专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

21. 发明申请

US20060026423A1 Privacy-protecting integrity attestation of a computing platform 审中-公开
标题翻译：计算平台的隐私保护完整性认证
公开(公告)号：US20060026423A1
公开(公告)日：2006-02-02
申请号：US11178722
申请日：2005-07-11
申请人： Endre Bangerter , Matthias Schunter , Michael Waidner , Jan Camenisch
发明人： Endre Bangerter , Matthias Schunter , Michael Waidner , Jan Camenisch
IPC分类号： H04L9/00
CPC分类号： H04L9/3218 , H04L9/3234 , H04L2209/80
摘要： Systems, apparatus and methods for privacy-protecting integrity attestation of a computing platform. An example method for privacy-protecting integrity attestation of a computing platform (P) has a trusted platform module (TPM), and comprises the following steps. First, the computing platform (P) receives configuration values (PCR1 . . . PCRn). Then, by means of the trusted platform module (TPM), a configuration value (PCRp) is determined which depends on the configuration of the computing platform (P). In a further step the configuration value (PCRp) is signed by means of the trusted platform module. Finally, in the event that the configuration value (PCRp) is one of the received configuration values (PCR1 . . . PCRn), the computing platform (P) proves to a verifier (V) that it knows the signature (sign(PCRp)) on one of the received configuration values (PCR1 . . . PCRn).
摘要翻译：用于隐私保护计算平台完整性认证的系统，设备和方法。用于隐私保护计算平台（P）的完整性认证的示例方法具有可信平台模块（TPM），并且包括以下步骤。首先，计算平台（P）接收配置值（PCR1 ... PCRn）。然后，通过可信平台模块（TPM），确定取决于计算平台（P）的配置的配置值（PCRp）。在进一步的步骤中，配置值（PCRp）通过可信平台模块进行签名。最后，如果配置值（PCRp）是接收到的配置值（PCR1 ... PCRn）之一，则计算平台（P）向验证者（V）证明其知道签名（sign（PCRp ））接收配置值之一（PCR1 ... PCRn）。

22. 发明申请

US20050010535A1 Anonymous payment with a verification possibility by a defined party 失效
标题翻译：由定义方提供验证可能性的匿名付款
公开(公告)号：US20050010535A1
公开(公告)日：2005-01-13
申请号：US10448098
申请日：2003-05-29
申请人： Jan Camenisch
发明人： Jan Camenisch
IPC分类号： G06Q20/02 , G06Q20/06 , G06Q20/12 , G06Q20/38 , G06Q20/40 , G06Q20/42 , G07F7/10 , G09C1/00 , G06F17/60
CPC分类号： G06Q20/02 , G06Q20/027 , G06Q20/06 , G06Q20/12 , G06Q20/3823 , G06Q20/3829 , G06Q20/383 , G06Q20/401 , G06Q20/42 , G07F7/1016 , H04L9/3263 , H04L2209/42 , H04L2209/56
摘要： The present invention relates to a method for verifying an anonymous payment by a defined party in a communication system providing a public key infrastructure. The method comprising the steps of (a) receiving a validation message from a merchant party, the validation message comprising a proof signature produced by a customer party and an encrypted payment message, the proof signature being derived from a customer secret key, a customer certificate, at least one customer attribute, and the encrypted payment message; (b) verifying the validity of the proof signature based on an issuing public key, a verification public key, and the encrypted payment message; (c) decrypting at least part of the encrypted payment message based on a verification secret key corresponding to the verification public key, thereby obtaining a customer information related to the at least one customer attribute. In the event of the validity of the proof signature (d) the obtained customer information is used for initializing the authorization of the payment.
摘要翻译：本发明涉及一种用于在提供公钥基础设施的通信系统中验证由定义方进行的匿名支付的方法。该方法包括以下步骤：（a）从商家接收验证消息，所述验证消息包括由客户方产生的证明签名和加密的支付消息，所述证明签名是从客户秘密密钥导出的，客户证书，至少一个客户属性和加密的支付消息; （b）基于发行公钥，验证公钥和加密的支付消息来验证证明签名的有效性; （c）基于与所述验证公开密钥对应的验证密钥对所述加密支付消息的至少一部分进行解密，从而获得与所述至少一个客户属性相关的客户信息。如果证明签名有效（d），则获得的客户信息用于初始化付款授权。

