知搜-全球专利检索

  1. 登录
  2. 注册

搜索结果

30 条记录 (耗时 0.022 秒)

    System and method to resolve an identity interactively
    1.
    发明授权
    System and method to resolve an identity interactively 有权
    以交互方式解析身份的系统和方法

    公开(公告)号:US07647635B2

    公开(公告)日:2010-01-12

    申请号:US11592473

    申请日:2006-11-02

    申请人: Lee Chen John Chiong Philip Kwan

    发明人: Lee Chen John Chiong Philip Kwan

    IPC分类号: G06F11/30 G06F15/173

    CPC分类号: H04L63/1416 G06F21/6263 G06F2221/2105 G06F2221/2129 G06F2221/2151 H04L63/1433

    摘要: A system and method for resolving an identity includes a security console, which displays security information regarding a secure network. The security information includes at least a first identity used to access the secure network. An operator selects the first identity, and the security console sends it to a resolver. The resolver connects with an identity server to find an access session record with an identity matching the first identity. A second identity is extracted from this record, and the resolver returns a result that includes the second identity. The security console displays the second identity; The first identity can be a user identity of a user, where the second identity is corresponding host identity, or vise versa. In this manner, an efficient interface to security information is provided to an operator, where the operator may resolve a user/host identity to a host/user identity interactively.

    摘要翻译: 用于解决身份的系统和方法包括安全控制台,其显示关于安全网络的安全信息。 安全信息至少包括用于访问安全网络的第一身份。 操作员选择第一个身份,安全控制台将其发送到解析器。 解析器与身份服务器连接,以查找具有与第一身份匹配的身份的访问会话记录。 从该记录中提取第二个身份,解析器返回包含第二个身份的结果。 安全控制台显示第二个身份; 第一身份可以是用户的用户身份,其中第二身份是相应的主机身份,反之亦然。 以这种方式,向运营商提供对安全信息的有效接口,其中运营商可以交互地将用户/主机身份解析为主机/用户身份。

    System and method to resolve an identity interactively
    2.
    发明申请
    System and method to resolve an identity interactively 有权
    以交互方式解析身份的系统和方法

    公开(公告)号:US20080109887A1

    公开(公告)日:2008-05-08

    申请号:US11592473

    申请日:2006-11-02

    申请人: Lee Chen John Chiong Philip Kwan

    发明人: Lee Chen John Chiong Philip Kwan

    IPC分类号: G06F7/04

    CPC分类号: H04L63/1416 G06F21/6263 G06F2221/2105 G06F2221/2129 G06F2221/2151 H04L63/1433

    摘要: A system and method for resolving an identity includes a security console, which displays security information regarding a secure network. The security information includes at least a first identity used to access the secure network. An operator selects the first identity, and the security console sends it to a resolver. The resolver connects with an identity server to find an access session record with an identity matching the first identity. A second identity is extracted from this record, and the resolver returns a result that includes the second identity. The security console displays the second identity; The first identity can be a user identity of a user, where the second identity is corresponding host identity, or vise versa. In this manner, an efficient interface to security information is provided to an operator, where the operator may resolve a user/host identity to a host/user identity interactively.

    摘要翻译: 用于解决身份的系统和方法包括安全控制台,其显示关于安全网络的安全信息。 安全信息至少包括用于访问安全网络的第一身份。 操作员选择第一个身份,安全控制台将其发送到解析器。 解析器与身份服务器连接,以查找具有与第一身份匹配的身份的访问会话记录。 从该记录中提取第二个身份,解析器返回包含第二个身份的结果。 安全控制台显示第二个身份; 第一身份可以是用户的用户身份,其中第二身份是相应的主机身份,反之亦然。 以这种方式,向运营商提供对安全信息的有效接口,其中运营商可以交互地将用户/主机身份解析为主机/用户身份。

    System and Method to Associate a Private User Identity with a Public User Identity
    3.
    发明申请
    System and Method to Associate a Private User Identity with a Public User Identity 有权
    将私人用户身份与公共用户身份相关联的系统和方法

    公开(公告)号:US20100217819A1

    公开(公告)日:2010-08-26

    申请号:US12771491

    申请日:2010-04-30

    申请人: Lee Chen John Chiong Xin Wang

    发明人: Lee Chen John Chiong Xin Wang

    IPC分类号: G06F15/16

    CPC分类号: H04L63/102 H04L12/66 H04L29/06 H04L61/6022 H04L61/6068 H04L63/02 H04L63/0281 H04L63/04 H04L63/08 H04L63/0853 H04L63/10 H04L63/30 H04L63/308 H04L65/1003 H04L65/1006 H04L65/1069 H04L65/4007 H04L67/14 H04L67/141 H04L67/146

