专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明申请

US20080101596A1 System and Method for Protecting Data in a Secure System 有权
标题翻译：用于保护安全系统中数据的系统和方法
公开(公告)号：US20080101596A1
公开(公告)日：2008-05-01
申请号：US11555605
申请日：2006-11-01
申请人： Julian A. CERRUTI , Sigfredo I. Nin , Dulce B. PONCELEON , Vladimir ZBARSKY
发明人： Julian A. CERRUTI , Sigfredo I. Nin , Dulce B. PONCELEON , Vladimir ZBARSKY
IPC分类号： H04L9/00 , H04L9/30
CPC分类号： H04L9/0891 , G06F21/602 , H04L9/085 , H04L2209/60
摘要： A system for protecting data in a security system generates and encodes a backup key for encoding long-lived secrets. The system generates a distribution plan for distributing cryptographic splits of the encoded backup key to selected persons based on geographic and organizational diversity. The distribution plan specifies a number M of the cryptographic splits to be generated and a number N of the cryptographic splits required to recover the backup key. The system processes utilize an init file comprising system parameters and state files each comprising parameters reflecting a state of the secure system after a transaction. Any of the state files may be used for any of the system processes. The state files and the init file are encoded by the backup key, thus protecting the long-lived secrets.
摘要翻译：用于保护安全系统中的数据的系统生成并编码用于编码长寿命秘密的备份密钥。系统生成分配计划，用于根据地理和组织多样性将所编码备份密钥的加密分裂分发给选定的人员。分配计划指定要生成的密码分割数M，以及恢复备份密钥所需的密码分割数N。系统过程利用包括系统参数和状态文件的初始化文件，每个文件包括在事务之后反映安全系统的状态的参数。任何状态文件可用于任何系统进程。状态文件和init文件由备份密钥编码，从而保护长命的秘密。

2. 发明申请

US20090323970A1 SYSTEM AND METHOD FOR PROTECTING DATA IN A SECURE SYSTEM 有权
标题翻译：用于保护安全系统中的数据的系统和方法
公开(公告)号：US20090323970A1
公开(公告)日：2009-12-31
申请号：US12133658
申请日：2008-06-05
申请人： Julian A. Cerruti , Sigfredo I. Nin , Dulce B. Ponceleon , Vladimir Zbarsky
发明人： Julian A. Cerruti , Sigfredo I. Nin , Dulce B. Ponceleon , Vladimir Zbarsky
IPC分类号： H04L9/08 , H04L9/14 , G06F11/07
CPC分类号： H04L9/0891 , G06F21/602 , H04L9/085 , H04L2209/60
摘要： A system for protecting data in a security system generates and encodes a backup key for encoding long-lived secrets. The system generates a distribution plan for distributing cryptographic splits of the encoded backup key to selected persons based on geographic and organizational diversity. The distribution plan specifies a number M of the cryptographic splits to be generated and a number N of the cryptographic splits required to recover the backup key. The system processes utilize an init file comprising system parameters and state files each comprising parameters reflecting a state of the secure system after a transaction. Any of the state files may be used for any of the system processes. The state files and the init file are encoded by the backup key, thus protecting the long-lived secrets.
摘要翻译：用于保护安全系统中的数据的系统生成并编码用于编码长寿命秘密的备份密钥。系统生成分配计划，用于根据地理和组织多样性将所编码备份密钥的加密分裂分发给选定的人员。分配计划指定要生成的密码分割数M，以及恢复备份密钥所需的密码分割数N。系统过程利用包括系统参数和状态文件的初始化文件，每个文件包括在事务之后反映安全系统的状态的参数。任何状态文件可用于任何系统进程。状态文件和init文件由备份密钥编码，从而保护长命的秘密。

