专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

21. 发明申请

US20060253900A1 Client assisted firewall configuration 审中-公开
标题翻译：客户端辅助防火墙配置
公开(公告)号：US20060253900A1
公开(公告)日：2006-11-09
申请号：US11315394
申请日：2005-12-21
申请人： Michael Paddon , Philip Hawkes , Gregory Rose
发明人： Michael Paddon , Philip Hawkes , Gregory Rose
IPC分类号： G06F15/16
CPC分类号： H04L41/0803 , H04L63/0227 , H04L63/1441 , H04L67/02 , H04L67/04 , H04L67/34
摘要： Embodiments describe techniques in connection with configuring a firewall and/or reducing network traffic. According to an embodiment is a method for configuring a firewall to reduce unwanted network traffic. The method includes executing a web-server and detecting a passive socket has been created. The method also includes establishing contact with a firewall and requesting the firewall to permit flows directed to the passive socket. According to some embodiments, the method can include closing the web-server and destroying the passive socket. The firewall can be contacted with the destroyed passive socket information and can be sent a request to deny flows directed to the destroyed passive socket. If the passive socket is closed, the method can automatically revoke the request to the firewall to permit flows directed to the passive socket.
摘要翻译：实施例描述了与配置防火墙和/或减少网络流量有关的技术。根据一个实施例，一种用于配置防火墙以减少不必要的网络流量的方法。该方法包括执行web服务器并且已经创建检测到被动套接字。该方法还包括建立与防火墙的联系，并请求防火墙允许流向被动插座的流。根据一些实施例，该方法可以包括关闭web服务器并销毁被动插座。可以将防火墙与被破坏的被动套接字信息联系起来，并且可以发送一个请求以拒绝指向被销毁的被动套接字的流。如果被动套接字关闭，该方法可以自动撤销对防火墙的请求，以允许流向被动插座的流。

22. 发明申请

US20060079205A1 Mutual authentication with modified message authentication code 有权
标题翻译：使用修改的消息认证码进行相互认证
公开(公告)号：US20060079205A1
公开(公告)日：2006-04-13
申请号：US11218832
申请日：2005-09-02
申请人： James Semple , Gregory Rose , Michael Paddon , Philip Hawkes
发明人： James Semple , Gregory Rose , Michael Paddon , Philip Hawkes
IPC分类号： H04M1/66
CPC分类号： H04W12/06 , H04L63/0869 , H04L63/123 , H04W12/10
摘要： Methods and devices for instructing a subscriber identity module in a cellular communications network to process non-standard authentication information in a standard manner are disclosed. One embodiment of a method comprises receiving a first message authentication code (MAC) and an authentication management field (AMF) at a subscriber identity module as part of an authentication protocol, calculating a second MAC and determining whether the second MAC is equivalent to the first MAC. If the first and second MAC are not equivalent, the SIM calculates a third MAC and determines whether the first MAC is equivalent to the third MAC, and if so, the subscriber identity module processes the AMF in a predefined or standard manner.
摘要翻译：公开了用于指示蜂窝通信网络中的订户身份模块以标准方式处理非标准认证信息的方法和设备。方法的一个实施例包括在用户身份模块处接收第一消息认证码（MAC）和认证管理字段（AMF），作为认证协议的一部分，计算第二MAC并确定第二MAC是否等同于第一MAC 苹果电脑。如果第一和第二MAC不相等，则SIM计算第三MAC并确定第一MAC是否等于第三MAC，如果是，则订户身份模块以预定义或标准方式处理AMF。

