专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明授权

US06725378B1 Network protection for denial of service attacks 失效
标题翻译：网络防护拒绝服务攻击
公开(公告)号：US06725378B1
公开(公告)日：2004-04-20
申请号：US09293479
申请日：1999-04-15
申请人： Christoph L. Schuba , Ivan V. Krsul , Diego Zamboni , Eugene H. Spafford , Aurobindo M. Sundaram , Markus G. Kuhn
发明人： Christoph L. Schuba , Ivan V. Krsul , Diego Zamboni , Eugene H. Spafford , Aurobindo M. Sundaram , Markus G. Kuhn
IPC分类号： H04L922
CPC分类号： H04L63/1408 , H04L63/1458
摘要： An active monitor detects and classifies messages transmitted on a network. In one form, the monitor includes a routine for classifying TCP packet source addresses as being of an acceptable, unacceptable, or suspect type. Suspect source addresses may be further processed in accordance with a state machine having a number of conditionally linked states including a good address state, a new address state, and a bad address state. For this form, the monitor selectively sends signals to targeted destination hosts for addresses in the unacceptable
摘要翻译：主动监视器检测并分类在网络上传输的消息。在一种形式中，监视器包括用于将TCP分组源地址分类为可接受的，不可接受的或可疑类型的例程。可能根据具有多个条件链接状态的状态机进一步处理可疑源地址，包括良好的地址状态，新的地址状态和不良地址状态。对于这种形式，监视器选择性地将信号发送到目的地的目的地主机，用于不可接受的地址

2. 发明授权

US06445794B1 System and method for synchronizing one time pad encryption keys for secure communication and access control 失效
标题翻译：用于同步一次性加密密钥以进行安全通信和访问控制的系统和方法
公开(公告)号：US06445794B1
公开(公告)日：2002-09-03
申请号：US09104014
申请日：1998-06-24
申请人： Adam Shefi
发明人： Adam Shefi
IPC分类号： H04L922
CPC分类号： H04L9/12 , G06Q20/3829 , H04L9/0662
摘要： A method for generating an identical electronic one-time pad at a first location and a second location, the method comprising the steps of: (a) providing a first electronic device at the first location and a second electronic device at the second location, each of the first and the second electronic devices having: (i) a non-volatile memory; (ii) a processor; (iii) at least one table of true random numbers being stored on the non-volatile memory, the table being identical for the first and the second electronic devices; and (iv) at least one software program for obtaining a true random number from the table, the software program being stored on the non-volatile memory and the at least one software program being operated by the processor; (b) providing a communication channel for communication between the first electronic device and the second electronic device; (c) selecting a selected true random number from the table at the first and the second electronic devices according to a selection procedure, the selection procedure being identical for the first and the second electronic devices, the selection procedure including exchanging at least a portion of a key between the first and the second electronic devices over the communication channel, such that the selected true random number is identical for the first and the second electronic devices; and (d) forming at least a portion of the identical electronic one-time pad at the first and the second locations with the selected true random number.
摘要翻译：一种用于在第一位置和第二位置处产生相同的电子一次性焊盘的方法，所述方法包括以下步骤：（a）在第一位置处提供第一电子设备，在第二位置提供第二电子设备，所述第一和第二电子设备具有：（i）非易失性存储器; （ii）处理器; （iii）存储在非易失性存储器上的至少一个真实随机数表，该表对于第一和第二电子设备是相同的; 以及（iv）至少一个软件程序，用于从所述表中获取真实随机数，所述软件程序存储在所述非易失性存储器上，所述至少一个软件程序由所述处理器操作; （b）提供用于第一电子设备和第二电子设备之间的通信的通信信道; （c）根据选择程序从第一和第二电子设备的表格中选择所选择的真随机数，所述选择过程对于第一和第二电子设备是相同的，所述选择过程包括交换至少一部分通过通信信道在第一和第二电子设备之间的键，使得所选择的真实随机数对于第一和第二电子设备是相同的; 以及（d）在所述第一和第二位置处形成具有所选真实随机数的相同电子一次性衬垫的至少一部分。

