Patent search ap:("MICROSOFT CORP") AND inv:"FATHALLA MOHAMED EMAD EL DIN" Page 1

1.

发明申请
POLICY DRIVEN, CREDENTIAL DELEGATION FOR SINGLE SIGN ON AND SECURE ACCESS TO NETWORK RESOURCES 审中-公开
Title translation: 政策驱动，单一登录和安全访问网络资源的认证代表

公开(公告)号：WO2007139944A3

公开(公告)日：2008-02-14

申请号：PCT/US2007012512

申请日：2007-05-25

Applicant: MICROSOFT CORP

Inventor： MEDVINSKY GENNADY , ILAC CRISTIAN , HAGIU COSTIN , PARSONS JOHN E , FATHALLA MOHAMED EMAD EL DIN , LEACH PAUL J , KAMEL TAREK BUHAA EL-DIN MAHMO

IPC: G06F15/00 , H04L9/32

CPC classification number: H04L63/0815 , H04L9/3273 , H04L63/20 , H04L2209/80

Abstract: A credential security support provider (Cred SSP) enables any application to securely delegate a user's credentials from the client, via client side Security Support Provider (SSP) software, to a target server, via server side SSP software. The Cred SSP provides a secure solution based in part upon a set of policies. The policies can be for any type of user credentials and the different policies are designed to mitigate a broad range of attacks so that appropriate delegation can occur for given delegation circumstances, network conditions, trust levels, etc. Additionally, only a trusted subsystem, e.g., a trusted subsystem of the Local Security Authority (LSA), has access to the clear text credentials such that neither the calling application of the Cred SSP APIs on the server side nor the calling application of the Cred SSP APIs on the client side have access to clear text credentials.

Abstract translation: 凭证安全支持提供商（Cred SSP）使任何应用程序能够通过客户端安全支持提供商（SSP）软件将用户的凭据安全地委派给目标服务器，通过服务器端SSP软件。 Cred SSP提供了一部分基于一组策略的安全解决方案。这些策略可以用于任何类型的用户凭证，并且不同的策略被设计为减轻广泛的攻击，从而可以针对给定的授权情况，网络条件，信任级别等进行适当的委托。此外，只有可信的子系统，例如，本地安全机构（LSA）的受信任的子系统可以访问明文凭据，使得服务器端的Cred SSP API的呼叫应用程序和客户端的Cred SSP API的呼叫应用都不具有访问权限清除文本凭据。

2.

发明专利
POLICY DRIVEN, CREDENTIAL DELEGATION FOR SINGLE SIGN ON AND SECURE ACCESS TO NETWORK RESOURCES 未知

公开(公告)号：CA2654381C

公开(公告)日：2016-11-01

申请号：CA2654381

申请日：2007-05-25

Applicant: MICROSOFT CORP

Inventor： MEDVINSKY GENNADY , ILAC CRISTIAN , HAGIU COSTIN , PARSONS JOHN E , FATHALLA MOHAMED EMAD EL DIN , LEACH PAUL J , KAMEL TAREK BUHAA EL-DIN MAHMOUD

IPC: G06F15/00 , H04L9/32

Abstract: A credential security support provider (Cred SSP) enables any application to securely delegate a user's credentials from the client, via client side Security Support Provider (SSP) software, to a target server, via server side SSP software. The Cred SSP provides a secure solution based in part upon a set of policies. The policies can be for any type of user credentials and the different policies are designed to mitigate a broad range of attacks so that appropriate delegation can occur for given delegation circumstances, network conditions, trust levels, etc. Additionally, only a trusted subsystem, e.g., a trusted subsystem of the Local Security Authority (LSA), has access to the clear text credentials such that neither the calling application of the Cred SSP APIs on the server side nor the calling application of the Cred SSP APIs on the client side have access to clear text credentials.

3.

发明专利
未知

公开(公告)号：NO20084500A

公开(公告)日：2008-11-26

申请号：NO20084500

申请日：2008-10-27

Applicant: MICROSOFT CORP

Inventor： ILAC CRISTIAN , MEDVINSKY GENNADY , HAGIU COSTIN , PARSONS JOHN E , FATHALLA MOHAMED EMAD EL DIN , LEACH PAUL J , KAMEL TARK BUHAA E-DIN MAHMOUD

IPC: G06F15/00 , H04L9/32

CPC classification number: H04L63/0815 , H04L9/3273 , H04L63/20 , H04L2209/80

4.

发明专利
未知

公开(公告)号：NO20084500L

公开(公告)日：2008-11-26

申请号：NO20084500

申请日：2008-10-27

Applicant: MICROSOFT CORP

Inventor： ILAC CRISTIAN , MEDVINSKY GENNADY , HAGIU COSTIN , PARSONS JOHN E , FATHALLA MOHAMED EMAD EL DIN , LEACH PAUL J , KAMEL TARK BUHAA E-DIN MAHMOUD

IPC: G06F15/00 , H04L9/32

Abstract: A credential security support provider (Cred SSP) is provided that enables any application to securely delegate a user's credentials from the client, via client side Security Support Provider (SSP) software, to a target server, via server side SSP software in a networked computing environment. The Cred SSP of the invention provides a secure solution that is based in part upon a set of policies, including a default policy that is secure against a broad range of attacks, which are used to control and restrict the delegation of user credentials from a client to a server. The policies can be for any type of user credentials and the different policies are designed to mitigate a broad range of attacks so that appropriate delegation can occur for given delegation circumstances, network conditions, trust levels, etc. Additionally, only a trusted subsystem, e.g., a trusted subsystem of the Local Security Authority (LSA), has access to the clear text credentials such that neither the calling application of the Cred SSP APIs on the server side nor the calling application of the Cred SSP APIs on the client side have access to clear text credentials.

