公开(公告)号：US07673001B1

公开(公告)日：2010-03-02

申请号：US10720034

申请日：2003-11-21

申请人： Ryan W. Battle ,  Kenneth Fern ,  Peter Ollodart ,  Austina De Bonte ,  Yikang Xu ,  Christer Lundin

发明人： Ryan W. Battle ,  Kenneth Fern ,  Peter Ollodart ,  Austina De Bonte ,  Yikang Xu ,  Christer Lundin

IPC分类号： G06F15/16

CPC分类号： H04L51/04

摘要： Techniques are described that enable enterprise management of public instant message (IM) communications. When a user requests a connection with a public IM service, the connection request is redirected to a gateway server that is associated with a domain specified in the user's user ID. The gateway server acts as a pass through server between the user's IM client application and the public IM service. The gateway server may be configured to log IM communications in which the user participates. The gateway server may also be configured to control whether or not the user is able to participate in point-to-point communications through the user's IM client application. An enterprise routing server may also be implemented in a geo-distributed enterprise to route a redirected public IM connection request to an enterprise IM gateway server based on a geographic location associated with the user.

摘要翻译： 描述了使企业管理公共即时消息（IM）通信的技术。 当用户请求与公共IM服务的连接时，连接请求被重定向到与用户的用户ID中指定的域相关联的网关服务器。 网关服务器作为用户的IM客户端应用程序和公共IM服务之间的通过服务器。 网关服务器可以被配置为记录用户参与的IM通信。 网关服务器还可以被配置为控制用户是否能够通过用户的IM客户端应用参与点对点通信。 还可以在地理分布式企业中实现企业路由服务器，以基于与用户相关联的地理位置将重定向的公共IM连接请求路由到企业IM网关服务器。

公开(公告)号：US08495155B2

公开(公告)日：2013-07-23

申请号：US12714286

申请日：2010-02-26

申请人： Ryan W. Battle ,  Kenneth Fern ,  Peter Ollodart ,  Austina M. De Bonte ,  Yikang Xu ,  Christer Lundin

发明人： Ryan W. Battle ,  Kenneth Fern ,  Peter Ollodart ,  Austina M. De Bonte ,  Yikang Xu ,  Christer Lundin

IPC分类号： G06F15/16

CPC分类号： H04L51/04

摘要： Techniques are described that enable enterprise management of public instant message (IM) communications. When a user requests a connection with a public IM service, the connection request is redirected to a gateway server that is associated with a domain specified in the user's user ID. The gateway server acts as a pass through server between the user's IM client application and the public IM service. The gateway server may be configured to log IM communications in which the user participates. The gateway server may also be configured to control whether or not the user is able to participate in point-to-point communications through the user's IM client application. An enterprise routing server may also be implemented in a geo-distributed enterprise to route a redirected public IM connection request to an enterprise IM gateway server based on a geographic location associated with the user.

摘要翻译： 描述了使企业管理公共即时消息（IM）通信的技术。 当用户请求与公共IM服务的连接时，连接请求被重定向到与用户的用户ID中指定的域相关联的网关服务器。 网关服务器作为用户的IM客户端应用程序和公共IM服务之间的通过服务器。 网关服务器可以被配置为记录用户参与的IM通信。 网关服务器还可以被配置为控制用户是否能够通过用户的IM客户端应用参与点对点通信。 还可以在地理分布式企业中实现企业路由服务器，以基于与用户相关联的地理位置将重定向的公共IM连接请求路由到企业IM网关服务器。

公开(公告)号：US20100162362A1

公开(公告)日：2010-06-24

申请号：US12714286

申请日：2010-02-26

申请人： Ryan W. Battle ,  Kenneth Fern ,  Peter Ollodart ,  Austina M. De Bonte ,  Yikang Xu ,  Christer Lundin

发明人： Ryan W. Battle ,  Kenneth Fern ,  Peter Ollodart ,  Austina M. De Bonte ,  Yikang Xu ,  Christer Lundin

IPC分类号： G06F15/16 ,  G06F21/00 ,  G06F15/173

CPC分类号： H04L51/04

摘要： Techniques are described that enable enterprise management of public instant message (IM) communications. When a user requests a connection with a public IM service, the connection request is redirected to a gateway server that is associated with a domain specified in the user's user ID. The gateway server acts as a pass through server between the user's IM client application and the public IM service. The gateway server may be configured to log IM communications in which the user participates. The gateway server may also be configured to control whether or not the user is able to participate in point-to-point communications through the user's IM client application. An enterprise routing server may also be implemented in a geo-distributed enterprise to route a redirected public IM connection request to an enterprise IM gateway server based on a geographic location associated with the user.

