公开(公告)号：US20110296529A1

公开(公告)日：2011-12-01

申请号：US12788173

申请日：2010-05-26

申请人： Hemant Madhav Bhanoo ,  Luke Bayes ,  Allan Mills

发明人： Hemant Madhav Bhanoo ,  Luke Bayes ,  Allan Mills

IPC分类号： H04L9/00 ,  G06F15/16

CPC分类号： H04L63/04 ,  G06Q20/356 ,  G06Q20/40 ,  G07F7/0826

摘要： Computer systems, methods, and computer readable media for facilitating a secure transaction are provided in which a client application is executed on a client computer. The client application initiates a request to a first domain comprising (i) a credential for the client application, (ii) a transaction identifier that uniquely identifies the request, and (iii) optionally, an identification of a user of the client application. Responsive to this request, the client receives a validated transaction module from the first domain. The client application loads the validated transaction module into a separate domain security sandbox that is segregated from memory space in which the client application is run. The validated transaction module conducts a validated transaction between the second domain and the validated transaction module. Separately, through the client application, a determination is made as to whether the transaction is complete by querying the first domain.

摘要翻译： 提供了用于促进安全事务的计算机系统，方法和计算机可读介质，其中在客户端计算机上执行客户端应用程序。 客户端应用程序向第一域启动请求，该请求包括（i）客户端应用的凭证，（ii）唯一地标识该请求的事务标识符，以及（iii）可选地，该客户端应用的用户的标识。 响应于此请求，客户端从第一个域接收验证的事务模块。 客户端应用程序将验证的事务模块加载到与运行客户端应用程序的内存空间隔离的单独的域安全沙箱中。 经过验证的事务模块在第二个域和经过验证的事务模块之间进行验证的事务。 另外，通过客户端应用程序，通过查询第一个域来确定交易是否完成。

公开(公告)号：US20130019098A1

公开(公告)日：2013-01-17

申请号：US13620698

申请日：2012-09-14

申请人： Vikas Gupta ,  Luke Bayes ,  Allan Mills ,  Mikhail Seregine ,  Hemant Madhav Bhanoo

发明人： Vikas Gupta ,  Luke Bayes ,  Allan Mills ,  Mikhail Seregine ,  Hemant Madhav Bhanoo

IPC分类号： G06F21/00

CPC分类号： H04L9/321 ,  H04L9/3247 ,  H04L2209/56

摘要： Systems and methods for authenticating a request between a client computer and a transaction server are provided. An application request, comprising an identity of a user originating the request, is received at an application server from the client. The application server constructs a signing key based on (i) the identity of the user making the request, (ii) a time based salt value, (iii) a secret shared between the application and transaction servers and, optionally, (iv) an identifier of the distributor or developer of the application. The signing key is embedded in an unbranded version of the application thereby branding the application. The branded application can sign a request with the signing key and submit the signed request to the transaction server with the identity of the user and the identifier of the distributor or developer of the application.

摘要翻译： 提供了用于在客户端计算机和事务服务器之间认证请求的系统和方法。 包括发起请求的用户的身份的应用请求在应用服务器处从客户接收。 应用服务器基于（i）提出请求的用户的身份，（ii）基于时间的盐值，（iii）应用和事务服务器之间共享的秘密，以及（iv） 应用程序的分发者或开发人员的标识符。 签名密钥嵌入在应用程序的无品牌版本中，从而标记应用程序。 品牌应用程序可以使用签名密钥对请求进行签名，并使用用户的身份和应用程序的分发者或开发人员的标识符将签名的请求提交给交易服务器。

公开(公告)号：US08296568B2

公开(公告)日：2012-10-23

申请号：US12607005

申请日：2009-10-27

申请人： Vikas Gupta ,  Luke Bayes ,  Allan Mills ,  Mikhail Seregine ,  Hemant Madhav Bhanoo

发明人： Vikas Gupta ,  Luke Bayes ,  Allan Mills ,  Mikhail Seregine ,  Hemant Madhav Bhanoo

