会员体验
专利管家(专利管理)
工作空间(专利管理)
风险监控(情报监控)
数据分析(专利分析)
侵权分析(诉讼无效)
联系我们
交流群
官方交流:
QQ群: 891211   
微信请扫码    >>>
现在联系顾问~
热词
    • 1. 发明申请
    • LOGGING ACCESS ATTEMPTS TO AN AREA
    • 登录访问地区
    • WO2005010687A3
    • 2007-07-12
    • PCT/US2004022812
    • 2004-07-16
    • CORESTREET LTDLIBIN PHILMICALI SILVIOENGBERG DAVID
    • LIBIN PHILMICALI SILVIOENGBERG DAVID
    • G08B29/00G06F20060101G06F7/04G06F17/00G06K9/00G06K19/00G07C9/00H04K1/00H04L9/00H04L9/32
    • G07C9/00103G07C9/00023
    • Logging events associated with accessing an area includes recording an event associated with accessing the area to provide an event recording and authenticating at least the event recording to provide an authenticated recording. Recording an event may include recording a time of the event. Recording an event may include recording a type of event. The event may be an attempt to access the area. Recording an event may include recording credentials/proofs used in connection with the attempt to access the area. Recording an event may include recording a result of the attempt. Recording an event may include recording the existence of data other than the credentials/proofs indicating that access should be denied. Recording an event may include recording additional data related to the area. Authenticating the recording may include digitally signing the recording. Authenticating at least the event recording may include authenticating the event recording and authenticating other event recordings to provide a single authenticated recording.
    • 与访问区域相关联的记录事件包括记录与访问该区域相关联的事件以提供事件记录和至少认证事件记录以提供经认证的记录。 记录事件可能包括记录事件的时间。 记录事件可能包括记录一种事件。 该事件可能是访问该地区的尝试。 记录事件可能包括与访问该区域的尝试相关联的记录凭证/证明。 记录事件可能包括记录尝试的结果。 记录事件可以包括记录除了表示应该拒绝访问的凭据/证明之外的数据的存在。 记录事件可能包括记录与该区域相关的附加数据。 记录录制可能包括对录音进行数字签名。 至少验证事件记录可以包括认证事件记录和认证其他事件记录以提供单一的认证记录。
    • 3. 发明申请
    • DISSEMINATING ADDITIONAL DATA USED FOR CONTROLLING ACCESS
    • 消除用于控制访问的附加数据
    • WO2005010686A2
    • 2005-02-03
    • PCT/US2004/022811
    • 2004-07-16
    • CORESTREET, LTD.LIBIN, PhilMICALI, SilvioENGBERG, DavidSINELNIKOV, Alex
    • LIBIN, PhilMICALI, SilvioENGBERG, DavidSINELNIKOV, Alex
    • G06F
    • G07C9/00103G07C9/00023
    • Issuing and disseminating a data about a credential includes having an entity issue authenticated data indicating that the credential has been revoked, causing the authenticated data to be stored in a first card of a first user, utilizing the first card for transferring the authenticated data to a first door, having the first door store information about the authenticated data, and having the first door rely on information about the authenticated data to deny access to the credential. The authenticated data may be authenticated by a digital signature and the first door may verify the digital signature. The digital signature may be a public-key digital signature. The public key for the digital signature may be associated with the credential. The digital signature may be a private-key digital signature. The credential and the first card may both belong to the first user. The credential may be stored in a second card different from the first card, and the first door may rely on information about the authenticated data by retrieving such information from storage. The authenticated data may be first stored in at least one other card different from the first card and the authenticated data may be transferred from the at least one other card to the first card. The authenticated data may be transferred from the at least one' other card to the first card by first being transferred to at least one other door different from the first door.
