专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

51. 发明申请

US20050117746A1 Systems and methods for compression of key sets having multiple keys 有权
公开(公告)号：US20050117746A1
公开(公告)日：2005-06-02
申请号：US11016458
申请日：2004-12-17
申请人： Josh Benaloh
发明人： Josh Benaloh
IPC分类号： G06F1/00 , G06F21/00 , G11B20/00 , H04L9/08 , H04L9/30 , H04K1/00
CPC分类号： G06F21/10 , G06F19/00 , G06F2211/007 , G06F2221/0704 , G06F2221/0737 , G06F2221/0753 , G06F2221/2107 , G06Q20/3829 , G11B20/00086 , G11B20/0021 , G11B20/00507 , H04L9/0836 , H04L2209/60
摘要： Systems, methods and modulated data signals are described herein that provide an efficient way to derive a single key from which a user can extract virtually any number of data encryption keys. A database is logically divided into segments and a small prime number is associated with each segment. An encryption key is derived for each segment in the database and a key set is determined for distributing a data subset to a user. Each segment is encrypted with the corresponding encryption key. A single key is derived using the prime numbers associated with the data segments and the single key, the encrypted database, and a small amount of public information is provided to the user. The user utilizes this information to extract the encryption key set from the single key. One implementation utilizes a tree structure to significantly reduce the number of modular exponentiations that must be calculated when extracting the encryption keys. This, in turn, dramatically decreases the processing overhead that must be allocated to the processing associated with deriving the encryption keys.

52. 发明授权

US6065008A System and method for secure font subset distribution 失效
标题翻译：用于安全字体子集分发的系统和方法
公开(公告)号：US6065008A
公开(公告)日：2000-05-16
申请号：US942036
申请日：1997-10-01
申请人： Daniel R. Simon , Josh Benaloh , Donald D. Chinn , Gregory Hitchcock , David Meltzer
发明人： Daniel R. Simon , Josh Benaloh , Donald D. Chinn , Gregory Hitchcock , David Meltzer
IPC分类号： G06F1/00 , G06F17/21 , G06F21/00 , G06F17/30
CPC分类号： G06F17/214 , G06F21/10 , Y10S707/99939
摘要： This invention concerns a system and method for securely distributing subsetted fonts from a distributor to a client. The system includes a signing module to construct an authentication tree having leaves formed of glyphs, one or more intermediate levels of nodes computed as one-way functions of the glyphs, and a root computed as a one-way function of the nodes. The signing module digitally signs the root of the authentication tree using a private signing key unique to the font creator or distributor. The system has a subsetting module to construct a font subset file that contains selected glyphs and other data to be included in a font subset. The font subset file also holds the digitally signed root of the font authentication tree and one or more authentication values of the authentication tree that represents non-selected glyphs and data of the font that are not contained in the font subset. The font subset file is distributed to requesting clients. An authentication module at the client authenticates the font subset file received from the distributor. The authentication module reconstructs the root of the authentication tree using the selected glyphs and data in the font subset and the authentication values that represent the non-selected glyphs and data not contained in the font subset. The authentication module also produces an unsigned version of the digitally signed root using a public key of the font creator to produce an unsigned root digest. The authentication module compares the unsigned root to the reconstructed root and if and only if they match, authenticates the font subset file as originating from the distributor (or font creator) and not being subsequently altered.
摘要翻译：本发明涉及一种用于将分发的字体从分发者安全分发到客户端的系统和方法。该系统包括签名模块，用于构造具有由字形形成的叶子，作为字形的单向功能计算的一个或多个中间级节点的认证树，以及作为节点的单向功能计算的根。签名模块使用字体创建者或分发者特有的私有签名密钥对认证树的根进行数字签名。该系统具有一个子集模块，用于构建一个字体子集文件，其中包含所选字形和其他要包含在字体子集中的数据。字体子集文件还保存字体认证树的数字签名的根，并且认证树的一个或多个认证值表示未包含在字体子集中的未选择的字形和字体的数据。字体子集文件分发给请求的客户端。客户端的认证模块认证从分发者接收的字体子集文件。认证模块使用所选字形和字体子集中的数据以及表示未包含在字体子集中的未选择字形和数据的认证值来重建认证树的根。认证模块还使用字体创建者的公共密钥生成无符号版本的数字签名根，以生成无符号根摘要。认证模块将未经签名的根与重建的根进行比较，当且仅当它们匹配时才认证字体子集文件是源自分发者（或字体创建者），而不是随后被更改。

