-
公开(公告)号:US20070118530A1
公开(公告)日:2007-05-24
申请号:US11282290
申请日:2005-11-18
申请人: Trevin Chow , Asim Memon , Dilip Pai , Naresh Jain , Wei Jiang , Yordan Rouskov
发明人: Trevin Chow , Asim Memon , Dilip Pai , Naresh Jain , Wei Jiang , Yordan Rouskov
IPC分类号: G06F17/30
CPC分类号: G06F8/65
摘要: Software updates are described. In an implementation, a method includes forming an authentication request to be communicated to an authentication service over a network that includes a version identifier of at least one application module of a client. A response is received to the authentication request which includes an indication of whether an update is available for the at least one application module and a token that verifies the authentication.
摘要翻译: 描述软件更新。 在实现中,一种方法包括形成要通过包括客户端的至少一个应用模块的版本标识符的网络传送给认证服务的认证请求。 接收到对认证请求的响应,该认证请求包括对于至少一个应用模块是否可用的更新的指示和验证认证的令牌。
-
公开(公告)号:US20110078448A1
公开(公告)日:2011-03-31
申请号:US12965449
申请日:2010-12-10
申请人: Trevin Chow , Winfred Wong , Yordan Rouskov , Kok Wai Chan , Wei Jiang , Colin Chow , Sanjeev Nagvekar , Matt Sullivan , Kalyan Sayyaparaju , Dilip Pai , Avinash Belur
发明人: Trevin Chow , Winfred Wong , Yordan Rouskov , Kok Wai Chan , Wei Jiang , Colin Chow , Sanjeev Nagvekar , Matt Sullivan , Kalyan Sayyaparaju , Dilip Pai , Avinash Belur
CPC分类号: H04L9/3213 , H04L9/3263 , H04L51/04 , H04L63/0807 , H04L63/0823 , H04L63/0846 , H04L63/20 , H04L2209/56
摘要: An integrated authentication service is described which may receive a bundled request from one or more clients. One or more of the described techniques may be utilized to provide, in response to a single bundled request, a token for proof of identity and a certificate for establishing secure communications.
摘要翻译: 描述了可以从一个或多个客户端接收捆绑请求的集成认证服务。 所述技术中的一个或多个可以用于响应于单个捆绑的请求提供用于证明身份的令牌和用于建立安全通信的证书。
-
公开(公告)号:US20070118875A1
公开(公告)日:2007-05-24
申请号:US11282174
申请日:2005-11-18
申请人: Trevin Chow , Winfred Wong , Yordan Rouskov , Kok Chan , Wei Jiang , Colin Chow , Sanjeev Nagvekar , Matt Sullivan , Kalyan Sayyaparaju , Dilip Pai , Avinash Belur
发明人: Trevin Chow , Winfred Wong , Yordan Rouskov , Kok Chan , Wei Jiang , Colin Chow , Sanjeev Nagvekar , Matt Sullivan , Kalyan Sayyaparaju , Dilip Pai , Avinash Belur
IPC分类号: H04L9/32
CPC分类号: H04L9/3213 , H04L9/3263 , H04L51/04 , H04L63/0807 , H04L63/0823 , H04L63/0846 , H04L63/20 , H04L2209/56
摘要: An integrated authentication service is described which may receive a bundled request from one or more clients. One or more of the described techniques may be utilized to provide, in response to a single bundled request, a token for proof of identity and a certificate for establishing secure communications.