3. 发明申请

US20140052996A1 EXTENDING THE NUMBER OF APPLICATIONS FOR ACCESSING PROTECTED CONTENT IN A MEDIA USING MEDIA KEY BLOCKS 有权
标题翻译：使用媒体关键块扩展访问媒体中保护内容的应用数量
公开(公告)号：US20140052996A1
公开(公告)日：2014-02-20
申请号：US13586861
申请日：2012-08-15
申请人： Sigfredo I. Nin , Dulce B. Ponceleon
发明人： Sigfredo I. Nin , Dulce B. Ponceleon
IPC分类号： G06F21/24
CPC分类号： G06F21/10
摘要： Embodiments of the invention relate to digital content protection for recordable media using encryption and decryption based on device keys in the media. The invention increases the number of extended applications supported the media key blocks and facilitates the assignment of the applications to the media key blocks. One aspect of the invention concerns a method that comprises assigning a first media key block in a protected area of the media for extended applications accessing protected content, processing the first media key block with a first device key set to generate a first media key, and for each extended application, creating a second media key block in a protected area of the media. The second media key block is processed to generate a second media key. A content-accessing device processes the first and second media keys in order to access protected content.
摘要翻译：本发明的实施例涉及使用基于媒体中的设备密钥的加密和解密的可记录介质的数字内容保护。本发明增加了支持媒体密钥块的扩展应用的数量，并且有助于将应用分配给媒体密钥块。本发明的一个方面涉及一种方法，其包括在媒体的保护区域中分配第一媒体密钥块以用于访问受保护内容的扩展应用，利用第一设备密钥集来处理第一媒体密钥块以生成第一媒体密钥，以及对于每个扩展应用，在媒体的保护区域中创建第二媒体密钥块。第二媒体密钥块被处理以产生第二媒体密钥。内容访问设备处理第一和第二媒体密钥以访问受保护的内容。

4. 发明授权

US08782440B2 Extending the number of applications for accessing protected content in a media using media key blocks 有权
标题翻译：使用媒体密钥块扩展访问媒体中受保护内容的应用数量
公开(公告)号：US08782440B2
公开(公告)日：2014-07-15
申请号：US13586861
申请日：2012-08-15
申请人： Sigfredo I. Nin , Dulce B. Ponceleon
发明人： Sigfredo I. Nin , Dulce B. Ponceleon
IPC分类号： G06F21/00 , G06F11/30 , G06F7/04 , G06F17/30 , H04N7/16
CPC分类号： G06F21/10
摘要： Embodiments of the invention relate to digital content protection for recordable media using encryption and decryption based on device keys in the media. The invention increases the number of extended applications supported the media key blocks and facilitates the assignment of the applications to the media key blocks. One aspect of the invention concerns a method that comprises assigning a first media key block in a protected area of the media for extended applications accessing protected content, processing the first media key block with a first device key set to generate a first media key, and for each extended application, creating a second media key block in a protected area of the media. The second media key block is processed to generate a second media key. A content-accessing device processes the first and second media keys in order to access protected content.
摘要翻译：本发明的实施例涉及使用基于媒体中的设备密钥的加密和解密的可记录介质的数字内容保护。本发明增加了支持媒体密钥块的扩展应用的数量，并且有助于将应用分配给媒体密钥块。本发明的一个方面涉及一种方法，其包括在媒体的保护区域中分配第一媒体密钥块以用于访问受保护内容的扩展应用，用第一设备密钥集处理第一媒体密钥块以生成第一媒体密钥，以及对于每个扩展应用，在媒体的保护区域中创建第二媒体密钥块。第二媒体密钥块被处理以产生第二媒体密钥。内容访问设备处理第一和第二媒体密钥以访问受保护的内容。

