专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明申请

US20060198517A1 Method and system for asymmetric key security 有权
标题翻译：非对称密钥安全的方法和系统
公开(公告)号：US20060198517A1
公开(公告)日：2006-09-07
申请号：US11074885
申请日：2005-03-07
申请人： Kim Cameron , Arun Nanda , Josh Benaloh , John Shewchuk , Daniel Simon , Andrew Bortz
发明人： Kim Cameron , Arun Nanda , Josh Benaloh , John Shewchuk , Daniel Simon , Andrew Bortz
IPC分类号： H04L9/00
CPC分类号： H04L63/0442 , G06F21/445 , G06F2221/2129 , H04L9/0869 , H04L9/3218 , H04L63/06 , H04L2463/061
摘要： Exemplary embodiments disclosed herein may include a method and system for creating pair-wise security keys, comprising receiving an identity key from a website, generating a master key, creating a pair-wise symmetric key or asymmetric key pair by utilizing an encryption function of the identity key and the master key, and storing the pair-wise public or symmetric key at the client and the website.
摘要翻译：本文公开的示例性实施例可以包括用于创建成对安全密钥的方法和系统，包括从网站接收身份密钥，生成主密钥，通过利用所述密钥对的加密功能创建成对对称密钥或非对称密钥对身份密钥和主密钥，并将成对的公有或对称密钥存储在客户端和网站上。

2. 发明申请

US20060200866A1 Method and system for safely disclosing identity over the Internet 有权
标题翻译：通过互联网安全公开身份的方法和系统
公开(公告)号：US20060200866A1
公开(公告)日：2006-09-07
申请号：US11073404
申请日：2005-03-04
申请人： Kim Cameron , Arun Nanda , Andy Harjanto , Stuart Kwan , John Shewchuk , Bill Barnes , Khushru Irani , Charles Reeves
发明人： Kim Cameron , Arun Nanda , Andy Harjanto , Stuart Kwan , John Shewchuk , Bill Barnes , Khushru Irani , Charles Reeves
IPC分类号： H04L9/32
CPC分类号： H04L63/126 , H04L63/1483
摘要： Exemplary embodiments disclosed herein may include a method and system for providing information to a user and safely disclosing identity information over the Internet comprising receiving information from a server, analyzing the information, presenting the analyzed information to a user for validation in a finite number of configurations controlled by a client, and validating of the information by the user.
摘要翻译：本文公开的示例性实施例可以包括用于向用户提供信息并且通过因特网安全地公开身份信息的方法和系统，包括从服务器接收信息，分析信息，将分析的信息呈现给用户以在有限数量的配置中进行验证由客户控制，并由用户验证信息。

3. 发明授权

US08689296B2 Remote access of digital identities 有权
标题翻译：远程访问数字身份
公开(公告)号：US08689296B2
公开(公告)日：2014-04-01
申请号：US11952890
申请日：2007-12-07
申请人： John Shewchuk , Kim Cameron , Arun Nanda , Xiao Xie
发明人： John Shewchuk , Kim Cameron , Arun Nanda , Xiao Xie
IPC分类号： G06F7/04
CPC分类号： H04L63/08 , G06F21/33 , G06F21/41 , H04L63/0853
摘要： A system and method for controlling distribution and use of digital identity representations (“DIRs”) increases security, usability, and oversight of DIR use. A DIR stored on a first device may be obtained by a second device for use in satisfying the security policy of a relying party. Release of the DIR to the second device requires permission from a device or entity that may be different from the device or entity attempting to access the relying party. Further, the use of the DIR to obtain an identity token may separately require permission of even a different person or entity and may be conditioned upon receiving satisfactory information relating to the intended use of the DIR (e.g., the name of the relying party, type of operation being attempted, etc.). By controlling the distribution and use of DIRs, security of the principal's identity and supervisory control over a principal's activities are enhanced.
摘要翻译：用于控制数字身份表示（“DIR”）分发和使用的系统和方法提高了DIR使用的安全性，可用性和监督性。可以通过第二设备获得存储在第一设备上的DIR，以用于满足依赖方的安全策略。将DIR发布到第二设备需要来自可能与尝试访问依赖方的设备或实体不同的设备或实体的许可。此外，使用DIR获得身份令牌可以单独要求甚至不同的人或实体的许可，并且可以在接收到与DIR的预期用途有关的令人满意的信息的条件下（例如，依赖方的名称，类型正在尝试操作等）。通过控制DIR的分配和使用，主体的身份安全性和对委托人活动的监督控制得到加强。

