-
1.发明申请System and method for accessing information resources using cryptographic authorization permits 有权使用加密授权许可访问信息资源的系统和方法公开(公告)号:US20080250253A1
公开(公告)日:2008-10-09
申请号:US11783359
申请日:2007-04-09
IPC分类号: H04L9/32
CPC分类号: H04L9/3294 , H04L9/006 , H04L9/3215 , H04L9/3247 , H04L9/3263
摘要: A system and method for securing information associates a party with a node that communicates messages over one or more channels based on a channel access privilege. One or more authorities sign a cryptographic authorization permit (CAP) to authorize the channel access privilege, which can be a write privilege or a read privilege. In one embodiment, the authorization for the channel access privilege is based on a public key issued by an authority and the CAP comprises a cryptographic certificate digitally signed by the authority.
摘要翻译: 用于保护信息的系统和方法基于信道访问特权将一方与通过一个或多个信道传送消息的节点相关联。 一个或多个当局签署加密授权许可证(CAP)以授权通道访问权限,这可以是写权限或读权限。 在一个实施例中,信道访问特权的授权基于由主管机构发布的公共密钥,并且CAP包括由机构数字签名的密码证书。
-
公开(公告)号:US20120215881A1
公开(公告)日:2012-08-23
申请号:US13280029
申请日:2011-10-24
IPC分类号: G06F15/16
CPC分类号: H04L41/0803 , H04L41/0893 , H04L41/0896 , H04L43/00 , H04L63/0428 , H04L63/18
摘要: A system and method for communicating data between two nodes defines a plurality of separate partitions on each node and assigns one or more subjects to at least one of the plurality of the separate partitions. The subjects in each node communicate data with each other over one or more channels. For communicating the data, the present invention separates data communications on a channel from that of other channels. More specifically, each node runs under the control of a separation kernel (SK) that partitions the nodes to define the subjects according to an SK configuration data. A partitioning communication system (PCS) separates the communications channels according to a PCS configuration data.
摘要翻译: 用于在两个节点之间传送数据的系统和方法在每个节点上定义多个单独的分区,并将一个或多个主体分配给所述多个独立分区中的至少一个。 每个节点中的主体通过一个或多个信道彼此通信数据。 为了传送数据,本发明将信道上的数据通信与其他信道的数据通信分开。 更具体地,每个节点在分离核心(SK)的控制下运行,分离核(SK)根据SK配置数据分割节点以定义对象。 分区通信系统(PCS)根据PCS配置数据分离通信信道。
-
公开(公告)号:US20090089358A1
公开(公告)日:2009-04-02
申请号:US12327490
申请日:2008-12-03
CPC分类号: H04L41/0803 , H04L41/0893 , H04L41/0896 , H04L43/00 , H04L63/0428 , H04L63/18
摘要: A system and method for communicating data between two nodes defines a plurality of separate partitions on each node and assigns one or more subjects to at least one of the plurality of the separate partitions. The subjects in each node communicate data with each other over one or more channels. For communicating the data, the present invention separates data communications on a channel from that of other channels. More specifically, each node runs under the control of a separation kernel (SK) that partitions the nodes to define the subjects according to an SK configuration data. A partitioning communication system (PCS) separates the communications channels according to a PCS configuration data.
摘要翻译: 用于在两个节点之间传送数据的系统和方法在每个节点上定义多个单独的分区,并将一个或多个主体分配给所述多个独立分区中的至少一个。 每个节点中的主体通过一个或多个信道彼此通信数据。 为了传送数据,本发明将信道上的数据通信与其他信道的数据通信分开。 更具体地,每个节点在分离核心(SK)的控制下运行,分离核(SK)根据SK配置数据分割节点以定义对象。 分区通信系统(PCS)根据PCS配置数据分离通信信道。
-
4.发明授权System and method that uses cryptographic certificates to define groups of entities 有权使用加密证书来定义实体组的系统和方法公开(公告)号:US08380981B2
公开(公告)日:2013-02-19
申请号:US12122352
申请日:2008-05-16
IPC分类号: H04L29/06
CPC分类号: G06F21/602 , H04L9/3255 , H04L9/3263
摘要: A system and method for issuing a cryptographic certificate includes describing one or more prerequisite condition on the cryptographic certificate. The one or more prerequisite conditions comprise membership in one or more prerequisite group of entities. An entity may be a participant, a resource or a privilege, etc. The present invention also requires naming one or more target groups of entities on the cryptographic certificate. One or more prerequisite group stakeholder that authorizes an entity in the one or more prerequisite group of entities to be added as members in another group of entities sign the cryptographic certificate. The cryptographic certificate is also signed by one or more target group stakeholders that authorizes an entity to be added as a member of the one or more target groups. Exemplary prerequisite conditions relate to one or more of a membership in another group of entities, a physical characteristic, a temporal characteristic, a location characteristic or a position characteristic, among others.
