-
公开(公告)号:US20100198871A1
公开(公告)日:2010-08-05
申请号:US12364806
申请日:2009-02-03
申请人: Marc D. Stiegler , Alan H. Karp , Mark S. Miller , Tyler J. Close
发明人: Marc D. Stiegler , Alan H. Karp , Mark S. Miller , Tyler J. Close
IPC分类号: G06F17/30
CPC分类号: H04L67/06 , G06F16/1767 , H04L67/02 , H04L67/104
摘要: A file sharing system includes authorization-based security to control access to shared files; and a synchronizer which uses the authorization-based security to monitor the shared files for changes and propagating the changes according to sharing relationships. A method for file sharing includes using authorization-based security to control access to a shared file; and monitoring the shared file for changes using a synchronizer which incorporates the authorization-based security to access the shared file.
摘要翻译: 文件共享系统包括基于授权的安全性来控制对共享文件的访问; 以及同步器,其使用基于授权的安全性来监视共享文件以进行改变,并根据共享关系来传播更改。 一种用于文件共享的方法包括使用基于授权的安全性来控制对共享文件的访问; 并使用包含基于授权的安全性的同步器监视共享文件以进行更改以访问共享文件。
-
公开(公告)号:US07797727B1
公开(公告)日:2010-09-14
申请号:US11047015
申请日:2005-01-31
申请人: Mark S. Miller , Marc D. Stiegler
发明人: Mark S. Miller , Marc D. Stiegler
IPC分类号: G06F17/00
CPC分类号: G06F21/53
摘要: An original identifier of an application in a computer system is changed to a new identifier. An attempt is made, using the original identifier, to run the application. In response to the attempt, the application is then launched in a restricted user account on the computer system using the new identifier.
摘要翻译: 计算机系统中的应用的原始标识符被改变为新的标识符。 尝试使用原始标识符来运行应用程序。 响应于该尝试,然后使用新的标识符在计算机系统上的限制用户帐户中启动应用程序。
-
公开(公告)号:US08627068B1
公开(公告)日:2014-01-07
申请号:US11118158
申请日:2005-04-29
申请人: Mark S. Miller , Marc D. Stiegler
发明人: Mark S. Miller , Marc D. Stiegler
IPC分类号: H04L29/02
CPC分类号: G06F21/6218 , G06F21/604 , G06F2221/2141 , G06F2221/2145
摘要: Group access authorities for a restricted user account group in a directory system are selected to include directory traverse authority. A restricted user account is included in the restricted user account group such that the restricted user account inherits group access authorities. The directory system is configured to allow directory traversing without performing directory traverse checking. An application is confined to run within the restricted user account so that access authorities of the application include group access authorities.
摘要翻译: 选择目录系统中受限用户帐户组的组访问权限,以包括目录遍历权限。 限制用户帐户被包含在受限用户帐户组中,使受限用户帐户继承组访问权限。 目录系统配置为允许目录遍历,而不执行目录遍历检查。 应用程序仅限于在受限用户帐户中运行,以便应用程序的访问权限包括组访问权限。
-
公开(公告)号:US07725926B1
公开(公告)日:2010-05-25
申请号:US10924295
申请日:2004-08-23
申请人: Alan H. Karp , Patrick C. McGeer , Mark S. Miller
发明人: Alan H. Karp , Patrick C. McGeer , Mark S. Miller
CPC分类号: H04L63/0838 , G06F21/31 , H04L51/12
摘要: A method for authentication in a client computer and a remote computer is disclosed. A client base value is obtained, selected by a user of the client computer for at least a first usage purpose. A client integer is obtained, selected by the user for at least a second usage purpose. The client base value is combined with the client integer to obtain a client combination. The client combination is hashed to obtain a client password.
摘要翻译: 公开了一种在客户端计算机和远程计算机中进行认证的方法。 获得客户端基值,由客户端计算机的用户选择至少第一使用目的。 获得客户端整数,由用户选择至少第二使用目的。 客户端基数值与客户端整数相结合以获得客户端组合。 客户端组合被散列以获得客户端密码。
-
公开(公告)号:US08095803B1
公开(公告)日:2012-01-10
申请号:US11684534
申请日:2007-03-09
申请人: Richard J. Carter , Mark S. Miller , Alan H. Karp
发明人: Richard J. Carter , Mark S. Miller , Alan H. Karp
CPC分类号: G06F21/6245
摘要: A storage manager provides data privacy, while preserving the benefits provided by existing hash based storage systems. Each file is assigned a unique identifying code. Hashes of the content-derived chunks of the file are calculated based on the content of the chunk and the code identifying the file. When a request to store a chunk of data is received, it is determined whether a chunk associated with the hash has already been stored. Because hashes are based on privacy-preserving codes as well as content, chunks of duplicate copies of a file need not be stored multiple times, and yet privacy is preserved for content at a file level. In other embodiments, hashes indicating whether a given file is public and/or indicating the identity of the requesting user are also sent with storage requests. These additional hashes enable more robust transmission and storage efficiency, while still preserving privacy.
