-
公开(公告)号:US09003186B2
公开(公告)日:2015-04-07
申请号:US12179441
申请日:2008-07-24
CPC分类号: H04L63/08 , H04L9/3234 , H04L9/3297 , H04L63/0442 , H04L2209/60
摘要: Systems, methods and apparatus for a distributed security that provides authentication and authorization management. The system can include an epoch manager that is used to generate authentication and authorization data that remain valid only for an epoch. The epoch manager can generate an epoch key pair that can be used to encrypt and decrypt the authentication and authorization data during the epoch that the key is valid. The epoch manager can also associate the contents of the data with the epoch in which it was created, so that at decrypting the epoch that the data was generated in can be identified.
摘要翻译: 用于提供认证和授权管理的分布式安全性的系统,方法和设备。 该系统可以包括一个历元管理器,用于生成仅在一个时期保持有效的认证和授权数据。 历元管理器可以生成一个时期密钥对,可以用于在密钥有效的时期期间加密和解密认证和授权数据。 纪元管理器还可以将数据的内容与其创建的时期相关联,以便在解密生成数据的时代可以被识别。
-
公开(公告)号:US20100024006A1
公开(公告)日:2010-01-28
申请号:US12179403
申请日:2008-07-24
IPC分类号: H04L9/32
CPC分类号: H04L63/08 , H04L63/166 , H04L63/20
摘要: Systems, methods and apparatus for a distributed security that provides authentication and authorization management. The system can include a state manager that is used to identify and maintain the source associated with a client browser that submits requests to the state manager. The state manager can allow requests that are authorized and request authorization for requests that are not. The state manager can maintain the states associated with each domain to reduce the number of transaction needed to authenticate and/or authorize subsequent requests to the same domain or to different domains.
摘要翻译: 用于提供认证和授权管理的分布式安全性的系统,方法和设备。 该系统可以包括状态管理器,其用于识别和维护与向国家管理器提交请求的客户端浏览器相关联的源。 状态管理器可以允许被授权的请求,并请求不是请求的请求。 状态管理器可以维护与每个域相关联的状态,以减少对同一域或不同域进行认证和/或授权后续请求所需的事务数量。
-
公开(公告)号:US08806201B2
公开(公告)日:2014-08-12
申请号:US12179377
申请日:2008-07-24
CPC分类号: H04L9/3234 , H04L9/3297 , H04L61/1523 , H04L63/0442 , H04L63/068 , H04L63/0807 , H04L63/102 , H04L67/02 , H04L2209/60 , H04L2463/121
摘要: Systems, methods and apparatus for a distributed security that provides authentication and authorization management. The system can include an epoch processor that is used to validate authentication and authorization data that is valid only for an epoch. The epoch processor can maintain a public key that can be used to decrypt the authentication and authorization data during the epoch that the key is valid. The epoch processor can receive a new public key during each epoch. The epoch processor can also determine if the authentication or authorization data was fraudulently generated based on the contents of the data, and verifying whether the data is valid for the epoch in which it was decrypted.
摘要翻译: 用于提供认证和授权管理的分布式安全性的系统,方法和设备。 该系统可以包括用于验证仅对于时代有效的认证和授权数据的历元处理器。 纪元处理器可以维护公钥,该密钥可用于在密钥有效的时期期间解密认证和授权数据。 时代处理器可以在每个时期接收新的公钥。 时标处理器还可以基于数据的内容来确定认证或授权数据是否被欺诈地生成,并且验证数据是否对于其被解密的时期有效。
-
公开(公告)号:US08656462B2
公开(公告)日:2014-02-18
申请号:US12179403
申请日:2008-07-24
IPC分类号: G06F7/04
CPC分类号: H04L63/08 , H04L63/166 , H04L63/20
摘要: Systems, methods and apparatus for a distributed security that provides authentication and authorization management. The system can include a state manager that is used to identify and maintain the source associated with a client browser that submits requests to the state manager. The state manager can allow requests that are authorized and request authorization for requests that are not. The state manager can maintain the states associated with each domain to reduce the number of transaction needed to authenticate and/or authorize subsequent requests to the same domain or to different domains.
