专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

51. 发明授权

US08844005B2 Authentication based on user behavior 有权
标题翻译：基于用户行为的认证
公开(公告)号：US08844005B2
公开(公告)日：2014-09-23
申请号：US12270208
申请日：2008-11-13
申请人： Bjorn Markus Jakobsson , Jessica N. Staddon , Philippe J. P. Golle , Richard Chow
发明人： Bjorn Markus Jakobsson , Jessica N. Staddon , Philippe J. P. Golle , Richard Chow
IPC分类号： H04L9/32 , G06F21/31
CPC分类号： G06F21/316
摘要： One embodiment of the present invention provides a system for authenticating a user. During operation, the system records user behavior history at one or more devices associated with the user. The system then extracts user information associated with a place and/or an activity from the recorded user behavior history. The system further generates one or more challenges based on the extracted user information, thereby facilitating the verification of the user's identity.
摘要翻译：本发明的一个实施例提供了一种用于认证用户的系统。在操作期间，系统在与用户相关联的一个或多个设备上记录用户行为历史。系统然后从记录的用户行为历史中提取与地点和/或活动相关联的用户信息。该系统还基于所提取的用户信息进一步产生一个或多个挑战，从而便于验证用户的身份。

52. 发明申请

US20140130126A1 SYSTEMS AND METHODS FOR AUTOMATICALLY IDENTIFYING AND REMOVING WEAK STIMULI USED IN STIMULUS-BASED AUTHENTICATION 有权
标题翻译：用于自动识别和去除基于STIMULUS的认证中使用的弱刺激的系统和方法
公开(公告)号：US20140130126A1
公开(公告)日：2014-05-08
申请号：US14035817
申请日：2013-09-24
申请人： Bjorn Markus Jakobsson
发明人： Bjorn Markus Jakobsson
IPC分类号： H04L29/06
CPC分类号： H04L63/08 , G06F21/36 , G06F21/46 , G06F2221/2133 , H04L2463/144
摘要： Systems and methods for identifying a weak stimulus in a stimulus-based authentication system is provided. Counters are associated with each stimulus used in the authentication and a first counter is incremented when the stimulus is used in an authentication session and a second counter is incremented when a successful event occurs with respect to the stimulus during the authentication session, but the authentication session ultimately fails. A ratio of the second counter and the first counter is compared to a threshold and the stimulus is identified as weak when the ratio exceeds the threshold. The stimulus may then be removed and no longer be used in the stimulus-based authentication system.
摘要翻译：提供了用于识别基于刺激的认证系统中的弱刺激的系统和方法。计数器与认证中使用的每个刺激相关联，并且当在认证会话中使用刺激时第一计数器递增，并且当在认证会话期间相对于刺激发生成功事件时第二计数器递增，但认证会话最终失败。将第二计数器和第一计数器的比率与阈值进行比较，并且当比率超过阈值时，将刺激识别为弱。然后可以去除刺激并且不再在基于刺激的认证系统中使用刺激。

53. 发明授权

US08458041B1 Method, medium, and system for reducing fraud by increasing guilt during a purchase transaction 有权
标题翻译：用于通过在购买交易中增加内疚来减少欺诈的方法，媒介和系统
公开(公告)号：US08458041B1
公开(公告)日：2013-06-04
申请号：US13099981
申请日：2011-05-03
申请人： Bjorn Markus Jakobsson
发明人： Bjorn Markus Jakobsson
IPC分类号： G06Q30/00
CPC分类号： G06Q20/4014 , G06Q20/40145 , G06Q30/06
摘要： Techniques for reducing fraud are disclosed. A transaction request is received from a user to perform a transaction using an account. In one approach, a source icon is displayed prior to executing the request. The source icon includes a graphical representation of an owner of the account. In another approach, at least one of a photograph and a voice of the user is recorded prior to executing the request. In a third approach, the user is informed that at least one of a photograph, a voice print, and location data will be taken prior to executing the transaction request.
摘要翻译：披露了减少欺诈的技术。从用户接收到交易请求，以使用帐户执行交易。在一种方法中，在执行请求之前显示源图标。源图标包括帐户所有者的图形表示。在另一种方法中，在执行请求之前记录用户的照片和语音中的至少一个。在第三种方法中，通知用户在执行交易请求之前将拍摄照片，语音打印和位置数据中的至少一个。

