专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

11. 发明授权

US08345871B2 Fast authentication over slow channels 有权
标题翻译：缓慢通道快速认证
公开(公告)号：US08345871B2
公开(公告)日：2013-01-01
申请号：US11686771
申请日：2007-03-15
申请人： Dirk Balfanz , Philippe J. Golle , Diana K. Smetters , Glenn E. Durfee
发明人： Dirk Balfanz , Philippe J. Golle , Diana K. Smetters , Glenn E. Durfee
IPC分类号： H04K1/00
CPC分类号： H04L9/3236 , H04L9/3263 , H04L63/061 , H04L63/12 , H04L63/18
摘要： A method of providing secure communications over a network includes receiving, at a receiving computer, a public key of a sending computer, and a hash of a sending random number over a first communication channel, transmitting, from the receiving computer, a public key of the receiving computer and a receiving random number provided by the receiving computer over the first communication channel, and receiving, at the receiving computer, the sending random number provided by the sending computer over the first communication channel.
摘要翻译：一种通过网络提供安全通信的方法包括在接收计算机处接收发送计算机的公共密钥以及在第一通信信道上发送随机数的散列，从接收计算机发送公共密钥所述接收计算机和由所述接收计算机通过所述第一通信信道提供的接收随机数，以及在所述接收计算机处接收由所述发送计算机通过所述第一通信信道提供的发送随机数。

12. 发明授权

US07725928B2 System and method for establishing temporary and permanent credentials for secure online commerce 有权
标题翻译：建立用于安全在线商务的临时和永久证书的系统和方法
公开(公告)号：US07725928B2
公开(公告)日：2010-05-25
申请号：US11293402
申请日：2005-12-02
申请人： Glenn E. Durfee , Dirk Balfanz , Diana K. Smetters
发明人： Glenn E. Durfee , Dirk Balfanz , Diana K. Smetters
IPC分类号： H04L9/00
CPC分类号： G06F21/34 , G06F21/33 , G06Q20/12 , G06Q30/0603 , H04L9/321 , H04L9/3234 , H04L9/3265 , H04L9/3268 , H04L63/0823 , H04L63/0853 , H04L2209/56
摘要： One embodiment of the present invention provides a system for establishing temporary and permanent credentials for secure remote data access. The system includes a temporary smart card configured to provide a temporary credential for a first device, thereby providing the first device with temporary secure access to a remote data source when the temporary smart card is used with the first device. Additionally, the system includes an enrollment smart card configured to provide a permanent credential for a second device, thereby providing the second device with permanent secure access to the remote data source without presence of the enrollment smart card or the temporary smart card.
摘要翻译：本发明的一个实施例提供了一种用于建立用于安全远程数据访问的临时和永久凭证的系统。该系统包括被配置为为第一设备提供临时证书的临时智能卡，从而当临时智能卡与第一设备一起使用时，向第一设备提供对远程数据源的临时安全访问。此外，该系统包括被配置为为第二设备提供永久凭证的注册智能卡，从而在不存在注册智能卡或临时智能卡的情况下向第二设备提供对远程数据源的永久安全访问。

13. 发明授权

US07552322B2 Using a portable security token to facilitate public key certification for devices in a network 有权
标题翻译：使用便携式安全令牌来促进网络中设备的公钥认证
公开(公告)号：US07552322B2
公开(公告)日：2009-06-23
申请号：US10877477
申请日：2004-06-24
申请人： Dirk Balfanz , Glenn E. Durfee , Diana K. Smetters
发明人： Dirk Balfanz , Glenn E. Durfee , Diana K. Smetters
IPC分类号： H04L9/00
CPC分类号： G06F21/33 , G06F21/35 , G06F2221/2111 , G06F2221/2115 , G06F2221/2129
摘要： One embodiment of the present invention provides a system that uses a portable security token to facilitate public key certification for a target device in a network. During system operation, the portable security token is located in close physical proximity to the target device to allow the portable security token to communicate with the target device through a location-limited communication channel. During this communication, the portable security token receives an authenticator for the target device, and forms a ticket by digitally signing the authenticator with a key previously agreed upon by the portable security token and a certification authority (CA). Next, the portable security token sends the ticket to the target device, whereby the target device can subsequently present the ticket to the CA to prove that the target device is authorized to receive a credential from the CA.
摘要翻译：本发明的一个实施例提供了一种使用便携式安全令牌来促进网络中的目标设备的公钥认证的系统。在系统操作期间，便携式安全令牌位于与目标设备紧密物理接近处，以允许便携式安全令牌通过位置限制通信信道与目标设备进行通信。在该通信期间，便携式安全令牌接收用于目标设备的认证器，并通过使用便携式安全令牌和认证机构（CA）先前约定的密钥对认证器进行数字签名来形成机票。接下来，便携式安全令牌将票据发送到目标设备，由此目标设备可以随后向CA呈现票据，以证明目标设备被授权从CA接收证书。

