专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明申请

WO2007121334A3 DISTANCE-BASED SECURITY 审中-公开
标题翻译：基于距离的安全
公开(公告)号：WO2007121334A3
公开(公告)日：2008-06-19
申请号：PCT/US2007066588
申请日：2007-04-13
申请人： QUALCOMM INC , MOALLEMI KAMRAN , EKBAL AMAL , LEE CHONG U , JULIAN DAVID JONATHAN , XIAO LU , ROSE GREGORY GORDON
发明人： MOALLEMI KAMRAN , EKBAL AMAL , LEE CHONG U , JULIAN DAVID JONATHAN , XIAO LU , ROSE GREGORY GORDON
IPC分类号： H04L29/08 , H04W12/06
CPC分类号： H04L63/0492 , H04L63/08 , H04L67/18 , H04W4/02 , H04W4/023 , H04W12/06
摘要： Various operations may be performed based on distance-related functions associated with two or more devices. For example, one or more distance-based functions may be used to control whether a device is allowed to request another device to perform one or more functions. Similarly, one or more distance-based functions may be used to control whether a device may perform one or more functions requested by another device. A distance-related function may take various form including, for example, a distance between devices, two or more distances between devices, a rate of change in a relative distance between devices, relative acceleration between devices, or some combination of two or more of the these distance-related functions.
摘要翻译：可以基于与两个或更多个设备相关联的距离相关功能来执行各种操作。例如，可以使用一个或多个基于距离的功能来控制是否允许设备请求另一个设备执行一个或多个功能。类似地，可以使用一个或多个基于距离的功能来控制设备是否可以执行另一设备请求的一个或多个功能。距离相关功能可以采取各种形式，包括例如设备之间的距离，设备之间的两个或更多个距离，设备之间的相对距离的变化率，设备之间的相对加速度，或两个或更多个这些距离相关功能。

2. 发明申请

WO2008118620A3 DISTANCE-BASED PRESENCE MANAGEMENT 审中-公开
标题翻译：基于距离的存在管理
公开(公告)号：WO2008118620A3
公开(公告)日：2009-06-04
申请号：PCT/US2008055975
申请日：2008-03-05
申请人： QUALCOMM INC , JULIAN DAVID JONATHAN , LEE CHONG U , MOALLEMI KAMRAN , AGRAWAL AVNEESH , JAIME MANUEL E , DOUGLAS ROBERT KEITH , XIAO LU , ROSE GREGORY GORDON
发明人： JULIAN DAVID JONATHAN , LEE CHONG U , MOALLEMI KAMRAN , AGRAWAL AVNEESH , JAIME MANUEL E , DOUGLAS ROBERT KEITH , XIAO LU , ROSE GREGORY GORDON
IPC分类号： G06Q30/00 , H04L29/08
CPC分类号： H04W8/02 , G01S11/06 , G01S13/08 , H04L67/24 , H04W8/22 , H04W64/006
摘要： Various operations may be performed based on a distance-related function associated with two or more devices. For example, an association procedure for two or more devices may be based on one or more determined distances. Similarly, presence management may be based on one or more determined distances. A distance-related function may take various form including, for example, a distance between devices, two or more distances between devices, a rate of change in a relative distance between devices, relative acceleration between devices, or some combination of two or more of the these distance-related functions.
摘要翻译：可以基于与两个或更多个设备相关联的距离相关功能来执行各种操作。例如，两个或多个设备的关联过程可以基于一个或多个确定的距离。类似地，存在管理可以基于一个或多个确定的距离。距离相关功能可以采取各种形式，包括例如设备之间的距离，设备之间的两个或更多个距离，设备之间的相对距离的变化率，设备之间的相对加速度，或两个或更多个这些距离相关的功能。