摘要翻译： 描述了使企业管理公共即时消息（IM）通信的技术。 当用户请求与公共IM服务的连接时，连接请求被重定向到与用户的用户ID中指定的域相关联的网关服务器。 网关服务器作为用户的IM客户端应用程序和公共IM服务之间的通过服务器。 网关服务器可以被配置为记录用户参与的IM通信。 网关服务器还可以被配置为控制用户是否能够通过用户的IM客户端应用参与点对点通信。 还可以在地理分布式企业中实现企业路由服务器，以基于与用户相关联的地理位置将重定向的公共IM连接请求路由到企业IM网关服务器。

公开(公告)号：US07421731B2

公开(公告)日：2008-09-02

申请号：US09792359

申请日：2001-02-23

申请人： Christopher E. Mitchell ,  Ryan W. Battle ,  Darren L. Anderson ,  Joshua G. Poley ,  Greg A. Marks ,  John Hal Howard ,  Michael Wei-Quiang Guo

发明人： Christopher E. Mitchell ,  Ryan W. Battle ,  Darren L. Anderson ,  Joshua G. Poley ,  Greg A. Marks ,  John Hal Howard ,  Michael Wei-Quiang Guo

IPC分类号： G06F7/04

CPC分类号： H04L63/0815

摘要： A user, by way of a computing device, requests and receives content from a first server at the computing device. An authentication response is also received from the first server at the computing device of the user. The authentication response includes an address of the second server and an executable script. The computing device of the user executes the executable script by issuing a request to the second server for state information corresponding to the user, receiving the state information from the second server; and determining, based on the state information, whether the user is authenticated to the second server. If the user is not authenticated to the second server, the computer device of the user displays a login module that is visually associated with the first server. Such login module collects login information for authenticating the user to the second server. If the user is authenticated in the second server, the computing device of the user issues a request to the second server for vouching information for authenticating the user to the first server.

摘要翻译： 用户通过计算设备从计算设备上的第一服务器请求和接收内容。 还在用户的计算设备处从第一服务器接收认证响应。 认证响应包括第二服务器的地址和可执行脚本。 用户的计算设备通过向第二服务器发出对应于用户的状态信息的请求来执行可执行脚本，从第二服务器接收状态信息; 以及基于所述状态信息来确定所述用户是否被认证到所述第二服务器。 如果用户没有对第二服务器进行认证，则用户的计算机设备显示与第一服务器可视地相关联的登录模块。 这样的登录模块收集用于将用户认证给第二服务器的登录信息。 如果用户在第二服务器中被认证，则用户的计算设备向第二服务器发出请求，用于向第一服务器提供用于认证用户的信息。

公开(公告)号：US06678731B1

公开(公告)日：2004-01-13

申请号：US09350018

申请日：1999-07-08

申请人： John Hal Howard ,  Jeffrey C. Kunins ,  Darren L. Anderson ,  Ryan W. Battle ,  Max E. Metral

发明人： John Hal Howard ,  Jeffrey C. Kunins ,  Darren L. Anderson ,  Ryan W. Battle ,  Max E. Metral

IPC分类号： G06F15173

CPC分类号： H04L63/0815 ,  G06F21/31 ,  G06F21/335 ,  G06F21/41

摘要： A system determines whether to grant a user access to a network server. Prior to granting access to the network server, the network server authenticates the user by sending an authentication request to an authentication server. The authentication server determines whether the user was already authenticated by the authentication server. If the user is authenticated by the authentication server, then the network server is notified that the user is authenticated through the use of an authentication ticket, and the network server grants the network server user access. If the user is not authenticated by the authentication server, then login information is retrieved from the user and compared to authentication information maintained by the authentication server. If the retrieved login information matches the authentication information, then the network server is notified that the user is authenticated by using the authentication ticket.

