CN102685089A - 用于企业应用的可信设备声明 - Google Patents
用于企业应用的可信设备声明 Download PDFInfo
- Publication number
- CN102685089A CN102685089A CN2011103079721A CN201110307972A CN102685089A CN 102685089 A CN102685089 A CN 102685089A CN 2011103079721 A CN2011103079721 A CN 2011103079721A CN 201110307972 A CN201110307972 A CN 201110307972A CN 102685089 A CN102685089 A CN 102685089A
- Authority
- CN
- China
- Prior art keywords
- client devices
- device asserts
- information
- certificate
- computer
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/30—Authentication, i.e. establishing the identity or authorisation of security principals
- G06F21/31—User authentication
- G06F21/33—User authentication using certificates
- G06F21/335—User authentication using certificates for accessing specific resources, e.g. using Kerberos tickets
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/50—Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
- G06F21/51—Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems at application loading time, e.g. accepting, rejecting, starting or inhibiting executable software based on integrity or source reliability
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/50—Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
- G06F21/57—Certifying or maintaining trusted computer platforms, e.g. secure boots or power-downs, version controls, system software checks, secure updates or assessing vulnerabilities
- G06F21/575—Secure boot
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/3234—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving additional secure or trusted devices, e.g. TPM, smartcard, USB or software token
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L2209/00—Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
- H04L2209/12—Details relating to cryptographic hardware or logic circuitry
- H04L2209/127—Trusted platform modules [TPM]
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Theoretical Computer Science (AREA)
- Software Systems (AREA)
- Computer Hardware Design (AREA)
- General Engineering & Computer Science (AREA)
- General Physics & Mathematics (AREA)
- Physics & Mathematics (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Management, Administration, Business Operations System, And Electronic Commerce (AREA)
- Information Transfer Between Computers (AREA)
- Mobile Radio Communication Systems (AREA)
- Storage Device Security (AREA)
Abstract
Description
Claims (10)
Applications Claiming Priority (4)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
US38845510P | 2010-09-30 | 2010-09-30 | |
US61/388,455 | 2010-09-30 | ||
US13/015,202 | 2011-01-27 | ||
US13/015,202 US8528069B2 (en) | 2010-09-30 | 2011-01-27 | Trustworthy device claims for enterprise applications |
Publications (2)
Publication Number | Publication Date |
---|---|
CN102685089A true CN102685089A (zh) | 2012-09-19 |
CN102685089B CN102685089B (zh) | 2016-01-27 |
Family
ID=45890973
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201110307972.1A Active CN102685089B (zh) | 2010-09-30 | 2011-09-29 | 用于企业应用的可信设备声明的方法和客户机设备 |
Country Status (3)
Country | Link |
---|---|
US (1) | US8528069B2 (zh) |
CN (1) | CN102685089B (zh) |
HK (1) | HK1174446A1 (zh) |
Cited By (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN106161462A (zh) * | 2016-08-29 | 2016-11-23 | 无锡华云数据技术服务有限公司 | 一种网络安全认证方法 |
WO2020259419A1 (zh) * | 2019-06-24 | 2020-12-30 | 华为技术有限公司 | 一种远程证明方式的协商方法及装置 |
Families Citing this family (24)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US8918856B2 (en) | 2010-06-24 | 2014-12-23 | Microsoft Corporation | Trusted intermediary for network layer claims-enabled access control |
US9087196B2 (en) * | 2010-12-24 | 2015-07-21 | Intel Corporation | Secure application attestation using dynamic measurement kernels |
KR20140043068A (ko) * | 2011-02-17 | 2014-04-08 | 타세라, 아이엔씨. | 애플리케이션 증명을 위한 시스템 및 방법 |
US9092616B2 (en) | 2012-05-01 | 2015-07-28 | Taasera, Inc. | Systems and methods for threat identification and remediation |
US9369458B2 (en) * | 2012-05-18 | 2016-06-14 | Red Hat, Inc. | Web-centric authentication protocol |
US9887983B2 (en) | 2013-10-29 | 2018-02-06 | Nok Nok Labs, Inc. | Apparatus and method for implementing composite authenticators |
US9396320B2 (en) | 2013-03-22 | 2016-07-19 | Nok Nok Labs, Inc. | System and method for non-intrusive, privacy-preserving authentication |
US10270748B2 (en) | 2013-03-22 | 2019-04-23 | Nok Nok Labs, Inc. | Advanced authentication techniques and applications |
US20170109751A1 (en) | 2014-05-02 | 2017-04-20 | Nok Nok Labs, Inc. | System and method for carrying strong authentication events over different channels |