23. 发明申请

US20050100165A1 Method and apparatus for authentication in wireless communications 有权
标题翻译：无线通信认证方法及装置
公开(公告)号：US20050100165A1
公开(公告)日：2005-05-12
申请号：US10944155
申请日：2004-09-16
申请人： Gregory Rose , Michael Paddon , Philip Hawkes , James Semple
发明人： Gregory Rose , Michael Paddon , Philip Hawkes , James Semple
IPC分类号： H04W12/04 , H04L29/06 , H04W12/06 , H04K1/00
CPC分类号： H04W12/06 , H04L63/04 , H04L63/08
摘要： Systems and methods of securing wireless communications between a network and a subscriber station include inserting a marker denoting an encryption type within a random value used for authentication, calculating a first session key and a first response value as a function of the random value, then calculating a second session key and a second response value as a function of the random value, first session key and first response value. The two levels of session keys and response values may be used by upgraded subscriber stations and network access points to prevent attackers from intercepting authentication triplets.
摘要翻译：确保网络和订户站之间的无线通信的系统和方法包括将表示加密类型的标记插入用于认证的随机值中，计算第一会话密钥和作为随机值的函数的第一响应值，然后计算第二会话密钥和作为随机值的函数的第二响应值，第一会话密钥和第一响应值。会话密钥和响应值的两个级别可以由升级的用户站和网络接入点使用，以防止攻击者拦截认证三元组。

24. 发明授权

US08949600B2 Composed message authentication code 有权
标题翻译：组合的消息认证码
公开(公告)号：US08949600B2
公开(公告)日：2015-02-03
申请号：US11681117
申请日：2007-03-01
申请人： Michael Paddon , Adrian Escott , Gregory G. Rose , Philip Hawkes
发明人： Michael Paddon , Adrian Escott , Gregory G. Rose , Philip Hawkes
IPC分类号： H04L29/06 , H04L9/32 , H04W12/10
CPC分类号： H04L63/123 , H04L9/3242 , H04L47/36 , H04L2209/60 , H04W12/10
摘要： Prior to transmission, a message is divided into multiple transmission units. A sub-message authentication code is obtained for each of the transmission units. A composed message authentication code is obtained for the whole message based on the sub-message authentication codes of the multiple transmission units. The multiple transmission units and the composed message authentication code are then transmitted. A receiver of the message receives a plurality of transmission units corresponding to the message. A local sub-message authentication code is calculated by the receiver for each transmission unit. A local composed message authentication code is calculated by the receiver based on the local sub-message authentication codes for the plurality of transmission units. The local composed message authentication code is compared to a received composed message authentication code to determine the integrity and/or authenticity of the received message.
摘要翻译：在传输之前，消息被分成多个传输单元。为每个发送单元获得子消息认证码。基于多个发送单元的子消息认证码，为整个消息获得组合消息认证码。然后发送多个发送单元和合成消息认证码。消息的接收者接收对应于消息的多个发送单元。每个传输单元由接收机计算一个本地子消息认证码。基于多个发送单元的本地子消息认证码，接收机计算出本地组合消息认证码。将本地组合消息认证码与接收到的组合消息认证码进行比较，以确定接收到的消息的完整性和/或真实性。

25. 发明授权

US08625793B2 Resynchronization for push message security using secret keys 有权
标题翻译：使用秘密密钥重新同步推送消息安全
公开(公告)号：US08625793B2
公开(公告)日：2014-01-07
申请号：US12135987
申请日：2008-06-09
申请人： Philip Michael Hawkes , Andreas K. Wachter , Michael Paddon
发明人： Philip Michael Hawkes , Andreas K. Wachter , Michael Paddon
IPC分类号： H04K1/00 , H04L9/32
CPC分类号： H04L63/068 , H04L9/0894 , H04L9/12 , H04L9/3271 , H04L63/12 , H04L2209/80
摘要： A method for a server to initiate resynchronization with an access terminal, when synchronization has been lost, that cannot be exploited by attackers is provided. The server may provide the access terminal with a secret key that is only known to the access terminal and the server. The access terminal may store the secret key in a secure storage device to prevent the secret key from being hacked. If the server determines that synchronization has been lost, the server may send a resynchronization message to the access terminal with the secret key attached. The access terminal retrieves the stored secret key from the secure memory device and compares it to the secret key attached to the resynchronization message. If there is a match, the access terminal may initiate a secure communication link with the server to reestablish synchronization.
摘要翻译：提供了一种用于当同步已经丢失时服务器发起与接入终端的重新同步的方法，其不能被攻击者利用。服务器可以向接入终端提供只有接入终端和服务器已知的秘密密钥。接入终端可以将秘密密钥存储在安全存储设备中，以防止秘密密钥被黑客入侵。如果服务器确定同步已经丢失，则服务器可能会在附加密钥的情况下向接入终端发送重新同步消息。接入终端从安全存储设备检索存储的秘密密钥，并将其与附加到重新同步消息的秘密密钥进行比较。如果存在匹配，则接入终端可以发起与服务器的安全通信链路以重新建立同步。

26. 发明申请

US20070174613A1 Context limited shared secret 有权
标题翻译：上下文有限共享秘密
公开(公告)号：US20070174613A1
公开(公告)日：2007-07-26
申请号：US11351448
申请日：2006-02-10
申请人： Michael Paddon , Gregory Rose , James Semple , Philip Hawkes
发明人： Michael Paddon , Gregory Rose , James Semple , Philip Hawkes
IPC分类号： H04L9/00
CPC分类号： H04L9/085
摘要： In a communication system in which two communication entities seek to have a private or confidential communication session, a trust relationship needs first be established. The trust relationship is based on the determination of a shared secret which in turn is generated from contextual information. The contextual information can be derived from the circumstances surrounding the communication session. For example, the contextual information can include topological information, time-based information, and transactional information. The shared secret may be self-generated or received from a third party. In either event, the shared secret may be used as key material for any cryptographic protocol used between the communication entities.
摘要翻译：在两个通信实体寻求私人或机密通信会话的通信系统中，首先需要建立信任关系。信任关系是基于共享秘密的确定，而这个秘密又是从上下文信息中产生的。上下文信息可以从通信会话周围的情况导出。例如，上下文信息可以包括拓扑信息，基于时间的信息和事务信息。共享密钥可以是自生产的或从第三方接收的。在任一情况下，共享秘密可以用作在通信实体之间使用的任何加密协议的关键材料。

27. 发明申请

US20060236098A1 Multisigning - a protocol for robust multiple party digital signatures 审中-公开
标题翻译：多重签名 - 强大的多方数字签名协议
公开(公告)号：US20060236098A1
公开(公告)日：2006-10-19
申请号：US11182293
申请日：2005-07-15
申请人： Alexander Gantman , Aram Perez , Gregory Rose , Laurence Lundblade , Matthew Hohlfeld , Michael Paddon , Oliver Michaelis , Ricardo Lopez
发明人： Alexander Gantman , Aram Perez , Gregory Rose , Laurence Lundblade , Matthew Hohlfeld , Michael Paddon , Oliver Michaelis , Ricardo Lopez
IPC分类号： H04L9/00
CPC分类号： H04L63/126 , H04L9/3255 , H04L9/3265 , H04L9/3297 , H04L63/0478 , H04L63/0823 , H04L2209/80
摘要： Embodiments describe a system and/or method for multiple party digital signatures. According to a first aspect a method comprises establishing a first validity range for a first key, establishing a first validity range for at least a second key, and determining if the validity range of the first key overlaps the first validity range of the at least a second key. A certificate is signed with the first validity range of the first key and the first validity range of the at least a second key if the validity ranges overlap. According to another embodiment, signage of the certificate is refused if the first validity range of the first key does not overlap with the first validity range of the at least a second key.
摘要翻译：实施例描述了用于多方数字签名的系统和/或方法。根据第一方面，一种方法包括建立第一密钥的第一有效范围，建立至少第二密钥的第一有效范围，以及确定第一密钥的有效范围是否与至少一个密钥的第一有效范围重叠第二个关键如果有效范围重叠，则证书具有第一密钥的第一有效范围和至少第二密钥的第一有效范围。根据另一实施例，如果第一密钥的第一有效范围不与至少第二密钥的第一有效范围重叠，则拒绝证书的标识。

28. 发明申请

US20050286522A1 Efficient classification of network packets 有权
标题翻译：网络数据包的有效分类
公开(公告)号：US20050286522A1
公开(公告)日：2005-12-29
申请号：US11158588
申请日：2005-06-21
申请人： Michael Paddon , Gregory Rose , Philip Hawkes
发明人： Michael Paddon , Gregory Rose , Philip Hawkes
IPC分类号： H04L12/56 , H04L29/06
CPC分类号： H04L63/0227 , H04L63/0263 , H04L63/102
摘要： Embodiments describe a system and/or method for efficient classification of network packets. According to an aspect a method includes describing a packet as a feature vector and mapping the feature vector to a feature space. The method can further include defining a feature prism, classifying the packet relative to the feature prism, and determining if the feature vector matches the feature prism. If the feature vector matches the feature prism the packet is passed to a data recipient, if not, the packet is blocked. Another embodiment is an apparatus that includes an identification component that defines at least one feature of a packet and a classification component that classifies the packet based at least in part upon the at least one defined feature.
摘要翻译：实施例描述了用于网络分组的有效分类的系统和/或方法。根据一方面，一种方法包括将分组描述为特征向量并将特征向量映射到特征空间。该方法还可以包括定义特征棱镜，对分组相对于特征棱镜进行分类，以及确定特征向量是否与特征棱镜匹配。如果特征向量与特征棱镜匹配，则将数据包传递给数据收件人，否则，数据包被阻止。另一个实施例是一种装置，其包括定义分组的至少一个特征的识别组件和至少部分地基于至少一个定义的特征对分组进行分类的分类组件。

29. 发明授权

US08611536B2 Bootstrapping authentication using distinguished random challenges 失效
标题翻译：引导身份验证使用独特的随机挑战
公开(公告)号：US08611536B2
公开(公告)日：2013-12-17
申请号：US11218885
申请日：2005-09-02
申请人： James Semple , Gregory G. Rose , Michael Paddon , Philip Michael Hawkes
发明人： James Semple , Gregory G. Rose , Michael Paddon , Philip Michael Hawkes
IPC分类号： H04L29/06
CPC分类号： H04W12/04 , H04L9/3271 , H04L63/06 , H04L63/0869 , H04L2209/80 , H04L2463/081 , H04W12/02 , H04W12/06 , H04W88/02
摘要： A communications system and method of bootstrapping mobile station authentication and establishing a secure encryption key are disclosed. In one embodiment of the communications network, a distinguished random challenge is reserved for generation of a secure encryption key, wherein the distinguished random challenge is not used for authentication of a mobile station. The distinguished random challenge is stored at a mobile station's mobile equipment and used to generate a secure encryption key, and a bootstrapping function in the network uses a normal random challenge to authenticate the mobile station and the distinguished random challenge to generate the secure encryption key.
摘要翻译：公开了引导移动台认证和建立安全加密密钥的通信系统和方法。在通信网络的一个实施例中，保留用于产生安全加密密钥的独特随机挑战，其中，所识别的随机挑战不用于移动台的认证。独特的随机挑战被存储在移动台的移动设备中并用于生成安全的加密密钥，并且网络中的引导功能使用正常的随机挑战来认证移动台和独特的随机挑战来生成安全加密密钥。

30. 发明授权

US08260259B2 Mutual authentication with modified message authentication code 有权
标题翻译：使用修改的消息认证码进行相互认证
公开(公告)号：US08260259B2
公开(公告)日：2012-09-04
申请号：US11218832
申请日：2005-09-02
申请人： James Semple , Gregory G. Rose , Michael Paddon , Philip Michael Hawkes
发明人： James Semple , Gregory G. Rose , Michael Paddon , Philip Michael Hawkes
IPC分类号： H04M1/66 , H04M1/68 , H04M3/16
CPC分类号： H04W12/06 , H04L63/0869 , H04L63/123 , H04W12/10
摘要： Methods and devices for instructing a subscriber identity module in a cellular communications network to process non-standard authentication information in a standard manner are disclosed. One embodiment of a method comprises receiving a first message authentication code (MAC) and an authentication management field (AMF) at a subscriber identity module as part of an authentication protocol, calculating a second MAC and determining whether the second MAC is equivalent to the first MAC. If the first and second MAC are not equivalent, the SIM calculates a third MAC and determines whether the first MAC is equivalent to the third MAC, and if so, the subscriber identity module processes the AMF in a predefined or standard manner.
摘要翻译：公开了用于指示蜂窝通信网络中的订户身份模块以标准方式处理非标准认证信息的方法和设备。方法的一个实施例包括在用户身份模块处接收第一消息认证码（MAC）和认证管理字段（AMF），作为认证协议的一部分，计算第二MAC并确定第二MAC是否等同于第一MAC 苹果电脑。如果第一和第二MAC不相等，则SIM计算第三MAC并确定第一MAC是否等于第三MAC，如果是，则订户身份模块以预定义或标准方式处理AMF。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式