专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明授权

US09369274B2 Cipher text translation 有权
标题翻译：密码文本翻译
公开(公告)号：US09369274B2
公开(公告)日：2016-06-14
申请号：US13542841
申请日：2012-07-06
申请人： Todd W. Arnold , Elizabeth A. Dames , Mark D. Marik
发明人： Todd W. Arnold , Elizabeth A. Dames , Mark D. Marik
IPC分类号： G06F11/30 , H04L9/06 , G06F21/62 , H04L9/08
CPC分类号： H04L9/0618 , G06F21/6209 , H04L9/088
摘要： A computer system includes memory configured to store information regarding predetermined conditions of an encryption operation and a processor configured to analyze an inbound key and an outbound key of the encryption operation. The processor is also configured to determine that the encryption operation includes a translation from a first class of encryption to a second class of encryption based on the analyzing the inbound key and the outbound key, and to determine whether the translation is permitted based on the predetermined conditions.
摘要翻译：计算机系统包括被配置为存储关于加密操作的预定条件的信息的存储器和被配置为分析加密操作的入站密钥和出站密钥的处理器。处理器还被配置为基于分析入站密钥和出站密钥来确定加密操作包括从第一类加密到第二类加密的翻译，并且基于预定的密码来确定是否允许翻译条件。

2. 发明授权

US08639938B2 Personal identification number security enhancement 失效
标题翻译：个人识别号码安全增强
公开(公告)号：US08639938B2
公开(公告)日：2014-01-28
申请号：US13099509
申请日：2011-05-03
申请人： Todd W. Arnold , Elizabeth A. Dames , Carsten D. Frehr , Clifford L. Hansen , Shelia M. Sittinger
发明人： Todd W. Arnold , Elizabeth A. Dames , Carsten D. Frehr , Clifford L. Hansen , Shelia M. Sittinger
IPC分类号： H04L29/06
CPC分类号： G06F21/46 , G06F21/31 , G06Q20/382 , G06Q20/4012 , G07F7/1016 , G07F7/1075 , G07F7/1091 , G07F19/211
摘要： A system for enhancing security of a personal identification number is configned for performing a method that includes receiving, from a first entity having an input permission, a first data structure into a HSM, wherein the first data structure maps a first many-to-one mapping between a first and a second PIN numeral system. The method also includes determining whether the content of the first data structure is valid, storing the first data structure in the HSM if the first data structure is valid and marking the stored first data structure as inactive. The method further includes activating the first data structure if a second data structure is input into the HSM by a second entity having an activation permission, wherein the first entity is different from the second entity, the first data structure is identical to the second data structure. The method additionally includes converting from the first to the second PIN numeral system responsive to the activated first data structure.
摘要翻译：用于增强个人识别号码的安全性的系统用于执行包括从具有输入许可的第一实体接收第一数据结构到HSM的方法，其中所述第一数据结构映射第一多对一第一和第二PIN数字系统之间的映射。该方法还包括确定第一数据结构的内容是否有效，如果第一数据结构有效并将所存储的第一数据结构标记为不活动，则将第一数据结构存储在HSM中。该方法还包括：如果第二数据结构由具有激活许可的第二实体输入到HSM中，则激活第一数据结构，其中第一实体与第二实体不同，第一数据结构与第二数据结构相同。该方法还包括响应于激活的第一数据结构从第一PIN数字系统转换为第二PIN数字系统。

3. 发明申请

US20140013122A1 CIPHER TEXT TRANSLATION 有权
标题翻译： CIPHER文本翻译
公开(公告)号：US20140013122A1
公开(公告)日：2014-01-09
申请号：US13542841
申请日：2012-07-06
申请人： Todd W. Arnold , Elizabeth A. Dames , Mark D. Marik
发明人： Todd W. Arnold , Elizabeth A. Dames , Mark D. Marik
IPC分类号： G06F21/00
CPC分类号： H04L9/0618 , G06F21/6209 , H04L9/088
摘要： A computer system includes memory configured to store information regarding predetermined conditions of an encryption operation and a processor configured to analyze an inbound key and an outbound key of the encryption operation. The processor is also configured to determine that the encryption operation includes a translation from a first class of encryption to a second class of encryption based on the analyzing the inbound key and the outbound key, and to determine whether the translation is permitted based on the predetermined conditions.
摘要翻译：计算机系统包括被配置为存储关于加密操作的预定条件的信息的存储器和被配置为分析加密操作的入站密钥和出站密钥的处理器。处理器还被配置为基于分析入站密钥和出站密钥来确定加密操作包括从第一类加密到第二类加密的翻译，并且基于预定的密码来确定是否允许翻译条件。

