专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

31. 发明申请

US20080311884A1 BILLING IN A PACKET DATA NETWORK 有权
标题翻译：在分组数据网络中进行计费
公开(公告)号：US20080311884A1
公开(公告)日：2008-12-18
申请号：US12141024
申请日：2008-06-17
申请人： Juha Ala-Laurila , Jyri Rinnemaa , Jukka-Pekka Honkanen , Timo Takamaki , Raimo Vuonnala , Jan-Erik Ekberg
发明人： Juha Ala-Laurila , Jyri Rinnemaa , Jukka-Pekka Honkanen , Timo Takamaki , Raimo Vuonnala , Jan-Erik Ekberg
IPC分类号： H04M11/00 , H04M1/66 , H04Q7/20
CPC分类号： H04M15/48 , H04M15/00 , H04M15/55 , H04M2215/0156 , H04M2215/2026 , H04M2215/32 , H04M2215/44 , H04W4/24 , H04W8/26 , H04W12/06 , H04W48/08 , H04W48/16 , H04W76/10
摘要： A method for billing in a packet data network (WISP1) comprising at least one user's terminal (MN), comprising the steps of:forming a data link between the terminal and the packet data network; requesting a user identity from the terminal; generating billing data based on the user identity; and sending the billing data to an accounting server (HAAA) of an external telecommunications network.
摘要翻译：一种用于在包括至少一个用户终端（MN）的分组数据网络（WISP1）中计费的方法，包括以下步骤：在所述终端和分组数据网络之间形成数据链路; 从终端请求用户身份; 基于用户身份生成计费数据; 并将计费数据发送到外部电信网络的计费服务器（HAAA）。

32. 发明申请

US20080044012A1 Reducing Security Protocol Overhead In Low Data Rate Applications Over A Wireless Link 审中-公开
标题翻译：通过无线链路降低低数据速率应用中的安全协议开销
公开(公告)号：US20080044012A1
公开(公告)日：2008-02-21
申请号：US11464626
申请日：2006-08-15
申请人： Jan-Erik Ekberg , Antti Lappetelainen
发明人： Jan-Erik Ekberg , Antti Lappetelainen
IPC分类号： H04L9/30
CPC分类号： H04L9/065 , H04L63/162 , H04L2209/08 , H04L2209/80 , H04W12/0013
摘要： A wireless communication module to provide security at a baseband layer is disclosed. A payload of plaintext may be divided into partitions. The module may use a block cipher such as the Advanced Encryption Standard (AES) algorithm to process a unique initiation vector (IV) for each partition so that each partition may be XORed with a key stream based on a respective IV, the result providing ciphertext. The IV may include a nonce, an upper level packet counter, a packet counter and a block counter. The state of the counters may be incremented in a predetermined pattern so as to provide a unique IV for use with each partition. The ciphertext may be transmitted in a packet with a security bit indicating that the payload is encrypted but omitting the nonce. Encrypted packets may include an integrity check value (ICV) to provide for integrity of the encrypted message.
摘要翻译：公开了一种在基带层提供安全性的无线通信模块。明文的有效载荷可以划分为分区。模块可以使用诸如高级加密标准（AES）算法的分组密码来处理每个分区的唯一的初始向量（IV），使得每个分区可以基于相应的IV与密钥流进行异或，提供密文的结果。 IV可以包括随机数，高级分组计数器，分组计数器和块计数器。计数器的状态可以以预定模式递增，以便提供与每个分区一起使用的唯一IV。密文可以在具有指示有效载荷被加密但省略随机数的安全位的分组中传送。加密分组可以包括完整性校验值（ICV），以提供加密消息的完整性。

