专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

31. 发明授权

US09443092B2 System and method for matching data sets while maintaining privacy of each data set 有权
标题翻译：用于匹配数据集的系统和方法，同时保持每个数据集的隐私
公开(公告)号：US09443092B2
公开(公告)日：2016-09-13
申请号：US14543959
申请日：2014-11-18
申请人： Pitney Bowes Inc.
发明人： Yassir Nawaz , Femi Olumofin
IPC分类号： G06F21/00 , G06F21/60 , H04L29/06 , H04L29/08 , H04W12/04 , G06F9/445 , H04L9/08 , H04L12/24
CPC分类号： G06F21/602 , G06F8/61 , H04L9/008 , H04L9/083 , H04L41/0806 , H04L63/067 , H04L63/0815 , H04L63/145 , H04L67/02 , H04L67/10 , H04L2209/46 , H04L2463/062 , H04W12/04
摘要： A system and method that allows two parties to find common records in their data sets without having to actually share the data sets with each other or a third party. Two primitives, perfect hash functions and public key cryptography, are combined in a unique way to obtain a secure and efficient private matching solution. Since the data that is exchanged is always encrypted during the match process, neither party reveals its data to the other party. This solution enables two parties to match sensitive data such as PII (Personally Identifiable Information) or PHI (Protected Health Information) without having to disclose the data to other or to any third party. One or both of the parties only learn of matching records without learning any information about the records that do not match.
摘要翻译：一种允许双方在其数据集中找到共同记录而不必彼此实际共享彼此或第三方的数据集的系统和方法。两个原语，完美的哈希函数和公共密钥加密技术以独特的方式相结合，以获得安全高效的私有匹配解决方案。由于在匹配过程中交换的数据总是加密，所以双方都不会将其数据显示给对方。该解决方案使双方能够匹配敏感数据，如PII（个人身份信息）或PHI（受保护的健康信息），而无需将数据披露给其他或任何第三方。一方或双方只学习匹配的记录，而不学习有关不匹配的记录的任何信息。

32. 发明申请

US20160260098A1 SECURE MOBILE USER INTERFACE 有权
标题翻译：安全移动用户界面
公开(公告)号：US20160260098A1
公开(公告)日：2016-09-08
申请号：US14429748
申请日：2014-10-29
申请人： CRYPTOMATHIC LTD
发明人： Peter Landrock , Mike Bond
IPC分类号： G06Q20/40 , G06F21/83 , H04L29/08 , H04L29/06 , G06F21/62 , G06F21/56
CPC分类号： G06Q20/4016 , G06F21/35 , G06F21/56 , G06F21/6218 , G06F21/83 , G06Q20/32 , G06Q20/3226 , G06Q20/4014 , H04L63/067 , H04L63/0838 , H04L63/0853 , H04L63/102 , H04L67/02 , H04M1/22 , H04M1/72527 , H04M2250/22 , H04W12/06
摘要： The invention provides systems and method for securely inputting user data from a user into a mobile device and also for generating user data to be input by a user into a mobile device. For example, there is provided a mobile device case for securely inputting user data from a user into a mobile device, the case comprising: a microcontroller, a communication module for communicating with the mobile device and a user interface to enable the user to input the user data. The microcontroller is preferably configured to receive the user data which is input by a user via the user interface, process said user data to create processed data and communicate said processed data to said mobile device. Alternatively, the microcontroller is configured to receive a request to generate the user data; generate said user data and display said user data on the user interface.
摘要翻译：本发明提供了用于将用户数据从用户安全地输入到移动设备中并且还用于生成由用户输入到移动设备中的用户数据的系统和方法。例如，提供了一种用于将用户数据从用户安全地输入到移动设备中的移动设备情况，该情况包括：微控制器，用于与移动设备进行通信的通信模块和用户界面，以使用户能够输入用户数据。微控制器优选地被配置为接收由用户经由用户接口输入的用户数据，处理所述用户数据以创建经处理的数据并将所述处理的数据传送到所述移动设备。或者，微控制器被配置为接收生成用户数据的请求; 生成所述用户数据并在用户界面上显示所述用户数据。