摘要翻译： 系统确定是否授予用户对网络服务器的访问权限。 在授予对网络服务器的访问之前，网络服务器通过向认证服务器发送认证请求来认证用户。 认证服务器确定用户是否已被认证服务器认证。 如果认证服务器对用户进行了认证，则通知网络服务器通过使用认证券对用户进行认证，网络服务器授权网络服务器用户访问。 如果用户未被认证服务器认证，则从用户检索登录信息，并与验证服务器维护的认证信息进行比较。 如果检索到的登录信息与验证信息匹配，则通知网络服务器通过使用认证券对用户进行认证。

公开(公告)号：US07590731B2

公开(公告)日：2009-09-15

申请号：US10720499

申请日：2003-11-24

申请人： John Hal Howard ,  Jeffrey C. Kunins ,  Darren L. Anderson ,  Ryan W. Battle ,  Max E. Metral

发明人： John Hal Howard ,  Jeffrey C. Kunins ,  Darren L. Anderson ,  Ryan W. Battle ,  Max E. Metral

IPC分类号： G06F15/173

CPC分类号： H04L63/0815 ,  G06F21/31 ,  G06F21/335 ,  G06F21/41

摘要： A mechanism for seeking access of a client to a first server is described. The mechanism involves determining that a client seeking access to the first server is not authenticated by an authentication server. The mechanism further involves communicating a request for login information to be returned to the second server from the client. Login information is received at the authentication server from the client. The client is authenticated by comparing the login information with authentication information maintained by the authentication server. When the login information matches the authentication information, a user authentication indicator is generated at the authentication server and the user sends the authentication indicator to the first server.

摘要翻译： 描述了一种用于寻求客户端访问第一服务器的机制。 该机制涉及确定寻求对第一服务器的访问的客户端不被认证服务器认证。 该机制还涉及从客户端传送要返回给第二服务器的登录信息的请求。 从客户端在认证服务器处接收登录信息。 通过将登录信息与认证服务器维护的认证信息进行比较，对客户端进行认证。 登录信息与认证信息一致时，认证服务器生成用户认证指示符，用户向第一个服务器发送认证指示符。

公开(公告)号：US07016960B2

公开(公告)日：2006-03-21

申请号：US10427080

申请日：2003-04-30

申请人： John Hal Howard ,  Jeffrey C. Kunins ,  Darren L. Anderson ,  Ryan W. Battle ,  Max E. Metral

发明人： John Hal Howard ,  Jeffrey C. Kunins ,  Darren L. Anderson ,  Ryan W. Battle ,  Max E. Metral

IPC分类号： G06F15/173

CPC分类号： H04L63/168 ,  G06F21/31 ,  H04L63/08 ,  H04L63/0815

摘要： A system determines whether to grants access to a network server by a user. Initially, a user attempts to gain access to a network server, such as a web server. Prior to granting access to the network server, the network server authenticates the user by sending an authentication request to an authentication server. The authentication server determines whether the user was already authenticated by the authentication server. If the user was already authenticated by the authentication server, then the network server is notified that the user is authenticated. The network server then grants the user access to the network server. If the user was not already authenticated by the authentication server, then login information is retrieved from the user and compared to authentication information maintained by the authentication server. If the retrieved login information matches the authentication information, then the network server is notified that the user is authenticated. The retrieved login information and the authentication information is concealed from the network server. If the user is authenticated, then a user profile is communicated to the network server along with the notification that the user is authenticated. If the user is successfully authenticated, then a cookie is provided to an Internet browser operated by the user. The cookie contains information regarding user authentication, the user's profile, and a list of network servers previously visited by the user.

摘要翻译： 系统确定是否允许用户访问网络服务器。 最初，用户尝试访问诸如web服务器之类的网络服务器。 在授予对网络服务器的访问之前，网络服务器通过向认证服务器发送认证请求来认证用户。 认证服务器确定用户是否已被认证服务器认证。 如果用户已经被认证服务器认证，则网络服务器被通知用户被认证。 网络服务器然后授权用户访问网络服务器。 如果用户尚未被认证服务器认证，则从用户检索登录信息，并与验证服务器维护的认证信息进行比较。 如果检索到的登录信息与验证信息相匹配，则网络服务器被通知用户被认证。 检索到的登录信息和认证信息被从网络服务器隐藏。 如果用户被认证，则将用户简档与用户被认证的通知一起传送到网络服务器。 如果用户成功通过认证，则将cookie提供给用户操作的因特网浏览器。 该cookie包含有关用户认证，用户配置文件以及用户以前访问过的网络服务器列表的信息。

公开(公告)号：US06912582B2

公开(公告)日：2005-06-28

申请号：US09823324

申请日：2001-03-30

申请人： Wei-Quiang Michael Guo ,  Baskaran Dharmarajan ,  Ryan W. Battle

发明人： Wei-Quiang Michael Guo ,  Baskaran Dharmarajan ,  Ryan W. Battle

IPC分类号： H04L29/06 ,  G06F15/16

CPC分类号： H04L63/08 ,  H04L63/083

摘要： A computerized method and system for routing between network servers. A central database coupled to a central server on a data communication network stores information for identifying locations of a plurality of network servers on the network. Each network server provides at least one service via the network. The central server receives a request from the user for a selected service including a carry through keyword for controlling routing of the user to the selected service. The central server retrieves location information from the central database to identify the location of the network server providing the selected service and attaches the carry through keyword to the retrieved location information. The central server then routes the user with the carry through keyword to the network server, which directs the user to the selected service based on the carry through keyword.

