专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

81. 发明授权

US08635456B2 Remote secure authorization 有权
标题翻译：远程安全授权
公开(公告)号：US08635456B2
公开(公告)日：2014-01-21
申请号：US12890023
申请日：2010-09-24
申请人： Anthony C. Fascenda
发明人： Anthony C. Fascenda
IPC分类号： H04L9/32
CPC分类号： H04L9/3234 , G06Q20/02 , G06Q20/3829 , G07F7/1016 , H04L9/0822 , H04L9/0877 , H04L63/0478 , H04L63/062 , H04L2463/062 , H04W12/04
摘要： The present invention discloses a technique provisioning network cryptographic keys to a client when direct physical transfer is not feasible. In an embodiment of the invention, a client token generates a temporary key encrypted with a first secret key known only in a master token database and passes this on to an enterprise network token of a network to which service is requested. The enterprise network token then further encrypts the encrypted temporary key with a second secret key and passes that on to the master token database. Since the second secret key is also known by the master token database, the originally encrypted temporary key can be securely decoded only by a master token coupled to the master token database. The decrypted temporary key can then be re-encrypted with a key known only by the enterprise network token and the master token, and returned to the enterprise network token. This allows the enterprise network token to gain secure access to the temporary key of the client token, thereby allowing the enterprise network token to securely provision the remote client token with the appropriate enterprise Network Keys.
摘要翻译：本发明公开了当直接物理传送不可行时向客户端提供网络加密密钥的技术。在本发明的一个实施例中，客户机令牌产生用仅在主令牌数据库中已知的第一秘密密钥加密的临时密钥，并将其传递给请求了服务的网络的企业网络令牌。企业网络令牌然后用第二秘密密钥进一步加密加密的临时密钥，并将其传递到主令牌数据库。由于主令牌数据库也知道第二秘密密钥，所以原始加密的临时密钥只能由耦合到主令牌数据库的主令牌进行安全解码。然后可以用仅由企业网络令牌和主令牌所知的密钥重新加密解密的临时密钥，并返回到企业网络令牌。这允许企业网络令牌获得对客户端令牌的临时密钥的安全访问，从而允许企业网络令牌使用适当的企业网络密钥安全地提供远程客户端令牌。

82. 发明授权

US08631247B2 System and method for hardware based security 有权
标题翻译：基于硬件的安全性的系统和方法
公开(公告)号：US08631247B2
公开(公告)日：2014-01-14
申请号：US13131019
申请日：2009-11-24
申请人： Daniel O'Loughlin , Keelan Smith , Jay Scott Fuller , Joseph Ku , William Lattin , Marinus Struik , Yuri Poeluev , Matthew J. Campagna , Thomas Stiemerling
发明人： Daniel O'Loughlin , Keelan Smith , Jay Scott Fuller , Joseph Ku , William Lattin , Marinus Struik , Yuri Poeluev , Matthew J. Campagna , Thomas Stiemerling
IPC分类号： H04L9/00 , G06F21/00
CPC分类号： G06F12/1408 , G06F21/123 , G06F21/57 , G06F21/606 , G06F21/72 , G06F21/73 , G06F21/76 , G06F21/80 , G06F2212/1052 , G06F2221/2101 , H04L9/0877 , H04L9/3066 , H04L9/3252 , H04L9/3263 , H04L9/3273 , H04L2209/24
摘要： An asset management system is provided, which includes a hardware module operating as an asset control core. The asset control core generally includes a small hardware core embedded in a target system on chip that establishes a hardware-based point of trust on the silicon die. The asset control core can be used as a root of trust on a consumer device by having features that make it difficult to tamper with. The asset control core is able to generate a unique identifier for one device and participate in the tracking and provisioning of the device through a secure communication channel with an appliance. The appliance generally includes a secure module that caches and distributes provisioning data to one of many agents that connect to the asset control core, e.g. on a manufacturing line or in an after-market programming session.
摘要翻译：提供资产管理系统，其中包括作为资产控制核心运行的硬件模块。资产控制核心通常包括嵌入在目标片上系统中的小型硬件核心，其在硅芯片上建立基于硬件的信任点。资产控制核心可以作为消费者设备的信任根源，具有使其难以篡改的特征。资产控制核心能够为一个设备生成唯一的标识符，并通过与设备的安全通信通道参与设备的跟踪和配置。该设备通常包括一个安全模块，它将配置数据高速缓存并分配给连接到资产控制核心的许多代理之一，例如，在生产线上或在售后市场的程序设计会议。