CN104660583B (zh) * | 2014-12-29 | 2018-05-29 | 国家电网公司 | 一种基于Web加密服务的加密服务方法 |
US10803175B2 (en) * | 2015-03-06 | 2020-10-13 | Microsoft Technology Licensing, Llc | Device attestation through security hardened management agent |
US9614845B2 (en) | 2015-04-15 | 2017-04-04 | Early Warning Services, Llc | Anonymous authentication and remote wireless token access |
US9674200B2 (en) * | 2015-07-14 | 2017-06-06 | Mastercard International Incorporated | Identity federation and token translation module for use with a web application |
US10084782B2 (en) | 2015-09-21 | 2018-09-25 | Early Warning Services, Llc | Authenticator centralization and protection |
US9973500B2 (en) * | 2016-04-18 | 2018-05-15 | Bank Of America Corporation | Security architecture for authentication and audit |
US10769635B2 (en) | 2016-08-05 | 2020-09-08 | Nok Nok Labs, Inc. | Authentication techniques including speech and/or lip movement analysis |
US10637853B2 (en) | 2016-08-05 | 2020-04-28 | Nok Nok Labs, Inc. | Authentication techniques including speech and/or lip movement analysis |
US11868995B2 (en) | 2017-11-27 | 2024-01-09 | Nok Nok Labs, Inc. | Extending a secure key storage for transaction confirmation and cryptocurrency |
US11831409B2 (en) | 2018-01-12 | 2023-11-28 | Nok Nok Labs, Inc. | System and method for binding verifiable claims |
US11115224B1 (en) * | 2018-06-05 | 2021-09-07 | Amazon Technologies, Inc. | Access control system |
EP3534288A3 (en) * | 2019-02-13 | 2020-08-12 | Merck Patent GmbH | Methods and systems for token-based anchoring of a physical object in a distributed ledger environment |
US11792024B2 (en) | 2019-03-29 | 2023-10-17 | Nok Nok Labs, Inc. | System and method for efficient challenge-response authentication |
US11290471B2 (en) * | 2019-08-27 | 2022-03-29 | Hewlett Packard Enterprise Development Lp | Cross-attestation of electronic devices |
JP7322283B2 (ja) * | 2019-09-03 | 2023-08-07 | グーグル エルエルシー | 安全な識別情報検索のためのシステムおよび方法 |
Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN1521978A (zh) * | 2002-12-31 | 2004-08-18 | 国际商业机器公司 | 与异类联合体环境中验证声明相关的拥有证明操作用方法和系统 |
US7630974B2 (en) * | 2004-09-28 | 2009-12-08 | Oracle International Corporation | Multi-language support for enterprise identity and access management |
US20100001833A1 (en) * | 2008-07-07 | 2010-01-07 | Microsoft Corporation | Representing security identities using claims |
CN101785243A (zh) * | 2007-08-31 | 2010-07-21 | 微软公司 | 可传递受限安全令牌 |
Family Cites Families (23)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CA2025170A1 (en) * | 1989-09-28 | 1991-03-29 | John W. White | Portable and dynamic distributed applications architecture |
US5968176A (en) * | 1997-05-29 | 1999-10-19 | 3Com Corporation | Multilayer firewall system |
US6321338B1 (en) * | 1998-11-09 | 2001-11-20 | Sri International | Network surveillance |
US8266266B2 (en) * | 1998-12-08 | 2012-09-11 | Nomadix, Inc. | Systems and methods for providing dynamic network authorization, authentication and accounting |
US7114174B1 (en) * | 1999-10-01 | 2006-09-26 | Vidiator Enterprises Inc. | Computer program product for transforming streaming video data |
US20020138643A1 (en) * | 2000-10-19 | 2002-09-26 | Shin Kang G. | Method and system for controlling network traffic to a network computer |
US6873988B2 (en) * | 2001-07-06 | 2005-03-29 | Check Point Software Technologies, Inc. | System and methods providing anti-virus cooperative enforcement |
US7809807B2 (en) * | 2001-08-08 | 2010-10-05 | Canon Kabushiki Kaisha | Image forming system, image forming method, and server |
US20030065942A1 (en) * | 2001-09-28 | 2003-04-03 | Lineman David J. | Method and apparatus for actively managing security policies for users and computers in a network |
US7903549B2 (en) * | 2002-03-08 | 2011-03-08 | Secure Computing Corporation | Content-based policy compliance systems and methods |
US7987491B2 (en) * | 2002-05-10 | 2011-07-26 | Richard Reisman | Method and apparatus for browsing using alternative linkbases |
CN101241426B (zh) * | 2003-03-27 | 2011-03-23 | 佳能株式会社 | 控制装置 |
US7792920B2 (en) * | 2004-04-30 | 2010-09-07 | Vulcan Inc. | Network-accessible control of one or more media devices |
US7774824B2 (en) | 2004-06-09 | 2010-08-10 | Intel Corporation | Multifactor device authentication |
US8095983B2 (en) | 2005-03-15 | 2012-01-10 | Mu Dynamics, Inc. | Platform for analyzing the security of communication protocols and channels |
US20090164564A1 (en) * | 2005-07-01 | 2009-06-25 | Michael John Willis | System and methods for mobilizing web content |
