专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明授权

US07841000B2 Authentication password storage method and generation method, user authentication method, and computer 有权
标题翻译：认证密码存储方法和生成方法，用户认证方法和计算机
公开(公告)号：US07841000B2
公开(公告)日：2010-11-23
申请号：US11581319
申请日：2006-10-16
申请人： Seiichi Kawano , Yuji Sugiyama , David Carroll Challener , Philip Lee Childs , Norman Arthur Dion, II
发明人： Seiichi Kawano , Yuji Sugiyama , David Carroll Challener , Philip Lee Childs , Norman Arthur Dion, II
IPC分类号： G06F17/30
CPC分类号： H04L9/3236 , G06F21/46 , H04L9/0894 , H04L9/3226 , H04L2209/127
摘要： Protection of an authentication password stored in a database held by a SAM of Windows® is strengthened. A GINA, a part of the OS, receives an authentication password in ASCII codes. The authentication password is converted to first UNICODES, and the first UNICODES are salted with a random number and converted to second UNICODES. The random number used for salting is associated with a user account and a password and stored in a read/write protected non-volatile memory or a non-volatile memory which can be accessed only by a BIOS. An LSA of the OS can process UNICODES without being changed.
摘要翻译：保护存储在由Windows®的SAM持有的数据库中的认证密码得到加强。操作系统的一部分GINA以ASCII码接收认证密码。认证密码被转换成第一个UNICODES，第一个UNICODES用一个随机数进行盐化并转换成第二个UNICODES。用于盐化的随机数与用户帐户和密码相关联，并存储在只能由BIOS访问的读/写保护的非易失性存储器或非易失性存储器中。操作系统的LSA可以处理UNICODES而不改变。

2. 发明申请

US20080092216A1 Authentication password storage method and generation method, user authentication method, and computer 有权
标题翻译：认证密码存储方法和生成方法，用户认证方法和计算机
公开(公告)号：US20080092216A1
公开(公告)日：2008-04-17
申请号：US11581319
申请日：2006-10-16
申请人： Seiichi Kawano , Yuji Sugiyama , David Carroll Challener , Philip Lee Childs , Norman Arthur Dion
发明人： Seiichi Kawano , Yuji Sugiyama , David Carroll Challener , Philip Lee Childs , Norman Arthur Dion
IPC分类号： H04L9/32
CPC分类号： H04L9/3236 , G06F21/46 , H04L9/0894 , H04L9/3226 , H04L2209/127
摘要： Protection of an authentication password stored in a database held by a SAM of Windows® is strengthened. A GINA, a part of the OS, receives an authentication password in ASCII codes. The authentication password is converted to first UNICODES, and the first UNICODES are salted with a random number and converted to second UNICODES. The random number used for salting is associated with a user account and a password and stored in a read/write protected non-volatile memory or a non-volatile memory which can be accessed only by a BIOS. An LSA of the OS can process UNICODES without being changed.
摘要翻译：保护由Windows（R）的SAM持有的数据库中存储的认证密码得到加强。操作系统的一部分GINA以ASCII码接收认证密码。认证密码被转换成第一个UNICODES，第一个UNICODES用一个随机数进行盐化并转换成第二个UNICODES。用于盐化的随机数与用户帐户和密码相关联，并存储在只能由BIOS访问的读/写保护的非易失性存储器或非易失性存储器中。操作系统的LSA可以处理UNICODES而不改变。

