公开(公告)号：WO2004059478A3

公开(公告)日：2005-08-11

申请号：PCT/EP0314847

申请日：2003-11-27

Applicant: IBM ,  IBM FRANCE

Inventor： BLAKLEY GEORGE R III ,  HINTON HEATHER M ,  NADALIN ANTHONY J ,  WESLEY AJAMU A

IPC: G06F17/30 ,  G06F21/00 ,  H04L29/06 ,  H04L29/08 ,  G06F1/00

CPC classification number: H04L63/0815 ,  H04L63/0807 ,  H04L63/104 ,  H04L67/10

Abstract: A method is presented in which federated domains interact within a federated environment. Domains within a federation can initiate federated single-sign-on operations for a user at other federated domains. A point-of-contact server within a domain relies upon a trust proxy within the domain to manage trust relationships between the domain and the federation. Trust proxies interpret assertions from other federated domains as necessary. Trust proxies may have a trust relationship with one or more trust brokers, and a trust proxy may rely upon a trust broker for assistance in interpreting assertions. When a user requests to logoff from a domain that has initiated federated single-sign-on operations for the user at other federated domains, the domain initiates a consolidated logoff operation by requesting logoff operations at those other federated domains, which may also initiate logoff operations in a cascaded fashion to the domains at which they have initiated federated single-sign-on operations.

Abstract translation: 提出了一种方法，其中联合域在联合环境中相互作用。 联盟内的域可以为其他联盟域的用户启动联合单点登录操作。 域内的联络点服务器依赖于域内的信任代理来管理域和联盟之间的信任关系。 信任代理根据需要解释其他联盟域的断言。 信托代理可能与一个或多个信托经纪人有信任关系，信托代理可以依靠信托代理人来解释断言。 当用户请求从其他联盟域的用户启动了联合单点登录操作的域注销时，域通过请求在其他联盟域的注销操作来启动合并注销操作，这些操作也可以启动注销操作 以级联方式发布到已启动联合单点登录操作的域。

公开(公告)号：WO2004059415A2

公开(公告)日：2004-07-15

申请号：PCT/EP0314852

申请日：2003-11-27

Applicant: IBM ,  IBM FRANCE

Inventor： BLAKLEY GEORGE R III ,  HINTON HEATHER M ,  NADALIN ANTHONY J

IPC: H04L29/06 ,  G06F

CPC classification number: H04L63/0281 ,  H04L63/0807 ,  H04L63/0815 ,  H04L63/0823 ,  H04L2463/102

Abstract: A method is presented in which federated domains interact within a federated environment. Domains within a federation can initiate federated single-sign-on operations for a user at other federated domains. A point-of-contact server within a domain relies upon a trust proxy within the domain to manage trust relationships between the domain and the federation. Trust proxies interpret assertions from other federated domains as necessary. Trust proxies may have a trust relationship with one or more trust brokers, and a trust proxy may rely upon a trust broker for assistance in interpreting assertions.

Abstract translation: 提出了一种方法，其中联合域在联合环境中相互作用。 联盟内的域可以为其他联盟域的用户启动联合单点登录操作。 域内的联络点服务器依赖域内的信任代理来管理域和联盟之间的信任关系。 信任代理根据需要解释其他联盟域的断言。 信托代理可能与一个或多个信托经纪人有信任关系，信托代理可以依靠信托代理人来解释断言。

公开(公告)号：JP2006031714A

公开(公告)日：2006-02-02

申请号：JP2005210414

申请日：2005-07-20

Applicant: Internatl Business Mach Corp ,  インターナショナル・ビジネス・マシーンズ・コーポレーションInternational Business Maschines Corporation

