会员体验
专利管家(专利管理)
工作空间(专利管理)
风险监控(情报监控)
数据分析(专利分析)
侵权分析(诉讼无效)
联系我们
交流群
官方交流:
QQ群: 891211   
微信请扫码    >>>
现在联系顾问~
热词
    • 11. 发明申请
    • TWO-WAY ACCESS AUTHENTICATION METHOD
    • 两路访问认证方法
    • US20100250952A1
    • 2010-09-30
    • US12741982
    • 2008-11-07
    • Liaojun PangJun CaoManxia TieZhenhai Huang
    • Liaojun PangJun CaoManxia TieZhenhai Huang
    • H04L9/32G06F21/00
    • H04L9/3247G06F21/445G06Q20/3823G06Q20/388G06Q20/4097H04L9/0847H04L9/321H04L9/3271H04L63/0869H04L2209/80H04W12/06
    • A two-way access authentication method comprises: According to the system parameters pre-established by the third entity, the first entity sends the access authentication request packet to the second entity, then the second entity validates whether the signature of first entity is correct, and if yes, the share master key of second entity is calculated; the second entity generates the access authentication response packet and sends it to the first entity, then the first entity validates whether the signature of access authentication response packet and the message integrity check code are correct; if yes, the share master key of first entity is calculated; the first entity sends the access authentication acknowledge packet to the second entity, then the second entity validates the integrity of the access authentication acknowledge packet, if passing the validation, the share master key of first entity is consistent with that of the second entity, and the access authentication is achieved. For improving the security, after received the access authentication request packet sent by the first entity, the second entity may perform the identity validity validation and generates the access authentication response packet after passing the validation.
    • 双向接入认证方法包括:根据第三实体预先建立的系统参数,第一实体向第二实体发送接入认证请求报文,第二实体验证第一实体的签名是否正确, 如果是,则计算第二实体的共享主密钥; 第二实体生成接入认证响应报文并将其发送给第一实体,则第一实体验证接入认证响应报文的签名和消息完整性检查码是否正确; 如果是,则计算第一实体的共享主密钥; 第一实体向第二实体发送接入认证确认分组,则第二实体验证接入认证确认分组的完整性,如果通过验证,则第一实体的共享主密钥与第二实体的共享主密钥一致, 实现了访问认证。 为了提高安全性,在接收到由第一实体发送的接入认证请求分组之后,第二实体可以在通过验证之后执行身份有效性验证并生成接入认证响应分组。
    • 14. 发明申请
    • KEY MANAGEMENT METHOD
    • 关键管理方法
    • US20100257361A1
    • 2010-10-07
    • US12743168
    • 2008-11-14
    • Manxia TieJun CaoLiaojun PangXiaolong LaiZhenhai Huang
    • Manxia TieJun CaoLiaojun PangXiaolong LaiZhenhai Huang
    • H04L9/32
    • H04L63/06H04L9/0844H04L9/3236H04L9/3273H04L63/1458H04W12/04H04W12/12
    • A key management method, is an enhanced RSNA four-way Handshake protocol. Its preceding two way Handshake processes comprise: 1), an authenticator sending a new message 1 which is added a Key Negotiation IDentifier (KNID) and a Message Integrity Code (MIC) based on the intrinsic definition content of the message 1 to an supplicant; (2), after the supplicant receives the new message 1, checking whether the MIC therein is correct; if no, the supplicant discarding the received new message 1; if yes, checking the new message 2, if the checking is successful, sending a message 2 to the authenticator, the process of checking the new message is the same as checking process for the message 1 defined in the IEEE 802.11i-2004 standard document. The method solves the DoS attack problem of the key management protocol in the existing RSNA security mechanism.
    • 一种密钥管理方法,是增强型RSNA四路握手协议。 其前两种握手过程包括:1)认证者发送新消息1,该新消息1基于消息1的内在定义内容向请求方添加了密钥协商标识符(KNID)和消息完整性代码(MIC); (2),在请求者收到新消息1后,检查其中的MIC是否正确; 如果不是,请求者丢弃接收到的新消息1; 如果是,检查新消息2,如果检查成功,则向认证者发送消息2,检查新消息的过程与IEEE 802.11i-2004标准文档中定义的消息1的检查过程相同 。 该方法解决了现有RSNA安全机制中密钥管理协议的DoS攻击问题。
    • 15. 发明授权
    • Method of one-way access authentication
    • 单向访问认证方法
    • US08578164B2
    • 2013-11-05
    • US12741567
    • 2008-11-07
    • Liaojun PangJun CaoManxia TieZhenhai Huang
    • Liaojun PangJun CaoManxia TieZhenhai Huang
    • G06F21/00
    • H04L9/3242H04L9/0847H04L9/321H04L9/3271H04L2209/80
    • A method of one-way access authentication is disclosed. The method includes the following steps. According to system parameters set up by a third entity, a second entity sends an authentication request and key distribution grouping message to a first entity. The first entity verifies the validity of the message sent from the second entity, and if it is valid, the first entity generates authentication and key response grouping message and sends it to the second entity, which verifies the validity of the message sent from the first entity, and if it is valid, the second entity generates the authentication and key confirmation grouping message and sends the message to the first entity. The first entity verifies the validity of the authentication and key conformation grouping message, and if it is valid, the authentication succeeds and the key is regarded as the master key of agreement.