4. 发明授权

US08566913B2 Secure key management 失效
标题翻译：安全密钥管理
公开(公告)号：US08566913B2
公开(公告)日：2013-10-22
申请号：US13100357
申请日：2011-05-04
申请人： Todd W. Arnold , Elizabeth A. Dames , Carsten D. Frehr , Kenneth B. Kerr , Richard V. Kisley , Michael J. Kelly , Eric D. Rossman , Eric B. Smith
发明人： Todd W. Arnold , Elizabeth A. Dames , Carsten D. Frehr , Kenneth B. Kerr , Richard V. Kisley , Michael J. Kelly , Eric D. Rossman , Eric B. Smith
IPC分类号： H04L29/06
CPC分类号： H04L9/088 , H04L9/0897 , H04L2209/56
摘要： A system for secure key management is provided. The system includes a computer processor and an application configured to execute on the computer processor, the application implementing a method. The method includes populating a section of information associated with a key, the section of information being populated with information relating to a level of protection of the key accumulated over time. Secure key management further includes securely binding the section of information to the key, wherein the key is encrypted.
摘要翻译：提供了一种用于安全密钥管理的系统。该系统包括计算机处理器和被配置为在计算机处理器上执行实施方法的应用的应用。该方法包括填充与密钥相关联的一部分信息，该部分的信息被填充有与随时间累积的密钥的保护级别相关的信息。安全密钥管理还包括将该部分信息安全地绑定到密钥，其中密钥被加密。

5. 发明申请

US20120308001A1 SECURE KEY CREATION 有权
标题翻译：安全关键创建
公开(公告)号：US20120308001A1
公开(公告)日：2012-12-06
申请号：US13150592
申请日：2011-06-01
申请人： Todd W. Arnold , Elizabeth A. Dames , Richard V. Kisley , Michael J. Miele , James W. Sweeny
发明人： Todd W. Arnold , Elizabeth A. Dames , Richard V. Kisley , Michael J. Miele , James W. Sweeny
IPC分类号： H04L9/06
CPC分类号： H04L9/0841 , H04L9/0877 , H04L9/088 , H04L2209/20
摘要： Key creation includes sending a first public key part from a first system to a second system, receiving a second public key part sent by the second system to the first system and establishing a first secret material in the first system using the first and second public key parts, wherein the first secret material is identical to a second secret material established on the second system using the first and second key parts. Key creation also includes binding key control information to the first secret material in the first system, wherein the key control information includes information relating to key type and key management and deriving a first key material from the combination of the key control information and the first secret material, wherein the first key material is identical to a second key material derived by the second system.
摘要翻译：密钥创建包括将第一公钥部分从第一系统发送到第二系统，接收由第二系统发送给第一系统的第二公共密钥部分，并使用第一和第二公钥在第一系统中建立第一秘密资料其中所述第一秘密材料与使用所述第一和第二关键部分在所述第二系统上建立的第二秘密材料相同。密钥创建还包括将密钥控制信息绑定到第一系统中的第一秘密资料，其中密钥控制信息包括与密钥类型和密钥管理有关的信息，并从密钥控制信息和第一密钥的组合中导出第一密钥资料材料，其中所述第一密钥材料与由所述第二系统导出的第二密钥材料相同。

