专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

41. 发明申请

US20090265547A1 REVOCATION OF CRYPTOGRAPHIC DIGITAL CERTIFICATES 有权
公开(公告)号：US20090265547A1
公开(公告)日：2009-10-22
申请号：US12492898
申请日：2009-06-26
申请人： Craig B. Gentry , Zulfikar Amin Ramzan , Berhard Bruhn
发明人： Craig B. Gentry , Zulfikar Amin Ramzan , Berhard Bruhn
IPC分类号： H04L9/00
CPC分类号： H04L9/3265 , H04L9/3236 , H04L63/0823 , H04L2209/38 , H04L2209/56 , H04L2209/80
摘要： Different targets (c0, N1) of a digital certificate are mapped into a “super-target” using methods allowing a certificate validity verifier (110) to compute the super-target. The certificate includes the super-target instead of the targets. Also, a certificate with multiple targets can be signed with a redactable signature by the certification authority (CA 120). When the certificate's owner provides the certificate to a verifier together with a validity proof, the owner redacts the certificate to delete unnecessary targets. A single validity proof (ci(F)) may be provided to certificate owners for a set (F) of the certificates via a multicast transmission if a multicasting group (2010) is formed to correspond to the set. A verifier (110) may decide to cache the validity proof for a set provide the cached proof to other parties. The caching decision is based on the caching priority of the set F. The priority may depend on the number of certificates in the set F, the sum of the remaining validity periods for the certificates in the set, and other factors. In the setup phase, the CA generates validation proof data structures for greater time than the maximum validity period of any certificate. Therefore, new certificates can be added to the existing data structures after the setup phase. A distributed certificate authority includes a CA and a number of Sub-CAs (2610). The Sub-CAs have secret certificate validation data, but different data are provided to different Sub-CAs for each certificate. If a Sub-CA is compromised, the Sub-CA validity proof will be withheld by the CA to alert the verifiers not to use the data from this Sub-CA. Also, the secret data are encrypted when distributed to the Sub-CAs. A decryption key (DK.j.k) for each “partition” of time is distributed to each Sub-CA at or shortly before the start of the partition. A compromised Sub-CA can be reactivated at the end of the partition because the adversary does not get the decryption keys for the future partitions.

42. 发明申请

US20090259843A1 REVOCATION OF CRYPTOGRAPHIC DIGITAL CERTIFICATES 有权
公开(公告)号：US20090259843A1
公开(公告)日：2009-10-15
申请号：US12492908
申请日：2009-06-26
申请人： Craig B. Gentry , Zulfikar Amin Ramzan , Bernhard Bruhn
发明人： Craig B. Gentry , Zulfikar Amin Ramzan , Bernhard Bruhn
IPC分类号： H04L9/00
CPC分类号： H04L9/3265 , H04L9/3236 , H04L63/0823 , H04L2209/38 , H04L2209/56 , H04L2209/80
摘要： Different targets (c0, N1) of a digital certificate are mapped into a “super-target” using methods allowing a certificate validity verifier (110) to compute the super-target. The certificate includes the super-target instead of the targets. Also, a certificate with multiple targets can be signed with a redactable signature by the certification authority (CA 120). When the certificate's owner provides the certificate to a verifier together with a validity proof, the owner redacts the certificate to delete unnecessary targets. A single validity proof (ci(F)) may be provided to certificate owners for a set (F) of the certificates via a multicast transmission if a multicasting group (2010) is formed to correspond to the set. A verifier (110) may decide to cache the validity proof for a set provide the cached proof to other parties. The caching decision is based on the caching priority of the set F. The priority may depend on the number of certificates in the set F, the sum of the remaining validity periods for the certificates in the set, and other factors. In the setup phase, the CA generates validation proof data structures for greater time than the maximum validity period of any certificate. Therefore, new certificates can be added to the existing data structures after the setup phase. A distributed certificate authority includes a CA and a number of Sub-CAs (2610). The Sub-CAs have secret certificate validation data, but different data are provided to different Sub-CAs for each certificate. If a Sub-CA is compromised, the Sub-CA validity proof will be withheld by the CA to alert the verifiers not to use the data from this Sub-CA. Also, the secret data are encrypted when distributed to the Sub-CAs. A decryption key (DK.j.k) for each “partition” of time is distributed to each Sub-CA at or shortly before the start of the partition. A compromised Sub-CA can be reactivated at the end of the partition because the adversary does not get the decryption keys for the future partitions.

