专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明授权

US08874900B2 Direct anonymous attestation scheme with outsourcing capability 有权
标题翻译：具有外包能力的匿名认证方案
公开(公告)号：US08874900B2
公开(公告)日：2014-10-28
申请号：US13398626
申请日：2012-02-16
申请人： Ernie Brickell , Jiangtao Li
发明人： Ernie Brickell , Jiangtao Li
IPC分类号： H04L9/32 , H04L9/30
CPC分类号： H04L9/3234 , H04L9/3073 , H04L9/3218 , H04L9/3255 , H04L2209/42
摘要： A Direct Anonymous Attestation (DAA) scheme using elliptic curve cryptography (ECC) and bilinear maps. A trusted platform module (TPM) may maintain privacy of a portion of a private membership key from an issuer while joining a group. Moreover, the TPM can outsource most of the computation involved in generating a signature to a host computer.
摘要翻译：使用椭圆曲线加密（ECC）和双线性映射的直接匿名证明（DAA）方案。可信平台模块（TPM）可以在加入组时从发行商维护私有成员密钥的一部分的隐私。此外，TPM可以将生成签名所涉及的大部分计算外包给主机。

2. 发明授权

US08799656B2 Methods for anonymous authentication and key agreement 有权
标题翻译：方法匿名认证和密钥协商
公开(公告)号：US08799656B2
公开(公告)日：2014-08-05
申请号：US12913708
申请日：2010-10-27
申请人： Ernest F. Brickell , Jiangtao Li , Jesse Walker
发明人： Ernest F. Brickell , Jiangtao Li , Jesse Walker
IPC分类号： H04L9/32 , H04L12/06
CPC分类号： H04L9/0844 , H04L9/0891 , H04L9/3255 , H04L9/3273 , H04L2209/42
摘要： Methods for anonymous authentication and key exchange are presented. In one embodiment, a method includes initiating a two-way mutual authentication between a device and a remote entity. The device remains anonymous to the remote entity after performing the authentication. The method also includes establishing a mutually shared session key for use in secure communication, wherein the initiating and the establishing are in conjunction with direct anonymous attestation (DAA).
摘要翻译：提出匿名认证和密钥交换的方法。在一个实施例中，一种方法包括启动设备和远程实体之间的双向相互认证。执行身份验证后，设备对远程实体保持匿名。该方法还包括建立用于安全通信的相互共享的会话密钥，其中启动和建立与直接匿名认证（DAA）结合。

3. 发明申请

US20140189365A1 SECURE KEY DERIVATION AND CRYPTOGRAPHY LOGIC FOR INTEGRATED CIRCUITS 有权
标题翻译：集成电路的安全关键衍生和拼接逻辑
公开(公告)号：US20140189365A1
公开(公告)日：2014-07-03
申请号：US13730829
申请日：2012-12-29
申请人： George W. Cox , David Johnston , Jiangtao Li , Anand Rajan
发明人： George W. Cox , David Johnston , Jiangtao Li , Anand Rajan
IPC分类号： G06F21/72
CPC分类号： G06F21/72 , G06F21/52 , G06F21/73 , G09C1/00 , H04L9/0866 , H04L2209/12
摘要： A processor of an aspect includes root key generation logic to generate a root key. The root key generation logic includes a source of static and entropic bits. The processor also includes key derivation logic coupled with the root key generation logic. The key derivation logic is to derive one or more keys from the root key. The processor also includes cryptographic primitive logic coupled with the root key generation logic. The cryptographic primitive logic is to perform cryptographic operations. The processor also includes a security boundary containing the root key generation logic, the key derivation logic, and the cryptographic primitive logic. Other processors, methods, and systems are also disclosed.
摘要翻译：一方面的处理器包括生成根密钥的根密钥生成逻辑。根密钥生成逻辑包括静态和熵位的源。处理器还包括与根密钥生成逻辑耦合的密钥导出逻辑。密钥推导逻辑是从根密钥导出一个或多个密钥。处理器还包括与根密钥生成逻辑耦合的加密原语逻辑。加密原语逻辑是执行加密操作。处理器还包括包含根密钥生成逻辑，密钥导出逻辑和密码原语逻辑的安全边界。还公开了其他处理器，方法和系统。