IPC分类号： G06F21/00

CPC分类号： H04L9/321 ,  H04L9/3247 ,  H04L2209/56

摘要： Systems and methods for authenticating a request between a client computer and a transaction server are provided. An application request, comprising an identity of a user originating the request, is received at an application server from the client. The application server constructs a signing key based on (i) the identity of the user making the request, (ii) a time based salt value, (iii) a secret shared between the application and transaction servers and, optionally, (iv) an identifier of the distributor or developer of the application. The signing key is embedded in an unbranded version of the application thereby branding the application. The branded application can sign a request with the signing key and submit the signed request to the transaction server with the identity of the user and the identifier of the distributor or developer of the application.

摘要翻译： 提供了用于在客户端计算机和事务服务器之间认证请求的系统和方法。 包括发起请求的用户的身份的应用请求在应用服务器处从客户端接收。 应用服务器基于（i）提出请求的用户的身份，（ii）基于时间的盐值，（iii）应用和交易服务器之间共享的秘密，以及（iv） 应用程序的分发者或开发人员的标识符。 签名密钥嵌入在应用程序的无品牌版本中，从而标记应用程序。 品牌应用程序可以使用签名密钥对请求进行签名，并使用用户的身份和应用程序的分发者或开发人员的标识符将签名的请求提交给交易服务器。

公开(公告)号：US20110099376A1

公开(公告)日：2011-04-28

申请号：US12607005

申请日：2009-10-27

申请人： Vikas Gupta ,  Luke Bayes ,  Allan Mills ,  Mikhail Seregine ,  Hemant Madhav Bhanoo

发明人： Vikas Gupta ,  Luke Bayes ,  Allan Mills ,  Mikhail Seregine ,  Hemant Madhav Bhanoo

IPC分类号： H04L9/32

CPC分类号： H04L9/321 ,  H04L9/3247 ,  H04L2209/56

摘要： Systems and methods for authenticating a request between a client computer and a transaction server are provided. An application request, comprising an identity of a user originating the request, is received at an application server from the client. The application server constructs a signing key based on (i) the identity of the user making the request, (ii) a time based salt value, (iii) a secret shared between the application and transaction servers and, optionally, (iv) an identifier of the distributor or developer of the application. The signing key is embedded in an unbranded version of the application thereby branding the application. The branded application can sign a request with the signing key and submit the signed request to the transaction server with the identity of the user and the identifier of the distributor or developer of the application.

摘要翻译： 提供了用于在客户端计算机和事务服务器之间认证请求的系统和方法。 包括发起请求的用户的身份的应用请求在应用服务器处从客户端接收。 应用服务器基于（i）提出请求的用户的身份，（ii）基于时间的盐值，（iii）应用和交易服务器之间共享的秘密，以及（iv） 应用程序的分发者或开发人员的标识符。 签名密钥嵌入在应用程序的无品牌版本中，从而标记应用程序。 品牌应用程序可以使用签名密钥对请求进行签名，并使用用户的身份和应用程序的分发者或开发人员的标识符将签名的请求提交给交易服务器。

公开(公告)号：US08943322B2

公开(公告)日：2015-01-27

申请号：US13620698

申请日：2012-09-14

申请人： Vikas Gupta ,  Luke Bayes ,  Allan Mills ,  Mikhail Seregine ,  Hemant Madhav Bhanoo

发明人： Vikas Gupta ,  Luke Bayes ,  Allan Mills ,  Mikhail Seregine ,  Hemant Madhav Bhanoo

IPC分类号： H04L9/32

CPC分类号： H04L9/321 ,  H04L9/3247 ,  H04L2209/56

摘要： Systems and methods for authenticating a request between a client computer and a transaction server are provided. An application request, comprising an identity of a user originating the request, is received at an application server from the client. The application server constructs a signing key based on (i) the identity of the user making the request, (ii) a time based salt value, (iii) a secret shared between the application and transaction servers and, optionally, (iv) an identifier of the distributor or developer of the application. The signing key is embedded in an unbranded version of the application thereby branding the application. The branded application can sign a request with the signing key and submit the signed request to the transaction server with the identity of the user and the identifier of the distributor or developer of the application.

