CN116569538A - 经由中央网络网格的服务到服务通信和认证 - Google Patents

经由中央网络网格的服务到服务通信和认证 Download PDF

Info

Publication number
CN116569538A
CN116569538A CN202180075736.3A CN202180075736A CN116569538A CN 116569538 A CN116569538 A CN 116569538A CN 202180075736 A CN202180075736 A CN 202180075736A CN 116569538 A CN116569538 A CN 116569538A
Authority
CN
China
Prior art keywords
service
containers
request
access
information associated
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN202180075736.3A
Other languages
English (en)
Chinese (zh)
Inventor
N·A·亚拉尔
A·德里迪
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Genentech Inc
Original Assignee
Genentech Inc
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Genentech Inc filed Critical Genentech Inc
Publication of CN116569538A publication Critical patent/CN116569538A/zh
Pending legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/10Network architectures or network communication protocols for network security for controlling access to devices or network resources
    • H04L63/102Entity profiles
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0876Network architectures or network communication protocols for network security for authentication of entities based on the identity of the terminal or configuration, e.g. MAC address, hardware or software configuration or device fingerprint
    • GPHYSICS
    • G16INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR SPECIFIC APPLICATION FIELDS
    • G16HHEALTHCARE INFORMATICS, i.e. INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR THE HANDLING OR PROCESSING OF MEDICAL OR HEALTHCARE DATA
    • G16H10/00ICT specially adapted for the handling or processing of patient-related medical or healthcare data
    • G16H10/60ICT specially adapted for the handling or processing of patient-related medical or healthcare data for patient-specific data, e.g. for electronic patient records
    • GPHYSICS
    • G16INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR SPECIFIC APPLICATION FIELDS
    • G16HHEALTHCARE INFORMATICS, i.e. INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR THE HANDLING OR PROCESSING OF MEDICAL OR HEALTHCARE DATA
    • G16H40/00ICT specially adapted for the management or administration of healthcare resources or facilities; ICT specially adapted for the management or operation of medical equipment or devices
    • G16H40/60ICT specially adapted for the management or administration of healthcare resources or facilities; ICT specially adapted for the management or operation of medical equipment or devices for the operation of medical equipment or devices
    • G16H40/67ICT specially adapted for the management or administration of healthcare resources or facilities; ICT specially adapted for the management or operation of medical equipment or devices for the operation of medical equipment or devices for remote operation
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/10Network architectures or network communication protocols for network security for controlling access to devices or network resources
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/10Network architectures or network communication protocols for network security for controlling access to devices or network resources
    • H04L63/105Multiple levels of security
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/20Network architectures or network communication protocols for network security for managing network security; network security policies in general
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/20Network architectures or network communication protocols for network security for managing network security; network security policies in general
    • H04L63/205Network architectures or network communication protocols for network security for managing network security; network security policies in general involving negotiation or determination of the one or more network security mechanisms to be used, e.g. by negotiation between the client and the server or between peers or by selection according to the capabilities of the entities involved
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/50Network services
    • H04L67/56Provisioning of proxy services
    • H04L67/568Storing data temporarily at an intermediate stage, e.g. caching
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/50Network services
    • H04L67/60Scheduling or organising the servicing of application requests, e.g. requests for application data transmissions using the analysis and optimisation of the required network resources
    • H04L67/63Routing a service request depending on the request content or context

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Health & Medical Sciences (AREA)
  • Biomedical Technology (AREA)
  • Epidemiology (AREA)
  • General Health & Medical Sciences (AREA)
  • Medical Informatics (AREA)
  • Primary Health Care (AREA)
  • Public Health (AREA)
  • Business, Economics & Management (AREA)
  • General Business, Economics & Management (AREA)
  • Power Engineering (AREA)
  • Management, Administration, Business Operations System, And Electronic Commerce (AREA)
  • Information Transfer Between Computers (AREA)
CN202180075736.3A 2020-11-10 2021-11-08 经由中央网络网格的服务到服务通信和认证 Pending CN116569538A (zh)

Applications Claiming Priority (3)

Application Number Priority Date Filing Date Title
US202063111997P 2020-11-10 2020-11-10
US63/111,997 2020-11-10
PCT/US2021/058402 WO2022103681A1 (en) 2020-11-10 2021-11-08 Service to service communication and authentication via a central network mesh

Publications (1)

Publication Number Publication Date
CN116569538A true CN116569538A (zh) 2023-08-08

Family

ID=78822325

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202180075736.3A Pending CN116569538A (zh) 2020-11-10 2021-11-08 经由中央网络网格的服务到服务通信和认证

Country Status (6)

Country Link
US (1) US12341776B2 (https=)
EP (1) EP4245024B1 (https=)
JP (1) JP7785076B2 (https=)
KR (1) KR20230101868A (https=)
CN (1) CN116569538A (https=)
WO (1) WO2022103681A1 (https=)