3. 发明申请

US20080133905A1 APPARATUS, SYSTEM, AND METHOD FOR REMOTELY ACCESSING A SHARED PASSWORD 审中-公开
标题翻译：用于远程访问共享密码的设备，系统和方法
公开(公告)号：US20080133905A1
公开(公告)日：2008-06-05
申请号：US11565452
申请日：2006-11-30
申请人： David Carroll Challener , Seiichi Kawano , Randall Scott Springfield , Rod D. Waltermann
发明人： David Carroll Challener , Seiichi Kawano , Randall Scott Springfield , Rod D. Waltermann
IPC分类号： H04L9/32
CPC分类号： H04L9/0822 , H04L9/3226
摘要： An apparatus, system, and method are disclosed for remotely accessing a shared password. A storage module stores identifiers, passwords, and keys within a secure key structure of a client. The passwords and keys include a shared password encrypted with a shared password key that is encrypted with a service structure key. The storage module also stores the service structure key encrypted with a key derived from a service password on a trusted server. An input/output module accesses the trusted server from the client with a prospective service password and receives the encrypted service structure key from the trusted server if a hash of the prospective service password is equivalent to the service password. An encryption module may decrypt the service structure key with the prospective service password, the shared password key with the service structure key, and the shared password with the shared password key.
摘要翻译：公开了用于远程访问共享密码的装置，系统和方法。存储模块在客户端的安全密钥结构内存储标识符，密码和密钥。密码和密钥包括使用通过服务结构密钥加密的共享密码密钥加密的共享密码。存储模块还将在服务密码上导出的密钥加密的服务结构密钥存储在可信服务器上。输入/输出模块从客户端接收可信服务密码，如果预期服务密码的散列等于服务密码，则从可信服务器接收加密的服务结构密钥。加密模块可以利用预期服务密码，具有服务结构密钥的共享密码密钥和具有共享密码密钥的共享密码对服务结构密钥进行解密。

4. 发明授权

US08347348B2 Apparatus, system, and method for pre-boot policy modification 有权
标题翻译：用于预引导策略修改的装置，系统和方法
公开(公告)号：US08347348B2
公开(公告)日：2013-01-01
申请号：US12059805
申请日：2008-03-31
申请人： David Carroll Challener , Jeffrey Mark Estroff , Mikio Hagiwara , Seiichi Kawano , Keiko Kokubun , Randall Scott Springfield
发明人： David Carroll Challener , Jeffrey Mark Estroff , Mikio Hagiwara , Seiichi Kawano , Keiko Kokubun , Randall Scott Springfield
IPC分类号： H04L29/06
CPC分类号： G06F9/4401 , G06F1/24
摘要： An apparatus, system, and method are disclosed for pre-boot policy modification. A key module exchanges a key with a server in a secure environment. A communication module receives a policy encoded with the key. A decode module decodes the encoded policy using the key and saves the policy setting prior to booting an operating system on the computer. An update module boots the computer using the policy.
摘要翻译：公开了用于预引导策略修改的装置，系统和方法。密钥模块在安全环境中与服务器交换密钥。通信模块接收用该密钥编码的策略。解码模块使用密钥解码编码策略，并在引导计算机上的操作系统之前保存策略设置。更新模块使用策略引导计算机。

5. 发明申请

US20090249434A1 APPARATUS, SYSTEM, AND METHOD FOR PRE-BOOT POLICY MODIFICATION 有权
标题翻译：装置，系统和预引导政策修改方法
公开(公告)号：US20090249434A1
公开(公告)日：2009-10-01
申请号：US12059805
申请日：2008-03-31
申请人： David Carroll Challener , Jeffrey Mark Estroff , Mikio Hagiwara , Seiichi Kawano , Keiko Kokubun , Randall Scott Springfield
发明人： David Carroll Challener , Jeffrey Mark Estroff , Mikio Hagiwara , Seiichi Kawano , Keiko Kokubun , Randall Scott Springfield
IPC分类号： G06F21/00 , H04L9/08 , G06F17/00 , G06F15/177
CPC分类号： G06F9/4401 , G06F1/24
摘要： An apparatus, system, and method are disclosed for pre-boot policy modification. A key module exchanges a key with a server in a secure environment. A communication module receives a policy encoded with the key. A decode module decodes the encoded policy using the key and saves the policy setting prior to booting an operating system on the computer. An update module boots the computer using the policy.
摘要翻译：公开了用于预引导策略修改的装置，系统和方法。密钥模块在安全环境中与服务器交换密钥。通信模块接收用该密钥编码的策略。解码模块使用密钥解码编码策略，并在引导计算机上的操作系统之前保存策略设置。更新模块使用策略引导计算机。

