专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明申请

WO2008087614A2 A MECHANISM FOR AUTHENTICATION OF CALLER AND CALLEE USING OTOACOUSTIC EMISSIONS 审中-公开
标题翻译：使用传感器发射的认证机器和校准机制
公开(公告)号：WO2008087614A2
公开(公告)日：2008-07-24
申请号：PCT/IB2008/051272
申请日：2008-01-16
申请人： ALCATEL LUCENT , CHOYI, Vinod Kumar , MARQUET, Bertrand
发明人： CHOYI, Vinod Kumar , MARQUET, Bertrand
CPC分类号： G07C9/00158 , G06F21/32 , H04L63/0861 , H04L65/1006 , H04L65/1069
摘要： A method and apparatus are provided for authenticating a user attempting to establish a service which uses SIP. The user registers with the SIP server by providing the digital otoacoustic signature of the user. Thereafter, when the user attempts to initiate a session through the SIP server, the SIP server sends an Authorization Request message to the SIP client of the user. The SIP client reads the user's digital otoacoustic signature, generates a response based on the digital otoacoustic signature, and embeds the response in a second Invite message sent back to the SIP server. Meanwhile, the SIP server determines an expected response, based on the digital otoacoustic signature registered by the user. If the response provided by the SIP client matches the response expected by the SIP server, the SIP server allows establishment of the server. The invention is of particular use with IP telephony services, since end user devices used with such services are ergonomically well suited for reading of otoacoustic signatures. The invention may also be used to authenticate an intended recipient of an SIP call.
摘要翻译：提供了一种用于认证尝试建立使用SIP的服务的用户的方法和装置。用户通过提供用户的数字耳声签名向SIP服务器注册。此后，当用户尝试通过SIP服务器发起会话时，SIP服务器向用户的SIP客户端发送授权请求消息。 SIP客户端读取用户的数字耳声签名，基于数字耳声签名生成响应，并将响应嵌入到发送回SIP服务器的第二个邀请消息中。同时，SIP服务器基于用户登记的数字耳声标签来确定预期响应。如果SIP客户端提供的响应与SIP服务器预期的响应匹配，则SIP服务器允许建立服务器。本发明特别用于IP电话业务，因为与此类服务一起使用的终端用户设备符合人体工程学非常适合于读取耳声特征。本发明还可以用于认证SIP呼叫的预期接收者。

2. 发明申请

WO2008149326A2 SYSTEM AND METHOD OF NETWORK ACCESS SECURITY POLICY MANAGEMENT FOR MULTIMODAL DEVICE 审中-公开
标题翻译：网络访问系统和方法多模式设备的安全策略管理
公开(公告)号：WO2008149326A2
公开(公告)日：2008-12-11
申请号：PCT/IB2008/053472
申请日：2008-06-03
申请人： ALCATEL LUCENT , CHOYI, Vinod Kumar , VINOKUROV, Dmitri
发明人： CHOYI, Vinod Kumar , VINOKUROV, Dmitri
CPC分类号： H04L63/20 , H04L69/16 , H04W8/18 , H04W12/08 , H04W80/04
摘要： A system and method are provided for management of access security for access by a multimodal device to a converged fixed/ mobile network. An inter-technology change-off monitoring entity (ICME) is provided to monitor an inter-technology change-off of the multimodal device and to notify a policy manager of the inter-technology change-off. The policy manager looks up in a policy database, security policies applicable to the user of the multimodal device and the particular technology being used by the multimodal device. The policy manager conveys to various policy enforcement points throughout the converged fixed/ mobile network the applicable security policies which take into account the user's identity and the access technology being used.
摘要翻译：提供了一种系统和方法，用于管理由多模式设备访问融合的固定/移动网络的访问安全性。提供了一个技术间切换监控实体（ICME）来监控多模态设备的技术间切换，并向策略管理员通知技术间的切换。策略管理器查找策略数据库，适用于多模态设备的用户的安全策略以及多模式设备正在使用的特定技术。整个融合固定/移动网络的策略管理员向各种策略执行点传达了考虑到用户身份和正在使用的访问技术的适用安全策略。