83. 发明授权

US08619990B2 Secure key creation 失效
标题翻译：安全密钥创建
公开(公告)号：US08619990B2
公开(公告)日：2013-12-31
申请号：US13095226
申请日：2011-04-27
申请人： Todd W. Arnold , Elizabeth A. Dames , Carsten D. Frehr , Kenneth B. Kerr , Richard V. Kisley , Eric D. Rossman , Eric B. Smith
发明人： Todd W. Arnold , Elizabeth A. Dames , Carsten D. Frehr , Kenneth B. Kerr , Richard V. Kisley , Eric D. Rossman , Eric B. Smith
IPC分类号： H04L9/08 , H04L9/30
CPC分类号： H04L9/08 , H04L9/083 , H04L9/0877 , H04L9/30
摘要： A system for creating a secure key is provided that includes a computer processor and an application configured to execute on the computer processor, the application implementing a method that includes creating a token and populating a key control information section of the token with a value to indicate a minimum number of key parts used to form a key. Creating the secure key also includes populating a payload section of the token with a first key part, binding the key control information section to the payload section, adding a second key part to the first key part and iterating the value and binding the key control information section to the payload section after the second key part has been added. Creating the secure key further includes indicating the key is complete, wherein the key comprises a combination of the first and second key parts.
摘要翻译：提供了一种用于创建安全密钥的系统，其包括计算机处理器和被配置为在计算机处理器上执行的应用程序，所述应用程序实现包括创建令牌的方法，并且以指示值的值填充令牌的密钥控制信息部分用于形成钥匙的最少数量的关键部件。创建安全密钥还包括用第一密钥部分填充令牌的有效载荷部分，将密钥控制信息部分绑定到有效负载部分，向第一密钥部分添加第二密钥部分，并迭代该值并绑定密钥控制信息在添加第二个关键部分之后的部分到有效载荷部分。创建安全密钥还包括指示密钥是完整的，其中密钥包括第一和第二密钥部分的组合。

84. 发明授权

US08613065B2 Method and system for multiple passcode generation 有权
公开(公告)号：US08613065B2
公开(公告)日：2013-12-17
申请号：US13020867
申请日：2011-02-04
申请人： Geoffrey Hird , Rammohan Varadarajan , James D. Reno
发明人： Geoffrey Hird , Rammohan Varadarajan , James D. Reno
IPC分类号： G06F7/04 , G06F21/00 , H04L29/06
CPC分类号： H04L9/3226 , G06F21/31 , H04L9/0877 , H04L9/16 , H04L63/0838
摘要： This invention relates to a method and a system for generating user passcodes for each of a plurality of transaction providers from a mobile user device. A method and system for activating a plurality of passcode generators on a user device configured with a passcode application installed on the user device is provided. Each of the passcode generators may correspond to a different user account or transaction provider, such that each passcode generator provides a user passcode configured for the corresponding account or transaction provider. One or more of the passcode generators may include a passcode generating algorithm and a passcode key. Access to one or more of the passcode generators may require providing a PIN or a challenge.

85. 发明申请

US20130233925A1 PORTABLE SMART CARD READER HAVING SECURE WIRELESS COMMUNICATIONS CAPABILITY 有权
公开(公告)号：US20130233925A1
公开(公告)日：2013-09-12
申请号：US13871386
申请日：2013-04-26
申请人： RESEARCH IN MOTION LIMITED
发明人： Mihal Lazaridis , Kwok Ching Leung , Benjamin William Boomhour , Scott Douglas Rose , Scott William Totzke , Ryan Mitchell Bayne , Herbert Anthony Little
IPC分类号： G06K7/01
CPC分类号： G06K7/01 , H04L9/0841 , H04L9/0877 , H04L2209/80 , H04W12/02 , H04W12/04
摘要： A reader device includes a housing for receiving a smart card, a processor in electronic communication with an integrated circuit chip of the smart card when the smart card is received in the housing, a wireless communications device in electronic communication with the processor for enabling the reader device to transmit first encrypted information wirelessly and to receive second encrypted information wirelessly, and a memory in electronic communication with the processor that includes one or more routines executable by the processor. The one or more routines include a cryptographic module adapted to encrypt first information to create the first encrypted information and decrypt the second encrypted information to obtain second information. In addition, a communication system that includes the reader device and a computing device, wherein the reader device and computing device are able to wirelessly exchange information in a secure manner.

