专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

91. 发明申请

US20100083386A1 Tokenized Resource Access 有权
标题翻译：令牌资源访问
公开(公告)号：US20100083386A1
公开(公告)日：2010-04-01
申请号：US12242150
申请日：2008-09-30
申请人： Daniel E. Kline , Alexander Medvinsky
发明人： Daniel E. Kline , Alexander Medvinsky
IPC分类号： G06F21/00
CPC分类号： G06F21/33 , G01R31/31705
摘要： A method and system for unlocking diagnostic functions in a hardware device for a user. The method obtains a signed permission object for the hardware device, and validates the signed permission object. A memory of the hardware device stores a device identifier and a last recorded sequence number. The signed permission object includes a sequence number and is associated with an expiration counter having an initial value that indicates a lifetime for the signed permission object. When the signed permission object is valid, the method updates the expiration counter to decrease the lifetime of the signed permission object, stores the sequence number associated with the signed permission object as the last recorded sequence number in the hardware device, and unlocks the diagnostic functions for the user based on the signed permission object.
摘要翻译：一种用于在用户的硬件设备中解锁诊断功能的方法和系统。该方法获取硬件设备的签名许可对象，并验证签名的权限对象。硬件设备的存储器存储设备标识符和最后记录的序列号。签名的权限对象包括序列号，并且与具有指示签名的许可对象的生命周期的初始值的到期计数器相关联。当签名的权限对象有效时，该方法更新到期计数器以减少签名的权限对象的生命周期，将与签名的许可对象相关联的序列号作为最后记录的序列号存储在硬件设备中，并解锁诊断功能为用户基于签名的权限对象。

92. 发明授权

US07568223B2 Internet protocol telephony security architecture 有权
标题翻译：互联网协议电话安全架构
公开(公告)号：US07568223B2
公开(公告)日：2009-07-28
申请号：US10893047
申请日：2004-07-15
申请人： Eric J. Sprunk , Paul Moroney , Alexander Medvinsky , Steven E. Anderson , Jonathan A. Fellows
发明人： Eric J. Sprunk , Paul Moroney , Alexander Medvinsky , Steven E. Anderson , Jonathan A. Fellows
IPC分类号： H04L9/00
CPC分类号： H04L29/06027 , G06F12/1408 , G06F21/606 , G06F2207/7219 , G06F2211/008 , G06F2221/2129 , H04L9/083 , H04L9/0841 , H04L9/3213 , H04L9/3263 , H04L63/0435 , H04L63/0442 , H04L63/061 , H04L63/062 , H04L63/0807 , H04L63/12 , H04L65/1043
摘要： A secure Internet Protocol (IP) telephony system, apparatus, and methods are disclosed. Communications over an IP telephony system can be secured by securing communications to and from a Cable Telephony Adapter (CTA). The system can include one or more CTAs, network servers, servers configured as signaling controllers, key distribution centers (KDC), and can include gateways that couple the IP telephony system to a Public Switched Telephone Network (PSTN). Each CTA can be configured as secure hardware and can be configured with multiple encryption keys that are used to communicate signaling or bearer channel communications. The KDC can be configured to periodically distribute symmetric encryption keys to secure communications between devices that have been provisioned to operate in the system and signaling controllers. The secure devices, such as the CTA, can communicate with other secure devices by establishing signaling and bearer channels that are encrypted with session specific symmetric keys derived from a symmetric key distributed by a signaling controller.
摘要翻译：公开了一种安全的因特网协议（IP）电话系统，装置和方法。通过IP电话系统的通信可以通过保护与有线电话适配器（CTA）的通信来保护。该系统可以包括一个或多个CTA，网络服务器，配置为信令控制器的服务器，密钥分配中心（KDC），并且可以包括将IP电话系统耦合到公共交换电话网络（PSTN）的网关。每个CTA都可以配置为安全硬件，并且可以配置多个用于通信信令或承载信道通信的加密密钥。 KDC可以被配置为周期性地分配对称加密密钥以保护已经被提供以在系统和信令控制器中操作的设备之间的通信。诸如CTA之类的安全设备可以通过建立用由信令控制器分配的对称密钥导出的会话专用对称密钥加密的信令和承载信道来与其他安全设备进行通信。

