-
1.发明申请公开(公告)号:US20110041171A1
公开(公告)日:2011-02-17
申请号:US12608389
申请日:2009-10-29
CPC分类号: H04L63/20 , G06Q10/10 , H04L63/0281 , H04L63/08 , H04L63/0884
摘要: Techniques for virtual Representational State Transfer (REST) interfaces are provided. A proxy is interposed between a client and a REST service over a network. The proxy performs independent authentication of the client and provides credentials to the client and for the client to authenticate to the REST service using a REST service authentication mechanism. The proxy inspects requests and responses and translates the requests and responses into formats expected by the client and the REST service. Moreover, the proxy enforces policy and audits the requests and responses occurring between the client and the REST service over the network.
摘要翻译: 提供了虚拟表示状态转移(REST)接口的技术。 代理服务器介于客户端和通过网络的REST服务之间。 代理执行客户端的独立身份验证,并向客户端提供凭据,并为客户端使用REST服务验证机制向REST服务进行身份验证。 代理检查请求和响应,并将请求和响应转换为客户端和REST服务所期望的格式。 此外,代理强制执行策略并对通过网络在客户端和REST服务之间发生的请求和响应进行审计。
-
2.发明授权公开(公告)号:US09049182B2
公开(公告)日:2015-06-02
申请号:US12608389
申请日:2009-10-29
CPC分类号: H04L63/20 , G06Q10/10 , H04L63/0281 , H04L63/08 , H04L63/0884
摘要: Techniques for virtual Representational State Transfer (REST) interfaces are provided. A proxy is interposed between a client and a REST service over a network. The proxy performs independent authentication of the client and provides credentials to the client and for the client to authenticate to the REST service using a REST service authentication mechanism. The proxy inspects requests and responses and translates the requests and responses into formats expected by the client and the REST service. Moreover, the proxy enforces policy and audits the requests and responses occurring between the client and the REST service over the network.
摘要翻译: 提供了虚拟表示状态转移(REST)接口的技术。 代理服务器介于客户端和通过网络的REST服务之间。 代理执行客户端的独立身份验证,并向客户端提供凭据,并为客户端使用REST服务验证机制向REST服务进行身份验证。 代理检查请求和响应,并将请求和响应转换为客户端和REST服务所期望的格式。 此外,代理强制执行策略并对通过网络在客户端和REST服务之间发生的请求和响应进行审计。
-
公开(公告)号:US20140189775A1
公开(公告)日:2014-07-03
申请号:US13728224
申请日:2012-12-27
申请人: Lloyd Leon Burch , Carolyn B. McClain , Robert Skousen Stilmar , Dipto Chakravarty , Baha Masoud , Michael F. Angelo
发明人: Lloyd Leon Burch , Carolyn B. McClain , Robert Skousen Stilmar , Dipto Chakravarty , Baha Masoud , Michael F. Angelo
IPC分类号: H04L29/06
CPC分类号: H04L63/10 , G01R31/31705 , G06F21/00 , G06F21/606 , H04L63/0428
摘要: Techniques for secure debugging and monitoring are presented. An end user requests a secure token for logging information with a remote service. A secure monitoring and debugging token service provides the secure token. The remote service validates the secure token and configures itself for capturing information and reporting the captured information based on the secure token.
摘要翻译: 介绍了安全调试和监控技术。 终端用户请求一个安全的令牌用远程服务记录信息。 安全的监控和调试令牌服务提供了安全令牌。 远程服务验证安全令牌,并配置自身以捕获信息并基于安全令牌报告捕获的信息。
-
公开(公告)号:US20100043049A1
公开(公告)日:2010-02-18
申请号:US12192688
申请日:2008-08-15
IPC分类号: H04L9/32
CPC分类号: H04L63/08 , H04L63/102 , H04L63/20
摘要: Techniques for identity and policy enabled collaboration are provided. Access to assets of an enterprise is governed by identity relationships. A policy defines security restrictions between collaborating network resources based on identities assigned to the network resources. During collaboration, the security restrictions are enforced.
