专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

51. 发明授权

US09668128B2 Method for authentication of a remote station using a secure element 有权
公开(公告)号：US09668128B2
公开(公告)日：2017-05-30
申请号：US13213401
申请日：2011-08-19
申请人： Anand Palanigounder , Edward George Tiedemann, Jr. , John Wallace Nasielski
发明人： Anand Palanigounder , Edward George Tiedemann, Jr. , John Wallace Nasielski
IPC分类号： G06F9/00 , H04W12/06 , H04L29/06 , H04W12/12
CPC分类号： H04W12/06 , H04L63/0823 , H04L63/0853 , H04W12/12
摘要： Disclosed is a method for authentication of a remote station by a management station using a secure element. In the method, the remote station receives an identity request from the secure element. The identity request includes a first challenge provided to the secure element by the management station. The remote station forwards an identity response to the secure element. The identity response includes a response to the first challenge that is signed by a key of the remote station, and the signed response to the first challenge is for use by the management station to authenticate the remote station.

52. 发明授权

US09385862B2 Method and apparatus for binding subscriber authentication and device authentication in communication systems 有权
标题翻译：用于在通信系统中绑定用户认证和设备认证的方法和装置
公开(公告)号：US09385862B2
公开(公告)日：2016-07-05
申请号：US13161336
申请日：2011-06-15
申请人： Adrian Edward Escott , Anand Palanigounder
发明人： Adrian Edward Escott , Anand Palanigounder
IPC分类号： H04L9/08 , H04L29/06 , H04W12/04 , H04L9/32 , H04W12/06 , H04W88/02
CPC分类号： H04L9/0816 , H04L9/0838 , H04L9/0844 , H04L9/32 , H04L9/3271 , H04L9/3273 , H04L63/061 , H04L63/0823 , H04L63/0853 , H04L2463/061 , H04L2463/082 , H04W12/04 , H04W12/06 , H04W88/02
摘要： An authentication method is provided between a device (e.g., a client device or access terminal) and a network entity. A removable storage device may be coupled to the device and stores a subscriber-specific key that may be used for subscriber authentication. A secure storage device may be coupled to the device and stores a device-specific key used for device authentication. Subscriber authentication may be performed between the device and a network entity. Device authentication may also be performed of the device with the network entity. A security key may then be generated that binds the subscriber authentication and the device authentication. The security key may be used to secure communications between the device and a serving network.
摘要翻译：在设备（例如，客户端设备或接入终端）与网络实体之间提供认证方法。可移动存储设备可以耦合到设备并且存储可以用于用户认证的用户专用密钥。安全存储设备可以耦合到设备并存储用于设备认证的设备专用密钥。可以在设备和网络实体之间执行用户认证。还可以使用网络实体对设备执行设备认证。然后可以生成绑定用户认证和设备认证的安全密钥。安全密钥可以用于保护设备和服务网络之间的通信。

53. 发明授权

US09112905B2 Authentication of access terminal identities in roaming networks 有权
标题翻译：漫游网络中接入终端身份认证
公开(公告)号：US09112905B2
公开(公告)日：2015-08-18
申请号：US13243185
申请日：2011-09-23
申请人： Yinian Mao , Qing Li , Anand Palanigounder
发明人： Yinian Mao , Qing Li , Anand Palanigounder
IPC分类号： H04W12/06 , H04W60/00 , H04L29/06 , H04W8/12
CPC分类号： H04L63/162 , H04L63/0823 , H04L63/083 , H04W8/12 , H04W12/06
摘要： Various methods of authenticating an access terminal are presented in the case where the access terminal is roaming within a visited network. An access terminal sends a device authentication message to a visited validation server or a home validation server, where the device authentication message includes an access terminal identifier and authentication data generated at least in part using the validation key. In some embodiments, the authentication data may include a digital signature by a validation key associated with the access terminal identifier. Such a signature can be authenticated by either the visited validation server or the home validation server. In other embodiments, the authentication data may include an access terminal authentication token sent to the visited validation server. The visited validation server can authenticate the device authentication message by comparing the access terminal authentication token with an access terminal authentication token obtained from the home validation server.
摘要翻译：在接入终端在被访问网络内漫游的情况下，呈现鉴别接入终端的各种方法。接入终端向被访问的验证服务器或家庭验证服务器发送设备认证消息，其中设备认证消息包括接入终端标识符和至少部分地使用验证密钥生成的认证数据。在一些实施例中，认证数据可以包括通过与接入终端标识符相关联的验证密钥的数字签名。访问验证服务器或归属验证服务器可以对这样的签名进行身份验证。在其他实施例中，认证数据可以包括发送到访问验证服务器的接入终端认证令牌。所访问的验证服务器可以通过将接入终端认证令牌与从家庭验证服务器获得的接入终端认证令牌进行比较来认证设备认证消息。

