专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明申请

US20120166809A1 SYSTEM AND METHOD FOR CRYPTOGRAPHIC KEY EXCHANGE USING MATRICES 有权
标题翻译：使用矩阵进行拼接键交换的系统和方法
公开(公告)号：US20120166809A1
公开(公告)日：2012-06-28
申请号：US12980218
申请日：2010-12-28
申请人： Edward M. Barton , Len L. Mizrah
发明人： Edward M. Barton , Len L. Mizrah
IPC分类号： H04L9/32
CPC分类号： H04L9/0844
摘要： Two parties can establish a cryptographic key using a matrix based key exchange protocol, for secure communications without any prior distribution of secret keys or other secret data, and without revealing said key to any third party who may have access to all of the transmissions between them. A common matrix M, shared in advance, is multiplied by a random matrix K on the sending side, and a different random matrix N on the receiving side. The matrix product KM is sent from the sending side to the receiving side, and the matrix product MN is sent from the receiving side to the sending side. Both sides produce the common matrix product KMN, and use it for producing a symmetric key for encrypted communications.
摘要翻译：双方可以使用基于矩阵的密钥交换协议来建立加密密钥，用于安全通信，而无需事先分发秘密密钥或其他秘密数据，并且不向可能访问其间的所有传输的任何第三方泄露所述密钥。预先共享的公共矩阵M乘以发送侧的随机矩阵K，并且在接收侧乘以不同的随机矩阵N. 矩阵产品KM从发送侧发送到接收侧，矩阵产品MN从接收侧发送到发送侧。双方产生公共矩阵产品KMN，并用于生成用于加密通信的对称密钥。

2. 发明申请

US20110137975A1 SECURE PROFILING METHOD PROVIDING PRIVACY IN SOCIAL NETWORKING SYSTEMS 审中-公开
标题翻译：在社会网络系统中提供隐私的安全配置方法
公开(公告)号：US20110137975A1
公开(公告)日：2011-06-09
申请号：US12631671
申请日：2009-12-04
申请人： Dipankar Das , Len L. Mizrah
发明人： Dipankar Das , Len L. Mizrah
IPC分类号： G06Q30/00 , G06F3/01 , G06F15/16 , G06Q10/00
CPC分类号： G06F21/6254 , G06Q10/10 , G06Q30/02 , G06Q30/0269
摘要： The present invention includes devices and methods for enabling private and secure data collection by profile servers relating to users that are associated with a profiling user in a social networking system. Particular aspects of the present invention are described in the claims, specification and drawings.
摘要翻译：本发明包括用于通过与在社交网络系统中与分析用户相关联的用户的简档服务器进行私人和安全数据收集的装置和方法。在权利要求书，说明书和附图中描述了本发明的特定方面。

3. 发明授权

US07681228B2 Method of one time authentication response to a session-specific challenge indicating a random subset of password or PIN character positions 有权
标题翻译：一种针对特定于会话的挑战的一次认证响应的方法，指示密码或PIN字符位置的随机子集
公开(公告)号：US07681228B2
公开(公告)日：2010-03-16
申请号：US11353560
申请日：2006-02-14
申请人： Len L. Mizrah
发明人： Len L. Mizrah
IPC分类号： G06F7/04 , G06F17/30 , H04L9/32 , H04K1/00 , G06K5/00 , H04L29/06 , G06Q40/00
CPC分类号： G06Q40/02 , G06Q20/04 , G06Q20/10 , G06Q20/108 , G06Q20/3823 , G06Q20/40 , G06Q20/425 , G06Q40/00 , G06Q40/025
摘要： Financial institution back office computerized transaction-processing system with embedded privacy and security layer (EPSL) enables strong transaction authentication prior to a merchant or vendor contact, based on a user account number, transaction conditions like anticipated transaction time and money, user two-factor authentication with a static transaction PIN and a transaction session-specific random partial password or PIN recognition algorithm. User enters the user name and then, challenged by server with a random session-specific subset of a password or PIN character's consecutive position numbers, enters based on cognitive association a one time authentication response. The authentication session is interactive, transaction session-specific, and followed by either a transaction denial or an alphanumeric transaction signature generated by EPSL for this specific transaction. Then, the user submits her request to a transaction counterpart along with the transaction signature. The merchant or vendor requests an authorization session with EPSL.
摘要翻译：具有嵌入式隐私和安全层（EPSL）的金融机构后台计算机化交易处理系统可以在商家或供应商联系之前，根据用户帐号，诸如预期交易时间和金额之类的交易条件，用户双因素使用静态事务PIN和事务会话特定的随机部分密码或PIN识别算法进行认证。用户输入用户名，然后由具有密码或PIN字符的连续位置号码的随机会话特定子集的服务器挑战，基于认知关联进行一次认证响应。认证会话是交互式的，事务会话特定的，后面是EPSL为此特定事务生成的事务拒绝或字母数字事务签名。然后，用户将其请求与交易签名一起提交给交易对方。商家或供应商请求与EPSL的授权会话。

