专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

61. 发明申请

US20060149678A1 System and Method for Protecting Data Streams in Hardware Components 审中-公开
公开(公告)号：US20060149678A1
公开(公告)日：2006-07-06
申请号：US11276371
申请日：2006-02-27
申请人： Henrique Malvar , Paul England
发明人： Henrique Malvar , Paul England
IPC分类号： G06Q99/00
CPC分类号： H04K1/02 , G11B20/00086 , G11B20/0021 , H04N5/913 , H04N7/1675 , H04N2005/91364
摘要： A scrambling architecture protects data streams in the operating system and hardware components of a computer by scrambling the otherwise raw data prior to the data being handled by the operating system. The architecture has a scrambler implemented at either the client or the server that adds noise to the content. More specifically, the scrambler produces periodic sets of tone patterns having varying amplitudes based on a first key. The scrambler also generates a random signal based on the first key and a second key. The tone patterns and random signal are added to the content to scramble the content. The scrambled content is then passed to the filter graph (or other processing system) where the content is processed while scrambled. Any attacker attempting to siphon off the bits during processing will steal only noisy data, which is worthless for redistribution or copying purposes. After processing, the scrambled data is passed to a driver for output. The driver implements a descrambler to unscramble the content by subtracting out the random noise signal. The descrambler detects the tone patterns in the content and recovers the first key from the varying amplitudes of the tone patterns. The descrambler also receives the second key via a separate channel (e.g., a cryptographically secured path) and generates the same random signal using the recovered first key and the second key. The descrambler subtracts the tone patterns and the random signal from the scrambled content to restore the content.

62. 发明授权

US07058768B2 Memory isolation through address translation data edit control 失效
公开(公告)号：US07058768B2
公开(公告)日：2006-06-06
申请号：US10319148
申请日：2002-12-13
申请人： Bryan Mark Willman , Paul England , Marcus Peinado
发明人： Bryan Mark Willman , Paul England , Marcus Peinado
IPC分类号： G06F12/00
CPC分类号： G06F12/145
摘要： Isolated memory is implemented by controlling changes to address translation maps. Control over the maps can be exercised in such a way that no virtual address referring to an isolated page is exposed to any untrusted process. Requests to edit an entry in a map are evaluated to ensure that the edit will not cause the map to point to isolated memory. Requests to change which map is active are evaluated to ensure that the map to be activated does not point to isolated memory. Preferably, these evaluations are performed by a trusted component in a trusted environment, since isolation of the memory depends on the evaluation component not being compromised. In systems that require all memory access requests to identify their target by virtual address, preventing the address translation maps from pointing to a portion of memory effectively prevents access to that portion of memory, thereby creating an isolated memory.

63. 发明申请

US20060117169A1 Using limits on address translation to control access to an addressable entity 有权
公开(公告)号：US20060117169A1
公开(公告)日：2006-06-01
申请号：US11298033
申请日：2005-12-09
申请人： Marcus Peinado , Paul England , Bryan Willman
发明人： Marcus Peinado , Paul England , Bryan Willman
IPC分类号： G06F9/00
CPC分类号： G06F12/145
摘要： A data storage resource is identifiable by physical addresses, and optionally by a virtual address. A policy defines which resources are accessible and which resources are not accessible. A request to access a resource is allowed if access to the resource is permitted by the policy, and if carrying out the access will not cause virtual addresses to be assigned to resources to which the policy disallows access. Since resources to which access is disallowed do not have virtual addresses, certain types of access requests that identify a resource by a virtual address can be allowed without consulting the policy.

