Method and apparatus for retrieving network quality of service policy information from a directory in a quality of service policy management system
    1.
    发明授权
    Method and apparatus for retrieving network quality of service policy information from a directory in a quality of service policy management system 有权
    从服务质量管理系统的目录中检索服务策略信息的网络质量的方法和装置

    公开(公告)号:US07099932B1

    公开(公告)日:2006-08-29

    申请号:US09640466

    申请日:2000-08-16

    IPC分类号: G06F15/173 G06F15/177

    摘要: A method and apparatus is provided for retrieving and storing quality of service policy management information using a directory service in a manner that enforces read/write consistency and enables read/write concurrency. A directory information tree manager is created and stored in the directory service. One or more directory information trees are created in the directory service in association with the directory information tree manager. Each directory information tree is associated with a sub-tree that represents quality of service policy information, and each directory information tree has a validity period value. When a process needs quality of service policy management information, the system determines which of the directory information trees is a currently active directory information tree. The QoS information is retrieved from the currently active directory information tree only during a time period within the validity period value thereof.

    摘要翻译: 提供了一种方法和装置,用于以强制读/写一致性并且使得读/写并发性的方式使用目录服务检索和存储服务质量策略管理信息。 目录信息树管理器被创建并存储在目录服务中。 与目录信息树管理器相关联地在目录服务中创建一个或多个目录信息树。 每个目录信息树与表示服务质量策略信息的子树相关联,并且每个目录信息树具有有效期值。 当进程需要服务质量策略管理信息时,系统确定哪个目录信息树是当前活动的目录信息树。 仅在其有效期限值内的时间段内从当前活动的目录信息树中检索QoS信息。

    Method and apparatus for re-authentication of a computing device using cached state
    2.
    发明授权
    Method and apparatus for re-authentication of a computing device using cached state 有权
    使用高速缓存状态重新认证计算设备的方法和装置

    公开(公告)号:US07716721B2

    公开(公告)日:2010-05-11

    申请号:US11253960

    申请日:2005-10-18

    IPC分类号: H04L29/00 H04L29/02

    摘要: Automatically re-authenticating a computing device seeking access to a network or a resource. A method comprises forwarding a request received from the computing device to an authentication device to enable the authentication device to authenticate the computing device using a full-authentication mechanism. State information related to authenticating the computing device is created from authenticating the computing device. The state information is received and stored. For example, an authenticator device that forwarded the initial authentication request from the computing device to the authentication device receives and stores the state information. The computing device is re-authenticated using the stored state information without again contacting the authentication device.

    摘要翻译: 自动重新认证计算设备寻求对网络或资源的访问。 一种方法包括将从计算设备接收的请求转发到认证设备,以使认证设备能够使用完全认证机制认证计算设备。 通过验证计算设备创建与认证计算设备相关的状态信息。 接收并存储状态信息。 例如,将初始认证请求从计算装置转发到认证装置的认证装置接收并存储状态信息。 使用所存储的状态信息重新认证计算设备,而不再与认证设备联系。

    Method and apparatus for providing multiple authentication types using an authentication protocol that supports a single type
    3.
    发明授权
    Method and apparatus for providing multiple authentication types using an authentication protocol that supports a single type 有权
    使用支持单一类型的认证协议来提供多种认证类型的方法和装置

    公开(公告)号:US07421503B1

    公开(公告)日:2008-09-02

    申请号:US10346967

    申请日:2003-01-17

    IPC分类号: G06F15/16

    摘要: A method is disclosed for providing multiple authentication types within an authentication protocol that supports a single type of authentication for a client in communication with an authorization server over a network. One or more authentication request packets compliant with an authentication protocol are sent to the client. Each of the packets comprises a type value that specifies multiple authentication, and a data field having a value that is structured in compliance with the authentication protocol. Each of the packets is associated with one of a plurality of different authentication conversations with the client. A plurality of responses is received from the client for each of the authentication conversations. The sending and receiving steps are repeated until results are determined for the authentication conversations. The client is authenticated based on results of each of the plurality of authentication conversations. Embodiments provide multiple Extensible Authentication Protocol (EAP) authentication methods.