    摘要: The inventive system includes a host, a network including a security gateway, and a public application. Established are an access session between the network and the host and an application session between the public application and the network. An application session record is created for the application session, and includes the user's public user identity used to access the public application, the user's private user identity used to access the network, a host identity, and an application session time. To determine the private user identity for the application session, the security gateway sends a query with the host identity and the application session time. These are compared with the host identity and access session time in an access session record. If they match, then the private user identity in the access session record is returned, and it is stored as the private user identity in the application session record.

    摘要翻译: 本发明的系统包括主机,包括安全网关的网络和公共应用。 建立在网络和主机之间的访问会话以及公共应用程序和网络之间的应用程序会话。 为应用会话创建应用会话记录,并且包括用于访问公共应用的用户的公共用户标识,用于访问网络的用户的私有用户标识,主机标识和应用会话时间。 为了确定应用程序会话的私有用户身份,安全网关发送具有主机标识和应用程序会话时间的查询。 这些与访问会话记录中的主机身份和访问会话时间进行比较。 如果匹配,则返回访问会话记录中的私有用户身份,并将其作为私有用户身份存储在应用程序会话记录中。

    System and method to associate a private user identity with a public user identity
    4.
    发明授权
    System and method to associate a private user identity with a public user identity 有权
    将私有用户身份与公共用户身份相关联的系统和方法

    公开(公告)号:US07716378B2

    公开(公告)日:2010-05-11

    申请号:US11582613

    申请日:2006-10-17

    申请人: Lee Chen John Chiong Xin Wang

    发明人: Lee Chen John Chiong Xin Wang

    IPC分类号: G06F15/16 G06F15/173 H04W4/00

    CPC分类号: H04L63/102 H04L12/66 H04L29/06 H04L61/6022 H04L61/6068 H04L63/02 H04L63/0281 H04L63/04 H04L63/08 H04L63/0853 H04L63/10 H04L63/30 H04L63/308 H04L65/1003 H04L65/1006 H04L65/1069 H04L65/4007 H04L67/14 H04L67/141 H04L67/146

    摘要: The inventive system includes a host, a network including a security gateway, and a public application. Established are an access session between the network and the host and an application session between the public application and the network. An application session record is created for the application session, and includes the user's public user identity used to access the public application, the user's private user identity used to access the network, a host identity, and an application session time. To determine the private user identity for the application session, the security gateway sends a query with the host identity and the application session time. These are compared with the host identity and access session time in an access session record. If they match, then the private user identity in the access session record is returned, and it is stored as the private user identity in the application session record.

    摘要翻译: 本发明的系统包括主机,包括安全网关的网络和公共应用。 建立在网络和主机之间的访问会话以及公共应用程序和网络之间的应用程序会话。 为应用会话创建应用会话记录,并且包括用于访问公共应用的用户的公共用户标识,用于访问网络的用户的私有用户标识,主机标识和应用会话时间。 为了确定应用程序会话的私有用户身份,安全网关发送具有主机标识和应用程序会话时间的查询。 这些与访问会话记录中的主机身份和访问会话时间进行比较。 如果匹配,则返回访问会话记录中的私有用户身份,并将其作为私有用户身份存储在应用程序会话记录中。

    Systems and methods for user access authentication based on network access point
    5.
    发明申请
    Systems and methods for user access authentication based on network access point 有权
    基于网络接入点的用户接入认证系统和方法

    公开(公告)号:US20070271598A1

    公开(公告)日:2007-11-22

    申请号:US11435043

    申请日:2006-05-16

    申请人: Lee Chen John Chiong Yang Yu

    发明人: Lee Chen John Chiong Yang Yu

    IPC分类号: H04L9/32 G06F15/16 G06F12/14 H04L9/00 H04K1/00 G06K9/00 G06F17/00 G06F17/30 G06F9/00 G06F12/00 G06F13/00 G06F7/04 G06F7/58 G06K19/00 G11C7/00

    CPC分类号: H04L63/08 G11C7/24 H04L63/107 H04W12/06 H04W12/08

    摘要: Systems and methods of authenticating user access based on an access point to a secure data network include a secure data network having a plurality of a network access points serving as entry points for a user to access the secure data network using a user device. The user is associated with a user identity, each network access point with a network access point identity. The user uses a user device to send an access request, requesting access to the secure data network, to the network access point, which then sends an authentication request to an identity server. The identity server processes the authentication request, by validating the combination of the user identity and the network access point identity, and responds with an authentication response, granting or denying access, as communicated to the user device via an access response. The secure data network may comprise an application level secure data network, in which the user uses the user device to request access to a network application. Furthermore, the identity server may validate the combined user identity and network access point identity data in conjunction with time information, access allowance data, and/or traffic volume data.