3. 发明授权

US06628786B1 Distributed state random number generator and method for utilizing same 失效
标题翻译：分布状态随机数发生器及其使用方法
公开(公告)号：US06628786B1
公开(公告)日：2003-09-30
申请号：US08941677
申请日：1997-09-30
申请人： Bryn Dole
发明人： Bryn Dole
IPC分类号： H04L922
CPC分类号： G06F7/588 , H04L9/0662 , H04L9/0841 , H04L9/0891
摘要： A system and method for generating random numbers utilizing a shared or distributed source of entropy is disclosed. In one embodiment, the invention allows networked computers to generate and share entropy in proportion to the need for random numbers utilized to initialize the internal state of random number generators residing on the computers. A shared session key generated during communications between a first and second computer is appended to the current internal state of the random number generators residing on the computers to create a bit string. The bit string is then mixed or hashed using a one-way “hash” function such as message digest function to produce a mixed bit string. At least a portion of the mixed bit string is then used to reinitialize the internal state of the random number generators residing on the computers. Since the initial state of the random number generators residing on the computers will be different, the values used to reinitialize the internal state of the generators will be different. In the case of a computer network, the internal state of each host computer's random number will thus ultimately be dependent upon on the internal state of every other computer that the host has communicated with and the order in which the communications took place.
摘要翻译：公开了一种利用共享或分布的熵源产生随机数的系统和方法。在一个实施例中，本发明允许网络计算机与用于初始化驻留在计算机上的随机数发生器的内部状态的随机数的比例成比例地生成和共享熵。在第一和第二计算机之间的通信期间生成的共享会话密钥被附加到驻留在计算机上的随机数生成器的当前内部状态以创建位串。然后使用诸如消息摘要功能的单向“散列”功能将位串混合或散列以产生混合位串。混合位串的至少一部分然后用于重新初始化驻留在计算机上的随机数发生器的内部状态。由于驻留在计算机上的随机数生成器的初始状态将不同，因此用于重新初始化发生器内部状态的值将不同。在计算机网络的情况下，每个主计算机的随机数的内部状态将最终取决于主机通信的每个其他计算机的内部状态以及通信发生的顺序。

4. 发明授权

US06560338B1 Limiting delays associated with the generation of encryption stream ciphers 有权
标题翻译：限制与生成加密流密码相关的延迟
公开(公告)号：US06560338B1
公开(公告)日：2003-05-06
申请号：US09246366
申请日：1999-02-08
申请人： Gregory G. Rose , Roy Franklin Quick, Jr.
发明人： Gregory G. Rose , Roy Franklin Quick, Jr.
IPC分类号： H04L922
CPC分类号： H04L9/0668 , H04L2209/12 , H04L2209/20
摘要： A method and an apparatus for generating encryption stream ciphers are based on a recurrence relation designed to operate over finite fields larger than GF(2). A non-linear output can be obtained by using one or a combination of non-linear processes to form an output function. The recurrence relation and the output function can be selected to have distinct pair distances such that, as the shift register is shifted, no identical pair of elements of the shift register are used twice in either the recurrence relation or the output function. Under these conditions, the recurrence relation and the output function also can be chosen to optimize cryptographic security or computational efficiency. Moreover, it is another object of the present invention to provide a method of assuring that the delay that results for the encryption process does not exceed predetermined bounds. To this end the ciphering delay is measured and if the estimated delay exceeds a predetermined threshold a second ciphering method is employed to limit the accumulated delay of the ciphering operation.
摘要翻译：用于产生加密流密码的方法和装置基于设计成在大于GF（2）的有限域上操作的递归关系。可以通过使用非线性处理中的一个或组合来形成非线性输出来形成输出函数。递归关系和输出函数可以被选择为具有不同的对距离，使得当移位寄存器被移位时，移位寄存器的相同元素对在递归关系或输出函数中不被使用两次。在这些条件下，可以选择递归关系和输出函数来优化加密安全性或计算效率。此外，本发明的另一个目的是提供一种确保加密过程导致的延迟不超过预定范围的方法。为此，测量加密延迟，并且如果估计延迟超过预定阈值，则采用第二加密方法来限制加密操作的累积延迟。