33. 发明授权

US07280820B2 System and method for authentication in a mobile communications system 有权
标题翻译：用于移动通信系统中认证的系统和方法
公开(公告)号：US07280820B2
公开(公告)日：2007-10-09
申请号：US11293188
申请日：2005-12-05
申请人： Jan-Erik Ekberg
发明人： Jan-Erik Ekberg
IPC分类号： H04M1/66
CPC分类号： H04L63/0807 , H04L67/28 , H04W12/06
摘要： The present invention provides an authentication method and apparatus for authenticating an identity of a subscriber attached to a network. According to the invention, in a network terminal, a subscriber identity module is used so that a response is obtained as a result of a challenge given to the identity module as input. A special security server in the network is also used so that when a terminal attaches to the network, a message of a new user is transmitted to the security server. Subscriber authentication information corresponding to the new user is fetched from the mobile communications system to the network, wherein the authentication information includes at least a challenge and a response. Authentication is performed based on the authentication information obtained from the mobile communications system by transmitting the challenge to the terminal through the network, by checking at the terminal that the challenging is unique from challenges used in previous authentication exchanges, by generating, if the challenge is unique, a response from the challenge in the identity module of the terminal and by comparing the generated response with the response received from the mobile communications system.
摘要翻译：本发明提供一种认证方法和装置，用于认证附着在网络上的用户的身份。根据本发明，在网络终端中，使用用户身份模块，以便作为输入给予身份模块的挑战的结果而获得响应。还使用网络中的特殊安全服务器，使得当终端连接到网络时，新用户的消息被传送到安全服务器。与新用户相对应的用户认证信息从移动通信系统被取出到网络，其中认证信息至少包括挑战和响应。基于从移动通信系统获得的认证信息，通过通过网络向终端发送挑战来执行认证，通过在终端上检查挑战是否是先前认证交换中所使用的挑战是唯一的，如果挑战是唯一的，来自终端的身份模块中的挑战的响应，并且通过将生成的响应与从移动通信系统接收的响应相比较。

34. 发明授权

US08787575B2 Method and apparatus for propagating encryption keys between wireless communication devices 有权
标题翻译：用于在无线通信设备之间传播加密密钥的方法和装置
公开(公告)号：US08787575B2
公开(公告)日：2014-07-22
申请号：US12675784
申请日：2007-08-31
申请人： Miika Laaksonen , Hannu Ensio Laine , Jan-Erik Ekberg
发明人： Miika Laaksonen , Hannu Ensio Laine , Jan-Erik Ekberg
IPC分类号： H04W12/02 , H04W12/04
CPC分类号： H04W12/04 , H04L9/3228 , H04L9/3242 , H04L63/062 , H04L63/104 , H04L2209/805 , H04W12/02 , H04W84/18 , H04W88/06 , H04W92/18
摘要： A system for propagating encryption key information between wireless communication devices without the requirement of pairing each and every device. A wireless communication device may be paired with at least one device in a group of devices. When a secure link is established between these devices, a determination may be made as to whether encryption key information should be passed from one device to another. The additional encryption key information may allow a wireless communication device to create a secure link with other devices without having to first establish a trusted relationship (e.g., go through a pairing process) with the other devices.
摘要翻译：一种用于在无线通信设备之间传播加密密钥信息而不需要配置每个设备的系统。无线通信设备可以与一组设备中的至少一个设备配对。当在这些设备之间建立安全链路时，可以确定加密密钥信息是否应当从一个设备传递到另一个设备。附加加密密钥信息可以允许无线通信设备与其他设备建立安全链路，而不必首先建立与其他设备的信任关系（例如，经过配对过程）。

35. 发明授权

US08336084B2 Communication using multiple apparatus identities 有权
标题翻译：使用多种设备身份的通信
公开(公告)号：US08336084B2
公开(公告)日：2012-12-18
申请号：US12557761
申请日：2009-09-11
申请人： Jan-Erik Ekberg
发明人： Jan-Erik Ekberg
IPC分类号： H04L29/06
CPC分类号： H04W12/02 , H04L9/321 , H04L9/3271 , H04L63/0209 , H04L63/0414 , H04L2209/80 , H04W12/12
摘要： A system for broadcasting multiple public identities corresponding to the same apparatus. For example, each public identity may correspond to different operational environments, while none of the public identities disclose a private identity that uniquely and permanently identifies the apparatus. This allows apparatuses to keep their unique identity a secret while still being able to communicate with other apparatuses in various environments.
摘要翻译：一种用于广播对应于同一装置的多个公共身份的系统。例如，每个公共身份可以对应于不同的操作环境，而没有一个公共身份公开了唯一地且永久地识别该设备的私有身份。这允许设备保持其独特的身份秘密，同时仍然能够与各种环境中的其他设备进行通信。

