专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明申请

WO2011019906A1 LAYERED PROTECTION AND VALIDATION OF IDENTITY DATA DELIVERED ONLINE VIA MULTIPLE INTERMEDIATE CLIENTS 审中-公开
标题翻译：通过多个中间客户在线提供的身份数据的分层保护和验证
公开(公告)号：WO2011019906A1
公开(公告)日：2011-02-17
申请号：PCT/US2010/045310
申请日：2010-08-12
申请人： GENERAL INSTRUMENT CORPORATION , TSAI, Annie , MEDVINSKY, Sasha , QIU, Xin , STEWART, Kyle , WANG, Fan
发明人： TSAI, Annie , MEDVINSKY, Sasha , QIU, Xin , STEWART, Kyle , WANG, Fan
IPC分类号： H04L29/06
CPC分类号： H04L63/045 , G06F21/6218 , G06F21/64 , H04L9/006 , H04L9/0825 , H04L9/3234 , H04L9/3265 , H04L63/062 , H04L63/0823 , H04L63/123 , H04L2463/062
摘要： A method is provided for securely delivering identity data units over a communications network to a client device. The method includes receiving a selection from a customer identifying a final zipped package to be unpacked. The final zipped package is unpacked to obtain a common package and a digital signature file signed by an entity generating identity data requested by the customer. The digital signature in the digital signature file is verified and the common package is unpacked to obtain a plurality of outer packages and an encrypted symmetric key. The symmetric key is decrypted with a private key associated with the customer and each of the outer packages is decrypted with the symmetric key to obtain a plurality of identity data units.
摘要翻译：提供了一种用于通过通信网络将身份数据单元安全地传送到客户端设备的方法。该方法包括从客户接收标识要解包的最终压缩包的选择。最后的压缩包解包以获得由生成客户请求的身份数据的实体签名的公用包和数字签名文件。验证数字签名文件中的数字签名，并解压缩公用包以获得多个外包和加密对称密钥。对称密钥用与客户相关联的私钥解密，并且每个外部包都用对称密钥解密以获得多个身份数据单元。

2. 发明申请

WO2011019898A1 CONFIGURABLE ONLINE PUBLIC KEY INFRASTRUCTURE (PKI) MANAGEMENT FRAMEWORK 审中-公开
标题翻译：可配置在线公钥基础设施（PKI）管理框架
公开(公告)号：WO2011019898A1
公开(公告)日：2011-02-17
申请号：PCT/US2010/045300
申请日：2010-08-12
申请人： GENERAL INSTRUMENT CORPORATION , CHOU, Wie Lin , BARBOUR, T. j. , CHEN, Liqiang , CHEN, Ying , GARDNER, Chris , LIU, Anthony , OO, Oscar , QIU, Xin , STEWART, Kyle , TSAI, Annie , WANG, Fan , YAO, Ting
发明人： CHOU, Wie Lin , BARBOUR, T. j. , CHEN, Liqiang , CHEN, Ying , GARDNER, Chris , LIU, Anthony , OO, Oscar , QIU, Xin , STEWART, Kyle , TSAI, Annie , WANG, Fan , YAO, Ting
IPC分类号： H04L9/28
CPC分类号： H04L9/006 , H04L9/3265
摘要： A method and apparatus is provided for establishing a process for provisioning a digital certificate service delivered by a PKI system. The method includes receiving a request for a digital certificate service and receiving data specifying a project that includes at least one product to be provisioned with a digital certificate. Data specifying an identification of an owner organization of the project and at least one participant organization participating in the project is also received. Attributes with which PKI data to be included in the digital certificates is to comply is received from the owner organization. Based on the received data and attributes, an account is established for each of the organizations associated with the project through which users associated with each of the organizations can respectively request digital certificates for the at least one product in accordance with the attributes received from the owner organization.
摘要翻译：提供了一种用于建立用于提供由PKI系统提供的数字证书服务的过程的方法和装置。该方法包括接收对数字证书服务的请求，并且接收指定项目的数据，所述项目包括至少一个要被提供数字证书的产品。还收到了指定项目所有者组织的标识和参与该项目的至少一个参与组织的数据。从所有者组织收到要包含在数字证书中的PKI数据符合的属性。根据接收到的数据和属性，为与项目相关联的每个组织建立一个帐户，通过该帐户，与每个组织相关联的用户可以根据从所有者收到的属性分别为至少一个产品请求数字证书组织。

