专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明专利

JP2014053754A Validity verification method of certificate, certificate verification server and program 审中-公开
标题翻译：证书的有效性验证方法，证书验证服务器和程序
公开(公告)号：JP2014053754A
公开(公告)日：2014-03-20
申请号：JP2012196766
申请日：2012-09-07
申请人： Hitachi Ltd , 株式会社日立製作所
发明人： SUZUKI AKANE , HASHIMOTO YOKO , FUJISHIRO TAKAHIRO
IPC分类号： H04L9/32 , G06F21/64
摘要： PROBLEM TO BE SOLVED: To perform continuation of certificate validity verification processing and a normal certificate verification response by detecting an undetectable type of abnormality in a cryptographic device, and to normally perform the certificate verification response even when abnormality of the cryptographic device is detected during validity verification processing requested from a verifier.SOLUTION: A certificate verification server 11detects abnormality in a first cryptographic device 12in a first signature generation request to the first cryptographic device 12, selects a second cryptographic device 12on the basis of operation states of cryptographic devices 12and 12managed by the certificate verification server 11, performs a second signature generation request 80 to a second certificate verification server 11being connected with the second cryptographic device 12, receives a signature value from the second certificate verification server 11, generates a response including the received signature value, and responds to a terminal device.
摘要翻译：要解决的问题：通过检测密码装置中不可检测的异常类型来执行证书有效性验证处理和正常证书验证响应的继续，并且即使在有效期间检测到密码装置的异常时也正常地执行证书验证响应验证处理请求。解决方案：证书验证服务器11在第一密码装置12中检测到第一签名生成请求中的异常到第一密码装置12，基于由密码装置12和12管理的密码装置12和12的操作状态，选择第二密码装置12 证书验证服务器11向与第二密码装置12连接的第二证书验证服务器11执行第二签名生成请求80，从第二证书验证服务器11接收签名值，生成响应包对接收到的签名值进行编号，并响应终端设备。

2. 发明专利

JP2011015110A Certificate validation method, certificate examination server, program, and storage medium 有权
标题翻译：证书验证方法，证书考试服务器，程序和存储介质
公开(公告)号：JP2011015110A
公开(公告)日：2011-01-20
申请号：JP2009156511
申请日：2009-07-01
申请人： Hitachi Ltd , 株式会社日立製作所
发明人： SATO AKANE , FUJISHIRO TAKAHIRO , HANE SHINGO , HASHIMOTO YOKO , FURUYA MASAHIKO , OGAWA MASAMI
IPC分类号： H04L9/32 , G06F21/20
CPC分类号： H04L63/06 , H04L9/006 , H04L9/0891 , H04L9/321 , H04L9/3263 , H04L9/3265 , H04L9/3268 , H04L63/0823
摘要： PROBLEM TO BE SOLVED: To provide a certificate validation method for efficiently and safely performing certificate validation confirmation processing, and to provide a validation server, a program, and a storage medium.SOLUTION: The certificate validation method causes the certificate validation server 13 to receive a certificate validation confirmation request from a given terminal device 11, to build a certification path of from a first certificate authority to a second, to perform validation of the certification path, and to send a validation result to the terminal device 11of a certificate validation request source. Either a key update of any given certificate authority or a compromise of the given certificate authority is detected. A certificate of relevant certificate authority and first certificate status information and second certificate status information are acquired. The acquired information is stored in a storage unit, or the information stored in the storage unit is updated, based on the acquired information. The building of a certification path and validation of the certification path are performed by use of the information of the storage unit.
摘要翻译：要解决的问题：提供用于有效和安全地执行证书验证确认处理的证书验证方法，以及提供验证服务器，程序和存储介质。解决方案：证书验证方法使证书验证服务器13接收来自给定终端设备11的证书验证确认请求，以建立从第一证书颁发机构到第二证书颁发机构的认证路径，以执行认证路径的验证，以及向证书验证请求的终端设备11发送验证结果资源。检测到任何给定的证书颁发机构的密钥更新或给定的证书颁发机构的妥协。获得相关认证机构的证书和第一证书状态信息和第二证书状态信息。所获取的信息被存储在存储单元中，或者基于所获取的信息来更新存储在存储单元中的信息。通过使用存储单元的信息来执行认证路径的建立和认证路径的验证。

