-
1.发明申请System and method for storing user credentials on a server copyright notice 审中-公开在服务器上存储用户凭证的系统和方法版权声明公开(公告)号:US20050138367A1
公开(公告)日:2005-06-23
申请号:US10741669
申请日:2003-12-19
申请人: Robert Paganetti , Alan Eldridge , Charles Kaufman , Mary Zurko , Katherine Emling , Richard Davies
发明人: Robert Paganetti , Alan Eldridge , Charles Kaufman , Mary Zurko , Katherine Emling , Richard Davies
CPC分类号: H04L63/0823 , H04L63/0428 , H04L63/083
摘要: The invention relates generally secure mail operations. More particularly, the invention provides a method for managing a user security credential, the method comprising: storing, in a file contained in a data store communicatively coupled to a mail server, a security credential associated with a user; authorizing a client to access the data store according to an access permission associated with the user; retrieving the security credential from the file; and initiating a security-related mail operation from the client using the security credential without the security credential leaving the server.
摘要翻译: 本发明一般涉及安全邮件操作。 更具体地说,本发明提供了一种用于管理用户安全凭证的方法,所述方法包括:在通信地耦合到邮件服务器的数据存储器中包含的文件中存储与用户相关联的安全凭证; 授权客户端根据与用户相关联的访问权限来访问数据存储; 从文件检索安全凭证; 以及使用安全凭证从客户端发起与安全相关的邮件操作,而没有离开服务器的安全凭证。
-
公开(公告)号:US20050138388A1
公开(公告)日:2005-06-23
申请号:US10741315
申请日:2003-12-19
申请人: Robert Paganetti , Alan Eldridge , Charles Kaufman
发明人: Robert Paganetti , Alan Eldridge , Charles Kaufman
CPC分类号: H04L63/0823 , H04L63/126
摘要: The invention provides a method for managing cryptographically generated data tokens, the method comprising: decoding a data file to retrieve a first cryptographically generated data token, identifying a second cryptographically generated data token associated with the first data token, and updating the second data token according to a security preference related to a characteristic of the first or the second data token.
摘要翻译: 本发明提供了一种用于管理加密生成的数据令牌的方法,所述方法包括:对数据文件进行解码以检索第一加密生成的数据令牌,识别与第一数据令牌相关联的第二加密生成的数据令牌,以及根据 涉及与第一或第二数据令牌的特征相关的安全偏好。
-
公开(公告)号:US20070157032A1
公开(公告)日:2007-07-05
申请号:US11323986
申请日:2005-12-29
申请人: Robert Paganetti , David Kern
发明人: Robert Paganetti , David Kern
IPC分类号: G06F12/14
CPC分类号: G06F21/31 , G06F2221/2131
摘要: A method is provided for a enabling a user to initiate a password protected backup copy of the user's credentials. The method includes providing a user with a credential store containing information relating to the user's identity, generating a different recovery password of any length for each recovery authority, encrypting the recovery password for each recovery authority, storing the encrypted recovery passwords in the credential store, and sending a copy of the information by the user from the credential store to a central repository.
摘要翻译: 提供了一种用于使用户能够启动用户凭据的受密码保护的备份副本的方法。 该方法包括向用户提供包含与用户身份相关的信息的凭证存储,为每个恢复机构生成任何长度的不同恢复密码,加密每个恢复授权机构的恢复密码,将加密的恢复密码存储在凭证存储器中, 并将用户信息的副本从凭证存储区发送到中央存储库。
-
公开(公告)号:US20070255943A1
公开(公告)日:2007-11-01
申请号:US11379088
申请日:2006-04-18
申请人: David Kern , Shiu Poon , Robert Paganetti
发明人: David Kern , Shiu Poon , Robert Paganetti
IPC分类号: H04L9/00
CPC分类号: H04L9/0894
摘要: A system for automating the recovery of a credential store, in which client software generates a temporary key pair based on a new password, and sends client information including the user's name, the public half of the temporary key pair, and the host name of the client computer system to a server system, from which the client information is passed to a recovery process. The client software process displays a prompt indicating that the user should call a help desk. A help desk administrator verifies the user's identity and approves the user's request by causing an approval message to be sent to the recovery process. The recovery process obtains recovery information consisting of either the decryption key(s) for the credential store, or a decrypted copy of the credential store, and encrypts the recovery information using the temporary public key. The client process downloads the recovery information from the server, and decrypts it using private key of the temporary key pair. The credential store can then be decrypted using the recovery information if necessary, then re-encrypted based on the new password. The encrypted recovery information is stored on the server and re-used for a certain period of time, after which it is deleted, thus allowing multiple copies of the credential store to be conveniently recovered.
摘要翻译: 一种用于自动恢复凭证存储的系统,其中客户端软件基于新密码生成临时密钥对,并且发送包括用户名,临时密钥对的公开一半以及临时密钥对的主机名的客户端信息 客户端计算机系统到服务器系统,客户端信息从该系统传递到恢复过程。 客户端软件进程显示一个提示,指示用户应该呼叫帮助台。 帮助台管理员通过将批准消息发送到恢复过程来验证用户的身份并批准用户的请求。 恢复过程获得由用于证书存储的解密密钥或证书存储的解密密钥组成的恢复信息,并且使用临时公钥加密恢复信息。 客户端进程从服务器下载恢复信息,并使用临时密钥对的私钥对其进行解密。 然后可以使用恢复信息来解密凭证存储,如果需要,然后基于新密码重新加密。 加密的恢复信息存储在服务器上并重新使用一段时间,之后被删除,从而可以方便地恢复凭证存储的多个副本。
-
5.发明申请Method for enabling a user to initiate a password protected backup of the user's credentials 审中-公开允许用户启动用户凭据的密码保护备份的方法公开(公告)号:US20070168656A1
公开(公告)日:2007-07-19
申请号:US11324026
申请日:2005-12-29
申请人: Robert Paganetti , David Kern
发明人: Robert Paganetti , David Kern
IPC分类号: H04L9/00
CPC分类号: G06F21/31 , G06F11/1451 , G06F11/1458 , G06F2221/2131
摘要: A method is provided for a enabling a user to initiate a password protected backup copy of the user's credentials. The method includes providing a user with a credential store containing information relating to the user's identity, generating a different recovery password of any length for each recovery authority, encrypting the recovery password for each recovery authority, storing the encrypted recovery passwords in the credential store, and sending a copy of the information by the user from the credential store to a central repository.
摘要翻译: 提供了一种用于使用户能够启动用户凭据的受密码保护的备份副本的方法。 该方法包括向用户提供包含与用户身份相关的信息的凭证存储,为每个恢复机构生成任何长度的不同恢复密码,加密每个恢复授权机构的恢复密码,将加密的恢复密码存储在凭证存储器中, 并将用户信息的副本从凭证存储区发送到中央存储库。
-
-
-
-
搜索结果
5 条记录 (耗时 0.044 秒)
