-
1.发明授权Architecture and design for central authentication and authorization in an on-demand utility environment 失效在按需实用环境中进行中心认证和授权的体系结构和设计公开(公告)号:US07991996B2
公开(公告)日:2011-08-02
申请号:US12410933
申请日:2009-03-25
申请人: Messaoud Benantar , Yen-Fu Chen , John W. Dunsmoir , Randolph Michael Forlenza , Wei Liu , Sandra Juni Schlosser
发明人: Messaoud Benantar , Yen-Fu Chen , John W. Dunsmoir , Randolph Michael Forlenza , Wei Liu , Sandra Juni Schlosser
IPC分类号: H04L29/06
CPC分类号: H04L63/0823
摘要: A Centralized Authentication & Authorization (CAA) system that facilitates secure communication between service clients and service providers. CAA comprises a Service Request Filter (SRF), a Service Client Authentication Program (SCAP), a Service Authorization Program (SAP), and an Authorization Database (ADB). The SRF intercepts service requests, extracts the service client's identifier from a digital certificate attached to the request, and stores the identifier in memory accessible to service providers. In the preferred embodiment, the SRF forwards the service request to a web service manager. The web service manager invokes SCAP. SCAP matches the identifier with a record stored in ADB. SAP queries ADB to determine if the service request is valid for the service client. If the service request is valid, SAP authorizes the service request and the appropriate service provider processes the service request.
摘要翻译: 集中式身份验证和授权(CAA)系统,促进服务客户端和服务提供商之间的安全通信。 CAA包括服务请求过滤器(SRF),服务客户端认证程序(SCAP),服务授权程序(SAP)和授权数据库(ADB)。 SRF拦截服务请求,从附加到请求的数字证书中提取服务客户端的标识符,并将该标识符存储在服务提供商可访问的存储器中。 在优选实施例中,SRF将服务请求转发到web服务管理器。 Web服务管理器调用SCAP。 SCAP将标识符与存储在ADB中的记录相匹配。 SAP查询ADB以确定服务请求是否对服务客户端有效。 如果服务请求有效,则SAP授权服务请求,并且相应的服务提供商处理服务请求。
-
2.发明授权Architecture and design for central authentication and authorization in an on-demand utility environment 有权在按需实用环境中进行中心认证和授权的体系结构和设计公开(公告)号:US07519812B2
公开(公告)日:2009-04-14
申请号:US10782443
申请日:2004-02-19
申请人: Messaoud Benantar , Yen-Fu Chen , John W. Dunsmoir , Randolph Michael Forlenza , Wei Liu , Sandra Juni Schlosser
发明人: Messaoud Benantar , Yen-Fu Chen , John W. Dunsmoir , Randolph Michael Forlenza , Wei Liu , Sandra Juni Schlosser
IPC分类号: H04L9/00
CPC分类号: H04L63/0823
摘要: A Centralized Authentication & Authorization (CAA) system that facilitates secure communication between service clients and service providers. CAA comprises a Service Request Filter (SRF), a Service Client Authentication Program (SCAP), a Service Authorization Program (SAP), and an Authorization Database (ADB). The SRF intercepts service requests, extracts the service client's identifier from a digital certificate attached to the request, and stores the identifier in memory accessible to service providers. In the preferred embodiment, the SRF forwards the service request to a web service manager. The web service manager invokes SCAP. SCAP matches the identifier with a record stored in ADB. SAP queries ADB to determine if the service request is valid for the service client. If the service request is valid, SAP authorizes the service request and the appropriate service provider processes the service request.