4. 发明申请

US20080184339A1 REMOTE ACCESS OF DIGITAL IDENTITIES 有权
标题翻译：远程访问数字识别
公开(公告)号：US20080184339A1
公开(公告)日：2008-07-31
申请号：US11952890
申请日：2007-12-07
申请人： John Shewchuk , Kim Cameron , Arun Nanda , Xiao Xie
发明人： John Shewchuk , Kim Cameron , Arun Nanda , Xiao Xie
IPC分类号： G06F7/04
CPC分类号： H04L63/08 , G06F21/33 , G06F21/41 , H04L63/0853
摘要： A system and method for controlling distribution and use of digital identity representations (“DIRs”) increases security, usability, and oversight of DIR use. A DIR stored on a first device may be obtained by a second device for use in satisfying the security policy of a relying party. Release of the DIR to the second device requires permission from a device or entity that may be different from the device or entity attempting to access the relying party. Further, the use of the DIR to obtain an identity token may separately require permission of even a different person or entity and may be conditioned upon receiving satisfactory information relating to the intended use of the DIR (e.g., the name of the relying party, type of operation being attempted, etc.). By controlling the distribution and use of DIRs, security of the principal's identity and supervisory control over a principal's activities are enhanced.
摘要翻译：用于控制数字身份表示（“DIR”）分发和使用的系统和方法提高了DIR使用的安全性，可用性和监督性。可以通过第二设备获得存储在第一设备上的DIR，以用于满足依赖方的安全策略。将DIR发布到第二设备需要来自可能与尝试访问依赖方的设备或实体不同的设备或实体的许可。此外，使用DIR获得身份令牌可以单独要求甚至不同的人或实体的许可，并且可以在接收到与DIR的预期用途有关的令人满意的信息的条件下（例如，依赖方的名称，类型正在尝试操作等）。通过控制DIR的分配和使用，主体的身份安全性和对委托人活动的监督控制得到加强。

5. 发明申请

US20060200424A1 Method and system for integrating multiple identities, identity mechanisms and identity providers in a single user paradigm 有权
标题翻译：在单一用户范例中集成多个身份，身份机制和身份提供者的方法和系统
公开(公告)号：US20060200424A1
公开(公告)日：2006-09-07
申请号：US11073131
申请日：2005-03-04
申请人： Kim Cameron , Arun Nanda , Stuart Kwan , John Shewchuk
发明人： Kim Cameron , Arun Nanda , Stuart Kwan , John Shewchuk
IPC分类号： G06Q99/00
CPC分类号： G06F21/6263 , G06F21/31 , G06F21/33 , G06Q20/382 , H04L63/08 , H04L63/102
摘要： Exemplary embodiments disclosed herein may include a method and system for integrating multiple identities and identity providers, including, receiving the security policy of a service provider, determining the attributes requested by the service provider, obtaining authenticated attributes requested by the service provider, registering with a provisioning service based at least in part upon the authenticated attributes, and accessing services of the service provider based at least in part upon the registration from the provisioning service.
摘要翻译：本文公开的示例性实施例可以包括用于集成多个身份和身份提供者的方法和系统，包括：接收服务提供商的安全策略，确定由服务提供商请求的属性，获得由服务提供商请求的认证属性，至少部分地基于经认证的属性，以及至少部分地基于来自所述供应服务的注册来访问所述服务提供商的服务的供应服务。

6. 发明申请

US20060005013A1 Call signs 失效
标题翻译：呼号
公开(公告)号：US20060005013A1
公开(公告)日：2006-01-05
申请号：US10882079
申请日：2004-06-30
申请人： Christian Huitema , Josh Benaloh , Kim Cameron
发明人： Christian Huitema , Josh Benaloh , Kim Cameron
IPC分类号： H04L9/00
CPC分类号： G06F21/46 , G06F21/31 , H04L9/3239
摘要： A method of generating a call sign. A method of generating a call sign comprising determining a distinguished qualifier, finding a distinguished salt, and hashing the distinguished salt with the distinguished qualifier.
摘要翻译：一种生成呼号的方法。一种产生呼号的方法，包括：确定一个不同的限定符，找到一个不同的盐，以及用该区别的限定符散列不同的盐。

