-
公开(公告)号:US07107449B2
公开(公告)日:2006-09-12
申请号:US10075445
申请日:2002-02-15
CPC分类号: G06F21/64 , G06Q20/3821
摘要: The present invention provides a digital certificate (2, 32) comprising a plurality of credential attribute properties (6, 36), and a trust function (8, 42) embedded within the certificate as an executable file, which trust function can determine as a function of data (12, 44) available to it a trust value (14, 46) attributable to at least a part of the certificate at least partly by execution of the executable file. A corresponding method of communication is also disclosed.
摘要翻译: 本发明提供了一种数字证书(2,32),其包括作为可执行文件嵌入证书内的多个证书属性属性(6,36)和信任函数(8,42),该信任函数可以确定为 数据(12,44)的功能可用于至少部分通过执行可执行文件而归属于证书的至少一部分的信任值(14,46)。 还公开了相应的通信方法。
-
2.发明授权公开(公告)号:US07308707B2
公开(公告)日:2007-12-11
申请号:US10023846
申请日:2001-12-21
IPC分类号: H04L9/32
CPC分类号: G06F21/33 , G06Q20/0855 , G06Q20/3821 , H04L9/321 , H04L9/3247 , H04L2209/16 , H04L2209/56
摘要: A method of communication is such that a first party (30) communicates a composite credential (54) across a distributed electronic network (44) to a second Party (32). The composite credential (54) includes a plurality of credentials (46-52).
摘要翻译: 一种通信方法使得第一方(30)跨越分布式电子网络(44)将复合凭证(54)传送到第二方(32)。 复合凭证(54)包括多个证书(46-52)。
-
公开(公告)号:US20120110669A1
公开(公告)日:2012-05-03
申请号:US12916197
申请日:2010-10-29
申请人: Yolanta Beresnevichiene , Adrian John Baldwin , Jonathan F. Griffin , Simon K.Y. Shiu , Marco Casassa Mont , Brian Quentin Monahan , David J. Pym
发明人: Yolanta Beresnevichiene , Adrian John Baldwin , Jonathan F. Griffin , Simon K.Y. Shiu , Marco Casassa Mont , Brian Quentin Monahan , David J. Pym
IPC分类号: G06F12/00
CPC分类号: G06F21/577
摘要: A system for analyzing an environment to identify a security risk, comprising a model engine to generate a model of the environment using multiple components defining adjustable elements of the model and a risk analyzer to calculate multiple randomized instances of an outcome for the environment using multiple values for parameters of the elements of the model selected from within respective predefined ranges for the parameters.
摘要翻译: 一种用于分析环境以识别安全风险的系统,包括使用定义所述模型的可调节元素的多个组件来生成环境模型的模型引擎和风险分析器,以使用多个值来计算所述环境的结果的多个随机化实例 对于参数的相应预定义范围内选择的模型元素的参数。
-
公开(公告)号:US06941476B2
公开(公告)日:2005-09-06
申请号:US09852262
申请日:2001-05-10
CPC分类号: H04L63/0823 , G06F21/6218 , G06F2211/007 , G06F2221/2115 , H04L63/12
摘要: A distributed storage system for storing at least one credential (46), provided by an issuing authority and relating to an identity (42, 44), is described. The system comprises: a plurality of unique identities (42, 44) each having a local store (40). Each local store (40) securely stores credentials (46) relating to the owner of the identity (42, 44). The system also comprises one or more security certificates (66) provided at each identity (42, 44) for ensuring the authenticity of the credentials (46). The security certificates (66) provide secure references to the issuers of the credentials (46) and this can be used in verifying the origin of each credential (46). The identity can be provided a website or a mobile phone for example.
摘要翻译: 描述了用于存储由发布机构提供并与身份(42,44)相关的至少一个证书(46)的分布式存储系统。 该系统包括:多个唯一身份(42,44),每个唯一身份具有本地商店(40)。 每个本地商店(40)安全地存储与身份(42,44)的所有者有关的证件(46)。 系统还包括在每个身份(42,44)处提供的用于确保凭证(46)的真实性的一个或多个安全证书(66)。 安全证书(66)为证书(46)的颁发者提供安全的引用,并且这可以用于验证每个证书的起源(46)。 身份可以提供一个网站或一个手机例如。
-
公开(公告)号:US20140337971A1
公开(公告)日:2014-11-13
申请号:US14371610
申请日:2012-02-22
IPC分类号: G06F21/50
CPC分类号: G06F21/50 , G06F21/552
摘要: A mapping system is provided that makes use of security data collected from various data sources. Following appropriate pre-processing, the mapping system analyses the security data to provide estimated values for parameters in a security model, the security model in turn being based on one or more mathematical representations.