Inventor： HINTON HEATHER M ,  FALOLA DOLAPO M ,  MORAN ANTHONY S ,  WARDROP PATRICK R

IPC: G06F21/20 ,  G06F15/00 ,  G09C1/00 ,  H04L9/32

CPC classification number: H04L63/06 ,  H04L63/0815 ,  H04L63/166

Abstract: PROBLEM TO BE SOLVED: To provide a method and a system which enhances an interactive activity between computer environments for various enterprizes in a computing environment. SOLUTION: The system for enhancing the interactive activity between computer environments for the various enterprizes in the computing environment provides the method comprising the steps of starting a unified action in the computing environment for a unified partner instead of a user in a different unified computing environment; managing a contacting service in a manner to establish a reliable relationship between at least one of each computing environment and the computing environment for the unified partners based on a service for reliability; using the service for the reliability comprising a key maintenance service, a service for identifying or attributing, and a service for a security token; performing a unified life cycle function by using a management service for a unified life cycle; and implementing interactively the contacting service and the service for the reliability. COPYRIGHT: (C)2006,JPO&NCIPI

Abstract translation: 要解决的问题：提供一种方法和系统，其增强计算环境中的各种输入的计算机环境之间的交互活动。 解决方案：用于增强在计算环境中的各种企业的计算机环境之间的交互活动的系统提供了这样的方法，其包括以下步骤：在统一的伙伴而不是不同的统一的用户的计算环境中启动统一动作 计算环境; 管理联系服务，以便基于用于可靠性的服务来为每个计算环境和统一伙伴的计算环境之间建立可靠关系; 使用该服务的可靠性包括密钥维护服务，用于识别或归属的服务以及用于安全令牌的服务; 通过使用管理服务统一生命周期来实现统一的生命周期功能; 并以可交互方式实现联系服务和服务。 版权所有（C）2006，JPO＆NCIPI

公开(公告)号：AU2003288261A8

公开(公告)日：2004-07-22

申请号：AU2003288261

申请日：2003-11-27

Applicant: IBM

Inventor： BLAKLEY GEORGE R III ,  NADALIN ANTHONY J ,  HINTON HEATHER M

IPC: H04L29/06

Abstract: A method is presented in which federated domains interact within a federated environment. Domains within a federation can initiate federated single-sign-on operations for a user at other federated domains. A point-of-contact server within a domain relies upon a trust proxy within the domain to manage trust relationships between the domain and the federation. Trust proxies interpret assertions from other federated domains as necessary. Trust proxies may have a trust relationship with one or more trust brokers, and a trust proxy may rely upon a trust broker for assistance in interpreting assertions.

公开(公告)号：AU2003294951A8

公开(公告)日：2004-07-22

申请号：AU2003294951

申请日：2003-11-27

Applicant: IBM

Inventor： NADALIN ANTHONY J ,  BLAKLEY GEORGE R III ,  WESLEY AJAMU A ,  HINTON HEATHER M

IPC: G06F17/30 ,  G06F21/00 ,  H04L29/06 ,  H04L29/08 ,  G06F1/00

Abstract: A method is presented in which federated domains interact within a federated environment. Domains within a federation can initiate federated single-sign-on operations for a user at other federated domains. A point-of-contact server within a domain relies upon a trust proxy within the domain to manage trust relationships between the domain and the federation. Trust proxies interpret assertions from other federated domains as necessary. Trust proxies may have a trust relationship with one or more trust brokers, and a trust proxy may rely upon a trust broker for assistance in interpreting assertions. When a user requests to logoff from a domain that has initiated federated single-sign-on operations for the user at other federated domains, the domain initiates a consolidated logoff operation by requesting logoff operations at those other federated domains, which may also initiate logoff operations in a cascaded fashion to the domains at which they have initiated federated single-sign-on operations.