    摘要翻译: 基于对安全数据网络的接入点认证用户接入的系统和方法包括具有多个网络接入点的安全数据网络,该网络接入点用作用户使用用户设备访问安全数据网络的入口点。 用户与用户身份相关联,每个网络接入点具有网络接入点身份。 用户使用用户设备向网络接入点发送访问安全数据网络的访问请求,网络接入点然后向认证服务器发送认证请求。 身份服务器通过验证用户身份和网络接入点身份的组合来处理身份验证请求,并通过访问响应传达给用户设备的认证响应,授予或拒绝访问进行响应。 安全数据网络可以包括应用级安全数据网络,其中用户使用用户设备来请求对网络应用的访问。 此外,身份服务器可以结合时间信息,访问允许数据和/或业务量数据来验证组合的用户身份和网络接入点身份数据。

    System and method for storing data-network activity information
    6.
    发明申请
    System and method for storing data-network activity information 审中-公开
    用于存储数据网络活动信息的系统和方法

    公开(公告)号:US20070180101A1

    公开(公告)日:2007-08-02

    申请号:US11328823

    申请日:2006-01-10

    申请人: Lee Chen Rishi Sampat John Chiong Dennis Oshiba

    发明人: Lee Chen Rishi Sampat John Chiong Dennis Oshiba

    IPC分类号: G06F17/00 G06F15/173

    CPC分类号: H04L67/22 H04L63/0227

    摘要: A system and method are disclosed that may include receiving a first event log for a data network user; identifying the user that is the subject of the first event log; updating a user activity record, within stored user activity records, with activity information included in the first event log, the activity information being represented in a first format in the first event log; and repeating the steps of receiving, identifying, and updating for at least one additional event log having activity information stored therein in at least one format other than the first format.

    摘要翻译: 公开了一种可以包括接收数据网络用户的第一事件日志的系统和方法; 识别作为第一事件日志主题的用户; 在所存储的用户活动记录中,使用包括在所述第一事件日志中的活动信息来更新用户活动记录,所述活动信息以所述第一事件日志中的第一格式表示; 并且以除了第一格式之外的至少一种格式重复对存储有活动信息的至少一个附加事件日志进行接收,识别和更新的步骤。

    Applying a packet routing policy to an application session
    7.
    发明授权
    Applying a packet routing policy to an application session 有权
    将数据包路由策略应用于应用程序会话

    公开(公告)号:US08826372B1

    公开(公告)日:2014-09-02

    申请号:US14061722

    申请日:2013-10-23

    申请人: Lee Chen John Chiong Dennis I. Oshiba

    发明人: Lee Chen John Chiong Dennis I. Oshiba

    IPC分类号: H04L29/06 H04L29/08 H04W12/00

    CPC分类号: H04L63/20 G06F21/00 H04L45/308 H04L51/04 H04L61/20 H04L61/2596 H04L61/3065 H04L63/02 H04L63/0227 H04L63/0236 H04L63/029 H04L63/0407 H04L63/08 H04L63/0892 H04L65/1026 H04L67/02 H04L67/06 H04L67/10 H04L67/14 H04L67/22 H04L67/306 H04L67/42 H04L69/22 H04M1/72547 H04W12/00

    摘要: A security gateway includes packet routing policies, each including a host network address, an application network address, and a forwarding interface. In routing data packets of an application session, the security gateway: recognizes the application session between a network and an application; determines a user identity from an application session record for the application session; determines packet routing policies applicable to the application session based on the user identity; receives a data packet for the application session, including a source network address and a destination network address; compares the source network address with the host network address, and the destination network address with the application network address; and in response to finding a match between the source network address and the host network address, and between the destination network address and the application network address, processes the data packet using the forwarding interface of the packet routing policy.