43. 发明申请

US20090193260A1 METHOD AND APPARATUS FOR SECURE AND SMALL CREDITS FOR VERIFIABLE SERVICE PROVIDER METERING 审中-公开
公开(公告)号：US20090193260A1
公开(公告)日：2009-07-30
申请号：US12366124
申请日：2009-02-05
申请人： Craig B. Gentry , Zulfikar Amin Ramzan
发明人： Craig B. Gentry , Zulfikar Amin Ramzan
IPC分类号： H04L9/32
CPC分类号： G06Q20/12 , G06Q20/02 , G06Q20/0855 , G06Q20/26 , G06Q20/29 , G06Q20/367 , G06Q20/3678 , G06Q20/3821 , G06Q40/02 , G06Q40/12
摘要： A method and apparatus for obtaining access to services of service providers. In one embodiment, the method comprises requesting a desired service through a foreign service provider, generating a hash tree and generating a digital signature on a root value of the hash tree, sending the digital signature and the root value to the foreign service provider, providing one or more tokens to the foreign service provider with the next packet if the foreign service provider accepts the signature and continuing to use the service while the foreign service provider accepts tokens.

44. 发明申请

US20090193000A1 METHOD AND APPARATUS FOR COMMUNICATION EFFICIENT PRIVATE INFORMATION RETRIEVAL AND OBLIVIOUS TRANSFER 失效
公开(公告)号：US20090193000A1
公开(公告)日：2009-07-30
申请号：US12365830
申请日：2009-02-04
申请人： Zulfikar Amin Ramzan , Craig B. Gentry
发明人： Zulfikar Amin Ramzan , Craig B. Gentry
IPC分类号： G06F17/30
CPC分类号： G06F7/723 , H04L9/3013 , H04L2209/12 , H04L2209/50
摘要： A method, article of manufacture and apparatus for performing private retrieval of information from a database is disclosed. In one embodiment, the method comprising obtaining an index corresponding to information to be retrieved from the database and generating a query that does not reveal the index to the database. The query is an arithmetic function of the index and a secret value, wherein the arithmetic function includes a multiplication group specified by a modulus of a random value whose order is divisible by a prime power, such that the prime power is an order of the random value. The secret value is an arithmetic function of the index that comprises a factorization into prime numbers of the modulus. The method further comprises communicating the query to the database for execution of the arithmetic function against the entirety of the database.

45. 发明申请

US20090158413A1 METHOD AND APPARATUS FOR SECURE AND SMALL CREDITS FOR VERIFIABLE SERVICE PROVIDER METERING 失效
公开(公告)号：US20090158413A1
公开(公告)日：2009-06-18
申请号：US12366125
申请日：2009-02-05
申请人： Craig B. Gentry , Zulfikar Amin Ramzan
发明人： Craig B. Gentry , Zulfikar Amin Ramzan
IPC分类号： H04L9/32
CPC分类号： G06Q20/12 , G06Q20/02 , G06Q20/0855 , G06Q20/26 , G06Q20/29 , G06Q20/367 , G06Q20/3678 , G06Q20/3821 , G06Q40/02 , G06Q40/12
摘要： A method and apparatus for obtaining access to services of service providers. In one embodiment, the method comprises requesting a desired service through a foreign service provider, generating a hash tree and generating a digital signature on a root value of the hash tree, sending the digital signature and the root value to the foreign service provider, providing one or more tokens to the foreign service provider with the next packet if the foreign service provider accepts the signature and continuing to use the service while the foreign service provider accepts tokens.