33. 发明申请

US20160212110A1 USER AUTHENTICATION RELYING ON RECURRING PUBLIC EVENTS FOR SHARED SECRETS 有权
标题翻译：用户认可依赖于共同秘密的公开活动
公开(公告)号：US20160212110A1
公开(公告)日：2016-07-21
申请号：US14597626
申请日：2015-01-15
申请人： International Business Machines Corporation
发明人： Eric J. Barkie , Benjamin L. Fletcher , Andrew P. Wyskida
IPC分类号： H04L29/06
CPC分类号： H04L63/067 , H04L63/065 , H04L63/083 , H04L63/10
摘要： An access manager manages access to a resource. At a first time, the access manager designates a variable attribute associated with a recurring public event as a shared secret between the access manager and a user. At a second time occurring after the first time, the access manager receives a shared key from the user. As received, the shared key is based on a value of the variable attribute associated with the recurring public event at a most recent recurrence of the recurring public event relative to the second time. The access manager evaluates the shared key. In response to the evaluation, the access manager grants or denies the user access to the resource.
摘要翻译：访问管理器管理对资源的访问。第一次，访问管理器将与循环公共事件相关联的变量属性指定为访问管理器和用户之间的共享秘密。在第一次发生第二次之后，访问管理器从用户接收共享密钥。如所收到的那样，共享密钥基于与循环公共事件相关联的可变属性的值，该值与在第二次重复发生的公共事件的最近一次重复相关。访问管理器评估共享密钥。响应于评估，访问管理器授予或拒绝用户对资源的访问。

34. 发明授权

US09380043B2 System and method for providing a one-time key for identification 有权
标题翻译：提供用于识别的一次性密钥的系统和方法
公开(公告)号：US09380043B2
公开(公告)日：2016-06-28
申请号：US14282314
申请日：2014-05-20
申请人： AT&T Intellectual Property I, L.P.
发明人： Charles D. Blewett , Megan Blewett , Juan A. Garay , Robert C. Haarde , Thomas Killian , Yitzhak H. Mandelbaum , Simon Urbanek
IPC分类号： H04L29/06 , H04L9/08 , H04L9/32
CPC分类号： H04L63/0838 , H04L9/083 , H04L9/0869 , H04L9/321 , H04L9/3228 , H04L63/067 , H04L63/08 , H04L2209/805 , H04W12/04 , H04W12/06
摘要： A server includes a key generator and an authenticator. The key generator is configured to receive a request for a first key from a worker device, to create the first key that is associated with a worker, and to transmit the first key to the worker device. The authenticator is in communication with the key generator, the authenticator is configured to receive a second key and identification details from a customer device, to transmit the identification details to the worker device, to receive acknowledgment of the identification details from the worker device, and to authenticate the second key and the identification details with the customer device.
摘要翻译：服务器包括密钥生成器和认证器。密钥生成器被配置为从工作设备接收对第一密钥的请求，以创建与工作者相关联的第一密钥，并将第一密钥发送到工作设备。认证器与密钥生成器通信，认证器被配置为从客户设备接收第二密钥和标识细节，将标识详细信息发送到工作设备，以从工作设备接收识别细节的确认，以及与客户设备验证第二个密钥和识别详细信息。

