-
公开(公告)号:US08327419B1
公开(公告)日:2012-12-04
申请号:US12194407
申请日:2008-08-19
Applicant: Dmitri Korablev , Gregory Danforth
Inventor: Dmitri Korablev , Gregory Danforth
IPC: G06F7/04
CPC classification number: G06F21/6218 , G06F21/604 , H04L63/08 , H04L63/105
Abstract: Some embodiments provide a system and method that secures access to data objects of an enterprise that includes multiple data objects and multiple user applications that access data attributes of the data objects. In some embodiments, access is provided by secure resources that (1) filter a set of the data objects using a user attribute to identify a subset of data attributes of the data objects and (2) performing a query by identifying the secure resources accessible by the user based on the particular user attribute and retrieving data attributes from the secure resources according to the query.
Abstract translation: 一些实施例提供一种确保对包括多个数据对象的企业的数据对象的访问以及访问数据对象的数据属性的多个用户应用程序的系统和方法。 在一些实施例中,访问由安全资源提供,(1)使用用户属性来过滤一组数据对象,以识别数据对象的数据属性的子集,以及(2)通过识别可访问的安全资源执行查询 基于特定用户属性的用户和根据查询从安全资源检索数据属性。
-
公开(公告)号:US08166071B1
公开(公告)日:2012-04-24
申请号:US12194405
申请日:2008-08-19
Applicant: Dmitri Korablev , Gregory Danforth
Inventor: Dmitri Korablev , Gregory Danforth
IPC: G06F7/00
CPC classification number: G06F21/6218 , G06F21/604
Abstract: Some embodiments provide a system and method that secures access to data objects of an enterprise that includes multiple data objects and multiple user applications that access data attributes of the data objects. In some embodiments, secure access is provided via a secure resource that secures access to data attributes of at least two objects by defining access control permissions for the secure resource and applying the defined access control permissions to the data attributes of the secure resource.
Abstract translation: 一些实施例提供一种确保对包括多个数据对象的企业的数据对象的访问以及访问数据对象的数据属性的多个用户应用程序的系统和方法。 在一些实施例中,通过安全资源提供安全访问,安全资源通过为安全资源定义访问控制权限并将所定义的访问控制权限应用于安全资源的数据属性来确保对至少两个对象的数据属性的访问。
-
公开(公告)号:US20090327347A1
公开(公告)日:2009-12-31
申请号:US12404617
申请日:2009-03-16
Applicant: Khanh Hoang , Gregory Danforth
Inventor: Khanh Hoang , Gregory Danforth
IPC: G06F17/30
CPC classification number: G06F17/30014 , G06F2216/03 , G06Q30/00 , Y10S707/99942 , Y10S707/99943 , Y10S707/99944 , Y10S707/99945
Abstract: Some embodiments provide a system for processing relationship data that expresses relationship between various entities. In some embodiments, the entities are entities associated directly with an enterprise. The entities in some embodiments described below also include entities associated indirectly with the enterprise through other entities. However, one of ordinary skill will realize that some embodiments might only track relationships between entities directly associated with an enterprise. In some embodiments, the system consolidates disparate relationship data sets that relate to the same set of entities. For instance, in some embodiments, the system includes several data storages that store relationship data. For at least two entities, at least two different data storages store two different relationship data sets that differently express the relationship between the two entities. The system includes a hierarchy manager that receives the two different relationship data sets and consolidates the two different relationship data sets into one relationship data set that best expresses the relationship between the two entities.
