-
公开(公告)号:BRPI0711702A2
公开(公告)日:2011-11-29
申请号:BRPI0711702
申请日:2007-05-25
Applicant: MICROSOFT CORP
Inventor: MEDVINSKY GENNADY , ILAC CRISTIAN , HAGIUS COSTIN , PARSONS JOHN E , EL DIN FATHALLA MOHAMED EMAD , LEACH PAUL J , EL-DIN MAHMOUD KAMEL TAREK BUHAA
Abstract: A credential security support provider (Cred SSP) is provided that enables any application to securely delegate a user's credentials from the client, via client side Security Support Provider (SSP) software, to a target server, via server side SSP software in a networked computing environment. The Cred SSP of the invention provides a secure solution that is based in part upon a set of policies, including a default policy that is secure against a broad range of attacks, which are used to control and restrict the delegation of user credentials from a client to a server. The policies can be for any type of user credentials and the different policies are designed to mitigate a broad range of attacks so that appropriate delegation can occur for given delegation circumstances, network conditions, trust levels, etc. Additionally, only a trusted subsystem, e.g., a trusted subsystem of the Local Security Authority (LSA), has access to the clear text credentials such that neither the calling application of the Cred SSP APIs on the server side nor the calling application of the Cred SSP APIs on the client side have access to clear text credentials.
-
公开(公告)号:NO20084500A
公开(公告)日:2008-11-26
申请号:NO20084500
申请日:2008-10-27
Applicant: MICROSOFT CORP
Inventor: ILAC CRISTIAN , MEDVINSKY GENNADY , HAGIU COSTIN , PARSONS JOHN E , FATHALLA MOHAMED EMAD EL DIN , LEACH PAUL J , KAMEL TARK BUHAA E-DIN MAHMOUD
CPC classification number: H04L63/0815 , H04L9/3273 , H04L63/20 , H04L2209/80
-
公开(公告)号:AU2007225421A1
公开(公告)日:2007-09-20
申请号:AU2007225421
申请日:2007-01-16
Applicant: MICROSOFT CORP
Inventor: SCHMIEDER ROBERT WILHELM , PARSONS JOHN E , CHIK JOY , ABDO NADIM Y
Abstract: Embodiments provide for efficient encoding and rendering of remote graphic displays by applying one or more of the following: (1) field encoding for identifying fields of a graphics set such that commonalities of various fields across different graphics languages are identified; (2) resource caching, which treats heterogeneous resources in a homogeneous way when it comes to storing them; (3) determining the type of encoding for remoting items within a graphics set based upon the types of compression mechanisms supported by a remote device; (4) improving responsiveness by rendering with partially sent resources; (5) a mechanism for determining what portions (if any) of a graphics set should be sent to a remote device and in what order; and (6) use of dedicated resources already on a remote device in order to eliminate the transfer of a resource between a local device and the remote device when rendering such resource.
-
公开(公告)号:CA2642529C
公开(公告)日:2015-05-26
申请号:CA2642529
申请日:2007-01-16
Applicant: MICROSOFT CORP
Inventor: PARSONS JOHN E , CHIK JOY , ABDO NADIM Y , SCHMIEDER ROBERT WILHELM
Abstract: Embodiments provide for efficient encoding and rendering of remote graphic displays by applying one or more of the following: (1) field encoding for identifying fields of a graphics set such that commonalities of various fields across different graphics languages are identified; (2) resource caching, which treats heterogeneous resources in a homogeneous way when it comes to storing them; (3) determining the type of encoding for remoting items within a graphics set based upon the types of compression mechanisms supported by a remote device; (4) improving responsiveness by rendering with partially sent resources; (5) a mechanism for determining what portions (if any) of a graphics set should be sent to a remote device and in what order; and (6) use of dedicated resources already on a remote device in order to eliminate the transfer of a resource between a local device and the remote device when rendering such resource.
-
公开(公告)号:DE69840672D1
公开(公告)日:2009-04-30
申请号:DE69840672
申请日:1998-11-02
Applicant: MICROSOFT CORP
Inventor: PARSONS JOHN E , GRAZIADIO BRADLEY J , MOMOH OSHOMA
Abstract: A server operating system supports multiple client-server sessions and enables a user to begin a session and later dynamically reconnect to that session even if the user uses two different client computers. The operating system has a multi-user session manager to enable multiple client-server sessions on the server and a multi-user stack protocol manager to manage one or more protocol stacks used in communicating with the clients. When a user connects to the server via a first client, the stack protocol manager assigns a first protocol stack to this first client-server connection and the session manager creates a first session for the user. When the user subsequently reconnects to the server using a second client that is different from the first client, the stack manager assigns a second protocol stack to a second client-server connection and the session beings creating a second session for the user. During this latter process, however, the session manager recognizes that the user is affiliated with the first session. The session manager adapts the first session to conform to the system configuration of the second client. The session manager then reassociates the second protocol stack with the reconfigured first session so that the user is returned to his/her original session, even though they logged on from a different client.
-
Patent Agency Ranking
公开(公告)号:NO20084500L
公开(公告)日:2008-11-26
申请号:NO20084500
申请日:2008-10-27
Applicant: MICROSOFT CORP
Inventor: ILAC CRISTIAN , MEDVINSKY GENNADY , HAGIU COSTIN , PARSONS JOHN E , FATHALLA MOHAMED EMAD EL DIN , LEACH PAUL J , KAMEL TARK BUHAA E-DIN MAHMOUD
Abstract: A credential security support provider (Cred SSP) is provided that enables any application to securely delegate a user's credentials from the client, via client side Security Support Provider (SSP) software, to a target server, via server side SSP software in a networked computing environment. The Cred SSP of the invention provides a secure solution that is based in part upon a set of policies, including a default policy that is secure against a broad range of attacks, which are used to control and restrict the delegation of user credentials from a client to a server. The policies can be for any type of user credentials and the different policies are designed to mitigate a broad range of attacks so that appropriate delegation can occur for given delegation circumstances, network conditions, trust levels, etc. Additionally, only a trusted subsystem, e.g., a trusted subsystem of the Local Security Authority (LSA), has access to the clear text credentials such that neither the calling application of the Cred SSP APIs on the server side nor the calling application of the Cred SSP APIs on the client side have access to clear text credentials.