    摘要翻译: 公开了一种在认证协议内提供多种认证类型的方法,该认证协议支持通过网络与授权服务器通信的客户端的单一类型的认证。 符合认证协议的一个或多个认证请求分组被发送到客户端。 每个分组包括指定多个认证的类型值,以及具有符合认证协议的结构的值的数据字段。 每个分组与与客户端的多个不同认证对话中的一个相关联。 对于每个认证会话,从客户端接收到多个响应。 重复发送和接收步骤,直到确定认证对话的结果为止。 基于多个认证对话中的每一个的结果对客户端进行认证。 实施例提供了多种可扩展认证协议(EAP)认证方法。

    Method and system for continuously serving authentication requests
    4.
    发明授权
    Method and system for continuously serving authentication requests 有权
    连续提供认证请求的方法和系统

    公开(公告)号:US08151338B2

    公开(公告)日:2012-04-03

    申请号:US11239010

    申请日:2005-09-29

    IPC分类号: H04L29/06

    CPC分类号: H04L63/0846

    摘要: A method and system for continuously serving the authentication requests of networked computers is disclosed. The authentication requests of computers are served and the services for the computers are reserved for a predefined time interval. The authentication service for a computer is reserved by an authentication server, which receives authentication requests of the computer.

    摘要翻译: 公开了连续服务网络计算机的认证请求的方法和系统。 计算机的认证请求被提供,计算机的服务预定时间间隔。 计算机的认证服务由认证服务器保留,认证服务器接收计算机的认证请求。

    Method and apparatus for re-authentication of a computing device using cached state
    5.
    发明申请
    Method and apparatus for re-authentication of a computing device using cached state 有权
    使用高速缓存状态重新认证计算设备的方法和装置

    公开(公告)号:US20070101406A1

    公开(公告)日:2007-05-03

    申请号:US11253960

    申请日:2005-10-18

    摘要: Automatically re-authenticating a computing device seeking access to a network or a resource. A method comprises forwarding a request received from the computing device to an authentication device to enable the authentication device to authenticate the computing device using a full-authentication mechanism. State information related to authenticating the computing device is created from authenticating the computing device. The state information is received and stored. For example, an authenticator device that forwarded the initial authentication request from the computing device to the authentication device receives and stores the state information. The computing device is re-authenticated using the stored state information without again contacting the authentication device.

    摘要翻译: 自动重新认证计算设备寻求对网络或资源的访问。 一种方法包括将从计算设备接收的请求转发到认证设备,以使认证设备能够使用完全认证机制认证计算设备。 通过验证计算设备创建与认证计算设备相关的状态信息。 接收并存储状态信息。 例如,将初始认证请求从计算装置转发到认证装置的认证装置接收并存储状态信息。 使用所存储的状态信息重新认证计算设备,而不再与认证设备联系。

    Method and apparatus for verifying revocation status of a digital certificate
    7.
    发明授权
    Method and apparatus for verifying revocation status of a digital certificate 有权
    验证数字证书撤销状态的方法和装置

    公开(公告)号:US07702899B2

    公开(公告)日:2010-04-20

    申请号:US12356777

    申请日:2009-01-21

    IPC分类号: H04L9/00

    CPC分类号: H04L9/3263 H04L2209/805

    摘要: Verifying revocation status of a digital certificate is provided in part by a receiver verifying a security certificate for a sender. In an embodiment, an approach comprises receiving a first security certificate associated with the sender and storing the security certificate in a location accessible to the receiver; updating the first security certificate in the location accessible to the receiver if the first security certificate is changed or revoked; receiving a second security certificate from the sender when identity of the sender needs to be verified; comparing the second security certificate to the first security certificate; and confirming the sender's identity only if the second security certificate matches the first security certificate for the sender.

