专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

11. 发明授权

US07971259B2 Device and method for establishing trusted path between user interface and software application 失效
标题翻译：在用户界面和软件应用程序之间建立信任路径的设备和方法
公开(公告)号：US07971259B2
公开(公告)日：2011-06-28
申请号：US11506890
申请日：2006-08-21
申请人： Tymur Korkishko , Kyung-hee Lee
发明人： Tymur Korkishko , Kyung-hee Lee
IPC分类号： G06F7/04 , G06F17/30 , H04N7/16
CPC分类号： G06F21/78 , G06F21/31 , G06F21/62 , G06F21/83
摘要： A device and a method for establishing a trusted path between a user interface and a software application to securely execute the software stored in a memory along the trusted path and offer the user's desired service are provided. Accordingly, the trusted path is established so that attackers can not invade a normal path between the user interface and software. Additionally, the device securely executes the original software which is not fabricated so that the user can receive desired services from the device.
摘要翻译：提供了一种用于在用户界面和软件应用之间建立可信路径以便安全地执行沿着可信路径存储在存储器中并提供用户期望服务的软件的设备和方法。因此，可信路径被建立，使得攻击者不能侵入用户界面和软件之间的正常路径。此外，设备安全地执行未被制造的原始软件，使得用户可以从设备接收期望的服务。

12. 发明申请

US20090022180A1 System and method of data verification 有权
标题翻译：数据验证的系统和方法
公开(公告)号：US20090022180A1
公开(公告)日：2009-01-22
申请号：US12003708
申请日：2007-12-31
申请人： Tymur Korkishko , Kyung-Hee Lee
发明人： Tymur Korkishko , Kyung-Hee Lee
IPC分类号： H04J3/06 , G10L19/00
CPC分类号： H04L9/12 , H04L1/0061 , H04L1/08 , H04L9/3236 , H04L63/123 , H04L2209/04
摘要： A data verification method and system is provided. The data verification method includes the steps of transmitting data from a sender to a receiver over a signaling channel, transmitting a first set of bits to the receiver over a voice channel, wherein the first set of bits is generated using the data in the sender, and verifying the data through comparison between the first set of bits and a second set of bits that is generated based on the data in the receiver. The first and the second sets of bits may be a group of bits that are selected from a hash value using a selection mask in the sender and the receiver respectively, wherein the section mask has the same length as the hash value and the hash value is calculated based on the data, and the selection mask may be pre-defined between the sender and the receiver.
摘要翻译：提供了一种数据验证方法和系统。数据验证方法包括以下步骤：通过信令信道从发送方向接收者发送数据，通过语音信道向接收者发送第一组比特，其中使用发送方的数据生成第一组比特，以及通过比较第一组比特和基于接收机中的数据生成的第二组比特来验证数据。第一和第二组位可以是分别使用发送器和接收器中的选择掩码的哈希值中选择的一组比特，其中，所述片段掩码具有与所述散列值相同的长度，所述散列值是基于数据计算，并且选择掩码可以在发送者和接收者之间预先定义。