7. 发明授权

US07822988B2 Method and system for identity recognition 有权
标题翻译：身份识别的方法和系统
公开(公告)号：US07822988B2
公开(公告)日：2010-10-26
申请号：US10693172
申请日：2003-10-23
申请人： Kim Cameron , Arun Nanda , Don Hacherl , Murli Satagopan , Stuart Kwan , Colin Brace , Walter Smith , Melissa Dunn
发明人： Kim Cameron , Arun Nanda , Don Hacherl , Murli Satagopan , Stuart Kwan , Colin Brace , Walter Smith , Melissa Dunn
IPC分类号： H04L9/32
CPC分类号： H04L63/102 , G06F21/31 , G06F21/64 , H04L63/126
摘要： In accordance with various aspects, the present invention relates to methods and systems for sending an identity information document comprising selecting identity information from a self-identity information store for inclusion in the identity information document. The selected identity information is read from a self-identity information store. The identity information document is generated to include the selected identity information and one or more keys, and signed using a key associated with one of the keys included in the identity information document. The identity information document is then sent to a recipient. Receiving an identity information document comprises receiving a signed identity information document from an originator. A determination is made as to whether identity information in the identity information document is reliable. The identity information is saved in a recognized identity information store if the identity information is determined to be reliable. If the identity information is determined to be unreliable, an identity recognition number retrieved from the sender is compared to an identity recognition number generated by the recipient based on information in the received identity information document. If the identity recognition number is verified, the identity information is saved in the recognized identity information store.
摘要翻译：根据各方面，本发明涉及用于发送身份信息文档的方法和系统，包括从自身身份信息存储中选择身份信息以包括在身份信息文档中。所选择的身份信息从自身身份信息存储器读取。生成身份信息文档以包括所选择的身份信息和一个或多个密钥，并且使用与包括在身份信息文档中的密钥之一相关联的密钥进行签名。然后将身份信息文档发送给收件人。接收身份信息文档包括从发起者接收签名的身份信息文档。确定身份信息文档中的身份信息是否可靠。如果身份信息被确定为可靠，则身份信息被保存在识别的身份信息存储器中。如果身份信息被确定为不可靠，则根据接收到的身份信息文档中的信息，将从发送者检索到的身份识别号码与由接收者产生的身份识别号码进行比较。如果身份识别号码被验证，身份信息被保存在识别的身份信息存储中。

8. 发明申请

US20070203849A1 Endpoint verification using common attributes 审中-公开
标题翻译：端点验证使用公共属性
公开(公告)号：US20070203849A1
公开(公告)日：2007-08-30
申请号：US11361110
申请日：2006-02-24
申请人： Kim Cameron , Arun Nanda
发明人： Kim Cameron , Arun Nanda
IPC分类号： G06Q99/00
CPC分类号： G06F21/41 , G06Q20/3674
摘要： A system for endpoint verification includes a computer system programmed to access one web site of a plurality of web sites associated with an organization. The computer system is programmed to receive a digital certificate of the web site and to display an attribute from the digital certificate to the user for endpoint verification. The attribute is common across two or more of the web sites of the organization.
摘要翻译：用于端点验证的系统包括被编程为访问与组织相关联的多个网站的一个网站的计算机系统。计算机系统被编程为接收网站的数字证书，并且从数字证书向用户显示属性以进行端点验证。该属性在组织的两个或多个网站中是常见的。

9. 发明申请

US20070220134A1 Endpoint Verification Using Call Signs 审中-公开
标题翻译：端点验证使用呼叫标志
公开(公告)号：US20070220134A1
公开(公告)日：2007-09-20
申请号：US11276798
申请日：2006-03-15
申请人： Kim Cameron , Arun Nanda , Christian Huitema , Carl Ellison
发明人： Kim Cameron , Arun Nanda , Christian Huitema , Carl Ellison
IPC分类号： G06F15/173
CPC分类号： H04L63/1441 , G06F21/31 , G06F2221/2119 , H04L63/126 , H04L63/1483 , H04L67/02
摘要： A computer system is configured to verify a connection to a web site. The computer system includes a user interface programmed to receive a uniform resource locator and a call sign associated with the web site. The computer system also includes a validator module programmed to calculate a hash value based on the uniform resource locator, a public key associated with the web site, and a salt, and the validator being programmed to compare the hash value to the call sign to verify the connection to the web site.
摘要翻译：计算机系统被配置为验证到网站的连接。计算机系统包括被编程为接收统一资源定位符的用户界面和与该网站相关联的呼号。该计算机系统还包括一个验证器模块，该验证器模块被编程为基于统一资源定位器计算散列值，与该网站相关联的公共密钥和一个盐，并且该验证器被编程为将散列值与呼号进行比较以验证与网站的连接。

10. 发明申请

US20070143835A1 Security tokens including displayable claims 有权
标题翻译：安全令牌，包括可显示的索赔
公开(公告)号：US20070143835A1
公开(公告)日：2007-06-21
申请号：US11312920
申请日：2005-12-19
申请人： Kim Cameron , Arun Nanda
发明人： Kim Cameron , Arun Nanda
IPC分类号： H04L9/32
CPC分类号： G06F21/6263 , G06F21/33 , G06Q30/06 , H04L63/08 , H04L63/10
摘要： A system for providing a digital identity includes a claims transformer programmed to generate a security token including a computational token and a display token, the computational token including one or more claims associated with an identity of a principal, and the display token including display information about the claims in the computational token. The display information is configured to allow the principal to view the display token.
摘要翻译：一种用于提供数字身份的系统包括被编程为生成包括计算令牌和显示令牌的安全令牌的声明变换器，所述计算令牌包括与主体的身份相关联的一个或多个权利要求，并且所述显示令牌包括关于计算令牌中的声明。显示信息被配置为允许主体查看显示令牌。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式