86. 发明申请

US20130212384A1 ENABLING USERS TO SELECT BETWEEN SECURE SERVICE PROVIDERS USING A KEY ESCROW SERVICE 有权
标题翻译：使用用户选择安全的服务提供商使用主要的服务
公开(公告)号：US20130212384A1
公开(公告)日：2013-08-15
申请号：US13846849
申请日：2013-03-18
申请人： Nicholas Julian PELLY , Jeffrey William HAMILTON
发明人： Nicholas Julian PELLY , Jeffrey William HAMILTON
IPC分类号： H04L29/06
CPC分类号： H04L63/062 , H04L9/083 , H04L9/0877 , H04L9/0894 , H04L2209/80 , H04W4/50 , H04W12/04
摘要： Systems and methods are described herein for enabling users to select from available secure service providers (each having a Trusted Service Manager (“TSM”)) for provisioning applications and services on a secure element installed on a device of the user. The device includes a service provider selector (“SPS”) module that provides a user interface for selecting the secure service provider. In one embodiment, the SPS communicates with a key escrow service that maintains cryptographic keys for the secure element and distributes the keys to the user selected secure service provider. The key escrow service also revokes the keys from deselected secure service providers. In another embodiment, the SPS communicates with a central TSM that provisions applications and service on behalf of the user selected secure service provider. The central TSM serves as a proxy between the secure service providers and the secure element.
摘要翻译：这里描述了使用户能够从可用的安全服务提供商（每个都具有可信服务管理器（“TSM”））选择用于在安装在用户设备上的安全元件上提供应用和服务的系统和方法。该设备包括提供用于选择安全服务提供商的用户界面的服务提供者选择器（“SPS”）模块。在一个实施例中，SPS与维护用于安全元件的加密密钥的密钥托管服务通信，并将密钥分发给用户选择的安全服务提供商。密钥托管服务还撤销了取消选择的安全服务提供商的密钥。在另一个实施例中，SPS与代表用户选择的安全服务提供商提供应用和服务的中央TSM进行通信。中央TSM作为安全服务提供商和安全元素之间的代理。

87. 发明申请

US20130159733A1 MEMORY DEVICE WHICH PROTECTS SECURE DATA, METHOD OF OPERATING THE MEMORY DEVICE, AND METHOD OF GENERATING AUTHENTICATION INFORMATION 有权
标题翻译：保护数据的存储器件，操作存储器件的方法和产生认证信息的方法
公开(公告)号：US20130159733A1
公开(公告)日：2013-06-20
申请号：US13677715
申请日：2012-11-15
申请人： Jae-Bum LEE , Hyoung-Suk JANG , Min-Kwon KIM , Seok-Heon LEE
发明人： Jae-Bum LEE , Hyoung-Suk JANG , Min-Kwon KIM , Seok-Heon LEE
IPC分类号： G06F12/14
CPC分类号： H04L9/08 , H04L9/0822 , H04L9/0877 , H04L9/0897 , H04L2209/605
摘要： In one embodiment, the memory device includes a first memory area and a second memory area. The first memory area stores secure data. The first memory area is inaccessible by an external device. The second memory area is configured to store encrypted secure data. The second memory area is accessible by the external device, and the encrypted secure data is an encrypted version of the secure data in the first memory area.
摘要翻译：在一个实施例中，存储器件包括第一存储器区域和第二存储器区域。第一个存储区存储安全数据。第一个存储区域由外部设备无法访问。第二个存储区被配置为存储加密的安全数据。第二存储器区域可由外部设备访问，并且加密的安全数据是第一存储器区域中的安全数据的加密版本。