13. 发明申请

US20060190996A1 Apparatus and system for remotely verifying integrity of memory for mobile platform, and method therefor 有权
标题翻译：用于远程验证移动平台存储器完整性的装置和系统及其方法
公开(公告)号：US20060190996A1
公开(公告)日：2006-08-24
申请号：US11359384
申请日：2006-02-23
申请人： Tymur Korkishko , Kyung-hee Lee
发明人： Tymur Korkishko , Kyung-hee Lee
IPC分类号： H04L9/32
CPC分类号： H04L63/123 , G06F21/57 , H04L63/126 , H04L63/145
摘要： A verification apparatus for a mobile platform for remotely verifying the integrity of a device that is connected to a network and has a shared private key includes a verifying unit that determines whether the device shares a private key with the verification apparatus by checking whether the authentication code generated by the verification apparatus matches the authentication code generated by the device; a calculating unit that generates a local check code that verifies the integrity of the memory; an interface unit that transmits, to the device, the information that the verification apparatus uses to generate an authentication code and the integrity check parameter used to generate a remote check code, and receives the authentication code and the remote check code from the device; and a determining unit that verifies the integrity of the memory if the local check code matches the remote check code.
摘要翻译：用于远程验证连接到网络并具有共享私钥的设备的完整性的移动平台的验证装置包括：验证单元，其通过检查验证码来确定设备是否与验证设备共享私钥由验证装置生成的与由该装置生成的认证码相匹配; 计算单元，其生成验证存储器的完整性的本地校验码; 接口单元，向设备发送验证设备用于生成认证码的信息和用于生成远程校验码的完整性校验参数，并从设备接收认证码和远程校验码; 以及确定单元，如果本地检查代码与远程检查代码匹配，则验证存储器的完整性。

14. 发明申请

US20050283714A1 Method and apparatus for multiplication in Galois field, apparatus for inversion in Galois field and apparatus for AES byte substitution operation 审中-公开
标题翻译： Galois域中乘法的方法和装置，Galois域中的反转装置和用于AES字节替换操作的装置
公开(公告)号：US20050283714A1
公开(公告)日：2005-12-22
申请号：US11155569
申请日：2005-06-20
申请人： Tymur Korkishko , Elena Trichina , Kyung-hee Lee
发明人： Tymur Korkishko , Elena Trichina , Kyung-hee Lee
IPC分类号： G06F7/52 , G06F7/60 , G06F7/72 , G06F11/00 , H03M13/00 , H04L9/06
CPC分类号： G06F7/724 , G06F7/726 , G06F2207/7233 , H04L9/003 , H04L9/0631 , H04L2209/046
摘要： A method and apparatus for multiplication in a Galois field. The method of multiplication in a Galois field (GF) for preventing an information leakage attack by performing a transformation of masked data and masks in GF(2n) includes: receiving a plurality of first and second masked input data, a plurality of first and second input masks and an output mask; calculating a plurality of intermediate values by performing a multiplication of the plurality of masked input data and the plurality of input masks in GF(2n); and calculating a final masked output value by performing an XOR operation of the intermediate values and the output masks.
摘要翻译：一种用于在伽罗瓦域中乘法的方法和装置。在伽罗瓦域（GF）中乘法运算的方法包括：接收多个第一和第二屏蔽输入端，用于防止信息泄漏攻击，该方法通过执行GF（2）中的屏蔽数据和掩码的变换，数据，多个第一和第二输入掩码和输出掩码; 通过执行所述多个被掩蔽的输入数据和所述多个输入掩模在GF（2 ）中的乘法来计算多个中间值; 以及通过执行中间值和输出掩模的异或运算来计算最终屏蔽输出值。

15. 发明授权

US07444561B2 Verifier for remotely verifying integrity of memory and method thereof 有权
标题翻译：用于远程验证内存完整性的验证器及其方法
公开(公告)号：US07444561B2
公开(公告)日：2008-10-28
申请号：US11330093
申请日：2006-01-12
申请人： Tymur Korkishko , Kyung-hee Lee
发明人： Tymur Korkishko , Kyung-hee Lee
IPC分类号： G11C31/28 , G01R31/28
CPC分类号： G06F11/08
摘要： A verifier for remotely checking integrity of a device connected via a network, includes a calculator which fills free areas in a memory of the device with random numbers and generates a local check code; an interface which transmits integrity check parameters that are used by the device to generate a remote check code, to the device, and receiving the remote check code from the device; a determiner which detects a remote check code generation time and compares the detected remote check code generation time with a presorted remote check code generation expectation time; and a controller which confirms the integrity of the memory of the device when the remote check code generation time does not exceed the remote check code generation expectation time according to a result of the determination and the local check code matches the remote check code.
摘要翻译：一种用于远程检查通过网络连接的设备的完整性的验证器，包括一个计算器，该计算器用随机数填充该设备的存储器中的空闲区域，并产生一个本地校验码; 发送设备使用的完整性检查参数以生成远程检查代码，到设备以及从设备接收远程检查代码的接口; 确定器，其检测远程检查代码生成时间，并将检测到的远程检查代码生成时间与预分类的远程检查代码生成期望时间进行比较; 以及控制器，当远程检查代码生成时间根据确定结果不超过远程检查代码生成期望时间并且本地检查代码与远程检查代码匹配时，确认设备的存储器的完整性。

