专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明申请

US20100202609A1 SECURING MULTIFACTOR SPLIT KEY ASYMMETRIC CRYPTO KEYS 有权
标题翻译：安全多用户分离关键不对称CRYPTO KEYS
公开(公告)号：US20100202609A1
公开(公告)日：2010-08-12
申请号：US12729469
申请日：2010-03-23
申请人： Ravinderpal Singh Sandhu , Brett Jason Schoppert , Ravi Ganesan , Mihir Bellare , Colin Joseph deSa
发明人： Ravinderpal Singh Sandhu , Brett Jason Schoppert , Ravi Ganesan , Mihir Bellare , Colin Joseph deSa
IPC分类号： H04L9/28 , H04L9/00
CPC分类号： H04L9/3228 , H04L9/0825 , H04L9/0894 , H04L9/3271
摘要： Techniques for securing an asymmetric crypto-key having a public key and a split private key with multiple private portions are provided. A first one of multiple factors is stored. All of the factors are under the control of a user and all are required to generate a first private portion of the split private key. The first private portion not stored in a persistent state. A second private portion of the split private key under control of an entity other than the user is also stored. The first private portion and the second private portion are combinable to form a complete private portion.
摘要翻译：提供了用于保护具有公开密钥的非对称密钥和具有多个私有部分的分离私钥的技术。存储多个因素中的第一个。所有因素都处于用户的控制之下，所有这些因素都需要生成分割私钥的第一私人部分。第一个私有部分未存储在持久状态。除了用户之外的实体的控制下，分割私钥的第二私人部分也被存储。第一私人部分和第二私人部分可组合以形成完整的私人部分。

2. 发明授权

US07734045B2 Multifactor split asymmetric crypto-key with persistent key security 有权
标题翻译：具有持久密钥安全性的多因素拆分非对称密钥
公开(公告)号：US07734045B2
公开(公告)日：2010-06-08
申请号：US11381829
申请日：2006-05-05
申请人： Ravinderpal Singh Sandhu , Brett Jason Schoppert , Ravi Ganesan , Mihir Bellare , Colin Joseph Desa
发明人： Ravinderpal Singh Sandhu , Brett Jason Schoppert , Ravi Ganesan , Mihir Bellare , Colin Joseph Desa
IPC分类号： H04L9/00 , H04L29/06
CPC分类号： H04L9/302
摘要： A processor generates an asymmetric crypto-key, such as an RSA crypto-key, which is associated with the user and includes a private key and a public key. It computes a first key portion based on a stored random number generation function, which has one or more constants such as a salt and/or iteration count, and a first value of a constant, and a second key portion based on the computed first key portion and one of the private key and the public key. It additionally computes another first key portion based on the stored random number generation function and a second value of that constant, and another second key portion based on the computed other first key portion and the one key. The computed first and second key portions and the computed other first and second key portions form first and second splits of the one key of the asymmetric crypto-key.
摘要翻译：处理器生成与用户相关联并包括私钥和公共密钥的非对称加密密钥，例如RSA密钥。它基于存储的随机数生成函数来计算第一密钥部分，该函数具有一个或多个常数，例如盐和/或迭代计数，以及常数的第一值，以及基于计算出的第一密钥的第二密钥部分部分和私钥和公钥之一。另外基于所存储的随机数生成函数和该常数的第二值，另外基于计算的其他第一密钥部分和一个密钥另外计算第二密钥部分。所计算的第一和第二密钥部分和计算的其他第一和第二密钥部分形成非对称密钥的一个密钥的第一和第二拆分。

3. 发明授权

US08213608B2 Roaming utilizing an asymmetric key pair 有权
标题翻译：漫游利用非对称密钥对
公开(公告)号：US08213608B2
公开(公告)日：2012-07-03
申请号：US12206304
申请日：2008-09-08
申请人： Ravinderpal Singh Sandhu , Brett Jason Schoppert , Ravi Ganesan , Mihir Bellare , Colin Joseph deSa
发明人： Ravinderpal Singh Sandhu , Brett Jason Schoppert , Ravi Ganesan , Mihir Bellare , Colin Joseph deSa
IPC分类号： H04L9/00 , H04L9/08 , H04L9/30 , H04L29/06
CPC分类号： H04L63/08 , H04L9/0822 , H04L9/085 , H04L9/0863 , H04L9/0897 , H04L9/14 , H04L9/3213 , H04L9/3236 , H04L9/3297
摘要： Techniques for generating a portion of a split private key are provided. A first symmetric key and a second symmetric key different than the first symmetric key are generated at a first location. The generated second symmetric key and a first one of multiple factors for generating the private key portion encrypted with the generated first symmetric key are transmitted. Then, at a second network location, the symmetric keys are again generated. The encrypted first factor is received at the second network location subsequent to a user authentication based upon the second symmetric key generated at the second network location. The received encrypted first factor is then decrypted with the first symmetric key generated at the second network location, the decrypted first factor usable to generate the portion of the split private key of the asymmetric key pair.
摘要翻译：提供了用于产生分割私钥的一部分的技术。在第一位置处生成与第一对称密钥不同的第一对称密钥和第二对称密钥。发送生成的第二对称密钥和用于生成用所生成的第一对称密钥加密的私钥部分的多个因素中的第一个对象密钥。然后，在第二网络位置，再次产生对称密钥。基于在第二网络位置处生成的第二对称密钥，在用户认证之后的第二网络位置处接收加密的第一因子。然后，利用在第二网络位置处生成的第一对称密钥对接收到的加密第一因子进行解密，解密的第一因子可用于生成非对称密钥对的分裂私钥的部分。

