TWI393400B - 用以鑑別一請求者而不需提供一鍵之方法及系統 - Google Patents

用以鑑別一請求者而不需提供一鍵之方法及系統 Download PDF

Info

Publication number
TWI393400B
TWI393400B TW094139492A TW94139492A TWI393400B TW I393400 B TWI393400 B TW I393400B TW 094139492 A TW094139492 A TW 094139492A TW 94139492 A TW94139492 A TW 94139492A TW I393400 B TWI393400 B TW I393400B
Authority
TW
Taiwan
Prior art keywords
node
client
supervisor
key
resource provider
Prior art date
Application number
TW094139492A
Other languages
English (en)
Chinese (zh)
Other versions
TW200642391A (en
Inventor
Thomas M Brey
Giles R Frazier
Gregory F Pfister
William J Rooney
Original Assignee
Ibm
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Ibm filed Critical Ibm
Publication of TW200642391A publication Critical patent/TW200642391A/zh
Application granted granted Critical
Publication of TWI393400B publication Critical patent/TWI393400B/zh

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/06Network architectures or network communication protocols for network security for supporting key management in a packet data network
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L61/00Network arrangements, protocols or services for addressing or naming
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/10Protocols in which an application is distributed across nodes in the network
    • H04L67/1097Protocols in which an application is distributed across nodes in the network for distributed storage of data in networks, e.g. transport arrangements for network file system [NFS], storage area networks [SAN] or network attached storage [NAS]
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2221/00Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/21Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/2105Dual mode as a secondary aspect
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2221/00Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/21Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/2129Authenticate client device independently of the user
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L69/00Network arrangements, protocols or services independent of the application payload and not provided for in the other groups of this subclass
    • H04L69/30Definitions, standards or architectural aspects of layered protocol stacks
    • H04L69/32Architecture of open systems interconnection [OSI] 7-layer type protocol stacks, e.g. the interfaces between the data link level and the physical level
    • H04L69/322Intralayer communication protocols among peer entities or protocol data unit [PDU] definitions
    • H04L69/329Intralayer communication protocols among peer entities or protocol data unit [PDU] definitions in the application layer [OSI layer 7]

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Hardware Design (AREA)
  • Computer Security & Cryptography (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Small-Scale Networks (AREA)
  • Storage Device Security (AREA)
TW094139492A 2004-11-12 2005-11-10 用以鑑別一請求者而不需提供一鍵之方法及系統 TWI393400B (zh)

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
US10/987,280 US7437447B2 (en) 2004-11-12 2004-11-12 Method and system for authenticating a requestor without providing a key

Publications (2)

Publication Number Publication Date
TW200642391A TW200642391A (en) 2006-12-01
TWI393400B true TWI393400B (zh) 2013-04-11

Family

ID=35614672

Family Applications (1)

Application Number Title Priority Date Filing Date
TW094139492A TWI393400B (zh) 2004-11-12 2005-11-10 用以鑑別一請求者而不需提供一鍵之方法及系統

Country Status (6)

Country Link
US (3) US7437447B2 (enExample)
EP (1) EP1825343B1 (enExample)
JP (1) JP4822224B2 (enExample)
CN (1) CN100547516C (enExample)
TW (1) TWI393400B (enExample)
WO (1) WO2006051083A1 (enExample)