摘要翻译: 提供了一种利用从各种数据源收集的安全数据的映射系统。 在适当的预处理之后,映射系统分析安全数据以提供安全模型中参数的估计值,安全模型又依据一个或多个数学表示。
-
公开(公告)号:US20130179937A1
公开(公告)日:2013-07-11
申请号:US13347098
申请日:2012-01-10
IPC分类号: G06F21/00
CPC分类号: G06F21/577 , G06F21/105 , G06F21/57 , G06F2221/034 , G06Q10/10 , G16H40/40
摘要: A customized security model template is created that is customized for a specific organization's security related procedures. The customized security model template is instantiated with parameters associated with the organization to create an instantiated security model, and a report is produced based on simulations of the instantiated security model that specifies metrics of the organization's security implementation.
摘要翻译: 创建了针对特定组织的安全相关过程定制的自定义安全模型模板。 使用与组织相关联的参数实例化定制的安全模型模板,以创建实例化的安全模型,并且基于实例化的安全模型的模拟来生成报告,该安全模型指定组织的安全性实施的度量。
-
公开(公告)号:US20130117075A1
公开(公告)日:2013-05-09
申请号:US13289747
申请日:2011-11-04
申请人: Richard Brown , Marco Casassa Mont , Kieran Mccorry , Nikolaos Papanikolaou , Siani Pearson , Prasad V Rao , Tomas Sander
发明人: Richard Brown , Marco Casassa Mont , Kieran Mccorry , Nikolaos Papanikolaou , Siani Pearson , Prasad V Rao , Tomas Sander
IPC分类号: G06Q10/06
CPC分类号: G06Q10/06
摘要: Compliance of a project is assessed by generating a graph including nodes representing attributes of the project, and populating a subset of nodes in the graph with attribute values of the project. A rule applicable to the subset of nodes is identified and applied to determine whether the attribute values comply with the rule.
摘要翻译: 通过生成包括表示项目属性的节点的图表,并使用项目的属性值填充图中的节点子集来评估项目的合规性。 识别并应用适用于节点子集的规则,以确定属性值是否符合规则。
-
公开(公告)号:US07143286B2
公开(公告)日:2006-11-28
申请号:US10075380
申请日:2002-02-15
申请人: Richard Brown , Marco Casassa Mont
发明人: Richard Brown , Marco Casassa Mont
CPC分类号: G06F21/64 , G06Q20/3821
摘要: The present invention provides a digital certificate (2, 32), the certificate comprising a credential attribute function (6, 38) associated with a credential attribute property (5, 36), which credential attribute function is embedded in the certificate as an executable file, in which the credential attribute function can determine the value (12, 44) of the credential attribute property at least partly by execution of the executable file. A corresponding method is also disclosed.
摘要翻译: 本发明提供一种数字证书(2,32),证书包括与证书属性属性(5,36)相关联的凭证属性功能(6,38),该证书属性功能被嵌入证书中作为可执行文件 ,其中凭证属性功能可以至少部分地通过执行可执行文件来确定凭证属性属性的值(12,44)。 还公开了相应的方法。
-
公开(公告)号:US10536483B2
公开(公告)日:2020-01-14
申请号:US14118847
申请日:2011-06-16
申请人: Marco Casassa Mont , Siani Pearson , Pete Bramhall
发明人: Marco Casassa Mont , Siani Pearson , Pete Bramhall
摘要: One example provides a collaborative policy refinement service to aggregate policy inputs from organizational layers and to generate security policies that are consistent across the organizational layers. This includes an interactive policy component to facilitate collaborative interaction between the organizational layers and to facilitate determination of the security policies.
-
公开(公告)号:US09137113B2
公开(公告)日:2015-09-15
申请号:US11335877
申请日:2006-01-20
CPC分类号: H04L63/0407 , H04L9/083 , H04L41/0893 , H04L63/0428 , H04L63/10 , H04L63/102 , H04L67/32
摘要: A computer network has a number of resources. One or more trusted localization provider certifies the location of the resources. Encrypted data is closely associated with a policy package defining privacy policies for the data and metapolicies for their selection. A trusted privacy service enforces the privacy policies. The trusted privacy service is arranged to supply a key to a resource to allow that resource to process data if the trusted privacy service determines from the trusted localization provider certifying the location and other contextual information of the resource that the privacy policy allows processing of the data on that resource in that location.
摘要翻译: 计算机网络具有许多资源。 一个或多个受信任的本地化提供商证明资源的位置。 加密数据与定义用于选择的数据和元数据的隐私策略的策略包密切相关。 值得信赖的隐私服务强制执行隐私政策。 信任的隐私服务被设置为向资源提供密钥以允许该资源处理数据,如果可信赖的隐私服务从可信定位提供者确定认证该资源的位置和其他上下文信息,该隐私策略允许处理数据 在该位置的资源上。
-
-
-
-
-
-
-
-
-
搜索结果
24 条记录 (耗时 0.018 秒)
