CN104506480B - 基于标记与审计结合的跨域访问控制方法及系统 - Google Patents
基于标记与审计结合的跨域访问控制方法及系统 Download PDFInfo
- Publication number
- CN104506480B CN104506480B CN201410301101.2A CN201410301101A CN104506480B CN 104506480 B CN104506480 B CN 104506480B CN 201410301101 A CN201410301101 A CN 201410301101A CN 104506480 B CN104506480 B CN 104506480B
- Authority
- CN
- China
- Prior art keywords
- access
- main body
- domain
- accessed
- cross
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/10—Network architectures or network communication protocols for network security for controlling access to devices or network resources
- H04L63/102—Entity profiles
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/04—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
- H04L63/0428—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0876—Network architectures or network communication protocols for network security for authentication of entities based on the identity of the terminal or configuration, e.g. MAC address, hardware or software configuration or device fingerprint
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/3247—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving digital signatures
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Hardware Design (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Power Engineering (AREA)
- Storage Device Security (AREA)
Abstract
Description
Claims (10)
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201410301101.2A CN104506480B (zh) | 2014-06-27 | 2014-06-27 | 基于标记与审计结合的跨域访问控制方法及系统 |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201410301101.2A CN104506480B (zh) | 2014-06-27 | 2014-06-27 | 基于标记与审计结合的跨域访问控制方法及系统 |
Publications (2)
Publication Number | Publication Date |
---|---|
CN104506480A CN104506480A (zh) | 2015-04-08 |
CN104506480B true CN104506480B (zh) | 2018-11-23 |
Family
ID=52948195
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201410301101.2A Active CN104506480B (zh) | 2014-06-27 | 2014-06-27 | 基于标记与审计结合的跨域访问控制方法及系统 |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN104506480B (zh) |
Families Citing this family (6)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN105450660A (zh) * | 2015-12-23 | 2016-03-30 | 北京安托软件技术有限公司 | 业务资源安全控制系统 |
CN107819791A (zh) * | 2017-12-11 | 2018-03-20 | 迈普通信技术股份有限公司 | 访客接入网络的认证方法、认证服务器和系统 |
CN109842626B (zh) * | 2019-02-14 | 2021-07-02 | 众安信息技术服务有限公司 | 分配安全区域访问凭证的方法和装置 |
CN112311823B (zh) * | 2019-07-29 | 2023-01-31 | 百度(中国)有限公司 | 审核系统的流量控制方法、装置和服务器 |
CN112995097B (zh) * | 2019-12-13 | 2023-09-22 | 中兴通讯股份有限公司 | 跨域访问系统及方法、装置 |
CN113676455B (zh) * | 2021-07-22 | 2022-08-19 | 中国科学院深圳先进技术研究院 | 一种自适应跨域访问认证方法、系统、终端以及存储介质 |
Citations (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US6728884B1 (en) * | 1999-10-01 | 2004-04-27 | Entrust, Inc. | Integrating heterogeneous authentication and authorization mechanisms into an application access control system |
CN1960255A (zh) * | 2006-09-21 | 2007-05-09 | 上海交通大学 | 分布式多级安全访问控制方法 |
CN101222488A (zh) * | 2007-01-10 | 2008-07-16 | 华为技术有限公司 | 控制客户端访问网络设备的方法和网络认证服务器 |
CN103379009A (zh) * | 2012-04-20 | 2013-10-30 | 南京易安联网络技术有限公司 | 基于数据链路层的ssl vpn通信方法 |
CN103678652A (zh) * | 2013-12-23 | 2014-03-26 | 山东大学 | 一种基于Web日志数据的信息个性化推荐方法 |
-
2014
- 2014-06-27 CN CN201410301101.2A patent/CN104506480B/zh active Active
Patent Citations (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US6728884B1 (en) * | 1999-10-01 | 2004-04-27 | Entrust, Inc. | Integrating heterogeneous authentication and authorization mechanisms into an application access control system |
