专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明授权

US07502933B2 Identity authentication system and method 有权
标题翻译：身份认证系统和方法
公开(公告)号：US07502933B2
公开(公告)日：2009-03-10
申请号：US10724034
申请日：2003-11-26
申请人： Markus Jakobsson , Ari Juels , Burton S. Kaliski, Jr.
发明人： Markus Jakobsson , Ari Juels , Burton S. Kaliski, Jr.
IPC分类号： H04L9/00
CPC分类号： G07F7/1008 , G06Q20/341 , G06Q20/40975 , H04L9/3226 , H04L2209/60 , H04L2209/80
摘要： A method and system for generating an authentication code that depends at least in part on a dynamic value that changes over time, an event state associated with the occurrence of an event, and a secret associated with an authentication device. By generating the authentication code responsive to an event state, an identity authentication code can be used to verify identity and to communicate event state information, and to do so in a secure manner.
摘要翻译：一种用于生成认证码的方法和系统，所述认证码至少部分取决于随时间变化的动态值，与事件发生相关联的事件状态以及与认证设备相关联的秘密。通过响应于事件状态生成认证码，可以使用身份认证码来验证身份并传达事件状态信息，并以安全的方式进行。

2. 发明授权

US08381062B1 Proof of retrievability for archived files 有权
标题翻译：归档文件的可检索性证明
公开(公告)号：US08381062B1
公开(公告)日：2013-02-19
申请号：US12115145
申请日：2008-05-05
申请人： Ari Juels , Burton S. Kaliski, Jr. , Kevin D. Bowers , Alina M. Oprea
发明人： Ari Juels , Burton S. Kaliski, Jr. , Kevin D. Bowers , Alina M. Oprea
IPC分类号： G06F11/00
CPC分类号： G06F21/602 , G06F11/10 , G06F21/64 , H04L9/3221 , H04L63/123 , H04L63/126
摘要： A proof of retrievability (POR) mechanism is applicable to a file for providing assurances of file possession to a requesting client by transmitting only a portion of the entire file. The client compares or examines validation values returned from predetermined validation segments of the file with previously computed validation attributes for assessing the existence of the file. Since the archive server does not have access to the validation function prior to the request, or challenge, from the client, the archive server cannot anticipate the validation values expected from the validation function. Further, since the validation segments from which the validation attributes, and hence the validation values were derived, are also unknown to the server, the server cannot anticipate which portions of the file will be employed for validation.
摘要翻译：可检索性（POR）机制的证明适用于通过传送整个文件的一部分来向请求客户端提供文件拥有保证的文件。客户端比较或检查从文件的预定验证段返回的验证值与先前计算的验证属性，以评估文件的存在。由于存档服务器在请求之前无法访问验证函数，或者从客户端询问，归档服务器无法预期验证函数预期的验证值。此外，由于从其导出验证属性以及因此导出验证值的验证段对于服务器而言也是未知的，所以服务器不能预期该文件的哪些部分将用于验证。

3. 发明授权

US07725730B2 Cryptographic methods and apparatus for secure authentication 有权
标题翻译：用于安全认证的加密方法和装置
公开(公告)号：US07725730B2
公开(公告)日：2010-05-25
申请号：US10216030
申请日：2002-08-09
申请人： Ari Juels , Burton S. Kaliski, Jr.
发明人： Ari Juels , Burton S. Kaliski, Jr.
IPC分类号： H04L29/06 , H04L9/32 , G06F21/00 , G06F7/04 , G06F12/14 , G08B29/00
CPC分类号： H04L63/083 , H04L9/0844 , H04L9/3218 , H04L9/3226 , H04L63/1441 , H04L63/1458 , H04L2209/04 , H04L2209/42 , H04L2209/80 , H04L2209/805 , H04W12/06 , H04W12/12
摘要： Secure authentication protocols, particularly well-suited for use in authenticating mobile communications devices having limited computational resources, are disclosed. In an illustrative embodiment, a network-based communication system includes a client device and at least two servers. First and second shares are generated from a first password associated with the client device, and stored in respective first and second servers. The client device submits additional information associated therewith to at least one of the first and second servers. Each of the first and second shares has the property that it is infeasible to determine solely therefrom correspondence of the additional information with the first password. The first and second servers then utilize the respective first and second shares to collectively determine said correspondence of the additional information with the first password.
摘要翻译：公开了特别适合于认证具有有限计算资源的移动通信设备的安全认证协议。在说明性实施例中，基于网络的通信系统包括客户端设备和至少两个服务器。从与客户端设备相关联的第一密码生成第一和第二共享，并存储在相应的第一和第二服务器中。客户端设备将与其相关联的附加信息提交给第一和第二服务器中的至少一个。第一和第二股份中的每一个都具有不可能仅从其确定附加信息与第一密码的对应关系的属性。然后，第一和第二服务器利用相应的第一和第二份共同确定附加信息与第一密码的所述对应关系。