Families Citing this family (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US12328391B2 (en) * 2021-11-15 2025-06-10 Sap Se Managing secret values using a secrets manager
US20230395215A1 (en) * 2022-06-02 2023-12-07 Evernorth Strategic Development, Inc. Scalable framework for digital mesh
US12381852B2 (en) 2023-01-27 2025-08-05 International Business Machines Corporation Providing dynamic network security based on importance of proprietary content
US12348514B2 (en) * 2023-04-21 2025-07-01 Stripe, Inc. Systems and methods for enforcing access requirements to services in a distributed services system
US12609934B2 (en) * 2023-05-18 2026-04-21 Pure Storage, Inc. Service mesh-based control of access to a storage application
KR102891300B1 (ko) * 2025-03-28 2025-12-01 펜타시큐리티 주식회사 클라우드 환경 기반 머신 id 관리 방법 및 장치

Family Cites Families (18)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CA2574885A1 (en) * 2004-07-23 2006-02-02 Privit, Inc. Privacy compliant consent and data access management system and method
US20070106754A1 (en) * 2005-09-10 2007-05-10 Moore James F Security facility for maintaining health care data pools
US20170103231A1 (en) * 2013-07-20 2017-04-13 Keith Lipman System and method for distributed, policy-based confidentiality management
US10536357B2 (en) * 2015-06-05 2020-01-14 Cisco Technology, Inc. Late data detection in data center
US10148506B1 (en) 2016-06-28 2018-12-04 Juniper Networks, Inc. Network configuration service discovery
US10027658B1 (en) * 2017-06-12 2018-07-17 Cyberark Software Ltd Seamless provision of secret token to cloud-based assets on demand
US11637844B2 (en) * 2017-09-28 2023-04-25 Oracle International Corporation Cloud-based threat detection
US10956563B2 (en) 2017-11-22 2021-03-23 Aqua Security Software, Ltd. System for securing software containers with embedded agent
US11057393B2 (en) * 2018-03-02 2021-07-06 Cloudentity, Inc. Microservice architecture for identity and access management
US10805213B2 (en) 2018-11-19 2020-10-13 International Business Machines Corporation Controlling data communication between microservices
US10810003B2 (en) 2019-01-30 2020-10-20 Salesforce.Com, Inc. Method and system for optimization of container image layering
US11711267B2 (en) * 2019-02-25 2023-07-25 Intel Corporation 5G network slicing with distributed ledger traceability and resource utilization inferencing
US10868845B2 (en) 2019-03-01 2020-12-15 Netskope, Inc. Recovery from failure in a dynamic scalable services mesh
EP3983894B1 (en) 2019-06-12 2024-10-30 Arigato Machine, Inc., dba Manifold Predictive autoscaling and resource optimization
US11102125B2 (en) * 2019-06-27 2021-08-24 Citrix Systems, Inc. Securing communications between services in a cluster using load balancing systems and methods
US12155731B2 (en) 2019-10-09 2024-11-26 Nutanix, Inc. Platform-as-a-service deployment including service domains
US11816497B2 (en) 2020-04-02 2023-11-14 Vmware, Inc. Container orchestration in a clustered and virtualized computer system
US11848998B2 (en) * 2020-07-29 2023-12-19 Control Plane Corporation Cross-cloud workload identity virtualization

Also Published As

Publication number Publication date
EP4245024A1 (en) 2023-09-20
EP4245024B1 (en) 2024-08-14
WO2022103681A1 (en) 2022-05-19
US12341776B2 (en) 2025-06-24
US20240129306A1 (en) 2024-04-18
KR20230101868A (ko) 2023-07-06
JP7785076B2 (ja) 2025-12-12
JP2023551382A (ja) 2023-12-08
EP4245024C0 (en) 2024-08-14

Similar Documents

Publication Publication Date Title
US12341776B2 (en) Service to service communication and authentication via a central network mesh
US11914696B1 (en) Quorum-based access control management
EP3815329B1 (en) Registration of the same domain with different cloud services networks
US9124569B2 (en) User authentication in a cloud environment
EP3391616B1 (en) Device management with tunneling
US10116642B2 (en) Identity management over multiple identity providers
US11477187B2 (en) API key access authorization
IL228003A (en) Application system and method
CN121039631A (zh) 控制运营商对客户云基础设施环境的访问
US11586721B1 (en) Secure remote access of computing resources
US11310034B2 (en) Systems and methods for securing offline data
US10567387B1 (en) Systems and methods for managing computing device access to local area computer networks
US9444800B1 (en) Virtual communication endpoint services
WO2016014370A1 (en) Establishing secure computing devices for virtualization and administration
US12309132B1 (en) Continuous universal trust architecture and method
US20250307005A1 (en) Methods and apparatus to access federated resources
US12563024B2 (en) Continuous universal trust architecture and method
US12563042B2 (en) Performing security protocol transitions while executing an execution environment of a virtual cloud network
CN119808040A (zh) 一种权限认证管理系统、方法、电子设备及存储介质
JEEVAN et al. Mobile Cloud Computing Service Models: A User-Centric Approach

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination