专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

21. 发明申请

US20120278623A1 METHOD AND SYSTEM FOR SECRET COMMUNICATION BETWEEN NODES 有权
标题翻译： NODES之间的秘密通信的方法和系统
公开(公告)号：US20120278623A1
公开(公告)日：2012-11-01
申请号：US13516967
申请日：2010-06-02
申请人： Manxia Tie , Jun Cao , Oin Li , Li Ge , Zhenhai Huang
发明人： Manxia Tie , Jun Cao , Oin Li , Li Ge , Zhenhai Huang
IPC分类号： H04L9/32 , H04L12/56
CPC分类号： H04L63/0464 , H04L9/0827 , H04L45/26 , H04L63/0435 , H04L63/0471 , H04L63/062 , H04L63/162
摘要： The present invention discloses a method and system for secret communication between nodes in a wired Local Area Network (LAN). The method of secret communication between nodes in the wired LAN includes the following steps: 1) a sharing key is established; 2) the route probe is exchanged; 3) the data communication is classified; 4) the secret communication is processed among the nodes. According to the different communication situations among the nodes, the method of secret communication between nodes provided in the present invention can process the classification and select an appropriate secret communication strategy; compared with per-hop encryption, the calculation load of the exchange equipment is reduced, and the transmission delay of data packets is shortened; compared with the method that inter-station keys are established in pairs of nodes in order to protect the communication secret, the key number is reduced, and the key management is simplified.
摘要翻译：本发明公开了一种用于有线局域网（LAN）中的节点之间的秘密通信的方法和系统。有线局域网节点之间的秘密通信方法包括以下步骤：1）建立共享密钥; 2）交换路由探测器; 3）数据通信分类; 4）节点之间处理秘密通信。根据节点之间不同的通信情况，本发明提供的节点之间的秘密通信方法可以处理分类并选择适当的秘密通信策略; 与每跳加密相比，交换设备的计算负载减少，数据包的传输延迟缩短; 与站间密钥建立成对节点的方法相比，为了保护通信秘密，密钥号码减少，密钥管理简化。

22. 发明申请

US20120198240A1 METHOD AND SYSTEM FOR ENTITY PUBLIC KEY ACQUIRING, CERTIFICATE VALIDATION AND AUTHENTICATION BY INTRODUCING AN ONLINE CREDIBLE THIRD PARTY 有权
标题翻译：通过引入在线可信第三方的实体公共关键获取方法和系统，证书的验证和认证
公开(公告)号：US20120198240A1
公开(公告)日：2012-08-02
申请号：US13499126
申请日：2009-12-14
申请人： Manxia Tie , Jun Cao , Zhenhai Huang , Xiaolong Lai
发明人： Manxia Tie , Jun Cao , Zhenhai Huang , Xiaolong Lai
IPC分类号： H04L9/30
CPC分类号： H04L9/3213 , H04L9/3268 , H04L63/0823
摘要： A method and system for entity public key acquiring, certificate validation and authentication by introducing an online credible third party is disclosed. The method includes the following steps: 1) an entity B transmits a message 1 to an entity A; 2) the entity A transmits a message 2 to a credible third party TP after receiving the message 1; 3) the credible third party TP determines the response RepTA after receiving the message 2; 4) the credible third party TP returns a message 3 to the entity A; 5) the entity A returns a message 4 to the entity B after receiving the message 3; 6) the entity B receives the message 4; 7) the entity B transmits a message 5 to the entity A; 8) the entity A receives the message 5. The present invention can achieve public key acquisition, certificate validation and authentication of the entity by integrating them in one protocol, thereby facilitate the execution efficiency and the effect of the protocol and facilitate the combination with various public key acquisition and public key certificate state enquiry protocols. The present invention suits with a “user-access point-server” access network structure to meet the authentication requirement of the access network.
摘要翻译：公开了通过引入在线可信第三方实体公钥获取，证书验证和认证的方法和系统。该方法包括以下步骤：1）实体B向实体A发送消息1; 2）实体A在接收到消息1之后向可信第三方TP发送消息2; 3）可靠的第三方TP确定收到消息后的回复RepTA 2; 4）可信第三方TP向实体A返回消息3; 5）实体A在接收到消息3之后向实体B返回消息4; 6）实体B接收消息4; 7）实体B向实体A发送消息5; 8）实体A接收消息5.本发明可以通过在一个协议中集成实现公钥获取，证书验证和认证，从而促进协议的执行效率和效果，并促进与各种协议的组合公开密钥获取和公钥证书状态查询协议。本发明适用于“用户接入点 - 服务器”接入网络结构，以满足接入网络的认证要求。

23. 发明授权

US08230220B2 Method for realizing trusted network management 有权
标题翻译：实现可信网络管理的方法
公开(公告)号：US08230220B2
公开(公告)日：2012-07-24
申请号：US12631491
申请日：2009-12-04
申请人： Yuelei Xiao , Jun Cao , Xiaolong Lai , Zhenhai Huang
发明人： Yuelei Xiao , Jun Cao , Xiaolong Lai , Zhenhai Huang
IPC分类号： H04L29/06
CPC分类号： H04L63/20
摘要： A method for realizing trusted network management is provided. A trusted management agent resides on a managed host, and a trusted management system resides on a management host. The trusted management agent and the trusted management system are software modules, which are both based on a trusted computing platform and signed after being authenticated by a trusted third party of the trusted management agent and the trusted management system. Trusted platform modules of the managed host and the management host can perform integrity measurement, storage, and report for the trusted management agent and the trusted management system. Therefore, the managed host and the management host can ensure that the trusted management agent and the trusted management system are trustworthy. Then, the trusted management agent and the trusted management system execute a network management function, thus realizing the trusted network management. Therefore, the technical problem in the prior art that the network management security cannot be ensured due to the mutual attack between an agent, a host where the agent resides, and a manager system is solved, and trusted network management is realized.
摘要翻译：提供了一种实现可信网络管理的方法。可信管理代理驻留在受管主机上，可管理系统驻留在管理主机上。信任管理代理和信任管理系统是软件模块，它们都是基于可信计算平台，经信任管理代理和可信管理系统的信任第三方认证后进行签名。托管主机和管理主机的可信平台模块可以对可信管理代理和可信管理系统执行完整性测量，存储和报告。因此，托管主机和管理主机可以确保可信管理代理和可信管理系统是值得信赖的。然后，信任管理代理和信任管理系统执行网络管理功能，从而实现可信网络管理。因此，现有技术的技术问题是解决了代理，代理所在的主机与管理者系统之间的相互攻击而不能确保网络管理安全性，并实现了可信网络管理。

24. 发明授权

US08175264B2 Encryption and decryption processing method, system and computer-accessible medium for achieving SMS4 cryptographic procedure 有权
标题翻译：加密和解密处理方法，系统和计算机可访问介质，用于实现SMS4密码过程
公开(公告)号：US08175264B2
公开(公告)日：2012-05-08
申请号：US12281144
申请日：2007-02-27
申请人： Jiayin Lu , Jun Cao , Xiang Yan , Zhenhai Huang
发明人： Jiayin Lu , Jun Cao , Xiang Yan , Zhenhai Huang
IPC分类号： H04K1/00
CPC分类号： G09C1/00 , H04L9/0625 , H04L9/14 , H04L2209/125
摘要： An encryption and decryption processing method, system and computer-accessible medium for achieving SMS4 cryptographic procedure/algorithm can be provided. First, constant arrays can prepared, the external data are input into a data registering unit and the first data conversion is addressed. Secondly, the second data conversion is addressed. Thirdly, the second data conversion is repeated until completing all the prescribed data conversion. Then, the results of repeating encryption and decryption processing are achieved.
摘要翻译：可以提供用于实现SMS4密码过程/算法的加密和解密处理方法，系统和计算机可访问介质。首先，可以准备常数阵列，外部数据被输入到数据注册单元中，并且第一个数据转换被寻址。其次，第二个数据转换被解决。第三，重复第二次数据转换，直到完成所有规定的数据转换。然后，实现重复加密和解密处理的结果。

25. 发明申请

US20120036553A1 METHOD FOR ESTABLISHING TRUSTED NETWORK CONNECT FRAMEWORK OF TRI-ELEMENT PEER AUTHENTICATION 有权
标题翻译：建立三元网络认证网络连接框架的方法
公开(公告)号：US20120036553A1
公开(公告)日：2012-02-09
申请号：US13264683
申请日：2009-12-09
申请人： Yuelei Xiao , Jun Cao , Li Ge , Zhenhai Huang
发明人： Yuelei Xiao , Jun Cao , Li Ge , Zhenhai Huang
IPC分类号： G06F21/20 , H04L29/06 , G06F15/16
CPC分类号： H04L67/104 , G06F21/57 , H04L63/08 , H04L63/0876 , H04L63/105 , H04L63/20
摘要： The present invention provides a method for establishing the trusted network connect framework of tri-element peer authentication. The method includes: the implement of trusted network transport interface (IF-TNT); the implement of authentication policy service interface (IF-APS); the implement of trusted network connect (TNC) client-TNC access point interface (IF-TNCCAP); the implement of evaluation policy service interface (IF-EPS); the implement of integrity measurement collector interface (IF-IMC); the implement of integrity measurement verifier interface (IF-IMV); and the implement of integrity measurement (IF-IM). The embodiments of the present invention can establish the trust of the terminals, implement the trusted network connect of the terminals, implement the trusted authentication among the terminals, implement the trusted management of the terminals, and establish the TNC framework based on tri-element peer authentication (TePA) by defining the interfaces.
摘要翻译：本发明提供了一种建立三元对等认证的可信网络连接框架的方法。该方法包括：实现可信网络传输接口（IF-TNT）; 认证策略服务接口（IF-APS）的实现; 可信网络连接（TNC）客户端 - TNC接入点接口（IF-TNCCAP）的实现; 评估政策服务界面（IF-EPS）的实施; 完整性测量收集器接口（IF-IMC）的实现; 完整性测量验证器接口（IF-IMV）的实现; 和完整性测量（IF-IM）的实施。本发明的实施例可以建立终端的信任，实现终端的可信网络连接，在终端之间实现可信认证，实现终端的可信管理，并建立基于三元对等体的TNC框架认证（TePA）通过定义接口。

26. 发明申请

US20120019132A1 PHOTOMULTIPLIER TUBE 有权
标题翻译：光电管
公开(公告)号：US20120019132A1
公开(公告)日：2012-01-26
申请号：US13259861
申请日：2009-07-20
申请人： Yi fang Wang , Sen Qian , Tian chi Zhao , Jun Cao
发明人： Yi fang Wang , Sen Qian , Tian chi Zhao , Jun Cao
IPC分类号： H01J40/16 , H01J40/02
CPC分类号： H01J43/28
摘要： a photomultiplier tube including a photocathode, an electron multiplier, an electron collector, and a power lead, wherein the photocathode and the electron multiplier are disposed in a sealed transparent vacuum envelope, the electron collector and the power lead are connected with an external circuit outside the vacuum envelope, the photocathode is formed on the entire inner surface of the vacuum envelope, and the electron multiplier is located on the internal center of the vacuum envelope to receive photoelectrons from the photocathode in all directions for electrons multiplication. Because the effective photocathode area is increased, the detection efficiency of unit light-receiving area is improved.
摘要翻译：包括光电阴极，电子倍增器，电子收集器和电源引线的光电倍增管，其中光电阴极和电子倍增器设置在密封的透明真空外壳中，电子收集器和电源引线与外部电路外部连接真空外壳中，在真空外壳的整个内表面上形成光电阴极，并且电子倍增器位于真空外壳的内部中心，以从光电阴极沿着所有方向接收光电子用于电子倍增。由于有效光电面积增加，单位受光面积的检测效率提高。

