会员体验
专利管家(专利管理)
工作空间(专利管理)
风险监控(情报监控)
数据分析(专利分析)
侵权分析(诉讼无效)
联系我们
交流群
官方交流:
QQ群: 891211   
微信请扫码    >>>
现在联系顾问~
热词
    • 31. 发明授权
    • Method and system for entity public key acquiring, certificate validation and authentication by introducing an online credible third party
    • 通过引入在线可信的第三方,实体公钥获取,证书验证和认证的方法和系统
    • US08751792B2
    • 2014-06-10
    • US13499126
    • 2009-12-14
    • Manxia TieJun CaoZhenhai HuangXiaolong Lai
    • Manxia TieJun CaoZhenhai HuangXiaolong Lai
    • H04L29/06
    • H04L9/3213H04L9/3268H04L63/0823
    • A method and system for entity public key acquiring, certificate validation and authentication by introducing an online credible third party is disclosed. The method includes the following steps: 1) an entity B transmits a message 1 to an entity A; 2) the entity A transmits a message 2 to a credible third party TP after receiving the message 1; 3) the credible third party TP determines the response RepTA after receiving the message 2; 4) the credible third party TP returns a message 3 to the entity A; 5) the entity A returns a message 4 to the entity B after receiving the message 3; 6) the entity B receives the message 4; 7) the entity B transmits a message 5 to the entity A; 8) the entity A receives the message 5. The present invention can achieve public key acquisition, certificate validation and authentication of the entity by integrating them in one protocol, thereby facilitate the execution efficiency and the effect of the protocol and facilitate the combination with various public key acquisition and public key certificate state enquiry protocols. The present invention suits with a “user-access point-server” access network structure to meet the authentication requirement of the access network.
    • 公开了通过引入在线可信第三方实体公钥获取,证书验证和认证的方法和系统。 该方法包括以下步骤:1)实体B向实体A发送消息1; 2)实体A在接收到消息1之后向可信第三方TP发送消息2; 3)可靠的第三方TP确定收到消息后的回复RepTA 2; 4)可信第三方TP向实体A返回消息3; 5)实体A在接收到消息3之后向实体B返回消息4; 6)实体B接收消息4; 7)实体B向实体A发送消息5; 8)实体A接收消息5.本发明可以通过在一个协议中集成实现公钥获取,证书验证和认证,从而促进协议的执行效率和效果,并促进与各种协议的组合 公开密钥获取和公钥证书状态查询协议。 本发明适用于“用户接入点 - 服务器”接入网络结构,以满足接入网络的认证要求。
    • 32. 发明授权
    • Entity bidirectional-identification method for supporting fast handoff
    • 实体双向识别方法支持快速切换
    • US08392710B2
    • 2013-03-05
    • US12994712
    • 2009-05-27
    • Manxia TieJun CaoZhenhai HuangXiaolong Lai
    • Manxia TieJun CaoZhenhai HuangXiaolong Lai
    • H04L9/32
    • H04L9/0844H04L9/3213H04L9/3263H04L9/3273H04L63/0823H04L63/0869H04W12/06
    • An entity bidirectional-identification method for supporting fast handoff involves three security elements, which includes two identification elements A and B and a trusted third party (TP). All identification entities of a same element share a public key certification or own a same public key. When any identification entity in identification element A and any identification entity in identification element B need to identify each other, if identification protocol has never been operated between the two identification elements that they belong to respectively, the whole identification protocol process will be operated; otherwise, interaction of identification protocol will be acted only between the two identification entities. Application of the present invention not only centralizes management of public key and simplifies protocol operation condition, but also utilizes the concept of security domain so as to reduce management complexity of public key, shorten identification time and satisfy fast handoff requirements on the premises of guaranteeing security characteristics such as one key for every pair of identification entities, one secret key for every identification and forward secrecy.
