-
1.发明申请
公开(公告)号:WO0103398A3
公开(公告)日:2001-06-07
申请号:PCT/GB0002469
申请日:2000-06-28
Inventor: BELLWOOD THOMAS ALEXANDER , LITA CHRISTIAN , RUTKOWSKI MATTHEW FRANCIS
CPC classification number: H04L63/0464 , H04L63/166 , H04L2463/102
Abstract: A method of enabling a proxy to participate in a secure communication between a client and a set of servers. The method begins by establishing a first secure session between the client and the proxy. Upon verifying the first secure session, the method continues by establishing a second secure session between the client and the proxy. In the second secure session, the client requests the proxy to act as a conduit to a first server. Thereafter, the client and the first server negotiate a first session master secret. Using the first secure session, this first session master secret is then provided by the client to the proxy to enable the proxy to participate in secure communications between the client and the first server. After receiving the first session master secret, the proxy generates cryptographic information that enables it to provide a given service (e.g., transcoding) on the client's behalf and without the first server's knowledge or participation. If data from a second server is required during the processing of a given client request to the first server, the proxy issues a request to the client to tunnel back through the proxy to the second server using the same protocol.
Abstract translation: 一种使代理能够参与客户端与一组服务器之间的安全通信的方法。 该方法首先在客户端和代理之间建立第一个安全会话。 在验证第一安全会话后,该方法继续在客户端和代理之间建立第二安全会话。 在第二个安全会话中,客户端请求代理充当第一台服务器的管道。 此后,客户端和第一服务器协商第一会话主密钥。 使用第一安全会话,然后由客户端将第一会话主密钥提供给代理,以使代理能够参与客户端和第一服务器之间的安全通信。 在接收到第一会话主秘密之后,代理生成密码信息,使其能够代表客户提供给定的服务(例如代码转换),并且不需要第一服务器的知识或参与。 如果在处理给定第一个服务器的给定客户机请求期间需要来自第二个服务器的数据,则代理向客户机发出请求,以使用相同协议通过代理向第二个服务器进行隧道传输。
-
公开(公告)号:JP2001109743A
公开(公告)日:2001-04-20
申请号:JP2000241111
申请日:2000-08-09
Applicant: IBM
Inventor: DUTTA RABINDRANATH , LITA CHRISTIAN , RODRIGUEZ JEFFREY EDWARD
Abstract: PROBLEM TO BE SOLVED: To realize a transcoding processing system which performs semantic transcoding between a client and a server and makes document transmission possible. SOLUTION: The client 620 requests a specified document and offers settings including document readily understandable level setting, locale setting, contents filtering instruction setting, government regulation setting, natural language setting and document syntax format setting. A transcoding proxy 600 requests a document from an origin server 610 and receives the document having a transmission source semantic characteristics from the origin server. The transcoding proxy uses client semantic setting and corrects the document into a sequential or a parallel system. Then, the transmission source semantic characteristics of the document is modified to a semantic setting designated by the client.
-
3.发明专利
公开(公告)号:JPH11242644A
公开(公告)日:1999-09-07
申请号:JP22291098
申请日:1998-08-06
Applicant: IBM
Inventor: BERANEK MICHAEL J , LITA CHRISTIAN
Abstract: PROBLEM TO BE SOLVED: To display a web document on a browser operating on a display device in a conventional TV class by intercepting the web document to set the format again. SOLUTION: An internet client machine 10 is connected to a server platform 12 through a communication channel 14. An HTTP cache proxy on the side of the client machine 10 is used to intercept the web document, and this document is dynamically rewritten before being displayed on the browser attached to a web apparatus. Concretely, the HTML of the web document is analyzed to discriminate the form of the document and information of its contents at the time of receiving this document from the server 12. Next, a filter mechanism is used to set the format of the web document again in accordance with some given protocols or filter properties, and the web document set again is transferred to the browser and is displayed.
