-
1.发明授权Determining server resources accessible to client nodes using information received at the server via a communications medium 失效使用通过通信介质在服务器接收的信息来确定客户机节点可访问的服务器资源公开(公告)号:US07451219B2
公开(公告)日:2008-11-11
申请号:US10702179
申请日:2003-11-05
IPC分类号: G06F13/00
CPC分类号: G06F21/6218
摘要: Resources of a server node are logically divided into a plurality of sets of resources. At least one set of resources is assigned to one or more client nodes. The association of the at least one set of resources with the one or more client nodes is via a data structure stored at the server node. The data structure is provided by a trusted agent over a communications medium coupling the server node and the one or more client nodes. It includes information that indicates the resources accessible by the client nodes. To access the information, an identifier, also provided by a trusted agent, is employed.
摘要翻译: 服务器节点的资源在逻辑上被划分为多组资源。 至少一组资源被分配给一个或多个客户端节点。 至少一组资源与一个或多个客户端节点的关联是经由存储在服务器节点处的数据结构。 数据结构由可信代理通过耦合服务器节点和一个或多个客户端节点的通信介质提供。 它包括指示客户机节点可访问的资源的信息。 为了访问信息,使用也由可信代理提供的标识符。
-
公开(公告)号:US07720907B2
公开(公告)日:2010-05-18
申请号:US12140489
申请日:2008-06-17
IPC分类号: G06F15/16
CPC分类号: G06F9/468 , G06Q20/3674 , G06Q20/3829 , G06Q20/4012
摘要: A system for supervisor partitioning of client resources in a subnet communications environment includes a plurality of client nodes, each receiving an allocated set of resources determined by a central authority, which assigns resources to a supervisor key associated with each supervisor of the plurality of client nodes. At each of the client nodes, the allocated set of resources are partitioned using a local supervisor associated therewith, with each supervisor associating one or more resource keys with one or more resources allocated to the corresponding client node, and assigning the one or more resource keys to the one or more applications. The supervisor keys are configured so as to prevent a given supervisor from partitioning resources not allocated to the client node associated therewith. Following the partitioning, communication packets are issued from the one or more applications to a resource provider node without inspection by the corresponding supervisor.
摘要翻译: 用于子网通信环境中的客户端资源的管理员划分的系统包括多个客户端节点,每个客户端节点接收由中央管理机构确定的一组分配的资源,该资源将资源分配给与多个客户端节点中的每个主管相关联的管理员密钥 。 在每个客户端节点处,使用与其相关联的本地监督器对所分配的一组资源进行分区,每个主管将一个或多个资源密钥与分配给相应的客户机节点的一个或多个资源相关联,并且分配一个或多个资源密钥 到一个或多个应用程序。 管理员密钥被配置为防止给定的管理员分配未分配给与其相关联的客户机节点的资源。 在分区之后,通信分组从一个或多个应用发布到资源提供商节点,而不需要相应的主管的检查。
-
公开(公告)号:US07499970B2
公开(公告)日:2009-03-03
申请号:US10986577
申请日:2004-11-12
IPC分类号: G06F15/13
CPC分类号: G06F9/468 , G06Q20/3674 , G06Q20/3829 , G06Q20/4012
摘要: A method for supervisor partitioning of client resources in a communications environment includes receiving, at a client node, an allocated set of resources over a communications network, and partitioning the allocated set of resources among one or more applications associated with the client node using a local authority. Following the partitioning, communication requests are issued from the one or more applications to a shared resource provider node without inspection by the local authority.
摘要翻译: 一种用于在通信环境中的客户端资源的管理程序划分的方法包括:在客户端节点处,通过通信网络接收所分配的一组资源,以及使用本地的方式在与客户机节点相关联的一个或多个应用中分配所分配的一组资源 权威。 在分区之后,通信请求从一个或多个应用发布到共享资源提供者节点而不经地方当局的检查。
-
公开(公告)号:US20080250125A1
公开(公告)日:2008-10-09
申请号:US12140489
申请日:2008-06-17
IPC分类号: G06F15/177
CPC分类号: G06F9/468 , G06Q20/3674 , G06Q20/3829 , G06Q20/4012
摘要: A system for supervisor partitioning of client resources in a subnet communications environment includes a plurality of client nodes, each receiving an allocated set of resources determined by a central authority, which assigns resources to a supervisor key associated with each supervisor of the plurality of client nodes. At each of the client nodes, the allocated set of resources are partitioned using a local supervisor associated therewith, with each supervisor associating one or more resource keys with one or more resources allocated to the corresponding client node, and assigning the one or more resource keys to the one or more applications. The supervisor keys are configured so as to prevent a given supervisor from partitioning resources not allocated to the client node associated therewith. Following the partitioning, communication packets are issued from the one or more applications to a resource provider node without inspection by the corresponding supervisor.