54. 发明授权

US08307407B2 Selectable captchas 有权
标题翻译：可选择的验证码
公开(公告)号：US08307407B2
公开(公告)日：2012-11-06
申请号：US12045917
申请日：2008-03-11
申请人： Bjorn Markus Jakobsson , Philippe J. P. Golle , Richard Chow
发明人： Bjorn Markus Jakobsson , Philippe J. P. Golle , Richard Chow
IPC分类号： G06F7/04 , G06F17/30
CPC分类号： G06F21/31
摘要： A system for displaying a set of selectable CAPTCHAs produces a first set of CAPTCHAs whose images are based at least partially on an alphanumeric sequence, where a respective CAPTCHA in the first set is associated with a CAPTCHA property. The system also produces a second set of CAPTCHAs whose images are based at least partially on an alphanumeric sequence, where a respective CAPTCHA in the second set is not associated with a CAPTCHA property. Next, the system displays the first and second sets of CAPTCHAs. Finally, the system makes respective CAPTCHAs in the first and second sets of CAPTCHAs selectable, thereby allowing a user to pass a CAPTCHA challenge by distinguishing the first set of CAPTCHAs from the second set of CAPTCHAs without typing the words associated with the images.
摘要翻译：用于显示一组可选CAPTCHA的系统产生第一组CAPTCHA，其图像至少部分地基于字母数字序列，其中第一组中的相应CAPTCHA与CAPTCHA属性相关联。该系统还产生第二组CAPTCHA，其图像至少部分地基于字母数字序列，其中第二组中的相应CAPTCHA与CAPTCHA属性不相关联。接下来，系统显示第一组和第二组CAPTCH。最后，系统使CAPTCHAs的第一组CAPTCHA和第二组CAPTCHAs中的相应CAPTCH可选择，从而允许用户通过将CAPTCHA的第一组与第二组CAPTCHAs区分开来而不输入与图像相关联的单词来传递CAPTCHA挑战。

55. 发明授权

US08286225B2 Method and apparatus for detecting cyber threats 有权
标题翻译：检测网络威胁的方法和装置
公开(公告)号：US08286225B2
公开(公告)日：2012-10-09
申请号：US12537796
申请日：2009-08-07
申请人： Bjorn Markus Jakobsson
发明人： Bjorn Markus Jakobsson
IPC分类号： G06F7/04
CPC分类号： H04L63/1466 , H04L63/168 , H04L67/02 , H04L67/2852 , H04L67/2857
摘要： A method and apparatus for detecting cyber threats using reinforced cookies, which include HTTP cookies, history cookies, cache cookies and/or other types. A history cookie comprises an entry for a particular web page in a browser's navigation history. A cache cookie comprises an entry for a particular object (e.g., an image file) within a browser's cache. Upon a client's first visit to a web server, an identifier record is generated comprising data such as a user ID, a client device ID, an age (e.g., a counter), a cookie type, an authentication field, etc. From the unique identifier, one or more types of reinforced cookies are generated and stored with the client browser. On a subsequent visit, the client's cookie configuration is examined to determine whether the client may be the perpetrator or victim of a cyber attack. Cookies may be updated or replaced on some or all visits.
摘要翻译：一种用于使用加强的Cookie检测网络威胁的方法和装置，其包括HTTP cookie，历史cookie，缓存cookie和/或其他类型。历史cookie包括浏览器的导航历史中特定网页的条目。缓存cookie包括用于浏览器缓存内的特定对象（例如，图像文件）的条目。在客户端首次访问Web服务器时，生成包括诸如用户ID，客户端设备ID，年龄（例如，计数器），cookie类型，认证字段等的数据的标识符记录。从唯一的标识符，生成一个或多个类型的加强型Cookie，并与客户端浏览器一起存储。在随后的访问中，会检查客户端的cookie配置，以确定客户端是否可能是网络攻击的肇事者或受害者。 Cookie可能会在某些或所有访问时更新或更换。

56. 发明申请

US20110041180A1 AUDITING A DEVICE 有权
标题翻译：审查一个设备
公开(公告)号：US20110041180A1
公开(公告)日：2011-02-17
申请号：US12580891
申请日：2009-10-16
申请人： Bjorn Markus Jakobsson , Karl-Anders R. Johansson
发明人： Bjorn Markus Jakobsson , Karl-Anders R. Johansson
IPC分类号： G06F12/14
CPC分类号： G06F21/566 , G06F21/56
摘要： Auditing a device is disclosed. One or more hardware parameters that correspond to a hardware configuration is received. A sequence of modifications to the physical memory is performed. Results are provided to a verifier. Optionally, once it is determined that no evasive software is active in the physical memory, a scan is performed.
摘要翻译：公开了审计设备。接收与硬件配置对应的一个或多个硬件参数。执行对物理存储器的一系列修改。结果提供给验证者。可选地，一旦确定物理存储器中没有回避软件是活动的，则执行扫描。

57. 发明申请

US20110041178A1 AUDITING A DEVICE 有权
标题翻译：审查一个设备
公开(公告)号：US20110041178A1
公开(公告)日：2011-02-17
申请号：US12714547
申请日：2010-03-01
申请人： Bjorn Markus Jakobsson , Karl-Anders R. Johansson
发明人： Bjorn Markus Jakobsson , Karl-Anders R. Johansson
IPC分类号： G06F21/00
CPC分类号： G06F21/56 , G06F21/566 , G06F21/57 , H04W12/12
摘要： The auditing of a device that includes a physical memory is disclosed. One or more hardware parameters that correspond to a hardware configuration is received. Initialization information is also received. The physical memory is selectively read and at least one result is determined. The result is provided to a verifier.
摘要翻译：公开了对包括物理存储器的设备的审计。接收与硬件配置对应的一个或多个硬件参数。也收到初始化信息。选择性地读取物理存储器，并确定至少一个结果。结果提供给验证者。

