专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

41. 发明授权

US07841010B2 Software or other information integrity verification using variable block length and selection 有权
标题翻译：使用可变块长度和选择的软件或其他信息完整性验证
公开(公告)号：US07841010B2
公开(公告)日：2010-11-23
申请号：US11651359
申请日：2007-01-08
申请人： Julien Lerouge , Pierre Betouin , Gianpaolo Fasoli , Augustin J. Farrugia
发明人： Julien Lerouge , Pierre Betouin , Gianpaolo Fasoli , Augustin J. Farrugia
IPC分类号： G06F7/04 , G06F17/30 , H04N7/16
CPC分类号： G06F21/64
摘要： An integrity verification process and associated apparatus to detect tampering or other alterations to computer code (software) or other computer files, and especially useful to detect tampering with code by hackers who might try to plant their own malicious code in the software. To make the verification process more robust versus hackers, each e.g., object code file to be protected is first selected using some sort of rule, then partitioned into variable length blocks or portions, the lengths varying in an unpredictable manner. Each portion has its checksum or hash value computed. An accompanying verification file is created which includes a vector for each portion including the portion's start address in memory, length, and the computed checksum or hash value. When the code is later to be run (executed) the verification file is conventionally read and each portion is verified by computing its checksum or hash value using the same algorithm as before, and comparing that to the value in the associated verification file vector. Lack of a match in the two values indicates tampering, so execution of the code can be halted.
摘要翻译：完整性验证过程和相关联的设备，用于检测对计算机代码（软件）或其他计算机文件的篡改或其他更改，并且特别有用于检测骇客可能尝试在软件中种植自己的恶意代码的篡改代码。为了使验证过程比黑客更健壮，每个例如待保护的目标代码文件首先使用某种规则来选择，然后被分割成可变长度的块或部分，长度以不可预测的方式变化。每个部分都有其计算的校验和或散列值。创建伴随的验证文件，其中包括每个部分的向量，包括部分在内存中的起始地址，长度以及计算的校验和或哈希值。当代码稍后运行（执行）时，常规地读取验证文件，并且通过使用与之前相同的算法计算其校验和或散列值来验证每个部分，并将其与相关联的验证文件向量中的值进行比较。两个值中缺少匹配表示篡改，因此可以停止执行代码。

42. 发明申请

US20090307657A1 SYSTEM AND METHOD FOR ARRAY OBFUSCATION 有权
标题翻译：系统和方法进行ARRAY OBFUSCATION
公开(公告)号：US20090307657A1
公开(公告)日：2009-12-10
申请号：US12135032
申请日：2008-06-06
申请人： Augustin J. Farrugia , Julien Lerouge , Tanya Michelle Lattner , Ginger M. Myles , Gianpaolo Fasoli
发明人： Augustin J. Farrugia , Julien Lerouge , Tanya Michelle Lattner , Ginger M. Myles , Gianpaolo Fasoli
IPC分类号： G06F9/44
CPC分类号： G06F21/6209 , G06F21/10 , G06F21/6218 , G06F2221/2107
摘要： Disclosed herein are systems, methods, and computer readable-media for obfuscating array contents in a first array, the method comprising dividing the first array into a plurality of secondary arrays having a combined total size equal to or greater than the first array, expanding each respective array in the plurality of the secondary arrays by a respective multiple M to generate a plurality of expanded arrays, and arranging data elements within each of the plurality of expanded arrays such that a data element located at an index I in a respective secondary array is located at an index I*M, wherein M is the respective multiple M in an associated expanded array, wherein data in the first array is obfuscated in the plurality of expanded arrays. One aspect further splits one or more of the secondary arrays by dividing individual data elements in a plurality of sub-arrays. The split sub-arrays may contain more data elements than the respective secondary array. The principles herein may be applied to single dimensional or multi-dimensional arrays. The obfuscated array contents may be accessed via an index to the first array which is translated to retrieve data elements stored in the plurality of expanded arrays.
摘要翻译：本文公开了用于在第一阵列中模糊阵列内容的系统，方法和计算机可读介质，所述方法包括将第一阵列划分成具有等于或大于第一阵列的组合总大小的多个次阵列，通过相应的多个M在多个次级阵列中的相应阵列以生成多个扩展阵列，并且在多个扩展阵列中的每一个内布置数据元素，使得位于相应次级阵列中的索引I处的数据元素是位于索引I * M处，其中M是相关联的扩展阵列中的相应多个M，其中第一阵列中的数据在多个扩展阵列中被模糊化。一个方面通过划分多个子阵列中的各个数据元素来进一步分割一个或多个次级阵列。分割子阵列可能包含比相应的辅助阵列更多的数据元素。这里的原理可以应用于单维或多维阵列。混淆的阵列内容可以经由第一数组的索引访问，该索引被转换以检索存储在多个扩展阵列中的数据元素。

