公开(公告)号：US20080168530A1

公开(公告)日：2008-07-10

申请号：US11620219

申请日：2007-01-05

Applicant: David G. Kuehr-McLaren ,  Kwabena Mireku ,  Govindaraj Sampathkumar ,  Janette S. Wong

Inventor： David G. Kuehr-McLaren ,  Kwabena Mireku ,  Govindaraj Sampathkumar ,  Janette S. Wong

IPC: H04L9/32 ,  G06F21/00

CPC classification number: H04L63/105 ,  G06F21/6218 ,  G06F21/6236

Abstract: The Custom Access Controller adds a custom security hierarchy to the organizational data in the View Processor of WEBSPHERE Virtual Member Manager. Whenever an entity or application attempts to access a resources the access control engine starts the View Processor to identify the organizational data and assigned security policy for the resource. The assigned security policy is applied to a delegated administration path which is part of the delegated administration hierarchy but includes the appropriate path and security policy for the resource. The delegated administration path is sent to an access control engine that grants or denies access to the resource. A View Processor Interface allows network administrators to create and modify custom security hierarchies.

Abstract translation: 自定义访问控制器将自定义安全层次结构添加到WEBSPHERE虚拟会员管理器的查看处理器中的组织数据。 无论何时一个实体或应用程序尝试访问资源，访问控制引擎启动查看处理器以识别资源的组织数据和分配的安全策略。 分配的安全策略应用于作为委派管理层次结构的一部分的委派管理路径，但包括资源的适当路径和安全策略。 委派的管理路径被发送到访问控制引擎，该引擎允许或拒绝对资源的访问。 视图处理器接口允许网络管理员创建和修改自定义安全层次结构。

公开(公告)号：US09762525B2

公开(公告)日：2017-09-12

申请号：US12970411

申请日：2010-12-16

Applicant: Al Chakra ,  Li Chen ,  Daniel P. Julin ,  Henri Fouotsop Meli ,  Govindaraj Sampathkumar

Inventor： Al Chakra ,  Li Chen ,  Daniel P. Julin ,  Henri Fouotsop Meli ,  Govindaraj Sampathkumar

IPC: G06F15/16 ,  H04L12/58

CPC classification number: H04L51/28 ,  H04L51/02 ,  H04L51/12

Abstract: Systems and methods of confirming an addressee of an email message include receiving an email message addressed to one or more forwarding addresses. At least one email address associated with each of the one or more forwarding addresses is obtained. A potential discrepancy in the email message is detected in response to the at least one obtained email address. Before sending the email message, an alert is issued to a sender of the email message. The alert provides a recommendation regarding whether to continue with sending the email message and identifies content associated with the email message that led to detecting the potential discrepancy.

公开(公告)号：US08533168B2

公开(公告)日：2013-09-10

申请号：US11780956

申请日：2007-07-20

Applicant: David G. Kuehr-McLaren ,  Pratik Gupta ,  Govindaraj Sampathkumar ,  Vincent C. Williams ,  Sharon L. Cutcher ,  Sumit Taank ,  Brian A. Stube ,  Hari Shankar

Inventor： David G. Kuehr-McLaren ,  Pratik Gupta ,  Govindaraj Sampathkumar ,  Vincent C. Williams ,  Sharon L. Cutcher ,  Sumit Taank ,  Brian A. Stube ,  Hari Shankar

IPC: G06F17/00 ,  G06F17/30 ,  G06Q10/00

CPC classification number: G06F17/00 ,  G06F17/30 ,  G06Q10/00 ,  G06Q10/06 ,  G06Q10/10 ,  Y10S707/99939

Abstract: Policies defining the entitlements to be assigned to a new identity joining a role are automatically generated. An automatic policy assigns a new identity the entitlements commonly owned by a predetermined number of identities in the role, which may be all of the role identities. A conditional policy recommends that a new identity be assigned the non-commonly-owned entitlements associated with the role identity whose non-entitlement attributes most closely match the non-entitlement attributes of the new identity. This may be automatically determined by iterating through a vector that maps the non-commonly-owned entitlements with the non-entitlement attributes of each role identity, comparing the non-entitlement attributes of the new identity to find the closest match. The non-commonly-owned entitlements of that identity are then recommended to be assigned to the new identity, upon approval.