16. 发明申请

US20080052388A1 Substitutable domain management system and method for substituting the system 审中-公开
标题翻译：替代系统的替代域管理系统和方法
公开(公告)号：US20080052388A1
公开(公告)日：2008-02-28
申请号：US11822095
申请日：2007-07-02
申请人： Tymur Korkishko , Kyung-Hee Lee
发明人： Tymur Korkishko , Kyung-Hee Lee
IPC分类号： G06F15/173
CPC分类号： H04L63/06 , H04L63/10 , H04L63/20 , H04L69/40 , H04L2463/101
摘要： A domain management method and substitutable system is provided. When a domain manager, which manages digital rights in a local area, permanently or temporarily becomes unavailable, the domain management method and system may protect the digital rights of the area by using another domain manager.
摘要翻译：提供域管理方法和替代系统。当管理局部区域内的数字权限的域管理员永久地或临时地变得不可用时，域管理方法和系统可以通过使用另一个域管理器来保护该区域的数字权限。

17. 发明申请

US20070234432A1 Method and apparatus for local domain management using device with local authority module 有权
标题翻译：使用具有本地权限模块的设备进行本地域管理的方法和装置
公开(公告)号：US20070234432A1
公开(公告)日：2007-10-04
申请号：US11511363
申请日：2006-08-29
申请人： Tymur Korkishko , Kyung Hee Lee
发明人： Tymur Korkishko , Kyung Hee Lee
IPC分类号： G06F17/30 , H04L9/32
CPC分类号： H04L9/3268 , H04L63/0492 , H04L63/0823 , H04L63/104 , H04L2209/603
摘要： A method and device for local domain management are provided and include a local domain authority device. The local domain authority (LDA) device includes a location limited channel (LLC) interface for transmitting and receiving information of devices which are positioned within a limited location and a (LDA) module for authenticating a device which is selected as a member of a domain from the devices, transmitting device authentication information corresponding to the domain, to the authenticated device via the LLC interface, and registering the authenticated device as a member of the domain. The method and device provide an easy and secure means for domain management.
摘要翻译：提供本地域管理的方法和设备，包括本地域授权设备。本地域机构（LDA）设备包括用于发送和接收位于有限位置内的设备的信息的位置限制信道（LLC）接口和用于认证被选择为域的成员的设备的（LDA）模块从所述设备发送与所述域相对应的设备认证信息，经由所述LLC接口经认证的设备，并将认证设备注册为所述域的成员。该方法和设备为域管理提供了一种简单而安全的方法。

18. 发明申请

US20070150733A1 Device and method for establishing trusted path between user interface and software application 失效
标题翻译：在用户界面和软件应用程序之间建立信任路径的设备和方法
公开(公告)号：US20070150733A1
公开(公告)日：2007-06-28
申请号：US11506890
申请日：2006-08-21
申请人： Tymur Korkishko , Kyung-hee Lee
发明人： Tymur Korkishko , Kyung-hee Lee
IPC分类号： H04L9/00
CPC分类号： G06F21/78 , G06F21/31 , G06F21/62 , G06F21/83
摘要： A device and a method for establishing a trusted path between a user interface and a software application to securely execute the software stored in a memory along the trusted path and offer the user's desired service are provided. Accordingly, the trusted path is established so that attackers can not invade a normal path between the user interface and software. Additionally, the device securely executes the original software which is not fabricated so that the user can receive desired services from the device.
摘要翻译：提供了一种用于在用户界面和软件应用之间建立可信路径以便安全地执行沿着可信路径存储在存储器中并提供用户期望服务的软件的设备和方法。因此，可信路径被建立，使得攻击者不能侵入用户界面和软件之间的正常路径。此外，设备安全地执行未被制造的原始软件，使得用户可以从设备接收期望的服务。

