专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明申请

WO2007069108A2 METHOD AND SYSTEM FOR AUTHENTICATION OF A LOW-RESOURCE PROVER 审中-公开
标题翻译：用于认证低资源执行的方法和系统
公开(公告)号：WO2007069108A2
公开(公告)日：2007-06-21
申请号：PCT/IB2006/054453
申请日：2006-11-27
申请人： KONINKLIJKE PHILIPS ELECTRONICS N.V. , MAUBACH, Stefan, J. , CONRADO, Claudine, V. , SCHRIJEN, Geert, J.
发明人： MAUBACH, Stefan, J. , CONRADO, Claudine, V. , SCHRIJEN, Geert, J.
CPC分类号： H04L9/3026 , H04L9/0844 , H04L2209/805
摘要： A method is presented for enabling authentication of a prover in a Radio Frequency Identification system comprising the prover and a verifier, the method comprising the steps of: the prover sending a prover identifier and a parent identifier to the verifier, the verifier sending a verifier identifier to the prover, the prover calculating a first common secret by means of a prover polynomial, where an unknown in the prover polynomial is substituted by a result calculated using a function of at least the verifier identifier, and the verifier calculating the first common secret by means of a first verifier polynomial, wherein a first unknown in the first verifier polynomial is substituted by the prover identifier and a second unknown in the first verifier polynomial is substituted by the parent identifier, the prover creating a first message by modulating a first core secret with regard to at least the first common secret, aid prover sending the first message to the verifier, and the verifier creating a first candidate for the first core secret by demodulating the first message with the first common secret, whereby the candidate for the first core secret is for use in the authentication. This allows the verifier and prover to independently create a common secret, used for modulating the core secret. Furthermore, no pre-registration of the prover with the verifier is required and calculation using polynomials requires little processing power. A corresponding system, prover and verifier are also presented.
摘要翻译：提供了一种用于在包括证明者和验证者的射频识别系统中验证证明者的方法，所述方法包括以下步骤：证明者向验证者发送证明者标识符和父标识符，验证者发送验证者标识符证明者通过证明者多项式计算第一公共秘密，其中证明者多项式中的未知数由使用至少验证者标识符的函数计算的结果代替，并且验证者通过以下方式计算第一公共秘密：第一验证者多项式的手段，其中，所述第一验证者多项式中的第一未知数由所述证明者标识符代替，并且所述第一验证者多项式中的第二未知被所述父标识符代替，所述证明者通过调制第一核心秘密来创建第一消息至少第一个共同的秘密，援助证明者发送第一个消息给验证者，和veri 通过用第一公共秘密解调第一消息来创建第一核心秘密的第一候选者，由此第一核心秘密的候选者用于认证。这允许验证者和证明者独立地创建一个共同的秘密，用于调制核心秘密。此外，不需要具有验证者的证明者的预注册，并且使用多项式的计算需要很少的处理能力。还提出了相应的系统，证明者和验证者。

2. 发明申请

WO2006077551A3 PRIVATE AND CONTROLLED OWNERSHIP SHARING 审中-公开
公开(公告)号：WO2006077551A3
公开(公告)日：2006-07-27
申请号：PCT/IB2006/050206
申请日：2006-01-19
申请人： KONINKLIJKE PHILIPS ELECTRONICS N.V. , CONRADO, Claudine, V. , SCHRIJEN, Geert, J. , PETKOVIC, Milan
发明人： CONRADO, Claudine, V. , SCHRIJEN, Geert, J. , PETKOVIC, Milan
IPC分类号： G06F21/00
摘要： The present invention relates to a method, a device and a system for preventing unauthorized introduction of content items in a network containing compliant devices and enabling users in the network to be anonymous. A basic idea of the present invention is to provide a CA (206) with a fingerprint of a content item to be introduced in a network at which the CA is arranged. Further, the CA is provided with an identifier of a content introducer (201), which introduces the particular content item in the network. The CA compares the fingerprint to a predetermined set of fingerprints, and content item intro¬ duction is allowed if the content itemfingerprint cannot be found among the fingerprints comprised in the set. On introduction of the content item, the CA generates a pseudonym for the content introducer and creates a signed content ID certificate comprising at least said fingerprint and a unique content identifier for the content item and the pseudonym of the content introducer.