Abstract translation: 将自动生成定义要分配给加入角色的新身份的权利的策略。 自动策略将新身份分配给角色中预定数量的身份共同拥有的权利，这些身份可能是所有角色身份。 条件政策建议将新身份分配给与非授权属性与新身份的非授权属性最接近的角色身份相关联的非共同所有权利。 这可以通过迭代通过将非共同所有权利与每个角色身份的非授权属性进行映射的向量来自动确定，比较新身份的非授权属性以找到最接近的匹配。 然后，建议将该身份的非共同所有权利分配给新身份，并经批准。

公开(公告)号：US20110071811A1

公开(公告)日：2011-03-24

申请号：US12562496

申请日：2009-09-18

Applicant: David Gerard Kuehr-McLaren ,  Govindaraj Sampathkumar

Inventor： David Gerard Kuehr-McLaren ,  Govindaraj Sampathkumar

IPC: G06G7/62 ,  G06F21/00

CPC classification number: G06Q10/04

Abstract: Performance impacting operations (e.g., maintenance operations) performed on a system can, depending on a current state of the system, heavily impact the performance of the system, thus affecting a customer's experience with the system. Functionality can be implemented to control execution of the performance impacting operations based on simulating the impact of executing the operation. Depending on the current state of the system, execution of the maintenance operations can be allowed, deferred, and even blocked. This can ensure that the performance of the system is not compromised.

Abstract translation: 根据系统的当前状态，对系统执行的性能影响操作（例如，维护操作）可能严重影响系统的性能，从而影响客户对系统的体验。 可以通过模拟执行操作的影响来实现功能来控制对性能影响操作的执行。 根据系统的当前状态，可以允许执行维护操作，延迟，甚至阻止。 这可以确保系统的性能不受影响。

公开(公告)号：US20080016104A1

公开(公告)日：2008-01-17

申请号：US11780956

申请日：2007-07-20

Applicant: David Kuehr-McLaren ,  Pratik Gupta ,  Govindaraj Sampathkumar ,  Vincent Williams ,  Sharon Cutcher ,  Sumit Taank ,  Brian Stube ,  Hari Shankar

Inventor： David Kuehr-McLaren ,  Pratik Gupta ,  Govindaraj Sampathkumar ,  Vincent Williams ,  Sharon Cutcher ,  Sumit Taank ,  Brian Stube ,  Hari Shankar

IPC: G06F17/00

CPC classification number: G06F17/00 ,  G06F17/30 ,  G06Q10/00 ,  G06Q10/06 ,  G06Q10/10 ,  Y10S707/99939

Abstract: Policies defining the entitlements to be assigned to a new identity joining a role are automatically generated. An automatic policy assigns a new identity the entitlements commonly owned by a predetermined number of identities in the role, which may be all of the role identities. A conditional policy recommends that a new identity be assigned the non-commonly-owned entitlements associated with the role identity whose non-entitlement attributes most closely match the non-entitlement attributes of the new identity. This may be automatically determined by iterating through a vector that maps the non-commonly-owned entitlements with the non-entitlement attributes of each role identity, comparing the non-entitlement attributes of the new identity to find the closest match. The non-commonly-owned entitlements of that identity are then recommended to be assigned to the new identity, upon approval.

Abstract translation: 将自动生成定义要分配给加入角色的新身份的权利的策略。 自动策略将新身份分配给角色中预定数量的身份共同拥有的权利，这些身份可能是所有角色身份。 条件政策建议将新身份分配给与非授权属性与新身份的非授权属性最接近的角色身份相关联的非共同所有权利。 这可以通过迭代通过将非共同所有权利与每个角色身份的非授权属性进行映射的向量来自动确定，比较新身份的非授权属性以找到最接近的匹配。 然后，建议将该身份的非共同所有权利分配给新身份，并经批准。

公开(公告)号：US09141689B2

公开(公告)日：2015-09-22

申请号：US12137346

申请日：2008-06-11

Applicant: Li Chen ,  Yongcheng Li ,  Govindaraj Sampathkumar ,  Ryan Urquhart

Inventor： Li Chen ,  Yongcheng Li ,  Govindaraj Sampathkumar ,  Ryan Urquhart

IPC: G06F7/00 ,  G06F17/30 ,  G06F17/27

CPC classification number: G06F17/2765 ,  G06F17/274 ,  G06F17/275 ,  G06F17/30684 ,  H04L51/046 ,  H04L67/306

Abstract: A system to apply persona styles to written communications. The system includes a communication analyzer and a modification engine coupled to the communication analyzer. The communication analyzer identifies an element of original content of a written communication and determines that the element of the original content of the written communication is incompatible with a selected persona style. The selected persona style defines a communication style. The modification engine modifies the original content of the written communication to replace the element of the original content with a substitute element that is compatible with the selected persona style.

公开(公告)号：US09124602B2

公开(公告)日：2015-09-01

申请号：US11620219

申请日：2007-01-05

Applicant: David G. Kuehr-McLaren ,  Kwabena Mireku ,  Govindaraj Sampathkumar ,  Janette S. Wong

Inventor： David G. Kuehr-McLaren ,  Kwabena Mireku ,  Govindaraj Sampathkumar ,  Janette S. Wong

IPC: G06F7/04 ,  H04L29/06 ,  G06F21/62

CPC classification number: H04L63/105 ,  G06F21/6218 ,  G06F21/6236

Abstract: The Custom Access Controller adds a custom security hierarchy to the organizational data in the View Processor of WEBSPHERE Virtual Member Manager. Whenever an entity or application attempts to access a resources the access control engine starts the View Processor to identify the organizational data and assigned security policy for the resource. The assigned security policy is applied to a delegated administration path which is part of the delegated administration hierarchy but includes the appropriate path and security policy for the resource. The delegated administration path is sent to an access control engine that grants or denies access to the resource. A View Processor Interface allows network administrators to create and modify custom security hierarchies.