19. 发明申请

US20070101426A1 Device function restricting method and system in specific perimeters 有权
标题翻译：设备功能限制方法和系统在特定周边
公开(公告)号：US20070101426A1
公开(公告)日：2007-05-03
申请号：US11513047
申请日：2006-08-31
申请人： Kyung-hee Lee , Tymur Korkishko
发明人： Kyung-hee Lee , Tymur Korkishko
IPC分类号： H04L9/00 , H04L9/32 , G06F12/14 , G06F11/00 , G06F15/173 , G06F17/00 , G06K9/00 , G06F11/30 , G06F12/16 , H04K1/00 , G06F17/30 , G06F15/16 , G06F15/18 , G06F7/04 , G08B23/00 , G06F7/58 , G06K19/00
CPC分类号： G06F21/6209 , G06F21/554 , G06F2221/2103 , G06F2221/2111 , G06F2221/2149 , H04L63/102
摘要： An apparatus and method for restricting the functions of a device are provided. A restriction monitoring system includes a communication system that provides a location-limited communication channel that detects whether a device entering a perimeter is in an area for device inspection, a server that provides a credential and a security policy to the device and receives a report on whether the device violates the security policy through the location-limited communication channel, and an alarm system which triggers a security alarm when the device violates the security policy.
摘要翻译：提供一种用于限制设备功能的设备和方法。限制监视系统包括通信系统，其提供位置限制通信信道，其检测进入周边的设备是否在用于设备检查的区域中;向设备提供证书和安全策略的服务器，并且接收报告设备是否违反了通过位置限制的通信通道的安全策略，以及当设备违反安全策略时触发安全警报的报警系统。

20. 发明授权

US08036249B2 System and method of data verification 有权
标题翻译：数据验证的系统和方法
公开(公告)号：US08036249B2
公开(公告)日：2011-10-11
申请号：US12003708
申请日：2007-12-31
申请人： Tymur Korkishko , Kyung-Hee Lee
发明人： Tymur Korkishko , Kyung-Hee Lee
IPC分类号： H04J3/12
CPC分类号： H04L9/12 , H04L1/0061 , H04L1/08 , H04L9/3236 , H04L63/123 , H04L2209/04
摘要： A data verification method and system is provided. The data verification method includes the steps of transmitting data from a sender to a receiver over a signaling channel, transmitting a first set of bits to the receiver over a voice channel, wherein the first set of bits is generated using the data in the sender, and verifying the data through comparison between the first set of bits and a second set of bits that is generated based on the data in the receiver. The first and the second sets of bits may be a group of bits that are selected from a hash value using a selection mask in the sender and the receiver respectively, wherein the section mask has the same length as the hash value and the hash value is calculated based on the data, and the selection mask may be pre-defined between the sender and the receiver.
摘要翻译：提供了一种数据验证方法和系统。数据验证方法包括以下步骤：通过信令信道从发送方向接收者发送数据，通过语音信道向接收者发送第一组比特，其中使用发送方的数据生成第一组比特，以及通过比较第一组比特和基于接收机中的数据生成的第二组比特来验证数据。第一和第二组位可以是分别使用发送器和接收器中的选择掩码的哈希值中选择的一组比特，其中，所述片段掩码具有与所述散列值相同的长度，所述散列值是基于数据计算，并且选择掩码可以在发送者和接收者之间预先定义。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式