摘要翻译: 用于提供认证和授权管理的分布式安全性的系统,方法和设备。 该系统可以包括状态管理器,其用于识别和维护与向国家管理器提交请求的客户端浏览器相关联的源。 状态管理器可以允许被授权的请求,并请求不是请求的请求。 状态管理器可以维护与每个域相关联的状态,以减少对同一域或不同域进行认证和/或授权后续请求所需的事务数量。
-
公开(公告)号:US20100024014A1
公开(公告)日:2010-01-28
申请号:US12179492
申请日:2008-07-24
IPC分类号: H04L9/32
CPC分类号: H04L63/20 , H04L9/3213 , H04L63/08 , H04L63/0815 , H04L63/083 , H04L63/10 , H04L63/102 , H04L63/1433
摘要: Systems, methods and apparatus for a distributed security that provides authentication and authorization management. The system can include a source processor that is used to identify the source associated with a request for authentication or authorization. The source processor can maintain the initial source associated with the request through the use of an association token. The associate token can be transmitted with each subsequent request that includes authentication or authorization data. The source processor can use the associate token to verify that the source associated with the initial request is the same as the source associated with subsequent authentication and authorization requests.
摘要翻译: 用于提供认证和授权管理的分布式安全性的系统,方法和设备。 该系统可以包括用于标识与认证或授权请求相关联的源的源处理器。 源处理器可以通过使用关联令牌来维护与请求相关联的初始源。 每个后续请求可以发送关联令牌,其中包括认证或授权数据。 源处理器可以使用关联令牌来验证与初始请求相关联的源与与后续认证和授权请求相关联的源相同。
-
公开(公告)号:US20100023762A1
公开(公告)日:2010-01-28
申请号:US12179377
申请日:2008-07-24
IPC分类号: H04L9/06
CPC分类号: H04L9/3234 , H04L9/3297 , H04L61/1523 , H04L63/0442 , H04L63/068 , H04L63/0807 , H04L63/102 , H04L67/02 , H04L2209/60 , H04L2463/121
摘要: Systems, methods and apparatus for a distributed security that provides authentication and authorization management. The system can include an epoch processor that is used to validate authentication and authorization data that is valid only for an epoch. The epoch processor can maintain a public key that can be used to decrypt the authentication and authorization data during the epoch that the key is valid. The epoch processor can receive a new public key during each epoch. The epoch processor can also determine if the authentication or authorization data was fraudulently generated based on the contents of the data, and verifying whether the data is valid for the epoch in which it was decrypted.
摘要翻译: 用于提供认证和授权管理的分布式安全性的系统,方法和设备。 该系统可以包括用于验证仅对于时代有效的认证和授权数据的时期处理器。 纪元处理器可以维护公钥,该密钥可用于在密钥有效的时期期间解密认证和授权数据。 时代处理器可以在每个时期接收新的公钥。 时标处理器还可以基于数据的内容来确定认证或授权数据是否被欺诈地生成,并且验证数据是否对于其被解密的时期有效。
-
公开(公告)号:US20100020967A1
公开(公告)日:2010-01-28
申请号:US12179441
申请日:2008-07-24
CPC分类号: H04L63/08 , H04L9/3234 , H04L9/3297 , H04L63/0442 , H04L2209/60
摘要: Systems, methods and apparatus for a distributed security that provides authentication and authorization management. The system can include an epoch manager that is used to generate authentication and authorization data that remain valid only for an epoch. The epoch manager can generate an epoch key pair that can be used to encrypt and decrypt the authentication and authorization data during the epoch that the key is valid. The epoch manager can also associate the contents of the data with the epoch in which it was created, so that at decrypting the epoch that the data was generated in can be identified.