6. 发明授权

US08504810B2 Remote PC bootup via a handheld communication device 有权
标题翻译：远程PC通过手持通信设备启动
公开(公告)号：US08504810B2
公开(公告)日：2013-08-06
申请号：US11861577
申请日：2007-09-26
申请人： David Carroll Challener , Daryl Cromer , Howard Locker , Randall Scott Springfield
发明人： David Carroll Challener , Daryl Cromer , Howard Locker , Randall Scott Springfield
IPC分类号： G06F9/00 , G06F15/177
CPC分类号： G06F21/305
摘要： A method computer usable medium and computer system circuitry are disclosed for starting or “booting up” a computer from a remote location using a remote command device such as a cellular telephone. The method and system includes a secure means for remotely storing and transmitting security passwords.
摘要翻译：公开了一种方法计算机可用介质和计算机系统电路，用于使用诸如蜂窝电话的远程命令装置从远程位置启动或“启动”计算机。该方法和系统包括用于远程存储和传输安全密码的安全装置。

7. 发明授权

US08140795B2 Hard disk drive with write-only region 有权
标题翻译：带只写区域的硬盘驱动器
公开(公告)号：US08140795B2
公开(公告)日：2012-03-20
申请号：US11068322
申请日：2005-02-28
申请人： David Carroll Challener , Rod David Waltermann
发明人： David Carroll Challener , Rod David Waltermann
IPC分类号： G06F12/00 , G06F13/00
CPC分类号： G06F3/0644 , G06F3/0622 , G06F3/0637 , G06F3/0676 , G06F21/805
摘要： The invention partitions the HDD into three areas, namely, no access, write-only, and the conventional read/write. Sensitive data (antivirus programs, back up data, etc.) is written into write-only areas, which thereafter become designated “no access” by appropriately changing their designation a data structure known as “logical block address” or “LBA”. Only users having approved passwords can change the status of a “no access” block back to “write-only” or “read/write”.
摘要翻译：本发明将HDD分为三个区域，即无访问，只写和常规读/写。将敏感数据（防病毒程序，备份数据等）写入只写区域，其后通过适当地改变它们的指定被称为“逻辑块地址”或“LBA”的数据结构，被指定为“无访问”。只有具有认证密码的用户才能将“无访问”块的状态更改回“只读”或“读/写”。

8. 发明授权

US08089468B2 Slate wireless keyboard connection and proximity display enhancement for visible display area 有权
标题翻译： Slate无线键盘连接和可见显示区域的接近显示增强
公开(公告)号：US08089468B2
公开(公告)日：2012-01-03
申请号：US12192244
申请日：2008-08-15
申请人： Howard Locker , David Carroll Challener , Daryl Carvis Cromer , Qian Ying Wang
发明人： Howard Locker , David Carroll Challener , Daryl Carvis Cromer , Qian Ying Wang
IPC分类号： G06F3/02
CPC分类号： G06F3/0231 , G06F1/1626 , G06F1/1669 , G06F3/14 , G09G2340/0407 , G09G2340/0442 , G09G2340/14
摘要： An approach is provided that identifies when a wireless keyboard unit is connected to an information handling system that includes a display screen that is partially blocked when the keyboard is attached. A determination is made as to the size of the visible portion of the display screen. Items are displayed on the visible portion of the display screen. The approach refrains from displaying items on the blocked portion of the display screen. The user is able to move the wireless keyboard, the movement of the keyboard resulting in a changed size of the visible portion of the display screen. After the keyboard is repositioned, the visual items are re-displayed on the visible portion of the display screen so that the items fit in the changed size of the visible portion of the display screen.
摘要翻译：提供了一种方法，其识别无线键盘单元何时连接到信息处理系统，该信息处理系统包括当附接键盘时部分阻止的显示屏幕。确定显示屏的可见部分的尺寸。项目显示在显示屏的可见部分。该方法禁止在显示屏幕的屏蔽部分上显示项目。用户能够移动无线键盘，键盘的移动导致显示屏幕的可见部分的尺寸改变。在重新定位键盘之后，可视物品被重新显示在显示屏幕的可见部分上，使得这些物品符合显示屏幕的可见部分的改变的尺寸。