Abstract translation: 自定义访问控制器将自定义安全层次结构添加到WEBSPHERE虚拟会员管理器的查看处理器中的组织数据。 无论何时一个实体或应用程序尝试访问资源，访问控制引擎启动查看处理器来识别资源的组织数据和分配的安全策略。 分配的安全策略应用于作为委派管理层次结构的一部分的委派管理路径，但包括资源的适当路径和安全策略。 委派的管理路径被发送到访问控制引擎，该引擎允许或拒绝对资源的访问。 视图处理器接口允许网络管理员创建和修改自定义安全层次结构。

公开(公告)号：US07870101B2

公开(公告)日：2011-01-11

申请号：US11323749

申请日：2005-12-30

Applicant: Mark William Hubbard ,  David Gerard Kuehr-McLaren ,  Govindaraj Sampathkumar ,  Janette Siu Jong Wong

Inventor： Mark William Hubbard ,  David Gerard Kuehr-McLaren ,  Govindaraj Sampathkumar ,  Janette Siu Jong Wong

IPC: G06F7/00

CPC classification number: G06F17/30557

Abstract: An abstraction layer associates a party-focused object, a security-focused object, or both, with an abstraction object. The party-focused or security focused object has one or more properties. The properties are presented in the abstraction object defined by the mapping schema. The abstraction layer converts a set of repository objects to at least one abstraction object.

Abstract translation: 一个抽象层将一个聚焦对象，一个以安全为中心的对象或两者与一个抽象对象相关联。 以聚会为重点或以安全为重点的对象具有一个或多个属性。 属性在映射模式定义的抽象对象中呈现。 抽象层将一组存储库对象转换为至少一个抽象对象。

公开(公告)号：US20090228486A1

公开(公告)日：2009-09-10

申请号：US12042945

申请日：2008-03-05

Applicant: David Gerard Kuehr-McLaren ,  Ranjan Kumar ,  Kwabena Mireku ,  Govindaraj Sampathkumar

Inventor： David Gerard Kuehr-McLaren ,  Ranjan Kumar ,  Kwabena Mireku ,  Govindaraj Sampathkumar

IPC: G06F17/30

CPC classification number: H04L63/101 ,  G06F17/3089 ,  G06Q10/10

Abstract: A method, program product and apparatus for controlling access to profile information, multi-media resources or social network functions of a first user by a second user not listed on a friend or group listing of the first user. An application retrieves a threshold criteria for access control and social network statistics in response to an attempted access by an entity without an appropriate privilege. The application compares the statistics to the threshold. Then, if the statistics meet the threshold criteria, the application allows access.

Abstract translation: 一种方法，程序产品和装置，用于通过未列在第一用户的朋友或组列表上的第二用户来控制对简档信息，多媒体资源或社交网络功能的访问。 应用程序检索用于访问控制和社交网络统计信息的阈值标准，以响应实体在没有适当权限的情况下尝试访问。 应用程序将统计信息与阈值进行比较。 然后，如果统计信息满足阈值条件，则应用程序允许访问。

公开(公告)号：US20090129591A1

公开(公告)日：2009-05-21

申请号：US11943662

申请日：2007-11-21

Applicant: Gregory A. Hayes ,  David G. Kuehr-McLaren ,  Ranjan Kumar ,  Kwabena Mireku ,  Govindaraj Sampathkumar

Inventor： Gregory A. Hayes ,  David G. Kuehr-McLaren ,  Ranjan Kumar ,  Kwabena Mireku ,  Govindaraj Sampathkumar

IPC: H04N1/44

CPC classification number: H04N1/4486 ,  G06F21/608 ,  H04L9/32 ,  H04L2209/60

Abstract: A technique for securing selected document content includes receiving, at a printer, an unsecured electronic document. Selected content of the electronic document is then encrypted, with an encryption key, at the printer. A paper document whose content includes the encrypted selected content of the electronic document is then printed. The encrypted selected content of the paper document is unintelligible prior to decryption with a decryption key.

Abstract translation: 用于保护所选择的文档内容的技术包括在打印机处接收不安全的电子文档。 电子文档的所选内容然后使用加密密钥在打印机处加密。 然后打印其内容包括电子文档的加密的所选内容的纸质文档。 在使用解密密钥进行解密之前，纸质文档的经加密的选定内容是无法理解的。