6. 发明申请

US20120281836A1 SECURE KEY MANAGEMENT 失效
标题翻译：安全关键管理
公开(公告)号：US20120281836A1
公开(公告)日：2012-11-08
申请号：US13100354
申请日：2011-05-04
申请人： Todd W. Arnold , Elizabeth A. Dames , Carsten D. Frehr , Michael J. Kelly , Kenneth B. Kerr , Richard V. Kisley , Eric D. Rossman , Eric B. Smith
发明人： Todd W. Arnold , Elizabeth A. Dames , Carsten D. Frehr , Michael J. Kelly , Kenneth B. Kerr , Richard V. Kisley , Eric D. Rossman , Eric B. Smith
IPC分类号： H04L9/00
CPC分类号： H04L9/088 , H04L9/0897 , H04L2209/56
摘要： A system for implementing secure key management is provided. The system includes a computer processor and an application configured to execute on the computer processor, the application implementing a method. The method includes populating a section of information associated with a key, the section being populated with information relating to how the key was created. The method also includes populating the section with information relating to how the key was acquired by a secure module; and binding the section to the key, wherein the key is encrypted.
摘要翻译：提供了一种实现安全密钥管理的系统。该系统包括计算机处理器和被配置为在计算机处理器上执行实施方法的应用的应用。该方法包括填充与密钥相关联的一部分信息，该部分填充与如何创建密钥相关的信息。该方法还包括使用与安全模块如何获取密钥有关的信息来填充该部分; 以及将所述部分绑定到所述密钥，其中所述密钥被加密。

7. 发明授权

US07908474B2 Method for improved key management for ATMs and other remote devices 有权
标题翻译：改进ATM和其他远程设备密钥管理的方法
公开(公告)号：US07908474B2
公开(公告)日：2011-03-15
申请号：US11534232
申请日：2006-09-22
申请人： Todd W. Arnold , Elizabeth A. Dames , Carsten D. Frehr , Kurt S. Jacobsen , Michael J. Kelly , Mark D. Marik , Jesper Wiese
发明人： Todd W. Arnold , Elizabeth A. Dames , Carsten D. Frehr , Kurt S. Jacobsen , Michael J. Kelly , Mark D. Marik , Jesper Wiese
IPC分类号： H04L9/00 , G06F21/00
CPC分类号： H04L9/3242 , H04L9/0637 , H04L9/0822 , H04L9/088 , H04L9/3247 , H04L63/0435 , H04L63/062 , H04L63/0823 , H04L63/123 , H04L63/20
摘要： A method, article, and system for providing an effective implementation of a data structure comprising instructions that are cryptographically protected against alteration or misuse, wherein the instructions further comprise a trusted block that defines specific key management policies that are permitted when an application program employs the trusted block in application programming interface (API) functions to generate or export symmetric cryptographic keys. The trusted block has a number of fields containing rules that provide an ability to limit how the trusted block is used, thereby reducing the risk of the trusted block being employed in unintended ways or with unintended keys.
摘要翻译：一种用于提供数据结构的有效实现的方法，制品和系统，所述数据结构包括密码保护以防止改变或误用的指令，其中所述指令还包括定义在应用程序采用所述应用程序时允许的特定密钥管理策略的可信任块应用程序编程接口（API）中的可信块功能用于生成或导出对称加密密钥。受信任的块具有包含提供限制如何使用受信任块的能力的规则的字段，从而降低以非预期的方式或非预期密钥使用可信块的风险。

8. 发明授权

US08789210B2 Key usage policies for cryptographic keys 失效
标题翻译：加密密钥的密钥使用策略
公开(公告)号：US08789210B2
公开(公告)日：2014-07-22
申请号：US13100693
申请日：2011-05-04
申请人： Todd W. Arnold , Elizabeth A. Dames , Carsten D. Frehr , Michael J. Kelly , Kenneth B. Kerr , Richard V. Kisley , Eric D. Rossman , Eric B. Smith
发明人： Todd W. Arnold , Elizabeth A. Dames , Carsten D. Frehr , Michael J. Kelly , Kenneth B. Kerr , Richard V. Kisley , Eric D. Rossman , Eric B. Smith
IPC分类号： G06F11/00
CPC分类号： G06F21/602 , H04L9/088 , H04L9/0897
摘要： A computer program product for secure key management is provided. The computer program product includes a tangible storage medium readable by a processing circuit and storing instructions for execution by the processing circuit for creating a token and populating the token with key material, and binding key control information to the key material. The key control information includes information relating to usage of the key material populating one or more key usage fields that define attributes that limit actions that may be performed with the key material.
摘要翻译：提供了一种用于安全密钥管理的计算机程序产品。计算机程序产品包括可由处理电路读取的有形存储介质，并且存储用于由处理电路执行的用于创建令牌并用密钥材料填充令牌的指令，以及将密钥控制信息绑定到密钥材料的指令。密钥控制信息包括关于填充一个或多个密钥使用字段的密钥材料的使用的信息，所述密钥使用字段定义限制可以用密钥材料执行的动作的属性。