摘要翻译: 集中式身份验证和授权(CAA)系统,促进服务客户端和服务提供商之间的安全通信。 CAA包括服务请求过滤器(SRF),服务客户端认证程序(SCAP),服务授权程序(SAP)和授权数据库(ADB)。 SRF拦截服务请求,从附加到请求的数字证书中提取服务客户端的标识符,并将该标识符存储在服务提供商可访问的存储器中。 在优选实施例中,SRF将服务请求转发到web服务管理器。 Web服务管理器调用SCAP。 SCAP将标识符与存储在ADB中的记录相匹配。 SAP查询ADB以确定服务请求是否对服务客户端有效。 如果服务请求有效,则SAP授权服务请求,并且相应的服务提供商处理服务请求。
-
3.发明申请Architecture and Design for Central Authentication and Authorization in an On-Demand Utility Environment Using a Secured Global Hashtable 有权使用安全的全局哈希表在按需实用环境中进行中心身份验证和授权的架构和设计公开(公告)号:US20090037731A1
公开(公告)日:2009-02-05
申请号:US12147716
申请日:2008-06-27
申请人: Messaoud Benantar , Yen-Fu Chen , John W. Dunsmoir , Randolph Michael Forlenza , Wei Liu , Sandra Juni Schlosser
发明人: Messaoud Benantar , Yen-Fu Chen , John W. Dunsmoir , Randolph Michael Forlenza , Wei Liu , Sandra Juni Schlosser
IPC分类号: H04L9/32
CPC分类号: H04L63/0823 , H04L63/0407 , H04L63/14
摘要: A Centralized Authentication & Authorization (CAA) system that prevents unauthorized access to client data using a secure global hashtable residing in the application server in a web services environment. CAA comprises a Service Request Filter (SRF) and Security Program (SP). The SRF intercepts service requests, extracts the service client's identifier from a digital certificate attached to the request, and stores the identifier in memory accessible to service providers. The client identifier is secured by the SP using a key unique to the client identifier. When the web services manager requests the client identifier, the web services manager must present the key to the SP in order to access the client identifier. Thus, the present invention prevents a malicious user from attempting to obtain sensitive data within the application server once the malicious user has gained access past the firewall.
摘要翻译: 集中式身份验证和授权(CAA)系统,可以防止使用位于Web服务环境中的应用程序服务器中的安全全局散列表来对客户端数据进行未经授权的访问。 CAA包括服务请求过滤器(SRF)和安全程序(SP)。 SRF拦截服务请求,从附加到请求的数字证书中提取服务客户端的标识符,并将该标识符存储在服务提供商可访问的存储器中。 客户端标识符由SP使用客户端标识符唯一的密钥保护。 当Web服务管理器请求客户端标识符时,Web服务管理器必须向SP呈现密钥以访问客户端标识符。 因此,本发明防止恶意用户一旦恶意用户已经通过防火墙访问,就试图获取应用服务器内的敏感数据。
-
4.发明授权Architecture and design for central authentication and authorization in an on-demand utility environment using a secured global hashtable 有权在使用安全的全球散列表的按需实用程序环境中进行中央身份验证和授权的架构和设计公开(公告)号:US07788710B2
公开(公告)日:2010-08-31
申请号:US12147716
申请日:2008-06-27
申请人: Messaoud Benantar , Yen-Fu Chen , John W. Dunsmoir , Randolph Michael Forlenza , Wei Liu , Sandra Juni Schlosser
发明人: Messaoud Benantar , Yen-Fu Chen , John W. Dunsmoir , Randolph Michael Forlenza , Wei Liu , Sandra Juni Schlosser
IPC分类号: G06F7/04
CPC分类号: H04L63/0823 , H04L63/0407 , H04L63/14
摘要: A Centralized Authentication & Authorization (CAA) system that prevents unauthorized access to client data using a secure global hashtable residing in the application server in a web services environment. CAA comprises a Service Request Filter (SRF) and Security Program (SP). The SRF intercepts service requests, extracts the service client's identifier from a digital certificate attached to the request, and stores the identifier in memory accessible to service providers. The client identifier is secured by the SP using a key unique to the client identifier. When the web services manager requests the client identifier, the web services manager must present the key to the SP in order to access the client identifier. Thus, the present invention prevents a malicious user from attempting to obtain sensitive data within the application server once the malicious user has gained access past the firewall.