5. 发明授权

US07747877B2 Tamper-resistant trusted Java virtual machine and method of using the same 有权
标题翻译：防篡改的可信Java虚拟机及其使用方法
公开(公告)号：US07747877B2
公开(公告)日：2010-06-29
申请号：US12363876
申请日：2009-02-02
申请人： Hongxia Jin , Donald E. Leake, Jr. , Jeffrey B. Lotspiech , Sigfredo I. Nin , Wilfred E. Plouffe
发明人： Hongxia Jin , Donald E. Leake, Jr. , Jeffrey B. Lotspiech , Sigfredo I. Nin , Wilfred E. Plouffe
IPC分类号： G06F11/30 , G06F12/14
CPC分类号： G06F21/6218 , G06F21/14 , G06F21/51
摘要： A trusted Java virtual machine provides a method for supporting tamper-resistant applications, ensuring the integrity of an application and its secrets such as keys. The trusted Java virtual machine verifies the integrity of the Java application, prevents debugging of the Java application, and allows the Java application to securely store and retrieve secrets. The trusted Java virtual machine environment comprises a TrustedDictionary, a TrustedBundle, an optional encryption method for encrypting and decrypting byte codes, and an underlying trusted Java virtual machine. The encrypted TrustedDictionary protects data while the TrustedBundle protects programming code, allowing applications to store secret data and secure counters. The application designer can restrict TrustedBundle access to only those interfaces that the application designer explicitly exports. The open source code may optionally be encrypted. Secrets required by the open source programming code of the application are encrypted in TrustedDictionary.
摘要翻译：受信任的Java虚拟机提供了一种支持防篡改应用程序的方法，确保应用程序的完整性及其密钥（如密钥）。受信任的Java虚拟机验证Java应用程序的完整性，防止Java应用程序的调试，并允许Java应用程序安全地存储和检索秘密。受信任的Java虚拟机环境包括TrustedDictionary，TrustedBundle，用于加密和解密字节代码的可选加密方法，以及底层可信Java虚拟机。加密的TrustedDictionary保护数据，而TrustedBundle保护编程代码，允许应用程序存储秘密数据和安全计数器。应用程序设计人员可以将TrustedBundle访问限制为应用程序设计程序明确导出的那些接口。可以可选地加密开源代码。应用程序的开源编程代码所需的秘密在TrustedDictionary中加密。

6. 发明授权

US07516331B2 Tamper-resistant trusted java virtual machine and method of using the same 失效
标题翻译：防篡改的可信java虚拟机和使用方法相同
公开(公告)号：US07516331B2
公开(公告)日：2009-04-07
申请号：US10723725
申请日：2003-11-26
申请人： Hongxia Jin , Donald E. Leake, Jr. , Jeffrey B. Lotspiech , Sigfredo I. Nin , Wilfred E. Plouffe
发明人： Hongxia Jin , Donald E. Leake, Jr. , Jeffrey B. Lotspiech , Sigfredo I. Nin , Wilfred E. Plouffe
IPC分类号： H04L9/32
CPC分类号： G06F21/6218 , G06F21/14 , G06F21/51
摘要： A trusted Java virtual machine provides a method for supporting tamper-resistant applications, ensuring the integrity of an application and its secrets such as keys. The trusted Java virtual machine verifies the integrity of the Java application, prevents debugging of the Java application, and allows the Java application to securely store and retrieve secrets. The trusted Java virtual machine environment comprises a TrustedDictionary, a TrustedBundle, an optional encryption method for encrypting and decrypting byte codes, and an underlying trusted Java virtual machine. The encrypted TrustedDictionary protects data while the TrustedBundle protects programming code, allowing applications to store secret data and secure counters. The application designer can restrict TrustedBundle access to only those interfaces that the application designer explicitly exports. The open source code may optionally be encrypted. Secrets required by the open source programming code of the application are encrypted in TrustedDictionary.
摘要翻译：受信任的Java虚拟机提供了一种支持防篡改应用程序的方法，确保应用程序的完整性及其密钥（如密钥）。受信任的Java虚拟机验证Java应用程序的完整性，防止Java应用程序的调试，并允许Java应用程序安全地存储和检索秘密。受信任的Java虚拟机环境包括TrustedDictionary，TrustedBundle，用于加密和解密字节代码的可选加密方法，以及底层可信Java虚拟机。加密的TrustedDictionary保护数据，而TrustedBundle保护编程代码，允许应用程序存储秘密数据和安全计数器。应用程序设计人员可以将TrustedBundle访问限制为应用程序设计程序明确导出的那些接口。可以可选地加密开源代码。应用程序的开源编程代码所需的秘密在TrustedDictionary中加密。