摘要翻译: 描述了可以从一个或多个客户端接收捆绑请求的集成认证服务。 所述技术中的一个或多个可以用于响应于单个捆绑的请求提供用于证明身份的令牌和用于建立安全通信的证书。
-
公开(公告)号:US07853995B2
公开(公告)日:2010-12-14
申请号:US11282174
申请日:2005-11-18
申请人: Trevin Chow , Winfred Wong , Yordan Rouskov , Kok Wai Chan , Wei Jiang , Colin Chow , Sanjeev Nagvekar , Matt Sullivan , Dilip Pai , Kalyan Sayyaparaju , Avinash Belur
发明人: Trevin Chow , Winfred Wong , Yordan Rouskov , Kok Wai Chan , Wei Jiang , Colin Chow , Sanjeev Nagvekar , Matt Sullivan , Dilip Pai , Kalyan Sayyaparaju , Avinash Belur
CPC分类号: H04L9/3213 , H04L9/3263 , H04L51/04 , H04L63/0807 , H04L63/0823 , H04L63/0846 , H04L63/20 , H04L2209/56
摘要: An integrated authentication service is described which may receive a bundled request from one or more clients. One or more of the described techniques may be utilized to provide, in response to a single bundled request, a token for proof of identity and a certificate for establishing secure communications.
摘要翻译: 描述了可以从一个或多个客户端接收捆绑请求的集成认证服务。 所述技术中的一个或多个可以用于响应于单个捆绑的请求提供用于证明身份的令牌和用于建立安全通信的证书。
-
公开(公告)号:US20070226785A1
公开(公告)日:2007-09-27
申请号:US11277317
申请日:2006-03-23
申请人: Trevin Chow , Colin Chow , Pui-Yin Wong , Dilip Pai , Sanjeev Nagvekar , Wei Jiang , Yordan Rouskov
发明人: Trevin Chow , Colin Chow , Pui-Yin Wong , Dilip Pai , Sanjeev Nagvekar , Wei Jiang , Yordan Rouskov
IPC分类号: H04L9/32
CPC分类号: H04L9/3213 , H04L9/3271 , H04L63/08 , H04L2209/56 , H04W12/06 , H04W12/08
摘要: Embodiments of multiple security token transactions are described herein. One or more of the described techniques may be utilized to provide, in a single request and response, an authentication token and a plurality security tokens for proof of identity at respective service providers.
摘要翻译: 本文描述了多个安全令牌事务的实施例。 所描述的技术中的一个或多个可以用于在单个请求和响应中提供用于在相应服务提供商身份证明的认证令牌和多个安全令牌。
-
公开(公告)号:US20070245414A1
公开(公告)日:2007-10-18
申请号:US11279869
申请日:2006-04-14
申请人: Kok Chan , Colin Chow , Trevin Chow , Lin Huang , Naresh Jain , Wei Jiang , Yordan Rouskov , Pui-Yin Wong , Ismail Paya , Ryan Hurst
发明人: Kok Chan , Colin Chow , Trevin Chow , Lin Huang , Naresh Jain , Wei Jiang , Yordan Rouskov , Pui-Yin Wong , Ismail Paya , Ryan Hurst
IPC分类号: G06F15/16
CPC分类号: H04L63/0823 , H04L9/3234 , H04L9/3265 , H04L63/0884 , H04L63/166 , H04L2209/56 , H04L2209/76 , H04L2209/80
摘要: Embodiments of proxy authentication and indirect certificate chaining are described herein. In an implementation, authentication for a client occurs via a proxy service. Proxy service communicates between client and server, and caches security tokens on behalf of the client. In an implementation, trustworthiness of certificate presented to a client to establish trust is determined utilizing a signed data package which incorporates a plurality of known certificates. The presented certificate is verified without utilizing root certificates installed on the client device.
