专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明授权

US07596222B2 Encrypting data for access by multiple users 失效
标题翻译：加密数据以供多个用户访问
公开(公告)号：US07596222B2
公开(公告)日：2009-09-29
申请号：US11766192
申请日：2007-06-21
申请人： Per Erwin Jonas , Allen Leonid Roginsky , Nevenko Zunic
发明人： Per Erwin Jonas , Allen Leonid Roginsky , Nevenko Zunic
IPC分类号： H04L9/32
CPC分类号： H04L9/0822 , H04L9/0863
摘要： A method for protecting data for access by a plurality of users. A server encrypts data using a master key and a symmetric encryption algorithm. For each authorized user, a key encryption key (KEK) is derived from a passphrase, and the master key is encrypted using the KEK. The server posts the encrypted data and an ancillary file that includes, for each user, a user identifier and the master key encrypted according to the user's KEK. To access the data, a user enters the passphrase into a client, which re-derives the user's KEK, and finds, in the ancillary file, the master key encrypted using the user's KEK. The client decrypts the master key and then decrypts the data. A KEK may be derived from a natural language passphrase by hashing the passphrase, concatenating the result and a predetermined text, hashing the concatenation, and truncating.
摘要翻译：一种用于保护数据以供多个用户访问的方法。服务器使用主密钥和对称加密算法对数据进行加密。对于每个授权用户，密钥加密密钥（KEK）是从密码短语导出的，并且使用KEK对主密钥进行加密。服务器发布加密数据以及辅助文件，其中包括针对每个用户的根据用户的KEK加密的用户标识符和主密钥。为了访问数据，用户将密码短语输入客户端，重新导出用户的KEK，并在辅助文件中找到使用用户的KEK加密的主密钥。客户端解密主密钥，然后解密数据。 KEK可以从自然语言密码短语中衍生，通过散列密码，连接结果和预定文本，散列连接和截断。

2. 发明授权

US07272231B2 Encrypting data for access by multiple users 失效
标题翻译：加密数据以供多个用户访问
公开(公告)号：US07272231B2
公开(公告)日：2007-09-18
申请号：US10351759
申请日：2003-01-27
申请人： Per Erwin Jonas , Allen Leonid Roginsky , Nevenko Zunic
发明人： Per Erwin Jonas , Allen Leonid Roginsky , Nevenko Zunic
IPC分类号： H04L9/00
CPC分类号： H04L9/0822 , H04L9/0863
摘要： A method for protecting data for access by a plurality of users. A server encrypts data using a master key and a symmetric encryption algorithm. For each authorized user, a key encryption key (KEK) is derived from a passphrase, and the master key is encrypted using the KEK. The server posts the encrypted data and an ancillary file that includes, for each user, a user identifier and the master key encrypted according to the user's KEK. To access the data, a user enters the passphrase into a client, which re-derives the user's KEK, and finds, in the ancillary file, the master key encrypted using the user's KEK. The client decrypts the master key and then decrypts the data. A KEK may be derived from a natural language passphrase by hashing the passphrase, concatenating the result and a predetermined text, hashing the concatenation, and truncating.
摘要翻译：一种用于保护数据以供多个用户访问的方法。服务器使用主密钥和对称加密算法对数据进行加密。对于每个授权用户，密钥加密密钥（KEK）是从密码短语导出的，并且使用KEK对主密钥进行加密。服务器发布加密数据以及辅助文件，其中包括针对每个用户的根据用户的KEK加密的用户标识符和主密钥。为了访问数据，用户将密码短语输入客户端，重新导出用户的KEK，并在辅助文件中找到使用用户的KEK加密的主密钥。客户端解密主密钥，然后解密数据。 KEK可以从自然语言密码短语中衍生，通过散列密码，连接结果和预定文本，散列连接和截断。

