专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

31. 发明申请

US20060182277A1 Roaming utilizing an asymmetric key pair 审中-公开
标题翻译：漫游利用非对称密钥对
公开(公告)号：US20060182277A1
公开(公告)日：2006-08-17
申请号：US11056116
申请日：2005-02-14
申请人： Ravinderpal Sandhu , Brett Schoppert , Ravi Ganesan , Mihir Bellare , Colin deSa
发明人： Ravinderpal Sandhu , Brett Schoppert , Ravi Ganesan , Mihir Bellare , Colin deSa
IPC分类号： H04L9/00
CPC分类号： H04L63/08 , H04L9/0822 , H04L9/085 , H04L9/0863 , H04L9/0897 , H04L9/14 , H04L9/3213 , H04L9/3236 , H04L9/3297
摘要： Techniques for generating a portion of a split private key are provided. A first symmetric key and a second symmetric key different than the first symmetric key are generated at a first location. The generated second symmetric key and a first one of multiple factors for generating the private key portion encrypted with the generated first symmetric key are transmitted. Then, at a second network location, the symmetric keys are again generated. The encrypted first factor is received at the second network location subsequent to a user authentication based upon the second symmetric key generated at the second network location. The received encrypted first factor is then decrypted with the first symmetric key generated at the second network location, the decrypted first factor usable to generate the portion of the split private key of the asymmetric key pair.
摘要翻译：提供了用于产生分割私钥的一部分的技术。在第一位置处生成与第一对称密钥不同的第一对称密钥和第二对称密钥。发送生成的第二对称密钥和用于生成用所生成的第一对称密钥加密的私钥部分的多个因素中的第一个对象密钥。然后，在第二网络位置，再次产生对称密钥。基于在第二网络位置处生成的第二对称密钥，在用户认证之后的第二网络位置处接收加密的第一因子。然后，利用在第二网络位置处生成的第一对称密钥对接收到的加密第一因子进行解密，解密的第一因子可用于生成非对称密钥对的分裂私钥的部分。

32. 发明授权

US07036014B2 Probabilistic signature scheme 失效
公开(公告)号：US07036014B2
公开(公告)日：2006-04-25
申请号：US09879849
申请日：2001-06-11
申请人： Mihir Bellare , Phillip Rogaway
发明人： Mihir Bellare , Phillip Rogaway
IPC分类号： H04L9/00
CPC分类号： H04L9/3249 , H04L2209/04
摘要： An RSA-based signing scheme that combines essentially optimal efficiency with attractive security properties. One preferred signing routine requires one RSA decryption plus some hashing, verifications requires one RSA encryption plus some hashing, and the size of the signature preferably is the size of the modulus. Given an ideal underlying hash function, the scheme is not only provably secure, but has security tightly related to the security of RSA. An alternative embodiment maintains all of the above features and, in addition, provides message recovery. The techniques can be extended to provide schemes for Rabin-based signatures or signatures using other trapdoor functions.

33. 发明授权

US5673318A Method and apparatus for data authentication in a data communication environment 失效
标题翻译：数据通信环境中数据认证的方法和装置
公开(公告)号：US5673318A
公开(公告)日：1997-09-30
申请号：US647503
申请日：1996-05-14
申请人： Mihir Bellare , Roch Andre Guerin , Phillip Walder Rogaway
发明人： Mihir Bellare , Roch Andre Guerin , Phillip Walder Rogaway
IPC分类号： G09C1/00 , H04L9/06 , H04L9/14 , H04L9/32 , H04L9/00
CPC分类号： H04L9/3242 , H04L9/0625 , H04L9/0643 , H04L9/3297 , H04L2209/125 , H04L2209/20
摘要： A method and system for providing data authentication, within a data communication environment, in a manner which is simple, fast, and provably secure. A data message to be sent is partitioned into data blocks. Each data block is combined with a block index to create a word. A pseudo-random function is applied to each word to create a plurality of enciphered data strings. An identifying header, comprising the identity of the sender and a counter value, is also enciphered using a pseudo-random function. These enciphered data strings and header are logically combined to create a tag. As the enciphering of a particular word occurs independent of the other words, each block can be enciphered independently of the others. The method and system can thus be performed and structured in either a parallel or pipelined fashion. A receiving component or system generates a second tag which can then be compared with the transmitted tag to determine message authentication.
摘要翻译：一种在数据通信环境中以简单，快速且可证明的方式提供数据认证的方法和系统。要发送的数据消息被分割成数据块。每个数据块与块索引组合以创建一个单词。伪随机函数被应用于每个单词以创建多个加密的数据串。包括发送者的身份和计数器值的标识头也使用伪随机函数进行加密。这些加密的数据串和标头在逻辑上组合起来创建一个标签。由于特定字的加密独立于其他单词，所以每个块可以独立于其他单元进行加密。因此，该方法和系统可以以并行或流水线方式执行和构造。接收组件或系统产生第二标签，然后可将其与传输的标签进行比较以确定消息认证。