摘要翻译: 存储管理器提供数据隐私,同时保留现有基于哈希的存储系统提供的优点。 每个文件都被分配一个唯一的识别码。 基于块的内容和识别文件的代码来计算文件的内容导出块的哈希。 当接收到存储数据块的请求时,确定是否已经存储与散列相关联的块。 由于哈希是基于隐私保护代码以及内容,文件的重复副本的块不需要多次存储,而是保留文件级内容的隐私。 在其他实施例中,指示给定文件是公开的和/或指示请求用户的身份的散列也与存储请求一起发送。 这些额外的哈希可以实现更强大的传输和存储效率,同时保持隐私。
-
公开(公告)号:US20130047075A1
公开(公告)日:2013-02-21
申请号:US13585693
申请日:2012-08-14
IPC分类号: G06F17/00
CPC分类号: G06F17/30905 , G06F17/2247 , H04L67/02
摘要: A method, system and computer program product for progressive enhancement of content in a browser. The method includes receiving a document with content containing a plurality of elements and parsing the received content with at least one processor. The method also includes identifying a subset of the plurality of elements that are marked for enhancement and replacing each of the element in the identified subset with their respective enhancement to obtain the document with the enhanced elements.
摘要翻译: 一种用于逐步增强浏览器内容的方法,系统和计算机程序产品。 该方法包括用包含多个元素的内容接收文档,并用至少一个处理器解析所接收的内容。 该方法还包括识别被标记为增强的多个元素的子集,并且用其相应的增强来替换识别的子集中的每个元素以获得具有增强元素的文档。
-
7.发明授权Transistors for replacing metal-oxide semiconductor field-effect transistors in nanoelectronics 有权用于替代纳米电子学中的金属氧化物半导体场效应晶体管的晶体管公开(公告)号:US07772056B2
公开(公告)日:2010-08-10
申请号:US12141473
申请日:2008-06-18
IPC分类号: H01L29/80
CPC分类号: H01L21/8232 , H01L27/098
摘要: Junction field effect transistors (JFETs) are shown to be a viable replacement for metal oxide semiconductor field effect transistors (MOSFETs) for gate lengths of less than about 40 nm, providing an alternative to the gate leakage problems presented by scaled down MOSFETs. Integrated circuit designs can have complementary JFET (CJFET) logic cells substituted for existing MOSFET-based logic cells to produce revised integrated circuit designs. Integrated circuits can include JFETS where the channel comprises a wide bandgap semiconductor material and the gate comprises a narrow bandgap semiconductor material. Mixtures of JFET and MOSFET transistors can be included on an integrated circuit design.
摘要翻译: 结栅场效应晶体管(JFET)被证明是栅极长度小于约40nm的金属氧化物半导体场效应晶体管(MOSFET)的可行替代品,为缩小MOSFET的栅极泄漏问题提供了替代方案。 集成电路设计可以具有替代现有的基于MOSFET的逻辑单元的互补JFET(CJFET)逻辑单元,以产生经修订的集成电路设计。 集成电路可以包括JFET,其中沟道包括宽带隙半导体材料,并且栅极包括窄带隙半导体材料。 JFET和MOSFET晶体管的混合可以包含在集成电路设计中。
-
公开(公告)号:US06577402B1
公开(公告)日:2003-06-10
申请号:US09583590
申请日:2000-05-31
申请人: Mark S. Miller
发明人: Mark S. Miller
IPC分类号: G01B902
CPC分类号: G01B9/02023 , G01B9/02007 , G01B2290/25
摘要: A sensor has an interferometer which measures a change in an applied environmental condition relative to a reference environmental condition. The interferometer is operated under the applied environmental condition to generate an interference spectrum. Intensities of the interference spectrum are measured at first and second wavelengths, respectively. The first and second wavelengths correspond to first and second reference intensities that are separated from one another by an odd number of extrema in the interference spectrum when the interferometer is operated under the reference condition. Measurement of the change in the applied environmental condition is based on the measured intensities and the first and second reference intensities.