7. 发明授权

US08656178B2 Method, system and program product for modifying content usage conditions during content distribution 有权
标题翻译：用于在内容分发期间修改内容使用条件的方法，系统和程序产品
公开(公告)号：US08656178B2
公开(公告)日：2014-02-18
申请号：US10125714
申请日：2002-04-18
申请人： Eric M. Foster , Jeffrey B. Lotspiech , Dalit Naor , Sigfredo I. Nin , Florian Pestoni , Wilfred E. Plouffe, Jr. , Frank A. Schaffa
发明人： Eric M. Foster , Jeffrey B. Lotspiech , Dalit Naor , Sigfredo I. Nin , Florian Pestoni , Wilfred E. Plouffe, Jr. , Frank A. Schaffa
IPC分类号： H04L9/32
CPC分类号： H04L63/10 , G06F21/10 , G06Q30/06 , G11B20/00362 , H04L63/12 , H04L2463/101
摘要： The present invention provides a method, system and program product for modifying content usage conditions during broadcast content distribution. Specifically, the present invention allows protected (e.g., encrypted, secured, etc.) content to be received along with content usage conditions, an encrypted combination of the content usage conditions and a title key (e.g., a MAC), and a key management block. Using the key management block, a key encrypting key can be determined for decrypting the combination. Once the combination is decrypted, the content usage conditions can be modified (e.g., edited, added to, etc.).
摘要翻译：本发明提供一种用于在广播内容分发期间修改内容使用条件的方法，系统和程序产品。具体地，本发明允许与内容使用条件，内容使用条件和标题密钥（例如，MAC）的加密组合以及密钥管理一起接收受保护（例如，加密，安全等）内容块。使用密钥管理块，可以确定密钥加密密钥来解密组合。一旦组合被解密，内容使用条件可以被修改（例如，编辑，添加到等等）。

8. 发明申请

US20090138731A1 Tamper-Resistant Trusted JAVA Virtual Machine And Method Of Using The Same 有权
标题翻译：防篡改可信JAVA虚拟机及其使用方法
公开(公告)号：US20090138731A1
公开(公告)日：2009-05-28
申请号：US12363876
申请日：2009-02-02
申请人： Hongxia Jin , Donald E. Leake, JR. , Jeffrey B. Lotspiech , Sigfredo I. Nin , Wilfred E. Plouffe
发明人： Hongxia Jin , Donald E. Leake, JR. , Jeffrey B. Lotspiech , Sigfredo I. Nin , Wilfred E. Plouffe
IPC分类号： G06F21/22
CPC分类号： G06F21/6218 , G06F21/14 , G06F21/51
摘要： A trusted Java virtual machine provides a method for supporting tamper-resistant applications, ensuring the integrity of an application and its secrets such as keys. The trusted Java virtual machine verifies the integrity of the Java application, prevents debugging of the Java application, and allows the Java application to securely store and retrieve secrets. The trusted Java virtual machine environment comprises a TrustedDictionary, a TrustedBundle, an optional encryption method for encrypting and decrypting byte codes, and an underlying trusted Java virtual machine. The encrypted TrustedDictionary protects data while the TrustedBundle protects programming code, allowing applications to store secret data and secure counters. The application designer can restrict TrustedBundle access to only those interfaces that the application designer explicitly exports. The open source code may optionally be encrypted. Secrets required by the open source programming code of the application are encrypted in TrustedDictionary.
摘要翻译：受信任的Java虚拟机提供了一种支持防篡改应用程序的方法，确保应用程序的完整性及其密钥（如密钥）。受信任的Java虚拟机验证Java应用程序的完整性，防止Java应用程序的调试，并允许Java应用程序安全地存储和检索秘密。受信任的Java虚拟机环境包括TrustedDictionary，TrustedBundle，用于加密和解密字节代码的可选加密方法，以及底层可信Java虚拟机。加密的TrustedDictionary保护数据，而TrustedBundle保护编程代码，允许应用程序存储秘密数据和安全计数器。应用程序设计人员可以将TrustedBundle访问限制为应用程序设计程序明确导出的那些接口。可以可选地加密开源代码。应用程序的开源编程代码所需的秘密在TrustedDictionary中加密。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式