3. 发明专利

JP2009044557A Certificate verification server, method, and program 有权
标题翻译：证书验证服务器，方法和程序
公开(公告)号：JP2009044557A
公开(公告)日：2009-02-26
申请号：JP2007208403
申请日：2007-08-09
申请人： Hitachi Ltd , 株式会社日立製作所
发明人： UZAWA MASAMI , FURUYA MASAHIKO , HASHIMOTO YOKO , FUJISHIRO TAKAHIRO
IPC分类号： H04L9/32
摘要： PROBLEM TO BE SOLVED: To ensure prescribed response performance by preventing performance deterioration of certificate verification treatment even when secret key of a number of certificate verification servers is stored in a hardware encryption module.
SOLUTION: A certificate verification server 100 is constituted of a verification part 110 which forms response data by carrying out verification for a certificate as object of certificate verification request, a handle specifying part 111 which obtains an ID of secret key from a certificate as object of certificate verification request and specifies the handle value by checking the ID of the secret key against a secret key information table 125 and a signature part 112 which notifies signature request wherein the specified handle value is a key to a hardware encryption module 200, obtains a signature value from the hardware encryption module 200 and gives signature to response data by using the signature value.
COPYRIGHT: (C)2009,JPO&INPIT
摘要翻译：要解决的问题：即使在多个证书验证服务器的秘密密钥存储在硬件加密模块中时，通过防止证书验证处理的性能劣化来确保规定的响应性能。解决方案：证书验证服务器100由通过对作为证书验证请求的对象的证书进行验证形成响应数据的验证部分110构成，从证书获取密钥的ID的句柄指定部分111 作为证书验证请求的对象，并通过对秘密密钥信息表125检查秘密密钥的ID并通知签名部分112来指定句柄值，签名部分112通知签名请求，其中指定的句柄值是硬件加密模块200的密钥，从硬件加密模块200获得签名值，并通过使用签名值来对响应数据进行签名。版权所有（C）2009，JPO＆INPIT

4. 发明专利

JP2010086435A Information processing method and computer 有权
标题翻译：信息处理方法和计算机
公开(公告)号：JP2010086435A
公开(公告)日：2010-04-15
申请号：JP2008256973
申请日：2008-10-02
申请人： Hitachi Ltd , 株式会社日立製作所
发明人： YASHIRO SATOSHI , HASHIMOTO YOKO , NEMOTO SHIGEYUKI , HANE SHINGO , KOBAYASHI MASARU , MIYAMOTO DAISUKE
IPC分类号： G06F21/20 , H04L9/32
摘要： PROBLEM TO BE SOLVED: To make a plurality of applications which need authentication available by input of authentication information once in a network system which includes a plurality of systems which are not in relations of trust or cooperation mutually. SOLUTION: A Web server 10 performs authentication by collating authentication information from a terminal 13 and authentication information of a storage part, and when this authentication is materialized, creates and outputs a message including a user ID contained in the authentication information, a first URL (Unified Resource Locator) to the Web server 10, a second URL to the Web server 11, and information relevant to authentication strength of the storage part to a network. When receiving a message which indicates that authentication is successful from the Web server 11 and which includes the user ID, a first URL, a second URL and information relevant to authentication strength, and when this user ID is stored in the storage part, authentication is performed based on the information relevant to the received authentication strength and the information relevant to the authentication strength of the storage part. COPYRIGHT: (C)2010,JPO&INPIT
摘要翻译：要解决的问题：通过在包括不相互信任或协作关系的多个系统的网络系统中输入一次认证信息来使得需要认证可用的多个应用程序。解决方案：Web服务器10通过整理来自终端13的认证信息和存储部分的认证信息来进行认证，并且当实现该认证时，创建并输出包含在认证信息中的用户ID的消息，到Web服务器10的第一URL（统一资源定位符），到Web服务器11的第二URL以及与网络的存储部分的认证强度相关的信息。当从Web服务器11接收到指示认证成功的消息，其中包括用户ID，第一URL，第二URL和与认证强度相关的信息，并且当该用户ID存储在存储部分中时，认证是基于与所接收的认证强度相关的信息和与存储部件的认证强度相关的信息执行。版权所有（C）2010，JPO＆INPIT