    • 用于支持快速切换的实体双向识别方法涉及三个安全元件,其包括两个识别元件A和B以及可信第三方(TP)。 同一元素的所有识别实体共享公钥证书或拥有相同的公钥。 当识别元素A中的任何识别实体和识别元素B中的任何识别实体需要彼此识别时,如果识别协议在它们所属的两个识别元素之间从未被操作,则整个标识协议过程将被操作; 否则,识别协议的交互将仅在两个识别实体之间起作用。 本发明的应用不仅集中了公钥的管理,简化了协议的运行状况,而且利用了安全域的概念,降低了公钥的管理复杂度,缩短了识别时间,满足了保证安全性的前提下的快速切换要求 特征如每对识别实体的一个密钥,每个识别和转发保密的一个秘密密钥。
    • 33. 发明申请
    • KEY MANAGEMENT AND NODE AUTHENTICATION METHOD FOR SENSOR NETWORK
    • 传感器网络的主要管理和节点验证方法
    • US20120300939A1
    • 2012-11-29
    • US13503171
    • 2010-06-02
    • Zhiqiang DuJun CaoManxia TieZhenhai Huang
    • Zhiqiang DuJun CaoManxia TieZhenhai Huang
    • H04L9/08
    • H04L63/061H04L63/062H04L63/08H04L63/1441H04L67/12H04W12/04H04W12/06H04W84/18
    • A key management and node authentication method for a sensor network is disclosed. The method comprises the following steps of: 1) keys pre-distribution: before deploying the network, communication keys for establishing security connection between nodes are pre-distributed to all of nodes by a deployment server. 2) Keys establishment: after deploying the network, a pair key for the security connection is established between nodes, which includes the following steps of: 2.1) establishment of shared keys: the pair key is established between neighbor nodes in which the shared keys are existed; 2.2) path keys establishment: the pair key is established between the nodes in which there is no shared keys but there is a multi-hop security connection. 3) Node identity (ID) authentication: before formally communicating between nodes, the identity is authenticated so as to determine the legality and the validity of the identity of the other. It is possible for effectively resisting attacks such as wiretapping, tampering, and replaying and the like for the network communication, realizing the secret communication between the nodes, effectively saving resources of the nodes of the sensor network, and prolonging the service lift of the sensor network in the method.
    • 公开了一种用于传感器网络的密钥管理和节点认证方法。 该方法包括以下步骤:1)密钥预分发:在部署网络之前,通过部署服务器将节点之间建立安全连接的通信密钥预分配给所有节点。 2)密钥建立:部署网络后,在节点之间建立安全连接对,包括以下步骤:2.1建立共享密钥:在共享密钥的邻居节点之间建立配对密钥 存在; 2.2)路径密钥建立:在没有共享密钥的节点之间建立配对密钥,但存在多跳安全连接。 3)节点身份(ID)认证:在节点之间正式通信之前,身份被认证,以确定其他身份的合法性和有效性。 有效抵御网络通信窃听,篡改,重放等攻击,实现节点之间的秘密通信,有效节省传感器网络节点的资源,延长传感器的业务提升 网络中的方法。
    • 35. 发明申请
    • METHOD AND SYSTEM FOR ENTITY PUBLIC KEY ACQUIRING, CERTIFICATE VALIDATION AND AUTHENTICATION BY INTRODUCING AN ONLINE CREDIBLE THIRD PARTY
    • 通过引入在线可信第三方的实体公共关键获取方法和系统,证书的验证和认证
    • US20120198240A1
    • 2012-08-02
    • US13499126
    • 2009-12-14
    • Manxia TieJun CaoZhenhai HuangXiaolong Lai
    • Manxia TieJun CaoZhenhai HuangXiaolong Lai
    • H04L9/30
    • H04L9/3213H04L9/3268H04L63/0823
    • A method and system for entity public key acquiring, certificate validation and authentication by introducing an online credible third party is disclosed. The method includes the following steps: 1) an entity B transmits a message 1 to an entity A; 2) the entity A transmits a message 2 to a credible third party TP after receiving the message 1; 3) the credible third party TP determines the response RepTA after receiving the message 2; 4) the credible third party TP returns a message 3 to the entity A; 5) the entity A returns a message 4 to the entity B after receiving the message 3; 6) the entity B receives the message 4; 7) the entity B transmits a message 5 to the entity A; 8) the entity A receives the message 5. The present invention can achieve public key acquisition, certificate validation and authentication of the entity by integrating them in one protocol, thereby facilitate the execution efficiency and the effect of the protocol and facilitate the combination with various public key acquisition and public key certificate state enquiry protocols. The present invention suits with a “user-access point-server” access network structure to meet the authentication requirement of the access network.