3. 发明申请

WO2006077551A2 PRIVATE AND CONTROLLED OWNERSHIP SHARING 审中-公开
标题翻译：私有和控制所有权共享
公开(公告)号：WO2006077551A2
公开(公告)日：2006-07-27
申请号：PCT/IB2006050206
申请日：2006-01-19
申请人： KONINKL PHILIPS ELECTRONICS NV , CONRADO CLAUDINE V , SCHRIJEN GEERT J , PETKOVIC MILAN
发明人： CONRADO CLAUDINE V , SCHRIJEN GEERT J , PETKOVIC MILAN
IPC分类号： G06F21/10 , G06F21/64 , G06Q20/38
CPC分类号： H04L63/126 , G06F21/10 , G06F21/645 , G06F2221/0737 , G06Q20/383 , H04L63/0421 , H04L63/0428 , H04L63/123 , H04L69/03 , H04L2463/101
摘要： The present invention relates to a method, a device and a system for preventing unauthorized introduction of content items in a network containing compliant devices and enabling users in the network to be anonymous. A basic idea of the present invention is to provide a CA (206) with a fingerprint of a content item to be introduced in a network at which the CA is arranged. Further, the CA is provided with an identifier of a content introducer (201), which introduces the particular content item in the network. The CA compares the fingerprint to a predetermined set of fingerprints, and content item intro¬ duction is allowed if the content itemfingerprint cannot be found among the fingerprints comprised in the set. On introduction of the content item, the CA generates a pseudonym for the content introducer and creates a signed content ID certificate comprising at least said fingerprint and a unique content identifier for the content item and the pseudonym of the content introducer.
摘要翻译：本发明涉及一种用于防止在含有兼容设备的网络中未经授权的引入内容的方法，设备和系统，并使网络中的用户能够匿名。本发明的基本思想是向CA（206）提供要在CA布置的网络中引入的内容项目的指纹。此外，CA被提供有内容引入器（201）的标识符，其将特定内容项目引入网络。 CA将指纹与指定的一组指纹进行比较，如果在集合中包含的指纹中找不到内容项目指纹，则允许内容项目介绍。在引入内容项目时，CA为内容引导器生成假名，并创建包括至少所述指纹的签名内容ID证书和用于内容项目和内容引导器的假名的唯一内容标识符。

4. 发明申请

WO2005066735A1 PRESERVING PRIVACY WHILE USING AUTHORIZATION CERTIFICATES 审中-公开
标题翻译：在使用授权证书时保护隐私
公开(公告)号：WO2005066735A1
公开(公告)日：2005-07-21
申请号：PCT/IB2004/052793
申请日：2004-12-13
申请人： KONINKLIJKE PHILIPS ELECTRONICS N.V. , CONRADO, Claudine, V. , TUYLS, Pim, T. , KAMPERMAN, Franciscus, L., A., J.
发明人： CONRADO, Claudine, V. , TUYLS, Pim, T. , KAMPERMAN, Franciscus, L., A., J.
IPC分类号： G06F1/00
CPC分类号： H04L63/0823 , G06F21/6254 , H04L9/3218 , H04L9/3263 , H04L63/0407 , H04L63/102 , H04L2209/42 , H04L2209/56 , H04L2209/60
摘要： The invention proposes a method to provide privacy for users or a user from a group of users with respect to authorizations they are granted, where such authorizations are expressed using digital authorization certificates, and with respect to domain certificates in case of groups of users. The idea is to conceal the user identity in the certificates, while the certificate itself remains in the clear. In this way, certificates can be widely and openly available, e.g. in a public network, without a random observer being able to link a user to an authorization or to identify a user within a domain. Privacy is also provided towards the certificate verifier by means of zero-knowledge protocols, which are carried out between the user and the verifier in order for the verifier to check a user's entitlement to a certificate. Privacy is further provided towards the certificate issuer as well, by means of a mechanism that allows the anonymous (buying or) issuing of certificates from the issuer.
摘要翻译：本发明提出了一种方法，用于为用户或用户提供关于其授权的授权的用户或用户的隐私，其中使用数字授权证书表示授权，以及在用户组的情况下关于域证书。这个想法是在证书中隐藏用户身份，而证书本身保持清晰。以这种方式，证书可以广泛和公开地获得，例如。在公共网络中，没有随机观察者能够将用户链接到授权或识别域内的用户。还通过在用户和验证者之间执行的零知识协议向证书验证者提供隐私，以便验证者检查用户对证书的授权。通过允许发行人匿名（购买或发行）证书的机制，还向证书颁发者提供隐私。