摘要翻译: 用于子网通信环境中的客户端资源的管理员划分的系统包括多个客户端节点,每个客户端节点接收由中央管理机构确定的一组分配的资源,该资源将资源分配给与多个客户端节点中的每个主管相关联的管理员密钥 。 在每个客户端节点处,使用与其相关联的本地监督器对所分配的一组资源进行分区,每个主管将一个或多个资源密钥与分配给相应的客户机节点的一个或多个资源相关联,并且分配一个或多个资源密钥 到一个或多个应用程序。 管理员密钥被配置为防止给定的管理员分配未分配给与其相关联的客户机节点的资源。 在分区之后,通信分组从一个或多个应用发布到资源提供商节点,而不需要相应的主管的检查。
-
公开(公告)号:US20080271133A1
公开(公告)日:2008-10-30
申请号:US12168201
申请日:2008-07-07
IPC分类号: H04L9/32
CPC分类号: H04L63/06 , G06F2221/2105 , G06F2221/2129 , H04L29/12009 , H04L61/00 , H04L63/08 , H04L67/1097 , H04L69/329
摘要: A method for authenticating a requesting entity in a communications environment. In an exemplary embodiment, the method includes determining a client identification of a client node associated with the requesting entity, and determining whether the requesting entity associated with the client node is acting in a supervisor capacity. A key to the requesting entity is returned from a resource provider node upon determining that the client identification of the client node indicates that the client node is permitted to access one or more resources of the provider node, and that the client node is acting in a supervisor capacity.
摘要翻译: 一种用于在通信环境中认证请求实体的方法。 在示例性实施例中,该方法包括确定与请求实体相关联的客户端节点的客户端标识,以及确定与客户端节点相关联的请求实体是否以监督能力行事。 在确定客户端节点的客户端标识指示客户端节点被允许访问提供商节点的一个或多个资源,并且客户端节点正在执行时,从资源提供商节点返回请求实体的密钥 主管能力。
-
6.发明授权公开(公告)号:US07437447B2
公开(公告)日:2008-10-14
申请号:US10987280
申请日:2004-11-12
IPC分类号: G06F15/16
CPC分类号: H04L63/06 , G06F2221/2105 , G06F2221/2129 , H04L29/12009 , H04L61/00 , H04L63/08 , H04L67/1097 , H04L69/329
摘要: A method for authenticating a requesting entity in a communications environment. In an exemplary embodiment, the method includes determining a client identification of a client node associated with the requesting entity, and determining whether the requesting entity associated with the client node is acting in a supervisor capacity. A key to the requesting entity is returned from a resource provider node upon determining that the client identification of the client node indicates that the client node is permitted to access one or more resources of the provider node, and that the client node is acting in a supervisor capacity.
摘要翻译: 一种用于在通信环境中认证请求实体的方法。 在示例性实施例中,该方法包括确定与请求实体相关联的客户端节点的客户端标识,以及确定与客户端节点相关联的请求实体是否以监督能力行事。 在确定客户端节点的客户端标识指示客户端节点被允许访问提供商节点的一个或多个资源,并且客户端节点正在执行时,从资源提供商节点返回请求实体的密钥 主管能力。
-
公开(公告)号:US08015243B2
公开(公告)日:2011-09-06
申请号:US12168201
申请日:2008-07-07
IPC分类号: G06F15/16
CPC分类号: H04L63/06 , G06F2221/2105 , G06F2221/2129 , H04L29/12009 , H04L61/00 , H04L63/08 , H04L67/1097 , H04L69/329
摘要: A method for authenticating a requesting entity in a communications environment. In an exemplary embodiment, the method includes determining a client identification of a client node associated with the requesting entity, and determining whether the requesting entity associated with the client node is acting in a supervisor capacity. A key to the requesting entity is returned from a resource provider node upon determining that the client identification of the client node indicates that the client node is permitted to access one or more resources of the provider node, and that the client node is acting in a supervisor capacity.