46. 发明申请

US20090175454A1 WIRELESS NETWORK HANDOFF KEY 审中-公开
标题翻译：无线网络切换键
公开(公告)号：US20090175454A1
公开(公告)日：2009-07-09
申请号：US12402343
申请日：2009-03-11
申请人： Fujio Watanabe , Craig B. Gentry , Gang Wu , Toshiro Kawahara
发明人： Fujio Watanabe , Craig B. Gentry , Gang Wu , Toshiro Kawahara
IPC分类号： H04L9/00
CPC分类号： H04L9/0836 , H04L63/0428 , H04L63/061 , H04L2209/80 , H04W12/0013 , H04W12/04 , H04W36/0011 , H04W80/02
摘要： The present invention provides a method and system for handoff in a wireless communication network. In one embodiment, a common handoff encryption key is generated by an authentication server and transmitted to a first access point and a second access point. The first access point transmits the handoff encryption key to a wireless terminal. The wireless terminal encrypts output data with the handoff encryption key. When the wireless terminal is associated with the second access point, the second access point decrypts data from the wireless terminal with the handoff encryption key. In a second embodiment, a handoff WEP key generation secret parameter is provided to a first and a second access point. Both access points generate a handoff WEP key as a function of the handoff WEP key generation secret parameter and an address of a wireless terminal. The first access point transmits the handoff WEP key to the wireless terminal. The second access point communicates data packets encrypted with the handoff WEP key with the wireless terminal.
摘要翻译：本发明提供了一种用于无线通信网络中切换的方法和系统。在一个实施例中，公共切换加密密钥由认证服务器生成并被发送到第一接入点和第二接入点。第一接入点将切换加密密钥发送到无线终端。无线终端用切换加密密钥加密输出数据。当无线终端与第二接入点相关联时，第二接入点利用切换加密密钥从无线终端解密数据。在第二实施例中，将切换WEP密钥生成秘密参数提供给第一和第二接入点。两个接入点根据切换WEP密钥生成秘密参数和无线终端的地址生成切换WEP密钥。第一接入点将切换WEP密钥发送到无线终端。第二接入点将与切换WEP密钥一起加密的数据分组与无线终端进行通信。

47. 发明授权

US08601262B2 Location privacy through IP address space scrambling 失效
标题翻译：位置隐私通过IP地址空间加扰
公开(公告)号：US08601262B2
公开(公告)日：2013-12-03
申请号：US11619068
申请日：2007-01-02
申请人： Muhammad Mukarram Bin Tariq , Craig B. Gentry , James Kempf , Ravi Jain , Toshiro Kawahara
发明人： Muhammad Mukarram Bin Tariq , Craig B. Gentry , James Kempf , Ravi Jain , Toshiro Kawahara
IPC分类号： H04L9/00
CPC分类号： H04L63/0435 , H04L45/74 , H04L61/2015 , H04L61/6068 , H04L63/0407 , H04L63/045 , H04L63/08 , H04L63/123
摘要： In a network, a router uses some secret information combined with a cryptographic process in determination of a subnet's routing prefix. Several methods are disclosed, including using an IP suffix for prefix generation and for decryption, maintaining a pool of pseudo prefixes at the router, using public key encryption and symmetric key encryption.
摘要翻译：在网络中，路由器在确定子网的路由前缀时使用与加密过程相结合的一些秘密信息。公开了几种方法，包括使用IP后缀进行前缀生成和解密，使用公钥加密和对称密钥加密在路由器上维护伪前缀池。

