-
公开(公告)号:US20080082650A1
公开(公告)日:2008-04-03
申请号:US11905433
申请日:2007-10-01
IPC分类号: G06F15/173 , H04L9/00
CPC分类号: H04L67/141 , H04L63/0428 , H04L67/14 , H04L67/143 , H04L67/22
摘要: A system is provided that includes session management servers which mediate a secure communication performed between communication apparatuses. The session management servers create and maintain communication logs for recording at a start and end of the secure communication. The system includes log management servers which manage the communication logs of the secure communication. The communication source apparatus, the communication destination apparatus and the session management servers transmit their own communication logs to the corresponding log management server in the same domain to which they belong. One of the log management servers obtains those communication logs from the others based on a request and performs verification of consistency among them. Accordingly, it is possible to create reliable communication logs of the secure communication performed between the communication source apparatus and the communication destination apparatus.
摘要翻译: 提供了一种系统,其包括调停在通信设备之间执行的安全通信的会话管理服务器。 会话管理服务器在安全通信的开始和结束时创建和维护用于记录的通信日志。 该系统包括管理安全通信的通信日志的日志管理服务器。 通信源设备,通信目的地设备和会话管理服务器将他们自己的通信日志发送到与其所属的相同域中的对应的日志管理服务器。 其中一个日志管理服务器根据请求从其他日志管理服务器中获取那些通信日志,并执行它们之间的一致性验证。 因此,可以创建在通信源设备和通信目的地设备之间执行的安全通信的可靠通信日志。
-
2.发明授权公开(公告)号:US08218769B2
公开(公告)日:2012-07-10
申请号:US11711892
申请日:2007-02-28
IPC分类号: H04K1/00
CPC分类号: H04L63/065
摘要: An encrypted communication system is provided, in which an encryption key for use in encrypted communication and settings information for the encrypted communication are distributed to each of a plurality of communication devices performing encrypted communication within a group, and in which traffic generated by distributing the encryption key and the like can be reduced. In the encrypted communication system according to the present invention, information including a key for use in the intra-group encrypted communication or a seed which generates the key is distributed to the communication devices belonging to the group that are participating (e.g., logged in) in the intra-group encrypted communication.
摘要翻译: 提供了一种加密通信系统,其中将用于加密通信的加密密钥和用于加密通信的设置信息分配给执行组内的加密通信的多个通信设备中的每一个,并且其中通过分发加密 钥匙等可以减少。 在根据本发明的加密通信系统中,包括用于组内加密通信的密钥或生成密钥的种子的信息被分发给属于正在参与(例如登录)的组的通信设备, 在组内加密通信中。
-
3.发明授权Method for encrypted communication with a computer system and system therefor 失效用于与计算机系统及其系统进行加密通信的方法公开(公告)号:US08019996B2
公开(公告)日:2011-09-13
申请号:US11907260
申请日:2007-10-10
IPC分类号: H04L9/32
CPC分类号: G06Q20/3674 , H04L63/0272 , H04L63/0428 , H04L63/0869 , H04L67/1002 , H04L67/1006 , H04L67/1008 , H04L67/1029
摘要: To solve problems in that a load on a VPN device is large in a case where the number of terminal devices increases in encrypted communication using a VPN technique, and that only communication between the terminal device and the VPN device is encrypted, thus disabling end-to-end encrypted communication, a communication system is provided, including: a terminal device; a plurality of blades; and a management server that manages the blades, in which: the management server selects a blade, authenticates the terminal device and the selected blade, and mediates encrypted communication path establishment between the terminal device and the selected blade; the terminal device and the blade perform encrypted communication without the mediation of the management server; and the management server requests a validation server to authenticate each terminal.