3. 发明申请

WO2009152100A3 METHOD AND APPARATUS FOR VERIFYING DATA PACKET INTEGRITY IN A STREAMING DATA CHANNEL 审中-公开
标题翻译：用于在流数据通道中验证数据分组完整性的方法和装置
公开(公告)号：WO2009152100A3
公开(公告)日：2010-05-20
申请号：PCT/US2009046631
申请日：2009-06-08
申请人： QUALCOMM INC , ROSE GREGORY GORDON , JULIAN DAVID JONATHAN , XIAO LU
发明人： ROSE GREGORY GORDON , JULIAN DAVID JONATHAN , XIAO LU
IPC分类号： H04L29/06
CPC分类号： H04L63/123 , H04L1/02 , H04L1/20
摘要： Disclosed is a method for verifying data packet integrity in a streaming-data channel. In the method, data packets are received from the streaming-data channel. Each data packet includes a data payload and a corresponding message integrity code. The received data packets are processed in a first processing mode, wherein the received data packets are forwarded to an application module before checking the integrity of the data packets using the respective message integrity codes. An integrity-check-failure measurement is generated for monitoring an integrity-check-failure rate in the first processing mode. If the integrity-check-failure measurement exceeds an integrity-check threshold, then the method transitions to a second processing mode. A received data packet is forwarded to the application module in the second processing mode only after passing the integrity check.
摘要翻译：公开了一种用于验证流数据信道中的数据分组完整性的方法。在该方法中，从流数据信道接收数据分组。每个数据分组包括数据有效载荷和对应的消息完整性代码。接收到的数据分组以第一处理模式进行处理，其中在使用各自的消息完整性代码检查数据分组的完整性之前，所接收的数据分组被转发到应用模块。产生完整性检查失败测量，用于在第一处理模式中监视完整性检查失败率。如果完整性检查失败测量超过完整性检查阈值，则该方法转换到第二处理模式。只有在通过完整性检查之后，接收到的数据包将以第二处理模式转发给应用模块。

4. 发明申请

WO2008119050A2 SYNCHRONIZATION TEST FOR DEVICE AUTHENTICATION 审中-公开
标题翻译：用于设备认证的同步测试
公开(公告)号：WO2008119050A2
公开(公告)日：2008-10-02
申请号：PCT/US2008058503
申请日：2008-03-27
申请人： QUALCOMM INC , ROSE GREGORY GORDON , XIAO LU , JULIAN DAVID JONATHAN
发明人： ROSE GREGORY GORDON , XIAO LU , JULIAN DAVID JONATHAN
CPC分类号： H04L63/08 , G06F21/35 , G06F21/40 , H04W12/04 , H04W12/06 , H04W88/02
摘要： Device authentication is based on the ability of a human to synchronize the movements of his or her fingers. A pairing procedure for two wireless devices may thus involve a synchronization test that is based on the relative timing of actuations of input devices on each of the wireless devices. In some aspects a synchronization test involves determining whether actuations of user input devices on two different wireless devices occurred within a defined time interval. In some aspects a synchronization test involves comparing time intervals defined by multiple actuations of user input devices on two wireless devices.
摘要翻译：设备认证是基于人类同步他或她的手指的动作的能力。因此，用于两个无线设备的配对过程可能涉及基于每个无线设备上的输入设备的启动的相对定时的同步测试。在一些方面，同步测试涉及确定是否在限定的时间间隔内发生在两个不同无线设备上的用户输入设备的启动。在一些方面，同步测试涉及比较由两个无线设备上的用户输入设备的多次致动所限定的时间间隔。

5. 发明申请

WO2008131444A3 INITIAL SEED MANAGEMENT FOR PSEUDORANDOM NUMBER GENERATOR 审中-公开
标题翻译： PSEUDORANDOM NUMBER GENERATOR的初步种子管理
公开(公告)号：WO2008131444A3
公开(公告)日：2009-04-23
申请号：PCT/US2008061341
申请日：2008-04-23
申请人： QUALCOMM INC , ROSE GREGORY GORDON , GANTMAN ALEXANDER , XIAO LU , FIGUEROA DAVID
发明人： ROSE GREGORY GORDON , GANTMAN ALEXANDER , XIAO LU , FIGUEROA DAVID
IPC分类号： G06F7/58
CPC分类号： G06F7/582 , G06F7/588 , H04L9/0869
摘要： A secure seeding and reseeding scheme is provided for pseudorandom number generators by using a pre-stored initialization seed. This scheme initializes a pseudorandom number generator into an unknown state even when entropy collection is unavailable. A primary seed file and a shadow seed file are maintained with initialization seed information in a secure file system. If the primary seed file is corrupted, the pseudorandom number generator is seeded with the content of the shadow seed file. Additionally, a trusted timer or clock may be mixed with the pre-stored initialization seed to add entropy even when the pre-stored seed information has been compromised.
摘要翻译：通过使用预先存储的初始化种子为伪随机数发生器提供安全的种子和再种植方案。即使熵收集不可用，该方案将伪随机数发生器初始化为未知状态。在安全文件系统中，使用初始化种子信息维护主种子文件和影子种子文件。如果主种子文件被破坏，则伪随机数生成器被种子与影子种子文件的内容。此外，即使预先存储的种子信息已被破坏，可信任的定时器或时钟可以与预先存储的初始化种子混合以添加熵。