23. 发明授权

US08312271B2 Privacy-protecting integrity attestation of a computing platform 有权
标题翻译：计算平台的隐私保护完整性认证
公开(公告)号：US08312271B2
公开(公告)日：2012-11-13
申请号：US12126978
申请日：2008-05-26
申请人： Endre Bangerter , Matthias Schunter , Michael Waidner , Jan Camenisch
发明人： Endre Bangerter , Matthias Schunter , Michael Waidner , Jan Camenisch
IPC分类号： H04L29/06
CPC分类号： H04L9/3218 , H04L9/3234 , H04L2209/80
摘要： Systems, apparatus and methods for privacy-protecting integrity attestation of a computing platform. An example method for privacy-protecting integrity attestation of a computing platform (P) has a trusted platform module (TPM), and comprises the following steps. First, the computing platform (P) receives configuration values (PCR1 . . . PCRn). Then, by means of the trusted platform module (TPM), a configuration value (PCRp) is determined which depends on the configuration of the computing platform (P). In a further step the configuration value (PCRp) is signed by means of the trusted platform module. Finally, in the event that the configuration value (PCRp) is one of the received configuration values (PCR1 . . . PCRn), the computing platform (P) proves to a verifier (V) that it knows the signature (sign(PCRp)) on one of the received configuration values (PCR1 . . . PCRn).
摘要翻译：用于隐私保护计算平台完整性认证的系统，设备和方法。用于隐私保护计算平台（P）的完整性认证的示例方法具有可信平台模块（TPM），并且包括以下步骤。首先，计算平台（P）接收配置值（PCR1 ... PCRn）。然后，通过可信平台模块（TPM），确定取决于计算平台（P）的配置的配置值（PCRp）。在进一步的步骤中，配置值（PCRp）通过可信平台模块进行签名。最后，如果配置值（PCRp）是接收到的配置值（PCR1 ... PCRn）之一，计算平台（P）向验证者（V）证明它知道签名（signp（PCRp））在接收的配置值之一（PCR1 ... PCRn）上。

24. 发明授权

US07962962B2 Using an object model to improve handling of personally identifiable information 有权
标题翻译：使用对象模型来改善个人身份信息的处理
公开(公告)号：US07962962B2
公开(公告)日：2011-06-14
申请号：US09884311
申请日：2001-06-19
申请人： Steven B. Adler , Endre Felix Bangerter , Kathryn Ann Bohrer , Nigel Howard Julian Brown , Jan Camenisch , Arthur M. Gilbert , Dogan Kesdogan , Matthew P. Leonard , Xuan Liu , Michael Robert McCullough , Adam Charles Nelson , Charles Campbell Palmer , Calvin Stacy Powers , Michael Schnyder , Edith Schonberg , Matthias Schunter , Elsie Van Herreweghen , Michael Waidner
发明人： Steven B. Adler , Endre Felix Bangerter , Kathryn Ann Bohrer , Nigel Howard Julian Brown , Jan Camenisch , Arthur M. Gilbert , Dogan Kesdogan , Matthew P. Leonard , Xuan Liu , Michael Robert McCullough , Adam Charles Nelson , Charles Campbell Palmer , Calvin Stacy Powers , Michael Schnyder , Edith Schonberg , Matthias Schunter , Elsie Van Herreweghen , Michael Waidner
IPC分类号： G06F21/00 , G06F7/04 , G06F17/30
CPC分类号： G06Q10/10
摘要： In a computer, a first set of object classes are provided representing active entities in an information-handling process and a second set of object classes are provided representing data and rules in the information-handling process. At least one object class has rules associated with data. The above-mentioned objects are used in constructing a model of an information-handling process, and to provide an output that identifies at least one way in which the information-handling process could be improved. One aspect is a method for handling personally identifiable information. Another aspect is a system for executing the method of the present invention. A third aspect is as a set of instructions on a computer-usable medium, or resident in a computer system, for executing the method of the present invention.
摘要翻译：在计算机中，提供第一组对象类，表示信息处理过程中的活动实体，并且提供表示信息处理过程中的数据和规则的第二组对象类。至少有一个对象类具有与数据相关联的规则。上述目的用于构建信息处理过程的模型，并且提供一种识别可以改进信息处理过程的至少一种方式的输出。一个方面是处理个人身份信息的方法。另一方面是用于执行本发明的方法的系统。第三方面是用于执行本发明的方法的计算机可用介质或驻留在计算机系统中的一组指令。