摘要翻译: 传感器具有相对于参考环境条件来测量所施加的环境条件的变化的干涉仪。 干涉仪在施加的环境条件下运行以产生干涉光谱。 分别在第一和第二波长处测量干涉光谱的强度。 第一和第二波长对应于当干涉仪在参考条件下操作时在干涉光谱中彼此分离奇数个极值的第一和第二参考光强。 应用环境条件的变化的测量基于测量的强度和第一和第二参考强度。
-
公开(公告)号:US5960087A
公开(公告)日:1999-09-28
申请号:US674114
申请日:1996-07-01
申请人: E. Dean Tribble , Mark S. Miller , Norman Hardy , Jacob Y. Levy , Eric C. Hill , Christopher T. Hibbert
发明人: E. Dean Tribble , Mark S. Miller , Norman Hardy , Jacob Y. Levy , Eric C. Hill , Christopher T. Hibbert
CPC分类号: G06F12/0269 , G06F12/0261 , Y10S707/99953
摘要: A distributed garbage collection system and method is disclosed that is compatible with local ref-count or full garbage collection and that ensures that no local object's storage is deleted by the local garbage collector unless it is certain that there are no actual or potential remote references to that local object. The disclosed system and method are implemented in the context of a transparent distributed object system in which communications between objects in different processes are enabled by dedicated proxy objects that are linked to corresponding remote objects via a pair of transport objects. Additional proxy holder objects and proxy holder proxies ensure that objects for which third-party object references are passed (i.e., where one object in a first process passes a remote object in a second process a reference to a third object in a third process) are not collected until a direct link is established between the remote object in the second process and the third object in the third object space. As appropriate, secret number table pointers maintained by a local registrar for each object that has been accessed via a third party message are deleted, allowing the objects to be collected when there are no other actual or pending remote references to that object. The transport managers encrypt all inter-process messages so as to provide full capability security within the distributed system. This enables the disclosed garbage collection system and methods to operate under attack from misbehaving participants.
摘要翻译: 公开了一种与本地引用计数或完全垃圾收集兼容的分布式垃圾回收系统和方法,并且确保本地对象的存储被本地垃圾收集器删除,除非确定没有实际或潜在的远程引用 那个地方的对象。 所公开的系统和方法在透明分布式对象系统的上下文中实现,其中通过经由一对传输对象链接到对应的远程对象的专用代理对象来启用不同进程中的对象之间的通信。 其他代理持有者对象和代理持有人代理确保传递第三方对象引用的对象(即,第一个进程中的一个对象在第二个进程中的远程对象在第三个进程中对第三个对象的引用) 在第二进程中的远程对象与第三对象空间中的第三对象之间建立直接链接之前,不会被收集。 适当地,删除了由本地注册器为通过第三方消息访问的每个对象维护的秘密号码表指针,从而允许当对该对象没有其他实际或挂起的远程引用时收集对象。 运输经理加密所有进程间消息,以便在分布式系统中提供全面的能力安全性。 这使得所公开的垃圾收集系统和方法能够在行为不端的参与者的攻击下进行操作。
-
公开(公告)号:US5781633A
公开(公告)日:1998-07-14
申请号:US671307
申请日:1996-07-01
CPC分类号: G06F9/468
摘要: A system providing capability security for distributed object systems is disclosed. The basic tenet of capability security is that the right to do something to an object (e.g., invoke a particular object's methods) is represented solely by the holding of a reference to that object. In each of the preferred embodiments described herein, an object is presumed to hold legitimately a reference to a particular object only if the object knows some unpublicized (except under the conditions required by capability security) key associated with the particular object. That is, an object's key is required along with the object's reference. So that capability security is preserved when object references are passed between objects in different processes, the object references being passed are encrypted upon transmission and then decrypted upon arrival at their intended destination. This cryptography can be performed by objects or processes using a variety of techniques, including Diffie-Helman or public/private key cryptography. The cryptography performed in the various embodiments ensures that only the intended recipient of the message can decode the object reference and that a misbehaving object cannot convince another object that it possesses a capability it does not have. Some of the disclosed embodiments provide capability security for transparent distributed object systems, wherein a pair of matched transports handle and encrypt inter-process communications between objects in their respective processes.
摘要翻译: 公开了一种为分布式对象系统提供能力安全性的系统。 能力安全的基本原则是,仅仅通过保持对该对象的引用来表示对对象做某事的权利(例如,调用特定对象的方法)。 在本文描述的每个优选实施例中,假定对象仅在对象知道某些未公开的(在能力安全所要求的条件下除外)与该特定对象相关联的密钥时,才能合理地保持对特定对象的引用。 也就是说,对象的关键是与对象的引用一起需要的。 因此,当对象引用在不同进程中的对象之间传递时,能够保证能力安全性,所传递的对象引用在传输时被加密,然后在到达目的地时进行解密。 该密码术可以由使用各种技术的对象或进程执行,包括Diffie-Helman或公共/私人密钥密码术。 在各种实施例中执行的密码学确保仅消息的预期接收者可以解码对象引用,并且不良行为对象不能说服另一对象具有其不具有的能力。 所公开的实施例中的一些为透明分布式对象系统提供能力安全性,其中一对匹配的传输处理和加密各自进程中的对象之间的进程间通信。
-
-
-
-
-
-
-
-
-
搜索结果
54 条记录 (耗时 0.041 秒)