53. 发明授权

US5781723A System and method for self-identifying a portable information device to a computing unit 失效
标题翻译：用于将便携式信息设备自动识别到计算单元的系统和方法
公开(公告)号：US5781723A
公开(公告)日：1998-07-14
申请号：US657354
申请日：1996-06-03
申请人： Bennet Yee , Josh Benaloh
发明人： Bennet Yee , Josh Benaloh
IPC分类号： G06F1/00 , G06F9/445 , G06F21/00 , G07F7/10 , H04L9/32 , H04K1/00
CPC分类号： G07F7/1008 , G06F21/34 , G06F9/4411 , G06Q20/341 , G06Q20/4097 , G07F7/1016 , H04L9/3247 , H04L9/3263 , G06F2211/008 , G06F2221/2107 , H04L2209/56 , H04L2209/80
摘要： A system includes a portable information device and a computing unit, and is architected to enable the portable information device to identify its type and properties to the computing unit. The portable information device has a processor and a memory. The memory stores a device class tag which is indicative of a type of the portable information device. When communication is established between the portable information device and the computing unit, the portable information device sends an initial message which includes a result of a mathematical operation involving the device class tag. The mathematical operation renders it computationally difficult or infeasible to deduce the device class tag from the result so that the device class tag is not exposed from the portable information device. The result might be a hash value of the device class tag which is derived using a hashing function, or data that has been signed using the device class tag as a private signing key. The computing unit uses the tag-related portion of the message to identify the type of the portable information device. The computing unit has access to a record which correlates the hash value or complementary device class public signing key (i.e., the complementary version of the device class tag when used as a private signing key) with the type of device, as well as with the device's security properties and operating attributes. The computing unit cross-references the hash value or device class public signing key to determine the device type. The computing unit can be a certifying authority which issues a certificate confirming the identity and type of portable information device. The certificate is stored on the portable information device and presented thereafter to all communicating agents to identify the device type and attributes for transactions.
摘要翻译：系统包括便携式信息设备和计算单元，并被构造为使得便携式信息设备能够将其类型和属性识别到计算单元。便携式信息装置具有处理器和存储器。存储器存储指示便携式信息设备的类型的设备类标签。当在便携式信息设备和计算单元之间建立通信时，便携式信息设备发送包括涉及设备类标签的数学运算结果的初始消息。数学运算使得计算上难以或不可能从结果中推导出设备类标签，从而使设备类标签不会从便携式信息设备暴露出来。结果可能是使用散列函数导出的设备类标记的哈希值，或者使用设备类标签作为私有签名密钥签名的数据。计算单元使用消息的标签相关部分来识别便携式信息设备的类型。计算单元可以访问将哈希值或补充设备类公共签名密钥（即，当用作私有签名密钥时的设备类标签的互补版本）与设备类型相关联的记录，以及与设备的安全属性和操作属性。计算单元交叉引用哈希值或设备类公共签名密钥以确定设备类型。计算单元可以是证明机构，其颁发确认便携式信息设备的身份和类型的证书。证书存储在便携式信息设备上，并且随后呈现给所有通信代理以识别用于事务的设备类型和属性。

54. 发明授权

US08837718B2 User-specified sharing of data via policy and/or inference from a hierarchical cryptographic store 有权
标题翻译：用户通过策略和/或推论从分层加密存储中指定数据共享
公开(公告)号：US08837718B2
公开(公告)日：2014-09-16
申请号：US12413445
申请日：2009-03-27
申请人： Kristin Estella Lauter , Mihir Bellare , Josh Benaloh , Melissa E. Chase , Erik J. Horvitz , Chris Demetrios Karkanias
发明人： Kristin Estella Lauter , Mihir Bellare , Josh Benaloh , Melissa E. Chase , Erik J. Horvitz , Chris Demetrios Karkanias
IPC分类号： H04L9/14 , H04L9/30 , G06F21/62 , H04L9/08
CPC分类号： H04L9/3073 , G06F21/6209 , H04L9/0836 , H04L2209/88
摘要： The claimed subject matter relates to architectures that can construct a hierarchical set of decryption keys for facilitating user-controlled encrypted data storage with diverse accessibility and hosting of that encrypted data. In particular, a root key can be employed to derive a hierarchical set of decryption keys and a corresponding hierarchical set of encryption keys. Each key derived can conform to a hierarchy associated with encrypted data of the user, and the decryption capabilities of the decryption keys can be configured based upon a location or assignment of the decryption key within the hierarchy. The cryptographic methods can be joined with a policy language that specifies sets of keys for capturing preferences about patterns of sharing. These policies about sharing can themselves require keys for access and the policies can provide additional keys for other aspects of policy and or base-level accesses.
摘要翻译：所要求保护的主题涉及可以构建分层的解密密钥集的体系结构，以便利用不同的可访问性和托管该加密数据来促进用户控制的加密数据存储。特别地，可以使用根密钥来导出分层的解密密钥集合和对应的分层加密密钥集合。导出的每个密钥可以符合与用户的加密数据相关联的层次，并且可以基于层次结构内的解密密钥的位置或分配来配置解密密钥的解密能力。加密方法可以与指定用于捕获关于共享模式的偏好的键的集合的策略语言相结合。这些关于共享的策略本身可以要求访问密钥，并且策略可以为策略和/或基本级别访问的其他方面提供附加的密钥。