    • 公开了一种单向接入认证方法。 该方法包括以下步骤。 根据由第三实体建立的系统参数,第二实体向第一实体发送认证请求和密钥分发分组消息。 第一实体验证从第二实体发送的消息的有效性,并且如果其有效,则第一实体生成认证和密钥响应分组消息并将其发送到第二实体,其验证从第一实体发送的消息的有效性 实体,如果有效,则第二实体生成认证和密钥确认分组消息,并将消息发送到第一实体。 第一个实体验证认证和密钥组合分组消息的有效性,如果认证成功,则认证成功,密钥被视为协商的主密钥。
    • 17. 发明授权
    • Entity bi-directional identificator method and system based on trustable third party
    • 基于可信第三方的实体双向识别方法和系统
    • US08356179B2
    • 2013-01-15
    • US12739678
    • 2008-10-23
    • Manxia TieJun CaoXiaolong LaiLiaojun PangZhenhai Huang
    • Manxia TieJun CaoXiaolong LaiLiaojun PangZhenhai Huang
    • G06F7/04G06F15/16G06F17/30H04L29/06H04L9/32
    • H04L63/0869H04L9/3213H04L9/3273H04L63/0823H04L63/126
    • An entity bi-directional identification method and system based on a trustable third party thereof are provided. The system comprises a first entity, which is for sending a first message to a second entity, sending a third message to a third entity after receiving a second message sent by the second entity, verifying the fourth message after receiving a fourth message sent by the third entity, sending a fifth message to the second entity after the verification is finished; the second entity, which is for receiving the first message sent by the first entity, sending the second message to the first entity, verifying the fifth message after receiving the fifth message sent by the first entity; the third entity, which is for receiving the third message sent by the first entity, checking if the first entity and the second entity are legal, implementing the pretreatment according to the checking result, sending the first entity the fourth message after the treatment is finished.
    • 提供了一种基于可信任第三方的实体双向识别方法和系统。 该系统包括用于向第二实体发送第一消息的第一实体,在接收到由第二实体发送的第二消息之后向第三实体发送第三消息,在接收到由第二实体发送的第四消息之后验证第四消息 第三实体,在验证完成之后向第二实体发送第五消息; 所述第二实体用于接收由所述第一实体发送的所述第一消息,向所述第一实体发送所述第二消息,在接收到由所述第一实体发送的所述第五消息之后验证所述第五消息; 用于接收第一实体发送的第三消息的第三实体,检查第一实体和第二实体是否合法,根据检查结果实现预处理,在处理完成之后发送第一实体第四消息 。
    • 18. 发明申请
    • ENTITY BI-DIRECTIONAL IDENTIFICATOR METHOD AND SYSTEM BASED ON TRUSTABLE THIRD PARTY
    • 基于可信赖第三方的实体双向识别方法和系统
    • US20100306839A1
    • 2010-12-02
    • US12739678
    • 2008-10-23
    • Manxia TieJun CaoXiaolong LaiLiaojun PangZhenhai Huang
    • Manxia TieJun CaoXiaolong LaiLiaojun PangZhenhai Huang
    • H04L9/32G06F21/00
    • H04L63/0869H04L9/3213H04L9/3273H04L63/0823H04L63/126
    • An entity bi-directional identification method and system based on a trustable third party thereof are provided. The system comprises a first entity, which is for sending a first message to a second entity, sending a third message to a third entity after receiving a second message sent by the second entity, verifying the fourth message after receiving a fourth message sent by the third entity, sending a fifth message to the second entity after the verification is finished; the second entity, which is for receiving the first message sent by the first entity, sending the second message to the first entity, verifying the fifth message after receiving the fifth message sent by the first entity; the third entity, which is for receiving the third message sent by the first entity, checking if the first entity and the second entity are legal, implementing the pretreatment according to the checking result, sending the first entity the fourth message after the treatment is finished.
    • 提供了一种基于可信任第三方的实体双向识别方法和系统。 该系统包括用于向第二实体发送第一消息的第一实体,在接收到由第二实体发送的第二消息之后向第三实体发送第三消息,在接收到由第二实体发送的第四消息之后验证第四消息 第三实体,在验证完成之后向第二实体发送第五消息; 所述第二实体用于接收由所述第一实体发送的所述第一消息,向所述第一实体发送所述第二消息,在接收到由所述第一实体发送的所述第五消息之后验证所述第五消息; 用于接收第一实体发送的第三消息的第三实体,检查第一实体和第二实体是否合法,根据检查结果实现预处理,在处理完成之后发送第一实体第四消息 。