5. 发明申请

WO2006077546A2 REGISTRATION PHASE 审中-公开
标题翻译：注册阶段
公开(公告)号：WO2006077546A2
公开(公告)日：2006-07-27
申请号：PCT/IB2006050200
申请日：2006-01-19
申请人： KONINKL PHILIPS ELECTRONICS NV , VAN DER VELDE WYTSE H , PETKOVIC MILAN , CONRADO CLAUDINE V , VAN DER VEEN MINNE
发明人： VAN DER VELDE WYTSE H , PETKOVIC MILAN , CONRADO CLAUDINE V , VAN DER VEEN MINNE
IPC分类号： G06F21/10 , G06F21/60
CPC分类号： G06F21/10 , G06F21/606 , G06F2221/0737 , G06F2221/2115 , G06F2221/2145
摘要： The present invention relates to a method, a device and a system for preventing unauthorized introduction of content items in a network containing compliant devices. A basic idea of the present invention is to provide a CA (206) with a fingerprint of a content item to be introduced in a network at which the CA is arranged. Further, the CA is provided with an identifier of a content introducer (201), which introduces the particular content item in the network. The CA compares the fingerprint to a predetermined set of fingerprints, and content item introduction is allowed if the content itemfingerprint cannot be found among the fingerprints comprised in the set. On introduction of the content item, the CA generates a watermark identifier, a watermarking key and a signed content ID certificate comprising at least said fingerprint and a unique content identifier for the content item and the identifier of the content introducer. Then, the watermark identifier is inserted in the content item by means of the watermarking key.
摘要翻译：本发明涉及用于防止在包含兼容设备的网络中未经授权引入内容项目的方法，设备和系统。本发明的基本思想是提供具有将要在安排CA的网络中引入的内容项的指纹的CA（206）。此外，CA被提供有在网络中引入特定内容项的内容引入者（201）的标识符。 CA将指纹与预定的一组指纹进行比较，并且如果在集合中包含的指纹中找不到内容项目指纹，则允许内容项目介绍。在引入内容项目时，CA生成水印标识符，水印密钥和至少包括所述指纹和用于内容项目和内容引入者的标识符的唯一内容标识符的签名内容ID证书。然后，通过水印密钥将水印标识符插入内容项中。

6. 发明申请

WO2006064417A1 SYSTEM, TERMINAL, METHOD, AND SOFTWARE FOR COMMUNICATING MESSAGES 审中-公开
标题翻译：系统，终端，方法和软件通信信息
公开(公告)号：WO2006064417A1
公开(公告)日：2006-06-22
申请号：PCT/IB2005/054102
申请日：2005-12-07
申请人： KONINKLIJKE PHILIPS ELECTRONICS N.V. , KELLY, Declan, P. , CONRADO, Claudine, V.
发明人： KELLY, Declan, P. , CONRADO, Claudine, V.
IPC分类号： H04L9/08
CPC分类号： H04L9/0844 , H04L9/0869 , H04L2209/04 , H04L2209/80
摘要： A system for secure communication of a message from a first terminal to a second terminal being operatively coupled by means of a communication network comprising an authenticating station for obtaining a random seed and for obtaining a masked seed by applying a masking function to the seed by encrypting the message using the masked seed for transmitting the seed and the encrypted message to the authenticating station; the authenticating station comprising further means for obtaining a further random seed for receiving the seed and the encrypted message for recovering the further masked seed by applying the masking function to the seed by decrypting the encrypted message using the recovered masked seed and by applying a masking function to the further seed by encrypting the recovered message using the further masked seed for transmitting the further seed and the further encrypted message to the second terminal; the second terminal comprising receiving means for receiving the further seed and the further encrypted message for recovering the further masked seed by applying the masking function to the further seed by decrypting the further encrypted message using the recovered further masked seed.
摘要翻译：一种用于从第一终端到第二终端的消息的安全通信的系统，其通过通信网络可操作地耦合，所述通信网络包括用于获得随机种子的认证站，并且通过对种子应用掩蔽功能来获得掩蔽种子，该消息使用掩蔽的种子将种子和加密的消息发送到认证站; 认证站包括用于通过使用恢复的掩蔽种子解密加密消息并通过应用掩蔽函数来获得用于接收种子的另外的随机种子和用于恢复另外的屏蔽种子的加密消息的装置，通过使用进一步掩蔽的种子将恢复的消息加密以进一步种子以将另外的种子和另外的加密消息发送到第二终端; 第二终端包括用于接收另外的种子的接收装置和用于通过使用恢复的另外的掩蔽种子解密另外的加密消息来将掩蔽功能应用于另外的种子来恢复另外的掩蔽种子的另外的加密消息。