27. 发明申请

US20110243330A1 AUTHENTICATION ASSOCIATED SUITE DISCOVERY AND NEGOTIATION METHOD 有权
标题翻译：认证相关的套装发现和谈判方法
公开(公告)号：US20110243330A1
公开(公告)日：2011-10-06
申请号：US13133890
申请日：2009-12-08
申请人： Yanan Hu , Jun Cao , Yuelei Xiao , Manxia Tie , Zhenhai Huang , Xiaolong Lai
发明人： Yanan Hu , Jun Cao , Yuelei Xiao , Manxia Tie , Zhenhai Huang , Xiaolong Lai
IPC分类号： H04W12/06 , H04W12/04
CPC分类号： H04W12/04 , H04W12/06
摘要： An authentication associated suite discovery and negotiation method for ultra wide band network. The method includes the following steps of: 1) adding a pairwise temporal key PTK establishment IE and a group temporal key GTK distribution IE in an information element IE list of an initiator and a responder, and setting a corresponding information element identifier ID, and 2) an authentication associated process based on the authentication associated suite discovery and negotiation method. The authentication associated suite discovery and negotiation method for ultra wide band network provided by the present invention can provide the discovery and negotiation functions of a security solution to the network so as to satisfy all kinds of application requirements better when multiple pairwise temporal key PTK establishing plans or multiple group temporal key GTK distributing plans co-exist.
摘要翻译：用于超宽带网络的认证相关套件发现和协商方法。该方法包括以下步骤：1）在发起者和应答者的信息元素IE列表中添加成对的时间密钥PTK建立IE和组时间密钥GTK分布IE，并设置相应的信息元素标识符ID，2 ）基于认证相关套件发现和协商方法的认证关联过程。本发明提供的用于超宽带网络的认证相关套件发现和协商方法可以向网络提供安全解决方案的发现和协商功能，以便在多对成对临时密钥PTK建立计划时更好地满足各种应用需求或多组时态密钥GTK分发计划并存。

28. 发明申请

US20100299519A1 METHOD FOR MANAGING WIRELESS MULTI-HOP NETWORK KEY 有权
标题翻译：无线多路网络密钥管理方法
公开(公告)号：US20100299519A1
公开(公告)日：2010-11-25
申请号：US12864317
申请日：2009-01-21
申请人： Yuelei Xiao , Jun Cao , Xiaolong Lai , Zhenhai Huang
发明人： Yuelei Xiao , Jun Cao , Xiaolong Lai , Zhenhai Huang
IPC分类号： H04L9/00
CPC分类号： H04W12/04 , H04L9/083 , H04L9/0866 , H04L9/0891 , H04L63/061 , H04L2209/80 , H04L2463/061 , H04W84/18
摘要： A method for managing wireless multi-hop network key is applicable to a security application protocol when a WAPI frame method (TePA, an access control method based on the ternary peer-to-peer identification) is applied in a concrete network containing a Wireless Local Area Network, a Wireless Metropolitan Area Network AN and a Wireless Personal Area Network. The key management method of the present invention includes the steps of key generation, key distribution, key storage, key modification and key revocation. The present invention solves the technical problems that the prior pre-share-key based key management method is not suitable for larger networks and the PKI-based key management method is not suitable for wireless multi-hop networks; the public-key system and the ternary structure are adopted, thereby the security and the performance of the wireless multi-hop networks are improved.
摘要翻译：一种用于管理无线多跳网络密钥的方法适用于安全应用协议，当WAPI帧方法（TePA，基于三进制对等体标识的访问控制方法）被应用于包含无线本地区域网络，无线城域网AN和无线个域网。本发明的密钥管理方法包括密钥生成，密钥分配，密钥存储，密钥修改，密钥撤销等步骤。本发明解决了以前的基于共享密钥的密钥管理方法不适用于较大网络的技术问题，而基于PKI的密钥管理方法不适用于无线多跳网络; 采用公钥系统和三元结构，提高无线多跳网络的安全性和性能。