公开(公告)号：AU2003288261A1

公开(公告)日：2004-07-22

申请号：AU2003288261

申请日：2003-11-27

Applicant: IBM

Inventor： NADALIN ANTHONY J ,  BLAKLEY GEORGE R III ,  HINTON HEATHER M

IPC: H04L29/06

Abstract: A method is presented in which federated domains interact within a federated environment. Domains within a federation can initiate federated single-sign-on operations for a user at other federated domains. A point-of-contact server within a domain relies upon a trust proxy within the domain to manage trust relationships between the domain and the federation. Trust proxies interpret assertions from other federated domains as necessary. Trust proxies may have a trust relationship with one or more trust brokers, and a trust proxy may rely upon a trust broker for assistance in interpreting assertions.

公开(公告)号：CA2508464C

公开(公告)日：2011-06-07

申请号：CA2508464

申请日：2003-11-27

Applicant: IBM

Inventor： BLAKLEY GEORGE R III ,  HINTON HEATHER M ,  NADALIN ANTHONY J ,  WESLEY AJAMU A

IPC: G06F9/46 ,  G06F17/30 ,  G06F21/00 ,  H04L29/06 ,  H04L29/08

Abstract: A method is presented in which federated domains interact within a federated environment. Domains within a federation can initiate federated single-sign-on operations for a user at other federated domains. A point-of-contact server within a domain relies upon a trust proxy within the domain to manage trust relationships between the domain and the federation. Trust proxies interpret assertions from other federated domains as necessary. Trust proxies may have a trust relationship with one or more trust brokers, and a trust proxy may rely upon a trust broker for assistance in interpreting assertions. When a user requests to logoff from a domain that has initiated federated single-sign-on operations for the user at other federated domains, the domain initiates a consolidated logoff operation by requesting logoff operations at those other federated domains, which may also initiate logoff operations in a cascaded fashion to the domains at which they have initiated federated single-sign-on operations.

公开(公告)号：AU2003294951A1

公开(公告)日：2004-07-22

申请号：AU2003294951

申请日：2003-11-27

Applicant: IBM

Inventor： NADALIN ANTHONY J ,  WESLEY AJAMU A ,  BLAKLEY GEORGE R III ,  HINTON HEATHER M

IPC: G06F17/30 ,  G06F21/00 ,  H04L29/06 ,  H04L29/08 ,  G06F9/46

Abstract: A method is presented in which federated domains interact within a federated environment. Domains within a federation can initiate federated single-sign-on operations for a user at other federated domains. A point-of-contact server within a domain relies upon a trust proxy within the domain to manage trust relationships between the domain and the federation. Trust proxies interpret assertions from other federated domains as necessary. Trust proxies may have a trust relationship with one or more trust brokers, and a trust proxy may rely upon a trust broker for assistance in interpreting assertions. When a user requests to logoff from a domain that has initiated federated single-sign-on operations for the user at other federated domains, the domain initiates a consolidated logoff operation by requesting logoff operations at those other federated domains, which may also initiate logoff operations in a cascaded fashion to the domains at which they have initiated federated single-sign-on operations.

公开(公告)号：CA2508464A1

公开(公告)日：2004-07-15

申请号：CA2508464

申请日：2003-11-27

Applicant: IBM

Inventor： BLAKLEY GEORGE R III ,  WESLEY AJAMU A ,  NADALIN ANTHONY J ,  HINTON HEATHER M

IPC: G06F17/30 ,  G06F21/00 ,  H04L29/06 ,  H04L29/08 ,  G06F9/46

Abstract: A method is presented in which federated domains interact within a federated environment. Domains within a federation can initiate federated single-sign- on operations for a user at other federated domains. A point-of-contact server within a domain relies upon a trust proxy within the domain to manage trust relationships between the domain and the federation. Trust proxies interpret assertions from other federated domains as necessary. Trust proxies may have a trust relationship with one or more trust brokers, and a trust proxy may rel y upon a trust broker for assistance in interpreting assertions. When a user requests to logoff from a domain that has initiated federated single-sign-on operations for the user at other federated domains, the domain initiates a consolidated logoff operation by requesting logoff operations at those other federated domains, which may also initiate logoff operations in a cascaded fashion to the domains at which they have initiated federated single-sign-on operations.