54. 发明授权

US08938621B2 Computing device integrity protection 有权
标题翻译：计算设备完整性保护
公开(公告)号：US08938621B2
公开(公告)日：2015-01-20
申请号：US13274968
申请日：2011-11-18
申请人： Yinian Mao , Anand Palanigounder , Qing Li , Edward George Tiedemann, Jr. , John Wallace Nasielski
发明人： Yinian Mao , Anand Palanigounder , Qing Li , Edward George Tiedemann, Jr. , John Wallace Nasielski
IPC分类号： G06F11/30 , G06F12/14 , G06F21/73 , G06F21/70 , G06F15/16 , G06F17/30
CPC分类号： G06F21/73 , G06F21/70 , H04L9/3239
摘要： A method of operating a computer system includes: obtaining, at the computer system, verification-input information associated with each of multiple hardware components of the computer system; cryptographically processing, at the computer system, the verification-input information to obtain a cryptographic result; and determining, at the computer system, whether to allow or inhibit, depending upon a comparison of the cryptographic result with a verification value, further operation of at least one of the hardware components.
摘要翻译：一种操作计算机系统的方法包括：在计算机系统处获得与计算机系统的多个硬件组件中的每一个相关联的验证输入信息; 在计算机系统处密码处理验证输入信息以获得密码结果; 以及在所述计算机系统处，根据所述密码结果与验证值的比较来确定是否允许或禁止所述硬件组件中的至少一个的进一步操作。

55. 发明授权

US08839373B2 Method and apparatus for relay node management and authorization 有权
标题翻译：中继节点管理和授权的方法和装置
公开(公告)号：US08839373B2
公开(公告)日：2014-09-16
申请号：US13162332
申请日：2011-06-16
申请人： Anand Palanigounder , Adrian Edward Escott
发明人： Anand Palanigounder , Adrian Edward Escott
IPC分类号： H04W12/08 , H04L12/24 , H04W12/06 , H04B7/155 , H04W84/04 , H04W24/02
CPC分类号： H04W12/06 , H04B7/155 , H04L41/0803 , H04L41/28 , H04W24/02 , H04W84/045 , H04W84/047
摘要： Methods and apparatuses are provided for deploying relay nodes in a communication network. A relay node can initially be wirelessly authenticated to a network entity using initial security credentials. In response to a successful authentication, the relay node is authorized to wirelessly communicate with the communication network for a limited purpose of configuring the relay node for relay device operations. The relay node can receive new security credentials from the communication network, and is subsequently re-authenticated to the network entity using the new security credentials. In response to a successful re-authentication, the relay node is authorized by the network to operate as a relay device for conveying traffic between one or more access terminals and the communication network.
摘要翻译：提供了用于在通信网络中部署中继节点的方法和装置。中继节点最初可以使用初始安全凭证对网络实体进行无线认证。响应于成功的认证，中继节点被授权与通信网络无线通信，用于配置用于中继设备操作的中继节点的有限目的。中继节点可以从通信网络接收新的安全凭证，并且随后使用新的安全凭证对网络实体进行重新认证。响应于成功的重新认证，中继节点被网络授权用作中继设备，用于在一个或多个接入终端与通信网络之间传送业务。

