公开(公告)号：US07747645B2

公开(公告)日：2010-06-29

申请号：US11724736

申请日：2007-03-17

Applicant: Mark Frederick Wahl

Inventor： Mark Frederick Wahl

IPC: G06F17/30

CPC classification number: H04L63/102 ,  G06F21/316 ,  G06F2221/2101 ,  G06F2221/2111 ,  G06F2221/2149 ,  G06F2221/2151 ,  G06Q10/109 ,  H04L63/1416

Abstract: An access control system is augmented with the ability to categorize access requests as anomalous, by correlating the time and location of the requesting user with information provided by the requesting user's calendar entries. These entries provide the dates and times that a user is anticipated to be located in a particular geographic region.

Abstract translation: 通过将请求用户的时间和位置与请求用户的日历条目提供的信息相关联，增加了访问控制系统的能力，将访问请求分类为异常。 这些条目提供用户预期位于特定地理区域中的日期和时间。

公开(公告)号：US07558791B2

公开(公告)日：2009-07-07

申请号：US11881893

申请日：2007-07-30

Applicant: Mark Frederick Wahl

Inventor： Mark Frederick Wahl

IPC: G06F7/00

CPC classification number: G06F17/30569 ,  Y10S707/99934 ,  Y10S707/99944

Abstract: An information processing system comprising a translation from a directory or individuals input source to a state database containing resource description triples, a mapping of the triples in the state database from one ontology class to another, and a translation from the triples in the state database to a directory or individuals output sink.

Abstract translation: 一种信息处理系统，包括从目录或个人输入源到包含资源描述三元组的状态数据库的翻译，将状态数据库中的三元组从一个本体类映射到另一个本体类，以及从状态数据库中的三元组的转换 目录或个人输出接收器。

公开(公告)号：US20080034412A1

公开(公告)日：2008-02-07

申请号：US11497646

申请日：2006-08-02

Applicant: Mark Wahl

Inventor： Mark Wahl

IPC: G06F17/30 ,  H04L9/32 ,  G06F15/16 ,  G06F7/04 ,  G06F7/58 ,  G06K9/00 ,  G06K19/00 ,  H03M1/68 ,  H04K1/00 ,  H04L9/00 ,  H04N7/16

CPC classification number: G06F21/41

Abstract: A system which provides additional controls in access management for single sign on deployments, in order to restrict the range of resources in the deployment which could be accessed by an attacker, without unnecessarily burdening the user for their typical and legitimate use of these resources via single sign on. A misuse protection agent (12) intercepts access requests before they reach the target resource, and will check the status of the user for this resource in the database (28).

Abstract translation: 在单一登录部署的访问管理中提供附加控制的系统，以便限制攻击者可以访问的部署中的资源范围，而不必为用户通过单独的这些资源的典型和合法使用而不必要地负担 登录 滥用保护代理（12）在到达目标资源之前拦截访问请求，并将在数据库中检查用户对该资源的状态（28）。

公开(公告)号：US08132239B2

公开(公告)日：2012-03-06

申请号：US12214615

申请日：2008-06-21

Applicant: Mark Frederick Wahl

Inventor： Mark Frederick Wahl

IPC: G06F7/04

CPC classification number: H04L63/08

Abstract: An information processing system in a computer network comprising an edge system, an identity provider, a relying party and a tracing service, in which the tracing service relays a queue of information of authorized user activity from a relying party to an identity provider, which then can provide that activity information to the user.

Abstract translation: 计算机网络中的信息处理系统，包括边缘系统，身份提供者，依赖方和跟踪服务，其中跟踪服务将授权用户活动的信息的队列从依赖方中继到身份提供者， 可以向用户提供活动信息。

公开(公告)号：US07917636B2

公开(公告)日：2011-03-29

申请号：US11893467

申请日：2007-08-16

Applicant: Mark Frederick Wahl

Inventor： Mark Frederick Wahl

IPC: G06F15/16

CPC classification number: H04L61/1517 ,  H04L61/1523

Abstract: A distributed information processing system in an enterprise computer network comprising a collection of servers providing a directory service and a directory-enabled access control system is augmented with the ability to detect user accounts in the directory service for users who have not recently authenticated to an application that uses the directory-enabled access control system.

Abstract translation: 包括提供目录服务和启用目录的访问控制系统的服务器的集合的企业计算机网络中的分布式信息处理系统被增强，以便能够检测目录服务中的用户帐户，用于尚未最近对应用进行验证的用户 它使用启用目录的访问控制系统。

公开(公告)号：US07912965B2

公开(公告)日：2011-03-22

申请号：US12287632

申请日：2008-10-11

Applicant: Mark Frederick Wahl

Inventor： Mark Frederick Wahl

IPC: G06F15/16 ,  G06F15/173 ,  G06F17/30

CPC classification number: H04L63/102 ,  G06F21/552 ,  H04L63/1425

Abstract: An information processing system for a computing network in which the access log of a directory server is analyzed to detect anomalous client access requests.

Abstract translation: 一种用于计算网络的信息处理系统，其中分析目录服务器的访问日志以检测异常客户端访问请求。

公开(公告)号：US07890616B2

公开(公告)日：2011-02-15

申请号：US12072183

申请日：2008-02-25

Applicant: Mark Frederick Wahl

Inventor： Mark Frederick Wahl

IPC: G06F15/173

CPC classification number: H04L41/0803 ,  H04L41/046 ,  H04L41/0659 ,  H04L43/0817

Abstract: An information processing system containing middleware and backend server software components is augmented with the ability to validate the behavior of the middleware system when one or more backend servers are unavailable, based on dynamic reconfiguration of the network layer protocol software component in the operating system underlying the middleware software component.

Abstract translation: 包含中间件和后端服务器软件组件的信息处理系统被增强，其能够在一个或多个后端服务器不可用时验证中间件系统的行为，其基于在基于所述操作系统的操作系统中的网络层协议软件组件的动态重新配置 中间件软件组件。