35. 发明申请

US20160154745A1 MEMORY DEVICE AND HOST DEVICE 审中-公开
标题翻译：存储器件和主机器件
公开(公告)号：US20160154745A1
公开(公告)日：2016-06-02
申请号：US14956802
申请日：2015-12-02
申请人： Kabushiki Kaisha Toshiba
发明人： Koichi NAGAI , Yuji Kashiwagi
IPC分类号： G06F12/14 , H04L29/06 , H04L9/32 , G06F3/06 , G06F1/32
CPC分类号： G06F12/1408 , G06F1/3275 , G06F1/3287 , G06F3/0622 , G06F3/0629 , G06F3/0688 , G06F2212/1052 , H04L9/0822 , H04L9/3228 , H04L63/0428 , H04L63/0457 , H04L63/067 , H04L63/0838 , H04L63/126 , H04L2463/062 , Y02D10/13 , Y02D10/14 , Y02D10/171
摘要： According to one embodiment, a memory device includes: a nonvolatile semiconductor memory; and a controller which controls the semiconductor memory. The controller includes: a first memory which stores a first key; a second memory which stores a second key; a first generator which generates a third key based on a random number; a second generator which generates a fourth key based on the first key and the third key; and an encryptor which encrypts the second key with the third key. The third key and the encrypted second key are stored in a host device enabled to access the memory device.
摘要翻译：根据一个实施例，存储器件包括：非易失性半导体存储器; 以及控制半导体存储器的控制器。控制器包括：存储第一密钥的第一存储器; 存储第二密钥的第二存储器; 基于随机数生成第三密钥的第一生成器; 第二发生器，其基于所述第一密钥和所述第三密钥生成第四密钥; 以及用第三密钥对第二密钥进行加密的加密器。第三密钥和加密的第二密钥存储在启用以访问存储设备的主机设备中。

36. 发明申请

US20160149899A1 SYSTEM AND METHOD FOR NON-REPLAYABLE COMMUNICATION SESSIONS 有权
标题翻译：非可重复通信会议的系统和方法
公开(公告)号：US20160149899A1
公开(公告)日：2016-05-26
申请号：US14549812
申请日：2014-11-21
申请人： Dropbox, Inc.
发明人： Graham Abbott
IPC分类号： H04L29/06
CPC分类号： H04L63/061 , H04L9/0825 , H04L9/083 , H04L9/0844 , H04L9/0891 , H04L63/0281 , H04L63/0428 , H04L63/0442 , H04L63/062 , H04L63/067 , H04L63/068 , H04L63/0823 , H04L2209/76
摘要： Systems, methods, and non-transitory computer-readable storage media for a non-replayable communication system are disclosed. A first device associated with a first user may have a public identity key and a corresponding private identity. The first device may register the first user with an authenticator by posting the public identity key to the authenticator. The first device may perform a key exchange with a second device associated with a second user, whereby the public identity key and a public session key are transmitted to the second device. During a communication session, the second device may transmit to the first device messages encrypted with the public identity key and/or the public session key. The first device can decrypt the messages with the private identity key and the private session key. The session keys may expire during or upon completion of the communication session.
摘要翻译：公开了用于不可重放通信系统的系统，方法和非暂时计算机可读存储介质。与第一用户相关联的第一设备可以具有公共标识密钥和相应的私有身份。第一设备可以通过向认证者发布公共标识密钥来向第一用户注册认证者。第一设备可以与与第二用户相关联的第二设备执行密钥交换，由此将公共标识密钥和公共会话密钥发送到第二设备。在通信会话期间，第二设备可以向第一设备发送用公共标识密钥和/或公共会话密钥加密的消息。第一个设备可以使用私有身份密钥和私人会话密钥解密消息。会话密钥可以在通信会话期间或完成之后过期。

37. 发明申请

US20160149870A1 Network Authentication Method using a Card Device 审中-公开
标题翻译：使用卡设备的网络认证方法
公开(公告)号：US20160149870A1
公开(公告)日：2016-05-26
申请号：US14933207
申请日：2015-11-05
申请人： Hung-Chien Chou
发明人： Hung-Chien Chou
IPC分类号： H04L29/06
CPC分类号： H04L67/42 , G06F21/34 , G06F21/445 , G06F2221/033 , G06F2221/2103 , G06F2221/2107 , G06Q20/34 , G06Q20/341 , G06Q20/3674 , G06Q20/3829 , G06Q20/40975 , H04L9/3228 , H04L63/067 , H04L63/0869 , H04L2463/102
摘要： A network authentication method includes: by a user terminal, through execution of an application, connecting to a network server and sending a server verification request to a card device coupled to the user terminal; by the card device, generating a server dynamic link program based on a server verification code, encrypting the server dynamic link program, and transmitting the encrypted server dynamic linking program to the network server through the user terminal; by the user terminal, sending a server code data received from the network server to the card device as generated by the network server based on the server dynamic link program; and by the card device, verifying the network server based on the server code data and the server verification code.
摘要翻译：网络认证方法包括：通过用户终端，通过执行应用，连接到网络服务器，并向连接到用户终端的卡设备发送服务器验证请求; 通过卡装置生成基于服务器验证码的服务器动态链接程序，加密服务器动态链接程序，以及通过用户终端将加密的服务器动态链接程序发送到网络服务器; 通过所述用户终端，基于所述服务器动态链接程序，将由所述网络服务器接收的服务器代码数据发送到由所述网络服务器生成的所述卡设备; 以及卡设备，基于服务器代码数据和服务器验证码验证网络服务器。