-
4.发明专利
公开(公告)号:JP2009239919A
公开(公告)日:2009-10-15
申请号:JP2009113926
申请日:2009-05-08
Applicant: Internatl Business Mach Corp
, インターナショナル・ビジネス・マシーンズ・コーポレーションInternational Business Maschines Corporation Inventor: BELLWOOD THOMAS ALEXANDER , LITA CHRISTIAN , RUTKOWSKI MATTHEW FRANCIS
CPC classification number: H04L63/0464 , H04L63/166 , H04L2463/102
Abstract: PROBLEM TO BE SOLVED: To enable a proxy to participate in a secure communication between a client and a set of servers.
SOLUTION: This method includes steps of: requesting a client for a first secure connection to a proxy; requesting the client for a second secure connection to the proxy when a certificate received from the proxy is authenticated to be valid, that is a step of requesting the proxy so that the second secure connection works as a conduit to the server and negotiating respective session master secrets to the client and the server through the conduit; using the first secure connection for the client to deliver the secret to the proxy at the end of the negotiation; and enabling the proxy to use the secret to generate prescribed code information useful for joining the secure communication.
COPYRIGHT: (C)2010,JPO&INPITAbstract translation: 要解决的问题:使代理能够参与客户端和一组服务器之间的安全通信。 解决方案:该方法包括以下步骤:请求客户端到代理的第一安全连接; 当从代理接收的证书被认证为有效时,请求客户端到代理的第二安全连接,这是请求代理的步骤,使得第二安全连接作为服务器的管道并协商相应的会话主 通过管道向客户端和服务器机密; 使用客户端的第一个安全连接在协商结束时将秘密传递给代理; 并且使所述代理能够使用所述秘密来生成用于加入所述安全通信的规定代码信息。 版权所有(C)2010,JPO&INPIT
-
公开(公告)号:JP2000330957A
公开(公告)日:2000-11-30
申请号:JP2000084968
申请日:2000-03-24
Applicant: IBM
Inventor: LITA CHRISTIAN
Abstract: PROBLEM TO BE SOLVED: To obtain a method, a computer program product, and a server which are used to manage a connection request to a pool of a server identified by a given URL. SOLUTION: This using method is started in response to a connection request from a given client computer 10 starting a user session to relate a session identifier to a given server 12 in the pool. This session identifier is used thereafter to generate a 'virtual' URL redirecting the connection request to the given server 12. Then all additional connection requests issued by the given client computer 10 in the user session are redirected to the given server 12, and consequently all contents are supplied to a client from the same position. At the end of the user session, the virtual URL is inactivated and the given server 12 is returned to the pool, so that a user session to be managed newly can be allocated to the server 12.
-
Patent Agency Ranking
公开(公告)号:JPH11161684A
公开(公告)日:1999-06-18
申请号:JP23868098
申请日:1998-08-25
Applicant: IBM
Inventor: BERANEK MICHAEL J , LITA CHRISTIAN
Abstract: PROBLEM TO BE SOLVED: To dynamically control the way of presenting information on the browser of a client device by analyzing a web information received from a server to recognize form setting information and changing form setting information to correct the displaying characteristic of the web document and delivering the web document to the browser for displaying. SOLUTION: This method includes a step for analyzing the web document to identify form setting information at the time of receiving the web document from the server, a step for changing form setting information to correct the displaying characteristic of the web document and a step for delivering the web document to the browser for displaying. At the time of receiving the web document from a computer network, the proxy 225 of a client device intercepts it and processes for controlling how to present the document by the browser 223 after then. Therefore, the proxy 225 can dynamically adjust the web document without regard to how the web document is form-set by a web server on a connected client side.