34. 发明授权

US09294268B2 System and method for variable length encryption 有权
标题翻译：用于可变长度加密的系统和方法
公开(公告)号：US09294268B2
公开(公告)日：2016-03-22
申请号：US14286881
申请日：2014-05-23
申请人： Clay von Mueller , Mihir Bellare , Scott R. Yale , Patrick K. Hazel , Paul Elbridge Catinella
发明人： Clay von Mueller , Mihir Bellare , Scott R. Yale , Patrick K. Hazel , Paul Elbridge Catinella
IPC分类号： H04L9/08 , G06Q20/38 , G06Q20/12 , H04L9/06 , H04L9/32
CPC分类号： G06Q20/3829 , G06Q20/12 , G06Q20/204 , G06Q20/38215 , G06Q20/3823 , G06Q20/409 , G06Q2220/00 , H04L9/0625 , H04L9/0822 , H04L9/0866 , H04L9/3226 , H04L9/3234 , H04L9/3247 , H04L63/0428 , H04L2209/56
摘要： Systems and methods for performing a secure transaction provided. In one embodiment, the method includes: reading data on a command token, reading data on a token; encrypting the token data with a key; encrypting an authentication data with a clear text token data; and transmitting the encrypted authentication data with the encrypted token data to a remote device.
摘要翻译：提供安全交易的系统和方法。在一个实施例中，该方法包括：读取命令令牌上的数据，读取令牌上的数据; 用密钥加密令牌数据; 使用明文令牌数据加密认证数据; 并将加密的认证数据与加密的令牌数据发送到远程设备。

35. 发明授权

US08837718B2 User-specified sharing of data via policy and/or inference from a hierarchical cryptographic store 有权
标题翻译：用户通过策略和/或推论从分层加密存储中指定数据共享
公开(公告)号：US08837718B2
公开(公告)日：2014-09-16
申请号：US12413445
申请日：2009-03-27
申请人： Kristin Estella Lauter , Mihir Bellare , Josh Benaloh , Melissa E. Chase , Erik J. Horvitz , Chris Demetrios Karkanias
发明人： Kristin Estella Lauter , Mihir Bellare , Josh Benaloh , Melissa E. Chase , Erik J. Horvitz , Chris Demetrios Karkanias
IPC分类号： H04L9/14 , H04L9/30 , G06F21/62 , H04L9/08
CPC分类号： H04L9/3073 , G06F21/6209 , H04L9/0836 , H04L2209/88
摘要： The claimed subject matter relates to architectures that can construct a hierarchical set of decryption keys for facilitating user-controlled encrypted data storage with diverse accessibility and hosting of that encrypted data. In particular, a root key can be employed to derive a hierarchical set of decryption keys and a corresponding hierarchical set of encryption keys. Each key derived can conform to a hierarchy associated with encrypted data of the user, and the decryption capabilities of the decryption keys can be configured based upon a location or assignment of the decryption key within the hierarchy. The cryptographic methods can be joined with a policy language that specifies sets of keys for capturing preferences about patterns of sharing. These policies about sharing can themselves require keys for access and the policies can provide additional keys for other aspects of policy and or base-level accesses.
摘要翻译：所要求保护的主题涉及可以构建分层的解密密钥集的体系结构，以便利用不同的可访问性和托管该加密数据来促进用户控制的加密数据存储。特别地，可以使用根密钥来导出分层的解密密钥集合和对应的分层加密密钥集合。导出的每个密钥可以符合与用户的加密数据相关联的层次，并且可以基于层次结构内的解密密钥的位置或分配来配置解密密钥的解密能力。加密方法可以与指定用于捕获关于共享模式的偏好的键的集合的策略语言相结合。这些关于共享的策略本身可以要求访问密钥，并且策略可以为策略和/或基本级别访问的其他方面提供附加的密钥。

