专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明授权

US08160247B2 Providing local storage service to applications that run in an application execution environment 有权
标题翻译：为在应用程序执行环境中运行的应用程序提供本地存储服务
公开(公告)号：US08160247B2
公开(公告)日：2012-04-17
申请号：US11863189
申请日：2007-09-27
申请人： Sunil C. Agrawal , William Ie , Jason Boyer
发明人： Sunil C. Agrawal , William Ie , Jason Boyer
IPC分类号： H04L9/00 , G06F12/14
CPC分类号： G06F21/6218 , G06F21/10 , G06F21/62 , G06F2221/2107 , G06F2221/2113
摘要： Methods, systems, and apparatus, including medium-encoded computer program products, for providing local storage service to applications that run in an application execution environment. In one aspect, a method includes receiving a request from one of the applications, wherein the request triggers local storage of information; obtaining an encryption key based on identifiers including a first identifier corresponding to the application execution environment, a second identifier corresponding to the one application, and a third identifier corresponding to the computing apparatus; encrypting the information using the encryption key; and storing the encrypted information in the computing apparatus.
摘要翻译：方法，系统和装置，包括中等编码的计算机程序产品，用于向在应用执行环境中运行的应用程序提供本地存储服务。一方面，一种方法包括从应用程序之一接收请求，其中所述请求触发信息的本地存储; 基于与所述应用执行环境对应的第一标识符，与所述一个应用相对应的第二标识符和与所述计算装置对应的第三标识符来获取加密密钥; 使用加密密钥加密信息; 并将加密信息存储在计算装置中。

2. 发明授权

US08219805B1 Application identification 有权
标题翻译：申请鉴定
公开(公告)号：US08219805B1
公开(公告)日：2012-07-10
申请号：US12001497
申请日：2007-12-11
申请人： William Ie , Sunil C. Agrawal
发明人： William Ie , Sunil C. Agrawal
IPC分类号： H04L29/06
CPC分类号： H04L9/3265 , G06F21/44
摘要： Methods, systems, and apparatus, including medium-encoded computer program products, for identifying applications. In general, in one aspect, a method includes: obtaining a first certificate chain from certificates corresponding to a digitally signed application, and a second certificate chain from a successful validation of the digital signature using the certificates; and generating an identifier for the application based on one or more certificate owner names found in both the first certificate chain and the second certificate chain. Generating the identifier for the application can include finding a location in one of the first and second certificate chains that corresponds to a root of the other of the first and second certificate chains, and comparing the one or more certificate owner names found in both the first certificate chain and the second certificate chain, starting or ending with the root and the location.
摘要翻译：用于识别应用的方法，系统和装置，包括中等编码的计算机程序产品。通常，一方面，一种方法包括：从使用证书的数字签名的成功验证获得与数字签名的应用相对应的证书的第一证书链和第二证书链; 以及基于在所述第一证书链和所述第二证书链中找到的一个或多个证书所有者名称来生成所述应用的标识符。生成应用程序的标识符可以包括在第一和第二证书链之一中找到与第一和第二证书链中的另一个的根对应的位置，并且比较在第一和第二证书链中找到的一个或多个证书所有者名称证书链和第二个证书链，以根和位置开始或结束。

3. 发明申请

US20130132733A1 System And Method For Digital Rights Management With System Individualization 审中-公开
标题翻译：系统个性化数字权限管理系统与方法
公开(公告)号：US20130132733A1
公开(公告)日：2013-05-23
申请号：US12472155
申请日：2009-05-26
申请人： Sunil C. Agrawal , Katherine K. Nadell , Kunal D. Shah
发明人： Sunil C. Agrawal , Katherine K. Nadell , Kunal D. Shah
IPC分类号： G06F21/00
CPC分类号： G06F21/10
摘要： Various embodiments of a system and method for digital rights management with system individualization are described. In various embodiments, a DRM component may generate a request for machine-specific credentials specific to the system on which the DRM component is implemented. This request may include device information of component(s) of such system. The DRM component may also receive an encrypted response that includes the machine-specific credentials. This encrypted response may be encrypted with a machine-specific encryption key generated from the device information. In various embodiments the response may be generated by an individualization server that verified the request for machine-specific credentials. The DRM component may also, based on the device information of the system on which the DRM component is implemented, generate an encryption key equivalent to the machine-specific encryption key with which the received response is encrypted. The DRM component may decrypt the encrypted response with the generated encryption key.
摘要翻译：描述了具有系统个性化的用于数字版权管理的系统和方法的各种实施例。在各种实施例中，DRM组件可以生成对实现DRM组件的系统特有的机器特定凭证的请求。该请求可以包括这种系统的组件的设备信息。 DRM组件还可以接收包括机器特定凭证的加密响应。可以使用从设备信息生成的机器特定的加密密钥来加密该加密的响应。在各种实施例中，响应可以由验证机器特定证书的请求的个性化服务器生成。 DRM组件还可以基于其上实现DRM组件的系统的设备信息，生成与所接收的响应被加密的机器专用加密密钥相等的加密密钥。 DRM组件可以利用生成的加密密钥对加密的响应进行解密。

