TWI620084B - 散發使用者憑證之裝置、方法及系統 - Google Patents

散發使用者憑證之裝置、方法及系統 Download PDF

Info

Publication number
TWI620084B
TWI620084B TW103131805A TW103131805A TWI620084B TW I620084 B TWI620084 B TW I620084B TW 103131805 A TW103131805 A TW 103131805A TW 103131805 A TW103131805 A TW 103131805A TW I620084 B TWI620084 B TW I620084B
Authority
TW
Taiwan
Prior art keywords
transformed
user
voucher
credential
service
Prior art date
Application number
TW103131805A
Other languages
English (en)
Chinese (zh)
Other versions
TW201528022A (zh
Inventor
馬西亞斯 布魯斯
妮可拉斯 漢森
Original Assignee
安訊士有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 安訊士有限公司 filed Critical 安訊士有限公司
Publication of TW201528022A publication Critical patent/TW201528022A/zh
Application granted granted Critical
Publication of TWI620084B publication Critical patent/TWI620084B/zh

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • G06F21/41User authentication where a single sign-on provides access to a plurality of computers
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F9/00Arrangements for program control, e.g. control units
    • G06F9/06Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
    • G06F9/46Multiprogramming arrangements
    • G06F9/468Specific access rights for resources, e.g. using capability register
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/083Network architectures or network communication protocols for network security for authentication of entities using passwords

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • General Engineering & Computer Science (AREA)
  • Software Systems (AREA)
  • General Physics & Mathematics (AREA)
  • Physics & Mathematics (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computing Systems (AREA)
  • Telephonic Communication Services (AREA)
  • Storage Device Security (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)
TW103131805A 2013-09-16 2014-09-15 散發使用者憑證之裝置、方法及系統 TWI620084B (zh)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
US14/028,208 2013-09-16
US14/028,208 US9641335B2 (en) 2013-09-16 2013-09-16 Distribution of user credentials

Publications (2)

Publication Number Publication Date
TW201528022A TW201528022A (zh) 2015-07-16
TWI620084B true TWI620084B (zh) 2018-04-01

Family

ID=49263129

Family Applications (1)

Application Number Title Priority Date Filing Date
TW103131805A TWI620084B (zh) 2013-09-16 2014-09-15 散發使用者憑證之裝置、方法及系統

Country Status (6)

Country Link
US (1) US9641335B2 (enExample)
EP (1) EP2849061B1 (enExample)
JP (1) JP6234348B2 (enExample)
KR (1) KR102101246B1 (enExample)
CN (1) CN104468113B (enExample)
TW (1) TWI620084B (enExample)