3. 发明申请

WO2011130713A1 ONLINE SECURE DEVICE PROVISIONING WITH UPDATED OFFLINE IDENTITY DATA GENERATION AND OFFLINE DEVICE BINDING 审中-公开
标题翻译：在线安全设备提供更新的离线身份数据生成和离线设备绑定
公开(公告)号：WO2011130713A1
公开(公告)日：2011-10-20
申请号：PCT/US2011/032789
申请日：2011-04-15
申请人： GENERAL INSTRUMENT CORPORATION , QIU, Xin , MEDVINSKY, Alexander , MOSKOVICS, Stuart, P. , NAKANISHI, Greg, N. , PASION, Jason, A. , WANG, Fan , YAO, Ting
发明人： QIU, Xin , MEDVINSKY, Alexander , MOSKOVICS, Stuart, P. , NAKANISHI, Greg, N. , PASION, Jason, A. , WANG, Fan , YAO, Ting
IPC分类号： H04L9/08 , H04L29/06
CPC分类号： H04L63/062 , H04L9/006 , H04L9/0825 , H04L9/0866 , H04L9/0891 , H04L63/0823
摘要： A system for generating new identity data for network-enabled devices includes a whitelist reader configured to extract attributes from a whitelist. The whitelist includes, for each device specified in the whitelist, a previously assigned identifier of the first type. The previously assigned identifiers of the first type are linked to identity data previously provisioned in each of the respective devices. A data retrieval module is configured to receive the identifiers of the first type from the whitelist reader and, based on each of the identifiers, retrieve each of the previously provisioned identity data records linked thereto. A new data generation module is configured to (i) obtain a cryptographic key associated with the identity data previously provisioned in the devices specified on the whitelist and the corresponding identifiers of the first type, (ii) generate new identity data records each linked to a new identifier and (iii) encrypt each of the new identity data records with one of the cryptographic keys and link each new identity data record to the identifier of the first type corresponding to each respective cryptographic key. A data output module is configured to load onto an external source the encrypted new identity data records along with their respective new identifiers and their respective previously assigned identifiers of the first type.
摘要翻译：用于为启用网络的设备生成新的身份数据的系统包括被配置为从白名单中提取属性的白名单阅读器。对于白名单中指定的每个设备，白名单包括先前分配的第一类型的标识符。先前分配的第一类型的标识符被链接到先前在每个相应设备中提供的标识数据。数据检索模块被配置为从白名单读取器接收第一类型的标识符，并且基于每个标识符检索与之相关联的之前提供的标识数据记录中的每一个。新的数据生成模块被配置为（i）获得与先前在白名单上指定的设备中提供的身份数据和第一类型的相应标识符相关联的加密密钥，（ii）生成新的身份数据记录，每个连接到新的标识符和（iii）使用密码密钥之一加密每个新的身份数据记录，并将每个新的身份数据记录链接到与每个相应密码密钥对应的第一类型的标识符。数据输出模块被配置为将加密的新身份数据记录及其各自的新标识符及其各自先前分配的第一类型的标识符加载到外部源上。