36. 发明授权

US08769279B2 System and method for variable length encryption 有权
标题翻译：用于可变长度加密的系统和方法
公开(公告)号：US08769279B2
公开(公告)日：2014-07-01
申请号：US13081450
申请日：2011-04-06
申请人： Clay von Mueller , Mihir Bellare , Scott R. Yale , Patrick K. Hazel , Paul Elbridge Catinella
发明人： Clay von Mueller , Mihir Bellare , Scott R. Yale , Patrick K. Hazel , Paul Elbridge Catinella
IPC分类号： H04L9/32 , G06Q40/00
CPC分类号： G06Q20/3829 , G06Q20/12 , G06Q20/204 , G06Q20/38215 , G06Q20/3823 , G06Q20/409 , G06Q2220/00 , H04L9/0625 , H04L9/0822 , H04L9/0866 , H04L9/3226 , H04L9/3234 , H04L9/3247 , H04L63/0428 , H04L2209/56
摘要： Systems and methods for performing a secure transaction provided. In one embodiment, the method includes: reading data on a command token, reading data on a token; encrypting the token data with a key; encrypting an authentication data with a clear text token data; and transmitting the encrypted authentication data with the encrypted token data to a remote device.
摘要翻译：提供安全交易的系统和方法。在一个实施例中，该方法包括：读取命令令牌上的数据，读取令牌上的数据; 用密钥加密令牌数据; 使用明文令牌数据加密认证数据; 并将加密的认证数据与加密的令牌数据发送到远程设备。

37. 发明授权

US08340287B2 Securing multifactor split key asymmetric crypto keys 有权
标题翻译：保护多重分解密钥非对称加密密钥
公开(公告)号：US08340287B2
公开(公告)日：2012-12-25
申请号：US12729469
申请日：2010-03-23
申请人： Ravinderpal Singh Sandhu , Brett Jason Schoppert , Ravi Ganesan , Mihir Bellare , Colin Joseph deSa
发明人： Ravinderpal Singh Sandhu , Brett Jason Schoppert , Ravi Ganesan , Mihir Bellare , Colin Joseph deSa
IPC分类号： H04L29/06
CPC分类号： H04L9/3228 , H04L9/0825 , H04L9/0894 , H04L9/3271
摘要： Techniques for securing an asymmetric crypto-key having a public key and a split private key with multiple private portions are provided. A first one of multiple factors is stored. All of the factors are under the control of a user and all are required to generate a first private portion of the split private key. The first private portion not stored in a persistent state. A second private portion of the split private key under control of an entity other than the user is also stored. The first private portion and the second private portion are combinable to form a complete private portion.
摘要翻译：提供了用于保护具有公开密钥的非对称密钥和具有多个私有部分的分离私钥的技术。存储多个因素中的第一个。所有因素都处于用户的控制之下，所有这些因素都需要生成分割私钥的第一私人部分。第一个私有部分未存储在持久状态。除了用户之外的实体的控制下，分割私钥的第二私人部分也被存储。第一私人部分和第二私人部分可组合以形成完整的私人部分。

38. 发明授权

US07599493B2 Asymmetric key pair having a kiosk mode 有权
标题翻译：具有报亭模式的非对称密钥对
公开(公告)号：US07599493B2
公开(公告)日：2009-10-06
申请号：US11056114
申请日：2005-02-14
申请人： Ravinderpal Singh Sandhu , Brett Jason Schoppert , Ravi Ganesan , Mihir Bellare , Colin Joseph deSa
发明人： Ravinderpal Singh Sandhu , Brett Jason Schoppert , Ravi Ganesan , Mihir Bellare , Colin Joseph deSa
IPC分类号： H04L9/00
CPC分类号： H04L63/08 , H04L9/085 , H04L9/3271
摘要： Techniques for providing different levels of access based upon a same authentication factor are provided. A first message is received that is transformed with a first portion of a split private key, the first portion based upon a user password and another factor, and the split private key associated with an asymmetric key pair having a public key and the split private key. The user is authenticated for a first level of network access based upon the received first message being transformed with the first portion. A second message is received that is transformed with a second portion of the split private key, the second portion based upon the password only and not combinable with the first portion to complete the split private key. The user is authenticated for a second level of network access different that the first level based upon the received second message being transformed with the second portion.
摘要翻译：提供了基于相同认证因素提供不同级别的访问的技术。接收到第一消息被转换为分割私钥的第一部分，第一部分基于用户密码和另一因素，以及与具有公共密钥和分离私钥的非对称密钥对相关联的分离专用密钥。基于所接收的第一消息被第一部分变换，用户被认证用于第一级网络访问。接收到第二消息，该第二消息用分割专用密钥的第二部分进行变换，第二部分仅基于密码而不与第一部分组合以完成分割的私钥。用户被认证为第二级别的网络访问，其不同于基于所接收的第二消息的第一级被第二部分变换。