Families Citing this family (41)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20150150013A1 (en) * 2013-11-25 2015-05-28 International Business Machines Corporation Reducing job credentials management load
JP6364496B2 (ja) 2014-02-07 2018-07-25 オラクル・インターナショナル・コーポレイション モバイルクラウドサービスアーキテクチャ
CA2931750C (en) 2014-02-07 2023-03-07 Oracle International Corporation Cloud service custom execution environment
US9529658B2 (en) 2014-02-07 2016-12-27 Oracle International Corporation Techniques for generating diagnostic identifiers to trace request messages and identifying related diagnostic information
US9529657B2 (en) 2014-02-07 2016-12-27 Oracle International Corporation Techniques for generating diagnostic identifiers to trace events and identifying related diagnostic information
JP6336110B2 (ja) 2014-03-31 2018-06-06 オラクル・インターナショナル・コーポレイション モバイルデバイスをモバイルクラウドサービスと同期させるためのインフラストラクチャ
US10063661B2 (en) 2015-01-14 2018-08-28 Oracle International Corporation Multi-tenant cloud-based queuing systems
US10075450B2 (en) * 2015-05-29 2018-09-11 Rockwell Automation Technologies, Inc. One time use password for temporary privilege escalation in a role-based access control (RBAC) system
CN106252749B (zh) * 2015-06-04 2020-12-29 松下知识产权经营株式会社 蓄电池包的控制方法以及蓄电池包
CZ2015474A3 (cs) * 2015-07-07 2017-02-08 Aducid S.R.O. Způsob autentizace komunikace autentizačního zařízení a alespoň jednoho autentizačního serveru pomocí lokálního faktoru
US9930121B2 (en) * 2015-07-31 2018-03-27 Intel Corporation System, apparatus and method for optimizing symmetric key cache using tickets issued by a certificate status check service provider
US20170048219A1 (en) * 2015-08-11 2017-02-16 Unisys Corporation Systems and methods for modifying access credentials using impersonation in computer systems
US9730302B2 (en) 2015-12-28 2017-08-08 Ephesus Lighting, Inc. System and method for control of an illumination device
US10306023B2 (en) 2016-03-28 2019-05-28 Oracle International Corporation Pre-formed instructions for a mobile cloud service
CN108337210B (zh) * 2017-01-19 2021-05-18 钉钉控股(开曼)有限公司 设备配置方法及装置、系统
US10862927B2 (en) 2017-05-15 2020-12-08 Forcepoint, LLC Dividing events into sessions during adaptive trust profile operations
US9882918B1 (en) 2017-05-15 2018-01-30 Forcepoint, LLC User behavior profile in a blockchain
US10999296B2 (en) 2017-05-15 2021-05-04 Forcepoint, LLC Generating adaptive trust profiles using information derived from similarly situated organizations
US10129269B1 (en) 2017-05-15 2018-11-13 Forcepoint, LLC Managing blockchain access to user profile information
US10915643B2 (en) 2017-05-15 2021-02-09 Forcepoint, LLC Adaptive trust profile endpoint architecture
US10999297B2 (en) 2017-05-15 2021-05-04 Forcepoint, LLC Using expected behavior of an entity when prepopulating an adaptive trust profile
US10917423B2 (en) 2017-05-15 2021-02-09 Forcepoint, LLC Intelligently differentiating between different types of states and attributes when using an adaptive trust profile
US10318729B2 (en) 2017-07-26 2019-06-11 Forcepoint, LLC Privacy protection during insider threat monitoring
WO2019055478A1 (en) * 2017-09-12 2019-03-21 Visa International Service Association SYSTEM AND METHOD FOR SECURE AND ACCURATE DELIVERY
US10453279B2 (en) * 2017-10-31 2019-10-22 Schlage Lock Company Llc Credential updates in an offline system
WO2019198131A1 (ja) 2018-04-09 2019-10-17 三菱電機株式会社 認証システムおよび認証プログラム
GB2584580A (en) 2018-04-09 2020-12-09 Mitsubishi Electric Corp Authentication system and authentication program
US11138308B2 (en) * 2018-09-19 2021-10-05 International Business Machines Corporation System for preventing single point of failure in accessing encrypted data
US11120135B2 (en) * 2018-09-28 2021-09-14 International Business Machines Corporation Updating security information on multiple computing machines
JP2022059099A (ja) * 2019-02-25 2022-04-13 ソニーグループ株式会社 情報処理装置、情報処理方法、及び、プログラム
US10853496B2 (en) 2019-04-26 2020-12-01 Forcepoint, LLC Adaptive trust profile behavioral fingerprint
US11451373B2 (en) 2020-04-01 2022-09-20 International Business Machines Corporation Dynamic management of user identifications
US11449585B2 (en) 2020-04-01 2022-09-20 International Business Machines Corporation Dynamic management of user identifications
CN111475828B (zh) * 2020-05-14 2022-05-13 杭州烽顺科技信息服务有限公司 区块链账本数据的加密方法及装置、解密方法及装置
US20210409403A1 (en) * 2020-06-25 2021-12-30 Microsoft Technology Licensing, Llc Service to service ssh with authentication and ssh session reauthentication
JP7505350B2 (ja) * 2020-09-29 2024-06-25 ブラザー工業株式会社 機能実行装置、機能実行装置のためのコンピュータプログラム、機能実行装置によって実行される方法、機能実行システム、及び、機能実行システムによって実行される方法
KR102441641B1 (ko) * 2020-12-01 2022-09-08 주식회사 노다랩 랜덤 슬라이싱 기반 보안 정보 관리 장치 및 그 방법
US11770418B2 (en) 2022-01-31 2023-09-26 Ping Identity Corporation Methods, systems, and apparatus for credential format and protocol management
US12219352B2 (en) * 2022-11-29 2025-02-04 Saudi Arabian Oil Company Method of wireless monitoring system connection to distributed control system
CN121058203A (zh) * 2023-05-02 2025-12-02 波士顿科学国际有限公司 用于医疗装置控制台的安全用户认证
US12231831B2 (en) 2024-06-19 2025-02-18 Frederic M Newman Smart security camera with detection of suspicious cellphones

Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
TW200805185A (en) * 2006-03-29 2008-01-16 Raytheon Co Managing an entity
US20080235772A1 (en) * 2007-03-23 2008-09-25 Sap Ag. Iterated password hash systems and methods for preserving password entropy
US7676829B1 (en) * 2001-10-30 2010-03-09 Microsoft Corporation Multiple credentials in a distributed system
US7788709B1 (en) * 2001-02-20 2010-08-31 At&T Intellectual Property Ii, L.P. Mobile host using a virtual single account client and server system for network access and management
CN102257505A (zh) * 2008-12-28 2011-11-23 高通股份有限公司 用于提供经授权装置接入的设备和方法
US20130212385A1 (en) * 2012-02-10 2013-08-15 Microsoft Corporation Utilization of a protected module to prevent offline dictionary attacks

Family Cites Families (20)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6292904B1 (en) 1998-12-16 2001-09-18 International Business Machines Corporation Client account generation and authentication system for a network server
JP2000194630A (ja) * 1998-12-28 2000-07-14 Fujitsu Ltd 複数システムの情報管理装置および記録媒体
JP2001043189A (ja) * 1999-07-27 2001-02-16 Pfu Ltd ネットワーク認証システムの制御方法およびその記録媒体
US6609198B1 (en) 1999-08-05 2003-08-19 Sun Microsystems, Inc. Log-on service providing credential level change without loss of session continuity
JP2001067318A (ja) * 1999-08-30 2001-03-16 Nec Corp ユーザ/パスワード一括管理方式
US9031880B2 (en) 2001-07-10 2015-05-12 Iii Holdings 1, Llc Systems and methods for non-traditional payment using biometric data
CN1695361B (zh) 2002-11-15 2011-08-10 意大利电信股份公司 远程通信网络中对数据库进行集中式数据管理和访问控制的设备与方法
US8132017B1 (en) * 2003-03-31 2012-03-06 Nortel Networks Limited Method and apparatus for securely synchronizing password systems
WO2005048243A2 (en) 2003-11-12 2005-05-26 Czuchry, Andrew, J., Jr. Apparatus and method providing distributed access point authentication and access control with validation feedback
US20080186130A1 (en) 2006-06-27 2008-08-07 Trevino Arthur A Key management system
US8863246B2 (en) 2007-08-31 2014-10-14 Apple Inc. Searching and replacing credentials in a disparate credential store environment
US20090077638A1 (en) 2007-09-17 2009-03-19 Novell, Inc. Setting and synching preferred credentials in a disparate credential store environment
EP2332386A4 (en) 2008-09-30 2014-07-23 Honeywell Int Inc SYSTEMS AND METHOD FOR INTERACTION WITH ACCESS CONTROL DEVICES
WO2010038923A1 (en) * 2008-10-01 2010-04-08 Korea Institute Of Science & Technology Information System and method of auto-complete with query type under guarantee of search results and storage media having program source thereof
JP2011243093A (ja) * 2010-05-20 2011-12-01 Canon Inc 情報処理装置、ユーザ認証方法、及びコンピュータプログラム
US8505083B2 (en) * 2010-09-30 2013-08-06 Microsoft Corporation Remote resources single sign on
CN102004888B (zh) * 2010-11-19 2012-06-13 华中科技大学 数字视频作品上传中的反盗版过滤系统
US9965614B2 (en) 2011-09-29 2018-05-08 Oracle International Corporation Mobile application, resource management advice
JP2013171474A (ja) * 2012-02-21 2013-09-02 Fuji Xerox Co Ltd 情報処理システム、情報処理装置及びプログラム
CN103036894B (zh) * 2012-12-19 2015-04-08 福建联迪商用设备有限公司 一种智能终端应用程序安装文件联网数字签名方法