9. 发明申请

US20120237023A1 Secure Key Management 有权
标题翻译：安全密钥管理
公开(公告)号：US20120237023A1
公开(公告)日：2012-09-20
申请号：US13047344
申请日：2011-03-14
申请人： Todd W. Arnold , Elizabeth A. Dames , Thomas J. Dewkett , Carsten D. Frehr , Michael J. Kelly , Kenneth B. Kerr , Richard V. Kisley , Eric D. Rossman , Eric B. Smith
发明人： Todd W. Arnold , Elizabeth A. Dames , Thomas J. Dewkett , Carsten D. Frehr , Michael J. Kelly , Kenneth B. Kerr , Richard V. Kisley , Eric D. Rossman , Eric B. Smith
IPC分类号： H04L9/00
CPC分类号： H04L9/0897
摘要： A system for implementing computer security is provided. The system includes a computer processor and an application configured to execute on the computer processor, the application implementing a method that includes creating a token and populating a payload section of the token with key material and selecting a wrapping method that specifies how the key material is securely bound to key control information. A structure of the key control information in the token is independent of the wrapping method. Implementing computer security also includes wrapping the key material and binding key control information to the key material in the token. The key control information includes information relating to usage and management of the key material.
摘要翻译：提供了一种实现计算机安全的系统。该系统包括计算机处理器和被配置为在计算机处理器上执行的应用程序，该应用程序实现一种方法，该方法包括使用密钥材料创建令牌和填充令牌的有效载荷部分，并且选择包装方法，该方法指定密钥材料安全地绑定到关键控制信息。令牌中的关键控制信息的结构与包装方法无关。实施计算机安全还包括将密钥材料和密钥控制信息绑定到令牌中的密钥材料。关键控制信息包括与密钥材料的使用和管理有关的信息。

10. 发明授权

US07779258B2 Method for controlling security function execution with a flexible, extendable, and non-forgable block 失效
标题翻译：用灵活，可扩展和不可阻止的块来控制安全功能执行的方法
公开(公告)号：US07779258B2
公开(公告)日：2010-08-17
申请号：US11534236
申请日：2006-09-22
申请人： Todd W. Arnold , Elizabeth A. Dames , Carsten D. Frehr , Kurt S. Jacobsen , Michael J. Kelly , Mark D. Marik , Jesper Wiese
发明人： Todd W. Arnold , Elizabeth A. Dames , Carsten D. Frehr , Kurt S. Jacobsen , Michael J. Kelly , Mark D. Marik , Jesper Wiese
IPC分类号： H04N7/16 , H04L9/00 , H04L9/32 , G06F17/30 , G06F7/04 , G06K9/00 , H03M1/68 , H04K1/00
CPC分类号： H04L9/0822 , H04L9/088 , H04L9/3242 , H04L9/3247 , H04L2209/04 , H04L2209/34
摘要： A method, article, and system for providing an effective implementation of data structures, and application programming interface (API) functions that allow secure execution of functions behind a secure boundary. The controlling mechanism is a flexible, extendable, and non-forgeable block that details how values and parameters behind the secure boundary can be changed. The invention allows for one entity to execute a security function that will normally require extensive authorizations or dual or multiple control. The method and system comprise instructions that are cryptographically protected against alteration or misuse, wherein the instructions further comprise a trusted block that defines security policies that are permitted when an application program employs the trusted block in APIs. The trusted block has a number of fields containing rules that provide an ability to limit how the trusted block is used, thereby reducing the risk of the trusted block being employed in unintended ways.
摘要翻译：一种用于提供有效实施数据结构的方法，文章和系统，以及允许安全执行安全边界后面的功能的应用程序编程接口（API）功能。控制机制是一个灵活，可扩展和不可伪造的块，详细介绍了安全边界背后的值和参数如何改变。本发明允许一个实体执行通常需要广泛授权或双重或多重控制的安全功能。所述方法和系统包括密码保护以防止改变或误用的指令，其中所述指令还包括定义在应用程序在API中使用所述可信块时允许的安全策略的可信块。可信块具有包含规则的多个字段，这些规则提供了限制如何使用受信任块的能力，从而降低以非预期的方式使用可信块的风险。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式