48. 发明授权

US07246231B2 Location privacy through IP address space scrambling 有权
标题翻译：位置隐私通过IP地址空间加扰
公开(公告)号：US07246231B2
公开(公告)日：2007-07-17
申请号：US10284739
申请日：2002-10-31
申请人： Muhammad Mukarram Bin Tariq , Craig B. Gentry , James Kempf , Ravi Jain , Toshiro Kawahara
发明人： Muhammad Mukarram Bin Tariq , Craig B. Gentry , James Kempf , Ravi Jain , Toshiro Kawahara
IPC分类号： H04L9/00
CPC分类号： H04L63/0435 , H04L45/74 , H04L61/2015 , H04L61/6068 , H04L63/0407 , H04L63/045 , H04L63/08 , H04L63/123
摘要： In a network, a router uses some secret information combined with a cryptographic process in determination of a subnet's routing prefix. Several methods are disclosed, including using an IP suffix for prefix generation and for decryption, maintaining a pool of pseudo prefixes at the router, using public key encryption and symmetric key encryption,
摘要翻译：在网络中，路由器在确定子网的路由前缀时使用与加密过程相结合的一些秘密信息。公开了几种方法，包括使用IP后缀进行前缀生成和解密，使用公钥加密和对称密钥加密在路由器上维护伪前缀池，

49. 发明申请

US20090175449A1 WIRELESS NETWORK HANDOFF KEY 审中-公开
公开(公告)号：US20090175449A1
公开(公告)日：2009-07-09
申请号：US12402363
申请日：2009-03-11
申请人： Fujio Watanabe , Craig B. Gentry , Gang Wu , Toshiro Kawahara
发明人： Fujio Watanabe , Craig B. Gentry , Gang Wu , Toshiro Kawahara
IPC分类号： H04L9/00
CPC分类号： H04L9/0836 , H04L63/0428 , H04L63/061 , H04L2209/80 , H04W12/0013 , H04W12/04 , H04W36/0011 , H04W80/02
摘要： The present invention provides a method and system for handoff in a wireless communication network. In one embodiment, a common handoff encryption key is generated by an authentication server and transmitted to a first access point and a second access point. The first access point transmits the handoff encryption key to a wireless terminal. The wireless terminal encrypts output data with the handoff encryption key. When the wireless terminal is associated with the second access point, the second access point decrypts data from the wireless terminal with the handoff encryption key. In a second embodiment, a handoff WEP key generation secret parameter is provided to a first and a second access point. Both access points generate a handoff WEP key as a function of the handoff WEP key generation secret parameter and an address of a wireless terminal. The first access point transmits the handoff WEP key to the wireless terminal. The second access point communicates data packets encrypted with the handoff WEP key with the wireless terminal.

50. 发明申请

US20090175448A1 WIRELESS NETWORK HANDOFF KEY 审中-公开
公开(公告)号：US20090175448A1
公开(公告)日：2009-07-09
申请号：US12402350
申请日：2009-03-11
申请人： Fujio Watanabe , Craig B. Gentry , Gang Wu , Toshiro Kawahara
发明人： Fujio Watanabe , Craig B. Gentry , Gang Wu , Toshiro Kawahara
IPC分类号： H04L9/00
CPC分类号： H04L9/0836 , H04L63/0428 , H04L63/061 , H04L2209/80 , H04W12/0013 , H04W12/04 , H04W36/0011 , H04W80/02
摘要： The present invention provides a method and system for handoff in a wireless communication network. In one embodiment, a common handoff encryption key is generated by an authentication server and transmitted to a first access point and a second access point. The first access point transmits the handoff encryption key to a wireless terminal. The wireless terminal encrypts output data with the handoff encryption key. When the wireless terminal is associated with the second access point, the second access point decrypts data from the wireless terminal with the handoff encryption key. In a second embodiment, a handoff WEP key generation secret parameter is provided to a first and a second access point. Both access points generate a handoff WEP key as a function of the handoff WEP key generation secret parameter and an address of a wireless terminal. The first access point transmits the handoff WEP key to the wireless terminal. The second access point communicates data packets encrypted with the handoff WEP key with the wireless terminal.

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式