摘要翻译: 提供了身份和政策启用协作的技术。 访问企业的资产由身份关系管理。 一种策略定义了基于分配给网络资源的身份的协作网络资源之间的安全限制。 在合作期间,执行安全限制。
-
公开(公告)号:US07376134B2
公开(公告)日:2008-05-20
申请号:US10909633
申请日:2004-08-02
IPC分类号: H04L12/56
CPC分类号: H04L69/16 , H04L29/06755 , H04L45/306 , H04L45/34 , H04L63/0272 , H04L63/0823 , H04L65/40
摘要: Techniques are provided for establishing privileged paths for data packets over a network. A data packet is received with a header; the header includes a route selector. The route selector assists in resolving a privileged path for the data packet. The data packet is injected into the network over the resolved privileged path.
摘要翻译: 提供了用于通过网络为数据分组建立特权路径的技术。 一个头部接收到一个数据包; 标题包括路由选择器。 路由选择器有助于解析数据包的特权路径。 数据包通过已解决的特权路径注入网络。
-
公开(公告)号:US20110010339A1
公开(公告)日:2011-01-13
申请号:US12608427
申请日:2009-10-29
CPC分类号: H04L41/0893 , G06F17/30067 , G06F17/30082 , G06F17/30563 , H04L47/782 , H04L63/20
摘要: Techniques for cloud control and management are provided. The control, creation, and management of workloads in distributed infrastructures are coordinated via a master Configuration Management Database (CMDB). The master CMDB is also used to unify the multiple distributed infrastructures so that the workloads are rationalized. Moreover, data centers are coordinated with the distributed infrastructures so the configuration settings and policies included in the master CMDB are enforced and synchronized throughout the network.
摘要翻译: 提供云控制和管理技术。 通过主配置管理数据库(CMDB)协调分布式基础设施中工作负载的控制,创建和管理。 主CMDB还用于统一多个分布式基础架构,使工作负载合理化。 此外,数据中心与分布式基础架构协调一致,因此主CMDB中包含的配置设置和策略在整个网络中实施和同步。
-
公开(公告)号:US07681229B1
公开(公告)日:2010-03-16
申请号:US10873977
申请日:2004-06-22
CPC分类号: H04L63/0281 , H04L63/08
摘要: Techniques are provided for proxy authentication. A proxy includes a first port, a second port, and a secure port; each port processing a different service. Requests received on the first and second ports which require authentication are redirected to the secure port. The secure port processes an authentication router service. The authentication router service forwards requests for authentication to selective authentication services. The authentication services authenticate the requests over the secure port.
摘要翻译: 提供技术用于代理身份验证。 代理包括第一端口,第二端口和安全端口; 每个端口处理不同的服务。 在需要认证的第一和第二端口上接收到的请求被重定向到安全端口。 安全端口处理认证路由器服务。 认证路由器服务将认证请求转发给选择性认证服务。 认证服务通过安全端口认证请求。
-
8.发明授权System and method for filtering of web-based content stored on a proxy cache server 有权用于过滤存储在代理缓存服务器上的基于web的内容的系统和方法公开(公告)号:US07506055B2
公开(公告)日:2009-03-17
申请号:US10878782
申请日:2004-06-28
IPC分类号: G06F15/173
CPC分类号: G06F17/30902
摘要: A system and method for filtering of web-based content in a proxy cache server environment provides a local network having a client, a directory server and a proxy cache server that caches predetermined Internet-derived web content within the network. When content is requested, it is vended to the client only if it meets predefined user policies for acceptability. These policies are implemented based upon one or more ratings lists provided by content rating vendors. The lists are downloaded to the network in whole or part, and cached for use in determining acceptability of content by a filter application. Ratings can be particularly based upon predetermined content categories. Caching occurs in a host or object cache for rapid access. Only if current ratings are not found in the host or object caches are ratings caches or vendors accessed for ratings. Ratings on requested content are then placed in the host or object cache for subsequent use. Object parsing or other techniques can be used to screen returned content that is unrated or otherwise allowed to pass to ensure that it is appropriate.