58. 发明申请

US20100153275A1 METHOD AND APPARATUS FOR THROTTLING ACCESS USING SMALL PAYMENTS 审中-公开
标题翻译：使用小额支付进行转盘的方法和装置
公开(公告)号：US20100153275A1
公开(公告)日：2010-06-17
申请号：US12336004
申请日：2008-12-16
申请人： Bjorn Markus Jakobsson , Christopher Soghoian
发明人： Bjorn Markus Jakobsson , Christopher Soghoian
IPC分类号： G06Q20/00 , H04L9/00
CPC分类号： H04L9/32 , G06Q20/04 , G06Q20/10 , G06Q20/38 , G06Q20/3829 , H04L2209/56
摘要： One embodiment of the present invention provides a system for controlling access to resources using small payments. The system receives a request from an entity to access a resource. In response, the system requests the entity to submit information about the entity's account with a financial service provider (FSP). The system then transfers a fund to the entity's account and sends a message through the FSP to the entity with the fund transfer. The system receives from the entity an input corresponding to the message and determines that a first condition is met based on the received input and the message. As a result, the system grants the entity access to the resource.
摘要翻译：本发明的一个实施例提供一种用于使用小付款来控制对资源的访问的系统。系统从实体接收到访问资源的请求。作为回应，系统请求实体向金融服务提供商（FSP）提交关于实体账户的信息。然后，系统将资金转入实体账户，并通过FSP向基金转移的实体发送消息。系统从实体接收与该消息对应的输入，并根据接收的输入和消息确定满足第一条件。因此，系统授予实体访问资源的权限。

59. 发明申请

US20100125906A1 RESETTING A FORGOTTEN PASSWORD USING THE PASSWORD ITSELF AS AUTHENTICATION 审中-公开
标题翻译：使用密码重新填写密码，以作为认证
公开(公告)号：US20100125906A1
公开(公告)日：2010-05-20
申请号：US12273789
申请日：2008-11-19
申请人： Philippe J.P. Golle , Bjorn Markus Jakobsson , Richard Chow
发明人： Philippe J.P. Golle , Bjorn Markus Jakobsson , Richard Chow
IPC分类号： H04L9/32
CPC分类号： H04L9/3271 , G06F21/31 , G06F2221/2131 , H04L9/0891 , H04L9/3226
摘要： One embodiment of the present invention provides a system for resetting a user's forgotten password. During operation, the system receives a user's request for resetting the user's forgotten password and derives one or more challenges from the user's forgotten password. The system then presents the derived challenges to the user and receives a response from the user to the challenges. The system further compares the user's response to the one or more challenges with the user's forgotten password, thereby facilitating password resetting.
摘要翻译：本发明的一个实施例提供了一种用于重置用户忘记密码的系统。在操作期间，系统收到用户重置用户忘记密码的请求，并从用户忘记的密码中导出一个或多个挑战。然后系统向用户呈现衍生的挑战，并接收用户对挑战的响应。该系统进一步将用户对一个或多个挑战的响应与用户忘记的密码进行比较，从而便于密码重置。

60. 发明授权

US07644274B1 Methods of protecting against spam electronic mail 有权
标题翻译：防止垃圾电子邮件的方法
公开(公告)号：US07644274B1
公开(公告)日：2010-01-05
申请号：US09538663
申请日：2000-03-30
申请人： Bjorn Markus Jakobsson , Joy Colette Mueller
发明人： Bjorn Markus Jakobsson , Joy Colette Mueller
IPC分类号： H04L9/32
CPC分类号： H04L63/126 , H04L51/12
摘要： Methods of preventing spam email in an email system include determining whether a sender of email to a receiver of email has paid a required setup price or cost to become a registered sender of email to the receiver. If it is determined that the sender has not paid the required setup cost, then the receiver can reject the sender's email to thereby eliminate the receipt of unwanted spam messages. In order to qualify as a registered sender, the sender undergoes a qualification scheme wherein it pays the required cost, which may be for example monetary or computationally related, and is assigned an encrypted key by the receiver which allows the sender to send to the receiver email authenticated using the unique key associated with the sender and receiver. The receiver has the option of accepting or rejecting email from a sender in this fashion and can change the required setup cost or requirement at any time to ensure that the sender does not try to corrupt the email system once registered.
摘要翻译：在电子邮件系统中防止垃圾邮件的方法包括确定电子邮件的发送者是否已经向电子邮件的接收者发送了要求的设置价格或成本，以成为向接收者发送电子邮件的注册发送者。如果确定发件人尚未支付所需的设置费用，则接收方可以拒绝发件人的电子邮件，从而消除收到不需要的垃圾邮件。为了符合注册发件人的资格，发件人经历资格计划，其中支付所需的成本，例如货币或计算相关的，并由接收者分配加密的密钥，允许发送方发送给接收者使用与发送方和接收方相关联的唯一密钥对电子邮件进行身份验证。收件人可以选择以这种方式接收或拒绝来自发件人的电子邮件，并可以随时更改所需的设置费用或要求，以确保发件人一旦注册后不会尝试破坏电子邮件系统。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式