4. 发明申请

US20140093074A1 SECURE PROVISIONING OF SECRET KEYS DURING INTEGRATED CIRCUIT MANUFACTURING 有权
标题翻译：在集成电路制造过程中安全提供秘密钥匙
公开(公告)号：US20140093074A1
公开(公告)日：2014-04-03
申请号：US13631512
申请日：2012-09-28
申请人： Kevin C. Gotze , Gregory M. Iovino , Jiangtao Li
发明人： Kevin C. Gotze , Gregory M. Iovino , Jiangtao Li
IPC分类号： H04L9/00
CPC分类号： H04L9/0866 , H04L9/3278
摘要： A method, of an aspect, includes challenging a set of Physically Unclonable Function (PUF) cells, of an integrated circuit device, and receiving a set of PUF bits from the PUF cells in response. A PUF key is generated based on the set of PUF bits. An encryption of the PUF key with an embedded key is output from the integrated circuit device. The integrated circuit device receives an encryption of a fuse key with the PUF key. Fuses of the integrated circuit device are programmed with at least one of the fuse key and the received encryption of the fuse key with the PUF key. Other methods, apparatus, and systems are also disclosed.
摘要翻译：一方面的方法包括挑战集成电路设备的一组物理不可克隆功能（PUF）单元，以及响应于从PUF单元接收一组PUF位。基于PUF位的集合生成PUF密钥。从集成电路设备输出使用嵌入式密钥对PUF密钥的加密。集成电路装置利用PUF键接收熔丝钥匙的加密。集成电路装置的保险丝用熔丝钥匙和熔丝钥匙的接收加密中的至少一个与PUF密钥进行编程。还公开了其它方法，装置和系统。

5. 发明申请

US20140091832A1 INTEGRATED CIRCUITS HAVING ACCESSIBLE AND INACCESSIBLE PHYSICALLY UNCLONABLE FUNCTIONS 有权
标题翻译：具有可接受和不可接受的物理不可靠功能的集成电路
公开(公告)号：US20140091832A1
公开(公告)日：2014-04-03
申请号：US13631634
申请日：2012-09-28
申请人： Kevin C. Gotze , Gregory M. Iovino , Jiangtao Li , David Johnston , Sanu K. Mathew , George W. Cox , Anand Rajan
发明人： Kevin C. Gotze , Gregory M. Iovino , Jiangtao Li , David Johnston , Sanu K. Mathew , George W. Cox , Anand Rajan
IPC分类号： H03K19/003
CPC分类号： H03K19/003 , G09C1/00 , H04L9/0866 , H04L2209/12
摘要： An integrated circuit substrate of an aspect includes a plurality of exposed electrical contacts. The integrated circuit substrate also includes an inaccessible set of Physically Unclonable Function (PUF) cells to generate an inaccessible set of PUF bits that are not accessible through the exposed electrical contacts. The integrated circuit substrate also includes an accessible set of PUF cells to generate an accessible set of PUF bits that are accessible through the exposed electrical contacts. Other apparatus, methods, and systems are also disclosed.
摘要翻译：一方面的集成电路基板包括多个暴露的电触点。集成电路基板还包括不可接近的物理不可克隆功能（PUF）单元组，以生成不能通过暴露的电触点访问的不可访问的PUF位集合。集成电路基板还包括可访问的PUF单元组，以产生可通过暴露的电触点访问的可访问的PUF位组。还公开了其他装置，方法和系统。