摘要翻译: 集中式身份验证和授权(CAA)系统,可以防止使用位于Web服务环境中的应用程序服务器中的安全全局散列表来对客户端数据进行未经授权的访问。 CAA包括服务请求过滤器(SRF)和安全程序(SP)。 SRF拦截服务请求,从附加到请求的数字证书中提取服务客户端的标识符,并将该标识符存储在服务提供商可访问的存储器中。 客户端标识符由SP使用客户端标识符唯一的密钥保护。 当Web服务管理器请求客户端标识符时,Web服务管理器必须向SP呈现密钥以访问客户端标识符。 因此,本发明防止恶意用户一旦恶意用户已经通过防火墙访问,就试图获取应用服务器内的敏感数据。
-
5.发明申请公开(公告)号:US20090204810A1
公开(公告)日:2009-08-13
申请号:US12410933
申请日:2009-03-25
申请人: Messaoud Benantar , Yen-Fu Chen , John W. Dunsmoir , Randolph Michael Forlenza , Wei Liu , Sandra Juni Schlosser
发明人: Messaoud Benantar , Yen-Fu Chen , John W. Dunsmoir , Randolph Michael Forlenza , Wei Liu , Sandra Juni Schlosser
CPC分类号: H04L63/0823
摘要: A Centralized Authentication & Authorization (CAA) system that facilitates secure communication between service clients and service providers. CAA comprises a Service Request Filter (SRF), a Service Client Authentication Program (SCAP), a Service Authorization Program (SAP), and an Authorization Database (ADB). The SRF intercepts service requests, extracts the service client's identifier from a digital certificate attached to the request, and stores the identifier in memory accessible to service providers. In the preferred embodiment, the SRF forwards the service request to a web service manager. The web service manager invokes SCAP. SCAP matches the identifier with a record stored in ADB. SAP queries ADB to determine if the service request is valid for the service client. If the service request is valid, SAP authorizes the service request and the appropriate service provider processes the service request.
摘要翻译: 集中式身份验证和授权(CAA)系统,促进服务客户端和服务提供商之间的安全通信。 CAA包括服务请求过滤器(SRF),服务客户端认证程序(SCAP),服务授权程序(SAP)和授权数据库(ADB)。 SRF拦截服务请求,从附加到请求的数字证书中提取服务客户端的标识符,并将该标识符存储在服务提供商可访问的存储器中。 在优选实施例中,SRF将服务请求转发到web服务管理器。 Web服务管理器调用SCAP。 SCAP将标识符与存储在ADB中的记录相匹配。 SAP查询ADB以确定服务请求是否对服务客户端有效。 如果服务请求有效,则SAP授权服务请求,并且相应的服务提供商处理服务请求。
-
6.发明授权Architecture and design for central authentication and authorization in an on-demand utility environment using a secured global hashtable 失效在使用安全的全球散列表的按需实用程序环境中进行中央身份验证和授权的架构和设计公开(公告)号:US07412719B2
公开(公告)日:2008-08-12
申请号:US10850398
申请日:2004-05-20
申请人: Messaoud Benantar , Yen-Fu Chen , John W. Dunsmoir , Randolph Michael Forlenza , Wei Liu , Sandra Juni Schlosser
发明人: Messaoud Benantar , Yen-Fu Chen , John W. Dunsmoir , Randolph Michael Forlenza , Wei Liu , Sandra Juni Schlosser
IPC分类号: G06F7/04
CPC分类号: H04L63/0823 , H04L63/0407 , H04L63/14
摘要: A Centralized Authentication & Authorization (CAA) system that prevents unauthorized access to client data using a secure global hashtable residing in the application server in a web services environment. CAA comprises a Service Request Filter (SRF) and Security Program (SP). The SRF intercepts service requests, extracts the service client's identifier from a digital certificate attached to the request, and stores the identifier in memory accessible to service providers. The client identifier is secured by the SP using a key unique to the client identifier. When the web services manager requests the client identifier, the web services manager must present the key to the SP in order to access the client identifier. Thus, the present invention prevents a malicious user from attempting to obtain sensitive data within the application server once the malicious user has gained access past the firewall.