Patent Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7788709B1 (en) * 2001-02-20 2010-08-31 At&T Intellectual Property Ii, L.P. Mobile host using a virtual single account client and server system for network access and management
US7676829B1 (en) * 2001-10-30 2010-03-09 Microsoft Corporation Multiple credentials in a distributed system
TW200805185A (en) * 2006-03-29 2008-01-16 Raytheon Co Managing an entity
US20080235772A1 (en) * 2007-03-23 2008-09-25 Sap Ag. Iterated password hash systems and methods for preserving password entropy
CN102257505A (zh) * 2008-12-28 2011-11-23 高通股份有限公司 用于提供经授权装置接入的设备和方法
US20130212385A1 (en) * 2012-02-10 2013-08-15 Microsoft Corporation Utilization of a protected module to prevent offline dictionary attacks

Also Published As

Publication number Publication date
JP2015057704A (ja) 2015-03-26
CN104468113A (zh) 2015-03-25
KR20150032189A (ko) 2015-03-25
TW201528022A (zh) 2015-07-16
EP2849061B1 (en) 2020-08-12
US9641335B2 (en) 2017-05-02
CN104468113B (zh) 2019-09-27
JP6234348B2 (ja) 2017-11-22
EP2849061A1 (en) 2015-03-18
KR102101246B1 (ko) 2020-05-29
US20150082032A1 (en) 2015-03-19

Similar Documents

Publication Publication Date Title
TWI620084B (zh) 散發使用者憑證之裝置、方法及系統
US11716312B1 (en) Platform for optimizing secure communications
CN112214745B (zh) 经认证的外部生物特征读取器和验证设备
KR102138283B1 (ko) 하나의 장치를 이용하여 다른 장치를 언로크하는 방법
KR102076796B1 (ko) 익명의 접근을 제어하는 방법 및 디바이스
JP4615601B2 (ja) コンピュータセキュリティシステムおよびコンピュータセキュリティ方法
US11556617B2 (en) Authentication translation
US20080209216A1 (en) Method and system for automated authentication of a device to a management node of a computer network
CN113545006A (zh) 远程授权访问锁定的数据存储设备
US20130019281A1 (en) Server Based Remote Authentication for BIOS
JP2019531567A (ja) 装置認証のシステム及び方法
EP3782062B1 (en) Password reset for multi-domain environment
JP2006120168A (ja) 無許可の人によるパーソナル・コンピュータの使用を防止するためのセキュリティ方法
US12143516B2 (en) Hardware based authentication and authorization of networked nodes
JP7351873B2 (ja) 情報処理装置、情報処理方法および情報処理プログラム
US20140289519A1 (en) Entities with biometrically derived keys
WO2024218036A1 (en) Method and system for privacy preserving, face based access control
KR20250115130A (ko) 사물인터넷 단말기의 인증 및 암호화 시스템 및 이를 이용한 방법
JP2006260015A (ja) ローカル端末、リモート端末、アプリケーションアクセス制御システム、その動作方法及び動作プログラム
NZ761966A (en) Leveraging flexible distributed tokens in an access control system