Abstract translation: 一些实施例提供用于处理表示各种实体之间的关系的关系数据的系统。 在一些实施例中,实体是与企业直接相关联的实体。 下面描述的一些实施例中的实体还包括通过其他实体间接与企业相关联的实体。 然而,普通技术人员将意识到,一些实施例可能仅跟踪与企业直接相关联的实体之间的关系。 在一些实施例中,系统整合与同一组实体相关的不同关系数据集。 例如,在一些实施例中,系统包括存储关系数据的多个数据存储器。 对于至少两个实体,至少两个不同的数据存储器存储两个不同的关系数据集,其不同地表达两个实体之间的关系。 该系统包括层次管理器,其接收两个不同的关系数据集,并将两个不同的关系数据集整合成最能表达两个实体之间的关系的一个关系数据集。
-
公开(公告)号:US08392460B2
公开(公告)日:2013-03-05
申请号:US13287930
申请日:2011-11-02
Applicant: Khanh Hoang , Gregory Danforth
Inventor: Khanh Hoang , Gregory Danforth
IPC: G06F17/30
CPC classification number: G06F17/30014 , G06F2216/03 , G06Q30/00 , Y10S707/99942 , Y10S707/99943 , Y10S707/99944 , Y10S707/99945
Abstract: Some embodiments provide a system for processing relationship data that expresses relationship between various entities. In some embodiments, the entities are entities associated directly with an enterprise. The entities in some embodiments described below also include entities associated indirectly with the enterprise through other entities. In some embodiments, the system consolidates disparate relationship data sets that relate to the same set of entities. For instance, in some embodiments, the system includes several data storages that store relationship data. For at least two entities, at least two different data storages store two different relationship data sets that differently express the relationship between the two entities. The system includes a hierarchy manager that receives the two different relationship data sets and consolidates the two different relationship data sets into one relationship data set that best expresses the relationship between the two entities.
Abstract translation: 一些实施例提供用于处理表示各种实体之间的关系的关系数据的系统。 在一些实施例中,实体是与企业直接相关联的实体。 下面描述的一些实施例中的实体还包括通过其他实体间接与企业相关联的实体。 在一些实施例中,系统整合与同一组实体相关的不同关系数据集。 例如,在一些实施例中,系统包括存储关系数据的多个数据存储器。 对于至少两个实体,至少两个不同的数据存储器存储两个不同的关系数据集,其不同地表达两个实体之间的关系。 该系统包括层次管理器,其接收两个不同的关系数据集,并将两个不同的关系数据集整合成最能表达两个实体之间的关系的一个关系数据集。
-
公开(公告)号:US20120110022A1
公开(公告)日:2012-05-03
申请号:US13287930
申请日:2011-11-02
Applicant: Khanh Hoang , Gregory Danforth
Inventor: Khanh Hoang , Gregory Danforth
IPC: G06F17/30
CPC classification number: G06F17/30014 , G06F2216/03 , G06Q30/00 , Y10S707/99942 , Y10S707/99943 , Y10S707/99944 , Y10S707/99945
Abstract: Some embodiments provide a system for processing relationship data that expresses relationship between various entities. In some embodiments, the entities are entities associated directly with an enterprise. The entities in some embodiments described below also include entities associated indirectly with the enterprise through other entities. In some embodiments, the system consolidates disparate relationship data sets that relate to the same set of entities. For instance, in some embodiments, the system includes several data storages that store relationship data. For at least two entities, at least two different data storages store two different relationship data sets that differently express the relationship between the two entities. The system includes a hierarchy manager that receives the two different relationship data sets and consolidates the two different relationship data sets into one relationship data set that best expresses the relationship between the two entities.