4. 发明授权

US08185741B1 Converting transport level transactional security into a persistent document signature 有权
标题翻译：将传输级别的事务安全性转换为持久性文档签名
公开(公告)号：US08185741B1
公开(公告)日：2012-05-22
申请号：US11344293
申请日：2006-01-30
申请人： Sunil C. Agrawal , Jagriti Uppal , Joseph Steele
发明人： Sunil C. Agrawal , Jagriti Uppal , Joseph Steele
IPC分类号： H04L9/32
CPC分类号： H04L9/3247 , H04L51/066 , H04L51/08 , H04L63/126
摘要： Briefly, in accordance with one or more embodiments, a transport level transactional security may be converted into a persistent document signature. In one embodiment, a digital signature of an electronic mail message may be saved in a file attached to the electronic mail message. The file with the added digital signature may be saved, transmitted, received, and/or otherwise utilized independent of the original electronic mail message. A receiving node may verify the identity of an originating node based at least in part on the digital signature contained in the file. In alternative embodiment, the signature for the file may be generated at least in part on a message to be transmitted according to a secure transmission and/or file download protocol from a server to a client.
摘要翻译：简而言之，根据一个或多个实施例，传输级别事务安全性可被转换为持久性文档签名。在一个实施例中，电子邮件消息的数字签名可以保存在附加到电子邮件消息的文件中。具有附加数字签名的文件可以独立于原始电子邮件消息被保存，发送，接收和/或以其它方式使用。接收节点可以至少部分地基于文件中包含的数字签名来验证始发节点的身份。在替代实施例中，文件的签名可以至少部分地基于要从服务器到客户端的安全传输和/或文件下载协议来发送的消息来生成。

5. 发明申请

US20110185179A1 System And Method For Digital Rights Management With A Lightweight Digital Watermarking Component 审中-公开
标题翻译：使用轻量级数字水印部件进行数字版权管理的系统和方法
公开(公告)号：US20110185179A1
公开(公告)日：2011-07-28
申请号：US12548228
申请日：2009-08-26
申请人： Viswanathan Swaminathan , Sunil C. Agrawal
发明人： Viswanathan Swaminathan , Sunil C. Agrawal
IPC分类号： H04L9/32 , H04N7/167
CPC分类号： G06F21/10
摘要： Various embodiments of a system and method for digital rights management with a lightweight digital watermarking component are described. Embodiments may include methods as well as elements for performing such methods. Such a method may include receiving content onto a computer system; the computer system may include a runtime component configured to consume the content. The method may include receiving a digital watermarking component on the computer system. The digital watermarking component may specify information for generating a digital watermark on the content. The method may include applying a digital watermark to the content with the runtime component in order to generate watermarked content. The digital watermark may be applied by the runtime component in accordance with the digital watermarking component. In various embodiments, the received runtime component may be configured to prevent the received content from being consumed without the digital watermark applied to the received content.
摘要翻译：描述了使用轻量级数字水印部件进行数字版权管理的系统和方法的各种实施例。实施例可以包括用于执行这种方法的方法以及元件。这种方法可以包括将内容接收到计算机系统上; 计算机系统可以包括被配置为消费内容的运行时组件。该方法可以包括在计算机系统上接收数字水印分量。数字水印分量可以指定用于在内容上生成数字水印的信息。该方法可以包括将数字水印应用于具有运行时组件的内容，以便生成带水印的内容。数字水印可以由运行时分量根据数字水印分量来应用。在各种实施例中，所接收的运行时间组件可以被配置为防止在没有将数字水印应用于所接收的内容的情况下被消费。