4. 发明授权

US07188314B2 System and method for user authentication interface 有权
标题翻译：用户认证接口的系统和方法
公开(公告)号：US07188314B2
公开(公告)日：2007-03-06
申请号：US10353500
申请日：2003-01-29
申请人： Len L. Mizrah
发明人： Len L. Mizrah
IPC分类号： H04L9/32 , G06F7/04
CPC分类号： H04L63/08 , G06F21/31 , G06F21/36
摘要： A graphical user interface supports an interactive client-server authentication based on Random Partial Pattern Recognition algorithm (RPPR). In RPPR, an ordered set of data fields is stored for a client to be authenticated in secure memory on the server side. A graphical user interface presents a clue generated at the server to the client, such positions in the ordered set of a random subset of data fields from the ordered set. The client enters input data in multiple fields of the interface according to the clue, and the server accepts the input data from the client. The input data includes storage units representing alpha-numeric characters, images and colors corresponding to the field contents for the data fields. The interface includes indicators for elapsed time and status of the authentication session.
摘要翻译：图形用户界面支持基于随机部分模式识别算法（RPPR）的交互式客户端 - 服务器认证。在RPPR中，存储一组有序数据字段以供客户端在服务器端的安全内存中进行身份验证。图形用户界面向客户端呈现在服务器处产生的线索，来自有序集合的数据字段的随机子集的有序集合中的位置。客户根据线索在接口的多个字段中输入输入数据，服务器接受来自客户端的输入数据。输入数据包括表示与数据字段的字段内容相对应的字母数字字符，图像和颜色的存储单元。该接口包括经过时间和认证会话状态的指示符。

5. 发明申请

US20140115670A1 AUTHENTICATION METHOD OF FIELD CONTENTS BASED CHALLENGE AND ENUMERATED PATTERN OF FIELD POSITIONS BASED RESPONSE IN RANDOM PARTIAL DIGITIZED PATH RECOGNITION SYSTEM 有权
标题翻译：基于随机部分数字路径识别系统的基于现场目标的场景挑战和基于场位置的响应模式的验证方法
公开(公告)号：US20140115670A1
公开(公告)日：2014-04-24
申请号：US13658800
申请日：2012-10-23
申请人： EDWARD M. BARTON , LEN L. MIZRAH
发明人： EDWARD M. BARTON , LEN L. MIZRAH
IPC分类号： G06F21/00
CPC分类号： G06F21/36 , H04L9/3226 , H04L9/3228
摘要： An interactive method for authentication is based on a shared secret which is in the form of an enumerated pattern of fields on a frame of reference. An instance of the frame of reference comprises an array of characters in which the characters are arranged in a random or other irregular pattern on a grid of content fields. An authentication challenge includes characters from the character set, and is delivered in- or out-of-band. The authentication response includes the enumerated position numbers on the enumerated pattern of the field locations on the grid at which the challenge characters are found.
摘要翻译：用于认证的交互方法基于共享秘密，该共享秘密是在参考帧上的列举的字段模式的形式。参考框架的实例包括其中字符以内容字段的网格上的随机或其他不规则图案排列的字符阵列。认证挑战包括字符集中的字符，并且被传送到带外或带外。认证响应包括在找到挑战字符的网格上的字段位置的枚举模式上的枚举位置编号。