93. 发明申请

US20080015997A1 METHOD AND APPARATUS FOR SECURELY MOVING AND RETURNING DIGITAL CONTENT 审中-公开
标题翻译：用于安全移动和返回数字内容的方法和装置
公开(公告)号：US20080015997A1
公开(公告)日：2008-01-17
申请号：US11457219
申请日：2006-07-13
申请人： Paul Moroney , Alexander Medvinsky
发明人： Paul Moroney , Alexander Medvinsky
IPC分类号： G06Q99/00
CPC分类号： G06F21/10 , G06F2221/0753 , G06F2221/0755 , G06F2221/0777
摘要： The present invention discloses an apparatus and method for transferring digital content data. In one example, original digital content data stored on a first device content data. In one example, original digital content data stored on a first device in an encrypted state is transcoded (after being decrypted) to create a modified version of the original digital content data. The modified version of the original digital content data is then encrypted with a new content key. The modified version and at least one content key generator are transferred to a second device, where the at least one content key generator is used to recreate the new content key for enabling (and decrypting) the modified version of the original digital content data at the second device. Notably, the original digital content data stored in the first device is disabled contemporaneously with the transfer of the modified version and the at least one content key generator to the second device. Afterwards, the disabled original digital content data is re-enabled on the first device, and disabled on the second device.
摘要翻译：本发明公开了一种用于传送数字内容数据的装置和方法。在一个示例中，存储在第一设备内容数据上的原始数字内容数据。在一个示例中，以加密状态存储在第一设备上的原始数字内容数据被转码（在被解密之后）以创建原始数字内容数据的修改版本。然后用新的内容密钥对原始数字内容数据的修改版本进行加密。修改版本和至少一个内容密钥生成器被传送到第二设备，其中使用至少一个内容密钥生成器来重新创建新的内容密钥，以便在（或）解密）原始数字内容数据的修改版本第二设备值得注意的是，存储在第一设备中的原始数字内容数据与修改版本和至少一个内容密钥生成器的传送同时被禁用到第二设备。之后，禁用的原始数字内容数据在第一个设备上重新启用，并在第二个设备上禁用。

94. 发明申请

US20070282751A1 Method and apparatus for reserving digital rights 有权
标题翻译：保留数字权利的方法和装置
公开(公告)号：US20070282751A1
公开(公告)日：2007-12-06
申请号：US11446668
申请日：2006-06-05
申请人： Jiang Zhang , Alexander Medvinsky , Petr Peterka
发明人： Jiang Zhang , Alexander Medvinsky , Petr Peterka
IPC分类号： G06Q99/00
CPC分类号： G06Q10/00 , G06Q90/00
摘要： The present invention discloses an apparatus and method for reserving a set of requested rights. In one example, the digital rights data associated with digital content information is found in a remaining rights file using a license index. A portion of the digital rights data is subsequently reserved. A determination is made as to whether a content download associated with the digital content information is successful. If the content download is unsuccessful, then the reserved portion of the digital rights data is cancelled. Alternatively, if the content download is successful, then the remaining rights file is updated to reflect a use of the portion of the digital rights data.
摘要翻译：本发明公开了一种用于保留一组请求权限的装置和方法。在一个示例中，使用许可索引在剩余的权限文件中找到与数字内容信息相关联的数字版权数据。数字版权数据的一部分随后被保留。确定与数字内容信息相关联的内容下载是否成功。如果内容下载不成功，则取消数字版权数据的保留部分。或者，如果内容下载成功，则剩余的权利文件被更新以反映该部分数字版权数据的使用。

95. 发明申请

US20060059342A1 System and method for providing authorized access to digital content 有权
标题翻译：提供授权访问数字内容的系统和方法
公开(公告)号：US20060059342A1
公开(公告)日：2006-03-16
申请号：US11228180
申请日：2005-09-16
申请人： Alexander Medvinsky , Paul Moroney , Eric Sprunk , Petr Peterka
发明人： Alexander Medvinsky , Paul Moroney , Eric Sprunk , Petr Peterka
IPC分类号： H04L9/00
CPC分类号： H04L9/0825 , G11B20/0021 , G11B20/00731 , H04L9/0822 , H04L9/083 , H04L2209/603 , H04N21/26606 , H04N21/26613 , H04N21/4181 , H04N21/63345 , H04N21/8355
摘要： Described herein are embodiments that provide an approach to cryptographic key management for a digital rights management (DRM) architecture that includes multiple levels of key management for minimizing bandwidth usage while maximizing security for the DRM architecture. In one embodiment, there is provided a data structure for cryptographic key management that includes a public/private key pair and three additional layers of symmetric keys for authorizing access to a plurality of contents.
摘要翻译：这里描述的是提供用于数字版权管理（DRM）架构的加密密钥管理的方法的实施例，其包括用于最小化带宽使用的多级密钥管理，同时最大化DRM架构的安全性。在一个实施例中，提供了一种用于加密密钥管理的数据结构，其包括用于授权访问多个内容的公钥/私钥对和三个对称密钥层。