-
公开(公告)号:AT321405T
公开(公告)日:2006-04-15
申请号:AT00940630
申请日:2000-06-28
Applicant: IBM
Inventor: BELLWOOD THOMAS ALEXANDER , LITA CHRISTIAN , RUTKOWSKI MATTHEW FRANCIS
Abstract: A method of enabling a proxy to participate in a secure communication between a client and a set of servers. The method begins by establishing a first secure session between the client and the proxy. Upon verifying the first secure session, the method continues by establishing a second secure session between the client and the proxy. In the second secure session, the client requests the proxy to act as a conduit to a first server. Thereafter, the client and the first server negotiate a first session master secret. Using the first secure session, this first session master secret is then provided by the client to the proxy to enable the proxy to participate in secure communications between the client and the first server. After receiving the first session master secret, the proxy generates cryptographic information that enables it to provide a given service (e.g., transcoding) on the client's behalf and without the first server's knowledge or participation. If data from a second server is required during the processing of a given client request to the first server, the proxy issues a request to the client to tunnel back through the proxy to the second server using the same protocol.
-
公开(公告)号:GB2329309B
公开(公告)日:2002-03-13
申请号:GB9815613
申请日:1998-07-20
Applicant: IBM
Inventor: BERANEK MICHAEL , LITA CHRISTIAN
Abstract: A method of controlling how a Web document is presented for display on a browser of a Web appliance. The Web appliance typically includes a television class monitor associated therewith. The Web document typically is formatted according to a markup language such as HTML. The method uses a client side HTTP caching proxy to intercept the Web document and then dynamically rewrite the document before it is displayed on the browser of the Web appliance. In particular, as the Web document is received from the server, the HTML is parsed to identify the format of the document and the information therein. A filter mechanism is then used to reformat the Web document according to some given protocol, and the re-formatted Web document is then passed to the browser for display on the monitor. Dynamic alteration of the HTML in this manner enables control of the "look and feel" of the browser display irrespective of the monitor resolution and/or quality.
-
公开(公告)号:CA2317819A1
公开(公告)日:2001-04-28
申请号:CA2317819
申请日:2000-09-07
Applicant: IBM
Inventor: DUTTA RABINDRANATH , LITA CHRISTIAN , RUTKOWSKI MATTHEW FRANCIS , STERLING MERLE DOUGLAS , BELLWOOD THOMAS ALEXANDER , BARRETT ROBERT CARL
Abstract: A set of program elements (e.g., transcoders) are grouped together as an administrative unit. Instead of caching the individual outputs of each program element, preferabl y only the aggregate output of the set of program elements, taken as a whole, is cached. The inventive technique enables the effective re-use of intermediate content. In an illustrative client-server based implementation involving a transcoding service located at a server, the cach ed information may be shared across multiple server instances to obviate redundant processing. With the present invention, a caching mechanism in a complex software system may be extended in a user-configurable manner by setting up optimal intermediate caching points that are defined by groups of programs used in long computations.
-
公开(公告)号:PL352195A1
公开(公告)日:2003-08-11
申请号:PL35219500
申请日:2000-06-28
Applicant: IBM
Inventor: BELLWOOD THOMAS ALEXANDER , LITA CHRISTIAN , RUTKOWSKI MATTHEW FRANCIS
Abstract: A method of enabling a proxy to participate in a secure communication between a client and a set of servers. The method begins by establishing a first secure session between the client and the proxy. Upon verifying the first secure session, the method continues by establishing a second secure session between the client and the proxy. In the second secure session, the client requests the proxy to act as a conduit to a first server. Thereafter, the client and the first server negotiate a first session master secret. Using the first secure session, this first session master secret is then provided by the client to the proxy to enable the proxy to participate in secure communications between the client and the first server. After receiving the first session master secret, the proxy generates cryptographic information that enables it to provide a given service (e.g., transcoding) on the client's behalf and without the first server's knowledge or participation. If data from a second server is required during the processing of a given client request to the first server, the proxy issues a request to the client to tunnel back through the proxy to the second server using the same protocol.
-
-
-
-
-
-
-
-
-
Search Results
26
records
(took 0.017 seconds)