    • 发布和传播关于凭证的数据包括:使实体发出指示证书已被撤销的认证数据,使认证数据存储在第一用户的第一卡中,利用第一卡将认证数据传送到 第一门,具有关于认证数据的第一门店信息,并且使第一门依靠关于认证数据的信息来拒绝对证书的访问。 认证数据可以通过数字签名认证,并且第一门可以验证数字签名。 数字签名可以是公钥数字签名。 数字签名的公钥可能与凭证相关联。 数字签名可以是私钥数字签名。 证书和第一张卡可能都属于第一个用户。 证书可以存储在与第一卡不同的第二卡中,并且第一门可以通过从存储检索这些信息来依赖关于认证数据的信息。 认证数据可以首先存储在与第一卡不同的至少一个其他卡中,并且认证数据可以从至少一个其他卡传送到第一卡。 经认证的数据可以通过首先被传送到不同于第一门的至少一个其他门,从至少一个“另一个卡”传送到第一个卡。
    • 4. 发明申请
    • ACCESS CONTROL
    • WO2005001653A3
    • 2005-01-06
    • PCT/US2004/020265
    • 2004-06-24
    • CORESTREET, LTD.LIBIN, PhilMICALI, Silvio
    • LIBIN, PhilMICALI, Silvio
    • G06F15/16G06F9/00G06F7/00H04L9/00
    • At least one administration entity controls access to an electronic device by the at least one administration entity generating credentials and a plurality of corresponding proofs for the electronic device, wherein no valid proofs are determinable given only the credentials and values for expired proofs, the electronic device receiving the credentials, if access is authorized at a particular time, the electronic device receiving a proof corresponding to the particular time, and the electronic device confirming the proof using the credentials. The at least one administration entity may generate proofs after generating the credentials. A single administration entity may generate the credentials and generate the proofs. There may be a first administration entity that generates the credentials and other administration entities that generate proofs. The first administration entity may also generate proofs or may not. The credentials may be a digital certificate that includes a final value that is a result of applying a one way function to a first one of the proofs. Each of the proofs may be a result of applying a one way function to a future one of the proofs. The digital certificate may include an identifier for the electronic device.
    • 7. 发明申请
    • CONTROLLING ACCESS TO AN AREA
    • 控制区域的访问
    • WO2005010685A3
    • 2005-12-29
    • PCT/US2004022810
    • 2004-07-16
    • CORESTREET LTDLIBIN PHILMICALI SILVIOENGBERG DAVID
    • LIBIN PHILMICALI SILVIOENGBERG DAVID
    • G06F20060101G06F7/04G06F17/00G06K9/00G06K19/00G07C9/00H04K1/00H04L9/00H04L9/32
    • G07C9/00103G07C9/00023
    • Controlling access includes providing a barrier to access that includes a controller that selectively allows access, at least one administration entity generating credentials/proofs, wherein no valid proofs are determinable given only the credentials and values for expired proofs, the controller receiving the credentials/proofs (152, 154), the controller determining if access is presently authorized, and, if access is presently authorized, the controller allowing access (168). The credentials/proofs may be in one part or may be in separate parts (152, 154). There may be a first administration entity that generates the credentials (154) and other administration entities that generate proofs (152). The first administration entity may also generate proofs or the first administration entity may not generate proofs. The credentials may correspond to a digital certificate that includes a final value (166) that is a result of applying a one way function (164) to a first one of the proofs (152).