摘要翻译: 用于发布加密证书的系统和方法包括描述加密证书上的一个或多个先决条件。 一个或多个先决条件包括在一个或多个先决条件组的实体中的成员资格。 实体可以是参与者,资源或特权等。本发明还要求在加密证书上命名一个或多个目标实体组。 一个或多个先决条件组利益相关者授权一个或多个实体组中的实体在另一组实体中添加为成员,以签署加密证书。 加密证书还由一个或多个目标组利益相关者签署,授权一个实体作为一个或多个目标组的成员添加。 示例性先决条件涉及另一组实体中的成员资格,物理特征,时间特征,位置特征或位置特征等中的一个或多个。
-
公开(公告)号:US07474618B2
公开(公告)日:2009-01-06
申请号:US11125099
申请日:2005-05-10
CPC分类号: H04L41/0803 , H04L41/0893 , H04L41/0896 , H04L43/00 , H04L63/0428 , H04L63/18
摘要: A system and method for communicating data between two nodes defines a plurality of separate partitions on each node and assigns one or more subjects to at least one of the plurality of the separate partitions. The subjects in each node communicate data with each other over one or more channels. For communicating the data, the present invention separates data communications on a channel from that of other channels. More specifically, each node runs under the control of a separation kernel (SK) that partitions the nodes to define the subjects according to an SK configuration data. A partitioning communication system (PCS) separates the communications channels according to a PCS configuration data.
摘要翻译: 用于在两个节点之间传送数据的系统和方法在每个节点上定义多个单独的分区,并将一个或多个主体分配给所述多个独立分区中的至少一个。 每个节点中的主体通过一个或多个信道彼此通信数据。 为了传送数据,本发明将信道上的数据通信与其他信道的数据通信分开。 更具体地,每个节点在分离核心(SK)的控制下运行,分离核(SK)根据SK配置数据分割节点以定义对象。 分区通信系统(PCS)根据PCS配置数据分离通信信道。
-
6.发明申请SYSTEM AND METHOD FOR ACCESSING INFORMATION RESOURCES USING CRYPTOGRAPHIC AUTHORIZATION PERMITS 审中-公开使用CRYPTOGRAPHIC授权密码访问信息资源的系统和方法公开(公告)号:US20130254540A1
公开(公告)日:2013-09-26
申请号:US13893123
申请日:2013-05-13
IPC分类号: H04L9/32
CPC分类号: H04L9/006 , H04L9/3215 , H04L9/3247 , H04L9/3263
摘要: A system and method for securing information associates a party with a node that communicates messages over one or more channels based on a channel access privilege. One or more authorities sign a cryptographic authorization permit (CAP) to authorize the channel access privilege, which can be a write privilege or a read privilege. In one embodiment, the authorization for the channel access privilege is based on a public key issued by an authority and the CAP comprises a cryptographic certificate digitally signed by the authority.
摘要翻译: 用于保护信息的系统和方法基于信道访问特权将一方与通过一个或多个信道传送消息的节点相关联。 一个或多个当局签署加密授权许可证(CAP)以授权通道访问权限,这可以是写权限或读权限。 在一个实施例中,信道访问特权的授权基于由主管机构发布的公共密钥,并且CAP包括由机构数字签名的密码证书。
-
公开(公告)号:US08045462B2
公开(公告)日:2011-10-25
申请号:US12327490
申请日:2008-12-03
IPC分类号: H04L12/26
CPC分类号: H04L41/0803 , H04L41/0893 , H04L41/0896 , H04L43/00 , H04L63/0428 , H04L63/18
摘要: A system and method for communicating data between two nodes defines a plurality of separate partitions on each node and assigns one or more subjects to at least one of the plurality of the separate partitions. The subjects in each node communicate data with each other over one or more channels. For communicating the data, the present invention separates data communications on a channel from that of other channels. More specifically, each node runs under the control of a separation kernel (SK) that partitions the nodes to define the subjects according to an SK configuration data. A partitioning communication system (PCS) separates the communications channels according to a PCS configuration data.
摘要翻译: 用于在两个节点之间传送数据的系统和方法在每个节点上定义多个单独的分区,并将一个或多个主体分配给所述多个独立分区中的至少一个。 每个节点中的主体通过一个或多个信道彼此通信数据。 为了传送数据,本发明将信道上的数据通信与其他信道的数据通信分开。 更具体地,每个节点在分离核心(SK)的控制下运行,分离核(SK)根据SK配置数据分割节点以定义对象。 分区通信系统(PCS)根据PCS配置数据分离通信信道。
-
-
-
-
-
-
搜索结果
7 条记录 (耗时 0.02 秒)