39. 发明申请

US20090222658A1 ROAMING UTILIZING AN ASYMMETRIC KEY PAIR 有权
标题翻译：使用不对称的主要对象进行漫游
公开(公告)号：US20090222658A1
公开(公告)日：2009-09-03
申请号：US12206304
申请日：2008-09-08
申请人： Ravinderpal Singh Sandhu , Brett Jason Schoppert , Ravi Ganesan , Mihir Bellare , Colin Joseph deSa
发明人： Ravinderpal Singh Sandhu , Brett Jason Schoppert , Ravi Ganesan , Mihir Bellare , Colin Joseph deSa
IPC分类号： H04L9/32 , H04L9/30 , H04L9/06
CPC分类号： H04L63/08 , H04L9/0822 , H04L9/085 , H04L9/0863 , H04L9/0897 , H04L9/14 , H04L9/3213 , H04L9/3236 , H04L9/3297
摘要： Techniques for generating a portion of a split private key are provided. A first symmetric key and a second symmetric key different than the first symmetric key are generated at a first location. The generated second symmetric key and a first one of multiple factors for generating the private key portion encrypted with the generated first symmetric key are transmitted. Then, at a second network location, the symmetric keys are again generated. The encrypted first factor is received at the second network location subsequent to a user authentication based upon the second symmetric key generated at the second network location. The received encrypted first factor is then decrypted with the first symmetric key generated at the second network location, the decrypted first factor usable to generate the portion of the split private key of the asymmetric key pair.
摘要翻译：提供了用于产生分割私钥的一部分的技术。在第一位置处生成与第一对称密钥不同的第一对称密钥和第二对称密钥。发送生成的第二对称密钥和用于生成用所生成的第一对称密钥加密的私钥部分的多个因素中的第一个对象密钥。然后，在第二网络位置，再次产生对称密钥。基于在第二网络位置处生成的第二对称密钥，在用户认证之后的第二网络位置处接收加密的第一因子。然后，利用在第二网络位置处生成的第一对称密钥对接收到的加密第一因子进行解密，解密的第一因子可用于生成非对称密钥对的分离私钥的部分。

40. 发明授权

US07565527B2 Technique for asymmetric crypto-key generation 有权
标题翻译：非对称密钥生成技术
公开(公告)号：US07565527B2
公开(公告)日：2009-07-21
申请号：US11055986
申请日：2005-02-14
申请人： Ravinderpal Singh Sandhu , Brett Jason Schoppert , Ravi Ganesan , Mihir Bellare , Colin Joseph deSa
发明人： Ravinderpal Singh Sandhu , Brett Jason Schoppert , Ravi Ganesan , Mihir Bellare , Colin Joseph deSa
IPC分类号： H04L9/00
CPC分类号： H04L9/085
摘要： Techniques for generating a multi-factor asymmetric key pair having a public key and split private key with multiple private portions, at least one of the multiple portions being a multiple factor private key portion, are provided. First and second asymmetric key pairs are generated, each having a private key and a public key. A text string and the first private key are cryptographically combined to make a first private key portion of the split private key. This first private key portion is a multiple factor private key portion. A second private key portion of the split private key is generated based upon the generated first private key portion and the second private key.
摘要翻译：提供了具有公开密钥和具有多个私有部分的分割私钥的多因素非对称密钥对的技术，所述多个部分中的至少一个是多因素私钥部分。生成第一和第二非对称密钥对，每个具有私钥和公钥。文本字符串和第一私钥被加密地组合以形成分割私钥的第一私钥部分。该第一私钥部分是多因素私钥部分。基于生成的第一私钥部分和第二私钥来生成分割私钥的第二私钥部分。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式