5. 发明授权

US06714540B1 Data communication method, communication frame generating method, and medium on which program for carrying out the methods are recorded 有权
标题翻译：数据通信方法，通信帧生成方法和用于执行方法的程序的介质被记录
公开(公告)号：US06714540B1
公开(公告)日：2004-03-30
申请号：US09251906
申请日：1999-02-19
申请人： Noriyuki Ogawa , Yuko Saeki , Kuniaki Sugimoto
发明人： Noriyuki Ogawa , Yuko Saeki , Kuniaki Sugimoto
IPC分类号： H04L922
CPC分类号： H04L29/06 , H04L29/12839 , H04L61/6022 , H04L69/324
摘要： A control portion A transmits only a transmission right to a control portion B. The control portion B receives the transmission right sent from the control portion A, obtains transmission-requested data B from a utilization portion B, and then transmits it with the transmission right to the control portion A. The control portion A receives the data B and transmission right transmitted from the control portion B. If the control portion A is receiving a transmission request for data A from the utilization portion A at this time, it first obtains the transmission-requested data A from the utilization portion A and transmits it to the control portion B together with the transmission right. After transmitting the data A, the control portion A transfers the data B received from the control portion B to the utilization portion A.
摘要翻译：控制部分A仅向控制部分B发送发送权。控制部分B接收从控制部分A发送的发送权限，从利用部分B获得发送请求数据B，然后发送具有发送权限控制部分A接收从控制部分B发送的数据B和发送权。如果控制部分A此时从利用部分A接收到数据A的发送请求，则首先获得来自利用部分A的发送请求数据A，并与发送权一起发送给控制部分B. 在发送数据A之后，控制部分A将从控制部分B接收的数据B传送到利用部分A.

6. 发明授权

US06606386B2 Cryptographic key split combiner 有权
公开(公告)号：US06606386B2
公开(公告)日：2003-08-12
申请号：US09917807
申请日：2001-07-31
申请人： Edward M. Scheidt , C. Jay Wack
发明人： Edward M. Scheidt , C. Jay Wack
IPC分类号： H04L922
CPC分类号： H04L9/0866 , H04L9/0869 , H04L9/0877
摘要： A cryptographic key split combiner, which includes a number of key split generators for generating cryptographic key splits and a key split randomizer for randomizing the cryptographic key splits to produce a cryptographic key, and a process for forming cryptographic keys. Each of the key split generators generates key splits from seed data. The key split generators may include a random split generator for generating a random key split based on reference data. Other key split generators may include a token split generator for generating a token key split based on label data, a console split generator for generating a console key split based on maintenance data, and a biometric split generator for generating a biometric key split based on biometric data. All splits may further be based on static data, which may be updated, for example by modifying a prime number divisor of the static data. The label data may be read from a storage medium, and may include user authorization data. The resulting cryptographic key may be, for example, a stream of symbols, at least one symbol block, or a key matrix.

7. 发明授权

US06510228B2 Method and apparatus for generating encryption stream ciphers 失效
标题翻译：用于产生加密流密码的方法和装置
公开(公告)号：US06510228B2
公开(公告)日：2003-01-21
申请号：US08934582
申请日：1997-09-22
申请人： Gregory G. Rose
发明人： Gregory G. Rose
IPC分类号： H04L922
CPC分类号： H04L9/0668 , G09C1/00 , H04L2209/12 , H04L2209/20
摘要： A method and apparatus for generating encryption stream ciphers. The recurrence relation is designed to operate over finite fields larger than GF(2). The linear feedback shift register used to implement the recurrence relation can be implemented using a circular buffer or sliding a window. Multiplications of the elements of the finite field are implemented using lookup tables. A non-linear output can be obtained by using one or a combination of non-linear processes. The stream ciphers can be designed to support multi-tier keying to suit the requirements of the applications for which the stream ciphers are used.
摘要翻译：一种用于产生加密流密码的方法和装置。复发关系被设计为在大于GF（2）的有限域上运行。用于实现递归关系的线性反馈移位寄存器可以使用循环缓冲器或滑动窗口来实现。有限域的元素的乘法使用查找表来实现。可以通过使用一个或非线性处理的组合来获得非线性输出。流密码可以被设计为支持多层密钥以适应使用流密码的应用的要求。