14. 发明授权

US07454619B2 Method, apparatus, and program product for securely presenting situation information 有权
标题翻译：方法，装置和程序产品，用于安全地呈现情况信息
公开(公告)号：US07454619B2
公开(公告)日：2008-11-18
申请号：US10656439
申请日：2003-09-05
申请人： Diana K. Smetters , Dirk Balfanz , Glenn E. Durfee , Rebecca E. Grinter , Paul J. Stewart , Hao-Chi Wong
发明人： Diana K. Smetters , Dirk Balfanz , Glenn E. Durfee , Rebecca E. Grinter , Paul J. Stewart , Hao-Chi Wong
IPC分类号： H04L9/00
CPC分类号： H04L9/00
摘要： We present technology that allows layman computer users to simply create, provision, and maintain secured infrastructure—an instant PKI. This technology can be used in a wide variety of applications including wired and wireless networks, secure sensor networks (such as medical networks), emergency alert networks, as well as simply and automatically provisioning network devices whether secure or not.
摘要翻译：我们提供的技术允许外行电脑用户简单地创建，配置和维护安全的基础设施 - 即时PKI。该技术可用于各种应用，包括有线和无线网络，安全传感器网络（例如医疗网络），紧急警报网络，以及简单和自动地为网络设备提供安全性。

15. 发明授权

US08515389B2 Method, apparatus, and program product for provisioning secure wireless sensors 有权
标题翻译：用于提供安全无线传感器的方法，装置和程序产品
公开(公告)号：US08515389B2
公开(公告)日：2013-08-20
申请号：US13026665
申请日：2011-02-14
申请人： Diana K. Smetters , Dirk Balfanz , Glenn E. Durfee , Rebecca E. Grinter , Paul J. Stewart , Hao-Chi Wong
发明人： Diana K. Smetters , Dirk Balfanz , Glenn E. Durfee , Rebecca E. Grinter , Paul J. Stewart , Hao-Chi Wong
IPC分类号： H04M1/66
CPC分类号： H04L63/062 , A61B5/0002 , A61B5/117 , G06F19/00 , G08C17/00 , H04L63/0442 , H04L63/0492 , H04L63/18 , H04W12/04 , H04W76/10 , H04W84/18
摘要： We present technology that allows layman computer users to simply create, provision, and maintain secured infrastructure—an instant PKI. This technology can be used in a wide variety of applications including wired and wireless networks, secure sensor networks (such as medical networks), emergency alert networks, as well as simply and automatically provisioning network devices whether secure or not.
摘要翻译：我们提供的技术允许外行电脑用户简单地创建，配置和维护安全的基础设施 - 即时PKI。该技术可用于各种应用，包括有线和无线网络，安全传感器网络（例如医疗网络），紧急警报网络，以及简单和自动地为网络设备提供安全性。

16. 发明授权

US08023654B2 Securing multimedia network communication 有权
标题翻译：保护多媒体网络通信
公开(公告)号：US08023654B2
公开(公告)日：2011-09-20
申请号：US11612001
申请日：2006-12-18
申请人： Paul J. Stewart , Dirk Balfanz , Glenn E. Durfee , Diana K. Smetters
发明人： Paul J. Stewart , Dirk Balfanz , Glenn E. Durfee , Diana K. Smetters
IPC分类号： H04L29/00
CPC分类号： H04K1/00 , H04L9/3215 , H04L63/14 , H04L63/1466 , H04M7/123
摘要： A method for securing human to human communication over a network includes receiving, by a first computer, an incoming authenticated data stream from a second computer over a first communication channel, the incoming authenticated data stream having been computed using an incoming digital experiential data stream and a first imprint, and extracting the first imprint from the incoming authenticated data stream. The incoming authenticated data stream is then presented for sensory experience by a human. An outgoing digital experiential data stream is then input and the method computes a second imprint associated with the first computer and computes an outgoing authenticated data stream using the outgoing digital experiential data stream and the second imprint. A second communication channel is then secured from the first computer to the second computer using the first imprint, the second communication channel suitable for sending the outgoing authenticated data stream to the second computer.
摘要翻译：一种通过网络确保人类通信的方法包括由第一计算机通过第一通信信道从第二计算机接收传入的经认证的数据流，已经使用输入的数字体验数据流计算了传入的认证数据流，第一印记，并且从传入的认证数据流中提取第一印记。然后将传入的认证数据流呈现给人类的感官体验。然后输入输出的数字经验数据流，并且该方法计算与第一计算机相关联的第二印记，并使用输出数字体验数据流和第二印记计算输出认证数据流。然后使用第一印记从第一计算机将第二通信信道保护到第二计算机，第二通信信道适于将出站认证数据流发送到第二计算机。