4. 发明授权

US09137012B2 Wireless authentication methods and apparatus 有权
标题翻译：无线认证方法和设备
公开(公告)号：US09137012B2
公开(公告)日：2015-09-15
申请号：US11671264
申请日：2007-02-05
申请人： Daniel Vernon Bailey , John G. Brainard , Ari Juels , Burton S. Kaliski, Jr.
发明人： Daniel Vernon Bailey , John G. Brainard , Ari Juels , Burton S. Kaliski, Jr.
IPC分类号： H04W24/00 , H04L9/08 , H04L29/06 , H04W12/06 , H04L9/32
CPC分类号： H04L9/0861 , H04L9/3228 , H04L9/3234 , H04L63/0492 , H04L63/08 , H04L63/0838 , H04L2209/805 , H04W12/06
摘要： A first processing device, which may be, for example, a wireless authentication token or an RFID tag, transmits information in a wireless network in a manner that emulates standard communications of an access point of the wireless network, although the first processing device is not configured to operate as an actual access point of the wireless network. A second processing device, which may be, for example, a computer or other station of the wireless network, receives the transmitted information and is able to determine therefrom that the information originates from an emulated access point rather than an actual access point. The second processing device responds to this condition by utilizing the transmitted information in a manner distinct from its utilization of similar information received from the actual access point of the wireless network.
摘要翻译：可以是例如无线认证令牌或RFID标签的第一处理设备以模拟无线网络的接入点的标准通信的方式在无线网络中发送信息，尽管第一处理设备不是被配置为作为无线网络的实际接入点进行操作。可以是例如无线网络的计算机或其他站的第二处理设备接收所发送的信息，并且能够从其确定信息源自仿真接入点而不是实际接入点。第二处理装置以与从无线网络的实际接入点接收到的类似信息不同的方式利用所发送的信息来响应该条件。

5. 发明授权

US09280871B2 Gaming systems with authentication token support 有权
标题翻译：具有认证令牌支持的游戏系统
公开(公告)号：US09280871B2
公开(公告)日：2016-03-08
申请号：US11774857
申请日：2007-07-09
申请人： Daniel Vernon Bailey , Burton S. Kaliski, Jr. , Ari Juels , Ronald L. Rivest
发明人： Daniel Vernon Bailey , Burton S. Kaliski, Jr. , Ari Juels , Ronald L. Rivest
IPC分类号： G07F17/32
CPC分类号： G07F17/3251 , G07F17/32
摘要： Techniques for providing authentication functionality in a gaming system are disclosed. In one aspect, a gaming system is configured such that, at a given point during a current session of a game in progress that involves at least one user previously granted access by the system to participate in the current session, information available from an authentication token associated with the user is obtained prior to allowing the user to take a particular action in the game. A determination is made as to whether or not the user will be allowed to take the particular action in the game, based on the obtained information. The obtained information may comprise, for example, at least a portion of a one-time password generated by a hardware or software authentication token.
摘要翻译：公开了一种用于在游戏系统中提供认证功能的技术。在一个方面，游戏系统被配置为使得在正在进行的游戏的当前会话期间的给定点处涉及至少一个用户先前被系统授权参与当前会话的访问，来自认证令牌的信息在允许用户在游戏中采取特定动作之前获得与用户相关联。根据所获得的信息确定用户是否将被允许在游戏中采取特定动作。获得的信息可以包括例如由硬件或软件认证令牌生成的一次性密码的至少一部分。