43. 发明授权

US09424049B2 Data protection for opaque data structures 有权
标题翻译：不透明数据结构的数据保护
公开(公告)号：US09424049B2
公开(公告)日：2016-08-23
申请号：US13615974
申请日：2012-09-14
申请人： Augustin J. Farrugia , Daniel F. Reynaud , Gianpaolo Fasoli , Jonathan Gregory McLachlan , Julien Lerouge
发明人： Augustin J. Farrugia , Daniel F. Reynaud , Gianpaolo Fasoli , Jonathan Gregory McLachlan , Julien Lerouge
IPC分类号： G06F9/54 , G06F9/44 , G06F21/14 , G06F21/52
CPC分类号： G06F9/4423 , G06F9/4482 , G06F21/14 , G06F21/52
摘要： Methods, media and systems that use an encoded opaque pointer in an API between a client process and a library process. An encoded opaque pointer, in one embodiment, can be received by the library process from the client process, and the library process can decode the opaque pointer to obtain an address in memory containing a data structure pointed to by the opaque pointer. The library process can operate on the data structure to create a revised or processed data structure, stored in the same or different address in heap memory or stack memory, and the library process can encode and return a new opaque pointer, for the processed data structure, to the client process.
摘要翻译：在客户端进程和库进程之间的API中使用编码的不透明指针的方法，介质和系统。在一个实施例中，编码的不透明指针可以由库进程从客户端进程接收，并且库进程可以对不透明指针进行解码以获得包含由不透明指针指向的数据结构的存储器中的地址。库过程可以对数据结构进行操作以创建存储在堆存储器或堆栈存储器中的相同或不同地址中的修改或处理的数据结构，并且库过程可以编码并返回新的不透明指针，用于处理的数据结构，到客户端进程。

44. 发明申请

US20130067244A1 Use of Media Storage Structure with Multiple Pieces of Content in a Content-Distribution System 审中-公开
公开(公告)号：US20130067244A1
公开(公告)日：2013-03-14
申请号：US13612780
申请日：2012-09-12
申请人： Augustin J. Farrugia , Thomas Dowdy , Gianpaolo Fasoli
发明人： Augustin J. Farrugia , Thomas Dowdy , Gianpaolo Fasoli
IPC分类号： G06F12/14
CPC分类号： G06Q20/1235 , G06F21/10 , G06F21/6218 , G06Q2220/12 , H04N21/00
摘要： A method for distributing content. The method distributes a single media storage structure to a device (e.g., a computer, portable player, etc.). The media storage structure includes first and second pieces of encrypted content. Based on whether the device is allowed to access the first piece of content, the second piece of content, or both, the method provides the device with a set of keys for decrypting the pieces of the content that the device is able to access. The provided set of keys might include one or more keys for decrypting only one of the two encrypted pieces of content. Alternatively, it might include one or more keys for decrypting both encrypted pieces of content. For instance, the selected set of keys might include a first key for decrypting the first encrypted piece and a second key for decrypting the second encrypted piece.