摘要翻译: 用于提供认证和授权管理的分布式安全性的系统,方法和设备。 该系统可以包括一个历元管理器,用于生成仅在一个时期保持有效的认证和授权数据。 历元管理器可以生成一个时期密钥对,可以用于在密钥有效的时期期间加密和解密认证和授权数据。 纪元管理器还可以将数据的内容与其创建的时期相关联,以便在解密生成数据的时代可以被识别。
-
公开(公告)号:US09379895B2
公开(公告)日:2016-06-28
申请号:US12179492
申请日:2008-07-24
CPC分类号: H04L63/20 , H04L9/3213 , H04L63/08 , H04L63/0815 , H04L63/083 , H04L63/10 , H04L63/102 , H04L63/1433
摘要: Systems, methods and apparatus for a distributed security that provides authentication and authorization management. The system can include a source processor that is used to identify the source associated with a request for authentication or authorization. The source processor can maintain the initial source associated with the request through the use of an association token. The associate token can be transmitted with each subsequent request that includes authentication or authorization data. The source processor can use the associate token to verify that the source associated with the initial request is the same as the source associated with subsequent authentication and authorization requests.
摘要翻译: 用于提供认证和授权管理的分布式安全性的系统,方法和设备。 该系统可以包括用于标识与认证或授权请求相关联的源的源处理器。 源处理器可以通过使用关联令牌来维护与请求相关联的初始源。 每个后续请求可以发送关联令牌,其中包括认证或授权数据。 源处理器可以使用关联令牌来验证与初始请求相关联的源与与后续认证和授权请求相关联的源相同。
-
公开(公告)号:US08656154B1
公开(公告)日:2014-02-18
申请号:US13151369
申请日:2011-06-02
申请人: Kailash Kailash , Amarnath Mullick
发明人: Kailash Kailash , Amarnath Mullick
IPC分类号: H04L29/06
CPC分类号: H04L9/088 , H04L9/0891 , H04L63/0807
摘要: A cloud based service use may be logged into the service through multiple client devices simultaneously. Methods, systems, and computer program products base upon cryptographic challenge response are provide to efficiently and securely simultaneously effect a logout from the cloud based service at one or many logged-in client devices associated with the user. When a valid logout request is received by the cloud based service, a current key associated with the user is invalidated, and in some instances, replaced with a new key. Upon subsequent attempt to use the cloud based service by the user, one or more tokens residing on any previously logged-in client device associated the user will not allow cloud based service usage until the user validly logs into the cloud-based service and receives one or more new tokens based upon the new key at each client device.
摘要翻译: 基于云的服务使用可能会同时通过多个客户端设备登录到该服务中。 提供了基于加密挑战响应的方法,系统和计算机程序产品,以有效和安全地同时实现与用户相关联的一个或多个登录客户端设备的基于云的服务的注销。 当基于云的服务接收到有效的注销请求时,与用户相关联的当前密钥无效,并且在某些情况下被替换为新密钥。 在用户随后尝试使用基于云的服务时,驻留在与用户相关联的任何先前登录的客户端设备上的一个或多个令牌将不允许基于云的服务使用,直到用户有效地登录到基于云的服务并接收一个 或更多新的令牌,基于每个客户端设备的新密钥。
-
10.发明授权公开(公告)号:US08869259B1
公开(公告)日:2014-10-21
申请号:US13111753
申请日:2011-05-19
申请人: Sivaprasad Udupa , Narinder Paul , Jose Raphel , Kailash Kailash
发明人: Sivaprasad Udupa , Narinder Paul , Jose Raphel , Kailash Kailash
IPC分类号: H04L29/06
CPC分类号: H04L63/1483 , H04L63/0823 , H04L63/20
摘要: A cloud based system that facilitates inspection of secure content and inexpensively detects the presence of a Man-in-the-Middle attack in a client-server communication is disclosed. Through inspection of the server certificate, no Man-in-the-Middle attack between server and the system is ensured; through inspection and designation of the client certificate, absence of a Man-in-the-Middle attack between the cloud based system and the client is ensured. In this way, the cloud based system can perform its usual policy enforcement functions with respect to secure content while avoiding Man-in-the-Middle attacks.
摘要翻译: 公开了一种基于云的系统,其便于检查安全内容并且廉价地检测客户端 - 服务器通信中的中间人攻击的存在。 通过检查服务器证书,确保服务器与系统之间无中间人的攻击; 通过检查和指定客户端证书,确保了基于云的系统和客户端之间的中间人中的攻击。 以这种方式,基于云的系统可以在安全内容方面执行其通常的策略执行功能,同时避免中间人攻击。
-
-
-
-
-
-
-
-
-
搜索结果
75 条记录 (耗时 0.021 秒)