9. 发明授权

US08024579B2 Authenticating suspect data using key tables 有权
标题翻译：使用关键表验证可疑数据
公开(公告)号：US08024579B2
公开(公告)日：2011-09-20
申请号：US11647932
申请日：2006-12-29
申请人： David Carroll Challener , John H. Nicholson , Joseph Michael Pennisi , Rod D. Waltermann
发明人： David Carroll Challener , John H. Nicholson , Joseph Michael Pennisi , Rod D. Waltermann
IPC分类号： G06F11/30
CPC分类号： G06F21/57 , G06F21/51 , H04L9/0897 , H04L9/3236
摘要： A system and method for authenticating suspect code includes steps of: receiving the suspect code for a first instance of a trusted platform module; loading the suspect code into a trusted platform module device operatively associated with a processor, wherein the suspect code is loaded outside of a shielded location within the trusted platform module device; retrieving a validation public key from a table and storing it in a register in the trusted platform module device, the validation public key indexed by the suspect code; and retrieving a hash algorithm from the table, the hash algorithm indexed by the suspect code. The hash algorithm is run to derive a first hash value; then, using the validation public key, the second hash value is decrypted to derive a second decrypted hash value. The two hash values are compared; and upon determining a match, the suspect code is loaded into the shielded location of the processor for execution by the processor.
摘要翻译：用于认证可疑代码的系统和方法包括以下步骤：接收可信平台模块的第一实例的可疑代码; 将可疑代码加载到与处理器可操作地相关联的可信任的平台模块设备中，其中可疑代码被加载到可信平台模块设备内的屏蔽位置之外; 从表中检索验证公钥并将其存储在可信平台模块设备中的寄存器中，由可疑代码索引的验证公钥; 并从表中检索散列算法，由可疑代码索引的哈希算法。运行散列算法以导出第一散列值; 然后，使用验证公钥，解密第二哈希值以导出第二解密哈希值。比较两个哈希值; 并且在确定匹配时，可疑代码被加载到处理器的屏蔽位置以供处理器执行。

10. 发明授权

US07779454B2 System and method for virtualized hypervisor to detect insertion of removable media 有权
标题翻译：用于虚拟化管理程序的系统和方法，用于检测可移动介质的插入
公开(公告)号：US07779454B2
公开(公告)日：2010-08-17
申请号：US11564832
申请日：2006-11-29
申请人： David Carroll Challener , Daryl Cromer , Howard Jeffrey Locker , Randall Scott Springfield
发明人： David Carroll Challener , Daryl Cromer , Howard Jeffrey Locker , Randall Scott Springfield
IPC分类号： G06F21/20
CPC分类号： H04L63/10 , G06F21/552 , G06F2221/2153
摘要： A system and method for using a client-side hypervisor in conjunction with a secure network-side monitoring mechanism to detect removable media insertions since a client's last network session with the secure network is presented. The hypervisor uses a “client-side insertion value” to track the number of times that a user inserts removable media into a socket located on the client. When the client is connected to the secure network, the client's hypervisor notifies the secure network of each insertion and the secure network increments a “secure network-side tracker value.” For each login request, the client includes the client-side insertion value, which the secure network compares against its secure network-side tracker value. When the two values are different, the secure network sends an action request to the client, such as a request to perform a full system scan. Once the client performs the action, the client's hypervisor resets its client-side insertion value and attempts to logon to the secure network again.
摘要翻译：提出了客户端管理程序与安全网络侧监视机制结合使用以检测可移动介质插入的系统和方法，因为客户端与安全网络的最后一次网络会话。管理程序使用“客户端插入值”来跟踪用户将可移动媒体插入位于客户端上的套接字的次数。当客户端连接到安全网络时，客户端的管理程序会将安全网络通知每个插入，安全网络会增加“安全网络侧跟踪器值”。对于每个登录请求，客户端包括客户端插入值，安全网络与其安全的网络侧跟踪器值进行比较。当两个值不同时，安全网络向客户端发送动作请求，例如执行完整系统扫描的请求。一旦客户端执行操作，客户端的管理程序将重置其客户端插入值，并尝试再次登录到安全网络。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式