    摘要翻译: 验证数字证书的撤销状态部分由验证发件人的安全证书的接收方提供。 在一个实施例中,一种方法包括接收与发送者相关联的第一安全证书,并将安全证书存储在接收者可访问的位置; 如果第一安全证书被更改或撤销,则在接收者可访问的位置更新第一安全证书; 当发送方的身份需要被验证时,从发送方接收第二个安全证书; 将第二安全证书与第一安全证书进行比较; 并且仅当第二安全证书与发送者的第一安全证书匹配时才确认发件人的身份。

    Method and system for continuously serving authentication requests
    8.
    发明申请
    Method and system for continuously serving authentication requests 有权
    连续提供认证请求的方法和系统

    公开(公告)号:US20070074049A1

    公开(公告)日:2007-03-29

    申请号:US11239010

    申请日:2005-09-29

    IPC分类号: G06F12/14

    CPC分类号: H04L63/0846

    摘要: A method and system for continuously serving the authentication requests of networked computers is disclosed. The authentication requests of computers are served and the services for the computers are reserved for a predefined time interval. The authentication service for a computer is reserved by an authentication server, which receives authentication requests of the computer.

    摘要翻译: 公开了连续服务网络计算机的认证请求的方法和系统。 计算机的认证请求被提供,计算机的服务预定时间间隔。 计算机的认证服务由认证服务器保留,认证服务器接收计算机的认证请求。

    METHOD AND APPARATUS FOR VERIFYING REVOCATION STATUS OF A DIGITAL CERTIFICATE
    9.
    发明申请
    METHOD AND APPARATUS FOR VERIFYING REVOCATION STATUS OF A DIGITAL CERTIFICATE 有权
    用于验证数字证书的撤销状态的方法和装置

    公开(公告)号:US20090132812A1

    公开(公告)日:2009-05-21

    申请号:US12356777

    申请日:2009-01-21

    IPC分类号: H04L9/00

    CPC分类号: H04L9/3263 H04L2209/805

    摘要: Verifying revocation status of a digital certificate is provided in part by a receiver verifying a security certificate for a sender. In an embodiment, an approach comprises receiving a first security certificate associated with the sender and storing the security certificate in a location accessible to the receiver; updating the first security certificate in the location accessible to the receiver if the first security certificate is changed or revoked; receiving a second security certificate from the sender when identity of the sender needs to be verified; comparing the second security certificate to the first security certificate; and confirming the sender's identity only if the second security certificate matches the first security certificate for the sender.

    摘要翻译: 验证数字证书的撤销状态部分由验证发件人的安全证书的接收方提供。 在一个实施例中,一种方法包括接收与发送者相关联的第一安全证书,并将安全证书存储在接收者可访问的位置; 如果第一安全证书被更改或撤销,则在接收者可访问的位置更新第一安全证书; 当发送方的身份需要被验证时,从发送方接收第二个安全证书; 将第二安全证书与第一安全证书进行比较; 并且仅当第二安全证书与发送者的第一安全证书匹配时才确认发件人的身份。

    Method and apparatus for verifying revocation status of a digital certificate
    10.
    发明授权
    Method and apparatus for verifying revocation status of a digital certificate 有权
    验证数字证书撤销状态的方法和装置

    公开(公告)号:US07500100B1

    公开(公告)日:2009-03-03

    申请号:US10660413

    申请日:2003-09-10

    IPC分类号: H04L9/00

    CPC分类号: H04L9/3263 H04L2209/805

    摘要: A method and apparatus for verifying revocation status of a digital certificate is provided. The invention operates in part by a receiver verifying a security certificate for a sender. In various embodiments the steps to accomplish this include receiving a first security certificate associated with the sender and storing the security certificate in a location accessible to the receiver; updating the first security certificate in the location accessible to the receiver if the first security certificate is changed or revoked; receiving a second security certificate from the sender when identity of the sender needs to be verified; comparing the second security certificate to the first security certificate; and confirming the sender's identity only if the second security certificate matches the first security certificate for the sender.

    摘要翻译: 提供一种用于验证数字证书的撤销状态的方法和装置。 本发明部分地由验证发送者的安全证书的接收者进行操作。 在各种实施例中,完成这一步骤的步骤包括:接收与发送者相关联的第一安全证书,并将安全证书存储在接收者可访问的位置; 如果第一安全证书被更改或撤销,则更新接收者可访问的位置中的第一安全证书; 当发送方的身份需要被验证时,从发送方接收第二个安全证书; 将第二安全证书与第一安全证书进行比较; 并且仅当第二安全证书与发送者的第一安全证书匹配时才确认发件人的身份。