17. 发明授权

US07793110B2 Posture-based data protection 有权
标题翻译：基于姿态的数据保护
公开(公告)号：US07793110B2
公开(公告)日：2010-09-07
申请号：US11439817
申请日：2006-05-24
申请人： Glenn E. Durfee , Dirk Balfanz , Diana K. Smetters , Paul J. Stewart
发明人： Glenn E. Durfee , Dirk Balfanz , Diana K. Smetters , Paul J. Stewart
IPC分类号： G06F12/14
CPC分类号： G06F21/6209 , G06F21/577 , G06F2221/2143
摘要： One embodiment of the present invention provides a system that facilitates access to encrypted data on a computing device based on a security-posture of the computing device. During operation, the system assesses the security-posture of the computing device upon which the encrypted data is stored. If the assessed security-posture meets specified criteria, the system provides the computing device with a key which enables the computing device to access the encrypted data.
摘要翻译：本发明的一个实施例提供了一种系统，其基于计算设备的安全姿势便于访问计算设备上的加密数据。在操作期间，系统评估存储加密数据的计算设备的安全状态。如果评估的安全性状态满足指定的标准，则系统向计算设备提供使得计算设备能够访问加密数据的密钥。

18. 发明授权

US07426271B2 System and method for establishing secondary channels 有权
标题翻译：建立二级渠道的制度和方法
公开(公告)号：US07426271B2
公开(公告)日：2008-09-16
申请号：US10424191
申请日：2003-04-25
申请人： Kenneth W. Conley , Dirk Balfanz , Bryan A. Pendleton , Diana K. Smetters , Glenn E. Durfee
发明人： Kenneth W. Conley , Dirk Balfanz , Bryan A. Pendleton , Diana K. Smetters , Glenn E. Durfee
IPC分类号： H04K1/00 , H04L9/00
CPC分类号： H04L63/061 , H04L63/18
摘要： A method for establishing a secondary communication channel between at least two computing devices over a network medium through use of a primary channel connects a first computing device with a first telephonic unit and a second computing device with a second telephonic unit. If the two telephonic units are in communication with each other over a primary channel, and communication channels are established between the computing devices and their respective telephonic units, then the first computing device transmits its location information to the second computing device over the primary channel. A connection is then established between the second computing device and the first computing device over a secondary communication channel.
摘要翻译：通过使用主信道在网络介质上在至少两个计算设备之间建立辅助通信信道的方法将第一计算设备与第一电话单元和第二计算设备与第二电话单元相连接。如果两个电话单元在主信道上彼此通信，并且在计算设备和它们各自的电话单元之间建立通信信道，则第一计算设备通过主信道将其位置信息发送到第二计算设备。然后通过辅助通信信道在第二计算设备和第一计算设备之间建立连接。

19. 发明授权

US07130998B2 Using a portable security token to facilitate cross-certification between certification authorities 有权
标题翻译：使用便携式安全令牌来促进认证机构之间的交叉认证
公开(公告)号：US07130998B2
公开(公告)日：2006-10-31
申请号：US10966749
申请日：2004-10-14
申请人： Dirk Balfanz , Glenn E. Durfee , Diana K. Smetters
发明人： Dirk Balfanz , Glenn E. Durfee , Diana K. Smetters
IPC分类号： H04L9/00
CPC分类号： G07F7/1008 , G06Q20/02 , G06Q20/341 , G06Q20/3829 , G06Q20/40975 , G07F7/1016 , H04L9/007 , H04L9/3234 , H04L9/3268
摘要： One embodiment of the present invention provides a system that uses a portable security token (PST) to facilitate cross-certification between a first certification authority (CA) and a second CA, wherein the first CA and associated subscriber devices constitute a first public-key infrastructure (PKI) domain, and wherein the second CA and associated subscriber devices constitute a second PKI domain. During operation, the system uses the PST to transfer certification information between the first CA and the second CA, wherein the PST communicates with the first CA and the second CA through a location-limited communication channel. Next, the system uses the certification information to issue a cross-certificate to the first CA. Note that the cross-certificate is signed by the second CA. Finally, the system propagates the cross-certificate from the first CA to the associated subscriber devices in the first PKI domain, thereby allowing the associated subscriber devices in the first PKI domain to authenticate themselves to the devices in the second PKI domain.
摘要翻译：本发明的一个实施例提供了一种使用便携式安全令牌（PST）来促进第一认证机构（CA）和第二CA之间的交叉认证的系统，其中第一CA和相关联的订户设备构成第一公钥基础设施（PKI）域，并且其中所述第二CA和相关联的订户设备构成第二PKI域。在操作期间，系统使用PST在第一CA和第二CA之间传送认证信息，其中PST通过位置限制通信信道与第一CA和第二CA通信。接下来，系统使用认证信息向第一CA发布交叉证书。请注意，交叉证书由第二个CA签署。最后，系统将交叉证书从第一CA传播到第一PKI域中的相关联的订户设备，从而允许第一PKI域中的相关联的订户设备向第二PKI域中的设备认证自身。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式