专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明申请

WO2006092393A3 MULTIPLE USE SECURE TRANSACTION CARD 审中-公开
公开(公告)号：WO2006092393A3
公开(公告)日：2006-09-08
申请号：PCT/EP2006/060325
申请日：2006-02-28
申请人： INTERNATIONAL BUSINESS MACHINES CORPORATION , IBM UNITED KINGDOM LIMITED , KELLY, Edward , MOTIKA, Franco
发明人： KELLY, Edward , MOTIKA, Franco
IPC分类号： G07F7/10 , G07C9/00 , G06Q20/00
摘要： Diverse and or multiple functions are performed in a secure manner using a secure transaction card which validates a holder of the secure transaction card in accordance with a Personal Identification Number (PIN), generates, encrypts and transmits a pair of pseudo-random number sequences through a card reader to validate the card and generates, encrypts and transmits control signals or other information corresponding to a function comprising at least one of personal identity data, passport data, equipment control signals, an entry request to a secure area, medical records or access data therefor, note pad access data and secure telephone entry data in accordance with a protocol suitable for each function. One or more such functions can thus be performed in a secure manner from a single secure transaction card and selection, if needed, can be performed by a menu included in the secure transaction card.

2. 发明申请

WO2008141922A1 METHOD AND SYSTEM FOR PREVENTING PASSWORD THEFT THROUGH UNAUTHORIZED KEYLOGGING 审中-公开
标题翻译：通过未经授权的密钥预防密码的方法和系统
公开(公告)号：WO2008141922A1
公开(公告)日：2008-11-27
申请号：PCT/EP2008/055554
申请日：2008-05-06
申请人： INTERNATIONAL BUSINESS MACHINES CORPORATION , IBM UNITED KINGDOM LIMITED , KELLEY, Edward, Emile , DELIA, Wayne, Michael , MOTIKA, Franco
发明人： KELLEY, Edward, Emile , DELIA, Wayne, Michael , MOTIKA, Franco
IPC分类号： G06F21/04 , G06F21/20
CPC分类号： G06F21/31 , G06F21/83 , G06F2221/2127
摘要： A method for preventing password theft through unauthorized keylogging includes detecting, from a host application, a request for a password input by a user of an input keyboard device; activating a randomly generated keyboard map uniquely associated with the host application such that a first set of keystroke values inputted by the user results in a second, converted set of keystroke values transmitted to the host application, in accordance with the randomly generated keyboard map uniquely associated therewith; and upon completion of a password entry process by the user, deactivating the randomly generated keyboard map such that subsequent keystroke values inputted by the user are no longer converted to the values according to the keyboard map.
摘要翻译：一种用于通过未经授权的键盘记录来防止密码盗窃的方法包括从主机应用程序检测输入键盘设备的用户输入的密码请求; 激活与所述主机应用程序唯一相关联的随机生成的键盘映射，使得由所述用户输入的第一组按键值根据随机产生的键盘映射唯一地相关联地导致发送到所述主机应用的第二转换的按键值集合与之; 并且在用户完成密码输入处理后，停用随机产生的键盘映射，使得用户输入的后续按键值不再被转换为根据键盘映射的值。