4. 发明申请

WO2011130712A2 ONLINE SECURE DEVICE PROVISIONING FRAMEWORK 审中-公开
标题翻译：在线安全设备提供框架
公开(公告)号：WO2011130712A2
公开(公告)日：2011-10-20
申请号：PCT/US2011/032788
申请日：2011-04-15
申请人： GENERAL INSTRUMENT CORPORATION , QIU, Xin , MEDVINSKY, Alexander , MOSKOVICS, Stuart, P. , PASION, Jason, A. , SPRUNK, Eric, J. , WANG, Fan , YAO, Ting
发明人： QIU, Xin , MEDVINSKY, Alexander , MOSKOVICS, Stuart, P. , PASION, Jason, A. , SPRUNK, Eric, J. , WANG, Fan , YAO, Ting
IPC分类号： H04L29/06
CPC分类号： H04L63/0823 , G06F21/572 , H04L63/06 , H04L2463/102
摘要： A method for updating network-enabled devices with new identity data includes generating a plurality of new identity data records and loading the new identity data records onto an update server. A request is received at the update server for new identity data from at least one network-enabled device having a previously assigned identity linked to an identifier. The previously assigned identifier is linked to a new identifier that is linked to one of the new identity data records. One or more new identity data records are securely delivered to the network-enabled device.
摘要翻译：用新的身份数据更新启用网络的设备的方法包括生成多个新的身份数据记录并将新的身份数据记录加载到更新服务器上。在更新服务器处接收到来自具有链接到标识符的先前分配的身份的至少一个启用网络的设备的新身份数据的请求。先前分配的标识符被链接到链接到新的身份数据记录之一的新标识符。一个或多个新的身份数据记录被安全地传送到启用网络的设备。

5. 发明申请

WO2009018066A1 METHOD AND APPARATUS FOR A DYNAMIC AND REAL-TIME CONFIGURABLE SOFTWARE ARCHITECTURE FOR MANUFACTURING PERSONALIZATION 审中-公开
标题翻译：用于制造个性化的动态和实时可配置软件架构的方法和装置
公开(公告)号：WO2009018066A1
公开(公告)日：2009-02-05
申请号：PCT/US2008/070963
申请日：2008-07-24
申请人： GENERAL INSTRUMENT CORPORATION , WANG, Fan , QIU, Xin , CHEN, Liqiang
发明人： QIU, Xin , CHEN, Liqiang
IPC分类号： G06F15/16
CPC分类号： H04L67/34 , H04L67/36
摘要： A process receives a personalization request to personalize a communication device. Further, the process provides the personalization request to a message controller that composes a message having personalization information with a message composer engine according to a set of rules and configures one or more communication parameters for the message with a message flow control engine according to the set of rules. The set of rules indicates a distributed environment set of files that the message composer engine and the message flow control engine utilize in a distributed environment, and a centralized environment set of files that the message composer engine and the message flow control engine utilize in a centralized environment.
摘要翻译：进程接收个性化请求以个性化通信设备。此外，该过程向消息控制器提供个性化请求，该消息控制器根据一组规则向消息组合器引擎构成具有个性化信息的消息，并且根据该集合向消息流控制引擎配置消息的一个或多个通信参数的规则。该组规则表示消息编剧引擎和消息流控制引擎在分布式环境中使用的分布式环境文件集，以及消息编剧引擎和消息流控制引擎在集中式中使用的集中式文件集环境。

6. 发明申请

WO2012112273A1 SECURE MANAGEMENT AND PERSONALIZATION OF UNIQUE CODE SIGNING KEYS 审中-公开
标题翻译：安全管理和个性化独特的代码签名
公开(公告)号：WO2012112273A1
公开(公告)日：2012-08-23
申请号：PCT/US2012/022725
申请日：2012-01-26
申请人： GENERAL INSTRUMENT CORPORATION , MOSKOVICS, Stuart P. , QIU, Xin , VOSS, Joel D. , MEDVINSKY, Alexander
发明人： MOSKOVICS, Stuart P. , QIU, Xin , VOSS, Joel D. , MEDVINSKY, Alexander
IPC分类号： G06F21/00
CPC分类号： G06F21/57
摘要： A method and system generates and distributes unique cryptographic device keys. The method includes generating at least a first device key and encrypting the first device key with a first encrypting key to produce a first encrypted copy of the device key. The method also includes encrypting the first device key with a second encrypting key to produce a second encrypted copy of the device key. The second encrypting key is different from said first encrypting key. The first and second encrypted copies of the device keys are associated with a device ID identifying a computing device being manufactured. The second encrypted copy of the device key is loaded onto the computing device. The first encrypted copy of the device key and the device ID with which it is associated are stored onto at least one server for subsequent use after the computing device has been deployed to a customer.
摘要翻译：方法和系统生成和分发唯一的加密设备密钥。该方法包括至少生成第一设备密钥并用第一加密密钥加密第一设备密钥以产生设备密钥的第一加密副本。该方法还包括用第二加密密钥加密第一设备密钥以产生设备密钥的第二加密副本。第二加密密钥与所述第一加密密钥不同。设备密钥的第一和第二加密副本与标识正在制造的计算设备的设备ID相关联。设备密钥的第二个加密副本被加载到计算设备上。在将计算设备部署到客户之后，设备密钥的第一加密副本和与其相关联的设备ID被存储在至少一个服务器上用于随后的使用。