7. 发明申请

WO2006000989A8 RENEWABLE AND PRIVATE BIOMETRICS 审中-公开
标题翻译：可再生和私有生物资料
公开(公告)号：WO2006000989A8
公开(公告)日：2006-04-13
申请号：PCT/IB2005052037
申请日：2005-06-22
申请人： KONINKL PHILIPS ELECTRONICS NV , AKKERMANS ANTONIUS H M , CONRADO CLAUDINE V , DENTENEER THEODORUS J J
发明人： AKKERMANS ANTONIUS H M , CONRADO CLAUDINE V , DENTENEER THEODORUS J J
IPC分类号： G07C9/00 , H04L9/32
CPC分类号： G07C9/00158 , G06K9/00885
摘要： The present invention relates to a method of authenticating an individual (321) at an authenticating device (311) and an authenticating system for authenticating an individual. A basic idea of the present invention is to store, at a device or a system with which an individual wishes to authenticate herself, one or more data structures each comprising a value based on an identifier pertaining to the individual and an encrypted copy of the identifier. When the individual wants to authenticate herself, she contacts the authenticating device whereby a request is made to attain the encrypted identifier included in a specific data structure stored at the authenticating device. The individual subsequently provides proof to the authenticating device that she actually knows the identifier.
摘要翻译：本发明涉及一种在认证装置（311）上认证个人（321）的方法和用于认证个人的认证系统。本发明的基本思想是在个人希望自己认证的设备或系统上存储一个或多个数据结构，每个数据结构包括基于与个人有关的标识符的值和标识符的加密副本。当个人想要自己认证时，她联系认证设备，由此进行请求以获得包含在存储在认证设备中的特定数据结构中的加密标识符。个人随后向认证设备提供她实际知道标识符的证明。

8. 发明申请

WO2006000989A1 RENEWABLE AND PRIVATE BIOMETRICS 审中-公开
标题翻译：可再生和私密的生物统计学
公开(公告)号：WO2006000989A1
公开(公告)日：2006-01-05
申请号：PCT/IB2005/052037
申请日：2005-06-22
申请人： KONINKLIJKE PHILIPS ELECTRONICS N.V. , AKKERMANS, Antonius, H., M. , CONRADO, Claudine, V. , DENTENEER, Theodorus, J., J.
发明人： AKKERMANS, Antonius, H., M. , CONRADO, Claudine, V. , DENTENEER, Theodorus, J., J.
IPC分类号： G07C9/00
CPC分类号： G07C9/00158 , G06K9/00885
摘要： The present invention relates to a method of authenticating an individual (321) at an authenticating device (311) and an authenticating system for authenticating an individual. A basic idea of the present invention is to store, at a device or a system with which an individual wishes to authenticate herself, one or more data structures each comprising a value based on an identifier pertaining to the individual and an encrypted copy of the identifier. When the individual wants to authenticate herself, she contacts the authenticating device whereby a request is made to attain the encrypted identifier included in a specific data structure stored at the authenticating device. The individual subsequently provides proof to the authenticating device that she actually knows the identifier.
摘要翻译：本发明涉及一种在认证装置（311）处对个人（321）进行认证的方法以及对个人进行认证的认证系统。本发明的基本思想是在个人希望认证自己的设备或系统处存储一个或多个数据结构，每个数据结构包括基于与个人有关的标识符和标识符的加密副本的值。当个人想要验证自己时，她联系验证设备，由此请求获得包含在存储在验证设备中的特定数据结构中的加密标识符。个人随后向认证设备提供她实际上知道该标识符的证据。