36. 发明授权

US08190636B2 Method, apparatus and computer program product for providing object privilege modification 有权
标题翻译：用于提供对象特权修改的方法，装置和计算机程序产品
公开(公告)号：US08190636B2
公开(公告)日：2012-05-29
申请号：US12242281
申请日：2008-09-30
申请人： Jan-Erik Ekberg , Elena Reshetova
发明人： Jan-Erik Ekberg , Elena Reshetova
IPC分类号： G06F17/00
CPC分类号： G06F21/629 , G06F21/6218 , G06F2221/2141 , Y10S707/955 , Y10S707/96
摘要： An apparatus for providing object privilege modification may include a processor. The processor may be configured to receive an indication to modify at least one privilege associated with an object. The processor may be further configured to modify the at least one privilege associated with the object based at least in part on the indication and update a policy file based at least in part on the modified privilege associated with the object. The processor may be additionally configured to provide for an output of the object based at least in part on the modified privilege associated with the object. Associated methods and computer program products may also be provided.
摘要翻译：用于提供对象特权修改的装置可以包括处理器。处理器可以被配置为接收修改与对象相关联的至少一个特权的指示。所述处理器还可以被配置为至少部分地基于所述指示来修改与所述对象相关联的所述至少一个特权，并且至少部分地基于与所述对象相关联的所述修改的特权来更新策略文件。该处理器可以被额外地配置为至少部分地基于与对象相关联的修改的权限来提供对象的输出。还可以提供相关方法和计算机程序产品。

37. 发明申请

US20080148062A1 Method for the secure storing of program state data in an electronic device 有权
标题翻译：用于在电子设备中安全地存储程序状态数据的方法
公开(公告)号：US20080148062A1
公开(公告)日：2008-06-19
申请号：US11638405
申请日：2006-12-14
申请人： Jan-Erik Ekberg , Lauri Paatero
发明人： Jan-Erik Ekberg , Lauri Paatero
IPC分类号： H04L9/00
CPC分类号： G06F21/6272 , G06F21/305 , G06F21/51 , G06F21/52 , G06F21/57 , H04L9/3247 , H04L2209/603 , H04L2209/80 , H04W12/06 , H04W12/10
摘要： The invention relates to a method in which program information is obtained to an execution environment in an electronic device. The program information comprises at least a program code. A key is computed of the program information and a device specific secret value. The key is used to decrypt program specific state data in the execution environment and to encrypt modified state data after the execution.
摘要翻译：本发明涉及一种向电子设备中的执行环境获得节目信息的方法。程序信息至少包括程序代码。计算节目信息和设备特定秘密值的密钥。该密钥用于解密执行环境中的程序特定状态数据，并在执行后加密修改后的状态数据。

38. 发明申请

US20060073811A1 System and method for authentication in a mobile communications system 有权
标题翻译：用于移动通信系统中认证的系统和方法
公开(公告)号：US20060073811A1
公开(公告)日：2006-04-06
申请号：US11293188
申请日：2005-12-05
申请人： Jan-Erik Ekberg
发明人： Jan-Erik Ekberg
IPC分类号： H04M1/66
CPC分类号： H04L63/0807 , H04L67/28 , H04W12/06
摘要： The present invention provides an authentication method and apparatus for authenticating an identity of a subscriber attached to a network. According to the invention, in a network terminal, a subscriber identity module is used so that a response is obtained as a result of a challenge given to the identity module as input. A special security server in the network is also used so that when a terminal attaches to the network, a message of a new user is transmitted to the security server. Subscriber authentication information corresponding to the new user is fetched from the mobile communications system to the network, wherein the authentication information includes at least a challenge and a response. Authentication is performed based on the authentication information obtained from the mobile communications system by transmitting the challenge to the terminal through the network, by checking at the terminal that the challenging is unique from challenges used in previous authentication exchanges, by generating, if the challenge is unique, a response from the challenge in the identity module of the terminal and by comparing the generated response with the response received from the mobile communications system.
摘要翻译：本发明提供一种认证方法和装置，用于认证附着在网络上的用户的身份。根据本发明，在网络终端中，使用用户身份模块，以便作为输入给予身份模块的挑战的结果而获得响应。还使用网络中的特殊安全服务器，使得当终端连接到网络时，新用户的消息被传送到安全服务器。与新用户相对应的用户认证信息从移动通信系统被取出到网络，其中认证信息至少包括挑战和响应。基于从移动通信系统获得的认证信息，通过通过网络向终端发送挑战来执行认证，通过在终端上检查挑战是否是先前认证交换中所使用的挑战是唯一的，如果挑战是唯一的，来自终端的身份模块中的挑战的响应，并且通过将生成的响应与从移动通信系统接收的响应相比较。