摘要翻译： 网络服务器间路由选择的计算机化方法和系统。 耦合到数据通信网络上的中央服务器的中央数据库存储用于识别网络上的多个网络服务器的位置的信息。 每个网络服务器通过网络提供至少一个服务。 中央服务器从用户接收针对所选服务的请求，所述服务包括用于控制用户到选定服务的路由的进位到关键字。 中央服务器从中央数据库检索位置信息，以识别提供所选服务的网络服务器的位置，并将进位关键字附加到检索到的位置信息。 然后，中央服务器将具有进位到关键字的用户路由到网络服务器，该网络服务器基于进位关键字将用户引导到所选择的服务。

公开(公告)号：US07810136B2

公开(公告)日：2010-10-05

申请号：US11032409

申请日：2005-01-10

申请人： Wei-Quiang Michael Guo ,  Baskaran Dharmarajan ,  Ryan W. Battle

发明人： Wei-Quiang Michael Guo ,  Baskaran Dharmarajan ,  Ryan W. Battle

IPC分类号： G06F17/30 ,  H04L29/06 ,  G06F15/16

CPC分类号： H04L63/08 ,  H04L63/083

摘要： A computerized method and system for routing between network servers. A central database coupled to a central server on a data communication network stores information for identifying locations of a plurality of network servers on the network. Each network server provides at least one service via the network. The central server receives a request from the user for a selected service including a carry through keyword for controlling routing of the user to the selected service. The central server retrieves location information from the central database to identify the location of the network server providing the selected service and attaches the carry through keyword to the retrieved location information. The central server then routes the user with the carry through keyword to the network server, which directs the user to the selected service based on the carry through keyword.

摘要翻译： 网络服务器间路由选择的计算机化方法和系统。 耦合到数据通信网络上的中央服务器的中央数据库存储用于识别网络上的多个网络服务器的位置的信息。 每个网络服务器通过网络提供至少一个服务。 中央服务器从用户接收针对所选服务的请求，所述服务包括用于控制用户到选定服务的路由的进位到关键字。 中央服务器从中央数据库检索位置信息，以识别提供所选服务的网络服务器的位置，并将进位关键字附加到检索到的位置信息。 然后，中央服务器将具有进位到关键字的用户路由到网络服务器，该网络服务器基于进位关键字将用户引导到所选择的服务。

公开(公告)号：US07673045B1

公开(公告)日：2010-03-02

申请号：US09594332

申请日：2000-06-15

申请人： Ryan W. Battle ,  Christopher E. Mitchell

发明人： Ryan W. Battle ,  Christopher E. Mitchell

IPC分类号： G06F15/173

CPC分类号： H04L63/0815 ,  G06F21/41 ,  G06F2221/2149 ,  H04L67/02

摘要： A logout feature of a service that facilitates login to multiple domain websites maintains a list of the sites that a user logs on to during a session and completely logs the user out of all the sites they visited during the session. A data structure in the form of a cookie named “Visited Sites” is used by a login server to maintain a list of all sites that a user logs on to during a session. When the user selects a logout link anywhere on the network, they are directed to a logout page on the login server. The login server retires all login domain cookies first, and displays a page that explains to the user that they are about to be logged out of each domain. The logout page generates image tags for each of the sites listed in the visited-sites cookie. The image tag provides a URL hosted at each site that expires any Passport cookies that are present at the site.

摘要翻译： 便于登录到多个域网站的服务的注销功能维护用户在会话期间登录的站点的列表，并将用户从会话期间访问的所有站点中完全记录。 登录服务器使用名为“访问站点”的cookie形式的数据结构来维护用户在会话期间登录的所有站点的列表。 当用户在网络上的任何地方选择注销链接时，它们被定向到登录服务器上的注销页面。 登录服务器首先退出所有登录域cookie，并显示一个页面，向用户说明他们即将从每个域中注销。 注销页面为访问站点cookie中列出的每个站点生成图像标记。 图像标记提供托管在每个站点的网址，该网址将过期现场的任何护照Cookie。