摘要翻译: 集中式身份验证和授权(CAA)系统,可以防止使用位于Web服务环境中的应用程序服务器中的安全全局散列表来对客户端数据进行未经授权的访问。 CAA包括服务请求过滤器(SRF)和安全程序(SP)。 SRF拦截服务请求,从附加到请求的数字证书中提取服务客户端的标识符,并将该标识符存储在服务提供商可访问的存储器中。 客户端标识符由SP使用客户端标识符唯一的密钥保护。 当Web服务管理器请求客户端标识符时,Web服务管理器必须向SP呈现密钥以访问客户端标识符。 因此,本发明防止恶意用户一旦恶意用户已经通过防火墙访问,就试图获取应用服务器内的敏感数据。
-
7.发明申请Architecture and design for central authentication and authorization in an on-demand utility environment 有权在按需实用环境中进行中心认证和授权的体系结构和设计公开(公告)号:US20050188420A1
公开(公告)日:2005-08-25
申请号:US10782443
申请日:2004-02-19
申请人: Messaoud Benantar , Yen-Fu Chen , John Dunsmoir , Randolph Forlenza , Wei Liu , Sandra Schlosser
发明人: Messaoud Benantar , Yen-Fu Chen , John Dunsmoir , Randolph Forlenza , Wei Liu , Sandra Schlosser
CPC分类号: H04L63/0823
摘要: A Centralized Authentication & Authorization (CAA) system that facilitates secure communication between service clients and service providers. CAA comprises a Service Request Filter (SRF), a Service Client Authentication Program (SCAP), a Service Authorization Program (SAP), and an Authorization Database (ADB). The SRF intercepts service requests, extracts the service client's identifier from a digital certificate attached to the request, and stores the identifier in memory accessible to service providers. In the preferred embodiment, the SRF forwards the service request to a web service manager. The web service manager invokes SCAP. SCAP matches the identifier with a record stored in ADB. SAP queries ADB to determine if the service request is valid for the service client. If the service request is valid, SAP authorizes the service request and the appropriate service provider processes the service request.
摘要翻译: 集中式身份验证和授权(CAA)系统,促进服务客户端和服务提供商之间的安全通信。 CAA包括服务请求过滤器(SRF),服务客户端认证程序(SCAP),服务授权程序(SAP)和授权数据库(ADB)。 SRF拦截服务请求,从附加到请求的数字证书中提取服务客户端的标识符,并将该标识符存储在服务提供商可访问的存储器中。 在优选实施例中,SRF将服务请求转发给web服务管理器。 Web服务管理器调用SCAP。 SCAP将标识符与存储在ADB中的记录相匹配。 SAP查询ADB以确定服务请求是否对服务客户端有效。 如果服务请求有效,则SAP授权服务请求,并且相应的服务提供商处理服务请求。
-
8.发明申请Architecture and design for central authentication and authorization in an on-demand utility environment using a secured global hashtable 失效在使用安全的全球散列表的按需实用程序环境中进行中央身份验证和授权的架构和设计公开(公告)号:US20050273596A1
公开(公告)日:2005-12-08
申请号:US10850398
申请日:2004-05-20
申请人: Messaoud Benantar , Yen-Fu Chen , John Dunsmoir , Randolph Forlenza , Wei Liu , Sandra Schlosser
发明人: Messaoud Benantar , Yen-Fu Chen , John Dunsmoir , Randolph Forlenza , Wei Liu , Sandra Schlosser
CPC分类号: H04L63/0823 , H04L63/0407 , H04L63/14
摘要: A Centralized Authentication & Authorization (CAA) system that prevents unauthorized access to client data using a secure global hashtable residing in the application server in a web services environment. CAA comprises a Service Request Filter (SRF) and Security Program (SP). The SRF intercepts service requests, extracts the service client's identifier from a digital certificate attached to the request, and stores the identifier in memory accessible to service providers. The client identifier is secured by the SP using a key unique to the client identifier. When the web services manager requests the client identifier, the web services manager must present the key to the SP in order to access the client identifier. Thus, the present invention prevents a malicious user from attempting to obtain sensitive data within the application server once the malicious user has gained access past the firewall.