CN1960255A (zh) * | 2006-09-21 | 2007-05-09 | 上海交通大学 | 分布式多级安全访问控制方法 |
CN101222488A (zh) * | 2007-01-10 | 2008-07-16 | 华为技术有限公司 | 控制客户端访问网络设备的方法和网络认证服务器 |
CN103379009A (zh) * | 2012-04-20 | 2013-10-30 | 南京易安联网络技术有限公司 | 基于数据链路层的ssl vpn通信方法 |
CN103678652A (zh) * | 2013-12-23 | 2014-03-26 | 山东大学 | 一种基于Web日志数据的信息个性化推荐方法 |
Also Published As
Publication number | Publication date |
---|---|
CN104506480A (zh) | 2015-04-08 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN103310161B (zh) | 一种用于数据库系统的防护方法及系统 | |
CN104506480B (zh) | 基于标记与审计结合的跨域访问控制方法及系统 | |
CN109787988B (zh) | 一种身份加强认证和鉴权方法及装置 | |
CN106888084B (zh) | 一种量子堡垒机系统及其认证方法 | |
US8555075B2 (en) | Methods and system for storing and retrieving identity mapping information | |
CN107231346A (zh) | 一种云平台身份识别的方法 | |
CN109257209A (zh) | 一种数据中心服务器集中管理系统及方法 | |
US8095969B2 (en) | Security assertion revocation | |
CN103975333B (zh) | 跨系统安全登录 | |
CN109962890A (zh) | 一种区块链的认证服务装置及节点准入、用户认证方法 | |
CN105978855B (zh) | 一种实名制下个人信息安全保护系统及方法 | |
CN102571873B (zh) | 一种分布式系统中的双向安全审计方法及装置 | |
CN110417820A (zh) | 单点登录系统的处理方法、装置及可读存储介质 | |
CN106789029A (zh) | 一种基于量子堡垒机的审计系统和审计方法以及量子堡垒机系统 | |
CN106921678A (zh) | 一种集成异构舰载信息系统的统一安全认证平台 | |
KR20060032888A (ko) | 인터넷 통한 신원정보 관리 장치 및 이를 이용한 서비스제공방법 | |
CN117544322B (zh) | 浏览器的辨识方法、装置、设备及存储介质 | |
CN102098313B (zh) | 一种防水墙系统及其验证方法 | |
CN111538973A (zh) | 基于国密算法的个人授权访问控制系统 | |
CN106685912A (zh) | 一种应用系统的安全访问方法 | |
CN105790935A (zh) | 基于自主软硬件技术的可信认证服务器 | |
KR100545676B1 (ko) | 사용자 단말기의 상태 정보를 이용한 인증 방법 및 시스템 | |
CN114024682A (zh) | 跨域单点登录方法、服务设备及认证设备 | |
Mole et al. | Digital identity architectures: comparing goals and vulnerabilities | |
Chryssanthou et al. | Security and trust in virtual healthcare communities |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
C06 | Publication | ||
PB01 | Publication | ||
C10 | Entry into substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
C53 | Correction of patent for invention or patent application | ||
CB02 | Change of applicant information |
Address after: Three D301-309 room, building 518000, building D, Shenzhen Institute of Aerospace Science and technology, No. 6 South ten road, Nanshan District, Shenzhen, Guangdong, China Applicant after: Shenzhen Yongda electronic Touchplus information Corp Address before: Three D301-309 room, building 518000, building D, Shenzhen Institute of Aerospace Science and technology, No. 6 South ten road, Nanshan District, Shenzhen, Guangdong, China Applicant before: Shenzhen Rongda Electronics Co., Ltd. |
|
COR | Change of bibliographic data |
Free format text: CORRECT: APPLICANT; FROM: SHENZHEN RONGDA ELECTRONICS CO., LTD. TO: SHENZHEN YONGDA ELECTRONIC INFORMATION CO., LTD. |
|
C41 | Transfer of patent application or patent right or utility model | ||
TA01 | Transfer of patent application right |
Effective date of registration: 20151029 Address after: Three D301-309 room, building 518000, building D, Shenzhen Institute of Aerospace Science and technology, No. 6 South ten road, Nanshan District, Shenzhen, Guangdong, China Applicant after: Shenzhen Yongda electronic Touchplus information Corp Applicant after: CHINA RAILWAY CORPORATION Address before: Three D301-309 room, building 518000, building D, Shenzhen Institute of Aerospace Science and technology, No. 6 South ten road, Nanshan District, Shenzhen, Guangdong, China Applicant before: Shenzhen Yongda electronic Touchplus information Corp |
|
GR01 | Patent grant | ||
GR01 | Patent grant |