96. 发明申请

US20060050701A1 Method and apparatus for multicast delivery of program information 有权
标题翻译：用于多播传送节目信息的方法和装置
公开(公告)号：US20060050701A1
公开(公告)日：2006-03-09
申请号：US11201675
申请日：2005-08-11
申请人： Petr Peterka , Alexander Medvinsky
发明人： Petr Peterka , Alexander Medvinsky
IPC分类号： H04L12/56
CPC分类号： H04L12/18
摘要： Method and apparatus providing program information to client devices for at least one multicast stream of digital content is described. In one embodiment, session description messages for the at least one multicast stream of digital content are generated. Each of the session description messages includes at least one content access parameter. The at least one content access parameter may include digital rights management (DRM) data, channel key identification data associated with the at least one channel of the at least one multicast stream of digital content, and/or data indicative of whether each session description message is associated with a channel, a program, or a program segment. Each of the session description messages is signed using a cryptographic key. The session description messages are then multicasted to the client devices using a predefined multicast address.
摘要翻译：描述了向数字内容的至少一个多播流向客户设备提供节目信息的方法和装置。在一个实施例中，生成数字内容的至少一个多播流的会话描述消息。每个会话描述消息包括至少一个内容访问参数。至少一个内容访问参数可以包括数字版权管理（DRM）数据，与数字内容的至少一个多播流的至少一个信道相关联的信道密钥标识数据，和/或指示每个会话描述消息与频道，节目或节目片段相关联。每个会话描述消息都使用加密密钥进行签名。然后使用预定义的多播地址将会话描述消息多播到客户端设备。

97. 发明申请

US20050154921A1 Method and apparatus for providing a security profile 审中-公开
标题翻译：用于提供安全简档的方法和装置
公开(公告)号：US20050154921A1
公开(公告)日：2005-07-14
申请号：US11032461
申请日：2005-01-10
申请人： Alexander Medvinsky
发明人： Alexander Medvinsky
IPC分类号： G06F21/00 , H04L9/00
CPC分类号： G06F21/10 , G06F2221/2113
摘要： The present invention discloses an apparatus and method for providing a security profile that defines a separate security level for each security component within a client device. A client device may employ a plurality of security components or functions, e.g., a key/certificate management component, a content encryption/decryption component, a secure clock component, a secure time of day component, a content decoding component, a content encoding component, and the like. Therefore, rather than forcing all client devices to have the same level of security, each security component within the client device can have a different security level. Therefore, depending on the specific content, a device may or may not qualify to receive it or render it, based on its security level of each security component and not just based on the security level of the entire client device.
摘要翻译：本发明公开了一种用于提供安全简档的装置和方法，该安全简档为客户端设备内的每个安全组件定义了单独的安全级别。客户端设备可以使用多个安全组件或功能，例如密钥/证书管理组件，内容加密/解密组件，安全时钟组件，日组件的安全时间，内容解码组件，内容编码组件，等等。因此，不是强制所有客户端设备具有相同的安全级别，客户端设备中的每个安全组件都可以具有不同的安全级别。因此，根据具体内容，设备可以或可以不基于其每个安全组件的安全级别接收或呈现它，而不仅仅是基于整个客户端设备的安全级别。

98. 发明授权

US06892308B1 Internet protocol telephony security architecture 有权
公开(公告)号：US06892308B1
公开(公告)日：2005-05-10
申请号：US09668426
申请日：2000-09-22
申请人： Alexander Medvinsky
发明人： Alexander Medvinsky
IPC分类号： G06F12/14 , G06F21/00 , H04L9/32 , H04L29/06 , H04M3/38 , H04M7/00 , H04W12/12
CPC分类号： H04L63/0435 , G06F12/1408 , G06F21/606 , G06F2207/7219 , G06F2211/008 , G06F2221/2129 , H04L9/321 , H04L9/3263 , H04L29/06027 , H04L63/0442 , H04L63/061 , H04L63/062 , H04L63/0807 , H04L63/12 , H04L65/1043 , H04L65/1069 , H04M3/38 , H04M3/387 , H04M7/0078 , H04M7/0093 , H04W12/12
摘要： A system is provided in which a client/server/network can implement a key management session when the server initiates the key management session utilizing a nonce. The nonce allows a wakeup or trigger message to be conveyed to the client such that a service attack on the server can be avoided when a false nonce is received by the server with an AP request message. Thus the server can disregard AP request messages that are not accompanied by a nonce stored by the server. The method can be implemented through circuitry, electrical signals and code to accomplish the acts described in the method.