6. 发明申请

WO2010045410A3 APPARATUS AND METHOD FOR TRANSITIONING ACCESS RIGHTS FOR ROLE-BASED ACCESS CONTROL COMPATIBILIITY 审中-公开
标题翻译：用于转换基于角色的访问控制兼容性的访问权限的装置和方法
公开(公告)号：WO2010045410A3
公开(公告)日：2010-09-16
申请号：PCT/US2009060760
申请日：2009-10-15
申请人： QUALCOMM INC , ROSE GREGORY GORDON , GANTMAN ALEXANDER , XIAO LU
发明人： ROSE GREGORY GORDON , GANTMAN ALEXANDER , XIAO LU
IPC分类号： H04L29/06 , G06F21/00 , H04W12/08
CPC分类号： H04L63/102 , G06F21/6218
摘要： Disclosed is a method for transitioning access rights, in a remote station with role-based access control, for an unknown role having access rights defined by a central access control management module. In the method, a role capability table is maintained in the remote station specifying centrally-defined access rights of roles that are interpretable in the remote station. An access request associated with an unknown role that is not interpretable in the remote station is received. The access request includes a role transition list that relates the unknown role to other centrally-defined roles. At least one of the other centrally-defined roles is interpretable in the remote station. A role is selected, from the role transition list, that is interpretable in the remote station for interpreting the unknown role of the access request. Access is granted based on the access request associated with the unknown role using the access rights of the interpretable role selected from the role transition table.
摘要翻译：公开了一种用于在具有基于角色的访问控制的远程站中对具有由中央访问控制管理模块定义的访问权的未知角色转换访问权的方法。在该方法中，在远程站中维护角色能力表，以指定在远程站中可解释的角色的集中定义的访问权限。接收到与远程站无法解释的未知角色相关的访问请求。访问请求包括角色转换列表，该列表将未知角色与其他集中定义的角色相关联。至少有一个其他集中定义的角色可在远程站中解释。从角色转换列表中选择一个角色，该角色在远程工作站中是可解释的，用于解释访问请求的未知角色。根据角色转换表中选择的可解释角色的访问权限，基于与未知角色相关的访问请求授予访问权限。

7. 发明申请

WO2008054375A3 CONSTRAINED CRYPTOGRAPHIC KEYS 审中-公开
标题翻译：约束CRYPTOGRAPHIC KEYS
公开(公告)号：WO2008054375A3
公开(公告)日：2008-11-13
申请号：PCT/US2006038110
申请日：2006-09-29
申请人： QUALCOMM INC , GANTMAN ALEXANDER , YALCINKAYA TOLGA , ROSE GREGORY GORDON , XIAO LU
发明人： GANTMAN ALEXANDER , YALCINKAYA TOLGA , ROSE GREGORY GORDON , XIAO LU
IPC分类号： H04L9/32
CPC分类号： H04L9/0872 , H04L9/088 , H04L9/321 , H04L63/083 , H04L2209/76
摘要： A constrained proxy key is used to secure communications between two devices via an intermediary device. A first proxy key is generated at a host device (key generator device) based on a shared secret key, one or more constraints on the first proxy key, and a key derivation function. At least the shared secret key and key derivation function are known to the host device and a client device (authentication device). The first proxy key is sent to a proxy device to use in authenticating communications with the client device. An authenticated message is generated by the proxy device using the first proxy key and sent to the client device. The client device locally generates a second proxy key using the key derivation function, one or more constraints, and the shared secrete key for authenticating the proxy device. The proxy device is authenticated if the client device successfully accesses the authenticated message from the proxy device using the second proxy key.
摘要翻译：受限代理密钥用于通过中间设备来保护两个设备之间的通信。基于共享秘密密钥，第一代理密钥上的一个或多个约束和密钥导出功能，在主机设备（密钥发生器设备）处生成第一代理密钥。至少共享秘密密钥和密钥导出功能对于主机设备和客户端设备（认证设备）是已知的。第一代理密钥被发送到代理设备以用于认证与客户端设备的通信。认证消息由代理设备使用第一代理密钥生成并发送到客户端设备。客户端设备使用密钥导出功能，一个或多个约束和用于认证代理设备的共享密钥来本地生成第二代理密钥。如果客户端设备使用第二代理密钥从代理设备成功访问认证消息，则代理设备被认证。