6. 发明申请

US20110035294A1 MULTI-TIER TRANSACTION PROCESSING METHOD AND PAYMENT SYSTEM IN M- AND E- COMMERCE 审中-公开
标题翻译：多层交易处理方法和付款系统在M-和E-商业
公开(公告)号：US20110035294A1
公开(公告)日：2011-02-10
申请号：US12535546
申请日：2009-08-04
申请人： LEN L. MIZRAH
发明人： LEN L. MIZRAH
IPC分类号： G06Q30/00 , G06Q10/00 , G06F21/00
CPC分类号： G06Q20/405 , G06F21/33 , G06F21/645 , G06Q20/322 , G06Q20/385 , G06Q20/389 , G06Q30/06 , G06Q30/0615 , G06Q40/12 , G06Q50/188
摘要： A server executes a protocol that automates transactions involving a customer and a merchant agreeing to trade money in the customer's account for goods or services available from the merchant. The protocol protects personal identifying information of the customer from disclosure to the merchant, and protects all parties from repudiation of the specific transaction. The protocol defines a pre-authenticated form of the specific transaction; obtains authorization from the customer and the merchant to commit on their behalf to the pre-authenticated transaction; and obtains authorization from the bank to commit resources for settlement with the merchant. After obtaining authorizations, a transaction clearance code is generated completing a record of the pre-authenticated transaction for non-repudiation, for proof of a right to receive settlement from the third party and for proof of a right to receive the goods or services from the merchant.
摘要翻译：服务器执行一个协议，自动化涉及客户和商家的交易，同意在客户的帐户中交易货物或服务，从商家可用。该协议保护客户的个人识别信息免于向商家披露，并且保护所有各方免于具体交易的抵赖。该协议定义了特定事务的预认证形式; 获得客户和商户授权代表他们进行预认证的交易; 并获得银行授权，提供与商户结算的资源。在获得授权之后，产生交易清关代码，完成预认证交易的记录以进行不可抵赖，以证明有权从第三方接收结算，以及证明从第三方收到货物或服务的权利商人。

7. 发明授权

US07849321B2 Authentication method of random partial digitized path recognition with a challenge built into the path 有权
标题翻译：随机部分数字化路径识别的验证方法，具有内置于路径中的挑战
公开(公告)号：US07849321B2
公开(公告)日：2010-12-07
申请号：US11466697
申请日：2006-08-23
申请人： Len L. Mizrah
发明人： Len L. Mizrah
IPC分类号： G06F21/00
CPC分类号： G06F21/83 , G06F21/36
摘要： An interactive method for authentication is based on two shared secrets, including a first shared secret in the form of an ordered path on the frame of reference, and a second shared secret in the form of locations on the frame of reference at which characters identifying a subset of the ordered path are to be displayed. An instance of the frame of reference comprises a set of characters which is arranged in a random or other irregular pattern. Authentication requires that a user enter the characters in the displayed instance of the frame of reference found in the locations in the random subset of the ordered path by indicating characters either in these locations, or any other locations having the same characters. Thus, a secret challenge identifying the random partial subset is embedded within the displayed instance of the graphical representation of the frame of reference.
摘要翻译：用于认证的交互方法基于两个共享秘密，包括在参考帧上以有序路径的形式的第一共享秘密，以及在参考帧上的位置形式的第二共享秘密，其中字符识别要显示有序路径的子集。参考框架的实例包括以随机或其他不规则图案排列的一组字符。认证要求用户通过在这些位置或具有相同字符的任何其他位置指示字符来输入在有序路径的随机子集中的位置中找到的参考帧的显示实例中的字符。因此，识别随机部分子集的秘密挑战被嵌入在参考帧的图形表示的所显示的实例内。

8. 发明授权

US07506161B2 Communication session encryption and authentication system 有权
标题翻译：通信会话加密和认证系统
公开(公告)号：US07506161B2
公开(公告)日：2009-03-17
申请号：US10653506
申请日：2003-09-02
申请人： Len L. Mizrah
发明人： Len L. Mizrah
IPC分类号： H04L9/00
CPC分类号： H04L9/0844 , H04L9/3273
摘要： An interactive mutual authentication protocol, which does not allow shared secrets to pass through untrusted communication media, integrates an encryption key management system into the authentication protocol, so that key management becomes an essential part of the authentication protocol itself. The system provides a secure distribution of a secret session random key used in symmetric cryptography. Successful exchange of this encryption key allows for secure transit of the protocol data over communication lines in encrypted form, permitting explicit mutual authentication of the connected parties. The post-authentication stage of the communication session can use secure encryption for the data exchange, since each party has already obtained the secret session random key.
摘要翻译：不允许共享秘密通过不信任通信介质的交互式互认认证协议将加密密钥管理系统集成到认证协议中，使得密钥管理成为认证协议本身的重要部分。该系统提供在对称密码学中使用的秘密会话随机密钥的安全分发。该加密密钥的成功交换允许协议数据通过通信线路以加密的形式进行安全传输，允许连接方的显式相互认证。通信会话的后验证阶段可以使用安全加密来进行数据交换，因为每一方已经获得了秘密会话随机密钥。