6. 发明授权

US07581106B1 Using digital certificates to facilitate enforcement of product licenses 有权
标题翻译：使用数字证书来促进产品许可证的执行
公开(公告)号：US07581106B1
公开(公告)日：2009-08-25
申请号：US11111088
申请日：2005-04-20
申请人： Sujata Das , Sunil C. Agrawal , Charles R. Myers, IV
发明人： Sujata Das , Sunil C. Agrawal , Charles R. Myers, IV
IPC分类号： H04L21/00
CPC分类号： G06F21/10
摘要： One embodiment of the present invention provides a system that uses digital certificates to facilitate enforcing licensing terms for applications that manipulate documents. During operation, the system obtains a credential, wherein the credential includes a private key and a digital certificate containing a corresponding public key. This digital certificate also contains a profile specifying allowed operations which can be performed on documents signed with the credential. Next, the system digitally signs a document using the credential, so that the resulting signed document is signed with the private key and includes a copy of the digital certificate with the profile specifying the allowed operations. The certificate issuer can subsequently revoke the digital certificate (which effectively revokes the license) if terms of a license agreement associated with the digital certificate are violated.
摘要翻译：本发明的一个实施例提供一种使用数字证书来促进对操纵文档的应用程序执行许可条款的系统。在操作期间，系统获得证书，其中凭证包括私钥和包含相应公钥的数字证书。该数字证书还包含一个配置文件，指定允许的操作，这些操作可以在凭证上签名的文档上执行。接下来，系统使用凭证对文档进行数字签名，以便所得到的签名文档用私钥签名，并且包括具有指定允许操作的简档的数字证书的副本。如果违反与数字证书相关的许可协议的条款，证书颁发者可随后撤销数字证书（有效地撤销许可证）。

7. 发明授权

US09225520B2 System and method for deterministic generation of a common content encryption key on distinct encryption units 有权
标题翻译：用于在不同加密单元上确定性地生成公共内容加密密钥的系统和方法
公开(公告)号：US09225520B2
公开(公告)日：2015-12-29
申请号：US12790512
申请日：2010-05-28
申请人： Noam Lorberbaum , Sunil C. Agrawal , Katherine K. Nadell
发明人： Noam Lorberbaum , Sunil C. Agrawal , Katherine K. Nadell
IPC分类号： H04L9/08 , H04N21/254 , H04N21/4405 , H04N21/4627 , H04N21/2347
CPC分类号： H04L9/0861 , H04L2209/60 , H04N21/23476 , H04N21/2541 , H04N21/4405 , H04N21/4627
摘要： Various embodiments of a system and method for deterministic generation of a common content encryption key on distinct encryption units are described. Embodiments may include, for each given content item of multiple content items that represent one or more portions of a common media object, controlling a different encryption unit of multiple distinct encryption units to i) generate a content encryption key for the given content item based on: a common base secret shared by the multiple distinct encryption units, and an identifier specific to the media object, and ii) encrypt the given content item with the respective content encryption key generated for that content item in order to generate a respective encrypted content item. Each content encryption key generated for a given content item may be equivalent to each other content encryption key such that decryption of each encrypted content item requires a common decryption key.
摘要翻译：描述用于在不同的加密单元上确定性地生成公共内容加密密钥的系统和方法的各种实施例。对于表示公共媒体对象的一个或多个部分的多个内容项目的每个给定内容项目，实施例可以包括控制多个不同加密单元的不同加密单元，以便i）基于以下内容生成给定内容项目的内容加密密钥：：由多个不同的加密单元共享的公共基本秘密，以及媒体对象特有的标识符，以及ii）使用针对该内容项目生成的相应内容加密密钥对给定内容项进行加密，以便生成相应的加密内容项。为给定内容项生成的每个内容加密密钥可以等同于彼此的内容加密密钥，使得每个加密的内容项的解密需要公用解密密钥。

