专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明授权

US08707024B2 Methods and systems for managing identity management security domains 有权
标题翻译：用于管理身份管理安全域的方法和系统
公开(公告)号：US08707024B2
公开(公告)日：2014-04-22
申请号：US11462606
申请日：2006-08-04
申请人： Nang Kon Kwan , Chandrasekar Kannan , Shuk Yee Ho , Steven William Parkinson
发明人： Nang Kon Kwan , Chandrasekar Kannan , Shuk Yee Ho , Steven William Parkinson
IPC分类号： H04L29/00
CPC分类号： H04L9/3213 , H04L9/0822 , H04L9/0891 , H04L9/3268 , H04L2209/603
摘要： Embodiments of the present invention provide identity management security domains that may be used in an enterprise security system. A security domain provides a centralized registry of services provided by the enterprise security system. For example, certificate authorities and other services, such as key archives, and the like, in the enterprise security system may register information about themselves in the security domain. Authorized users can then discover the location of these services. In some embodiments, the security domain may provide an interface that indicates a topology between services of the enterprise security system. The security domain may also serve as a distribution point for security policies. A security policy may comprise information that indicates, for example, a set of trusted certificate authorities, certificate templates, certificate revocation lists, and the locations of the services in the enterprise security system.
摘要翻译：本发明的实施例提供可以在企业安全系统中使用的身份管理安全域。安全域提供由企业安全系统提供的服务的集中注册。例如，企业安全系统中的证书机构和其他服务（如密钥档案等）可以在安全域中注册自己的信息。然后，授权用户可以发现这些服务的位置。在一些实施例中，安全域可以提供指示企业安全系统的服务之间的拓扑的接口。安全域也可以作为安全策略的分发点。安全策略可以包括例如指示一组可信证书颁发机构，证书模板，证书吊销列表以及企业安全系统中的服务的位置的信息。

2. 发明申请

US20070288745A1 Profile framework for token processing system 有权
标题翻译：轮询框架用于令牌处理系统
公开(公告)号：US20070288745A1
公开(公告)日：2007-12-13
申请号：US11448179
申请日：2006-06-07
申请人： Nang Kon Kwan , Chandrasekar Kannan , Shuk Yee Ho , Steven William Parkinson , Christina Fu
发明人： Nang Kon Kwan , Chandrasekar Kannan , Shuk Yee Ho , Steven William Parkinson , Christina Fu
IPC分类号： H04L9/00
CPC分类号： H04L9/0822 , H04L9/083
摘要： Embodiments of the present invention provide a profile framework for handling enrollment requests. In particular, when a token processing system receives an enrollment request, it selects an applicable profile based on information in the request. The profile may indicate a variety of parameters for fulfilling the enrollment request, such as the locations of the applicable certificate authority, token key service, and the like. The profile may also indicate items, such as the number of keys to generate on a token, a token label, and connection information to securely communicate with other components and the client making the enrollment request.
摘要翻译：本发明的实施例提供了一种用于处理注册请求的简档框架。特别地，当令牌处理系统接收到注册请求时，它根据请求中的信息选择适用的简档。该简档可以指示用于满足注册请求的各种参数，诸如适用的认证机构的位置，令牌密钥服务等。简档还可以指示项目，例如在令牌上生成的密钥的数量，令牌标签和连接信息，以安全地与其他组件和进行注册请求的客户端通信。

3. 发明授权

US08412927B2 Profile framework for token processing system 有权
标题翻译：轮询框架用于令牌处理系统
公开(公告)号：US08412927B2
公开(公告)日：2013-04-02
申请号：US11448179
申请日：2006-06-07
申请人： Nang Kon Kwan , Chandrasekar Kannan , Shuk Yee Ho , Steven William Parkinson , Christina Fu
发明人： Nang Kon Kwan , Chandrasekar Kannan , Shuk Yee Ho , Steven William Parkinson , Christina Fu
IPC分类号： H04L29/06
CPC分类号： H04L9/0822 , H04L9/083
摘要： Embodiments of the present invention provide a profile framework for handling enrollment requests. In particular, when a token processing system receives an enrollment request, it selects an applicable profile based on information in the request. The profile may indicate a variety of parameters for fulfilling the enrollment request, such as the locations of the applicable certificate authority, token key service, and the like. The profile may also indicate items, such as the number of keys to generate on a token, a token label, and connection information to securely communicate with other components and the client making the enrollment request.
摘要翻译：本发明的实施例提供了一种用于处理注册请求的简档框架。特别地，当令牌处理系统接收到注册请求时，它根据请求中的信息选择适用的简档。该简档可以指示用于满足注册请求的各种参数，诸如适用的认证机构的位置，令牌密钥服务等。简档还可以指示项目，例如在令牌上生成的密钥的数量，令牌标签和连接信息，以安全地与其他组件和进行注册请求的客户端通信。