摘要翻译: 本文描述了代理认证和间接证书链接的实施例。 在实现中,通过代理服务发生客户端的身份验证。 代理服务在客户端和服务器之间进行通信,代表客户端缓存安全令牌。 在实现中,使用包含多个已知证书的签名数据包来确定呈现给客户端以建立信任的证书的可信赖性。 在不使用客户端设备上安装的根证书的情况下验证所呈现的证书。
-
公开(公告)号:US07890634B2
公开(公告)日:2011-02-15
申请号:US11084051
申请日:2005-03-18
申请人: Wei Jiang , Ismail Cem Paya , John D Whited , Wei-Quiang Michael Guo , Yordan Rouskov , Adam Back
发明人: Wei Jiang , Ismail Cem Paya , John D Whited , Wei-Quiang Michael Guo , Yordan Rouskov , Adam Back
IPC分类号: G06F15/16
CPC分类号: H04L9/3247 , G06F21/6218 , H04L9/0825 , H04L9/3242 , H04L63/045
摘要: Scalable session management is achieved by generating a cookie that includes an encrypted session key and encrypted cookie data. The cookie data is encrypted using the session key. The session key is then signed and encrypted using one or more public/private key pairs. The encrypted session key can be decrypted and verified using the same private/public key pair(s). Once verified, the decrypted session key can then be used to decrypt and verify the encrypted cookie data. A first server having the private/public key pair(s) may generate the cookie using a randomly generated session key. A second server having the same private/public key pair(s) may decrypt and verify the cookie even if the session key is not initially installed on the second server. A session key cache may be used to provide session key lookup to save public/private key operations on the servers.
摘要翻译: 可扩展会话管理通过生成包含加密的会话密钥和加密的cookie数据的cookie来实现。 Cookie数据使用会话密钥进行加密。 会话密钥然后使用一个或多个公钥/私钥对进行签名和加密。 加密的会话密钥可以使用相同的私钥/公钥对进行解密和验证。 一旦被验证,则解密的会话密钥然后可以用于解密和验证加密的cookie数据。 具有私钥/公钥对的第一服务器可以使用随机生成的会话密钥来生成cookie。 具有相同私钥/公钥对的第二服务器可以解密和验证cookie,即使会话密钥最初没有安装在第二服务器上。 可以使用会话密钥缓存来提供会话密钥查找以在服务器上保存公钥/私钥操作。
-
公开(公告)号:US20110138179A1
公开(公告)日:2011-06-09
申请号:US13026793
申请日:2011-02-14
申请人: Wei Jiang , Ismail Cem Paya , John D. Whited , Wei-Quiang Michael Guo , Yordan Rouskov , Adam Back
发明人: Wei Jiang , Ismail Cem Paya , John D. Whited , Wei-Quiang Michael Guo , Yordan Rouskov , Adam Back
IPC分类号: H04L9/32
CPC分类号: H04L9/3247 , G06F21/6218 , H04L9/0825 , H04L9/3242 , H04L63/045
摘要: Scalable session management is achieved by generating a cookie that includes an encrypted session key and encrypted cookie data. The cookie data is encrypted using the session key. The session key is then signed and encrypted using one or more public/private key pairs. The encrypted session key can be decrypted and verified using the same private/public key pair(s). Once verified, the decrypted session key can then be used to decrypt and verify the encrypted cookie data. A first server having the private/public key pair(s) may generate the cookie using a randomly generated session key. A second server having the same private/public key pair(s) may decrypt and verify the cookie even if the session key is not initially installed on the second server. A session key cache may be used to provide session key lookup to save public/private key operations on the servers.