    • 公开了通过引入在线可信第三方实体公钥获取,证书验证和认证的方法和系统。 该方法包括以下步骤:1)实体B向实体A发送消息1; 2)实体A在接收到消息1之后向可信第三方TP发送消息2; 3)可靠的第三方TP确定收到消息后的回复RepTA 2; 4)可信第三方TP向实体A返回消息3; 5)实体A在接收到消息3之后向实体B返回消息4; 6)实体B接收消息4; 7)实体B向实体A发送消息5; 8)实体A接收消息5.本发明可以通过在一个协议中集成实现公钥获取,证书验证和认证,从而促进协议的执行效率和效果,并促进与各种协议的组合 公开密钥获取和公钥证书状态查询协议。 本发明适用于“用户接入点 - 服务器”接入网络结构,以满足接入网络的认证要求。
    • 36. 发明申请
    • AUTHENTICATION ASSOCIATED SUITE DISCOVERY AND NEGOTIATION METHOD
    • 认证相关的套装发现和谈判方法
    • US20110243330A1
    • 2011-10-06
    • US13133890
    • 2009-12-08
    • Yanan HuJun CaoYuelei XiaoManxia TieZhenhai HuangXiaolong Lai
    • Yanan HuJun CaoYuelei XiaoManxia TieZhenhai HuangXiaolong Lai
    • H04W12/06H04W12/04
    • H04W12/04H04W12/06
    • An authentication associated suite discovery and negotiation method for ultra wide band network. The method includes the following steps of: 1) adding a pairwise temporal key PTK establishment IE and a group temporal key GTK distribution IE in an information element IE list of an initiator and a responder, and setting a corresponding information element identifier ID, and 2) an authentication associated process based on the authentication associated suite discovery and negotiation method. The authentication associated suite discovery and negotiation method for ultra wide band network provided by the present invention can provide the discovery and negotiation functions of a security solution to the network so as to satisfy all kinds of application requirements better when multiple pairwise temporal key PTK establishing plans or multiple group temporal key GTK distributing plans co-exist.
    • 用于超宽带网络的认证相关套件发现和协商方法。 该方法包括以下步骤:1)在发起者和应答者的信息元素IE列表中添加成对的时间密钥PTK建立IE和组时间密钥GTK分布IE,并设置相应的信息元素标识符ID,2 )基于认证相关套件发现和协商方法的认证关联过程。 本发明提供的用于超宽带网络的认证相关套件发现和协商方法可以向网络提供安全解决方案的发现和协商功能,以便在多对成对临时密钥PTK建立计划时更好地满足各种应用需求 或多组时态密钥GTK分发计划并存。
    • 37. 发明申请
    • METHOD OF ONE-WAY ACCESS AUTHENTICATION
    • 单向通信认证方法
    • US20100268954A1
    • 2010-10-21
    • US12741567
    • 2008-11-07
    • Liaojun PangJun CaoManxia TieZhenhai Huang
    • Liaojun PangJun CaoManxia TieZhenhai Huang
    • H04L9/32
    • H04L9/3242H04L9/0847H04L9/321H04L9/3271H04L2209/80
    • A method of one-way access authentication is disclosed. The method includes the following steps. According to system parameters set up by a third entity, a second entity sends an authentication request and key distribution grouping message to a first entity. The first entity verifies the validity of the message sent from the second entity, and if it is valid, the first entity generates authentication and key response grouping message and sends it to the second entity, which verifies the validity of the message sent from the first entity, and if it is valid, the second entity generates the authentication and key confirmation grouping message and sends the message to the first entity. The first entity verifies the validity of the authentication and key conformation grouping message, and if it is valid, the authentication succeeds and the key is regarded as the master key of agreement.
