专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明申请

WO2013036097A1 A SYSTEM AND METHOD TO ESTABLISH TRUSTED BOOT LOADER USING SELF-SUBSTANTIATED BOOT LOADER 审中-公开
标题翻译：一种使用自主启动装载机建立信号引导装载机的系统和方法
公开(公告)号：WO2013036097A1
公开(公告)日：2013-03-14
申请号：PCT/MY2012/000164
申请日：2012-06-28
申请人： MIMOS BERHAD , MOHD, Anuar Mat Isa , KILAUSURIA, Abdullah , AZHAR, Abu Talib , MOHD, Azuddin Parman , NORAZAH, Abd Aziz
发明人： MOHD, Anuar Mat Isa , KILAUSURIA, Abdullah , AZHAR, Abu Talib , MOHD, Azuddin Parman , NORAZAH, Abd Aziz
IPC分类号： G06F21/00
CPC分类号： G06F9/4401 , G06F21/575
摘要： The present invention provides a system and method for establishing a trusted boot loader using a self-substantiated boot loader in a computing platform. It is a Minimal Real-Time Operating System (RTOS) that loads and executes a trusted boot files and kernel modules. The system and method capture platform evidences from a client machine and a server machine, performs measurement on the integrity of the platform evidences to ensure that it is running on trusted slates, and updates the platform evidences and platform configurations to the server machine for validation. The platform evidences are updated in the client machine by downloading a plurality of instructions from the server machine. Any changes in the platform may show that the platform is compromise by unknown entities. The system runs as part of the boot loader modules to provide trusted environment to the operating system. The system and method is operable with or without TPM chip.
摘要翻译：本发明提供了一种用于在计算平台中使用自确定的引导加载程序来建立可信引导加载程序的系统和方法。它是一个最小的实时操作系统（RTOS），用于加载和执行受信任的引导文件和内核模块。系统和方法捕获平台从客户端机器和服务器机器获得证据，对平台证据的完整性进行测量，以确保其在受信任的板条上运行，并将平台证据和平台配置更新到服务器机器进行验证。通过从服务器机器下载多个指令，在客户端机器中更新平台证据。平台的任何变化可能表明平台受到未知实体的折中。系统作为引导加载程序模块的一部分运行，为操作系统提供可信赖的环境。该系统和方法可在有或没有TPM芯片的情况下运行。

2. 发明申请

WO2012064175A1 A METHOD TO OPTIMIZE PATH MANAGEMENT IN VIRTUAL MACHINE ENVIRONMENT 审中-公开
标题翻译：一种优化虚拟机环境中路径管理的方法
公开(公告)号：WO2012064175A1
公开(公告)日：2012-05-18
申请号：PCT/MY2011/000107
申请日：2011-06-17
申请人： MIMOS BERHAD , SHARIPAH, Setapa , MOHD, Anuar Mat Isa , SOLAHUDDIN, Shamsuddin , NORAZAH, Abd Aziz , AZIMAH, Abdul Kadir
发明人： SHARIPAH, Setapa , MOHD, Anuar Mat Isa , SOLAHUDDIN, Shamsuddin , NORAZAH, Abd Aziz , AZIMAH, Abdul Kadir
IPC分类号： H04L12/56
CPC分类号： H04L45/50 , H04L45/124 , H04L45/586
摘要： A method to optimize path management in virtual machine environment having source virtual machine, destination virtual machine, virtual router, and MPLS enabled router, the method comprising: determining route between source and destination which is a path; selecting maximum transmission unit (MTU) path having smallest size for path between source and destination; creating route based on round trip time (RTT), size of MTU, and number of hops that form smart path profiling; constructing at least one packet from virtual machine environment and pushing the at least one packet through smart path profiling; and identifying path based on smart path profiling by virtual router and pushing the at least one packet to MPLS enabled router, wherein if MTU path having smallest size cannot be achieved, repeating steps of creating route based on RTT, size of MTU, and number of hops, if the smallest size cannot be achieved, restarting the path.
摘要翻译：一种在具有源虚拟机，目的虚拟机，虚拟路由器和启用MPLS的路由器的虚拟机环境中优化路径管理的方法，所述方法包括：确定作为路径的源和目的地之间的路由; 选择源和目的地之间路径最小的最大传输单元（MTU）路径; 基于往返时间（RTT），MTU大小和形成智能路径分析的跳数创建路由; 从虚拟机环境构建至少一个分组，并通过智能路径分析推送至少一个分组; 基于虚拟路由器的智能路径分析，识别路径，并将至少一个分组推送到支持MPLS的路由器，其中如果不能实现具有最小尺寸的MTU路径，则重复创建基于RTT的路由，MTU大小和数量跳，如果最小的大小无法实现，重新启动路径。