摘要翻译: 为了解决在使用VPN技术的加密通信中终端装置的数量增加,VPN终端装置与VPN装置之间的通信被加密的情况下,VPN装置的负载大的问题, 端到端加密通信,提供通信系统,包括:终端装置; 多个叶片; 以及管理服务器,其中:所述管理服务器选择刀片,对所述终端设备和所选择的刀片进行认证,并且中介所述终端设备与所选刀片之间的加密通信路径建立; 终端设备和刀片在没有管理服务器的中介的情况下执行加密的通信; 并且管理服务器请求验证服务器来认证每个终端。
-
公开(公告)号:US08010793B2
公开(公告)日:2011-08-30
申请号:US11258418
申请日:2005-10-26
IPC分类号: H04L29/00
CPC分类号: H04L29/12009 , H04L29/12783 , H04L61/35 , H04L63/0428 , H04L63/164 , H04L63/166 , H04L67/14
摘要: A data communication method for forwarding a session control message designating a destination server with an IP address to the destination server via a session management server, wherein, when an application program or encrypted communication software on a client issues a connection request designating a destination server with an IP address, the client or the session management server automatically converts the IP address into a desired resource identifier identifiable a domain, thereby to determine the domain to which the received connection request message should be forwarded.
摘要翻译: 一种用于经由会话管理服务器将指定具有IP地址的目的地服务器的会话控制消息转发到目的地服务器的数据通信方法,其中,当客户端上的应用程序或加密通信软件发出指定目的地服务器的连接请求时, IP地址,客户端或会话管理服务器自动将IP地址转换为可识别的域的所需资源标识符,从而确定所接收的连接请求消息应转发到的域。
-
5.发明申请Mediating system and method to establish communication session, allowing private information to be protected 失效中介系统和方法建立通信会话,允许私人信息受到保护公开(公告)号:US20070168521A1
公开(公告)日:2007-07-19
申请号:US11504765
申请日:2006-08-16
IPC分类号: G06F15/16
CPC分类号: H04L29/06027 , H04L65/1006 , H04L65/1069 , H04L67/2804 , H04L67/2819 , H04L67/2857
摘要: The present invention is to prevent user's attribute information from being distributed, in the case where it is to be determined whether or not the attribute information (for example, age, address, and the like) of the user satisfies a service providing condition, when a communication session is established across multiple session managing servers.According to the present invention, attribute information of a user who is using a client logging in a session managing server, and attribute information of a service operating on the client are managed, a condition (SEP) to establish a communication session among multiple session managing servers related to the session establishment is shared, and the session managing server which manages the attribute information compares the attribute information and the SEP to make an access judgment, in order to determine whether or not the communication session is to be established.
摘要翻译: 本发明是为了防止用户属性信息的分发,在确定用户的属性信息(例如,年龄,地址等)是否满足服务提供条件的情况下,当 跨多个会话管理服务器建立通信会话。 根据本发明,管理正在使用登录在会话管理服务器中的客户端的用户的属性信息和在客户端上操作的服务的属性信息,在多个会话管理中建立通信会话的条件(SEP) 与会话建立相关的服务器被共享,并且管理属性信息的会话管理服务器将属性信息和SEP进行访问判断,以便确定是否建立通信会话。
-
公开(公告)号:US20070162744A1
公开(公告)日:2007-07-12
申请号:US11637694
申请日:2006-12-13
IPC分类号: H04L9/00
CPC分类号: H04L29/06027 , H04L29/12094 , H04L61/1529 , H04L63/0428 , H04L65/1006 , H04L65/105
摘要: In a data communication method and a data communication system, a session control message designating a destination server with identification information unique to application is transferred to the destination via a session management server. When an application program or encrypted communication software on a client issues a connection request designating a destination with identification information unique to application, the client or the session management server automatically converts the identification information into a desired resource identifier identifiable a domain to thereby determine a domain as the destination of the received connection request message.
摘要翻译: 在数据通信方法和数据通信系统中,通过会话管理服务器将指定具有应用特有的识别信息的目的地服务器的会话控制消息传送到目的地。 当客户端上的应用程序或加密通信软件发出指定具有应用程序唯一的标识信息的目的地的连接请求时,客户机或会话管理服务器自动将标识信息转换为可识别的域的期望资源标识符,从而确定域 作为接收到的连接请求消息的目的地。
-
公开(公告)号:US20060095768A1
公开(公告)日:2006-05-04
申请号:US11258418
申请日:2005-10-26
IPC分类号: H04L9/00
CPC分类号: H04L29/12009 , H04L29/12783 , H04L61/35 , H04L63/0428 , H04L63/164 , H04L63/166 , H04L67/14
摘要: A data communication method for forwarding a session control message designating a destination server with an IP address to the destination server via a session management server, wherein, when an application program or encrypted communication software on a client issues a connection request designating a destination server with an IP address, the client or the session management server automatically converts the IP address into a desired resource identifier identifiable a domain, thereby to determine the domain to which the received connection request message should be forwarded.