    摘要翻译: 安全网关包括分组路由策略,每个路由策略包括主机网络地址,应用网络地址和转发接口。 在路由应用会话的数据包时,安全网关:识别网络和应用之间的应用会话; 从应用会话的应用会话记录中确定用户身份; 基于用户身份确定适用于应用会话的分组路由策略; 接收应用会话的数据包,包括源网络地址和目的网络地址; 将源网络地址与主机网络地址进行比较,将目的网络地址与应用网络地址进行比较; 并且响应于找到源网络地址和主机网络地址之间以及目的地网络地址和应用网络地址之间的匹配,使用分组路由策略的转发接口处理数据分组。

    Method and System to Determine an Application Delivery Server Based on Geo-Location Information
    9.
    发明申请
    Method and System to Determine an Application Delivery Server Based on Geo-Location Information 有权
    基于地理位置信息确定应用交付服务器的方法和系统

    公开(公告)号:US20110093522A1

    公开(公告)日:2011-04-21

    申请号:US12603471

    申请日:2009-10-21

    申请人: Lee Chen John Chiong

    发明人: Lee Chen John Chiong

    IPC分类号: G06F15/16

    CPC分类号: H04L41/12 H04L29/12066 H04L61/1511 H04L67/1002 H04L67/1021 H04L67/1036

    摘要: A method and system to determine a web server based on geo-location information is disclosed. The system includes: a local DNS server coupled to a web client; a plurality of web servers; and a global load balancer coupled to the local DNS server. The global load balancer: receives a request for a web service sent by the web client, the request comprising local DNS server information; determines a geographic location for the local DNS server based on the local DNS server information; determines a web server from the plurality of web servers based on the requested web service; determines a geographic location for the determined web server; determines that the geographic location for the local DNS server matches the geographic location for the determined web server; selects the determined web server; and sends a response comprising information on the selected web server to the local DNS server.

    摘要翻译: 公开了一种基于地理位置信息确定Web服务器的方法和系统。 该系统包括:耦合到web客户端的本地DNS服务器; 多个web服务器; 以及耦合到本地DNS服务器的全局负载平衡器。 全局负载平衡器:接收由Web客户端发送的Web服务的请求,该请求包括本地DNS服务器信息; 基于本地DNS服务器信息确定本地DNS服务器的地理位置; 基于所请求的web服务从多个web服务器确定web服务器; 确定所确定的web服务器的地理位置; 确定本地DNS服务器的地理位置与确定的Web服务器的地理位置相匹配; 选择确定的Web服务器; 并将包含所选web服务器上的信息的响应发送到本地DNS服务器。

    System and method to associate a private user identity with a public user identity
    10.
    发明申请
    System and method to associate a private user identity with a public user identity 有权
    将私有用户身份与公共用户身份相关联的系统和方法

    公开(公告)号:US20080148357A1

    公开(公告)日:2008-06-19

    申请号:US11582613

    申请日:2006-10-17

    申请人: Lee Chen John Chiong Xin Wang

    发明人: Lee Chen John Chiong Xin Wang

    IPC分类号: H04L9/32 G06F21/00

    CPC分类号: H04L63/102 H04L12/66 H04L29/06 H04L61/6022 H04L61/6068 H04L63/02 H04L63/0281 H04L63/04 H04L63/08 H04L63/0853 H04L63/10 H04L63/30 H04L63/308 H04L65/1003 H04L65/1006 H04L65/1069 H04L65/4007 H04L67/14 H04L67/141 H04L67/146

    摘要: The inventive system includes a host, a network including a security gateway, and a public application. Established are an access session between the network and the host and an application session between the public application and the network. An application session record is created for the application session, and includes the user's public user identity used to access the public application, the user's private user identity used to access the network, a host identity, and an application session time. To determine the private user identity for the application session, the security gateway sends a query with the host identity and the application session time. These are compared with the host identity and access session time in an access session record. If they match, then the private user identity in the access session record is returned, and it is stored as the private user identity in the application session record.

    摘要翻译: 本发明的系统包括主机,包括安全网关的网络和公共应用。 建立在网络和主机之间的访问会话以及公共应用程序和网络之间的应用程序会话。 为应用会话创建应用会话记录,并且包括用于访问公共应用的用户的公共用户标识,用于访问网络的用户的私有用户标识,主机标识和应用会话时间。 为了确定应用程序会话的私有用户身份,安全网关发送具有主机标识和应用程序会话时间的查询。 这些与访问会话记录中的主机身份和访问会话时间进行比较。 如果匹配,则返回访问会话记录中的私有用户身份,并将其作为私有用户身份存储在应用程序会话记录中。