38. 发明申请

US20160142438A1 METHOD OF IDENTIFYING AND COUNTERACTING INTERNET ATTACKS 有权
标题翻译：识别和排除互联网攻击的方法
公开(公告)号：US20160142438A1
公开(公告)日：2016-05-19
申请号：US14701115
申请日：2015-04-30
申请人： Cleafy S.r.l.
发明人： Nicolò Pastore , Emanuele Parrinello , Carmine Giangregorio
IPC分类号： H04L29/06 , H04L29/08
CPC分类号： H04L63/1466 , G06F21/554 , G06F2221/032 , G06F2221/2107 , H04L63/0281 , H04L63/0428 , H04L63/061 , H04L63/067 , H04L63/08 , H04L63/0876 , H04L63/1416 , H04L67/02
摘要： The present disclosure relates to a method of identifying and counteracting Internet attacks, of Man-in-the-Browser and/or Man-in-the-Middle and/or Bot attack types, comprising the steps of: generating a request by a Web browser, concerning a Web application residing in a Web server; sending the request by the Web browser to a box server, which is in signal communication with the Web server; receiving a server DOM code by the box server, which code has been automatically generated by the Web server according to the request; sending a service page code by the box server to the Web browser, in response to the request, the service page code comprising an obfuscated and polymorphic javascript code and/or HTML code; receiving and processing the javascript code and/or HTML code, by the Web browser, to automatically generate an asynchronous request, such that environment data of the Web server may be transmitted to the box server; processing the environment data by the box server, to identify Internet attacks; performing an encryption function on the server DOM code by the box server to generate an obfuscated DOM code, and sending the obfuscated DOM code to the Web browser in response to the asynchronous request; performing a decryption function on the obfuscated DOM code by the service page code, to obtain the server DOM code; rendering the server DOM code by the Web browser.
摘要翻译：本公开涉及一种识别和抵消网络浏览器和/或中间和/或僵尸攻击类型的因特网攻击的方法，包括以下步骤：通过网络生成请求浏览器，涉及驻留在Web服务器中的Web应用程序; 将所述Web浏览器的请求发送到与所述Web服务器进行信号通信的盒服务器; 通过盒式服务器接收服务器DOM代码，根据请求，由Web服务器自动生成哪个代码; 响应于所述请求，由盒服务器将服务页面代码发送到Web浏览器，该服务页面代码包括混淆和多态的JavaScript代码和/或HTML代码; 通过Web浏览器接收和处理JavaScript代码和/或HTML代码以自动生成异步请求，使得Web服务器的环境数据可以被发送到盒式服务器; 通过盒式服务器处理环境数据，识别互联网攻击; 通过盒服务器对服务器DOM代码执行加密功能以产生模糊的DOM代码，并且响应于异步请求将混淆的DOM代码发送到Web浏览器; 通过服务页面代码对混淆的DOM代码执行解密功能，以获得服务器DOM代码; 通过Web浏览器呈现服务器DOM代码。