5. 发明专利

JP2009031849A Certificate issuing system for electronic application, electronic application reception system, and method and program therefor 审中-公开
标题翻译：电子应用证书发行系统，电子应用接收系统及其方法与程序
公开(公告)号：JP2009031849A
公开(公告)日：2009-02-12
申请号：JP2007192253
申请日：2007-07-24
申请人： Hitachi Ltd , 株式会社日立製作所
发明人： KUMAGAI TOMOHISA , FUJISHIRO TAKAHIRO , HASHIMOTO YOKO
IPC分类号： G06Q10/00 , G06Q50/00 , G06Q50/10 , G06Q50/26 , H04L9/32
摘要： PROBLEM TO BE SOLVED: To perform electronic application from a mobile terminal while securing high security. SOLUTION: This certificate issuing system for electronic application 100 comprises: a first certificate issue request reception part 150 receiving an electronic application certificate issue primary request from a user terminal; a first certificate issue request verification part 151; a first user certificate confirmation part 152 confirming validity of a user certificate; a certificate storage part 153 storing the user certificate and a terminal certificate into a certificate database 125; an electronic application certificate generation part 154 generating an electronic application certificate and storing it into the certificate database; a registration completion notification transmission part 155 transmitting a registration completion notification of the electronic application certificate to the user terminal; a second certificate issue request reception part 156 receiving an electronic application certificate issue secondary request from the mobile terminal; a second certificate issue request verification part 157; a terminal certificate confirmation part 158 confirming validity of the terminal certificate; and an electronic application certificate transmission part 159 transmitting the electronic application certificate to the mobile terminal. COPYRIGHT: (C)2009,JPO&INPIT
摘要翻译：要解决的问题：在确保高安全性的同时从移动终端执行电子应用。解决方案：该电子应用程序的证书发行系统100包括：从用户终端接收电子申请证书发出主要请求的第一证书发行请求接收部分150; 第一证书发行请求验证部分151; 确认用户证书的有效性的第一用户证书确认部分152; 存储用户证书和终端证书到证书数据库125中的证书存储部件153; 生成电子申请证书并将其存储到证书数据库中的电子申请证书生成部分154; 注册完成通知发送部分155向用户终端发送电子申请证书的注册完成通知; 第二证书发布请求接收部分156，从移动终端接收电子申请证书发出次要请求; 第二证书发行请求验证部分157; 确认终端证书的有效性的终端证明确认部158; 以及向移动终端发送电子申请证书的电子申请证书发送部分159。版权所有（C）2009，JPO＆INPIT

6. 发明专利

JP2008301417A Verification server, program, and verification method 有权
标题翻译：验证服务器，程序和验证方法
公开(公告)号：JP2008301417A
公开(公告)日：2008-12-11
申请号：JP2007148204
申请日：2007-06-04
申请人： Hitachi Ltd , 株式会社日立製作所
发明人： HASHIMOTO YOKO , FUJISHIRO TAKAHIRO , FURUYA MASAHIKO , UZAWA MASAMI
IPC分类号： H04L9/32
CPC分类号： H04L9/3268 , H04L63/06
摘要： PROBLEM TO BE SOLVED: To provide technology for efficiently managing a public key updated by a certificate authority (CA) and a plurality of hash algorithms.
SOLUTION: Each of identifiers uniquely determined by a public key updated at a CA and hash algorithms is stored in an identifier information storage region 131b, and a verification processing section 132c collates a received verification request with the identifier stored in the identifier information storage region 131b. In a case where a corresponding identifier is present, it is judged that a verification can be performed, and processing is continued.
COPYRIGHT: (C)2009,JPO&INPIT
摘要翻译：要解决的问题：提供有效管理由认证机构（CA）和多个散列算法更新的公共密钥的技术。解决方案：将由CA更新的公钥唯一确定的每个标识符和散列算法存储在标识符信息存储区域131b中，验证处理部分132c将接收的验证请求与存储在标识符信息中的标识符进行比较存储区域131b。在存在相应的标识符的情况下，判断可以执行验证，并继续进行处理。版权所有（C）2009，JPO＆INPIT