64. 发明申请

US20060095689A1 Using limits on address translation to control access to an addressable entity 有权
公开(公告)号：US20060095689A1
公开(公告)日：2006-05-04
申请号：US11299083
申请日：2005-12-09
申请人： Marcus Peinado , Paul England , Bryan Willman
发明人： Marcus Peinado , Paul England , Bryan Willman
IPC分类号： G06F12/14 , G06F12/08
CPC分类号： G06F12/145
摘要： A data storage resource is identifiable by physical addresses, and optionally by a virtual address. A policy defines which resources are accessible and which resources are not accessible. A request to access a resource is allowed if access to the resource is permitted by the policy, and if carrying out the access will not cause virtual addresses to be assigned to resources to which the policy disallows access. Since resources to which access is disallowed do not have virtual addresses, certain types of access requests that identify a resource by a virtual address can be allowed without consulting the policy.

65. 发明授权

US07039715B2 Methods and systems for a receiver to allocate bandwidth among incoming communications flows 失效
公开(公告)号：US07039715B2
公开(公告)日：2006-05-02
申请号：US10152112
申请日：2002-05-21
申请人： Paul England , Cormac E. Herley
发明人： Paul England , Cormac E. Herley
IPC分类号： G06F15/16
CPC分类号： H04L47/803 , H04L47/10 , H04L47/2416 , H04L47/2433 , H04L47/245 , H04L47/2475 , H04L47/26 , H04L47/70 , H04L47/745 , H04L47/765 , H04L47/801 , H04L47/805 , H04L47/822
摘要： Disclosed are methods and systems for a receiver to autonomously allocate bandwidth among its incoming communications flows. The incoming flows are assigned priorities. When it becomes necessary to alter the allocation of bandwidth among the flows, the receiver selects one of the lower priority flows. The receiver then causes the selected flow to delay sending acknowledgements of messages received to the senders of the messages. In most modern protocols, senders are sensitive to the time it takes to receive acknowledgements of the messages they send. When the acknowledgement time increases, the sender assumes that the receiver is becoming overloaded. The sender then slows down the rate at which it sends messages to the receiver. This lowered sending rate in turn reduces the amount of bandwidth used by the flow as it comes into the receiver. This frees up bandwidth which can then be used by higher priority flows.

66. 发明申请

US20060021064A1 Key-based secure storage 有权
标题翻译：基于密钥的安全存储
公开(公告)号：US20060021064A1
公开(公告)日：2006-01-26
申请号：US11221047
申请日：2005-09-07
申请人： Paul England , John DeTreville , Butler Lampson
发明人： Paul England , John DeTreville , Butler Lampson
IPC分类号： H04L9/32
CPC分类号： G06F9/468 , G06F9/4406 , G06F21/10 , G06F21/575 , G06F2221/2113 , H04L63/0435 , H04L63/0442 , H04L63/166
摘要： A one-way hash function is applied to a seed supplied by an application to produce a hashed seed that is used to generate the application storage key. A one-way hash function is applied to a seed supplied by a user to produce a first hashed seed that is passed to a keyed hash function, which is keyed to an identity for the user, to produce a second hashed seed. The second hashed seed is used to generate the user storage key. An operating system storage key is generated from an unhashed seed. One of the storage keys is used to encrypt the downloaded content. An access predicate attached to the content when it is downloaded is associated with the storage key to enforce certain limitations on the access of the content.
摘要翻译：单向散列函数应用于由应用程序提供的种子以产生用于生成应用程序存储密钥的散列种子。单向散列函数被应用于由用户提供的种子以产生第一散列种子，该第一散列种子被传递给键入的哈希函数，其被键入用户的身份，以产生第二散列种子。第二个散列种子用于生成用户存储密钥。从未分解的种子生成操作系统存储密钥。其中一个存储密钥用于加密下载的内容。在下载时附加到内容的访问谓词与存储密钥相关联，以对内容的访问执行某些限制。

67. 发明申请

US20050278531A1 Manifest-based trusted agent management in a trusted operating system environment 有权
公开(公告)号：US20050278531A1
公开(公告)日：2005-12-15
申请号：US11206579
申请日：2005-08-18
申请人： Paul England , Marcus Peinado , Daniel Simon , Josh Benaloh
发明人： Paul England , Marcus Peinado , Daniel Simon , Josh Benaloh
IPC分类号： G06F21/00 , H04L9/00
CPC分类号： G06F21/54 , G06F21/53 , G06F21/57
摘要： Manifest-based trusted agent management in a trusted operating system environment includes receiving a request to execute a process is received and setting up a virtual memory space for the process. Additionally, a manifest corresponding to the process is accessed, and which of a plurality of binaries can be executed in the virtual memory space is limited based on indicators, of the binaries, that are included in the manifest.