8. 发明授权

US06608901B2 Cryptographic key split combiner 有权
公开(公告)号：US06608901B2
公开(公告)日：2003-08-19
申请号：US09917794
申请日：2001-07-31
申请人： Edward M. Scheidt , C. Jay Wack
发明人： Edward M. Scheidt , C. Jay Wack
IPC分类号： H04L922
CPC分类号： H04L9/0866 , H04L9/0869 , H04L9/0877
摘要： A cryptographic key split combiner, which includes a number of key split generators for generating cryptographic key splits and a key split randomizer for randomizing the cryptographic key splits to produce a cryptographic key, and a process for forming cryptographic keys. Each of the key split generators generates key splits from seed data. The key split generators may include a random split generator for generating a random key split based on reference data. Other key split generators may include a token split generator for generating a token key split based on label data, a console split generator for generating a console key split based on maintenance data, and a biometric split generator for generating a biometric key split based on biometric data. All splits may further be based on static data, which may be updated, for example by modifying a prime number divisor of the static data. The label data may be read from a storage medium, and may include user authorization data. The resulting cryptographic key may be, for example, a stream of symbols, at least one symbol block, or a key matrix.

9. 发明授权

US06549623B1 Cryptographic key split combiner 有权
公开(公告)号：US06549623B1
公开(公告)日：2003-04-15
申请号：US09917802
申请日：2002-02-04
申请人： Edward M. Scheidt , C. Jay Wack
发明人： Edward M. Scheidt , C. Jay Wack
IPC分类号： H04L922
CPC分类号： H04L9/0866 , H04L9/0869 , H04L9/0877
摘要： A cryptographic key split combiner, which includes a number of key split generators for generating cryptographic key splits and a key split randomizer for randomizing the cryptographic key splits to produce a cryptographic key, and a process for forming cryptographic keys. Each of the key split generators generates key splits from seed data. The key split generators may include a random split generator for generating a random key split based on reference data. Other key split generators may include a token split generator for generating a token key split based on label data, a console split generator for generating a console key split based on maintenance data, and a biometric split generator for generating a biometric key split based on biometric data. All splits may further be based on static data, which may be updated, for example by modifying a prime number divisor of the static data. The label data may be read from a storage medium, and may include user authorization data. The resulting cryptographic key may be, for example, a stream of symbols, at least one symbol block, or a key matrix.

10. 发明授权

US06490357B1 Method and apparatus for generating encryption stream ciphers 有权
标题翻译：用于产生加密流密码的方法和装置
公开(公告)号：US06490357B1
公开(公告)日：2002-12-03
申请号：US09143441
申请日：1998-08-28
申请人： Gregory G. Rose
发明人： Gregory G. Rose
IPC分类号： H04L922
CPC分类号： H04L9/0668 , H04L2209/12 , H04L2209/20
摘要： A method and an apparatus for generating encryption stream ciphers are based on a recurrence relation designed to operate over finite fields larger than GF(2). A non-linear output can be obtained by using one or a combination of non-linear processes to form an output function. The recurrence relation and the output function can be selected to have distinct pair distances such that, as the shift register is shifted, no identical pair of elements of the shift register are used twice in either the recurrence relation or the output function. Under these conditions, the recurrence relation and the output function also can be chosen to optimize cryptographic security or computational efficiency.
摘要翻译：用于产生加密流密码的方法和装置基于设计成在大于GF（2）的有限域上操作的递归关系。可以通过使用非线性处理中的一个或组合来形成非线性输出来形成输出函数。递归关系和输出函数可以被选择为具有不同的对距离，使得当移位寄存器被移位时，移位寄存器的相同元素对在递归关系或输出函数中不被使用两次。在这些条件下，可以选择递归关系和输出函数来优化加密安全性或计算效率。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式