4. 发明授权

US07596697B2 Technique for providing multiple levels of security 有权
标题翻译：提供多级安全性的技术
公开(公告)号：US07596697B2
公开(公告)日：2009-09-29
申请号：US11056115
申请日：2005-02-14
申请人： Ravinderpal Singh Sandhu , Brett Jason Schoppert , Ravi Ganesan , Mihir Bellare , Colin Joseph deSa
发明人： Ravinderpal Singh Sandhu , Brett Jason Schoppert , Ravi Ganesan , Mihir Bellare , Colin Joseph deSa
IPC分类号： H04L9/32
CPC分类号： H04L9/3226 , H04L9/3218 , H04L63/0442 , H04L63/08 , H04L63/083 , H04L63/0853 , H04L63/105
摘要： Techniques for authentication are provided. A first authentication request transformed with a private portion of a first type split private key is received. A first user is authenticated for a first level of network access based upon the first request being transformed with the first type of split private key. A second authentication request that is transformed with a private portion of a second type private key is also received. A second user is authenticated for a second level of network access based upon the second request being transformed with the second type of split private key.
摘要翻译：提供了认证技术。接收用第一类型分离私钥的私有部分变换的第一认证请求。基于用第一类型的分离私钥转换的第一请求，第一用户被认证用于第一级网络访问。还接收用第二类型私钥的专用部分变换的第二认证请求。基于用第二类型的分离私钥转换的第二请求，第二用户被认证用于第二级网络访问。

5. 发明授权

US08099607B2 Asymmetric crypto-graphy with rolling key security 有权
标题翻译：具有滚动密钥安全性的不对称密码
公开(公告)号：US08099607B2
公开(公告)日：2012-01-17
申请号：US11332204
申请日：2006-01-17
申请人： Ravinderpal Singh Sandhu , Brett Jason Schoppert , Ravi Ganesan , Mihir Bellare , Colin Joseph deSa
发明人： Ravinderpal Singh Sandhu , Brett Jason Schoppert , Ravi Ganesan , Mihir Bellare , Colin Joseph deSa
IPC分类号： G06F21/00 , H04L9/08
CPC分类号： H04L9/085 , H04L9/302 , H04L9/3218 , H04L2209/80
摘要： A system for securing information, includes a processor and storage device. The storage device stores information encrypted with one of a first private rolling key and a first public rolling key of an a first asymmetric rolling crypto-key, along with the one first rolling key. The processor has the logic to direct transmission, via a network, of proof of knowledge of the stored one first rolling key to authenticate a user, and of a request for the other of the first private rolling key and the first public rolling key. The processor receives the other first rolling key via the network, responsive to the directed transmission. The processor then decrypts the stored encrypted information with the received other first rolling key, and generates a second asymmetric rolling crypto-key having a second private rolling key and a second public rolling key. The processor encrypts the information with one of the second private rolling key and the second public rolling key. The processor also directs transmission of the other of the second private rolling key and the second public rolling key via the network. The storage device stores the information encrypted with the one second rolling key and the one second rolling key itself.
摘要翻译：一种用于保护信息的系统，包括处理器和存储设备。存储装置与第一滚动键一起存储用第一非对称滚动加密密钥的第一专用滚动键和第一公开滚动键加密的信息。处理器具有通过网络直接传送所存储的一个第一滚动密钥的认证证明以验证用户的逻辑，以及对第一私人滚动密钥和第一公共滚动密钥中的另一个的请求的逻辑。响应于定向传输，处理器经由网络接收另一第一滚动键。然后处理器用接收到的其他第一滚动密钥对存储的加密信息进行解密，并且生成具有第二专用滚动键和第二公共滚动键的第二非对称滚动加密密钥。处理器使用第二专用滚动键和第二公共滚动键之一来加密信息。处理器还通过网络指导第二私人滚动键和第二公共滚动键中的另一个的传输。存储装置存储利用一个第二滚动键和一个第二滚动键本身加密的信息。