5.

发明专利
POLICY DRIVEN, CREDENTIAL DELEGATION FOR SINGLE SIGN ON AND SECURE ACCESS TO NETWORK RESOURCES 未知

公开(公告)号：CA2654381A1

公开(公告)日：2007-12-06

申请号：CA2654381

申请日：2007-05-25

Applicant: MICROSOFT CORP

Inventor： PARSONS JOHN E , KAMEL TAREK BUHAA EL-DIN MAHMOUD , ILAC CRISTIAN , FATHALLA MOHAMED EMAD EL DIN , MEDVINSKY GENNADY , LEACH PAUL J , HAGIU COSTIN

IPC: G06F15/00 , H04L9/32

Abstract: A credential security support provider (Cred SSP) enables any application to securely delegate a user's credentials from the client, via client side Security Support Provider (SSP) software, to a target server, via server sid e SSP software. The Cred SSP provides a secure solution based in part upon a set of policies. The policies can be for any type of user credentials and t he different policies are designed to mitigate a broad range of attacks so t hat appropriate delegation can occur for given delegation circumstances, net work conditions, trust levels, etc. Additionally, only a trusted subsystem, e.g., a trusted subsystem of the Local Security Authority (LSA), has access to the clear text credentials such that neither the calling application of t he Cred SSP APIs on the server side nor the calling application of the Cred SSP APIs on the client side have access to clear text credentials.

6.

发明专利
Policy driven, credential delegation for single sign on and secure access to network resources 未知

公开(公告)号：AU2007267836A1

公开(公告)日：2007-12-06

申请号：AU2007267836

申请日：2007-05-25

Applicant: MICROSOFT CORP

Inventor： LEACH PAUL J , FATHALLA MOHAMED EMAD EL DIN , ILAC CRISTIAN , PARSONS JOHN E , KAMEL TAREK BUHAA EL-DIN MAHMOUD , HAGIU COSTIN , MEDVINSKY GENNADY

IPC: G06F15/00 , H04L9/32

Abstract: A credential security support provider (Cred SSP) is provided that enables any application to securely delegate a user's credentials from the client, via client side Security Support Provider (SSP) software, to a target server, via server side SSP software in a networked computing environment. The Cred SSP of the invention provides a secure solution that is based in part upon a set of policies, including a default policy that is secure against a broad range of attacks, which are used to control and restrict the delegation of user credentials from a client to a server. The policies can be for any type of user credentials and the different policies are designed to mitigate a broad range of attacks so that appropriate delegation can occur for given delegation circumstances, network conditions, trust levels, etc. Additionally, only a trusted subsystem, e.g., a trusted subsystem of the Local Security Authority (LSA), has access to the clear text credentials such that neither the calling application of the Cred SSP APIs on the server side nor the calling application of the Cred SSP APIs on the client side have access to clear text credentials.

7.

发明专利
DELEGACION DE CREDENCIAL, CONDUCIDA POR POLITICA PARA SIGNO INDIVIDUAL Y ACCESO SEGURO PARA RECURSOS DE RED. 未知

公开(公告)号：MX2008014855A

公开(公告)日：2008-12-01

申请号：MX2008014855

申请日：2007-05-25

Applicant: MICROSOFT CORP

Inventor： LEACH PAUL J , ILAC CRISTIAN , PARSONS JOHN E , MEDVINSKY GENNADY , HAGIU COSTIN , FATHALLA MOHAMED EMAD EL DIN , KAMEL TAREK BUHAA EL-DIN MAHMOUD

IPC: G06F15/00 , H04L9/32

Abstract: Un proveedor de soporte de seguridad de credencial (SSP de Credencial) permite a cualquier aplicación delegar de forma segura credenciales de usuario del cliente, a través del software de Proveedor de Soporte de Seguridad (SSP) de lado de cliente, a un servidor objetivo, a través de software SSP de lado de servidor. El SSP de Credencial proporciona una solución segura basándose en parte en un grupo de políticas. Las políticas pueden ser para cualquier tipo de credenciales de usuario y diferentes políticas se designan para mitigar una amplia escala de ataques para que la delegación apropiada pueda ocurrir para circunstancias de delegación dadas, condiciones de red, niveles de confianza, etc. Adicionalmente, sólo un subsistema confiado, por ejemplo, un subsistema confiado de la Autoridad de Seguridad local (LSA), tiene acceso a las credenciales de texto limpias de manera que ni la aplicación que llama de la APIS de SSP de Credencial en el lado de servidor ni la aplicación que llama de las APIs de SSP de Credencial en el lado de cliente tengan acceso a las credenciales de texto limpias.

8.

发明公开
POLICY DRIVEN, CREDENTIAL DELEGATION FOR SINGLE SIGN ON AND SECURE ACCESS TO NETWORK RESOURCES 有权
Title translation: 配置参数控制资格出具单独的应用程序和安全的访问网络资源

公开(公告)号：EP2021938A4

公开(公告)日：2012-04-04

申请号：EP07809190

申请日：2007-05-25

Applicant: MICROSOFT CORP

Inventor： MEDVINSKY GENNADY , ILAC CRISTIAN , HAGIU COSTIN , PARSONS JOHN E , FATHALLA MOHAMED EMAD EL DIN , LEACH PAUL J , KAMEL TAREK BUHAA EL-DIN MAHMOUD

IPC: H04L9/32 , H04L29/06

CPC classification number: H04L63/0815 , H04L9/3273 , H04L63/20 , H04L2209/80

Search Results

Country/Region

Patent validity

Application date

Publication (announcement) day

applicant

The country/region where the applicant is located

Inventor

IPC

IPC Department

IPC class

IPC subclass

IPC group

IPC team

Appearance classification