6. 发明授权

US08495372B2 Authentication methods and apparatus using pairing protocols and other techniques 有权
标题翻译：使用配对协议和其他技术的认证方法和设备
公开(公告)号：US08495372B2
公开(公告)日：2013-07-23
申请号：US11939232
申请日：2007-11-13
申请人： Daniel Vernon Bailey , John G. Brainard , Ari Juels , Burton S. Kaliski, Jr.
发明人： Daniel Vernon Bailey , John G. Brainard , Ari Juels , Burton S. Kaliski, Jr.
IPC分类号： H04L9/32 , H04L9/00
CPC分类号： H04L9/0861 , H04L9/3228 , H04L9/3234 , H04L63/0492 , H04L63/08 , H04L63/0838 , H04L2209/805 , H04W12/06
摘要： In one aspect, a first processing device, which may be an authentication token, establishes a shared key through a pairing protocol carried out between the first processing device and a second processing device. The pairing protocol also involves communication between the second processing device and an authentication server. As part of the pairing protocol, the first processing device sends identifying information to the second processing device, and the second processing device utilizes the identifying information to obtain the shared key from the authentication server. The first processing device encrypts authentication information utilizing the shared key, and transmits the encrypted authentication information from the first processing device to the second processing device. The second processing device utilizes the shared key to decrypt the encrypted authentication information.
摘要翻译：一方面，可以是认证令牌的第一处理设备通过在第一处理设备和第二处理设备之间执行的配对协议来建立共享密钥。配对协议还涉及第二处理设备和认证服务器之间的通信。作为配对协议的一部分，第一处理设备向第二处理设备发送识别信息，并且第二处理设备利用识别信息从认证服务器获得共享密钥。第一处理装置利用共享密钥加密认证信息，并将加密的认证信息从第一处理装置发送到第二处理装置。第二处理装置利用共享密钥对加密的认证信息进行解密。

7. 发明授权

US07356696B1 Proofs of work and bread pudding protocols 有权
标题翻译：工作证明和面包布丁协议
公开(公告)号：US07356696B1
公开(公告)日：2008-04-08
申请号：US09630711
申请日：2000-08-01
申请人： Bjorn Markus Jakobsson , Ari Juels
发明人： Bjorn Markus Jakobsson , Ari Juels
IPC分类号： H04L9/00 , H04L9/32 , G06F7/04
CPC分类号： H04L9/3218
摘要： The bread pudding protocol of the present invention represents a novel use of proofs of work and is based upon the same principle as the dish from which it takes its name, namely, that of reuse to minimize waste. Whereas the traditional bread pudding recipe recycles stale bread, our bread pudding protocol recycles the “stale” computations in a POW to perform a separate and useful task, while also maintaining privacy in the task. In one advantageous embodiment of our bread pudding protocol, we consider the computationally intensive operation of minting coins in the MicroMint scheme of Rivest and Shamir and demonstrate how the minting operation can be partitioned into a collection of POWs, which are then used to shift the burden of the minting operation onto a large group of untrusted computational devices. Thus, the computational effort invested in the POWs is recycled to accomplish the minting operation.
摘要翻译：本发明的面包布丁方案代表了工作证明的新颖用途，并且基于与其名称相同的原理，即重复使用以最小化废物的原理。而传统的面包布丁配方回收陈旧的面包，我们的面包布丁协议回收了一个POW中的“陈旧”计算，以执行一个单独和有用的任务，同时保持任务中的隐私。在我们的面包布丁协议的一个有利的实施例中，我们考虑在Rivest和Shamir的MicroMint方案中的铸币的计算密集操作，并且演示了铸造操作如何被划分成一组POWs，然后将其用于转移负担的铸造操作到一大堆不可信的计算设备上。因此，投资于战俘的计算工作被循环利用，以完成造币操作。