    • 公开了一种单向接入认证方法。 该方法包括以下步骤。 根据由第三实体建立的系统参数,第二实体向第一实体发送认证请求和密钥分发分组消息。 第一实体验证从第二实体发送的消息的有效性,并且如果其有效,则第一实体生成认证和密钥响应分组消息并将其发送到第二实体,其验证从第一实体发送的消息的有效性 实体,如果有效,则第二实体生成认证和密钥确认分组消息,并将消息发送到第一实体。 第一个实体验证认证和密钥组合分组消息的有效性,如果认证成功,则认证成功,密钥被视为协商的主密钥。
    • 38. 发明申请
    • ENTITY BIDIRECTIONAL AUTHENTICATION METHOD AND SYSTEM
    • 实体双向认证方法与系统
    • US20100262832A1
    • 2010-10-14
    • US12808049
    • 2008-12-09
    • Manxia TieJun CaoZhenhai HuangXiaolong Lai
    • Manxia TieJun CaoZhenhai HuangXiaolong Lai
    • H04L9/32
    • H04L9/321H04L9/3247
    • An entity bidirectional authentication method and system, the method involves: the first entity sends the first message; the second entity sends the second message to the credible third party after receiving the said first message; the said credible third party returns the third message after receiving the second message; the said second entity sends the fourth message after receiving the third message and verifying it; the said first entity receives the said fourth message and verifies it, completes the authentication. Compared with the conventional authentication mechanism, the invention defines an on-line retrieval and authentication mechanism of a public key, realizes the centralized management for it, simplifies the operating condition of the protocol, and facilitates the application and implement.
    • 一种实体双向认证方法和系统,该方法涉及:第一实体发送第一消息; 第二实体在接收到所述第一消息之后将第二消息发送到可信第三方; 所述可信第三方在接收到第二消息后返回第三消息; 所述第二实体在接收到第三消息并验证之后发送第四消息; 所述第一实体接收所述第四消息并对其进行验证,从而完成认证。 与常规认证机制相比,本发明定义了公钥的在线检索和认证机制,实现了集中管理,简化了协议的工作状态,便于应用和实现。
    • 39. 发明授权
    • Key management and node authentication method for sensor network
    • 传感器网络的密钥管理和节点认证方法
    • US08913751B2
    • 2014-12-16
    • US13503171
    • 2010-06-02
    • Zhiqiang DuJun CaoManxia TieZhenhai Huang
    • Zhiqiang DuJun CaoManxia TieZhenhai Huang
    • H04L9/08H04L29/06H04W12/04H04W84/18H04W12/06H04L29/08
    • H04L63/061H04L63/062H04L63/08H04L63/1441H04L67/12H04W12/04H04W12/06H04W84/18
    • A key management and node authentication method for a sensor network is disclosed. The method comprises the following steps of: 1) keys pre-distribution: before deploying the network, communication keys for establishing security connection between nodes are pre-distributed to all of nodes by a deployment server. 2) Keys establishment: after deploying the network, a pair key for the security connection is established between nodes, which includes the following steps of: 2.1) establishment of shared keys: the pair key is established between neighbor nodes in which the shared keys are existed; 2.2) path keys establishment: the pair key is established between the nodes in which there is no shared keys but there is a multi-hop security connection. 3) Node identity (ID) authentication: before formally communicating between nodes, the identity is authenticated so as to determine the legality and the validity of the identity of the other. It is possible for effectively resisting attacks such as wiretapping, tampering, and replaying and the like for the network communication, realizing the secret communication between the nodes, effectively saving resources of the nodes of the sensor network, and prolonging the service lift of the sensor network in the method.
    • 公开了一种用于传感器网络的密钥管理和节点认证方法。 该方法包括以下步骤:1)密钥预分发:在部署网络之前,通过部署服务器将节点之间建立安全连接的通信密钥预分配给所有节点。 2)密钥建立:部署网络后,在节点之间建立安全连接对,包括以下步骤:2.1建立共享密钥:在共享密钥的邻居节点之间建立配对密钥 存在; 2.2)路径密钥建立:在没有共享密钥的节点之间建立配对密钥,但存在多跳安全连接。 3)节点身份(ID)认证:在节点之间正式通信之前,身份被认证,以确定其他身份的合法性和有效性。 有效抵御网络通信窃听,篡改,重放等攻击,实现节点之间的秘密通信,有效节省传感器网络节点的资源,延长传感器的业务提升 网络中的方法。