9. 发明申请

WO2005117481A1 PRIVACY-PRESERVING INFORMATION DISTRIBUTING SYSTEM 审中-公开
标题翻译：隐私保护信息分发系统
公开(公告)号：WO2005117481A1
公开(公告)日：2005-12-08
申请号：PCT/IB2005/051679
申请日：2005-05-24
申请人： KONINKLIJKE PHILIPS ELECTRONICS N.V., , CONRADO, Claudine, V. , PETKOVIC, Milan , JONKER, Willem
发明人： CONRADO, Claudine, V. , PETKOVIC, Milan , JONKER, Willem
IPC分类号： H04Q7/38
CPC分类号： H04L63/0421 , H04L63/0823
摘要： A system, device and method for keeping the identity of a user secret, while managing requests for information, in an information distribution system. The identity of the user is kept secret by the use of a persistent pseudonym and a temporary pseudonym, which are associated with a user identity device. The process of information distribution is enhanced by the use of licenses and certificates, which the user obtains by representing himself with the permanent pseudonym. When accessing the requested information, the user is represented by the temporary pseudonym.
摘要翻译：一种用于在信息分配系统中管理用户信息的请求时保持用户身份的系统，设备和方法。通过使用与用户身份设备相关联的持久假名和临时假名来保持用户的身份。通过使用许可证和证书来增强信息分发的过程，许可证和证书通过用永久化名代表自己获得。当访问所请求的信息时，用户由临时假名表示。

10. 发明申请

WO2008068644A1 CONTROLLING DATA ACCESS TO AND FROM AN RFID DEVICE 审中-公开
标题翻译：控制来自RFID设备的数据访问
公开(公告)号：WO2008068644A1
公开(公告)日：2008-06-12
申请号：PCT/IB2007/051747
申请日：2007-05-09
申请人： KONINKLIJKE PHILIPS ELECTRONICS N.V. , GUAJARDO MERCHAN, Jorge , CONRADO, Claudine, V.
发明人： GUAJARDO MERCHAN, Jorge , CONRADO, Claudine, V.
IPC分类号： G06K19/073 , G06F21/00
CPC分类号： G06K19/07309 , H04L9/3278 , H04L2209/805
摘要： It is described a method for controlling data access to and from an RFID device (230). Thereby, an RFID reading device (210b) authenticates himself to the RFID device (230) before the RFID device (230) communicates with the RFID reading device (210b). The RFID device (230) is equipped with a physically uncloneable function (237), which is adapted to produce a unique but unpredictable response signal (Rl, R2) upon receiving a predefined challenging signal (Cl, C2). During an enrolment of the RFID device a first response signal (Rl) being uniquely associated with a first challenging signal (Cl) is stored in a memory (238) of the RFID device (230). The first challenging signal (Cl) represents a password for opening further data communication with the RFID device (230). When a RFID reading device queries the RFID device (230) with a second challenging signal (C2), the RFID device (230) compares the corresponding response signal (R2) with the response (Rl) being stored during enrollment and only if there is a match, responds with its identifier (ID).
摘要翻译：描述了一种用于控制来自RFID设备（230）的数据访问的方法。因此，RFID读取装置（210b）在RFID装置（230）与RFID读取装置（210b）通信之前，向RFID装置（230）认证自己。 RFID设备（230）配备有物理上不可克隆的功能（237），其适于在接收到预定义的挑战性信号（C1，C2）时产生唯一但不可预测的响应信号（R1，R2）。在RFID装置的登记期间，与第一挑战性信号（C1）唯一相关联的第一响应信号（R1）被存储在RFID装置（230）的存储器（238）中。第一有挑战性信号（Cl）表示用于打开与RFID设备（230）的进一步数据通信的密码。当RFID读取装置利用第二挑战性信号（C2）查询RFID装置（230）时，RFID装置（230）将对应的响应信号（R2）与在登记期间存储的响应（R1）进行比较，并且仅当存在一个匹配，用它的标识符（ID）进行响应。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式