摘要翻译: 用于在代理缓存服务器环境中过滤基于web的内容的系统和方法提供本地网络,其具有缓存网络内预定的因特网派生的web内容的客户端,目录服务器和代理缓存服务器。 当请求内容时,只有当客户端满足预定义的可接受性策略时才会向客户端发送内容。 这些政策是根据内容分级供应商提供的一个或多个评级列表来实现的。 这些列表全部或部分下载到网络中,并被缓存用于确定过滤器应用程序对内容的可接受性。 额定值可以特别地基于预定的内容类别。 缓存发生在主机或对象缓存中以进行快速访问。 只有当主机或对象缓存中没有找到当前评级时,才能对评级进行评级缓存或供应商访问。 然后将请求的内容上的等级放置在主机或对象缓存中以供后续使用。 对象解析或其他技术可用于屏蔽未分级或以其他方式允许传递的返回内容,以确保其合适。
-
公开(公告)号:US20080244688A1
公开(公告)日:2008-10-02
申请号:US11693165
申请日:2007-03-29
IPC分类号: H04L9/00
CPC分类号: G06F21/604
摘要: In various embodiments, techniques for virtualized federated role provisioning are provided. An entire policy and role provisioning environment is packaged in a first environment and sent to a second environment. The second environment authenticates and initiates the policy and role provisioning environment as a virtualized federated role provisioning service or a shared policy decision point service. The shared policy decision point service dynamically resolves policy, roles, and constraints for requesting resources within the second environment and supplies this information to a local policy enforcement point service that enforces roles on the resources.
摘要翻译: 在各种实施例中,提供了用于虚拟联合角色供应的技术。 将整个策略和角色配置环境打包在第一个环境中并发送到第二个环境中。 第二环境将虚拟化联合角色供应服务或共享策略决策点服务认证并启动策略和角色配置环境。 共享策略决策点服务动态地解决在第二个环境中请求资源的策略,角色和约束,并将此信息提供给强制执行资源角色的本地策略执行点服务。
-
10.发明授权System and method for filtering of web-based content stored on a proxy cache server 有权用于过滤存储在代理缓存服务器上的基于web的内容的系统和方法公开(公告)号:US06772214B1
公开(公告)日:2004-08-03
申请号:US09560307
申请日:2000-04-27
IPC分类号: G06F1516
CPC分类号: G06F17/30902
摘要: A system and method for filtering of web-based content in a proxy cache server environment provides a local network having a client, a directory server and a proxy cache server that caches predetermined Internet-derived web content within the network. When content is requested, it is vended to the client only if it meets predefined user policies for acceptability. These policies are implemented based upon one or more ratings lists provided by content rating vendors. The lists are downloaded to the network in whole or part, and cached for use in determining acceptability of content by a filter application. Ratings can be particularly based upon predetermined content categories. Caching occurs in a host or object cache for rapid access. Only if current ratings are not found in the host or object caches are ratings caches or vendors accessed for ratings. Ratings on requested content are then placed in the host or object cache for subsequent use. Object parsing or other techniques can be used to screen returned content that is unrated or otherwise allowed to pass to ensure that it is appropriate.
摘要翻译: 用于在代理缓存服务器环境中过滤基于web的内容的系统和方法提供本地网络,其具有缓存网络内预定的因特网派生的web内容的客户端,目录服务器和代理缓存服务器。 当请求内容时,只有当客户端满足预定义的可接受性策略时才会向客户端发送内容。 这些政策是根据内容分级供应商提供的一个或多个评级列表来实现的。 这些列表全部或部分下载到网络中,并被缓存用于确定过滤器应用程序对内容的可接受性。 额定值可以特别地基于预定的内容类别。 缓存发生在主机或对象缓存中以进行快速访问。 只有当主机或对象缓存中没有找到当前评级时,才能对评级进行评级缓存或供应商访问。 然后将请求的内容上的等级放置在主机或对象缓存中以供后续使用。 对象解析或其他技术可用于屏蔽未分级或以其他方式允许传递的返回内容,以确保其合适。
-
-
-
-
-
-
-
-
-
搜索结果
37 条记录 (耗时 0.03 秒)