3. 发明申请

WO2011126357A1 A METHOD AND SYSTEM FOR A REMOTE ATTESTATION IN A TRUSTED FOUNDATION PLATFORM 审中-公开
标题翻译：用于在受信任的基金会平台中远程测试的方法和系统
公开(公告)号：WO2011126357A1
公开(公告)日：2011-10-13
申请号：PCT/MY2010/000192
申请日：2010-09-30
申请人： MIMOS BERHAD , NORAZAH, Abd Aziz , LUCYANTIE, Mazalan , MOHD, Azzudin Parman , ABDUL, Muzairie Abdul Mutalib , PUTRI, Shahnim Khalid
发明人： NORAZAH, Abd Aziz , LUCYANTIE, Mazalan , MOHD, Azzudin Parman , ABDUL, Muzairie Abdul Mutalib , PUTRI, Shahnim Khalid
IPC分类号： G06F11/22 , G06F11/30
CPC分类号： G06F21/57 , H04L63/062 , H04L63/0823
摘要： A method and system (100) for providing a remote attestation in a trusted foundation platform through the use of a trust hash list. The system comprising at least one foundation server (101), at least one trusted certificate authority (102), at least one client platform (104) and at least one application server (103). The at least one foundation server (101) having means for creating at least one hash list and maintaining the at least one hash list. The at least one trusted certificate authority (102) having means for protecting integrity of a trust hash list through a certification process available in an installation media package. The at least one client platform (104) having means for installing a trusted package platform and booting the trust hash list. The at least one application server (103) having means for executing the remote attestation process.
摘要翻译：一种用于通过使用信任散列表在可信基础平台中提供远程认证的方法和系统（100）。所述系统包括至少一个基础服务器（101），至少一个可信任证书颁发机构（102），至少一个客户端平台（104）和至少一个应用服务器（103）。所述至少一个基础服务器（101）具有用于创建至少一个哈希列表并维护所述至少一个哈希列表的装置。所述至少一个可信证书颁发机构（102）具有通过安装媒体包中可用的认证过程来保护信任散列表的完整性的装置。所述至少一个客户端平台（104）具有用于安装可信包平台并引导所述信任散列表的装置。所述至少一个应用服务器（103）具有用于执行所述远程认证过程的装置。

4. 发明申请

WO2012093928A1 PSEUDONYM ID PRIVACY ENHANCEMENT 审中-公开
标题翻译： PSEUDONYM ID隐私增强
公开(公告)号：WO2012093928A1
公开(公告)日：2012-07-12
申请号：PCT/MY2011/000248
申请日：2011-12-27
申请人： MIMOS BERHAD , SHARIPAH, Setapa , MOHD AMINUDIN MOHD, Khalid , NORAZAH, Abd Aziz , MOHD FAIZAL, Mubarak , JAMALUL-LAIL, Ab Manan , AZIMAH, Abdul Kadir
发明人： SHARIPAH, Setapa , MOHD AMINUDIN MOHD, Khalid , NORAZAH, Abd Aziz , MOHD FAIZAL, Mubarak , JAMALUL-LAIL, Ab Manan , AZIMAH, Abdul Kadir
IPC分类号： H04L9/20
CPC分类号： H04L9/0855 , H04L2209/42
摘要： The present invention provides system for solving predictability of pseudonym by using privacy enhancement mechanism and quantum key distribution. The system comprises at least one client application, at least one q-anonymizer, at least one quantum key distribution network between client application and q-anonymizer, at least one quantum key distribution network between q-anonymizer and service provider and a service provider. The at least one q-anonymizer validates independent communication between client application and q-anonymizer and further anonymize user identity between client application and service provider.
摘要翻译：本发明提供了通过使用隐私增强机制和量子密钥分发来解决假名的可预测性的系统。该系统包括至少一个客户端应用程序，至少一个q匿名器，客户端应用程序和q-匿名器之间的至少一个量子密钥分配网络，q-匿名器和服务提供商之间的至少一个量子密钥分配网络和服务提供商。至少一个q-anonymizer验证客户端应用程序和q-anonymizer之间的独立通信，并进一步匿名客户端应用程序和服务提供商之间的用户标识。