3. 发明申请

WO2008043668A2 METHOD AND SYSTEM FOR PROTECTING RFID TAGS ON PURCHASED GOODS 审中-公开
标题翻译：用于保护所购物品上的RFID标签的方法和系统
公开(公告)号：WO2008043668A2
公开(公告)日：2008-04-17
申请号：PCT/EP2007/060255
申请日：2007-09-27
申请人： INTERNATIONAL BUSINESS MACHINES CORPORATION , IBM UNITED KINGDOM LIMITED , KELLEY, Edward, Emile , MOTIKA, Franco
发明人： KELLEY, Edward, Emile , MOTIKA, Franco
CPC分类号： G06Q20/20 , G06Q30/06
摘要： A method for controlling access to data contained within a radio frequency identification (RFID) tag associated with an item includes reading the RFID tag; receiving a first value from a personal communication device associated with a purchaser of the item; creating a key using the first value received from the personal communication device and a second value associated with the item; and initially transmitting the key to both the RFID tag and the personal communication device. The RFID tag is configured to automatically program one or more electrically programmable fuse devices therein so as to prevent subsequent reading of data therein by an RFID reading device, upon receipt of a valid key initially transmitted thereto. The RFID tag is further configured to automatically program one or more additional fuse devices therein so as to restore read access to the data therein, upon receipt of a valid key subsequently transmitted thereto.
摘要翻译：用于控制对包含在与物品相关联的射频识别（RFID）标签内的数据的访问的方法包括：读取RFID标签; 从与物品的购买者相关联的个人通信设备接收第一值; 使用从个人通信设备接收的第一值和与该项目相关联的第二值来创建密钥; 并且最初将密钥传输到RFID标签和个人通信设备。 RFID标签被配置成在其中自动编程一个或多个电可编程熔丝设备，以便在接收到最初传送给其的有效密钥时防止RFID读取设备随后读取其中的数据。 RFID标签被进一步配置为在其中自动编程一个或多个附加熔丝设备，以便在接收到随后发送给其的有效密钥时恢复对其中的数据的读取访问。

4. 发明申请

WO2006092383A2 SECURE CELL PHONE FOR ATM TRANSACTIONS 审中-公开
标题翻译：用于ATM交易的安全手机
公开(公告)号：WO2006092383A2
公开(公告)日：2006-09-08
申请号：PCT/EP2006/060265
申请日：2006-02-24
申请人： INTERNATIONAL BUSINESS MACHINES CORPORATION , IBM UNITED KINGDOM LIMITED , KELLEY, Edward , MOTIKA, Franco
发明人： KELLEY, Edward , MOTIKA, Franco
CPC分类号： G07F19/20 , G06Q20/1085 , G06Q20/32 , G06Q20/4014
摘要： A method, secure cell phone and system for securely accessing an automated banking machine using such secure cell phone. The secure cell phone includes a read only memory device in combination with two linear feedback shift registers for generating a unique security transaction code, which includes a cell phone identification concatenated with two pseudo random codes. The automated banking machine is called from the cell phone. One of the pseudo random codes is input into a software emulation of the cell phone circuitry running on the automated banking machine to generate a computed pseudo random code. This computed code is concatenated the input pseudo random code and a determined cell phone identification to generate a computed transaction code. The automated banking machine is securely accessed using the secure cell phone if the computed transaction code matches the unique security transaction code.
摘要翻译：
用于使用这种安全手机安全地访问自动银行机的方法，安全手机和系统。安全蜂窝电话包括与两个线性反馈移位寄存器结合的只读存储器装置，用于生成唯一的安全事务代码，其包括与两个伪随机代码级联的蜂窝电话标识。自动银行业务机是通过手机拨打的。将其中一个伪随机码输入到在自动银行机上运行的手机电路的软件仿真中，以生成计算出的伪随机码。该计算代码与输入的伪随机码和确定的手机标识连接以生成计算的交易代码。如果计算出的交易代码与唯一的安全交易代码相匹配，则使用安全手机可以安全地访问自动银行业务机。