3. 发明申请

WO2009093224A2 FACILITATING DEFENSE AGAINST MAC TABLE OVERFLOW ATTACKS 审中-公开
标题翻译：加强防范MAC桌面溢出攻击的防御
公开(公告)号：WO2009093224A2
公开(公告)日：2009-07-30
申请号：PCT/IB2009051972
申请日：2009-01-08
申请人： ALCATEL LUCENT , SUN YONG , CHOYI VINOD KUMAR
发明人： SUN YONG , CHOYI VINOD KUMAR
CPC分类号： H04L12/4625 , H04L49/251 , H04L49/351 , H04L63/1458 , H04L63/1466 , H04L2463/145
摘要： A method for defending against MAC table overflow attacks comprises a plurality of operations. An operation is performed for determining whether each one of a plurality of MAC addresses within a MAC table has one-way traffic or two-way traffic corresponding thereto. Thereafter, operations are performed for designating each MAC address having two-way traffic corresponding thereto as a first category of MAC address and for designating each MAC address having one-way traffic corresponding thereto as a second category of MAC address. In response to the number of the MAC addresses designated as the second category of MAC address exceeding a prescribed threshold value, an operation is performed for causing a timeout value of at least a portion of the MAC addresses designated as the second category of MAC address to be less than a timeout value of the MAC addresses designated as the first category of MAC address.
摘要翻译：防止MAC表溢出攻击的方法包括多个操作。执行用于确定MAC表中的多个MAC地址中的每一个是否具有与其对应的单向业务或双向业务的操作。此后，执行操作来指定具有对应于其的双向业务的每个MAC地址作为第一类MAC地址，并且用于指定具有与其对应的单向业务的每个MAC地址作为第二类MAC地址。响应于指定为超过规定阈值的MAC地址的第二类别的MAC地址的数量，执行用于使指定为第二类别MAC地址的MAC地址的至少一部分的超时值的操作小于指定为第一类MAC地址的MAC地址的超时值。

4. 发明申请

WO2008001340A3 MOBILE PHONE LOCKING SYSTEM USING OTOACOUSTIC SIGNALS 审中-公开
公开(公告)号：WO2008001340A3
公开(公告)日：2008-01-03
申请号：PCT/IB2007/053433
申请日：2007-06-28
申请人： ALCATEL LUCENT , CHOYI, Vinod Kumar , MARQUET, Bertrand
发明人： CHOYI, Vinod Kumar , MARQUET, Bertrand
IPC分类号： G07C9/00 , H04M1/27 , H04M1/667
摘要： A method and apparatus (18) are provided for authenticating a user of a mobile phone. While the user holds the phone (10) to his or her ear, a speaker (12) near the earpiece emits clicks into the user's ear. The microphone (14) of the phone measures the response from the ear as an otoacoustic signal. A processor digitizes the measured otoacoustic signal to produce a received digital otoacoustic signature, and compares this with a stored digital otoacoustic signature of a legitimate user. If the signatures match, the phone (10) is enabled. The invention allows secure authentication of mobile phones in. a manner very natural and convenient to users.

5. 发明申请

WO2009053948A3 NETWORK-BASED DRM ENFORCEMENT 审中-公开
标题翻译：基于网络的DRM执行
公开(公告)号：WO2009053948A3
公开(公告)日：2009-09-03
申请号：PCT/IB2008055332
申请日：2008-10-10
申请人： ALCATEL LUCENT , CHOYI VINOD KUMAR , KHAN FAUD , VINOKUROV DMITRI
发明人： CHOYI VINOD KUMAR , KHAN FAUD , VINOKUROV DMITRI
IPC分类号： H04L29/06
CPC分类号： H04L63/10 , G06F21/10 , H04L2463/101
摘要： A method ofnetwork-based digital rights enforcement, and related enforcement device, the method including one or more of the following: embedding information into digital content requested by an end user; providing a signature for the digital content to a service provider; providing a key to the service provider, the key being necessary for reading the information embedded into the digital content; providing an algorithm to the service provider forextracting the information embedded into the digital content; providing an identification to the service provider ofa content provider that provides the digital content; extracting the signature from the digital content requested by the end user; analyzing the signature to determine whether a signature match exists; and determining whether the end user is a legitimate authorized user of the requested digital content or capable of distributing content.
摘要翻译：一种基于网络的数字版权执法的方法和相关的执行装置，该方法包括以下一个或多个：将信息嵌入到最终用户请求的数字内容中; 向服务提供商提供数字内容的签名; 为服务提供商提供密钥，是读取嵌入到数字内容中的信息所必需的关键; 向服务提供商提供一种提取嵌入到数字内容中的信息的算法; 向提供数字内容的内容提供商的服务提供商提供标识; 从最终用户请求的数字内容中提取签名; 分析签名以确定是否存在签名匹配; 以及确定最终用户是所请求的数字内容的合法授权用户还是能够分发内容。