Abstract translation: 一些实施例提供用于处理表示各种实体之间的关系的关系数据的系统。 在一些实施例中,实体是与企业直接相关联的实体。 下面描述的一些实施例中的实体还包括通过其他实体间接与企业相关联的实体。 在一些实施例中,系统整合与同一组实体相关的不同关系数据集。 例如,在一些实施例中,系统包括存储关系数据的多个数据存储器。 对于至少两个实体,至少两个不同的数据存储器存储两个不同的关系数据集,其不同地表达两个实体之间的关系。 系统包括层次管理器,其接收两个不同的关系数据集,并将两个不同的关系数据集整合成最能表达两个实体之间关系的一个关系数据集。
-
Patent Agency Ranking
6.发明申请公开(公告)号:US20120324592A1
公开(公告)日:2012-12-20
申请号:US13526480
申请日:2012-06-18
Applicant: Dmitri Korablev , Gregory Danforth
Inventor: Dmitri Korablev , Gregory Danforth
IPC: G06F21/00
CPC classification number: G06F21/6218 , G06F21/604 , H04L63/08 , H04L63/105
Abstract: Some embodiments provide a method and system for flexibly managing access to enterprise resources. To flexibly manage security, some embodiments secure the enterprise resources and provide a security access manager (SAM) to control access to the secured resources. The SAM controls access to the enterprise and the secure resources through one or more configurable management modules of the SAM. Each management module of the SAM is configurable to facilitate control over different security services of an enterprise security hierarchy (e.g., authentication, authorization, role mapping, etc.). Specifically, each management module is configurable to leverage security services that are provided by different security systems. In some embodiments, the management module is configured to interface with one or more adapters in order to establish the interfaces, logic, and protocols necessary to leverage the security functionality of such security systems.
Abstract translation: 一些实施例提供用于灵活地管理对企业资源的访问的方法和系统。 为了灵活地管理安全性,一些实施例保护企业资源并提供安全访问管理器(SAM)来控制对安全资源的访问。 SAM通过SAM的一个或多个可配置管理模块控制对企业的访问和安全资源。 SAM的每个管理模块可配置为便于对企业安全层次结构(例如,认证,授权,角色映射等)的不同安全服务的控制。 特别地,每个管理模块可配置为利用由不同安全系统提供的安全服务。 在一些实施例中,管理模块被配置为与一个或多个适配器接口,以便建立利用这种安全系统的安全功能所必需的接口,逻辑和协议。
-
公开(公告)号:US20120233689A1
公开(公告)日:2012-09-13
申请号:US13419406
申请日:2012-03-13
Applicant: Dmitri Korablev , Gregory Danforth
Inventor: Dmitri Korablev , Gregory Danforth
IPC: G06F21/00
CPC classification number: G06F21/6218 , G06F21/604
Abstract: Some embodiments provide a system and method that secures access to data objects of an enterprise that includes multiple data objects and multiple user applications that access data attributes of the data objects. In some embodiments, secure access is provided via a secure resource that secures access to data attributes of at least two objects by defining access control permissions for the secure resource and applying the defined access control permissions to the data attributes of the secure resource.
Abstract translation: 一些实施例提供一种确保对包括多个数据对象的企业的数据对象的访问以及访问数据对象的数据属性的多个用户应用程序的系统和方法。 在一些实施例中,通过安全资源提供安全访问,安全资源通过为安全资源定义访问控制权限并将所定义的访问控制权限应用于安全资源的数据属性来确保对至少两个对象的数据属性的访问。
-
公开(公告)号:US08065266B2
公开(公告)日:2011-11-22
申请号:US12404617
申请日:2009-03-16
Applicant: Khanh Hoang , Gregory Danforth
Inventor: Khanh Hoang , Gregory Danforth
IPC: G06F17/00
CPC classification number: G06F17/30014 , G06F2216/03 , G06Q30/00 , Y10S707/99942 , Y10S707/99943 , Y10S707/99944 , Y10S707/99945
Abstract: Some embodiments provide a system for processing relationship data that expresses relationship between various entities. In some embodiments, the entities are entities associated directly with an enterprise. The entities in some embodiments described below also include entities associated indirectly with the enterprise through other entities. However, one of ordinary skill will realize that some embodiments might only track relationships between entities directly associated with an enterprise. In some embodiments, the system consolidates disparate relationship data sets that relate to the same set of entities. For instance, in some embodiments, the system includes several data storages that store relationship data. For at least two entities, at least two different data storages store two different relationship data sets that differently express the relationship between the two entities. The system includes a hierarchy manager that receives the two different relationship data sets and consolidates the two different relationship data sets into one relationship data set that best expresses the relationship between the two entities.