4. 发明授权

US08364952B2 Methods and system for a key recovery plan 有权
标题翻译：关键恢复计划的方法和系统
公开(公告)号：US08364952B2
公开(公告)日：2013-01-29
申请号：US11446958
申请日：2006-06-06
申请人： Shuk Yee Ho , Christina Fu , Chandrasekar Kannan , Nang Kon Kwan
发明人： Shuk Yee Ho , Christina Fu , Chandrasekar Kannan , Nang Kon Kwan
IPC分类号： H04L29/06
CPC分类号： H04L9/0897 , H04L9/0891
摘要： Methods, systems and computer readable mediums are provided for recovering subject keys and/or certificates for a token. A unique identifier associated with the token is obtained. The token is associated with subject keys and with a first status of statuses, the statuses including a lost status state and an other status state. In response to the token being in the lost status state, a key recovery plan is determined to recover at least one of the subject keys and the certificates associated with the token.
摘要翻译：提供方法，系统和计算机可读介质用于恢复令牌的主体密钥和/或证书。获得与令牌相关联的唯一标识符。该令牌与主键和状态的第一状态相关联，状态包括丢失状态和其他状态。响应于令牌处于丢失状态状态，确定密钥恢复计划以恢复与令牌相关联的主题密钥和证书中的至少一个。

5. 发明申请

US20080022086A1 Methods and system for a key recovery plan 有权
标题翻译：关键恢复计划的方法和系统
公开(公告)号：US20080022086A1
公开(公告)日：2008-01-24
申请号：US11446958
申请日：2006-06-06
申请人： Shuk Yee Ho , Christina Fu , Chandrasekar Kannan , Nang Kon Kwan
发明人： Shuk Yee Ho , Christina Fu , Chandrasekar Kannan , Nang Kon Kwan
IPC分类号： H04L9/00
CPC分类号： H04L9/0897 , H04L9/0891
摘要： Methods, systems and computer readable mediums are provided for recovering subject keys and/or certificates for a token. A unique identifier associated with the token is obtained. The token is associated with subject keys and with a first status of statuses, the statuses including a lost status state and an other status state. In response to the token being in the lost status state, a key recovery plan is determined to recover at least one of the subject keys and the certificates associated with the token.
摘要翻译：提供方法，系统和计算机可读介质用于恢复令牌的主体密钥和/或证书。获得与令牌相关联的唯一标识符。该令牌与主键和状态的第一状态相关联，状态包括丢失状态和其他状态。响应于令牌处于丢失状态状态，确定密钥恢复计划以恢复与令牌相关联的主题密钥和证书中的至少一个。

6. 发明授权

US08356342B2 Method and system for issuing a kill sequence for a token 有权
标题翻译：为令牌发出杀死序列的方法和系统
公开(公告)号：US08356342B2
公开(公告)日：2013-01-15
申请号：US11469482
申请日：2006-08-31
申请人： Steven William Parkinson , Nang Kon Kwan
发明人： Steven William Parkinson , Nang Kon Kwan
IPC分类号： G06F21/00 , H04L9/00
CPC分类号： H04L63/0807
摘要： An embodiment relates generally to a method of managing a token. The method includes marking a token to be killed and detecting a presence of the token. The method also includes disabling the token in response to the marking of the token.
摘要翻译：实施例一般涉及管理令牌的方法。该方法包括标记要被杀死的标记并检测令牌的存在。该方法还包括响应标记的标记来禁用令牌。

7. 发明授权

US08098829B2 Methods and systems for secure key delivery 有权
标题翻译：用于安全密钥传递的方法和系统
公开(公告)号：US08098829B2
公开(公告)日：2012-01-17
申请号：US11447196
申请日：2006-06-06
申请人： Christina Fu , Steven William Parkinson , Nang Kon Kwan
发明人： Christina Fu , Steven William Parkinson , Nang Kon Kwan
IPC分类号： H04L9/08
CPC分类号： H04L9/0897 , H04L9/0822
摘要： An embodiment pertains generally to a method of delivering keys in a server. The method includes generating a subject key pair, where the subject key pair includes a subject public key and a subject private key. The method also includes retrieving a storage key and encrypting the subject private key with the storage key as a wrapped storage private key. The method further includes storing the wrapped storage private key.
摘要翻译：实施例一般涉及在服务器中传递密钥的方法。该方法包括生成主体密钥对，其中主体密钥对包括对象公钥和对象私钥。该方法还包括检索存储密钥并使用存储密钥作为包装存储私钥对主体私钥进行加密。该方法还包括存储封装的存储私钥。