摘要翻译: 集中式身份验证和授权(CAA)系统,可以防止使用位于Web服务环境中的应用程序服务器中的安全全局散列表来对客户端数据进行未经授权的访问。 CAA包括服务请求过滤器(SRF)和安全程序(SP)。 SRF拦截服务请求,从附加到请求的数字证书中提取服务客户端的标识符,并将该标识符存储在服务提供商可访问的存储器中。 客户端标识符由SP使用客户端标识符唯一的密钥保护。 当Web服务管理器请求客户端标识符时,Web服务管理器必须向SP呈现密钥以访问客户端标识符。 因此,本发明防止恶意用户一旦恶意用户已经通过防火墙访问,就试图获取应用服务器内的敏感数据。
-
公开(公告)号:US20080278348A1
公开(公告)日:2008-11-13
申请号:US12174904
申请日:2008-07-17
IPC分类号: B60Q1/48
CPC分类号: G08B21/0272 , G01S5/04 , G08B13/1427 , G08B13/2457
摘要: The present invention is a method for locating an asset in a facility. An example of an asset is a vehicle and an example of a facility is a parking facility. When the user enters the facility with the asset, the user receives a base and code from a base/code booth. The code may be stored on a removable card. The user secures the asset by entering the code. While the user is away from the facility, the present invention monitors the base for movement detected by the motion sensor. When the user returns to the facility, a locator panel displays the location of the asset. The present invention determines the location of the asset by triangulation using the locators. The user then returns to the asset, deactivates the motion sensor, returns the base and code to a base/code booth, pays for the storage services, and exits the facility.
摘要翻译: 本发明是一种在设施中定位资产的方法。 资产的一个例子是车辆,设施的示例是停车设施。 当用户使用资产进入设施时,用户从基地/代码亭收到基地和代码。 代码可以存储在可移动卡上。 用户通过输入代码来保护资产。 当使用者离开设备时,本发明监测运动传感器检测到的移动基座。 当用户返回到设备时,定位器面板显示资产的位置。 本发明通过使用定位器的三角测量来确定资产的位置。 然后,用户返回资产,停用运动传感器,将基座和代码返回给基座/代码亭,支付存储服务并退出设备。
-
10.发明授权Apparatus and method for determining asset location via local triangulation 失效通过局部三角测量来确定资产定位的装置和方法公开(公告)号:US07477163B2
公开(公告)日:2009-01-13
申请号:US10782677
申请日:2004-02-19
CPC分类号: G08B21/0272 , G01S5/04 , G08B13/1427 , G08B13/2457
摘要: The present invention is a method for locating an asset in a facility. An example of an asset is a vehicle and an example of a facility is a parking facility. When the user enters the facility with the asset, the user receives a base and code from a base/code booth. The code may be stored on a removable card. The user secures the asset by entering the code. While the user is away from the facility, the present invention monitors the base for movement detected by the motion sensor. When the user returns to the facility, a locator panel displays the location of the asset. The present invention determines the location of the asset by triangulation using the locators. The user then returns to the asset, deactivates the motion sensor, returns the base and code to a base/code booth, pays for the storage services, and exits the facility.
摘要翻译: 本发明是一种在设施中定位资产的方法。 资产的一个例子是车辆,设施的示例是停车设施。 当用户使用资产进入设施时,用户从基地/代码亭收到基地和代码。 代码可以存储在可移动卡上。 用户通过输入代码来保护资产。 当使用者离开设备时,本发明监测运动传感器检测到的移动基座。 当用户返回到设备时,定位器面板显示资产的位置。 本发明通过使用定位器的三角测量来确定资产的位置。 然后,用户返回资产,停用运动传感器,将基座和代码返回给基座/代码亭,支付存储服务并退出设备。
-
-
-
-
-
-
-
-
-
搜索结果
291 条记录 (耗时 0.031 秒)