25. 发明申请

US20110035241A1 Anonymous Separation of Duties with Credentials 失效
标题翻译：匿名分离职责与证书
公开(公告)号：US20110035241A1
公开(公告)日：2011-02-10
申请号：US12536874
申请日：2009-08-06
申请人： Jan Camenisch , Christopher J. Giblin , Thomas R. Gross , Guenter Karjoth
发明人： Jan Camenisch , Christopher J. Giblin , Thomas R. Gross , Guenter Karjoth
IPC分类号： G06Q10/00 , G06Q99/00
CPC分类号： G06Q10/00 , G06Q10/063 , G06Q20/383 , G06Q30/018
摘要： A system for anonymous separation of duties with credentials includes an identity provider, the identity provider configured to issue anonymous credentials to a user based on one or more attributes of the user; a service provider, the service provider configured to issue a pseudonym to the user based on the user's anonymous credentials, and to associate the user's pseudonym with a step of an instance of a business process hosted on the service provider, the step being completed by the user; and an auditor, the auditor configured to determine if the completion of the step of the instance of the business process by the user is compliant with a separation of duties policy.
摘要翻译：用于凭借凭证匿名分离职责的系统包括身份提供者，身份提供者被配置为基于用户的一个或多个属性向用户发布匿名凭证; 服务提供商，所述服务提供商被配置为基于所述用户的匿名凭证向所述用户发布假名，并且将所述用户的假名与所述服务提供商上托管的业务流程的实例的步骤相关联，所述步骤由用户; 和审核员，审核员被配置为确定用户完成业务流程实例的步骤是否符合职责分离政策。

26. 发明授权

US07581107B2 Anonymity revocation 失效
标题翻译：匿名撤销
公开(公告)号：US07581107B2
公开(公告)日：2009-08-25
申请号：US11137246
申请日：2005-05-25
申请人： Jan Camenisch
发明人： Jan Camenisch
IPC分类号： H04L9/32
CPC分类号： G06Q30/04 , H04L9/3234 , H04L9/3247 , H04L2209/42 , H04L2209/56
摘要： Methods and systems for anonymity revocation, enabling a trusted entity to identify a user computer within an anonymous system. A system comprises an attester computer providing attestation value cert from a security module public key and an identifying value. The user computer having a module providing the module public key and a security module attestation value, the user computer providing a user public key, a user attestation-signature value derived from the attestation value cert, and an encryption computable under use of a trusted-entity public key and a module-generated-identifier value, the module-generated-identifier value relating to the identifying value; a verification computer verifying validity of received user attestation-signature value and the encryption; and a trusted entity having a trusted entity secret key, wherein the trusted entity is able to derive the module-generated-identifier value from the encryption, the module-generated-identifier value being usable to identify the user computer with the security module.
摘要翻译：用于匿名撤销的方法和系统，使可信实体能够识别匿名系统内的用户计算机。系统包括从安全模块公开密钥和识别值提供认证价值证书的服务器计算机。具有提供模块公钥的模块和安全模块认证值的用户计算机，提供用户公开密钥的用户计算机，从认证值证书导出的用户认证签名值，以及可信任的使用中可计算的加密，实体公钥和模块生成标识符值，与识别值相关的模块生成标识符值; 验证接收到的用户认证签名值和加密的有效性的验证计算机; 以及具有可信实体秘密密钥的可信实体，其中所述可信实体能够从所述加密中导出所述模块生成的标识符值，所述模块生成的标识符值可用于使用所述安全模块来标识所述用户计算机。

27. 发明申请

US20070294183A1 METHOD FOR AUTOMATICALLY VALIDATING A TRANSACTION, ELECTRONIC PAYMENT SYSTEM AND COMPUTER PROGRAM 有权
标题翻译：自动确认交易，电子支付系统和计算机程序的方法
公开(公告)号：US20070294183A1
公开(公告)日：2007-12-20
申请号：US11753553
申请日：2007-05-24
申请人： Jan Camenisch , Susan Hohenberger
发明人： Jan Camenisch , Susan Hohenberger
IPC分类号： H04L9/00
CPC分类号： H04L9/3218 , G06Q20/06 , G06Q20/367 , G06Q20/3674 , G06Q20/3678 , G06Q20/382 , H04L9/3073 , H04L9/3255 , H04L2209/42 , H04L2209/56
摘要： A method, system and computer program product relating to automatically validating a transaction between an issuer having a signing key, an emitter having an emitter key, an acceptor having a unique identity and a limit on transactions and a validator.
摘要翻译：一种与自动验证具有签名密钥的发行者之间的交易的方法，系统和计算机程序产品，具有发射器密钥的发射器，具有唯一身份的接受者和事务限制的验证器。