7. 发明专利

JP2008098792A Encryption communication method with computer system, and its system 审中-公开
标题翻译：具有计算机系统的加密通信方法及其系统
公开(公告)号：JP2008098792A
公开(公告)日：2008-04-24
申请号：JP2006275944
申请日：2006-10-10
申请人： Hitachi Ltd , 株式会社日立製作所
发明人： HASHIMOTO YOKO , FUJISHIRO TAKAHIRO , KAJI TADASHI , TAKATA OSAMU , HOSHINO KAZUYOSHI
IPC分类号： H04L12/66 , G06F21/20 , G09C1/00 , H04L12/22
CPC分类号： G06Q20/3674 , H04L63/0272 , H04L63/0428 , H04L63/0869 , H04L67/1002 , H04L67/1006 , H04L67/1008 , H04L67/1029
摘要： PROBLEM TO BE SOLVED: To solve the problem that a large load is imposed on an VPN (Virtual Private Network) apparatus when the terminal devices are increased in encryption communication using VPN technique, and encryption is performed only between the terminal devices and the VPN apparatus, disabling the encryption communication in end-to-end. SOLUTION: A communication system includes a management server for managing the terminal devices and blades. The management server performs the authentication of the respective terminal devices and blades, the selection of the blades, and the mediation of encryption communication passage establishment between the terminal devices and the blades. The terminal devices and the blades perform the encryption communications without the management server. The authentication of the respective terminals in the management server is requested to an verification server. COPYRIGHT: (C)2008,JPO&INPIT
摘要翻译：要解决的问题：为了解决当使用VPN技术的加密通信中终端设备增加时对VPN（虚拟专用网络）设备施加大负载的问题，并且仅在终端设备和 VPN装置，端到端禁止加密通信。解决方案：通信系统包括用于管理终端设备和刀片的管理服务器。管理服务器执行各终端装置和刀片的认证，刀片的选择以及终端装置与刀片之间的加密通信建立中介。终端设备和刀片在没有管理服务器的情况下执行加密通信。向验证服务器请求管理服务器中各个终端的认证。版权所有（C）2008，JPO＆INPIT

8. 发明专利

JP2006352834A SYSTEM AND METHOD FOR ENCRYPTED COMMUNICATION 审中-公开
公开(公告)号：JP2006352834A
公开(公告)日：2006-12-28
申请号：JP2006096410
申请日：2006-03-31
申请人： HITACHI LTD
发明人： HASHIMOTO YOKO , FUJISHIRO TAKAHIRO , KAJI TADASHI , TAKADA OSAMU , HOSHINO KAZUYOSHI , NAKAMURA SHINJI
IPC分类号： H04L9/08
摘要： PROBLEM TO BE SOLVED: To solve problems that in an encryption communication using VPN technologies, a load on a VPN system becomes large if the number of communication terminals increases, when an external terminal accesses an application server via an internal terminal, processes become complicated because it is necessary to perform authentication at VPN and authentication at the application server. SOLUTION: A management server is provided for managing external terminals, internal terminals and application servers, and the management server authenticates each communication terminal and operates to establish an encryption communication path between communication terminals. Each communication terminal performs encryption communication without interposing the management server. Authentication of each terminal by the management server relies upon a validation server. When the external terminal performs encryption communication with the application server via the internal terminal, two encryption communication paths are established and used between the external terminal and internal terminal and between the internal terminal and application server. COPYRIGHT: (C)2007,JPO&INPIT