6. 发明授权

US07630493B2 Multiple factor private portion of an asymmetric key 有权
标题翻译：多重因子私有部分的非对称密钥
公开(公告)号：US07630493B2
公开(公告)日：2009-12-08
申请号：US11056120
申请日：2005-02-14
申请人： Ravinderpal Singh Sandhu , Brett Jason Schoppert , Ravi Ganesan , Mihir Bellare , Colin Joseph deSa
发明人： Ravinderpal Singh Sandhu , Brett Jason Schoppert , Ravi Ganesan , Mihir Bellare , Colin Joseph deSa
IPC分类号： H04L9/00
CPC分类号： H04L63/0442 , H04L9/0847 , H04L9/3247 , H04L2209/80
摘要： Techniques for generating a private portion of a split private key of an asymmetric key pair are provided. Multiple factors upon which the private portion of the split private key is based are received. Each of these multiple factors is under control of a user associated with the asymmetric key pair. Multiple cryptographic operations are then performed using the received multiple factors to generate the private portion.
摘要翻译：提供了用于生成非对称密钥对的分离私钥的专用部分的技术。收到分离私钥的私有部分所基于的多个因素。这些多个因素中的每一个都在与非对称密钥对相关联的用户的控制之下。然后使用所接收的多个因素来执行多个加密操作以产生私有部分。

7. 发明授权

US07571471B2 Secure login using a multifactor split asymmetric crypto-key with persistent key security 有权
标题翻译：使用具有持久密钥安全性的多因素拆分非对称密钥进行安全登录
公开(公告)号：US07571471B2
公开(公告)日：2009-08-04
申请号：US11381878
申请日：2006-05-05
申请人： Ravinderpal Singh Sandhu , Brett Jason Schoppert , Ravi Ganesan , Mihir Bellare , Colin Joseph Desa
发明人： Ravinderpal Singh Sandhu , Brett Jason Schoppert , Ravi Ganesan , Mihir Bellare , Colin Joseph Desa
IPC分类号： H04L9/32
CPC分类号： H04L9/3218 , H04L9/0825 , H04L9/0863
摘要： A first network station encrypts a first message with a first key portion from a first split of a private or public key of a user's asymmetric crypto-key and transmits it during a network session. The second network station decrypts the transmitted encrypted first message with a second key portion from the first split of the one key of the asymmetric crypto-key to initially authenticate the user for access, during the session, to store information. The first network station also encrypts a second message with another first key portion from a second split of that one key, and subsequently transmits it during the same network session. The second network station decrypts the subsequently transmitted encrypted second message with another second key portion from the second split of that same one key to subsequently authenticate the user for access, during the same session, to other stored_information.
摘要翻译：第一网络站利用来自用户非对称密钥的私钥或公钥的第一次拆分的第一密钥部分加密第一消息，并在网络会话期间发送它。第二网络站利用来自非对称密钥的一个密钥的第一次拆分的第二密钥部分解密发送的加密第一消息，以在会话期间初始认证用户访问以存储信息。第一网络台还用来自该一个密钥的第二分组的另一个第一密钥部分来加密第二个消息，并且随后在相同的网络会话期间发送它。第二网络站利用来自相同一个密钥的第二次拆分的另一个第二密钥部分来解密随后发送的加密第二消息，随后在同一会话期间认证用户访问其他存储信息。

8. 发明授权

US08340287B2 Securing multifactor split key asymmetric crypto keys 有权
标题翻译：保护多重分解密钥非对称加密密钥
公开(公告)号：US08340287B2
公开(公告)日：2012-12-25
申请号：US12729469
申请日：2010-03-23
申请人： Ravinderpal Singh Sandhu , Brett Jason Schoppert , Ravi Ganesan , Mihir Bellare , Colin Joseph deSa
发明人： Ravinderpal Singh Sandhu , Brett Jason Schoppert , Ravi Ganesan , Mihir Bellare , Colin Joseph deSa
IPC分类号： H04L29/06
CPC分类号： H04L9/3228 , H04L9/0825 , H04L9/0894 , H04L9/3271
摘要： Techniques for securing an asymmetric crypto-key having a public key and a split private key with multiple private portions are provided. A first one of multiple factors is stored. All of the factors are under the control of a user and all are required to generate a first private portion of the split private key. The first private portion not stored in a persistent state. A second private portion of the split private key under control of an entity other than the user is also stored. The first private portion and the second private portion are combinable to form a complete private portion.
摘要翻译：提供了用于保护具有公开密钥的非对称密钥和具有多个私有部分的分离私钥的技术。存储多个因素中的第一个。所有因素都处于用户的控制之下，所有这些因素都需要生成分割私钥的第一私人部分。第一个私有部分未存储在持久状态。除了用户之外的实体的控制下，分割私钥的第二私人部分也被存储。第一私人部分和第二私人部分可组合以形成完整的私人部分。