3. 发明授权

US06947556B1 Secure data storage and retrieval with key management and user authentication 失效
标题翻译：通过密钥管理和用户认证安全数据存储和检索
公开(公告)号：US06947556B1
公开(公告)日：2005-09-20
申请号：US09642879
申请日：2000-08-21
申请人： Stephen Michael Matyas, Jr. , Mohammad Peyravian , Allen Leonid Roginsky , Nevenko Zunic
发明人： Stephen Michael Matyas, Jr. , Mohammad Peyravian , Allen Leonid Roginsky , Nevenko Zunic
IPC分类号： G06F21/00 , H04L9/08 , H04L9/32
CPC分类号： H04L9/0825 , G06F21/6209 , G06F2221/2107 , G06F2221/2141 , H04L9/0822 , H04L9/083 , H04L9/0863 , H04L9/0891 , H04L9/0894 , H04L9/3213
摘要： Methods, systems and computer program products are provided which provide for controlling access to digital data in a file by encrypting the data with a first key, encrypting the first key with a second personal key generated from a password/passphrase associated with the file and further encrypting the encrypted first key with a control key which is managed by the system. In certain embodiments, user authentication may also be provided by issuing a ticket which is utilized to create, access and administer the files in the system.
摘要翻译：提供了提供方法，系统和计算机程序产品，其通过用第一密钥加密数据来控制对文件中的数字数据的访问，用与文件相关联的密码/密码生成的第二个人密钥加密第一密钥，并进一步用由系统管理的控制密钥加密加密的第一密钥。在某些实施例中，还可以通过发布用于创建，访问和管理系统中的文件的票据来提供用户认证。

4. 发明授权

US06928163B1 Methods, systems and computer program products for generating user-dependent RSA values without storing seeds 有权
标题翻译：用于生成用户依赖的RSA值而不存储种子的方法，系统和计算机程序产品
公开(公告)号：US06928163B1
公开(公告)日：2005-08-09
申请号：US09357483
申请日：1999-07-20
申请人： Stephen Michael Matyas, Jr. , Mohammad Peyravian , Allen Leonid Roginsky , Nevenko Zunic
发明人： Stephen Michael Matyas, Jr. , Mohammad Peyravian , Allen Leonid Roginsky , Nevenko Zunic
IPC分类号： H04L9/00 , H04L9/30 , H04L9/32
CPC分类号： H04L9/302 , H04L9/3073 , H04L9/3231 , H04L9/3249 , H04L2209/08
摘要： Methods, systems and computer program products are provided which allow for generation and authentication of RSA encrypted values by utilizing a combination of entity specific information such as biometric information and by incorporating information about the secret seeds into the cryptographic values p and q utilized to encrypt the information. Thus, authentication of an encrypted message may be achieved without requiring storage of the secret seed values utilized to generate the cryptographic values. Furthermore the present invention assures that users with different entity specific information utilize different p and q values.
摘要翻译：提供了方法，系统和计算机程序产品，其允许通过利用诸如生物特征信息的实体特定信息的组合并通过将关于秘密种子的信息合并到用于加密的密码值p和q中的RSA加密值的生成和认证信息。因此，可以实现加密消息的认证，而不需要存储用于生成密码值的秘密种子值。此外，本发明确保具有不同实体特定信息的用户利用不同的p和q值。

5. 发明申请

US20090169014A1 DISTRIBUTION AND AUTHENTICATION OF PUBLIC KEYS USING RANDOM NUMBERS AND DIFFIE-HELLMAN PUBLIC KEYS 失效
标题翻译：公开号码使用随机数和分布式公钥的分布和认证
公开(公告)号：US20090169014A1
公开(公告)日：2009-07-02
申请号：US12352658
申请日：2009-01-13
申请人： Mohammad Peyravian , Allen Leonid Roginsky , Nevenko Zunic
发明人： Mohammad Peyravian , Allen Leonid Roginsky , Nevenko Zunic
IPC分类号： H04L9/00
CPC分类号： H04L9/3013 , H04L9/0844
摘要： A system to exchange and authenticate public cryptographic keys between parties that share a common but secret password, using a pair of random numbers, a pair of Diffie-Hellman public keys computed from the random numbers and the password, a Diffie-Hellman symmetric secret key computed from the Diffie-Hellman public keys and the random numbers, and hashed values of arguments that depend upon these elements.
摘要翻译：使用一对随机数，根据随机数和密码计算的一对Diffie-Hellman公钥来交换和认证共享公共密码的各方之间的公共密钥的系统，Diffie-Hellman对称密钥根据Diffie-Hellman公钥和随机数计算出的散列值，并根据这些元素的参数进行散列。