56. 发明申请

US20130132734A1 Computing device integrity protection 有权
公开(公告)号：US20130132734A1
公开(公告)日：2013-05-23
申请号：US13274968
申请日：2011-11-18
申请人： Yinian MAO , Anand Palanigounder , Qing Li , Edward George Tiedemann, JR. , John Wallace Nasielski
发明人： Yinian MAO , Anand Palanigounder , Qing Li , Edward George Tiedemann, JR. , John Wallace Nasielski
IPC分类号： G06F21/00
CPC分类号： G06F21/73 , G06F21/70 , H04L9/3239
摘要： A method of operating a computer system includes: obtaining, at the computer system, verification-input information associated with each of multiple hardware components of the computer system; cryptographically processing, at the computer system, the verification-input information to obtain a cryptographic result; and determining, at the computer system, whether to allow or inhibit, depending upon a comparison of the cryptographic result with a verification value, further operation of at least one of the hardware components.

57. 发明申请

US20130117843A1 Methods, Devices, And Systems For Detecting Return-Oriented Programming Exploits 有权
标题翻译：用于检测面向回归的编程漏洞的方法，设备和系统
公开(公告)号：US20130117843A1
公开(公告)日：2013-05-09
申请号：US13290932
申请日：2011-11-07
申请人： Daniel KOMAROMY , Alex Gantman , Brian M. Rosenberg , Arun Balakrishan , Renwei Ge , Gregory G. Rose , Anand Palanigounder
发明人： Daniel KOMAROMY , Alex Gantman , Brian M. Rosenberg , Arun Balakrishan , Renwei Ge , Gregory G. Rose , Anand Palanigounder
IPC分类号： G06F21/00
CPC分类号： G06F21/52 , G06F11/3037 , G06F11/3466 , G06F12/0811 , G06F12/0848 , G06F12/0875 , G06F12/14 , G06F21/554 , G06F21/566 , G06F2212/452
摘要： Methods, devices, and systems for detecting return-oriented programming (ROP) exploits are disclosed. A system includes a processor, a main memory, and a cache memory. A cache monitor develops an instruction loading profile by monitoring accesses to cached instructions found in the cache memory and misses to instructions not currently in the cache memory. A remedial action unit terminates execution of one or more of the valid code sequences if the instruction loading profile is indicative of execution of an ROP exploit involving one or more valid code sequences. The instruction loading profile may be a hit/miss ratio derived from monitoring cache hits relative to cache misses. The ROP exploits may include code snippets that each include an executable instruction and a return instruction from valid code sequences.
摘要翻译：公开了用于检测返回式编程（ROP）漏洞的方法，设备和系统。系统包括处理器，主存储器和高速缓冲存储器。高速缓存监视器通过监视对高速缓冲存储器中发现的高速缓存指令的访问来开发指令加载简档，并且错过当前不在高速缓冲存储器中的指令。如果指令加载简档指示涉及一个或多个有效代码序列的ROP利用的执行，补救动作单元终止一个或多个有效代码序列的执行。指令加载简档可以是相对于高速缓存未命中从监视高速缓存命中得到的命中/未命中比率。 ROP利用可能包括代码段，每个代码片段都包含可执行指令和来自有效代码序列的返回指令。

58. 发明授权

US08126148B2 Securing home agent to mobile node communication with HA-MN key 有权
公开(公告)号：US08126148B2
公开(公告)日：2012-02-28
申请号：US11104916
申请日：2005-04-13
申请人： Kuntal Chowdhury , Anand Palanigounder
发明人： Kuntal Chowdhury , Anand Palanigounder
IPC分类号： H04L9/00
CPC分类号： H04L63/061 , H04L63/062 , H04W80/04
摘要： The invention is a new protocol for securing the communication link between the Home Agent and the Mobile Node. A cipher key and an integrity key are generated at a home AAA server and are also generated independently at the Mobile Node. The two keys generated at the home AAA server are transmitted to the Home Agent to secure information packets transmitted between the Mobile Node and the Home Agent. The cipher key and integrity key are used to establish a security association used for information packet transmissions. The cipher key is used to encrypt the information packets, and the integrity key is used to ensure that the contents of the encrypted message are not altered.

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式