    • 控制访问包括提供访问障碍,其包括选择性地允许访问的控制器,至少一个生成凭证/证明的管理实体,其中没有有效证明是可被确定的,只给出期限证明的凭证和值,控制器接收证书/证明 (152,154),所述控制器确定当前是否授权访问,并且如果当前授权访问,则所述控制器允许访问(168)。 凭证/证明可以在一个部分中,也可以在不同的部分(152,154)中。 可以存在生成凭证(154)和生成证明(152)的其他管理实体的第一管理实体。 第一管理实体也可以生成证明,或者第一管理实体可能不生成证明。 凭证可以对应于数字证书,该数字证书包括作为将单向函数(164)应用于第一个证明(152)的结果的最终值(166)。
    • 9. 发明申请
    • COMMUNICATION-EFFICIENT REAL TIME CREDENTIALS FOR OCSP AND DISTRIBUTED OCSP
    • OCSP和分布式OCSP的通信高效实时凭证
    • WO2005070116A2
    • 2005-08-04
    • PCT/US2005000665
    • 2005-01-10
    • CORESTREET LTDENGBERG DAVIDLIBIN PHILMICALI SILVIO
    • ENGBERG DAVIDLIBIN PHILMICALI SILVIO
    • H04L9/00
    • H04L9/3268H04L9/3247H04L2209/56H04L2209/80
    • Facilitating a transaction between a first party and a second party includes, prior to initiating the transaction, one of the parties obtaining an artificially pre-computed OCSP response about a specific digital certificate, where the artificially pre-computed OCSP response is generated by an entity other than the first party and the second party, one of the parties initiating the transaction, in connection with the transaction, the first party providing the specific digital certificate to the second party, and the second party verifying the specific digital certificate using the artificially pre-computed OCSP response. The second party may obtain the artificially pre-computed OCSP response prior to the transaction being initiated. The second party may cache the artificially pre-computed OCSP response for future transactions. The first party may obtain the artificially pre-computed OCSP response prior to the transaction being initiated. The first party may cache the artificially pre-computed OCSP response for future transactions.
    • 促进第一方和第二方之间的交易包括在发起交易之前,其中一方获得关于特定数字证书的人为预先计算的OCSP响应,其中人为地预先计算出的OCSP响应由实体产生 除了第一方和第二方之外,与交易相关的当事方之一发起交易,向第二方提供特定数字证书的第一方,以及使用人为预先验证特定数字证书的第二方 计算OCSP响应。 第二方可以在事务开始之前获得人为预先计算的OCSP响应。 第二方可以缓存人为预先计算的OCSP响应以供将来的交易使用。 第一方可以在交易开始之前获得人为预先计算的OCSP响应。 第一方可以缓存人为预先计算的OCSP响应以供将来的交易使用。
    • 10. 发明申请
    • ACCESS CONTROL
    • 访问控制
    • WO2005001653A2
    • 2005-01-06
    • PCT/US2004020265
    • 2004-06-24
    • CORESTREET LTDLIBIN PHILMICALI SILVIO
    • LIBIN PHILMICALI SILVIO
    • G06F20060101G06F21/33G06Q10/00H04K1/00G06F
    • G06F21/33G06Q10/00G06Q90/00
    • At least one administration entity controls access to an electronic device by the at least one administration entity generating credentials and a plurality of corresponding proofs for the electronic device, wherein no valid proofs are determinable given only the credentials and values for expired proofs, the electronic device receiving the credentials, if access is authorized at a particular time, the electronic device receiving a proof corresponding to the particular time, and the electronic device confirming the proof using the credentials. The at least one administration entity may generate proofs after generating the credentials. A single administration entity may generate the credentials and generate the proofs. There may be a first administration entity that generates the credentials and other administration entities that generate proofs. The first administration entity may also generate proofs or may not. The credentials may be a digital certificate that includes a final value that is a result of applying a one way function to a first one of the proofs. Each of the proofs may be a result of applying a one way function to a future one of the proofs. The digital certificate may include an identifier for the electronic device.
    • 至少一个管理实体通过至少一个管理实体控制对电子设备的访问,生成用于电子设备的证书和多个对应证明,其中,仅给出证明和值为过期证明的有效证明,电子设备 如果在特定时间授权访问,则电子设备接收与特定时间相对应的证明,以及电子设备使用凭证确认证明。 至少一个管理实体可以在生成凭证之后生成证明。 单个管理实体可以生成证书并生成证明。 可能有一个第一个管理实体生成凭证和生成证明的其他管理实体。 第一个管理实体也可以生成证明,也可能不生成证据。 凭证可以是数字证书,其包括作为将单向函数应用于第一个证明的结果的最终值。 每个证明可能是将单向函数应用于将来的一个证明的结果。 数字证书可以包括电子设备的标识符。