8. 发明申请

US20080022088A1 Methods and systems for key escrow 审中-公开
标题翻译：密钥托管的方法和系统
公开(公告)号：US20080022088A1
公开(公告)日：2008-01-24
申请号：US11446956
申请日：2006-06-06
申请人： Christina Fu , Steven William Parkinson , Nang Kon Kwan
发明人： Christina Fu , Steven William Parkinson , Nang Kon Kwan
IPC分类号： H04L9/00
CPC分类号： H04L9/0822 , H04L9/0897 , H04L9/3263 , H04L2209/603
摘要： An embodiment pertains generally to a method of storing keys. The method includes receiving a request for generating a subject private key at a token processing system and generating a subject key pair, where the subject key pair includes a subject public and the subject private key. The method also includes archiving the subject private key within the token processing system.
摘要翻译：实施例一般涉及存储密钥的方法。该方法包括在令牌处理系统处接收用于生成主体私钥的请求并生成主题密钥对，其中主体密钥对包括对象公共和主体私钥。该方法还包括在令牌处理系统内归档主体私钥。

9. 发明申请

US20070280483A1 Methods and systems for key recovery for a token 有权
标题翻译：用于令牌的密钥恢复的方法和系统
公开(公告)号：US20070280483A1
公开(公告)日：2007-12-06
申请号：US11447179
申请日：2006-06-06
申请人： Christina Fu , Nang Kon Kwan , Steven William Parkinson , Robert Relyea
发明人： Christina Fu , Nang Kon Kwan , Steven William Parkinson , Robert Relyea
IPC分类号： H04L9/00
CPC分类号： H04L9/0822 , H04L9/0897
摘要： Methods, systems and computer readable mediums are provided for recovering keys. A key transport session key is generated, and a key encryption key is derived based on a server master key and an identification associated with a token. The key transport session key is encrypted with the key encryption key as a first wrapped key transport session key. An encrypted storage session key and an encrypted private key are retrieved from an archive. The encrypted storage session key is decrypted with a server storage key as a storage session key. The encrypted private key is decrypted with the storage session key. The decrypted private key is encrypted with the key transport session key as a wrapped private key. The wrapped private key and the first wrapped key transport session key are forwarded.
摘要翻译：提供方法，系统和计算机可读介质用于恢复密钥。生成密钥传输会话密钥，并且基于服务器主密钥和与令牌相关联的标识来导出密钥加密密钥。密钥传输会话密钥通过密钥加密密钥加密，作为第一个包装密钥传输会话密钥。从归档中检索加密的存储会话密钥和加密的私钥。加密存储会话密钥用服务器存储密钥解密为存储会话密钥。加密的私钥用存储会话密钥解密。解密的私钥用密钥传输会话密钥作为包装的私钥加密。包裹的私钥和第一个包裹密钥传输会话密钥被转发。

10. 发明授权

US08495380B2 Methods and systems for server-side key generation 有权
标题翻译：服务器端密钥生成的方法和系统
公开(公告)号：US08495380B2
公开(公告)日：2013-07-23
申请号：US11446957
申请日：2006-06-06
申请人： Christina Fu , Steven William Parkinson , Nang Kon Kwan
发明人： Christina Fu , Steven William Parkinson , Nang Kon Kwan
IPC分类号： H04L9/3294 , H04L9/08
CPC分类号： H04L9/3263 , H04L9/0822 , H04L63/061 , H04L63/0853 , H04L2209/603
摘要： A method and system for generating credentials for a token. A server detects a token, determines that the token is to be enrolled, and generates a subject key pair that includes a subject public key and subject private key. The server encrypts the subject private key with a key transport session key to obtain a wrapped private key and forwards the wrapped private key to the token.
摘要翻译：用于生成令牌的凭据的方法和系统。服务器检测令牌，确定令牌将被注册，并生成包含主题公钥和主体私钥的主题密钥对。服务器使用密钥传输会话密钥加密主体私钥以获得包装的私钥，并将包装的私钥转发到令牌。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式