6. 发明申请

US20130080771A1 APPARATUS AND METHOD FOR DIRECT ANONYMOUS ATTESTATION FROM BILINEAR MAPS 有权
标题翻译：从BILINEAR MAPS进行直接非正式测试的装置和方法
公开(公告)号：US20130080771A1
公开(公告)日：2013-03-28
申请号：US13247921
申请日：2011-09-28
申请人： Ernest F. F. Brickell , Jiangtao Li
发明人： Ernest F. F. Brickell , Jiangtao Li
IPC分类号： H04L9/32 , H04L9/08
CPC分类号： H04L9/3073 , H04L9/0833 , H04L9/0877 , H04L9/3234 , H04L2209/42
摘要： A method and apparatus for direct anonymous attestation from bilinear maps. In one embodiment, the method includes the creation of a public/private key pair for a trusted membership group defined by an issuer; and assigning a unique secret signature key to at least one member device of the trusted membership group defined by the issuer. In one embodiment, using the assigned signature key, a member may assign a message received as an authentication request to prove membership within a trusted membership group. In one embodiment, a group digital signature of the member is verified using a public key of the trusted membership group. Accordingly, a verifier of the digital signature is able to authenticate that the member is an actual member of the trusted membership group without requiring of the disclosure of a unique identification information of the member or a private member key to maintain anonymity of trusted member devices. Other embodiments are described and claimed.
摘要翻译：一种从双线性地图直接匿名认证的方法和装置。在一个实施例中，该方法包括为由发行者定义的可信会员组创建公钥/私钥对; 以及将唯一的秘密签名密钥分配给由所述发行者定义的所述可信会员组的至少一个成员设备。在一个实施例中，使用分配的签名密钥，成员可以分配作为认证请求接收的消息以证明可信任的成员资格组内的会员资格。在一个实施例中，使用可信会员组的公钥来验证会员的组数字签名。因此，数字签名的验证者能够认证成员是受信任的成员资格组的实际成员，而不需要披露成员或私人成员密钥的唯一标识信息来维护可信任成员设备的匿名性。描述和要求保护其他实施例。

7. 发明授权

US07844614B2 Apparatus and method for enhanced revocation of direct proof and direct anonymous attestation 有权
标题翻译：增强直接证明和直接匿名认证撤销的设备和方法
公开(公告)号：US07844614B2
公开(公告)日：2010-11-30
申请号：US11948861
申请日：2007-11-30
申请人： Ernest F. Brickell , Jiangtao Li
发明人： Ernest F. Brickell , Jiangtao Li
IPC分类号： G06F17/30
CPC分类号： H04L9/3234 , G06F21/57 , H04L9/3013 , H04L9/3221 , H04L9/3247 , H04L2209/42 , H04L2209/56
摘要： In some embodiments, a method and apparatus for enhanced revocation of direct proof and direct anonymous attestation are described. In one embodiment a trusted hardware device verifies that membership of the device within a trusted membership group is not revoked according to a revocation list received with a challenge request from a verifier. Once such verification is performed, the device convinces the verifier of possessing cryptographic information without revealing unique, device identification information of the trusted hardware device or the cryptographic information. In one embodiment, the trusted hardware device computes a digital signature on a message received with the challenge request to the verifier if membership of the anonymous hardware device within a trusted membership group is verified. In one embodiment, the verifier authenticates the digital signature according to a public key of the trusted membership group to enable a trusted member device to remain anonymous to the verifier. Other embodiments are described and claimed.
摘要翻译：在一些实施例中，描述了用于增强直接证明和直接匿名证明的撤销的方法和装置。在一个实施例中，可信硬件设备根据从验证者接收到的询问请求的撤销列表来验证受信任的成员资格组内的设备的成员资格是否被撤销。一旦执行了这种验证，该设备就说服验证者拥有加密信息，而不会泄露可信硬件设备或加密信息的唯一设备识别信息。在一个实施例中，如果验证了可信任的成员资格组内的匿名硬件设备的成员资格，那么可信硬件设备将向接收到的询问请求的消息中的数字签名计算给验证者。在一个实施例中，验证者根据受信任的成员资格群组的公开密钥对数字签名进行认证，以使受信任的成员设备对验证者保持匿名。描述和要求保护其他实施例。

8. 发明申请

US20100169650A1 STORAGE MINIMIZATION TECHNIQUE FOR DIRECT ANONYMOUS ATTESTATION KEYS 审中-公开
标题翻译：存储最小化技术用于直接无声指示
公开(公告)号：US20100169650A1
公开(公告)日：2010-07-01
申请号：US12347581
申请日：2008-12-31
申请人： Ernest F. Brickell , Jiangtao Li
发明人： Ernest F. Brickell , Jiangtao Li
IPC分类号： H04L9/32 , H04L9/00
CPC分类号： H04L9/0894 , H04L9/3066 , H04L2209/42
摘要： A storage minimization technique for direct anonymous attestation (DAA) keys is presented. In one embodiment, the method includes deriving a random portion of a (DAA) private key from a device's fuse key, computing a point on an elliptical curve from the derived random portion and a master private key, and storing only one coordinate of the point in fuses within the device. Other embodiments are described and claimed.
摘要翻译：提出了一种用于直接匿名认证（DAA）密钥的存储最小化技术。在一个实施例中，该方法包括从设备的熔丝键导出（DAA）私钥的随机部分，从导出的随机部分计算椭圆曲线上的点和主私钥，并且仅存储该点的一个坐标在设备内的保险丝。描述和要求保护其他实施例。