99. 发明授权

US09184917B2 Method and system for registering a DRM client 有权
标题翻译：用于注册DRM客户端的方法和系统
公开(公告)号：US09184917B2
公开(公告)日：2015-11-10
申请号：US13170261
申请日：2011-06-28
申请人： Alexander Medvinsky , Paul Moroney , Rafie Shamsaasef , Tat Keung Chan , Madjid F. Nakhijiri
发明人： Alexander Medvinsky , Paul Moroney , Rafie Shamsaasef , Tat Keung Chan , Madjid F. Nakhijiri
IPC分类号： H04L29/06 , H04L9/32 , G06F21/10
CPC分类号： H04L9/3247 , G06F21/10 , H04L9/3265 , H04L63/123 , H04L2209/603 , H04L2463/101
摘要： A client, method and system for registering a DRM client is disclosed. The method (100) includes the steps of: initiating (110) a registration request via a DRM client with an encrypted registration message including an asymmetric key cryptographic identity, a customer identifier and an application specific information (AINFO) field including a digital signature and a device certificate chain; validating (120) information in the application specific information (AINFO) field by a DRM registration server; and receiving (130) a registration response, the registration response being encrypted and including access information, to obtain content. Advantageously, this method provides an enhanced and reliable means of authentication.
摘要翻译：公开了用于注册DRM客户端的客户端，方法和系统。所述方法（100）包括以下步骤：通过DRM客户端发起（110）注册请求，所述注册请求具有加密的注册消息，所述加密的注册消息包括非对称密钥加密标识，客户标识符和包括数字签名的应用专用信息（AINFO）设备证书链; 通过DRM注册服务器验证应用程序特定信息（AINFO）字段中的信息（120）; 并且接收（130）注册响应，所述注册响应被加密并包括访问信息，以获得内容。有利地，该方法提供了增强和可靠的认证手段。

100. 发明授权

US09161196B2 Apparatus and method for secure private location information transfer 有权
标题翻译：用于安全私人位置信息传输的装置和方法
公开(公告)号：US09161196B2
公开(公告)日：2015-10-13
申请号：US13568876
申请日：2012-08-07
申请人： Wayne W. Ballantyne , William P. Alberth, Jr. , Jeffrey S. Markwell , Alexander Medvinsky
发明人： Wayne W. Ballantyne , William P. Alberth, Jr. , Jeffrey S. Markwell , Alexander Medvinsky
IPC分类号： H04M11/04 , H04W4/22 , H04W4/02 , H04M3/42 , H04M3/51 , H04L29/06 , H04W88/02
CPC分类号： H04W4/90 , H04L63/0823 , H04L63/126 , H04M3/42357 , H04M3/5116 , H04M2242/04 , H04W4/02 , H04W88/02
摘要： An apparatus includes an emergency services location module, operatively coupled to location hardware. The emergency services location module is operative to receive a session certificate from an emergency services network entity in response to the apparatus placing an emergency services call or sending an emergency services message. The emergency services location module validates the session certificate to validate that the emergency services network entity is authorized to receive location information, and sends location information obtained from the location hardware to the emergency services network entity, in response to validating the session certificate. The emergency services location module may also be operative to override a user privacy setting that prevents location information from being sent from the apparatus, in response to determining that the session certificate is valid. The emergency services location module may also encrypt the location information prior to sending the location information to the emergency services network entity.
摘要翻译：一种装置包括可操作地耦合到位置硬件的紧急服务定位模块。响应于设备发出紧急服务呼叫或发送紧急服务消息，紧急服务定位模块可操作以从紧急服务网络实体接收会话证书。紧急服务定位模块验证会话证书以验证紧急服务网络实体是否被授权接收位置信息，并且响应于验证会话证书，将从位置硬件获得的位置信息发送到紧急服务网络实体。响应于确定会话证书是有效的，紧急服务定位模块还可以操作以覆盖防止位置信息从设备发送的用户隐私设置。紧急服务定位模块还可以在将位置信息发送到紧急服务网络实体之前对位置信息进行加密。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式