45. 发明申请

US20130066785A1 Use of Media Storage Structure with Multiple Pieces of Content in a Content-Distribution System 审中-公开
标题翻译：在内容分发系统中使用具有多个内容的媒体存储结构
公开(公告)号：US20130066785A1
公开(公告)日：2013-03-14
申请号：US13612766
申请日：2012-09-12
申请人： Augustin J. Farrugia , Thomas Dowdy , Gianpaolo Fasoli
发明人： Augustin J. Farrugia , Thomas Dowdy , Gianpaolo Fasoli
IPC分类号： G06Q99/00 , G06F21/00
CPC分类号： G06Q20/1235 , G06F21/10 , G06F21/6218 , G06Q2220/12 , H04N21/00
摘要： A method for distributing content. The method distributes a single media storage structure to a device (e.g., a computer, portable player, etc.). The media storage structure includes first and second pieces of encrypted content. Based on whether the device is allowed to access the first piece of content, the second piece of content, or both, the method provides the device with a set of keys for decrypting the pieces of the content that the device is able to access. The provided set of keys might include one or more keys for decrypting only one of the two encrypted pieces of content. Alternatively, it might include one or more keys for decrypting both encrypted pieces of content. For instance, the selected set of keys might include a first key for decrypting the first encrypted piece and a second key for decrypting the second encrypted piece.
摘要翻译：一种分发内容的方法。该方法将单个媒体存储结构分配到设备（例如，计算机，便携式播放器等）。媒体存储结构包括第一和第二片加密内容。基于该设备是允许访问第一条内容，第二条内容还是两者，该方法向设备提供一组密钥，用于解密设备能够访问的内容片段。所提供的密钥集可以包括用于仅解密两个加密的内容中的一个的一个或多个密钥。或者，它可以包括用于解密加密的内容片段的一个或多个密钥。例如，所选择的密钥集合可以包括用于解密第一加密片段的第一密钥和用于解密第二加密片段的第二密钥。

46. 发明申请

US20120281828A1 PROTECTION OF AUDIO OR VIDEO DATA IN A PLAYBACK DEVICE 有权
标题翻译：在播放设备中保护音频或视频数据
公开(公告)号：US20120281828A1
公开(公告)日：2012-11-08
申请号：US13554889
申请日：2012-07-20
申请人： Julien LEROUGE , Gianpaolo Fasoli , Augustin J. Farrugia
发明人： Julien LEROUGE , Gianpaolo Fasoli , Augustin J. Farrugia
IPC分类号： H04L9/00
CPC分类号： H04N7/163 , H04N5/913 , H04N7/1675 , H04N21/41407 , H04N21/4325 , H04N21/4398 , H04N21/4402 , H04N21/4408 , H04N2005/91364
摘要： Method and apparatus to prevent hacking of encrypted audio or video content during playback. Hackers, using a debugging attachment or other tools, can illicitly access encrypted data in memory in a playback device when the data is decrypted during playback and momentarily stored in digital form. This hacking is defeated here by methodically “poisoning” the encrypted data so that it is no longer playable by a standard decoder. The poisoning involves deliberate alteration of certain bit values. On playback, the player invokes a special secure routine that provides correction of the poisoned bit values, for successful playback.
摘要翻译：播放期间防止加密音频或视频内容黑客入侵的方法和装置。使用调试附件或其他工具的黑客可以在播放过程中解密数据并立即以数字形式存储时非法访问播放设备中的加密数据。这个黑客在这里通过有条不紊地中毒加密的数据，使其不再能被标准的解码器播放而被击败。中毒涉及故意改变某些位值。在播放时，播放器调用特殊的安全程序，提供中毒位值的校正，以便成功播放。