9. 发明授权

US07379916B1 System and method for private secure financial transactions 有权
标题翻译：私人和安全金融交易的系统和方法
公开(公告)号：US07379916B1
公开(公告)日：2008-05-27
申请号：US09706370
申请日：2000-11-03
申请人： Len L. Mizrah
发明人： Len L. Mizrah
IPC分类号： G06Q40/00 , G07F19/00 , G06F5/00
CPC分类号： G06Q40/02 , G06Q20/04 , G06Q20/10 , G06Q20/108 , G06Q20/3823 , G06Q20/40 , G06Q20/425 , G06Q40/00 , G06Q40/025
摘要： A clocked authentication, authorization and accounting (CAAA) system and method offers private and secure credit/debit card online and offline financial transactions (FT) including an embedded privacy and security layer (EPSL) architecture. EPSL includes an authentication stage prior to the authorization stage that is automated and enabled through a back office, and enhanced by associating the authentication stage with projected timing, security and accounting parameters. It enables legal financial account holders to perform buy/sell or withdraw/deposit transactions without disclosing private personal information to the transaction counterparts, while preserving highly elevated and enhanced security and fraud protection as compared with conventional methods. The CAAA method enables efficient mass user EPSL implementation at back offices utilizing high frequency synchronized global clocking of EPSL logic blocks.
摘要翻译：计时认证，授权和会计（CAAA）系统和方法提供私人和安全的信用卡/借记卡在线和离线金融交易（FT），包括嵌入式隐私和安全层（EPSL）架构。 EPSL包括在授权阶段之前的认证阶段，其通过后台自动化和启用，并且通过将认证阶段与预计的时间安排和安全性和会计参数相关联来增强。它使得法定财务账户持有人可以在不向交易对手披露私人个人信息的情况下执行买/卖或提取/存款交易，同时保持与传统方法相比高度提升和增强的安全性和欺诈保护。 CAAA方法可以利用EPSL逻辑块的高频同步全局时钟在后台实现高效的大量用户EPSL。

10. 发明授权

US07299356B2 Key conversion method for communication session encryption and authentication system 有权
标题翻译：通信会话加密和认证系统的密钥转换方法
公开(公告)号：US07299356B2
公开(公告)日：2007-11-20
申请号：US10653500
申请日：2003-09-02
申请人： Len L. Mizrah
发明人： Len L. Mizrah
IPC分类号： H04L9/00
CPC分类号： H04L63/061 , H04L9/0822 , H04L9/0844 , H04L63/08 , H04L63/0869
摘要： An interactive mutual authentication protocol, which does not allow shared secrets to pass through untrusted communication media, integrates an encryption key management system into the authentication protocol. The server encrypts a particular data random key by first veiling the particular data random key using a first conversion array seeded by a shared secret, and then encrypting the veiled particular data random key. The client decrypts and unveils the particular data random key using the shared secret, and returns a similarly veiled version of the particular data random key using a second conversion array seeded by a shared secret. Access to the shared secret indicates authenticity of the stations. The procedure may be repeated for a second shared secret for strong authentication, without allowing shared secrets to pass via untrusted media.
摘要翻译：不允许共享秘密通过不信任通信介质的交互式互认认证协议将加密密钥管理系统集成到认证协议中。服务器通过首先使用由共享密钥接收的第一转换阵列来掩蔽特定数据随机密钥来加密特定数据随机密钥，然后加密掩蔽的特定数据随机密钥。客户端使用共享秘密解密并发布特定数据随机密钥，并使用由共享密钥种子的第二转换阵列返回特定数据随机密钥的类似遮蔽版本。访问共享密钥表示站点的真实性。可以针对第二共享秘密重复该过程以进行强认证，而不允许共享秘密通过不受信任的媒体。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式