39. 发明授权

US09331993B2 Authentication server and communication device 有权
标题翻译：认证服务器和通信设备
公开(公告)号：US09331993B2
公开(公告)日：2016-05-03
申请号：US14114759
申请日：2011-06-16
申请人： Shingo Murakami , Ryoji Kato , Toshikane Oda , Shinta Sugimoto
发明人： Shingo Murakami , Ryoji Kato , Toshikane Oda , Shinta Sugimoto
IPC分类号： H04L29/06 , H04W12/06 , H04W4/00
CPC分类号： H04L63/08 , H04L63/067 , H04L63/0853 , H04W4/70 , H04W12/06
摘要： A communication device comprising a central processing unit (CPU) and a memory device is disclosed. The CPU is configured to send a first attach request including a first subscription identity (FSI) to the network apparatus, receive an authentication request including a random number and an authentication token from the network apparatus as a response to the first attach request. Further, the CPU is configured to authenticate the authentication token using the random number and a first key associated with the FSI, obtain a second key and a second subscription identity (SSI) in response to authentication of the authentication token failing, where SSI is obtained from the authentication request. The CPU is further configured to send an authentication failure to the network apparatus. The second key and SSI are stored in the memory device such that the second key is associated with SSI.
摘要翻译：公开了一种包括中央处理单元（CPU）和存储设备的通信设备。 CPU被配置为向网络装置发送包括第一订阅标识（FSI）的第一附加请求，作为对第一附加请求的响应，从网络装置接收包括随机数和认证令牌的认证请求。此外，CPU被配置为使用与FSI相关联的随机数和第一密钥来认证认证令牌，响应于认证令牌失败的认证而获得第二密钥和第二订阅标识（SSI），其中获得SSI 从认证请求。 CPU还被配置为向网络设备发送认证失败。第二个密钥和SSI存储在存储设备中，使得第二个密钥与SSI相关联。

40. 发明授权

US09290136B2 Apparatus and method for preventing leakage of vehicle information 有权
标题翻译：防止车辆信息泄漏的装置和方法
公开(公告)号：US09290136B2
公开(公告)日：2016-03-22
申请号：US14475631
申请日：2014-09-03
申请人： ELECTRONICS AND TELECOMMUNICATIONS RESEARCH INSTITUTE
发明人： Sungho Jeon , Jeong-Han Yun , Woonyon Kim , Jungtaek Seo , Eung Ki Park
IPC分类号： B60R16/023 , H04L29/06 , H04W12/12 , H04L29/08 , H04W4/04 , H04L12/40 , B60R25/30
CPC分类号： B60R16/023 , B60R25/00 , B60R25/30 , H04L9/3228 , H04L12/6418 , H04L63/04 , H04L63/067 , H04L63/0838 , H04L63/1475 , H04L63/1491 , H04L67/12 , H04L2012/40215 , H04L2012/40273 , H04L2209/84 , H04W4/046 , H04W4/48 , H04W12/02 , H04W12/12
摘要： An apparatus and method for preventing the leakage of vehicle information in a normal communication environment by inserting fake communication data into vehicle communication traffic on a vehicle network. In the method for preventing leakage of vehicle information, a vehicle information leakage prevention apparatus connected to an in-vehicle module analyzes a vehicle communication protocol between the module and another module. It is determined whether encryption has been applied to the vehicle communication protocol, based on results of analysis of the vehicle communication protocol. A method of generating fake communication data is selected depending on whether encryption has been applied to the vehicle communication protocol. A fake communication data is generated depending on the selected method, and the generated fake communication data is transferred to a vehicle information leakage prevention apparatus connected to the other module.
摘要翻译：一种用于通过将假通信数据插入车辆网络上的车辆通信业务来防止在正常通信环境中泄漏车辆信息的装置和方法。在防止车辆信息泄漏的方法中，连接到车载模块的车辆信息泄漏防止装置分析模块与另一模块之间的车辆通信协议。基于车辆通信协议的分析结果，确定是否将加密应用于车辆通信协议。根据是否将加密应用于车辆通信协议来选择产生假通信数据的方法。根据所选择的方法产生假通信数据，并且将生成的假通信数据传送到连接到另一个模块的车辆信息泄漏防止装置。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式