Families Citing this family (16)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US9088551B2 (en) * 2005-06-29 2015-07-21 International Business Machines Corporation Method and system for easily and securely managing multiple keys used to have access to multiple computing resources
GB2434947B (en) * 2006-02-02 2011-01-26 Identum Ltd Electronic data communication system
US7913077B2 (en) * 2007-02-13 2011-03-22 International Business Machines Corporation Preventing IP spoofing and facilitating parsing of private data areas in system area network connection requests
AU2012247065B2 (en) * 2007-10-08 2015-04-16 Qualcomm Incorporated Access management for wireless communication
US9775096B2 (en) * 2007-10-08 2017-09-26 Qualcomm Incorporated Access terminal configuration and access control
US9167505B2 (en) * 2007-10-08 2015-10-20 Qualcomm Incorporated Access management for wireless communication
US9055511B2 (en) * 2007-10-08 2015-06-09 Qualcomm Incorporated Provisioning communication nodes
US8321503B2 (en) * 2010-06-24 2012-11-27 Microsoft Corporation Context-specific network resource addressing model for distributed services
JP5844373B2 (ja) 2010-09-17 2016-01-13 オラクル・インターナショナル・コーポレイション ミドルウェアマシン環境におけるランナウェイサブネットマネージャインスタンスからの保護を促進するためのシステムおよび方法
US9935848B2 (en) 2011-06-03 2018-04-03 Oracle International Corporation System and method for supporting subnet manager (SM) level robust handling of unkown management key in an infiniband (IB) network
US9900293B2 (en) 2011-06-03 2018-02-20 Oracle International Corporation System and method for supporting automatic disabling of degraded links in an infiniband (IB) network
US9037511B2 (en) 2011-09-29 2015-05-19 Amazon Technologies, Inc. Implementation of secure communications in a support system
CN104170348B (zh) 2012-05-10 2018-02-13 甲骨文国际公司 用于在网络环境中支持状态同步的系统和方法
US9665719B2 (en) 2012-06-04 2017-05-30 Oracle International Corporation System and method for supporting host-based firmware upgrade of input/output (I/O) devices in a middleware machine environment
US9584605B2 (en) 2012-06-04 2017-02-28 Oracle International Corporation System and method for preventing denial of service (DOS) attack on subnet administrator (SA) access in an engineered system for middleware and application execution
US9723008B2 (en) 2014-09-09 2017-08-01 Oracle International Corporation System and method for providing an integrated firewall for secure network communication in a multi-tenant environment

Citations (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6405317B1 (en) * 1998-01-30 2002-06-11 International Business Machines Corporation Security module for a transaction processing system
US6457129B2 (en) * 1998-03-31 2002-09-24 Intel Corporation Geographic location receiver based computer system security
US20030217137A1 (en) * 2002-03-01 2003-11-20 Roese John J. Verified device locations in a data network
US20040059914A1 (en) * 2002-09-12 2004-03-25 Broadcom Corporation Using signal-generated location information to identify and authenticate available devices
US20040088578A1 (en) * 2002-10-31 2004-05-06 International Business Machines Corporation System and method for credential delegation using identity assertion
US20040111640A1 (en) * 2002-01-08 2004-06-10 Baum Robert T. IP based security applications using location, port and/or device identifier information
US20040205253A1 (en) * 2003-04-10 2004-10-14 International Business Machines Corporation Apparatus, system and method for controlling access to facilities based on usage classes

Family Cites Families (11)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5557678A (en) * 1994-07-18 1996-09-17 Bell Atlantic Network Services, Inc. System and method for centralized session key distribution, privacy enhanced messaging and information distribution using a split private key public cryptosystem
JP3937475B2 (ja) * 1996-06-14 2007-06-27 キヤノン株式会社 アクセス制御システムおよびその方法
JP2000165373A (ja) * 1998-11-25 2000-06-16 Toshiba Corp 暗号装置、暗号通信システム及び鍵復元システム並びに記憶媒体
FI112433B (fi) * 2000-02-29 2003-11-28 Nokia Corp Sijaintiin sidotut palvelut
ATE403323T1 (de) * 2000-05-24 2008-08-15 Voltaire Ltd Gefilterte kommunikation von anwendung zu anwendung
US6766353B1 (en) * 2000-07-11 2004-07-20 Motorola, Inc. Method for authenticating a JAVA archive (JAR) for portable devices
JP2002132729A (ja) * 2000-10-25 2002-05-10 Nippon Telegraph & Telephone East Corp 端末認証接続方法およびそのシステム
US20030058875A1 (en) * 2001-09-24 2003-03-27 International Business Machines Corporation Infiniband work and completion queue management via head only circular buffers
US7360242B2 (en) 2001-11-19 2008-04-15 Stonesoft Corporation Personal firewall with location detection
US20030163731A1 (en) 2002-02-28 2003-08-28 David Wigley Method, system and software product for restricting access to network accessible digital information
US7451219B2 (en) 2003-11-05 2008-11-11 International Business Machines Corporation Determining server resources accessible to client nodes using information received at the server via a communications medium