8. 发明授权

US06772339B1 Mix and match: a new approach to secure multiparty computation 有权
标题翻译：混合和匹配：一种新的方法来确保多方计算
公开(公告)号：US06772339B1
公开(公告)日：2004-08-03
申请号：US09524337
申请日：2000-03-13
申请人： Bjorn Markus Jakobsson , Ari Juels
发明人： Bjorn Markus Jakobsson , Ari Juels
IPC分类号： H04L900
CPC分类号： H04L9/0841
摘要： A method for secure multiparty computation is disclosed. In one embodiment, participants to a secure computation agree upon a function to be computed and a representation of the function as a circuit with at least one gate. Logical tables are then generated for each gate. A logical table includes all possible input and output values for the gate based on the function. These input and output values are then encoded and the encoded tables are passed through a mix network, which generates a blinded table for each encoded logical table. A blinded table corresponds to the encoded logical table except that its rows are randomly permuted and entries are encrypted. After this initial blinding round, participants provide encryptions of their encoded secret inputs. The participants then jointly compute the function of interest using the encrypted secret inputs and the representative circuit. To simulate a gate therein, the participants compare the encrypted inputs to the gate with each encrypted input entry in the blinded table until a match is detected. When a match is detected, the corresponding output entry in the matched row is taken to be the output of the gate. This method of mixing and matching is performed in an identical manner for every gate in the circuit, irrespective of the layer in which it resides or the function being computed, until the output of the last gate is identified.
摘要翻译：公开了一种用于安全多方计算的方法。在一个实施例中，安全计算的参与者将要被计算的功能和作为具有至少一个门的电路的功能的表示一致。然后为每个门产生逻辑表。逻辑表包括基于该功能的门的所有可能的输入和输出值。然后对这些输入和输出值进行编码，并且编码表通过混合网络传递，该混合网络为每个编码的逻辑表生成盲目表。盲表对应于编码的逻辑表，除了其行被随机排列并且条目被加密。在这个初始盲目的轮次之后，参与者提供对其编码的秘密输入的加密。参与者然后使用加密的秘密输入和代表性电路联合计算感兴趣的功能。为了模拟其中的门，参与者将加密的输入与门中的每个加密输入条目进行比较，直到检测到匹配。当检测到匹配时，匹配行中的相应输出条目被认为是门的输出。这种混合和匹配的方法以与电路中的每个门相同的方式执行，而不管其所在的层或正在计算的功能，直到识别出最后一个门的输出。

9. 发明授权

US08533350B2 Method and apparatus for storing information in a browser storage area of a client device 有权
公开(公告)号：US08533350B2
公开(公告)日：2013-09-10
申请号：US11590083
申请日：2006-10-31
申请人： Bjorn Markus Jakobsson , Ari Juels
发明人： Bjorn Markus Jakobsson , Ari Juels
IPC分类号： G06F15/173
CPC分类号： H04L67/42 , H04L63/0807
摘要： Disclosed is a method and apparatus for performing steps to cause encoded information to be stored at a client device during a first network session between a server and the client device. To cause encoded information to be stored at a client device, the server first determines a set of network resource requests that encode the information. These network resource requests may include requests for one or more specific URLs and/or requests for one or more files. The server then causes the client device to initiate the network resource requests. The server may cause this initiation by, for example, redirecting the client device to the network resources. The client device initiating the network resource requests causes data representative of the network resource requests to be stored at the client device.

10. 发明申请

US20080162227A1 Method and apparatus for combatting click fraud 审中-公开
标题翻译：打击点击欺诈的方法和装置
公开(公告)号：US20080162227A1
公开(公告)日：2008-07-03
申请号：US11999393
申请日：2007-12-05
申请人： Bjorn Markus Jakobsson , Ari Juels , Sidney Louis Stamm
发明人： Bjorn Markus Jakobsson , Ari Juels , Sidney Louis Stamm
IPC分类号： G06Q10/00
CPC分类号： G06Q30/06 , G06Q10/063 , G06Q10/06375
摘要： Disclosed is a method and apparatus for combatting click fraud. In a system including a first entity, a second entity, a third entity, and a fourth entity, the first entity performs a transaction with the second entity. The transaction between the first entity and the second entity may be an on-line purchase by a client device from an attestor. The second entity causes an integrity-protected classification value to be created. The integrity-protected classification value is derived at least in part from behavioral data about the first entity, and data associated with the classification value is stored in a data repository of the first entity. The first entity then performs a transaction with the third entity, and the transaction causes the stored data to be released to the fourth entity. The fourth entity computes a compensation for the third entity.
摘要翻译：公开了一种打击点击欺诈的方法和装置。在包括第一实体，第二实体，第三实体和第四实体的系统中，第一实体与第二实体执行交易。第一实体和第二实体之间的交易可以是来自证明者的客户端设备的在线购买。第二个实体导致创建完整性保护的分类值。完整性保护的分类值至少部分地由关于第一实体的行为数据导出，并且与分类值相关联的数据被存储在第一实体的数据存储库中。第一实体然后与第三实体执行事务，并且事务导致存储的数据被释放到第四实体。第四实体计算第三实体的补偿。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式