9. 发明授权

US07599493B2 Asymmetric key pair having a kiosk mode 有权
标题翻译：具有报亭模式的非对称密钥对
公开(公告)号：US07599493B2
公开(公告)日：2009-10-06
申请号：US11056114
申请日：2005-02-14
申请人： Ravinderpal Singh Sandhu , Brett Jason Schoppert , Ravi Ganesan , Mihir Bellare , Colin Joseph deSa
发明人： Ravinderpal Singh Sandhu , Brett Jason Schoppert , Ravi Ganesan , Mihir Bellare , Colin Joseph deSa
IPC分类号： H04L9/00
CPC分类号： H04L63/08 , H04L9/085 , H04L9/3271
摘要： Techniques for providing different levels of access based upon a same authentication factor are provided. A first message is received that is transformed with a first portion of a split private key, the first portion based upon a user password and another factor, and the split private key associated with an asymmetric key pair having a public key and the split private key. The user is authenticated for a first level of network access based upon the received first message being transformed with the first portion. A second message is received that is transformed with a second portion of the split private key, the second portion based upon the password only and not combinable with the first portion to complete the split private key. The user is authenticated for a second level of network access different that the first level based upon the received second message being transformed with the second portion.
摘要翻译：提供了基于相同认证因素提供不同级别的访问的技术。接收到第一消息被转换为分割私钥的第一部分，第一部分基于用户密码和另一因素，以及与具有公共密钥和分离私钥的非对称密钥对相关联的分离专用密钥。基于所接收的第一消息被第一部分变换，用户被认证用于第一级网络访问。接收到第二消息，该第二消息用分割专用密钥的第二部分进行变换，第二部分仅基于密码而不与第一部分组合以完成分割的私钥。用户被认证为第二级别的网络访问，其不同于基于所接收的第二消息的第一级被第二部分变换。

10. 发明申请

US20090222658A1 ROAMING UTILIZING AN ASYMMETRIC KEY PAIR 有权
标题翻译：使用不对称的主要对象进行漫游
公开(公告)号：US20090222658A1
公开(公告)日：2009-09-03
申请号：US12206304
申请日：2008-09-08
申请人： Ravinderpal Singh Sandhu , Brett Jason Schoppert , Ravi Ganesan , Mihir Bellare , Colin Joseph deSa
发明人： Ravinderpal Singh Sandhu , Brett Jason Schoppert , Ravi Ganesan , Mihir Bellare , Colin Joseph deSa
IPC分类号： H04L9/32 , H04L9/30 , H04L9/06
CPC分类号： H04L63/08 , H04L9/0822 , H04L9/085 , H04L9/0863 , H04L9/0897 , H04L9/14 , H04L9/3213 , H04L9/3236 , H04L9/3297
摘要： Techniques for generating a portion of a split private key are provided. A first symmetric key and a second symmetric key different than the first symmetric key are generated at a first location. The generated second symmetric key and a first one of multiple factors for generating the private key portion encrypted with the generated first symmetric key are transmitted. Then, at a second network location, the symmetric keys are again generated. The encrypted first factor is received at the second network location subsequent to a user authentication based upon the second symmetric key generated at the second network location. The received encrypted first factor is then decrypted with the first symmetric key generated at the second network location, the decrypted first factor usable to generate the portion of the split private key of the asymmetric key pair.
摘要翻译：提供了用于产生分割私钥的一部分的技术。在第一位置处生成与第一对称密钥不同的第一对称密钥和第二对称密钥。发送生成的第二对称密钥和用于生成用所生成的第一对称密钥加密的私钥部分的多个因素中的第一个对象密钥。然后，在第二网络位置，再次产生对称密钥。基于在第二网络位置处生成的第二对称密钥，在用户认证之后的第二网络位置处接收加密的第一因子。然后，利用在第二网络位置处生成的第一对称密钥对接收到的加密第一因子进行解密，解密的第一因子可用于生成非对称密钥对的分离私钥的部分。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式