摘要翻译： 提供了用于在客户端计算机和事务服务器之间认证请求的系统和方法。 包括发起请求的用户的身份的应用请求在应用服务器处从客户端接收。 应用服务器基于（i）提出请求的用户的身份，（ii）基于时间的盐值，（iii）应用和交易服务器之间共享的秘密，以及（iv） 应用程序的分发者或开发人员的标识符。 签名密钥嵌入在应用程序的无品牌版本中，从而标记应用程序。 品牌应用程序可以使用签名密钥对请求进行签名，并使用用户的身份和应用程序的分发者或开发人员的标识符将签名的请求提交给交易服务器。

公开(公告)号：US20130139220A1

公开(公告)日：2013-05-30

申请号：US13747280

申请日：2013-01-22

申请人： Hemant Madhav Bhanoo ,  Luke Bayes ,  Allan Stephan Mills

发明人： Hemant Madhav Bhanoo ,  Luke Bayes ,  Allan Stephan Mills

IPC分类号： H04L29/06

CPC分类号： H04L63/04 ,  G06Q20/356 ,  G06Q20/40 ,  G07F7/0826

摘要： Computer systems, methods, and computer readable media for facilitating a secure transaction are provided in which a client application is executed on a client computer. The client application initiates a request to a first domain comprising (i) a credential for the client application, (ii) a transaction identifier that uniquely identifies the request, and (iii) optionally, an identification of a user of the client application. Responsive to this request, the client receives a validated transaction module from the first domain. The client application loads the validated transaction module into a separate domain security sandbox that is segregated from memory space in which the client application is run. The validated transaction module conducts a validated transaction between the second domain and the validated transaction module. Separately, through the client application, a determination is made as to whether the transaction is complete by querying the first domain.

摘要翻译： 提供了用于促进安全事务的计算机系统，方法和计算机可读介质，其中在客户端计算机上执行客户端应用程序。 客户端应用程序向第一域启动请求，该请求包括（i）客户端应用的凭证，（ii）唯一地标识该请求的事务标识符，以及（iii）可选地，该客户端应用的用户的标识。 响应于此请求，客户端从第一个域接收验证的事务模块。 客户端应用程序将验证的事务模块加载到与运行客户端应用程序的内存空间隔离的单独的域安全沙箱中。 经过验证的事务模块在第二个域和经过验证的事务模块之间进行验证的事务。 另外，通过客户端应用程序，通过查询第一个域来确定交易是否完成。

公开(公告)号：US08364959B2

公开(公告)日：2013-01-29

申请号：US12788173

申请日：2010-05-26

申请人： Hemant Madhav Bhanoo ,  Luke Bayes ,  Allan Stephan Mills

发明人： Hemant Madhav Bhanoo ,  Luke Bayes ,  Allan Stephan Mills

IPC分类号： G06F15/16 ,  H04L9/00

CPC分类号： H04L63/04 ,  G06Q20/356 ,  G06Q20/40 ,  G07F7/0826

摘要： Computer systems, methods, and computer readable media for facilitating a secure transaction are provided in which a client application is executed on a client computer. The client application initiates a request to a first domain comprising (i) a credential for the client application, (ii) a transaction identifier that uniquely identifies the request, and (iii) optionally, an identification of a user of the client application. Responsive to this request, the client receives a validated transaction module from the first domain. The client application loads the validated transaction module into a separate domain security sandbox that is segregated from memory space in which the client application is run. The validated transaction module conducts a validated transaction between the second domain and the validated transaction module. Separately, through the client application, a determination is made as to whether the transaction is complete by querying the first domain.

