ,  H04L63/0823

摘要： The subject disclosure pertains to a domain identification system, comprising a principal that has a key and a mnemonically meaningless identifier, the mnemonically meaningless identifier is used to identify the component in a networked environment. The mnemonically meaningless identifier can be bound to the public key by a binding. The component may be part of a neighborhood of components, and each member component knows the members' binding.

摘要翻译： 主题公开涉及域识别系统，其包括具有密钥和经验无意义的标识符的主体，用于识别网络环境中的组件的经典无意义的标识符。 可以通过绑定将符号无意义的标识符绑定到公钥。 组件可以是组件邻域的一部分，并且每个成员组件都知道成员的绑定。

公开(公告)号：US20090007247A1

公开(公告)日：2009-01-01

申请号：US11770677

申请日：2007-06-28

申请人： Carl M. Ellison ,  Paul J. Leach ,  Butler W. Lampson ,  Melissa W. Dunn ,  Ravindra N. Pandya ,  Charles W. Kaufman

发明人： Carl M. Ellison ,  Paul J. Leach ,  Butler W. Lampson ,  Melissa W. Dunn ,  Ravindra N. Pandya ,  Charles W. Kaufman

IPC分类号： G06F21/20 ,  H04L9/32

CPC分类号： H04L63/145 ,  G06F21/445 ,  G06F2221/2115 ,  G06F2221/2129 ,  H04L9/0891 ,  H04L63/0442 ,  H04L63/0823

摘要： The subject disclosure pertains to a domain identification system, comprising a principal that has a key and a mnemonically meaningless identifier, the mnemonically meaningless identifier is used to identify the component in a networked environment. The mnemonically meaningless identifier can be bound to the public key by a binding. The component may be part of a neighborhood of components, and each member component knows the members' binding.

摘要翻译： 主题公开涉及域识别系统，其包括具有密钥和经验无意义的标识符的主体，用于识别网络环境中的组件的经典无意义的标识符。 可以通过绑定将符号无意义的标识符绑定到公钥。 组件可以是组件邻域的一部分，并且每个成员组件都知道成员的绑定。

公开(公告)号：US5940619A

公开(公告)日：1999-08-17

申请号：US738150

申请日：1996-10-25

申请人： Martin Abadi ,  James J. Horning ,  Butler W. Lampson ,  Roy Levin ,  Jean-Jacques Levy ,  Yuan Yu

发明人： Martin Abadi ,  James J. Horning ,  Butler W. Lampson ,  Roy Levin ,  Jean-Jacques Levy ,  Yuan Yu

IPC分类号： G06F9/44 ,  G06F9/45

CPC分类号： G06F8/311 ,  G06F8/433 ,  G06F9/45508

摘要： In a computerized method, a computer program is analyzed while the program is interpreted. The program is expressed in a first memory as input values and functions. Some of the input values are complex values which can have a plurality of component values. Each function operates on combinations of the input values and the functions of the program. The program is interpreted in a processor connected to the first memory. The processor is also connected to a second memory to store result values produced during the interpretation. Selected input values, components of the complex values, and functions are named only if the selected values, components, and functions are necessary to produce a selected result value. For each function of the program, the function which is interpreted, the input values on which the function depends, and the result value produced by the function during interpretation, are recorded in the second memory to dynamically perform a precise dependency analysis of the program.

摘要翻译： 在计算机化方法中，在解释程序时分析计算机程序。 该程序在第一个存储器中表示为输入值和函数。 一些输入值是可以具有多个分量值的复数值。 每个功能按照程序的输入值和功能的组合进行操作。 该程序在连接到第一存储器的处理器中解释。 处理器还连接到第二存储器以存储在解释期间产生的结果值。 选定的输入值，复数值的组成部分和功能仅在选定的值，组件和功能需要产生选定的结果值时进行命名。 对于程序的每个功能，解释的功能，功能所依赖的输入值和解释期间由功能产生的结果值被记录在第二存储器中以动态地执行程序的精确的依赖性分析。

公开(公告)号：US5594869A

公开(公告)日：1997-01-14

申请号：US432331

申请日：1995-05-01

申请人： William R. Hawe ,  Butler W. Lampson ,  Amar Gupta

发明人： William R. Hawe ,  Butler W. Lampson ,  Amar Gupta

IPC分类号： H04L29/06 ,  G06F7/00

CPC分类号： H04L63/0485 ,  H04L29/06 ,  H04L63/12 ,  H04L63/162

摘要： A technique to facilitate decryption processing of information packets transmitted over a communication network after encryption in accordance with a specific network protocol, the details of which may be subject to later change as standards are developed or modified. Programmable registers are used in the decryption process to hold information for identifying an incoming information packet as being subject to the specific protocol and requiring decryption, and identifying a starting location of a data field to be decrypted. Specifically one programmable register contains a first offset locating an identifier field in the packet, in which a cryptographic identifier will be found if the packet is one conforming to the protocol; another programmable register contains a cryptographic identifier value that will be found in the identifier field if decryption is to be performed, and a third programmable register contains a second offset to locate the beginning of a data field to be decrypted.

摘要翻译： 一种用于根据特定网络协议在加密之后通过通信网络传送的信息分组的解密处理的技术，其细节可能随着标准的开发或修改而随之而变化。 解密过程中使用可编程寄存器来保存用于识别进入信息包的信息为受特定协议的约束，并且需要解密，以及识别要被解密的数据字段的起始位置。 具体地，一个可编程寄存器包含定位分组中的标识符字段的第一偏移，其中如果分组是符合该协议的密钥标识符，将找到密码标识符; 另一个可编程寄存器包含将要在执行解密时在标识符字段中找到的加密标识符值，并且第三可编程寄存器包含第二偏移量以定位待解密的数据字段的开始。

公开(公告)号：US5315657A

公开(公告)日：1994-05-24

申请号：US589923

申请日：1990-09-28

申请人： Martin Abadi ,  Andrew C. Goldstein ,  Butler W. Lampson

发明人： Martin Abadi ,  Andrew C. Goldstein ,  Butler W. Lampson

IPC分类号： G06F9/46 ,  H04L9/32 ,  G06F13/14

CPC分类号： G06F9/468

摘要： An access control list for determining the access rights of principals in a distributed system to a system resource is disclosed wherein the access rights of a specified principal are based on the access rights delegated to that principal.

摘要翻译： 公开了用于确定分布式系统中的主体对系统资源的访问权限的访问控制列表，其中指定主体的访问权限基于委托给该委托人的访问权限。

公开(公告)号：US4152697A

公开(公告)日：1979-05-01

申请号：US713544

申请日：1976-08-11

申请人： Ronald E. Rider ,  Butler W. Lampson

发明人： Ronald E. Rider ,  Butler W. Lampson

IPC分类号： G06K15/10 ,  G06T9/00 ,  G09G5/24 ,  G09G5/42 ,  H03M7/46 ,  H04N1/419 ,  G06F3/00

CPC分类号： H03M7/46 ,  G06T9/005 ,  G09G5/24 ,  G09G5/42

摘要： System and method for parallel decoding of character data in run length format to produce data in dot matrix form for presentation to a display device. The data for successive runs is stored in registers and processed in parallel to provide address data for memory devices programmed to deliver predetermined output data patterns in response to the address data.

摘要翻译： 用于以游程长度格式并行解码字符数据的系统和方法以产生用于呈现给显示设备的点阵形式的数据。 用于连续运行的数据被存储在寄存器中并且被处理以提供编程为响应于地址数据传送预定输出数据模式的存储器件的地址数据。