Patent Citations (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6405317B1 (en) * 1998-01-30 2002-06-11 International Business Machines Corporation Security module for a transaction processing system
US6457129B2 (en) * 1998-03-31 2002-09-24 Intel Corporation Geographic location receiver based computer system security
US20040111640A1 (en) * 2002-01-08 2004-06-10 Baum Robert T. IP based security applications using location, port and/or device identifier information
US20030217137A1 (en) * 2002-03-01 2003-11-20 Roese John J. Verified device locations in a data network
US20040059914A1 (en) * 2002-09-12 2004-03-25 Broadcom Corporation Using signal-generated location information to identify and authenticate available devices
US20040088578A1 (en) * 2002-10-31 2004-05-06 International Business Machines Corporation System and method for credential delegation using identity assertion
US20040205253A1 (en) * 2003-04-10 2004-10-14 International Business Machines Corporation Apparatus, system and method for controlling access to facilities based on usage classes

Also Published As

Publication number Publication date
US7437447B2 (en) 2008-10-14
JP4822224B2 (ja) 2011-11-24
US20080271133A1 (en) 2008-10-30
US20060117103A1 (en) 2006-06-01
US7818413B2 (en) 2010-10-19
EP1825343B1 (en) 2012-07-25
US20080271125A1 (en) 2008-10-30
US8015243B2 (en) 2011-09-06
JP2008520018A (ja) 2008-06-12
EP1825343A1 (en) 2007-08-29
WO2006051083A1 (en) 2006-05-18
CN100547516C (zh) 2009-10-07
CN101057201A (zh) 2007-10-17
TW200642391A (en) 2006-12-01

Similar Documents

Publication Publication Date Title
US8015243B2 (en) Authenticating a requestor without providing a key
US7930398B2 (en) Distributed computing system for resource reservation and user verification
US10554418B2 (en) Routing cloud messages using digital certificates
US6549538B1 (en) Computer method and apparatus for managing network ports cluster-wide using a lookaside list
US6442608B1 (en) Distributed database system with authoritative node
US20100154040A1 (en) Method, apparatus and system for distributed delegation and verification
US12407728B2 (en) Secure communication system
JP2007507760A (ja) セキュアなクラスターコンフィギュレーションデータセットの転送プロトコル
KR20080053298A (ko) 접속 프로세스의 비교적 초기에 인증함으로써 시큐어접속을 생성하는 방법 및 그 방법을 수행하게 하는 컴퓨터실행가능 명령어를 갖는 컴퓨터 프로그램 제품
US12238104B2 (en) Secure communication system
CN106790420A (zh) 一种多会话通道建立方法和系统
US20220166763A1 (en) System and method for managing integrated account based on token
US8958435B2 (en) Information management method and information processing device
US20230171228A1 (en) Secure communication system
CN112994897A (zh) 证书查询方法、装置、设备及计算机可读存储介质
CN114389890A (zh) 一种用户请求的代理方法、服务器及存储介质
CN1180566C (zh) 一种实现网络设备间安全可靠互连的方法
WO2022206247A1 (zh) 一种证书查询方法及装置
JP2009518883A (ja) 分散サービスサイトの登録方法および登録システム
US20250392628A1 (en) Secure communication system
US20240031329A1 (en) Internet address management systems and methods
US20250252217A1 (en) Privacy preserving secure access
WO2023227067A1 (zh) 量子网络通信方法、装置、电子设备及存储介质
WO2024020585A1 (en) A secure communication system
EP4241531A1 (en) A secure communication system

Legal Events

Date Code Title Description
MM4A Annulment or lapse of patent due to non-payment of fees