39. 发明授权

US07003282B1 System and method for authentication in a mobile communications system 有权
标题翻译：用于移动通信系统中认证的系统和方法
公开(公告)号：US07003282B1
公开(公告)日：2006-02-21
申请号：US09743302
申请日：1999-06-24
申请人： Jan-Erik Ekberg
发明人： Jan-Erik Ekberg
IPC分类号： H04M1/66
CPC分类号： H04L63/0807 , H04L67/28 , H04W12/06
摘要： The invention concerns authentication to be performed in a telecommunications network, especially in an IP network. To allow a simple and smooth authentication of users of IP networks in a geographically large area, the IP network's terminal (TE1) uses a subscriber identity module (SIM) as used in a separate mobile communications system (MN), whereby a response may be determined from the challenge given to the identity module as input. The IP network also includes a special security server (SS), to which a message about a new user is transmitted when a subscriber attaches to the IP network. The subscriber's authentication information containing at least a challenge and a response is fetched from the said mobile communications system to the IP network and authentication is carried out based on the authentication information obtained from the mobile communications system by transmitting the said challenge through the IP network to the terminal, by generating a response from the challenge in the terminal's identity module and by comparing the response with the response received from the mobile communications system. Such a database (DB) may also be used in the system, wherein subscriber-specific authentication information is stored in advance, whereby the information in question need not be fetched from the mobile communications system when a subscriber attaches to the network.
摘要翻译：本发明涉及要在电信网络中进行的认证，特别是在IP网络中。为了允许在地理上大的区域中对IP网络的用户进行简单和平滑的认证，IP网络的终端（TE 1）使用在单独的移动通信系统（MN）中使用的用户识别模块（SIM），由此响应可以从作为输入的身份模块的挑战中确定。 IP网络还包括专用安全服务器（SS），当用户连接到IP网络时，向其发送关于新用户的消息。至少包含挑战和响应的用户的认证信息从所述移动通信系统被提取到IP网络，并且基于从移动通信系统获得的认证信息，通过将所述挑战通过IP网络发送到终端，通过在终端的身份模块中产生来自挑战的响应，并通过将响应与从移动通信系统接收到的响应进行比较。这样的数据库（DB）也可以在系统中使用，其中订户特定的认证信息被预先存储，由此当订户附接到网络时，不需要从移动通信系统中取出所讨论的信息。

40. 发明申请

US20050059379A1 Method of initializing and using a security association for middleware based on physical proximity 有权
标题翻译：基于物理接近度初始化和使用中间件安全关联的方法
公开(公告)号：US20050059379A1
公开(公告)日：2005-03-17
申请号：US10784215
申请日：2004-02-24
申请人： Sampo Sovio , Philip Ginzboorg , Jan-Erik Ekberg
发明人： Sampo Sovio , Philip Ginzboorg , Jan-Erik Ekberg
IPC分类号： G06F11/30 , G06F12/14 , H04L9/00 , H04L9/32 , H04L12/56 , H04L29/06 , H04L29/08 , H04M1/66 , H04M1/68 , H04M3/16
CPC分类号： H04L67/16 , H04L63/0492 , H04L63/08 , H04L67/04 , H04L67/14 , H04W12/04 , H04W12/06 , H04W28/18 , H04W76/10 , H04W84/18
摘要： A computer system, method, and computer program product for controlling data communication in an ad-hoc network that connects a wireless device and a nearby wireless device. The method stores an application directory, determines a priority for each entry in the application directory, identifies a selected entry based on the priority, and examines the attributes and security parameters associated with the selected entry. When the security parameters indicate to use a secure connection, the method establishes a security association to support the data communication by querying a database for an existing security association that will satisfy the security parameters. When the query is successful, the method reuses the existing security association. When the query is unsuccessful, the method creates a new security association by establishing a privileged side channel to the nearby wireless device, negotiating the new security association over the privileged side channel, and storing the new security association.
摘要翻译：一种用于控制连接无线设备和附近无线设备的自组织网络中的数据通信的计算机系统，方法和计算机程序产品。方法存储应用程序目录，确定应用程序目录中每个条目的优先级，根据优先级识别所选择的条目，并检查与所选条目相关联的属性和安全参数。当安全参数指示使用安全连接时，该方法建立安全关联，以通过查询数据库来满足安全参数的现有安全关联来支持数据通信。当查询成功时，该方法重用现有的安全关联。当查询不成功时，该方法通过向附近的无线设备建立特权侧信道，通过特权侧信道协商新的安全关联以及存储新的安全关联来创建新的安全关联。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式