摘要翻译: 可扩展会话管理通过生成包含加密的会话密钥和加密的cookie数据的cookie来实现。 Cookie数据使用会话密钥进行加密。 会话密钥然后使用一个或多个公钥/私钥对进行签名和加密。 加密的会话密钥可以使用相同的私钥/公钥对进行解密和验证。 一旦被验证,则解密的会话密钥然后可以用于解密和验证加密的cookie数据。 具有私钥/公钥对的第一服务器可以使用随机生成的会话密钥来生成cookie。 具有相同私钥/公钥对的第二服务器可以解密和验证cookie,即使会话密钥最初没有被安装在第二服务器上。 可以使用会话密钥缓存来提供会话密钥查找以在服务器上保存公钥/私钥操作。
-
公开(公告)号:US20060212706A1
公开(公告)日:2006-09-21
申请号:US11084051
申请日:2005-03-18
申请人: Wei Jiang , Ismail Paya , John Whited , Wei-Quiang Guo , Yordan Rouskov , Adam Back
发明人: Wei Jiang , Ismail Paya , John Whited , Wei-Quiang Guo , Yordan Rouskov , Adam Back
IPC分类号: H04L9/00
CPC分类号: H04L9/3247 , G06F21/6218 , H04L9/0825 , H04L9/3242 , H04L63/045
摘要: Scalable session management is achieved by generating a cookie that includes an encrypted session key and encrypted cookie data. The cookie data is encrypted using the session key. The session key is then signed and encrypted using one or more public/private key pairs. The encrypted session key can be decrypted and verified using the same private/public key pair(s). Once verified, the decrypted session key can then be used to decrypt and verify the encrypted cookie data. A first server having the private/public key pair(s) may generate the cookie using a randomly generated session key. A second server having the same private/public key pair(s) may decrypt and verify the cookie even if the session key is not initially installed on the second server. A session key cache may be used to provide session key lookup to save public/private key operations on the servers.
摘要翻译: 可扩展会话管理通过生成包含加密的会话密钥和加密的cookie数据的cookie来实现。 Cookie数据使用会话密钥进行加密。 会话密钥然后使用一个或多个公钥/私钥对进行签名和加密。 加密的会话密钥可以使用相同的私钥/公钥对进行解密和验证。 一旦被验证,则解密的会话密钥然后可以用于解密和验证加密的cookie数据。 具有私钥/公钥对的第一服务器可以使用随机生成的会话密钥来生成cookie。 具有相同私钥/公钥对的第二服务器可以解密和验证cookie,即使会话密钥最初没有安装在第二服务器上。 可以使用会话密钥缓存来提供会话密钥查找以在服务器上保存公钥/私钥操作。
-
公开(公告)号:US08626929B2
公开(公告)日:2014-01-07
申请号:US13026793
申请日:2011-02-14
申请人: Wei Jiang , Ismail Cem Paya , John D. Whited , Wei-Quiang Michael Guo , Yordan Rouskov , Adam Back
发明人: Wei Jiang , Ismail Cem Paya , John D. Whited , Wei-Quiang Michael Guo , Yordan Rouskov , Adam Back
IPC分类号: G06F15/16
CPC分类号: H04L9/3247 , G06F21/6218 , H04L9/0825 , H04L9/3242 , H04L63/045
摘要: Scalable session management is achieved by generating a cookie that includes an encrypted session key and encrypted cookie data. The cookie data is encrypted using the session key. The session key is then signed and encrypted using one or more public/private key pairs. The encrypted session key can be decrypted and verified using the same private/public key pair(s). Once verified, the decrypted session key can then be used to decrypt and verify the encrypted cookie data. A first server having the private/public key pair(s) may generate the cookie using a randomly generated session key. A second server having the same private/public key pair(s) may decrypt and verify the cookie even if the session key is not initially installed on the second server. A session key cache may be used to provide session key lookup to save public/private key operations on the servers.
摘要翻译: 可扩展会话管理通过生成包含加密的会话密钥和加密的cookie数据的cookie来实现。 Cookie数据使用会话密钥进行加密。 会话密钥然后使用一个或多个公钥/私钥对进行签名和加密。 加密的会话密钥可以使用相同的私钥/公钥对进行解密和验证。 一旦被验证,则解密的会话密钥然后可以用于解密和验证加密的cookie数据。 具有私钥/公钥对的第一服务器可以使用随机生成的会话密钥来生成cookie。 具有相同私钥/公钥对的第二服务器可以解密和验证cookie,即使会话密钥最初没有安装在第二服务器上。 可以使用会话密钥缓存来提供会话密钥查找以在服务器上保存公钥/私钥操作。
-
-
-
-
-
-
-
-
-
搜索结果
154 条记录 (耗时 0.027 秒)