47. 发明申请

US20120095877A1 APPLICATION USAGE POLICY ENFORCEMENT 审中-公开
标题翻译：申请使用政策执行
公开(公告)号：US20120095877A1
公开(公告)日：2012-04-19
申请号：US12907915
申请日：2010-10-19
申请人： Jean-Pierre Ciudad , Augustin J. Farrugia , David M'Raihi , Bertrand Mollinier Toublet , Gianpaolo Fasoli , Nicholas T. Sullivan
发明人： Jean-Pierre Ciudad , Augustin J. Farrugia , David M'Raihi , Bertrand Mollinier Toublet , Gianpaolo Fasoli , Nicholas T. Sullivan
IPC分类号： H04L9/32 , G06F7/04 , G06Q30/00
CPC分类号： G06F21/105 , G06Q30/0601 , G06Q30/0641
摘要： Disclosed herein are systems, methods, and non-transitory computer-readable media for enforcing application usage policies. As part of an application purchase transaction, the application distributor creates a unique proof of purchase receipt. This receipt can be bundled with the application and delivered to the purchaser. Each machine can maintain an authorization file that lists the users authorized to use applications on that machine. A system configured to practice the method verifies that a user is authorized to use an application on a machine based on an application proof of purchase receipt and the authorization file. If the application proof of purchase receipt and the authorization file are both valid, the system checks if the user account identifier in the receipt is contained in the authorization file. If so, the user can be considered authorized to use the application on the machine.
摘要翻译：本文公开了用于实施应用使用策略的系统，方法和非暂时性计算机可读介质。作为应用程序购买交易的一部分，应用经销商创建了购买收据的独特证明。该收据可以与应用程序捆绑并交付给买方。每个机器可以维护一个授权文件，其中列出了授权在该机器上使用应用程序的用户。配置为执行该方法的系统基于购买收据的应用证明和授权文件验证用户被授权在机器上使用应用程序。如果采购凭证的应用证明和授权文件都有效，系统将检查收据中的用户帐号标识是否包含在授权文件中。如果是这样，用户可以被认为有权在机器上使用应用程序。

48. 发明申请

US20090037725A1 CLIENT-SERVER OPAQUE TOKEN PASSING APPARATUS AND METHOD 有权
标题翻译：客户服务器OPAQUE TOKEN PASSING APPARATUS和方法
公开(公告)号：US20090037725A1
公开(公告)日：2009-02-05
申请号：US12169496
申请日：2008-07-08
申请人： Augustin J. Farrugia , Gianpaolo Fasoli , Jean-Francois Riendeau , Michael L. H. Brouwer , Justin Henzie
发明人： Augustin J. Farrugia , Gianpaolo Fasoli , Jean-Francois Riendeau , Michael L. H. Brouwer , Justin Henzie
IPC分类号： H04L9/06
CPC分类号： H04L63/0428 , H04L9/3234 , H04L9/3263 , H04L9/3271 , H04L63/0823 , H04L63/123 , H04L2209/56
摘要： In the computer client-server context, typically used in the Internet for communicating between a central server and user computers (clients), a method is provided for token passing which enhances security for client-server communications. The token passing is opaque, that is tokens as generated by the client and server are different and can be generated only by one or the other but can be verified by the other. This approach allows the server to remain stateless, since all state information is maintained at the client side. This operates to authenticate the client to the server and vice versa to defeat hacking attacks, that is, penetrations intended to obtain confidential information. The token as passed includes encrypted values including encrypted random numbers generated separately by the client and server, and authentication values based on the random numbers and other verification data generated using cryptographic techniques.
摘要翻译：在计算机客户端 - 服务器上下文中，通常在因特网中用于在中央服务器和用户计算机（客户端）之间进行通信，提供了用于令牌传递的方法，其增强了客户机 - 服务器通信的安全性。令牌传递是不透明的，即客户端和服务器生成的令牌是不同的，只能由一个或另一个生成，但可以由另一个验证。这种方法允许服务器保持无状态，因为所有状态信息都保留在客户端。这样做可以将客户端验证到服务器，反之亦然，以打败黑客攻击，即用于获取机密信息的渗透。传递的令牌包括加密值，包括由客户端和服务器单独生成的加密随机数，以及基于使用加密技术生成的随机数和其他验证数据的认证值。