68. 发明申请

US20050207577A1 Methods and apparatus for protecting signals transmitted between a source and destination device over multiple signal lines 失效
标题翻译：用于通过多个信号线保护在源和目的地设备之间传输的信号的方法和装置
公开(公告)号：US20050207577A1
公开(公告)日：2005-09-22
申请号：US11134111
申请日：2005-05-20
申请人： Paul England , Andrew Rosen , Yacov Yacobi , Gideon Yuval
发明人： Paul England , Andrew Rosen , Yacov Yacobi , Gideon Yuval
IPC分类号： H04N5/44 , H04N7/16 , H04N7/167 , H04N7/24
CPC分类号： H04N9/641 , H04N5/765 , H04N5/775 , H04N5/913 , H04N7/163 , H04N7/1675 , H04N9/8042 , H04N21/2541 , H04N21/4122 , H04N21/4367 , H04N21/835 , H04N2005/91328 , H04N2005/91364
摘要： Methods and apparatus for protecting copyrighted information, e.g., video signals, from unauthorized use are described. Encrypted video signals are transmitted from a source device, e.g., display adapter, to a display device, e.g., monitor, over analog signal lines after the identity of the destination device is confirmed by receipt of a certificate assigned to the destination device. A session key, used for encrypting the analog signals, is generated and exchanged between the source and destination devices. The source and destination devices each include a pseudo-random number generator driven by the session key. As part of the encryption process a false video signal is generated. The false video signal and R, G, B video signals are transmitted to the display device over four lines. The lines used to transmit the R, G, B and false video signals are periodically swapped as a function of the output of the pseudo random number generator to encrypt, e.g., scramble, the video signals. To avoid having to provide an additional line between the display adapter and the display device beyond those used in conventional displays, horizontal synchronization information is combined with, e.g., modulated on, one or more of the other signals transmitted to the display. The horizontal sync line is then used to convey one of the four video signals. The display device extracts the horizontal timing information from the received video signals and decrypts the signals using the output of its pseudo random number generator to reverse the scrambling process used to encrypt the transmitted video signals.
摘要翻译：描述用于保护未经授权的使用的受版权保护的信息（例如，视频信号）的方法和装置。在通过接收到分配给目的地设备的证书来确认目的地设备的身份之后，加密的视频信号通过模拟信号线从源设备（例如，显示适配器）发送到显示设备，例如监视器。用于加密模拟信号的会话密钥在源设备和目的设备之间生成和交换。源和目的地设备每个都包括由会话密钥驱动的伪随机数发生器。作为加密处理的一部分，生成假视频信号。伪视频信号和R，G，B视频信号通过四行传输到显示设备。用于传输R，G，B和假视频信号的线路作为伪随机数发生器的输出的周期性交换，以加密（例如）加扰视频信号。为了避免在显示适配器和显示设备之间提供除了传统显示器中使用的显示适配器和显示设备之外的附加线路，水平同步信息与例如调制在传输到显示器的其它信号中的一个或多个相结合。然后，水平同步线用于传送四个视频信号中的一个。显示装置从接收到的视频信号中提取水平定时信息，并使用其伪随机数发生器的输出对信号进行解密，以反转用于加密所发送的视频信号的加扰处理。