8. 发明授权

US09027143B1 System and method for multipronged authentication 有权
标题翻译：用于多重身份验证的系统和方法
公开(公告)号：US09027143B1
公开(公告)日：2015-05-05
申请号：US12548310
申请日：2009-08-26
申请人： Sunil C. Agrawal , Joseph D. Steele
发明人： Sunil C. Agrawal , Joseph D. Steele
IPC分类号： G06F7/04 , G06F17/30 , H04N7/16 , G06F21/44 , G06F21/10 , H04N21/25
CPC分类号： G06F21/6218 , G06F21/10 , G06F21/105 , G06F21/44 , G06F21/51 , H04L63/08 , H04L2463/101 , H04N21/25 , H04N21/4405 , H04N21/4627
摘要： Various embodiments of a system and method for multipronged authentication are described. Embodiments may include a client system that implements a runtime component configured to consume content. The client system may be configured to implement a digital rights management component configured to perform one or more cryptographic operations and also authenticate the runtime component. The client system may receive encrypted content from a remote computer system and receive a given authentication component from a remote computer system; that authentication component may be configured to authenticate the runtime component. The client system may, based on authentication of the runtime component by both the digital rights management component and the given authentication component, decrypt at least a portion of the encrypted content. In this way, the client system may ensure that decryption of the encrypted content may occur only if multiple components authenticate the runtime component, according to some embodiments.
摘要翻译：描述用于多重认证的系统和方法的各种实施例。实施例可以包括实现被配置为消费内容的运行时组件的客户端系统。客户端系统可以被配置为实现被配置为执行一个或多个密码操作并且还验证运行时组件的数字版权管理组件。客户端系统可以从远程计算机系统接收加密的内容并从远程计算机系统接收给定的认证组件; 该认证组件可以被配置为认证运行时组件。客户端系统可以基于数字版权管理组件和给定认证组件的运行时组件的认证来解密加密内容的至少一部分。以这种方式，根据一些实施例，客户端系统可以确保只有在多个组件认证运行时组件时才可能发生加密内容的解密。

9. 发明授权

US08688997B2 Using digital certificates in document distribution 有权
标题翻译：在文件分发中使用数字证书
公开(公告)号：US08688997B2
公开(公告)日：2014-04-01
申请号：US13229463
申请日：2011-09-09
申请人： Sujata Das , Sunil C. Agrawal , Charles R. Myers, IV
发明人： Sujata Das , Sunil C. Agrawal , Charles R. Myers, IV
IPC分类号： H04L9/32
CPC分类号： G06F21/10
摘要： One embodiment of the present invention provides a system that uses digital certificates to facilitate enforcing licensing terms for applications that manipulate documents. During operation, the system obtains a credential, wherein the credential includes a private key and a digital certificate containing a corresponding public key. This digital certificate also contains a profile specifying allowed operations which can be performed on documents signed with the credential. Next, the system digitally signs a document using the credential, so that the resulting signed document is signed with the private key and includes a copy of the digital certificate with the profile specifying the allowed operations. The certificate issuer can subsequently revoke the digital certificate (which effectively revokes the license) if teens of a license agreement associated with the digital certificate are violated.
摘要翻译：本发明的一个实施例提供一种使用数字证书来促进对操纵文档的应用程序执行许可条款的系统。在操作期间，系统获得证书，其中凭证包括私钥和包含相应公钥的数字证书。该数字证书还包含一个配置文件，指定允许的操作，这些操作可以在凭证上签名的文档上执行。接下来，系统使用凭证对文档进行数字签名，以便所得到的签名文档用私钥签名，并且包括具有指定允许操作的简档的数字证书的副本。如果违反与数字证书相关的许可协议的条款，证书颁发者可随后撤销数字证书（有效地撤销许可证）。

10. 发明申请

US20130212404A1 DOCUMENT MODIFICATION DETECTION AND PREVENTION 有权
标题翻译：文件修改检测和预防
公开(公告)号：US20130212404A1
公开(公告)日：2013-08-15
申请号：US12795502
申请日：2010-06-07
申请人： James D. Pravetz , Krish Chaudhury , Sunil C. Agrawal
发明人： James D. Pravetz , Krish Chaudhury , Sunil C. Agrawal
IPC分类号： G06F21/24
CPC分类号： H04L63/18 , G06F21/6218 , H04L9/3247
摘要： Methods and apparatus, including computer program products, implementing and using techniques for document authentication. An electronic document is presented to a user. The electronic document has data representing a signed state and a current state. A disallowed difference between the signed state and the current state is detected, based on one or more rules that are associated with the electronic document. A digital signature associated with the electronic document is invalidated in response to the detecting.
摘要翻译：方法和设备，包括计算机程序产品，文件认证的实施和使用技术。向用户呈现电子文档。电子文档具有表示签名状态和当前状态的数据。基于与电子文档相关联的一个或多个规则，检测签名状态和当前状态之间的不允许的差异。与电子文档相关联的数字签名响应于检测而无效。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式