49. 发明申请

US20080279372A1 Secure distribution of content using decryption keys 有权
标题翻译：使用解密密钥安全地分发内容
公开(公告)号：US20080279372A1
公开(公告)日：2008-11-13
申请号：US11800902
申请日：2007-05-07
申请人： Augustin J. Farrugia , Gianpaolo Fasoli , Jean-Francios Riendeau , Rod Schultz
发明人： Augustin J. Farrugia , Gianpaolo Fasoli , Jean-Francios Riendeau , Rod Schultz
IPC分类号： H04L9/16
CPC分类号： H04L63/0457 , H04L9/14 , H04L63/068 , H04L2209/603 , H04L2463/101
摘要： For digital rights management (DRM) of e.g. digitally delivered music or video, a technique to make the decryption keys more secure. The technique fragments a message (song or video or other) into a number of portions, and uses a different decryption key for each portion. Each of the various keys is a function of the preceding key, in one version. In another version, each key is a function of a seed value and of the particular portion of the material with which the key is associated.
摘要翻译：对于例如数字版权管理（DRM）数字传输的音乐或视频，使解密密钥更安全的技术。该技术将消息（歌曲或视频或其他）分割成多个部分，并且对于每个部分使用不同的解密密钥。在一个版本中，各个键中的每一个都是前一个键的功能。在另一个版本中，每个键是种子值和与键相关联的材料的特定部分的函数。

50. 发明申请

US20080168564A1 Software or other information integrity verification using variable block length and selection 有权
标题翻译：使用可变块长度和选择的软件或其他信息完整性验证
公开(公告)号：US20080168564A1
公开(公告)日：2008-07-10
申请号：US11651359
申请日：2007-01-08
申请人： Julien Lerouge , Pierre Betouin , Gianpaolo Fasoli , Augustin J. Farrugia
发明人： Julien Lerouge , Pierre Betouin , Gianpaolo Fasoli , Augustin J. Farrugia
IPC分类号： G06F12/14
CPC分类号： G06F21/64
摘要： An integrity verification process and associated apparatus to detect tampering or other alterations to computer code (software) or other computer files, and especially useful to detect tampering with code by hackers who might try to plant their own malicious code in the software. To make the verification process more robust versus hackers, each e.g., object code file to be protected is first selected using some sort of rule, then partitioned into variable length blocks or portions, the lengths varying in an unpredictable manner. Each portion has its checksum or hash value computed. An accompanying verification file is created which includes a vector for each portion including the portion's start address in memory, length, and the computed checksum or hash value. When the code is later to be run (executed) the verification file is conventionally read and each portion is verified by computing its checksum or hash value using the same algorithm as before, and comparing that to the value in the associated verification file vector. Lack of a match in the two values indicates tampering, so execution of the code can be halted.
摘要翻译：完整性验证过程和相关联的设备，用于检测对计算机代码（软件）或其他计算机文件的篡改或其他更改，并且特别有用于检测骇客可能尝试在软件中种植自己的恶意代码的篡改代码。为了使验证过程比黑客更健壮，每个例如待保护的目标代码文件首先使用某种规则来选择，然后被分割成可变长度的块或部分，长度以不可预测的方式变化。每个部分都有其计算的校验和或散列值。创建伴随的验证文件，其中包括每个部分的向量，包括部分在内存中的起始地址，长度以及计算的校验和或哈希值。当代码稍后运行（执行）时，常规地读取验证文件，并且通过使用与之前相同的算法计算其校验和或散列值来验证每个部分，并将其与相关联的验证文件向量中的值进行比较。两个值中缺少匹配表示篡改，因此可以停止执行代码。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式