69. 发明授权

US06948104B2 System and method for transparent electronic data transfer using error correction to facilitate bandwidth-efficient data recovery 失效
标题翻译：用于透明电子数据传输的系统和方法，使用纠错来促进带宽高效的数据恢复
公开(公告)号：US06948104B2
公开(公告)日：2005-09-20
申请号：US10183581
申请日：2002-06-26
申请人： Cormac Herley , Paul England
发明人： Cormac Herley , Paul England
IPC分类号： H04L1/18 , H03M13/39
CPC分类号： H04L1/1812
摘要： The invention disclosed herein includes a system and method for electronically transferring data through a communications connection in a transparent manner such that the data transfer does not interfere with other traffic sharing the connection. The invention transfers data using bandwidth of the connection that other traffic are not using. If other traffic desires to use the bandwidth currently being used by the invention, the invention relinquishes the bandwidth to the other traffic and retreats to avoid bandwidth contention. Although a retreat may cause gaps in the data transferred, a key aspect of the invention is that any missing data due to these gaps is recovered easily and in a bandwidth-efficient way using novel error correction and recovery.
摘要翻译：本文公开的本发明包括一种用于以透明方式通过通信连接电子传送数据的系统和方法，使得数据传输不干扰共享该连接的其他业务。本发明使用其他业务不使用的连接的带宽来传送数据。如果其他流量需要使用本发明当前使用的带宽，则本发明将带宽放弃到其他流量并撤消以避免带宽争用。尽管撤退可能导致数据传输的差距，但是本发明的一个关键方面是由于这些差距而导致的任何丢失的数据都可以通过使用新颖的纠错和恢复而以有效的方式进行恢复。

70. 发明申请

US20050171903A1 System and method for flexible micropayment of low value electronic assets 审中-公开
标题翻译：低价值电子资产灵活支付的系统和方法
公开(公告)号：US20050171903A1
公开(公告)日：2005-08-04
申请号：US11087206
申请日：2005-03-23
申请人： Yacov Yacobi , Paul England
发明人： Yacov Yacobi , Paul England
IPC分类号： G06Q20/02 , G06Q20/06 , G06Q20/10 , G06Q20/12 , G06Q20/22 , G06Q20/38 , G06F17/60
CPC分类号： G06Q20/06 , G06Q20/02 , G06Q20/102 , G06Q20/108 , G06Q20/12 , G06Q20/29 , G06Q20/3825
摘要： An electronic asset system mints a stick of electronic assets that can be spent by the user with multiple vendors. Assets sticks are issued anonymously or non-anonymously in a way without requiring dedication to a particular vendor, hence allowing the user to spend one or more assets from the stick with different vendors. The auditor randomly audit samples of the spent assets to detect whether the assets have been fraudulently used. The electronic asset system employs tamper-resistant electronic wallets constructed as dedicated hardware devices, or as devices with secure-processor architecture. The electronic asset system also facilitates handling of electronic coupons in a manner that enforces compliance between the user and the vendor. The user and vendor each maintain a stick of corresponding coupons with pointers to the most recent and oldest coupons available for expenditure. When a coupon is used or granted, the user and vendor both update the appropriate pointer to their respective sticks and then exchange signed data describing placement of the pointer to verify a correspondence between the referenced coupons.
摘要翻译：电子资产系统创建了可以由用户花费多个供应商的电子资产。资产支票以匿名方式或非匿名方式发行，而不需要专门为特定供应商提供服务，因此允许用户从不同的供应商处购买一个或多个资产。审计人员随机审查已用资产的样本，以检测资产是否被欺诈性使用。电子资产系统采用构建为专用硬件设备的抗篡改电子钱包，或采用具有安全处理器架构的设备。电子资产系统还可以以强制用户和供应商之间的合规性的方式处理电子优惠券。用户和供应商每个都保持一根相应的优惠券，指向最近和最旧的可用于支出的优惠券。当使用或授予优惠券时，用户和供应商都将适当的指针更新到它们各自的棒，然后交换签署的数据描述指针的放置以验证所引用的优惠券之间的对应关系。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式