6. 发明授权

US08204929B2 Hiding sensitive information 有权
标题翻译：隐藏敏感信息
公开(公告)号：US08204929B2
公开(公告)日：2012-06-19
申请号：US09999643
申请日：2001-10-25
申请人： Allen Leonid Roginsky , Nevenko Zunic
发明人： Allen Leonid Roginsky , Nevenko Zunic
IPC分类号： G06F15/16
CPC分类号： G06F21/6245
摘要： An improved methodology and implementing computer system are provided in which sensitive information is selectively masked in order to enable such information to be relatively securely and efficiently transmitted over networks without disclosure of such sensitive information at a transmitting or receiving terminal, or at points along the data transmission network.
摘要翻译：提供了一种改进的方法和实现的计算机系统，其中敏感信息被选择性地被屏蔽，以便使得这样的信息能够相对安全且有效地通过网络传输，而不会在发送或接收终端或沿着数据的点处泄露这样的敏感信息传输网络。

7. 发明授权

US07051211B1 Secure software distribution and installation 失效
标题翻译：安全的软件分发和安装
公开(公告)号：US07051211B1
公开(公告)日：2006-05-23
申请号：US09642685
申请日：2000-08-21
申请人： Stephen Michael Matyas, Jr. , Mohammad Peyravian , Allen Leonid Roginsky , Nevenko Zunic
发明人： Stephen Michael Matyas, Jr. , Mohammad Peyravian , Allen Leonid Roginsky , Nevenko Zunic
IPC分类号： G06F11/30 , G06F12/14 , H04L9/32
CPC分类号： G06F21/10 , H04L9/0838 , H04L9/0891
摘要： Methods, systems and computer program products are provide for controlling access to software is provided by the software to be controlled being divided into a first encrypted portion and a second unencrypted portion. The second unencrypted portion has access to, and may even incorporate, a first secret value and a software identification associated with a copy of the software. The first encrypted portion is encrypted with a first key value which is based on the first secret value and a second secret value. The second secret value is obtained and the first key value generated from the obtained second secret value and the first secret value. The first encrypted portion of the software may then be decrypted with the first key value. The software may be installed on a data processing system utilizing the decrypted first encrypted portion of the software.
摘要翻译：提供方法，系统和计算机程序产品，用于控制对要被控制的软件提供的对软件的访问，被分为第一加密部分和第二未加密部分。第二未加密部分可以访问并且甚至可以并入与软件的副本相关联的第一秘密值和软件标识。第一加密部分用基于第一秘密值和第二秘密值的第一密钥值进行加密。获得第二秘密值，并从获得的第二秘密值和第一秘密值生成第一密钥值。然后可以利用第一密钥值来解密软件的第一加密部分。软件可以使用软件的解密的第一加密部分来安装在数据处理系统上。