5. 发明申请

WO2005101332A1 SECURE CREDIT CARD EMPLOYING PSEUDO-RANDOM BIT SEQUENCES FOR AUTHENTICATION 审中-公开
标题翻译：使用PSEUDO随机比特序列进行认证的安全信用卡
公开(公告)号：WO2005101332A1
公开(公告)日：2005-10-27
申请号：PCT/EP2005/051535
申请日：2005-04-07
申请人： INTERNATIONAL BUSINESS MACHINES CORPORATION , IBM UNITED KINGDOM LIMITED , KELLEY, Edward , MOTIKA, Franco
发明人： KELLEY, Edward , MOTIKA, Franco
IPC分类号： G07F7/08
CPC分类号： G07F7/1008 , G06F2207/581 , G06Q20/341 , G06Q20/40145 , G06Q20/40975 , G07F7/08 , G07F7/1016 , G07F7/12
摘要： A secure credit card has a pair of linear feedback shift registers (LFSRs) for generating a pair of random numbers. The LFSRs each have a unique initial state and feedback tap configuration. Hence, they each produce a unique sequence of numbers. When a financial transaction occurs, the LFSRs are operated for a random number of clock cycles, to create a pair of matched random numbers. Each card issued has unique LFSR settings, and so will produce characteristic random numbers. At a financial institution, the LFSR settings are known, so the financial institution can determine by calculation if the pair of random numbers is authentic. There are many variations, including a credit card with a secret security code for activation, and 2-way "handshake" communication with the financial institution. Also, one of the LFSRs may be replaced with a binary, or similar counter.
摘要翻译：一个安全的信用卡有一对用于产生一对随机数的线性反馈移位寄存器（LFSR）。 LFSR每个都具有唯一的初始状态和反馈抽头配置。因此，它们各自产生唯一的数字序列。当金融交易发生时，LFSR以随机数的时钟周期运行，以创建一对匹配的随机数。发行的每个卡都具有独特的LFSR设置，因此会产生特征随机数。在金融机构，LFSR设置是已知的，所以金融机构可以通过计算确定一对随机数是否可信。有许多变化，包括具有激活的秘密安全码的信用卡和与金融机构的双向“握手”通信。此外，其中一个LFSR可以被替换为二进制或类似的计数器。

6. 发明申请

WO2009147049A2 METHOD AND SYSTEM FOR DEFEATING THE MAN IN THE MIDDLE COMPUTER HACKING TECHNIQUE 审中-公开
标题翻译：在中间计算机黑客技术中保护人的方法和系统
公开(公告)号：WO2009147049A2
公开(公告)日：2009-12-10
申请号：PCT/EP2009/056500
申请日：2009-05-28
申请人： INTERNATIONAL BUSINESS MACHINES CORPORATION , IBM UNITED KINGDOM LIMITED , KELLEY, Edward, Emile , DELIA, Wayne, Michael , MOTIKA, Franco
发明人： KELLEY, Edward, Emile , DELIA, Wayne, Michael , MOTIKA, Franco
IPC分类号： H04L29/06
CPC分类号： H04L63/0428 , H04L63/083 , H04L63/1466
摘要： A method for constructing a secure Internet transaction, the method includes: receiving a user identification (userid) and user password on a client device for filling out a form generated by a secure web site; concatenating the user's Internet Protocol (IP) address with a separate password that is maintained on the secure web site that the user is authenticating to; encrypting the concatenated user IP and separate password to form an Internet Protocol password (IPPW); wherein the encrypting is carried out with a client device linear feedback shift register (LFSR) with a defined cycle count; building a transaction consisting of the IPPW, defined cycle count, and userid; transmitting the transaction and form via a network towards the secure web site; wherein in response the secure website performs the following: decrypts the IPPW, and determines if the IP portion of the decrypted IPPW is equal to the user's IP address.
摘要翻译：一种用于构建安全因特网事务的方法，所述方法包括：在客户端设备上接收用户标识（用户ID）和用户密码，以填写由安全网站生成的表单; 将用户的因特网协议（IP）地址与在用户正在认证的安全网站上维护的单独的密码连接起来; 加密连接的用户IP和单独的密码以形成Internet协议密码（IPPW）; 其中所述加密是利用具有定义的周期计数的客户端设备线性反馈移位寄存器（LFSR）来执行的; 构建由IPPW，定义的循环计数和userid组成的事务; 通过网络向安全网站传送交易和表单; 其中作为响应，安全网站执行以下操作：解密IPPW，并确定解密的IPPW的IP部分是否等于用户的IP地址。

