公开(公告)号：WO02052438A2

公开(公告)日：2002-07-04

申请号：PCT/EP0113653

申请日：2001-11-23

Applicant: IBM ,  IBM DEUTSCHLAND

Inventor： BOEHME THOMAS ,  RINDTORFF KLAUS ,  SCHAECK THOMAS ,  WEBER ROLAND

IPC: G06F13/00 ,  G06F17/30

CPC classification number: G06F17/30873

Abstract: A computer system (10) is described comprising at least one content provider (11, 12, 13) which is coupled to a portal (17) which is coupled to a user (19). The content provider (11, 12, 13) comprises means for generating information in a markup language and for sending the information to the portal (17). The portal (17) comprises means for combining the received information and for sending the combined information to the user (19).

Abstract translation: 描述的计算机系统（10）包括耦合到耦合到用户（19）的门户（17）的至少一个内容提供商（11,12,13）。 内容提供商（11,12,13）包括用于以标记语言生成信息并将信息发送到门户（17）的装置。 入口（17）包括用于组合所接收的信息并将组合信息发送给用户（19）的装置。

公开(公告)号：DE19939281A1

公开(公告)日：2001-02-22

申请号：DE19939281

申请日：1999-08-19

Applicant: IBM

Inventor： BENDEL PETER ,  SCHAECK THOMAS ,  WEBER ROLAND

IPC: H04L29/06 ,  H04L9/32 ,  H04L12/22 ,  G06F12/14

Abstract: Access control systems for safeguarding access to the contents of web-sites e.g. during exchange of information and business ideas on the internet suffer from shortcomings, such as proneness to bugging, and to the risk of replacement of one TCP/IP address of an authorized client by another TCP/IP address of an unauthorized client, and to provide improved security during communication , the use of a smart card during access control to web-sites is used and considerably raises the level of security of the authentication procedure, without requiring any change to the existing browser.

公开(公告)号：DE60100680D1

公开(公告)日：2003-10-09

申请号：DE60100680

申请日：2001-04-24

Applicant: IBM

Inventor： HENN DR ,  HERRENDOERFER DIRK ,  SCHAECK THOMAS ,  WEBER ROLAND

IPC: H04L29/06 ,  H04L29/08

Abstract: The present invention relates to a client-server system having a security system for controlling access to application functions. The security system separated from the clients and the application functions routes all incoming requests created by various PVC-devices to a centralized security system providing an authentication component and a security component. The authentication component provides several authentication mechanisms which may be selected by information contained in the client's request. The authentication mechanism may be changed or extended without changing conditions on the client as well on the server or application side. The security component provides a security policy describing security requirements for accessing application functions which may be invoked by the security component. If the selected authentication mechanism succeeds and fulfills the security policy associated to that application function then the application function will be invoked by the security component.

公开(公告)号：DE19938695A1

公开(公告)日：2001-02-15

申请号：DE19938695

申请日：1999-08-14

Applicant: IBM

Inventor： WEBER ROLAND ,  HENN HORST ,  SCHAECK THOMAS

IPC: G06Q20/00 ,  G07F7/10 ,  G07F19/00 ,  G07F7/08 ,  G06F17/60

Abstract: A device and a process for the performance of cashless payments between customer and dealer via a contact bank. An on-line process between customer and dealer to define the payment method, check the availability frame, issue a voucher to describe the transaction, issue a payment instruction, signature of the issued voucher by the dealer and signature of the payment instruction by the dealer and the customer, where the bank is connected off-line, and a subsequent on-line process between dealer and bank to transfer the signed payment instruction and signed voucher, check the dealer and customer signature, check the allocation between payment instruction and voucher, replace the dealer and customer identity data with information for performance of the payment instruction, performance of the payment instruction and storage of vouchers. No sensitive customer data such as account number, credit card number etc. is stored on the customer card and hence misuse by unauthorised persons is excluded. The process serves to define the payment methods required by the customer for mechanical processing and to minimise the risk to the customer on loss of the customer card, it also allows customers who do not have a bank account, such as children for example, to have access to an electronic payment means with limited availability frame. The customer card can be designed as a card with contacts or a contactless card.

公开(公告)号：DE60100680T2

公开(公告)日：2004-07-22

申请号：DE60100680

申请日：2001-04-24

Applicant: IBM

Inventor： HENN DR ,  HERRENDOERFER DIRK ,  SCHAECK THOMAS ,  WEBER ROLAND

IPC: H04L29/06 ,  H04L29/08

Abstract: The present invention relates to a client-server system having a security system for controlling access to application functions. The security system separated from the clients and the application functions routes all incoming requests created by various PVC-devices to a centralized security system providing an authentication component and a security component. The authentication component provides several authentication mechanisms which may be selected by information contained in the client's request. The authentication mechanism may be changed or extended without changing conditions on the client as well on the server or application side. The security component provides a security policy describing security requirements for accessing application functions which may be invoked by the security component. If the selected authentication mechanism succeeds and fulfills the security policy associated to that application function then the application function will be invoked by the security component.

公开(公告)号：AT249122T

公开(公告)日：2003-09-15

申请号：AT01109912

申请日：2001-04-24

Applicant: IBM

Inventor： HENN HORST DR ,  HERRENDOERFER DIRK ,  SCHAECK THOMAS ,  WEBER ROLAND

IPC: H04L29/06 ,  H04L29/08

Abstract: The present invention relates to a client-server system having a security system for controlling access to application functions. The security system separated from the clients and the application functions routes all incoming requests created by various PVC-devices to a centralized security system providing an authentication component and a security component. The authentication component provides several authentication mechanisms which may be selected by information contained in the client's request. The authentication mechanism may be changed or extended without changing conditions on the client as well on the server or application side. The security component provides a security policy describing security requirements for accessing application functions which may be invoked by the security component. If the selected authentication mechanism succeeds and fulfills the security policy associated to that application function then the application function will be invoked by the security component.