摘要翻译: 一种用于经由会话管理服务器将指定具有IP地址的目的地服务器的会话控制消息转发到目的地服务器的数据通信方法,其中,当客户端上的应用程序或加密通信软件发出指定目的地服务器的连接请求时, IP地址,客户端或会话管理服务器自动将IP地址转换为可识别的域的所需资源标识符,从而确定所接收的连接请求消息应转发到的域。
-
公开(公告)号:US08041822B2
公开(公告)日:2011-10-18
申请号:US11417054
申请日:2006-05-04
IPC分类号: G06F15/16
CPC分类号: H04L63/0428 , H04L29/06027 , H04L63/08 , H04L65/1006 , H04L67/1002 , H04L67/1008 , H04L67/1023
摘要: A server device that represents a plurality of service provision servers implements authentication and a SIP message exchange with respect to a SIP server as a representative, and notifies a service provision server of client communication information that is acquired by the SIP message exchange. The service provision server communicates with a client on the basis of the client communication information that is notified from the representative server.
摘要翻译: 表示多个服务提供服务器的服务器装置以代表SIP服务器的身份执行认证和SIP消息交换,并向服务提供服务器通知由SIP消息交换获取的客户端通信信息。 服务提供服务器基于从代表服务器通知的客户端通信信息与客户端进行通信。
-
公开(公告)号:US07657035B2
公开(公告)日:2010-02-02
申请号:US11504767
申请日:2006-08-16
CPC分类号: H04L63/0428 , H04L9/083 , H04L9/0869 , H04L63/20
摘要: Each terminal registers the key generation information into each session management server, the information including a plurality of setting items necessary for determining set values to generated a key to be used by itself, and set value candidates which are stored in the setting items.When the encryption communications are established between the terminals, the individual session management servers and a key generation information management server are associated, so that the key generation information management server selects the algorithm suite based on the key generation information. The session management server generates the parameters based on the selected algorithm suite, acquires the information on the selected algorithm suite from the key generation information management server, generates the key for the encryption communications based on that information and distributes the key to the each terminal.
摘要翻译: 每个终端将密钥生成信息注册到每个会话管理服务器中,该信息包括确定设置值所需的多个设置项目以产生要自己使用的密钥,并设置存储在设置项目中的值候选。 当在终端之间建立加密通信时,各个会话管理服务器和密钥生成信息管理服务器相关联,使得密钥生成信息管理服务器基于密钥生成信息来选择算法套件。 会话管理服务器根据选择的算法套件生成参数,从密钥生成信息管理服务器获取所选算法套件的信息,根据该信息生成加密通信的密钥,并将密钥分配给每个终端。
-
10.发明授权公开(公告)号:US07443986B2
公开(公告)日:2008-10-28
申请号:US10931219
申请日:2004-09-01
IPC分类号: H04L9/00
CPC分类号: H04L63/0428 , H04L63/062
摘要: Both a management server and a validation server are installed. Both a terminal and a terminal register setting information which is usable in an encrypted communication in the management server. When carrying out the encrypted communication, the management server searches the registered setting information for coincident setting information. The management server generates keys for the encrypted communications which can be used by the terminals, and delivers these generated keys in combination with the coincident setting information. The management server authenticates both the terminals in conjunction with the validation server. Since the terminals trust such results that the management server has authenticated the terminals respectively, these terminals need not authenticate the respective communication counter terminals.
摘要翻译: 管理服务器和验证服务器均已安装。 终端和终端注册设置信息可用于管理服务器中的加密通信。 当执行加密通信时,管理服务器搜索登记的设置信息以获得一致的设置信息。 管理服务器生成可由终端使用的加密通信的密钥,并将这些生成的密钥与重合的设置信息相结合。 管理服务器与验证服务器一起认证两个终端。 由于终端信任这样的结果,管理服务器分别对终端进行认证,所以这些终端不需要对相应的通信计数器终端进行认证。
-
-
-
-
-
-
-
-
-
搜索结果
68 条记录 (耗时 0.031 秒)