7. 发明申请

WO2008043653A1 METHOD AND SYSTEM FOR INITIATING PROXIMITY WARNING ALARM FOR ELECTRONIC DEVICES AND PROHIBITING OPERATION THEREOF 审中-公开
标题翻译：用于启动电子设备的临时警告警报和禁止其操作的方法和系统
公开(公告)号：WO2008043653A1
公开(公告)日：2008-04-17
申请号：PCT/EP2007/059911
申请日：2007-09-19
申请人： INTERNATIONAL BUSINESS MACHINES CORPORATION , IBM UNITED KINGDOM LIMITED , MOTIKA, Franco , DELIA, Wayne, Michael , KELLEY, Edward, Emile
发明人： MOTIKA, Franco , DELIA, Wayne, Michael , KELLEY, Edward, Emile
IPC分类号： G06F21/00
CPC分类号： G06F21/88 , G06F2221/2111 , G06F2221/2143 , G08B13/1427 , G08B21/0213
摘要： A system for tracking the location of electronic devices and prohibiting unauthorized operation thereof includes a control unit, configured for wireless communication with an electronic device, the electronic device having a basic input/output system (BIOS) associated therewith. The control unit is configured to remotely disable the electronic device in the event the electronic device is detected to be beyond a programmed radius for a programmed duration, in accordance with a specifically defined level of security, wherein the extent to which the electronic device is disabled by the control unit is dependent upon the specifically defined level of security.
摘要翻译：用于跟踪电子设备的位置并禁止未授权操作的系统包括被配置为与电子设备进行无线通信的控制单元，该电子设备具有与其相关联的基本输入/输出系统（BIOS）。根据特定的安全级别，控制单元被配置为在电子设备被检测到超过编程持续时间的编程半径的情况下远程禁用电子设备，其中电子设备被禁用的程度由控制单元依赖于特定的安全级别。

8. 发明申请

WO2007028694A1 SECURE VOTING SYSTEM 审中-公开
标题翻译：安全投票制度
公开(公告)号：WO2007028694A1
公开(公告)日：2007-03-15
申请号：PCT/EP2006/065371
申请日：2006-08-16
申请人： INTERNATIONAL BUSINESS MACHINES CORPORATION , IBM UNITED KINGDOM LIMITED , KELLEY, Edward, Emile , ANDERSON, Jay , MOTIKA, Franco
发明人： KELLEY, Edward, Emile , ANDERSON, Jay , MOTIKA, Franco
IPC分类号： G07C13/00
CPC分类号： G07C13/00
摘要： Methods, systems and program products for securely voting by providing a secure voting module in communication with a voting device. A voter signs onto the voting device using a unique voter identification, and the voter's voting selections are written to the voting device. A scrambled voter identification is generated using the unique voter identification and a unique encryption value of the secure voting module, whereby the voting selections and the scrambled voter identification are stored in the secure voting module. Once voting has ended, first and second fuses are blown within the secure voting module for destroying the unique encryption value and for permanently storing the voting selections and scrambled voter identification in a read only secure voting module that maintains voter anonymity while preventing any further physically writing thereto. The voting results may then be counted, re-counted or validated.
摘要翻译：通过提供与投票设备通信的安全投票模块来安全投票的方法，系统和程序产品。投票人使用独特的选民身份登录投票设备，并将投票人的投票选择写入投票设备。使用独特的选民识别和安全投票模块的唯一加密值来生成加扰的选民识别，由此投票选择和加扰的选民识别被存储在安全投票模块中。一旦投票结束，第一和第二熔丝在安全投票模块中被吹入，以破坏唯一的加密值，并将投票选择和加密的选民识别永久存储在只保留投票者的安全投票模块中，从而保持投票者的匿名性，同时防止进一步的物理写入于此。投票结果可能会被计算，重新计算或验证。

