Shuk Ho Phones & Addresses
-
Cupertino, CA
Publications
Us Patents
Profile Framework For Token Processing System
View pageUS Patent:
8412927, Apr 2, 2013
Filed:
Jun 7, 2006
Appl. No.:
11/448179
Inventors:
Nang Kon Kwan - Mountain View CA, US
Chandrasekar Kannan - Mountain View CA, US
Shuk Yee Ho - Mountain View CA, US
Steven William Parkinson - Mountain View CA, US
Christina Fu - Mountain View CA, US
Chandrasekar Kannan - Mountain View CA, US
Shuk Yee Ho - Mountain View CA, US
Steven William Parkinson - Mountain View CA, US
Christina Fu - Mountain View CA, US
Assignee:
Red Hat, Inc. - Raleigh NC
International Classification:
H04L 29/06
US Classification:
713155, 713173, 713175, 380285, 380286, 380278, 380279
Abstract:
Embodiments of the present invention provide a profile framework for handling enrollment requests. In particular, when a token processing system receives an enrollment request, it selects an applicable profile based on information in the request. The profile may indicate a variety of parameters for fulfilling the enrollment request, such as the locations of the applicable certificate authority, token key service, and the like. The profile may also indicate items, such as the number of keys to generate on a token, a token label, and connection information to securely communicate with other components and the client making the enrollment request.
Methods And Systems For Managing Identity Management Security Domains
View pageUS Patent:
20070288747, Dec 13, 2007
Filed:
Aug 4, 2006
Appl. No.:
11/462606
Inventors:
Nang Kon KWAN - Mountain View CA, US
Chandrasekar KANNAN - Mountain View CA, US
Shuk Yee HO - Mountain View CA, US
Steven William PARKINSON - Mountain View CA, US
Chandrasekar KANNAN - Mountain View CA, US
Shuk Yee HO - Mountain View CA, US
Steven William PARKINSON - Mountain View CA, US
International Classification:
H04L 9/00
US Classification:
713156
Abstract:
Embodiments of the present invention provide identity management security domains that may be used in an enterprise security system. A security domain provides a centralized registry of services provided by the enterprise security system. For example, certificate authorities and other services, such as key archives, and the like, in the enterprise security system may register information about themselves in the security domain. Authorized users can then discover the location of these services. In some embodiments, the security domain may provide an interface that indicates a topology between services of the enterprise security system. The security domain may also serve as a distribution point for security policies. A security policy may comprise information that indicates, for example, a set of trusted certificate authorities, certificate templates, certificate revocation lists, and the locations of the services in the enterprise security system.
Methods And System For A Key Recovery Plan
View pageUS Patent:
20080022086, Jan 24, 2008
Filed:
Jun 6, 2006
Appl. No.:
11/446958
Inventors:
Shuk Yee Ho - Mountain View CA, US
Christina Fu - Mountain View CA, US
Chandrasekar Kannan - Mountain View CA, US
Nang Kon Kwan - Mountain View CA, US
Christina Fu - Mountain View CA, US
Chandrasekar Kannan - Mountain View CA, US
Nang Kon Kwan - Mountain View CA, US
International Classification:
H04L 9/00
US Classification:
713155
Abstract:
Methods, systems and computer readable mediums are provided for recovering subject keys and/or certificates for a token. A unique identifier associated with the token is obtained. The token is associated with subject keys and with a first status of statuses, the statuses including a lost status state and an other status state. In response to the token being in the lost status state, a key recovery plan is determined to recover at least one of the subject keys and the certificates associated with the token.