-
17.发明专利
公开(公告)号:CA2654381A1
公开(公告)日:2007-12-06
申请号:CA2654381
申请日:2007-05-25
Applicant: MICROSOFT CORP
Inventor: PARSONS JOHN E , KAMEL TAREK BUHAA EL-DIN MAHMOUD , ILAC CRISTIAN , FATHALLA MOHAMED EMAD EL DIN , MEDVINSKY GENNADY , LEACH PAUL J , HAGIU COSTIN
Abstract: A credential security support provider (Cred SSP) enables any application to securely delegate a user's credentials from the client, via client side Security Support Provider (SSP) software, to a target server, via server sid e SSP software. The Cred SSP provides a secure solution based in part upon a set of policies. The policies can be for any type of user credentials and t he different policies are designed to mitigate a broad range of attacks so t hat appropriate delegation can occur for given delegation circumstances, net work conditions, trust levels, etc. Additionally, only a trusted subsystem, e.g., a trusted subsystem of the Local Security Authority (LSA), has access to the clear text credentials such that neither the calling application of t he Cred SSP APIs on the server side nor the calling application of the Cred SSP APIs on the client side have access to clear text credentials.
-
18.发明专利
公开(公告)号:AU2007267836A1
公开(公告)日:2007-12-06
申请号:AU2007267836
申请日:2007-05-25
Applicant: MICROSOFT CORP
Inventor: LEACH PAUL J , FATHALLA MOHAMED EMAD EL DIN , ILAC CRISTIAN , PARSONS JOHN E , KAMEL TAREK BUHAA EL-DIN MAHMOUD , HAGIU COSTIN , MEDVINSKY GENNADY
Abstract: A credential security support provider (Cred SSP) is provided that enables any application to securely delegate a user's credentials from the client, via client side Security Support Provider (SSP) software, to a target server, via server side SSP software in a networked computing environment. The Cred SSP of the invention provides a secure solution that is based in part upon a set of policies, including a default policy that is secure against a broad range of attacks, which are used to control and restrict the delegation of user credentials from a client to a server. The policies can be for any type of user credentials and the different policies are designed to mitigate a broad range of attacks so that appropriate delegation can occur for given delegation circumstances, network conditions, trust levels, etc. Additionally, only a trusted subsystem, e.g., a trusted subsystem of the Local Security Authority (LSA), has access to the clear text credentials such that neither the calling application of the Cred SSP APIs on the server side nor the calling application of the Cred SSP APIs on the client side have access to clear text credentials.
-
公开(公告)号:CA2642529A1
公开(公告)日:2007-09-20
申请号:CA2642529
申请日:2007-01-16
Applicant: MICROSOFT CORP
Inventor: PARSONS JOHN E , SCHMIEDER ROBERT WILHELM , ABDO NADIM Y , CHIK JOY
Abstract: Embodiments provide for efficient encoding and rendering of remote graphic displays by applying one or more of the following: (1) field encoding for identifying fields of a graphics set such that commonalities of various fields across different graphics languages are identified; (2) resource caching, which treats heterogeneous resources in a homogeneous way when it comes to storing them; (3) determining the type of encoding for remoting items within a graphics set based upon the types of compression mechanisms supported by a remote device; (4) improving responsiveness by rendering with partially sent resources; (5) a mechanism for determining what portions (if any) of a graphics set should be sent to a remote device and in what order; and (6) use of dedicated resources already on a remote device in order to eliminate the transfer of a resource between a local device and the remote device when rendering such resource.
-
20.发明专利
公开(公告)号:MX2008014855A
公开(公告)日:2008-12-01
申请号:MX2008014855
申请日:2007-05-25
Applicant: MICROSOFT CORP
Inventor: LEACH PAUL J , ILAC CRISTIAN , PARSONS JOHN E , MEDVINSKY GENNADY , HAGIU COSTIN , FATHALLA MOHAMED EMAD EL DIN , KAMEL TAREK BUHAA EL-DIN MAHMOUD
Abstract: Un proveedor de soporte de seguridad de credencial (SSP de Credencial) permite a cualquier aplicación delegar de forma segura credenciales de usuario del cliente, a través del software de Proveedor de Soporte de Seguridad (SSP) de lado de cliente, a un servidor objetivo, a través de software SSP de lado de servidor. El SSP de Credencial proporciona una solución segura basándose en parte en un grupo de políticas. Las políticas pueden ser para cualquier tipo de credenciales de usuario y diferentes políticas se designan para mitigar una amplia escala de ataques para que la delegación apropiada pueda ocurrir para circunstancias de delegación dadas, condiciones de red, niveles de confianza, etc. Adicionalmente, sólo un subsistema confiado, por ejemplo, un subsistema confiado de la Autoridad de Seguridad local (LSA), tiene acceso a las credenciales de texto limpias de manera que ni la aplicación que llama de la APIS de SSP de Credencial en el lado de servidor ni la aplicación que llama de las APIs de SSP de Credencial en el lado de cliente tengan acceso a las credenciales de texto limpias.
-
-
-
-
-
-
-
-
-
Search Results
21
records
(took 0.021 seconds)