摘要翻译: 一种用于在通信环境中认证请求实体的方法。 在示例性实施例中,该方法包括确定与请求实体相关联的客户端节点的客户端标识,以及确定与客户端节点相关联的请求实体是否以监督能力行事。 在确定客户端节点的客户端标识指示客户端节点被允许访问提供商节点的一个或多个资源,并且客户端节点正在执行时,从资源提供商节点返回请求实体的密钥 主管能力。
-
公开(公告)号:US07818413B2
公开(公告)日:2010-10-19
申请号:US12168198
申请日:2008-07-07
IPC分类号: G06F15/16
CPC分类号: H04L63/06 , G06F2221/2105 , G06F2221/2129 , H04L29/12009 , H04L61/00 , H04L63/08 , H04L67/1097 , H04L69/329
摘要: A system for authenticating a requesting entity in a subnet communications environment includes determining a client identification of a client node associated with the requesting entity, and determining whether the requesting entity associated with the client node is acting in a supervisor capacity. A key to the requesting entity is returned from a resource provider node upon determining that the client identification of the client node indicates that the client node is permitted to access one or more resources of the provider node, and that the client node is acting in a supervisor capacity.
摘要翻译: 用于在子网通信环境中认证请求实体的系统包括确定与请求实体相关联的客户端节点的客户端标识,以及确定与客户端节点相关联的请求实体是否以监督能力行事。 在确定客户端节点的客户端标识指示客户端节点被允许访问提供商节点的一个或多个资源,并且客户端节点正在执行时,从资源提供商节点返回请求实体的密钥 主管能力。
-
公开(公告)号:US20080271125A1
公开(公告)日:2008-10-30
申请号:US12168198
申请日:2008-07-07
IPC分类号: H04L9/32 , G06F15/173
CPC分类号: H04L63/06 , G06F2221/2105 , G06F2221/2129 , H04L29/12009 , H04L61/00 , H04L63/08 , H04L67/1097 , H04L69/329
摘要: A system for authenticating a requesting entity in a subnet communications environment includes determining a client identification of a client node associated with the requesting entity, and determining whether the requesting entity associated with the client node is acting in a supervisor capacity. A key to the requesting entity is returned from a resource provider node upon determining that the client identification of the client node indicates that the client node is permitted to access one or more resources of the provider node, and that the client node is acting in a supervisor capacity.
摘要翻译: 用于在子网通信环境中认证请求实体的系统包括确定与请求实体相关联的客户端节点的客户端标识,以及确定与客户端节点相关联的请求实体是否以监督能力行事。 在确定客户端节点的客户端标识指示客户端节点被允许访问提供商节点的一个或多个资源,并且客户端节点正在执行时,从资源提供商节点返回请求实体的密钥 主管能力。
-
公开(公告)号:US09372819B2
公开(公告)日:2016-06-21
申请号:US12181397
申请日:2008-07-29
申请人: Giles R. Frazier , Matthew J. Kalos
发明人: Giles R. Frazier , Matthew J. Kalos
IPC分类号: G06F3/00 , G06F13/38 , H04L12/927 , G06F13/42 , H04L12/931 , H04L29/08 , G06F9/50
CPC分类号: G06F13/387 , G06F9/5077 , G06F13/42 , H04L47/805 , H04L49/357 , H04L67/1097
摘要: An I/O device obtains multiple unique N_Port IDs (identifiers) for a NPIV N_Port ID Virtualization (NPIV) capable physical adapter. Fabric management routines are able to assign the multiple unique N_Port IDs to distinct fabric zones. LUNs (logical unit numbers) are able to be associated with the multiple unique N_Port IDs such the LUNs associated with unique N_Port ID do not exceed a limitation. The I/O device is able to associate different resources with different unique N_Port IDs to limit the scope of actions of one or more hosts. The I/O device is able to configure one or more LUNs by the multiple unique N_Port IDs to control access. Different unique N_Port IDs are able to be configured to have different quality of service attributes and/or different levels of security. The I/O device may include multiple independent logical partitions (LPARs) and assign each multiple unique N_Port IDs.
摘要翻译: I / O设备为具有NPIV N_Port ID虚拟化(NPIV)能力的物理适配器获取多个唯一的N_Port ID(标识符)。 结构管理例程能够为不同的结构区域分配多个唯一的N_Port ID。 LUN(逻辑单元号)能够与多个唯一N_Port ID相关联,例如与唯一N_Port ID相关联的LUN不超过限制。 I / O设备能够将不同的资源与不同的唯一N_Port ID相关联,以限制一个或多个主机的操作范围。 I / O设备能够通过多个唯一的N_Port ID配置一个或多个LUN来控制访问。 可以将不同的唯一N_Port ID配置为具有不同的服务质量属性和/或不同级别的安全性。 I / O设备可以包括多个独立的逻辑分区(LPAR),并且分配每个多个唯一的N_Port ID。
-
-
-
-
-
-
-
-
-
搜索结果
67 条记录 (耗时 0.028 秒)