5. 发明申请

WO2014189353A1 A SYSTEM AND METHOD FOR DELIVERING SENSITIVE CONTENTS WITH SYNCHRONIZATION FEATURE IN AN UNSECURE INFRASTRUCTURE 审中-公开
标题翻译：用于在不可预见的基础设施中传递具有同步特征的敏感内容的系统和方法
公开(公告)号：WO2014189353A1
公开(公告)日：2014-11-27
申请号：PCT/MY2014/000057
申请日：2014-04-15
申请人： MIMOS BERHAD
发明人： GAI, Chew Kai , NORAZAH, Abd Aziz
IPC分类号： G06F21/78
CPC分类号： G06F21/6218
摘要： A system and method for delivering sensitive contents with synchronization feature in an unsecure infrastructure within a cloud computing environment is provided by utilizing an In-Memory Based Encryption Component (IBEC) (104) for encrypting information. The method to deliver sensitive contents with synchronization handling in an unsecure infrastructure within a cloud computing environment comprising steps of installing and registering an In-Memory Based Encryption Component (IBEC) module (302), monitoring incoming information stored in registered storage holder (304) and executing said In-Memory Based Encryption Component (IBEC) module to process registered entities and to perform encryption (306). The said In-Memory Based Encryption Component module is executed to process registered entities and to perform encryption. The present invention addresses security issues and provides an automated solution for encrypting information with synchronization feature in an unsecure infrastructure within a cloud computing environment. The said In-Memory Based Encryption Component (IBEC) (104) module is built with encryption engines in which the key is hidden in the memory of user's operating system and said IBEC module automatically performs Crypto Process (CP) operation upon detection of new information in registered storage holder.
摘要翻译：通过利用用于加密信息的基于内存的加密组件（IBEC）（104）来提供用于在云计算环境中的不安全的基础设施中传送具有同步特征的敏感内容的系统和方法。一种在云计算环境中的不安全基础设施中通过同步处理传递敏感内容的方法，包括安装和注册基于内存的加密组件（IBEC）模块（302）的步骤，监视存储在注册的存储保持器（304）中的传入信息，以及执行所述基于内存的加密组件（IBEC）模块来处理注册的实体并执行加密（306）。执行所述基于内存的加密组件模块来处理注册的实体并执行加密。本发明解决了安全问题，并提供了一种用于在云计算环境中的不安全基础设施中使用同步特征加密信息的自动化解决方案。所述基于内存的加密组件（IBEC）（104）模块由加密引擎构建，其中密钥隐藏在用户操作系统的存储器中，并且所述IBEC模块在检测到新信息时自动执行加密处理（CP）操作在注册的存储持有人。