公开(公告)号：US07461206B2

公开(公告)日：2008-12-02

申请号：US11466016

申请日：2006-08-21

申请人： Hemant Madhav Bhanoo ,  Ozgun A. Erdogan ,  Tobias Holgers ,  Nevil A. Shah ,  Ryan J. Snodgrass

发明人： Hemant Madhav Bhanoo ,  Ozgun A. Erdogan ,  Tobias Holgers ,  Nevil A. Shah ,  Ryan J. Snodgrass

IPC分类号： G06F12/00 ,  G06F13/00 ,  G06F13/28

CPC分类号： G06F17/30902 ,  H04L67/28 ,  H04L67/2852

摘要： A facility for determining whether to consistency-check a cache entry is described. The facility randomly or pseudorandomly selects a value in a range. If the selected value satisfies a predetermined consistency-checking threshold within the range, the facility consistency-checks the entry, and may decide to propagate this knowledge to other cache managers. If, on the other hand, the selected value does not satisfy the consistency-checking threshold, the facility determines not to consistency-check the entry.

摘要翻译： 描述用于确定是否一致性检查缓存条目的设施。 随机或伪随机选择一个范围内的值。 如果所选择的值满足该范围内的预定的一致性检查阈值，则设备一致性检查条目，并且可以决定将该知识传播到其他缓存管理器。 另一方面，如果所选择的值不满足一致性检查阈值，则设备确定不一致 - 检查条目。

公开(公告)号：US07734872B2

公开(公告)日：2010-06-08

申请号：US12326041

申请日：2008-12-01

申请人： Hemant Madhav Bhanoo ,  Ozgun A. Erdogan ,  Tobias Holgers ,  Nevil A. Shah ,  Ryan J. Snodgrass

发明人： Hemant Madhav Bhanoo ,  Ozgun A. Erdogan ,  Tobias Holgers ,  Nevil A. Shah ,  Ryan J. Snodgrass

IPC分类号： G06F12/00

CPC分类号： G06F17/30902 ,  H04L67/28 ,  H04L67/2852

摘要： A facility for determining whether to consistency-check a cache entry is described. The facility randomly or pseudorandomly selects a value in a range. If the selected value satisfies a predetermined consistency-checking threshold within the range, the facility consistency-checks the entry, and may decide to propagate this knowledge to other cache managers. If, on the other hand, the selected value does not satisfy the consistency-checking threshold, the facility determines not to consistency-check the entry.

摘要翻译： 描述用于确定是否一致性检查缓存条目的设施。 随机或伪随机选择一个范围内的值。 如果所选择的值满足该范围内的预定的一致性检查阈值，则设备一致性检查条目，并且可以决定将该知识传播到其他缓存管理器。 另一方面，如果所选择的值不满足一致性检查阈值，则设备确定不一致 - 检查条目。

公开(公告)号：US20080046655A1

公开(公告)日：2008-02-21

申请号：US11466016

申请日：2006-08-21

申请人： Hemant Madhav Bhanoo ,  Ozgun A. Erdogan ,  Tobias Holgers ,  Nevil A. Shah ,  Ryan J. Snodgrass

发明人： Hemant Madhav Bhanoo ,  Ozgun A. Erdogan ,  Tobias Holgers ,  Nevil A. Shah ,  Ryan J. Snodgrass

IPC分类号： G06F12/00

CPC分类号： G06F17/30902 ,  H04L67/28 ,  H04L67/2852

摘要： A facility for determining whether to consistency-check a cache entry is described. The facility randomly or pseudorandomly selects a value in a range. If the selected value satisfies a predetermined consistency-checking threshold within the range, the facility consistency-checks the entry, and may decide to propagate this knowledge to other cache managers. If, on the other hand, the selected value does not satisfy the consistency-checking threshold, the facility determines not to consistency-check the entry.

摘要翻译： 描述用于确定是否一致性检查缓存条目的设施。 随机或伪随机选择一个范围内的值。 如果所选择的值满足该范围内的预定的一致性检查阈值，则设备一致性检查条目，并且可以决定将该知识传播到其他缓存管理器。 另一方面，如果所选择的值不满足一致性检查阈值，则设备确定不一致 - 检查条目。