FI20050770A (fi) | 2005-07-19 | 2007-01-20 | Ssh Comm Security Corp | Todentaminen turvakäytännön yhteydessä |
US20070150934A1 (en) | 2005-12-22 | 2007-06-28 | Nortel Networks Ltd. | Dynamic Network Identity and Policy management |
US8528058B2 (en) * | 2007-05-31 | 2013-09-03 | Microsoft Corporation | Native use of web service protocols and claims in server authentication |
CA2632793A1 (en) * | 2008-04-01 | 2009-10-01 | Allone Health Group, Inc. | Information server and mobile delivery system and method |
CN101635707A (zh) * | 2008-07-25 | 2010-01-27 | 国际商业机器公司 | 在Web环境中为用户提供身份管理的方法和装置 |
US8332647B2 (en) * | 2009-06-25 | 2012-12-11 | Raytheon Company | System and method for dynamic multi-attribute authentication |
US9384299B2 (en) * | 2009-09-22 | 2016-07-05 | Thwapr, Inc. | Receiving content for mobile media sharing |
-
2011
- 2011-01-27 US US13/015,202 patent/US8528069B2/en active Active
- 2011-09-29 CN CN201110307972.1A patent/CN102685089B/zh active Active
-
2013
- 2013-01-29 HK HK13101253.5A patent/HK1174446A1/zh unknown
Patent Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN1521978A (zh) * | 2002-12-31 | 2004-08-18 | 国际商业机器公司 | 与异类联合体环境中验证声明相关的拥有证明操作用方法和系统 |
US7630974B2 (en) * | 2004-09-28 | 2009-12-08 | Oracle International Corporation | Multi-language support for enterprise identity and access management |
CN101785243A (zh) * | 2007-08-31 | 2010-07-21 | 微软公司 | 可传递受限安全令牌 |
US20100001833A1 (en) * | 2008-07-07 | 2010-01-07 | Microsoft Corporation | Representing security identities using claims |
Cited By (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN106161462A (zh) * | 2016-08-29 | 2016-11-23 | 无锡华云数据技术服务有限公司 | 一种网络安全认证方法 |
CN106161462B (zh) * | 2016-08-29 | 2019-02-15 | 无锡华云数据技术服务有限公司 | 一种网络安全认证方法 |
WO2020259419A1 (zh) * | 2019-06-24 | 2020-12-30 | 华为技术有限公司 | 一种远程证明方式的协商方法及装置 |
Also Published As
Publication number | Publication date |
---|---|
CN102685089B (zh) | 2016-01-27 |
US8528069B2 (en) | 2013-09-03 |
US20120084850A1 (en) | 2012-04-05 |
HK1174446A1 (zh) | 2013-06-07 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN102685089A (zh) | 用于企业应用的可信设备声明 | |
US8918856B2 (en) | Trusted intermediary for network layer claims-enabled access control | |
CN101785243B (zh) | 可传递受限安全令牌 | |
US9344432B2 (en) | Network layer claims based access control | |
US9336369B2 (en) | Methods of licensing software programs and protecting them from unauthorized use | |
US8417640B2 (en) | Secure license key method and system | |
CN103620556A (zh) | 将应用绑定到设备能力 | |
US9111079B2 (en) | Trustworthy device claims as a service | |
CN107409129B (zh) | 使用访问控制列表和群组的分布式系统中的授权 | |
US20080066170A1 (en) | Security Assertion Revocation | |
CN102938043A (zh) | 授权应用对安全资源的访问 | |
US9129098B2 (en) | Methods of protecting software programs from unauthorized use | |
Nyman et al. | Citizen electronic identities using TPM 2.0 | |
US20240048562A1 (en) | Sponsor delegation for multi-factor authentication | |
CN110414253A (zh) | 一种基于区块链的电子病历管理方法、装置、系统及设备 | |
US20070016770A1 (en) | System and method for managing the initiation of software programs in an information handling system | |
US11146403B2 (en) | Self-governed secure attestation policy for server data privacy logs | |
CN109324843A (zh) | 一种指纹处理系统、方法及指纹设备 | |
US20220376902A1 (en) | Resource access control | |
US20230370473A1 (en) | Policy scope management | |
US20220407877A1 (en) | Detecting data leakage | |
CN102404315B (zh) | 作为服务的可信设备声明 | |
WO2024015508A1 (en) | Non-fungible token authentication | |
WO2023241879A1 (en) | Protecting sensitive data dump information | |
CN115348035A (zh) | 访问请求的处理方法及装置、存储介质、电子设备 |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
C06 | Publication | ||
PB01 | Publication | ||
C10 | Entry into substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
REG | Reference to a national code |
Ref country code: HK Ref legal event code: DE Ref document number: 1174446 Country of ref document: HK |
|
ASS | Succession or assignment of patent right |
Owner name: MICROSOFT TECHNOLOGY LICENSING LLC Free format text: FORMER OWNER: MICROSOFT CORP. Effective date: 20150728 |
|
C41 | Transfer of patent application or patent right or utility model | ||
TA01 | Transfer of patent application right |
Effective date of registration: 20150728 Address after: Washington State Applicant after: Micro soft technique license Co., Ltd Address before: Washington State Applicant before: Microsoft Corp. |
|
C14 | Grant of patent or utility model | ||
GR01 | Patent grant | ||
REG | Reference to a national code |
Ref country code: HK Ref legal event code: GR Ref document number: 1174446 Country of ref document: HK |