8. 发明授权

US07010689B1 Secure data storage and retrieval in a client-server environment 失效
标题翻译：在客户端 - 服务器环境中安全的数据存储和检索
公开(公告)号：US07010689B1
公开(公告)日：2006-03-07
申请号：US09642878
申请日：2000-08-21
申请人： Stephen Michael Matyas, Jr. , Mohammad Peyravian , Allen Leonid Roginsky , Nevenko Zunic
发明人： Stephen Michael Matyas, Jr. , Mohammad Peyravian , Allen Leonid Roginsky , Nevenko Zunic
IPC分类号： H04L9/00
CPC分类号： H04L9/0863 , H04L9/0866 , H04L9/0891
摘要： Methods, systems and computer program products are provided for controlling access to digital data in a file by obtaining a passphrase from a user and generating a personal key based on the obtained passphrase. A file encryption key is generated and the digital data in the file encrypted with the file encryption key to provide an encrypted file. The file encryption key is encrypted with the personal key to provide an encrypted file encryption key. A file header containing the encrypted file encryption key and associated with the encrypted file. The encrypted file and the file header associated with the encrypted file may be stored at a file server.
摘要翻译：提供了方法，系统和计算机程序产品，用于通过从用户获得密码并基于所获得的密码生成个人密钥来控制对文件中的数字数据的访问。生成文件加密密钥，文件加密密钥加密文件中的数字数据提供加密文件。文件加密密钥用个人密钥加密，以提供加密的文件加密密钥。包含加密文件加密密钥并与加密文件相关联的文件头。与加密文件相关联的加密文件和文件头可以存储在文件服务器。

9. 发明授权

US07796761B2 Distribution and authentication of public keys using random numbers and diffie-hellman public keys 失效
标题翻译：使用随机数字和diffie-hellman公钥对公钥进行分发和认证
公开(公告)号：US07796761B2
公开(公告)日：2010-09-14
申请号：US12352658
申请日：2009-01-13
申请人： Mohammad Peyravian , Allen Leonid Roginsky , Nevenko Zunic
发明人： Mohammad Peyravian , Allen Leonid Roginsky , Nevenko Zunic
IPC分类号： H04L9/00
CPC分类号： H04L9/3013 , H04L9/0844
摘要： A system to exchange and authenticate public cryptographic keys between parties that share a common but secret password, using a pair of random numbers, a pair of Diffie-Hellman public keys computed from the random numbers and the password, a Diffie-Hellman symmetric secret key computed from the Diffie-Hellman public keys and the random numbers, and hashed values of arguments that depend upon these elements.
摘要翻译：使用一对随机数，根据随机数和密码计算的一对Diffie-Hellman公钥来交换和认证共享公共密码的各方之间的公共密钥的系统，Diffie-Hellman对称密钥根据Diffie-Hellman公钥和随机数计算出的散列值，并根据这些元素的参数进行散列。

10. 发明授权

US07607009B2 Method for distributing and authenticating public keys using time ordered exchanges 失效
标题翻译：使用时间排序交换分发和认证公钥的方法
公开(公告)号：US07607009B2
公开(公告)日：2009-10-20
申请号：US10361515
申请日：2003-02-10
申请人： Mohammad Peyravian , Allen Leonid Roginsky , Nevenko Zunic
发明人： Mohammad Peyravian , Allen Leonid Roginsky , Nevenko Zunic
IPC分类号： H04L29/06
CPC分类号： H04L9/3226 , H04L9/0825 , H04L9/3236
摘要： A method to exchange and authenticate public cryptographic keys between parties that share a common but secret password. The parties exchange public keys, where the public keys are accompanied by hashed values based on the keys, the password, and random numbers. Each party then encrypts its random number using the public key of the other party, and the encryptions are exchanged. Based on the received encryptions and the known password, each party then re-computes the hashed value received from the other party, and compares the re-computed hashed value with the received hashed value. If the two are the same, the public key that accompanied the hashed value is judged authentic.
摘要翻译：一种交换和验证共享密码密码的各方之间的公钥加密密钥的方法。双方交换公钥，其中公钥基于密钥，密码和随机数字伴随散列值。每一方然后使用另一方的公钥对其随机数进行加密，并交换加密。根据接收到的加密和已知密码，每一方然后重新计算从另一方接收的散列值，并将重新计算的散列值与接收到的散列值进行比较。如果两者相同，伴随散列值的公钥被判断为真实的。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式