6. 发明申请

WO2008111026A3 SYSTEM AND METHOD OF NETWORK ACCESS SECURITY POLICY MANAGEMENT BY USER AND DEVICE 审中-公开
标题翻译：网络访问系统和方法用户和设备的安全策略管理
公开(公告)号：WO2008111026A3
公开(公告)日：2009-01-08
申请号：PCT/IB2008051772
申请日：2008-02-07
申请人： ALCATEL LUCENT , VINOKUROV DMITRI , CHOYI VINOD KUMAR
发明人： VINOKUROV DMITRI , CHOYI VINOD KUMAR
IPC分类号： H04L29/06
CPC分类号： H04L63/0263 , H04L63/20
摘要： A system and method are provided for management of access security by user and device. A security policy enforcement point is provided with a user policy module to receive user credentials from an access device of the user and a point for setting device dependent security policy to receive device credentials from the access device. A user policy is retrieved from a user database with use of the user credentials while a device policy is retrieved from a device database with use of the device credentials. The user policy and device policy are combined and used in the SPEP to enforce a user and device based security policy.
摘要翻译：提供了一种用于管理用户和设备的访问安全性的系统和方法。用户策略模块提供安全策略执行点，以从用户的接入设备接收用户凭证，以及用于设置依赖于设备的安全策略以从接入设备接收设备凭证的点。在使用设备凭证从设备数据库检索设备策略时，使用用户凭据从用户数据库中检索用户策略。 SPEP中组合使用用户策略和设备策略，强制执行基于用户和设备的安全策略。

7. 发明申请

WO2008035318A3 SYSTEM AND METHOD OF SECURELY PROCESSING LAWFULLY INTERCEPTED NETWORK TRAFFIC 审中-公开
公开(公告)号：WO2008035318A3
公开(公告)日：2008-03-27
申请号：PCT/IB2007/054333
申请日：2007-09-13
申请人： ALCATEL LUCENT , KHAN, Faud Ahmad , VINOKUROV, Dmitri , CHOYI, Vinod Kumar
发明人： KHAN, Faud Ahmad , VINOKUROV, Dmitri , CHOYI, Vinod Kumar
IPC分类号： H04L29/06
摘要： A system and method are provided for supporting storage and analysis by law enforcement agency premises equipment of intercepted network traffic. The system and method provide integrity of the intercepted network traffic stored in an archive in accordance with lawful intercept requirements by storing all of the intercepted traffic, both benign and malicious, in the archive in its original form. The system and method furthermore provide for security from any malicious data packets of the archive by separating the malicious packets from the benign packets and forwarding only the benign packets to analysis applications of the law enforcement agency premises equipment.

8. 发明申请

WO2009093224A3 FACILITATING DEFENSE AGAINST MAC TABLE OVERFLOW ATTACKS 审中-公开
公开(公告)号：WO2009093224A3
公开(公告)日：2009-07-30
申请号：PCT/IB2009/051972
申请日：2009-01-08
申请人： ALCATEL LUCENT , SUN, Yong , CHOYI, Vinod Kumar
发明人： SUN, Yong , CHOYI, Vinod Kumar
IPC分类号： H04L29/06 , H04L12/46
摘要： A method for defending against MAC table overflow attacks comprises a plurality of operations. An operation is performed for determining whether each one of a plurality of MAC addresses within a MAC table has one-way traffic or two-way traffic corresponding thereto. Thereafter, operations are performed for designating each MAC address having two-way traffic corresponding thereto as a first category of MAC address and for designating each MAC address having one-way traffic corresponding thereto as a second category of MAC address. In response to the number of the MAC addresses designated as the second category of MAC address exceeding a prescribed threshold value, an operation is performed for causing a timeout value of at least a portion of the MAC addresses designated as the second category of MAC address to be less than a timeout value of the MAC addresses designated as the first category of MAC address.