Abstract translation: 一些实施例提供用于处理表示各种实体之间的关系的关系数据的系统。 在一些实施例中,实体是与企业直接相关联的实体。 下面描述的一些实施例中的实体还包括通过其他实体间接与企业相关联的实体。 然而,普通技术人员将意识到,一些实施例可能仅跟踪与企业直接相关联的实体之间的关系。 在一些实施例中,系统整合与同一组实体相关的不同关系数据集。 例如,在一些实施例中,系统包括存储关系数据的多个数据存储器。 对于至少两个实体,至少两个不同的数据存储器存储两个不同的关系数据集,其不同地表达两个实体之间的关系。 该系统包括层次管理器,其接收两个不同的关系数据集,并将两个不同的关系数据集整合成最能表达两个实体之间的关系的一个关系数据集。
-
公开(公告)号:US08433717B2
公开(公告)日:2013-04-30
申请号:US13419406
申请日:2012-03-13
Applicant: Dmitri Korablev , Gregory Danforth
Inventor: Dmitri Korablev , Gregory Danforth
IPC: G06F7/00
CPC classification number: G06F21/6218 , G06F21/604
Abstract: Some embodiments provide a system and method that secures access to data objects of an enterprise that includes multiple data objects and multiple user applications that access data attributes of the data objects. In some embodiments, secure access is provided via a secure resource that secures access to data attributes of at least two objects by defining access control permissions for the secure resource and applying the defined access control permissions to the data attributes of the secure resource.
Abstract translation: 一些实施例提供一种确保对包括多个数据对象的企业的数据对象的访问以及访问数据对象的数据属性的多个用户应用程序的系统和方法。 在一些实施例中,通过安全资源提供安全访问,安全资源通过为安全资源定义访问控制权限并将所定义的访问控制权限应用于安全资源的数据属性来确保对至少两个对象的数据属性的访问。
-
10.发明授权公开(公告)号:US08458230B2
公开(公告)日:2013-06-04
申请号:US13526480
申请日:2012-06-18
Applicant: Dmitri Korablev , Gregory Danforth
Inventor: Dmitri Korablev , Gregory Danforth
IPC: G06F7/00
CPC classification number: G06F21/6218 , G06F21/604 , H04L63/08 , H04L63/105
Abstract: Some embodiments provide a method and system for flexibly managing access to enterprise resources. To flexibly manage security, some embodiments secure the enterprise resources and provide a security access manager (SAM) to control access to the secured resources. The SAM controls access to the enterprise and the secure resources through one or more configurable management modules of the SAM. Each management module of the SAM is configurable to facilitate control over different security services of an enterprise security hierarchy (e.g., authentication, authorization, role mapping, etc.). Specifically, each management module is configurable to leverage security services that are provided by different security systems. In some embodiments, the management module is configured to interface with one or more adapters in order to establish the interfaces, logic, and protocols necessary to leverage the security functionality of such security systems.
Abstract translation: 一些实施例提供用于灵活地管理对企业资源的访问的方法和系统。 为了灵活地管理安全性,一些实施例保护企业资源并提供安全访问管理器(SAM)来控制对安全资源的访问。 SAM通过SAM的一个或多个可配置管理模块控制对企业的访问和安全资源。 SAM的每个管理模块可配置为便于对企业安全层次结构(例如,认证,授权,角色映射等)的不同安全服务的控制。 特别地,每个管理模块可配置为利用由不同安全系统提供的安全服务。 在一些实施例中,管理模块被配置为与一个或多个适配器接口,以便建立利用这种安全系统的安全功能所必需的接口,逻辑和协议。
-
-
-
-
-
-
-
-
-
Search Results
15
records
(took 0.016 seconds)