7. 发明申请

WO2008082778A2 METHOD AND APPARATUS FOR DISTRIBUTING ROOT CERTIFICATES 审中-公开
标题翻译：用于分发根证书的方法和设备
公开(公告)号：WO2008082778A2
公开(公告)日：2008-07-10
申请号：PCT/US2007/083562
申请日：2007-11-05
申请人： GENERAL INSTRUMENT CORPORATION , QIU, Xin , PETERKA, Petr , SPRUNK, Eric, J.
发明人： QIU, Xin , PETERKA, Petr , SPRUNK, Eric, J.
IPC分类号： H04L9/00
CPC分类号： H04L9/3268 , H04L2209/603
摘要： An apparatus and method for providing at least one root certificate are disclosed. Specifically, a plurality of root certificates is received and stored. Afterwards, a request is received from a first endpoint device for a desired root certificate, where the desired root certificate is used by the first endpoint device to verify an identity of a second endpoint device. Furthermore, the first endpoint device and the second endpoint device are associated with different certificate hierarchies. The desired root certificate is then sent to at least the first endpoint device.
摘要翻译：公开了一种用于提供至少一个根证书的装置和方法。具体而言，接收并存储多个根证书。之后，从第一端点设备接收针对期望的根证书的请求，其中期望的根证书由第一端点设备用来验证第二端点设备的标识。此外，第一端点设备和第二端点设备与不同的证书层次关联。然后将所需的根证书发送到至少第一个端点设备。

8. 发明申请

WO2011097550A2 GENERIC FEATURE LICENSING FRAMEWORK 审中-公开
标题翻译：一般特征许可框架
公开(公告)号：WO2011097550A2
公开(公告)日：2011-08-11
申请号：PCT/US2011/023860
申请日：2011-02-07
申请人： GENERAL INSTRUMENT CORPORATION , ZHENG, Jinsong , BARBOUR, Thomas J. , CHAN, Tat Keung , GARDNER, Christopher P. , GREGOTSKI, Mark E. , QIU, Xin
发明人： ZHENG, Jinsong , BARBOUR, Thomas J. , CHAN, Tat Keung , GARDNER, Christopher P. , GREGOTSKI, Mark E. , QIU, Xin
IPC分类号： G06Q30/00 , H04L9/28
CPC分类号： G06Q30/00 , G06Q30/0601 , G06Q30/0641
摘要： A system enables customers to provision devices with feature licenses that enable specified features in the devices. The system includes a feature definition module configured to store product feature information associated with different products available from a plurality of different manufacturers. The system also includes a feature license management module configured to generate, update and revoke feature licenses. The feature licenses that are generated all have a common format. The system further includes a feature credit management module configured to monitor and account for feature credits available to customer organization units. A user management module is also provided in the system, which is configured to authenticate users of the system. A user interface is accessible over a communications network through which authenticated users can request and receive feature licenses.
摘要翻译：系统使客户能够为设备提供功能许可证，从而实现设备中的指定功能。该系统包括特征定义模块，其被配置为存储与多个不同制造商可用的不同产品相关联的产品特征信息。该系统还包括功能许可证管理模块，用于生成，更新和撤销功能许可证。生成的功能许可证都具有通用格式。该系统还包括功能信用管理模块，其被配置为监视和考虑可用于客户组织单元的功能信用。系统中还提供用户管理模块，该用户管理模块被配置为对系统的用户进行认证。通过通信网络访问用户界面，通过该网络，经过身份验证的用户可以通过该网络请求和接收功能许