9. 发明申请

WO2007090719A2 METHOD FOR PREVENTING MALICIOUS SOFTWARE INSTALLATION ON AN INTERNET-CONNECTED COMPUTER 审中-公开
标题翻译：在互联网连接的计算机上防止恶意软件安装的方法
公开(公告)号：WO2007090719A2
公开(公告)日：2007-08-16
申请号：PCT/EP2007/050442
申请日：2007-01-17
申请人： INTERNATIONAL BUSINESS MACHINES CORPORATION , IBM UNITED KINGDOM LIMITED , KELLEY, Edward , MOTIKA, Franco , WILBRINK, Tijs
发明人： KELLEY, Edward , MOTIKA, Franco , WILBRINK, Tijs
IPC分类号： G06F21/00
CPC分类号： G06F21/53 , G06F21/565 , G06F21/566 , G06F2221/2149
摘要： A computer random access memory is divided into first and second partitions. Each partition has its own operating system (OS). The first partition has a conventional OS and is designated for non-Internet use. The second partition is designated for secure Internet access, and has an OS specific for Internet usage. Software in the second partition cannot write or copy files in the second partition. The size of the second partition is fixed and unchangeable while said second partition is open. Each software application in the second partition is allocated a memory region that cannot be changed, thereby preventing memory overflow attacks. A secure memory is designated for temporary storage of software used in the second partition. Cyclic redundancy check (CRC) values are calculated for all files in the secure memory. To detect unauthorized file changes, CRC values are calculated for all files used in the second partition, and checked against values stored in the secure memory. The second partition can write only to a secure memory using a security arrangement such as password protection or a download memory separate from the first partition to allow files stored in the download memory to be examined by scanning and testing from the first partition prior to being stored elsewhere in the computer.
摘要翻译：计算机随机存取存储器被分成第一和第二分区。每个分区都有自己的操作系统（OS）。第一个分区具有常规操作系统，并被指定用于非互联网使用。第二个分区被指定用于安全的Internet访问，并且具有专用于因特网使用的操作系统。第二个分区中的软件无法在第二个分区中写入或复制文件。第二分区的大小是固定的，并且在所述第二分区打开时不可改变。第二分区中的每个软件应用程序都被分配一个无法更改的内存区域，从而防止内存溢出攻击。指定用于在第二分区中使用的软件的临时存储的安全存储器。针对安全存储器中的所有文件计算循环冗余校验（CRC）值。要检测未经授权的文件更改，将对第二个分区中使用的所有文件计算CRC值，并对存储在安全存储器中的值进行检查。第二分区可以使用诸如密码保护的安全布置或与第一分区分开的下载存储器仅写入安全存储器，以允许存储在下载存储器中的文件通过在存储之前从第一分区扫描和测试来检查电脑里的其他地方

10. 发明申请

WO2006100172A1 SECURE CREDIT CARD ADAPTER 审中-公开
标题翻译：安全信用卡适配器
公开(公告)号：WO2006100172A1
公开(公告)日：2006-09-28
申请号：PCT/EP2006/060446
申请日：2006-03-03
申请人： INTERNATIONAL BUSINESS MACHINES CORPORATION , IBM UNITED KINGDOM LIMITED , KELLEY, Edward , MOTIKA, Franco , RUFFING, Kim
发明人： KELLEY, Edward , MOTIKA, Franco , RUFFING, Kim
IPC分类号： G07F7/10 , G06F21/00
CPC分类号： G07F7/1008 , G06Q20/341 , G06Q20/382 , G07F7/0886
摘要： A secure card adapter provides for writing of highly secure, single transaction information on a machine-readable medium of a card structure in accordance with a format that may be downloaded from an external data source. The card structure may be, for example, an existing access authorization card or an existing credit card containing account-specific information which can be read and stored in memory of the secure card adapter. Once such account-specific information is read from an existing access authorization or credit card, secure transaction information can be written, together with the account specific information in accordance with the downloaded format information on another card structure to provide a universal access authorization and/or credit card. Thus the secure card adapter provides an enhanced degree of security through an existing or transitional communication infrastructure.
摘要翻译：安全卡适配器提供根据可从外部数据源下载的格式在卡结构的机器可读介质上写入高度安全的单个交易信息。卡结构可以是例如现有的访问授权卡或包含可被读取并存储在安全卡适配器的存储器中的特定于特定信息的现有信用卡。一旦从现有的访问授权或信用卡读取这样的特定于特定信息的信息，可以根据下载的关于另一个卡结构的格式信息，将帐户特定信息与安全交易信息一起写入以提供通用访问授权和/或信用卡。因此，安全卡适配器通过现有或过渡的通信基础设施提供增强的安全性。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式