9. 发明专利

JP2013219552A Information cooperation system, information cooperation method, and information cooperation program 有权
标题翻译：信息合作系统，信息合作方法和信息合作计划
公开(公告)号：JP2013219552A
公开(公告)日：2013-10-24
申请号：JP2012088540
申请日：2012-04-09
申请人： Hitachi Ltd , 株式会社日立製作所
发明人： HASHIMOTO YOKO , YASUHOSO KOSUKE , YASHIRO SATOSHI , WATANABE NATSUKI , NAKAMURA SHINJI
IPC分类号： H04L9/32
摘要： PROBLEM TO BE SOLVED: To improve security for information management in information cooperation among information holding organs.SOLUTION: An information cooperation system comprises: a device which receives an individual transaction ID (hereinafter, written as TID) acquisition request from a terminal 16s of a cooperation source information holding organ, generates a TID for the cooperation source information holding organ by applying a predetermined key, and transmits the TID to the terminal 16s; a device which receives an information cooperation request from the terminal 16s, and generates a TID for a cooperation destination information holding organ by applying a predetermined key; a device which generates an information cooperation request for cooperation by combining the TID for the cooperation destination information holding organ with cooperation processing target information, transmits the information cooperation request for cooperation to a terminal 16r of the cooperation destination information holding organ, and receives an information cooperation result from the terminal 16r; a device which applies a predetermined key to the TID for the cooperation destination information holding organ included in the information cooperation result to convert the TID for the cooperation destination information holding organ to a TID for the cooperation source information holding organ; and a device which executes processing of setting the TID for the cooperation source information holding organ to an information cooperation result and transmitting the information cooperation result to the terminal 16s.
摘要翻译：要解决的问题：提高信息保持机构信息合作信息管理的安全性。解决方案：信息协作系统包括：从终端16s接收单个交易ID（以下称为TID）获取请求的设备合作源信息保持机构，通过应用预定的密钥生成用于合作源信息保持机构的TID，并将TID发送到终端16s; 接收来自终端16s的信息协商请求的装置，通过应用规定的密钥生成用于合作目的地信息保持机构的TID; 通过将合作目的地信息保持机构的TID与合作处理对象信息组合来生成合作信息合作请求的装置，向合作目的地信息保持机构的终端16r发送合作信息合作请求，并接收信息终端合作结果16r; 将包含在信息合作结果中的合作目的地信息保持机构的TID应用预定密钥的装置，将合作目的地信息保持机构的TID转换为合作源信息保持机构的TID; 以及执行将协作源信息保持机构的TID设置为信息协作结果的处理并将信息协作结果发送到终端16的设备。

10. 发明专利

JP2011096155A Method for authentication of equipment in providing services thereto 有权
标题翻译：认证设备提供服务的方法
公开(公告)号：JP2011096155A
公开(公告)日：2011-05-12
申请号：JP2009251595
申请日：2009-11-02
申请人： Hitachi Ltd , 株式会社日立製作所
发明人： HASHIMOTO YOKO , FUJISHIRO TAKAHIRO , KAJI TADASHI , HAYASHI NAOKI
IPC分类号： G06F21/20 , G06F13/00 , G06F15/00
摘要： PROBLEM TO BE SOLVED: To reduce the loads of equipment information registration processing by users and the management of model information and specification information in services and makers when utilizing many services from various equipment. SOLUTION: At the timing of installing the equipment inside a house or inside a company or the like, an equipment ID is registered to a gateway (GW). An equipment ID management server manages the various equipment IDs in cooperation with the GW. A service provider side device acquires the equipment ID from the equipment ID management server for a service provision request from the equipment, acquires the specification of the equipment from a model management server on the basis of the acquired equipment ID, and provides the service corresponding to the specification. COPYRIGHT: (C)2011,JPO&INPIT
摘要翻译：要解决的问题：利用各种设备的许多服务，减少用户设备信息注册处理的负担，以及服务和制造商中的模型信息和规范信息的管理。
解决方案：在将设备安装在房屋内或公司内部等的时间，将设备ID登记到网关（GW）。设备ID管理服务器与GW合作管理各种设备ID。服务提供者侧设备从设备获取来自设备ID管理服务器的服务提供请求的设备ID，并根据获取的设备ID从模型管理服务器获取设备的规格，并提供对应于规范。版权所有（C）2011，JPO＆INPIT

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式