9. 发明申请

WO2008149326A3 SYSTEM AND METHOD OF NETWORK ACCESS SECURITY POLICY MANAGEMENT FOR MULTIMODAL DEVICE 审中-公开
标题翻译：网络访问系统和方法多模式设备的安全策略管理
公开(公告)号：WO2008149326A3
公开(公告)日：2009-06-04
申请号：PCT/IB2008053472
申请日：2008-06-03
申请人： ALCATEL LUCENT , CHOYI VINOD KUMAR , VINOKUROV DMITRI
发明人： CHOYI VINOD KUMAR , VINOKUROV DMITRI
IPC分类号： H04L29/06 , H04W12/08 , H04W36/36
CPC分类号： H04L63/20 , H04L69/16 , H04W8/18 , H04W12/08 , H04W80/04
摘要： A system and method are provided for management of access security for access by a multimodal device to a converged fixed/ mobile network. An inter-technology change-off monitoring entity (ICME) is provided to monitor an inter-technology change-off of the multimodal device and to notify a policy manager of the inter-technology change-off. The policy manager looks up in a policy database, security policies applicable to the user of the multimodal device and the particular technology being used by the multimodal device. The policy manager conveys to various policy enforcement points throughout the converged fixed/ mobile network the applicable security policies which take into account the user's identity and the access technology being used.
摘要翻译：提供了一种系统和方法，用于管理由多模式设备访问融合的固定/移动网络的访问安全性。提供了一个技术间切换监控实体（ICME）来监控多模式设备的技术间切换，并向策略管理员通知技术间的切换。策略管理器查找策略数据库，适用于多模态设备的用户的安全策略以及多模式设备正在使用的特定技术。整个融合固定/移动网络的策略管理员向各种策略执行点传达了考虑到用户身份和正在使用的访问技术的适用安全策略。

10. 发明申请

WO2009053948A2 NETWORK-BASED DRM ENFORCEMENT 审中-公开
标题翻译：基于网络的DRM执行
公开(公告)号：WO2009053948A2
公开(公告)日：2009-04-30
申请号：PCT/IB2008/055332
申请日：2008-10-10
申请人： ALCATEL LUCENT , CHOYI, Vinod Kumar , KHAN, Faud , VINOKUROV, Dmitri
发明人： CHOYI, Vinod Kumar , KHAN, Faud , VINOKUROV, Dmitri
CPC分类号： H04L63/10 , G06F21/10 , H04L2463/101
摘要： A method ofnetwork-based digital rights enforcement, and related enforcement device, the method including one or more of the following: embedding information into digital content requested by an end user; providing a signature for the digital content to a service provider; providing a key to the service provider, the key being necessary for reading the information embedded into the digital content; providing an algorithm to the service provider forextracting the information embedded into the digital content; providing an identification to the service provider ofa content provider that provides the digital content; extracting the signature from the digital content requested by the end user; analyzing the signature to determine whether a signature match exists; and determining whether the end user is a legitimate authorized user of the requested digital content or capable of distributing content.
摘要翻译：一种基于网络的数字权利实施方法以及相关的强制装置，所述方法包括以下中的一个或多个：将信息嵌入由最终用户请求的数字内容中; 为数字内容提供签名给服务提供者; 为服务提供商提供密钥，这是读取嵌入到数字内容中的信息所必需的关键; 向所述服务提供商提供算法以预先嵌入所述数字内容中的信息; 向提供数字内容的内容提供商的服务提供商提供标识; 从由最终用户请求的数字内容中提取签名; 分析签名以确定是否存在签名匹配; 并确定最终用户是否是所请求的数字内容的合法授权用户或者能够分发内容。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式