9. 发明申请

US20090129600A1 APPARATUS AND METHOD FOR A DIRECT ANONYMOUS ATTESTATION SCHEME FROM SHORT-GROUP SIGNATURES 有权
标题翻译：短组合签名方式的直接匿名表示方法的装置和方法
公开(公告)号：US20090129600A1
公开(公告)日：2009-05-21
申请号：US12208989
申请日：2008-09-11
申请人： Ernie F. Brickell , Jiangtao Li
发明人： Ernie F. Brickell , Jiangtao Li
IPC分类号： H04L9/30
CPC分类号： H04L9/3234 , H04L9/3073 , H04L9/3218 , H04L9/3255 , H04L2209/42
摘要： An apparatus and method is provided for a direct anonymous attestation scheme from short-group signatures. The method may include the creation of a group public/private key pair for a trusted membership group defined by an issuer; and assigning a cryptographic pair that is combined with a unique private member value to form a private membership key. A trusted member device generates the unique private member value during a join procedure of a trusted membership group. In one embodiment, the private member value of the private membership key is unknown to the issuer. A member may sign a message with the private membership key to form a short-group digital signature that is verified using a public key of the trusted membership group to maintain anonymity of trusted member devices. A size of the private membership key may be reduced to enable storage within a trusted platform module. Other embodiments are described and claimed.
摘要翻译：为短组签名提供直接匿名认证方案的设备和方法。该方法可以包括为由发行者定义的可信会员组创建组公/私钥对; 以及分配与唯一私有成员值组合的密码对以形成私有成员密钥。受信任的成员设备在受信任的成员资格组的连接过程中生成唯一的私有成员值。在一个实施例中，私人会员密钥的私人会员值对于发行者来说是未知的。成员可以使用私有成员密钥签名消息，形成一个短组数字签名，该数字签名使用受信任的成员资格组的公钥进行验证，以维护受信任的成员设备的匿名性。可以减小私有成员密钥的大小以使得能够在可信平台模块内存储。描述和要求保护其他实施例。

10. 发明申请

US20080270786A1 APPARATUS AND METHOD FOR DIRECT ANONYMOUS ATTESTATION FROM BILINEAR MAPS 有权
标题翻译：从BILINEAR MAPS进行直接非正式测试的装置和方法
公开(公告)号：US20080270786A1
公开(公告)日：2008-10-30
申请号：US11778804
申请日：2007-07-17
申请人： Ernest F. Brickell , Jiangtao Li
发明人： Ernest F. Brickell , Jiangtao Li
IPC分类号： H04L9/00
CPC分类号： H04L9/3073 , H04L9/3255 , H04L2209/42
摘要： A method and apparatus for direct anonymous attestation from bilinear maps. In one embodiment, the method includes the creation of a public/private key pair for a trusted membership group defined by an issuer; and assigning a unique secret signature key to at least one member device of the trusted membership group defined by the issuer. In one embodiment, using the assigned signature key, a member may assign a message received as an authentication request to prove membership within a trusted membership group. In one embodiment, a group digital signature of the member is verified using a public key of the trusted membership group. Accordingly, a verifier of the digital signature is able to authenticate that the member is an actual member of the trusted membership group without requiring of the disclosure of a unique identification information of the member or a private member key to maintain anonymity of trusted member devices. Other embodiments are described and claimed.
摘要翻译：一种从双线性地图直接匿名认证的方法和装置。在一个实施例中，该方法包括为由发行者定义的可信会员组创建公钥/私钥对; 以及将唯一的秘密签名密钥分配给由所述发行者定义的所述可信会员组的至少一个成员设备。在一个实施例中，使用分配的签名密钥，成员可以分配作为认证请求接收的消息以证明可信任的成员资格组内的会员资格。在一个实施例中，使用可信会员组的公钥来验证会员的组数字签名。因此，数字签名的验证者能够认证成员是受信任的成员资格组的实际成员，而不需要披露成员或私人成员密钥的唯一标识信息来维护可信任成员设备的匿名性。描述和要求保护其他实施例。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式