55. 发明授权

US08230231B2 One time password key ring for mobile computing device 有权
标题翻译：用于移动计算设备的一次密码密钥环
公开(公告)号：US08230231B2
公开(公告)日：2012-07-24
申请号：US12423163
申请日：2009-04-14
申请人： Trevor William Freeman , Josh Benaloh , K John Biccum , Atul Kumar Shah
发明人： Trevor William Freeman , Josh Benaloh , K John Biccum , Atul Kumar Shah
IPC分类号： H04L29/06
CPC分类号： H04L9/0891 , G06F21/31 , G06F21/33 , H04L9/3228 , H04L9/3247 , H04L9/3271 , H04L63/0838 , H04L2209/80
摘要： Single-use character combinations are a secure mechanism for user authentication. Such “one-time passwords” (OTPs) can be generated by a mobile device to which the user otherwise maintains easy access. A key exchange, such as in accordance with the Diffie-Hellman algorithm, can provide both the mobile device and a server with a shared secret from which the OTPs can be generated. The shared secret can be derived from parameters posted on the server and updated periodically, and the mobile device can obtain such parameters from the server before generating an OTP. Such parameters can also specify the type of OTP mechanism to be utilized. A second site can, independently, establish an OTP mechanism with the mobile device. For efficiency, the first server can provide an identity token which provides the mobile device's public key in a trusted manner, enabling more efficient generation of the shared secret with the second server.
摘要翻译：一次性字符组合是用户认证的安全机制。这种“一次性密码”（OTP）可以由用户另外保持容易访问的移动设备生成。密钥交换，例如根据Diffie-Hellman算法，可以向移动设备和服务器提供可以从其生成OTP的共享秘密。共享密钥可以从服务器上发布的参数导出，并定期更新，移动设备可以在生成OTP之前从服务器获取这些参数。这样的参数也可以指定要使用的OTP机制的类型。第二个站点可以独立地使用移动设备建立OTP机制。为了提高效率，第一台服务器可以提供一种以令人信服的方式提供移动设备公钥的身份令牌，从而能够更有效地生成第二台服务器的共享密钥。

56. 发明授权

US08140855B2 Security-enhanced log in 有权
标题翻译：安全增强登录
公开(公告)号：US08140855B2
公开(公告)日：2012-03-20
申请号：US12101166
申请日：2008-04-11
申请人： Bin Benjamin Zhu , Min Feng , Aimin Pan , Yuan Kong , Nathan C. Sherman , Hui Fan , Rui Guo , Josh Benaloh
发明人： Bin Benjamin Zhu , Min Feng , Aimin Pan , Yuan Kong , Nathan C. Sherman , Hui Fan , Rui Guo , Josh Benaloh
IPC分类号： G06F21/00 , G06F12/00
CPC分类号： G06F21/34 , G06F21/40 , G06F21/41 , G06F21/46 , H04L63/083
摘要： A security-enhanced login technique that provides a convenient and easy-to-use two factor technique to enhance the security of passwords without requiring any changes on the server side of a client-server network. The technique employs a convenient and easy-to-use two-factor technique to generate strong passwords for Web and other applications. In this technique, a convenient or personal device such as a mouse is used as the other factor besides a user password. A secret stored in the mouse or other personal device is hashed together with the password entered by a user and the server ID, to generate a strong, server-specific password which is used to authenticate the user to the server. This password enhancement operation is carried out inside the personal device.
摘要翻译：一种安全增强的登录技术，提供了一种方便易用的双因素技术来增强密码的安全性，而不需要在客户端 - 服务器网络的服务器端进行任何更改。该技术采用方便易用的双因素技术为Web和其他应用程序生成强大的密码。在这种技术中，除了用户密码之外，还使用诸如鼠标之类的便利的或个人的设备作为另一个因素。存储在鼠标或其他个人设备中的秘密与用户输入的密码和服务器ID一起被散列，以生成用于向服务器认证用户的强大的服务器专用密码。该密码增强操作在个人设备内部进行。