88. 发明申请

US20130156195A1 METHOD OF OBTAINING A MAIN KEY FROM A MEMORY DEVICE, METHOD OF GENERATING AUTHENTICATION INFORMATION FOR A MEMORY DEVICE, AN EXTERNAL DEVICE AND SYSTEM ICLUDING THE EXTERNAL DEVICE 审中-公开
标题翻译：从存储器件获取主键的方法，产生用于存储器件的认证信息的方法，外部器件和外部器件的系统
公开(公告)号：US20130156195A1
公开(公告)日：2013-06-20
申请号：US13677853
申请日：2012-11-15
申请人： Jae-Bum LEE , Hyoung-Suk JANG , Min-Kwon KIM , Seok-Heon KIM
发明人： Jae-Bum LEE , Hyoung-Suk JANG , Min-Kwon KIM , Seok-Heon KIM
IPC分类号： H04L9/08
CPC分类号： H04L9/08 , H04L9/0822 , H04L9/0877 , H04L9/0897 , H04L2209/605
摘要： In one embodiment, the method includes obtaining, at the external device, an encrypted main key and an encrypted first decryption key from the memory device. The encrypted first decryption key is an encrypted version of a first decryption key. The encrypted main key is an encrypted version of the main key. The external device is unable to read the main key from the memory device. The method further includes decrypting, at the external device, the encrypted first decryption key using a second decryption key to obtain the first decryption key; and decrypting, at the external device, the encrypted main key of the memory device using the first decryption key to obtain the main key.
摘要翻译：在一个实施例中，该方法包括在外部设备处从存储器设备获得加密的主密钥和加密的第一解密密钥。加密的第一解密密钥是第一解密密钥的加密版本。加密的主密钥是主密钥的加密版本。外部设备无法从存储设备读取主密钥。该方法还包括在外部设备处使用第二解密密钥解密加密的第一解密密钥以获得第一解密密钥; 以及使用所述第一解密密钥在所述外部设备处解密所述存储设备的加密主密钥以获得所述主密钥。

89. 发明授权

US08467534B2 Method and system for secure access and processing of an encryption/decryption key 有权
标题翻译：用于安全访问和处理加密/解密密钥的方法和系统
公开(公告)号：US08467534B2
公开(公告)日：2013-06-18
申请号：US10417051
申请日：2003-04-16
申请人： Kevin Patariu , Iue-Shuenn Chen , Jay Kwok Wa Li , Cynthia Dang , Mark Taylor Core
发明人： Kevin Patariu , Iue-Shuenn Chen , Jay Kwok Wa Li , Cynthia Dang , Mark Taylor Core
IPC分类号： H04L29/06
CPC分类号： G06F21/602 , H04L9/0877 , H04L9/0897
摘要： Secure access and processing of an encryption/decryption key may include generating one or more keys within a key controller block of a chip. The generated keys may be transferred from the key controller block of the chip to an on-chip bus interface block via a secure serial link. The transferred keys may be stored in registers which may be accessible by only the key controller block of the chip. In this regard, the generated keys may be written to one or more of the key registers only by the key controller block. Furthermore, a written key may be read from a key register only by the key controller block. During the transfer of a generated key, a data valid signal may be used to indicate valid keys in a data signal used to transfer the keys via the secure serial link.
摘要翻译：加密/解密密钥的安全访问和处理可以包括在芯片的密钥控制器块内生成一个或多个密钥。生成的密钥可以通过安全串行链路从芯片的密钥控制器块传送到片上总线接口块。转移的密钥可以存储在只能由芯片的密钥控制器块访问的寄存器中。在这方面，所产生的密钥只能由密钥控制器块写入一个或多个密钥寄存器。此外，只能由密钥控制器块从密钥寄存器读取写入密钥。在生成的密钥的传送期间，可以使用数据有效信号来指示用于经由安全串行链路传送密钥的数据信号中的有效密钥。

90. 发明授权

US08430317B2 Barcode rendering device 有权
标题翻译：条码渲染设备
公开(公告)号：US08430317B2
公开(公告)日：2013-04-30
申请号：US12888129
申请日：2010-09-22
申请人： Mark A. Ross
发明人： Mark A. Ross
IPC分类号： G02B5/00
CPC分类号： G06K19/06112 , G06F19/00 , G06K7/1095 , G06Q20/3274 , G06Q20/387 , G06Q30/0201 , H04L9/0877 , H04L9/3234
摘要： In one embodiment, a barcode rendering device includes a communication interface, a reflective display, and a detector. The communication interface is configured to receive barcode data corresponding to a barcode in one of a plurality of barcode symbologies. The reflective display is configured to legitimately display barcodes in any of the plurality of barcode symbologies. The detector is configured to detect illumination emitted by a barcode scanner and incident on the reflective display.
摘要翻译：在一个实施例中，条形码描绘设备包括通信接口，反射显示器和检测器。通信接口被配置为接收与多个条形码符号中的一个条形码相对应的条形码数据。反射显示器被配置为在多个条形码符号体系中合法地显示条形码。检测器被配置为检测由条形码扫描器发射的入射到反射显示器上的照射。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式