29. 发明申请

US20100268954A1 METHOD OF ONE-WAY ACCESS AUTHENTICATION 有权
标题翻译：单向通信认证方法
公开(公告)号：US20100268954A1
公开(公告)日：2010-10-21
申请号：US12741567
申请日：2008-11-07
申请人： Liaojun Pang , Jun Cao , Manxia Tie , Zhenhai Huang
发明人： Liaojun Pang , Jun Cao , Manxia Tie , Zhenhai Huang
IPC分类号： H04L9/32
CPC分类号： H04L9/3242 , H04L9/0847 , H04L9/321 , H04L9/3271 , H04L2209/80
摘要： A method of one-way access authentication is disclosed. The method includes the following steps. According to system parameters set up by a third entity, a second entity sends an authentication request and key distribution grouping message to a first entity. The first entity verifies the validity of the message sent from the second entity, and if it is valid, the first entity generates authentication and key response grouping message and sends it to the second entity, which verifies the validity of the message sent from the first entity, and if it is valid, the second entity generates the authentication and key confirmation grouping message and sends the message to the first entity. The first entity verifies the validity of the authentication and key conformation grouping message, and if it is valid, the authentication succeeds and the key is regarded as the master key of agreement.
摘要翻译：公开了一种单向接入认证方法。该方法包括以下步骤。根据由第三实体建立的系统参数，第二实体向第一实体发送认证请求和密钥分发分组消息。第一实体验证从第二实体发送的消息的有效性，并且如果其有效，则第一实体生成认证和密钥响应分组消息并将其发送到第二实体，其验证从第一实体发送的消息的有效性实体，如果有效，则第二实体生成认证和密钥确认分组消息，并将消息发送到第一实体。第一个实体验证认证和密钥组合分组消息的有效性，如果认证成功，则认证成功，密钥被视为协商的主密钥。

30. 发明申请

US20100262832A1 ENTITY BIDIRECTIONAL AUTHENTICATION METHOD AND SYSTEM 有权
标题翻译：实体双向认证方法与系统
公开(公告)号：US20100262832A1
公开(公告)日：2010-10-14
申请号：US12808049
申请日：2008-12-09
申请人： Manxia Tie , Jun Cao , Zhenhai Huang , Xiaolong Lai
发明人： Manxia Tie , Jun Cao , Zhenhai Huang , Xiaolong Lai
IPC分类号： H04L9/32
CPC分类号： H04L9/321 , H04L9/3247
摘要： An entity bidirectional authentication method and system, the method involves: the first entity sends the first message; the second entity sends the second message to the credible third party after receiving the said first message; the said credible third party returns the third message after receiving the second message; the said second entity sends the fourth message after receiving the third message and verifying it; the said first entity receives the said fourth message and verifies it, completes the authentication. Compared with the conventional authentication mechanism, the invention defines an on-line retrieval and authentication mechanism of a public key, realizes the centralized management for it, simplifies the operating condition of the protocol, and facilitates the application and implement.
摘要翻译：一种实体双向认证方法和系统，该方法涉及：第一实体发送第一消息; 第二实体在接收到所述第一消息之后将第二消息发送到可信第三方; 所述可信第三方在接收到第二消息后返回第三消息; 所述第二实体在接收到第三消息并验证之后发送第四消息; 所述第一实体接收所述第四消息并对其进行验证，从而完成认证。与常规认证机制相比，本发明定义了公钥的在线检索和认证机制，实现了集中管理，简化了协议的工作状态，便于应用和实现。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式