9. 发明申请

WO2012106576A1 SECURE AUTOMATED FEATURE LICENSE UPDATE SYSTEM AND METHODS 审中-公开
标题翻译：安全自动化许可证更新系统和方法
公开(公告)号：WO2012106576A1
公开(公告)日：2012-08-09
申请号：PCT/US2012/023728
申请日：2012-02-03
申请人： GENERAL INSTRUMENT CORPORATION , GARDNER, Christopher P. , BAKER, Paul D. , CHAN, Tat Keung , MICHAUD, Ted R. , QIU, Xin , ZHENG, Jinsong
发明人： GARDNER, Christopher P. , BAKER, Paul D. , CHAN, Tat Keung , MICHAUD, Ted R. , QIU, Xin , ZHENG, Jinsong
IPC分类号： G06F21/00
CPC分类号： G06F21/10 , G06F2221/0768 , G06F2221/2105
摘要： A method for providing a secure automated feature license update is disclosed. This method may be performed at a central license server. A license template including features for enablement on a device is generated. The license template is sent to an authorized user. A license update request is received from an entity. An updated license is generated by the central license server. A response is sent to the entity. A method for providing a secure automated feature license update is disclosed. This method may be performed at a device, e.g. an end-user device. A first feature set of a current license of a device is compared with a second feature set of a license template received by the device. A license update request is generated when there is a difference between the first feature set and the second feature set. The license update request is sent to a license server.
摘要翻译：公开了一种用于提供安全的自动功能许可证更新的方法。该方法可以在中央许可证服务器上执行。生成包含设备启用功能的许可证模板。许可证模板发送给授权用户。从实体收到许可证更新请求。更新的许可证由中央许可证服务器生成。响应发送到实体。公开了一种用于提供安全的自动功能许可证更新的方法。该方法可以在设备，例如，终端用户设备。将设备的当前许可证的第一特征集与由设备接收的许可证模板的第二特征集进行比较。当第一特征集和第二特征集之间存在差异时，生成许可更新请求。许可证更新请求被发送到许可证服务器。

10. 发明申请

WO2011130711A2 CROSS-DOMAIN IDENTITY MANAGEMENT FOR A WHITELIST-BASED ONLINE SECURE DEVICE PRIVISIONING FRAMEWORK 审中-公开
标题翻译：基于列表的在线安全设备专用框架的跨域标识管理
公开(公告)号：WO2011130711A2
公开(公告)日：2011-10-20
申请号：PCT/US2011/032787
申请日：2011-04-15
申请人： GENERAL INSTRUMENT CORPORATION , QIU, Xin , YAO, Ting
发明人： QIU, Xin , YAO, Ting
IPC分类号： H04L29/06
CPC分类号： H04L63/08 , H04L63/10
摘要： A method for managing identifiers associated with network-enabled devices and used in an identity data system provisioning the network-enabled devices with identity data includes receiving a first set data that includes a previously assigned identifier for one or more of the network-enabled devices that are authorized to be provisioned with new identity data. If identity data is currently installed on the one or more network-enabled devices, each of the previously assigned identifiers in the first set of data is associated with a corresponding identifier linked to the identity data currently installed on the one or more network-enabled devices to establish a second set of data. New identity data is bound to each of the one or more network-enabled devices by assigning a new identifier linked with the new identity data to each of the one or more network-enabled devices to establish a whitelist. The whitelist specifies, for each of the one or more network-enabled devices, its previously assigned identifier, its corresponding identifier and its new identifier that is linked with the new identity data.
摘要翻译：一种用于管理与启用网络的设备相关联并在身份数据系统中配置具有身份数据的启用网络的设备的标识符的方法包括：接收第一组数据，该第一组数据包括先前分配的一个或多个网络使能设备的标识符，被授权提供新的身份数据。如果身份数据当前安装在一个或多个启用网络的设备上，则第一组数据中先前分配的标识符中的每一个都与与当前安装在一个或多个启用网络的设备上的身份数据链接的对应标识符相关联建立第二组数据。通过将与新的身份数据链接的新标识符分配给一个或多个启用网络的设备中的每一个来建立白名单，将新的身份数据绑定到一个或多个网络启用设备中的每一个。白名单为一个或多个网络启用设备中的每一个指定其先前分配的标识符，其对应的标识符及其与新的身份数据链接的新标识符。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式