28. 发明申请

US20070169172A1 Method and system for memory protection and security using credentials 失效
标题翻译：用于内存保护和安全使用凭证的方法和系统
公开(公告)号：US20070169172A1
公开(公告)日：2007-07-19
申请号：US11333066
申请日：2006-01-17
申请人： Michael Backes , Shmuel Ben-Yehuda , Jan Camenisch , Ton Engbersen , Zorik Machulsky , Julian Satran , Leah Shalev , Ilan Shimony , Thomas Smith , Michael Waidner
发明人： Michael Backes , Shmuel Ben-Yehuda , Jan Camenisch , Ton Engbersen , Zorik Machulsky , Julian Satran , Leah Shalev , Ilan Shimony , Thomas Smith , Michael Waidner
IPC分类号： H04L9/32
CPC分类号： G06F12/1433 , G06F12/1441 , G06F12/1466
摘要： A computer-implemented system and method for protecting a memory are provided. The system includes a memory section with privileged and non-privileged sections, a host gateway (HG) to generate a capability credential, a device controller (DC) to append the credential to data transmitted to the memory, and at least one IO device enabled to do direct memory access (DMA) transactions with the memory.
摘要翻译：提供了一种用于保护存储器的计算机实现的系统和方法。该系统包括具有特权和非特权部分的存储器部分，用于生成能力证书的主机网关（HG），将证书附加到传输到存储器的数据的设备控制器（DC），以及启用的至少一个IO设备与内存进行直接内存访问（DMA）事务。

29. 发明申请

US20070150408A1 Method and system for linking an anonymous electronic trade order to an identity of a trader 有权
标题翻译：将匿名电子交易订单与交易者的身份相链接的方法和系统
公开(公告)号：US20070150408A1
公开(公告)日：2007-06-28
申请号：US11642013
申请日：2006-12-19
申请人： Jan Camenisch , Christopher Kenyon
发明人： Jan Camenisch , Christopher Kenyon
IPC分类号： G06Q40/00
CPC分类号： G06Q40/04 , G06Q20/3829 , G06Q20/383 , G06Q30/08
摘要： A method for automatically linking an anonymous electronic trade order having an order quantity (q) to an identity of a trader by providing an identity marker (s) of the trader; embedding the identity marker (s) by splitting the anonymous trade order into a number (n) of trade orders each having a corresponding order quantity x (i) to generate a trade order set; and placing the generated trade order set in an electronic order book.
摘要翻译：一种通过提供交易者的身份标识来自动链接具有订单数量（q）的匿名电子交易订单与交易者的身份的方法; 通过将匿名交易订单分成具有对应的订单数量x（i）的交易订单的数量（n）来生成交易订单集合来嵌入身份标识; 并将生成的交易订单设置在电子订单簿中。

30. 发明申请

US20060233364A1 Fine-grained forward-secure signature scheme 审中-公开
标题翻译：细粒度的前向安全签名方案
公开(公告)号：US20060233364A1
公开(公告)日：2006-10-19
申请号：US10522472
申请日：2003-07-07
申请人： Jan Camenisch
发明人： Jan Camenisch
IPC分类号： H04L9/00
CPC分类号： H04L9/14 , H04L9/3255
摘要： The presented methods form the basis of a forward-secure signature scheme that is provably secure. Moreover, the presented methods form also the basis of a fine-grained forward-secure signature scheme that is secure and efficient. The scheme allows to react immediately on hacker break-ins such that signatures from the past still remain valid without re-issuing them and future signature values based on an exposed key can be identified accordingly. In general, each prepared signature carries an ascending index such that once an index is used, no lower index can be used to sign. Then, whenever an adversary breaks in, an honest signer can just announce the current index, e.g., by signing some special message with respect to the current index, as part of the revocation message for the current time period. It is then understood that all signatures made in prior time periods as well as all signatures make in the revoked period up to the announced index are valid, i.e., non-reputable.
摘要翻译：所提出的方法构成了可靠安全的前向安全签名方案的基础。此外，提出的方法也是安全有效的细粒度前向安全签名方案的基础。该方案允许立即对黑客入侵进行反应，使得过去的签名仍然保持有效，而不重新发布它们，并且可以相应地识别基于暴露密钥的未来签名值。一般来说，每个准备的签名都带有上升索引，使得一旦使用索引，就不能使用较低的索引进行签名。那么，每当对手中断时，一个诚实的签名者就可以通过例如通过当前索引签署一些特殊消息来宣布当前的索引，作为当前时间段的撤销消息的一部分。据了解，在先前的时间段内进行的所有签名以及在所宣布的索引的撤销时间内的所有签名都是有效的，即非信誉的。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式