6. 发明申请

WO2014088395A1 A SYSTEM AND METHOD FOR ESTABLISHING TRUSTWORTHINESS OF AN APPLICATION 审中-公开
标题翻译：一种建立应用信任的系统和方法
公开(公告)号：WO2014088395A1
公开(公告)日：2014-06-12
申请号：PCT/MY2013/000215
申请日：2013-11-29
申请人： MIMOS BERHAD
发明人： MOHD, Faizal Mubarak , MUHAMAD, Hazwan Halim , NORAZAH, Abd Aziz , ZAID, Ahmad
IPC分类号： G06F21/51 , G06F21/56
CPC分类号： G06F21/51 , G06F21/562
摘要： A system (10) for establishing trustworthiness of an application is provided. The system comprises: a trusted host platform (12); an interceptor module (14) associated with said trusted host platform (12); a secure container (16) in communication with said interceptor module(14), said secure container (16) being embedded with a formal proof code module(18); and an integrity detection system (20) in communication with said interceptor module (14); characterised in that said interceptor module (14) is provided with means for intercepting said application to hold the executable process of the application and communicate executable code of said application to said secure container (16), and in that said formal proof code module (18) is provided with means for checking and verifying said executable code to determine trustworthiness of said application.
摘要翻译：提供了一种用于建立应用程序的可信赖性的系统（10）。该系统包括：可信主机平台（12）; 与所述可信主机平台（12）相关联的拦截器模块（14）; 与所述拦截器模块（14）连通的安全容器（16），所述安全容器（16）嵌入有形式证明代码模块（18）; 以及与所述拦截器模块（14）通信的完整性检测系统（20）; 其特征在于，所述拦截器模块（14）设置有用于拦截所述应用以保持所述应用的可执行过程并将所述应用的可执行代码传送到所述安全容器（16）的装置，并且所述形式证明代码模块（18））被提供有用于检查和验证所述可执行代码以确定所述应用程序的可信赖性的装置。

7. 发明申请

WO2014038926A1 A SYSTEM AND METHOD OF MUTUAL TRUSTED AUTHENTICATION AND IDENTITY ENCRYPTION 审中-公开
标题翻译：互相认证和识别加密的系统和方法
公开(公告)号：WO2014038926A1
公开(公告)日：2014-03-13
申请号：PCT/MY2013/000161
申请日：2013-09-06
申请人： MIMOS BERHAD
发明人： NORAZAH, Abd Aziz , AAKULA, Bhagyalaxmi , KILAUSURIA, Abdullah
IPC分类号： H04L9/32 , G06F21/57 , H04L9/30
CPC分类号： G06F21/57 , H04L9/3073 , H04L9/3234
摘要： Mutual trusted authentication and identity encryption is provided by utilizing transport layer security extension with properties based attestation mechanism. The system of the present invention comprising a server platform (104) installed with an integrity measurement architecture (IMA) module (104b); a trusted authority module (TA) (104d) associated with a server platform) 104); an integrity properties collection module (IPCM) (104e) in communication with the trusted authority module (TA) (104d); a client platform (102) that is in communication with and registrable to the server platform (104); a transport layer security extension module (TLS extension module) (104a, 102c) associated with the server platform (104) and the client platform (102); and a trusted platform module (TPM) (102b, 104c) associated with the server platform (104) and said client platform (102). The general process of the present invention comprises three main components, wherein the first stage (402) establishes the security and integrity of the server platform. After the establishment of process (402), the next step is to establish identity encryption in the SSL/TLS extension and establish property-based attestation integrated with the Trusted Authority (TA) in the server platform (404). Upon completion of the processes of establishment, communication is performed with secure data transmission using mutual trusted identity encryption between client and server (406) wherein a handshake protocol is established to prioritise exchange of the certificates and keys to ensure the authentication and encryption of data (704).
摘要翻译：通过利用基于属性的认证机制的传输层安全扩展来提供相互信任的认证和身份加密。本发明的系统包括安装有完整性测量架构（IMA）模块（104b）的服务器平台（104）; 与服务器平台相关联的可信授权模块（TA）（104d））104）; 与可信管理模块（TA）（104d）通信的完整性属性收集模块（IPCM）（104e）; 与服务器平台（104）通信并可注册的客户端平台（102）; 与所述服务器平台（104）和所述客户端平台（102）相关联的传输层安全扩展模块（TLS扩展模块）（104a，102c）; 以及与所述服务器平台（104）和所述客户端平台（102）相关联的可信平台模块（TPM）（102b，104c）。本发明的一般过程包括三个主要组件，其中第一阶段（402）建立服务器平台的安全性和完整性。在建立进程（402）之后，下一步是在SSL / TLS扩展中建立身份加密，并建立与服务器平台（404）中的可信管理机构（TA）集成的基于属性的认证。在完成建立过程之后，使用客户端和服务器之间的相互信任身份加密（406）执行使用安全数据传输的通信，其中建立握手协议来优先交换证书和密钥以确保数据的认证和加密（ 704）。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式