Abstract: Techniques to provide secure access to a cloud-based service are disclosed. In various embodiments, a request is received from a client app on a device to connect to a security proxy associated with the cloud-based service. A secure tunnel connection between the device and a node with which the security proxy is associated is used to establish the requested connection to the security proxy. Information associated with the secure tunnel is used to determine that the requesting client app is authorized to access the cloud-based service from the device and to obtain from an identity provider associated with the cloud-based service a security token to be used by the client app to authenticate to the cloud-based service.

Abstract: Techniques to provide secure mobile access to a cloud-based service are disclosed. In various embodiments, a request to access the cloud-based service is received from a mobile device. A security certificate associated with the request is used to synthesize a basic authentication header associated with the request. The synthesized basic authentication header is sent to the cloud-based service on behalf of the mobile device.

Abstract: Techniques to provide secure access to a cloud-based service are disclosed. In various embodiments, a request is received from a client app on a device to connect to a security proxy associated with the cloud-based service. A secure tunnel connection between the device and a node with which the security proxy is associated is used to establish the requested connection to the security proxy. Information associated with the secure tunnel is used to determine that the requesting client app is authorized to access the cloud-based service from the device and to obtain from an identity provider associated with the cloud-based service a security token to be used by the client app to authenticate to the cloud-based service.

Abstract: Techniques to provide secure access to a cloud service are disclosed. In various embodiments, enterprise mobility management (EMM) data associated with a set of enterprise users of mobile devices associated with an enterprise is received. Cloud service data associated with use of a cloud service of the cloud service provider by users associated with the enterprise is received and correlated with the EMM data. Usage of the cloud service by said users associated with the enterprise is analyzed, including one or both of access of the cloud service using one or more unmanaged devices and access of the cloud service using one or more unmanaged mobile apps.

Abstract: Techniques to provide secure mobile access to a cloud-based service are disclosed. In various embodiments, a request to access the cloud-based service is received from a mobile device. A security certificate associated with the request is used to synthesize a basic authentication header associated with the request. The synthesized basic authentication header is sent to the cloud-based service on behalf of the mobile device.

Abstract: Techniques to provide secure access to a cloud-based service are disclosed. In various embodiments, a request is received from a client app on a device to connect to a security proxy associated with the cloud-based service. A secure tunnel connection between the device and a node with which the security proxy is associated is used to establish the requested connection to the security proxy. Information associated with the secure tunnel is used to determine that the requesting client app is authorized to access the cloud-based service from the device and to obtain from an identity provider associated with the cloud-based service a security token to be used by the client app to authenticate to the cloud-based service.

Abstract: Techniques to provide secure access to a cloud-based service are disclosed. In various embodiments, a request is received from a client app on a device to connect to a security proxy associated with the cloud-based service. A secure tunnel connection between the device and a node with which the security proxy is associated is used to establish the requested connection to the security proxy. Information associated with the secure tunnel is used to determine that the requesting client app is authorized to access the cloud-based service from the device and to obtain from an identity provider associated with the cloud-based service a security token to be used by the client app to authenticate to the cloud-based service.

Abstract: Techniques are disclosed to provide VPN and identity based authentication to cloud-based services. In various embodiments, a request to authenticate a user to a service is received. A user identity associated with one or both of the user and the request is determined based at least in part on data comprising the request. An identity assertion is generated based at least in part on the user identity. The identity assertion is provided to a requesting node with which the request to authenticate is associated.

Abstract: An authentication-related request sent from a mobile device to an authentication server is received at a proxy server. A posture of the mobile device is dynamically determined based at least in part on information included in the request. The request is validated based at least in part on the dynamically-determined posture. The proxy server communicates with an authentication server on behalf of the mobile device to obtain authentication information usable by the mobile device to access a service.

Abstract: Techniques to provide secure access to a cloud-based service are disclosed. In various embodiments, a request is received from a client app on a device to connect to a security proxy associated with the cloud-based service. A secure tunnel connection between the device and a node with which the security proxy is associated is used to establish the requested connection to the security proxy. Information associated with the secure tunnel is used to determine that the requesting client app is authorized to access the cloud-based service from the device and to obtain from an identity provider associated with the cloud-based service a security token to be used by the client app to authenticate to the cloud-based service.

Abstract: Techniques to provide secure mobile access to a cloud-based service are disclosed. In various embodiments, a request to access the cloud-based service is received from a mobile device. A security certificate associated with the request is used to synthesize a basic authentication header associated with the request. The synthesized basic authentication header is sent to the cloud-based service on behalf of the mobile device.

Abstract: A real-time query processing system to locate and retrieve object data in a RFID network is presented. The object data can be located in any data stored on the network or may be data that is generated in response to the user request. The system is operated by a user-friendly web-based GUI that allows remote access by out-of-network computer systems. The real-time query processing system provides comprehensive and flexible searching of the RFID network using a simple interface that can be accessed from anywhere in the world. It enables an immediate and tailored response to supply chain and business management questions as they arise, and greatly facilitates management of the entire supply chain and the RFID network.

Abstract: A system and method for performing a distributed search in response to a user request. In response to a search request received from a user at a local server, a request is spawned and transmitted to a remote site to search information at the remote site. Substantially in parallel with the remote search request, a search of local resources (e.g., catalog of products/services) is initiated. At the remote site (e.g., an electronic marketplace), the search is conducted in the proper context for the user (e.g., user identity, language, organization) and the results are returned to the local server. The local server merges the local and remote search results, applies any desired business logic (e.g., to screen the results by price, description or other criteria) and provides a uniform display to the user.