57. 发明授权

US07437771B2 Rendering protected digital content within a network of computing devices or the like 有权
标题翻译：在计算设备的网络内渲染受保护的数字内容等
公开(公告)号：US07437771B2
公开(公告)日：2008-10-14
申请号：US10827167
申请日：2004-04-19
申请人： James M. Alkove , Clifford P. Van Dyke , Eduardo Oliveira , Josh Benaloh , Troy Batterberry
发明人： James M. Alkove , Clifford P. Van Dyke , Eduardo Oliveira , Josh Benaloh , Troy Batterberry
IPC分类号： H04L9/14
CPC分类号： G06F21/10 , G06F2221/2111
摘要： Transmitter and receiver computing device are interconnected by a network. The transmitter transmits protected digital content to the receiver in a manner so that the receiver can access the content even though the content is directly licensed to the transmitter and not the receiver.
摘要翻译：发射机和接收机计算设备通过网络互连。发射机以受话器可接入内容的方式将受保护的数字内容发送给接收机，即使内容直接被许可给发射机而不是接收机。

58. 发明申请

US20060167874A1 Game-powered search engine 失效
公开(公告)号：US20060167874A1
公开(公告)日：2006-07-27
申请号：US11041557
申请日：2005-01-24
申请人： Luis von Ahn Arellano , Eric Brill , John Platt , Josh Benaloh
发明人： Luis von Ahn Arellano , Eric Brill , John Platt , Josh Benaloh
IPC分类号： G06F7/00 , G06F17/30
CPC分类号： G06F17/30864 , Y10S707/99945 , Y10S707/99948
摘要： The subject invention provides a unique system and method that facilitates an interactive game-powered search engine that serve the purposes of both users who may be looking for information as well as game participants who may desire to earn some reward or level of enjoyment by playing the game. More specifically, the system and method provides feedback to a user based on the user's input string or a string derived therefrom. The feedback can be a response or answer to the user's input in the form of text, an image, audio or sound, video, and/or a URL that is provided by one or more game participants when there is some degree of consistency or agreement between the responses or when individual players have demonstrated good reliability in their responses.

59. 发明申请

US20060104441A1 Password protection 有权
公开(公告)号：US20060104441A1
公开(公告)日：2006-05-18
申请号：US10990798
申请日：2004-11-17
申请人： Jesper Johansson , Josh Benaloh
发明人： Jesper Johansson , Josh Benaloh
IPC分类号： H04L9/00
CPC分类号： G06F21/31 , G06F21/33
摘要： Systems and methods for password protection are described. In one aspect, an asymmetric key pair is deterministically formed by combining a password and other data. The public key of the asymmetric key pair is exported to an external device. The private key of the asymmetric key pair is used to effect subsequent authentications to the external device.

60. 发明申请

US20060095578A1 Human interactive proof sevice 有权
标题翻译：人工交互式验证服务
公开(公告)号：US20060095578A1
公开(公告)日：2006-05-04
申请号：US10977185
申请日：2004-10-29
申请人： Ismail Paya , Josh Benaloh , Raja Perumal , Trevin Chow , Erren Lester , Jeffrey Steinbok , Julien Couvreur
发明人： Ismail Paya , Josh Benaloh , Raja Perumal , Trevin Chow , Erren Lester , Jeffrey Steinbok , Julien Couvreur
IPC分类号： G06F15/16
CPC分类号： G06F21/31 , G06F2221/2119
摘要： A human interactive proof (HIP) service is described. In response to a request from a web server, the HIP service generates a HIP challenge and an associated attestation. The web server can then embed the generated HIP challenge in a requested web page. The attestation is used to determine whether or not a user response to the HIP challenge is correct.
摘要翻译：描述了人类交互式证明（HIP）服务。响应于来自Web服务器的请求，HIP服务产生HIP挑战和相关联的认证。然后，Web服务器可以将生成的HIP挑战嵌入到所请求的网页中。该证明用于确定用户对HIP挑战的响应是否正确。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式