8. 发明申请

WO2008076776A3 METHOD AND DEVICE FOR SECURE PHONE BANKING 审中-公开
标题翻译：用于安全电话银行的方法和设备
公开(公告)号：WO2008076776A3
公开(公告)日：2008-07-31
申请号：PCT/US2007087312
申请日：2007-12-12
申请人： QUALCOMM INC , GANTMAN ALEXANDER , ROSE GREGORY GORDON , CHOI JAE-HEE , NOERENBERG JOHN W II
发明人： GANTMAN ALEXANDER , ROSE GREGORY GORDON , CHOI JAE-HEE , NOERENBERG JOHN W II
IPC分类号： H04M3/16 , G07F7/00 , H04M1/215
CPC分类号： H04L9/00 , H04M1/505 , H04M1/68 , H04M3/16 , H04M11/00 , H04M2203/609
摘要： A small form-factor security device is provided that may be inserted in series with a telephone line to encrypt dual tone multi-frequency (DTMF) tones from a telephone to prevent unauthorized disclosure of sensitive information. A receiving device decrypts the encrypted DTMF tones to receive the original information sent by the telephone. The security device acts as a second factor in a two-factor authentication scheme with a tele-services security server that authenticates the security device.
摘要翻译：提供了一种小型的安全设备，其可以与电话线串联插入以从电话加密双音多频（DTMF）音，以防止未经授权的泄露敏感信息。接收设备解密加密的DTMF音，以接收由电话发送的原始信息。安全设备作为双重身份认证方案的第二个因素，与认证安全设备的远程服务安全服务器。

9. 发明申请

WO2010141456A2 MOBILE COMMERCE AUTHENTICATION AND AUTHORIZATION SYSTEMS 审中-公开
标题翻译：移动商务认证和授权系统
公开(公告)号：WO2010141456A2
公开(公告)日：2010-12-09
申请号：PCT/US2010036884
申请日：2010-06-01
申请人： QUALCOMM INC , ROSE GREGORY GORDON , LAUER CRAIG B , WALTMAN JOAN T
发明人： ROSE GREGORY GORDON , LAUER CRAIG B , WALTMAN JOAN T
CPC分类号： G06Q20/32 , G06Q20/20 , G06Q20/204 , G06Q20/425
摘要： Mobile commerce authentication and authorization systems enable currently existing point-of-sale devices that are neither structurally nor systemically altered to conduct financial transactions with a customer using an access terminal across a wireless communications system. The point-of-sale devices receive an input from a payment instrument replacement, which identifies the transaction to the point-of-sale device as a transaction including an access terminal. Authentication of the user of the access terminal is achieved at least by application of position and/or location determinable features of the access terminal, the position and/or location of a point-of-sale device of a vendor or merchant where the customer seeks to purchase goods or services, and the payment sum entered on the point-of-sale device. A payment matching server may assist in processing the location data and the payment sum amount across communications network.
摘要翻译：移动商务认证和授权系统使得当前现有的销售点设备既不在结构上也不是系统地改变，以便通过无线通信系统使用接入终端与客户进行金融交易。销售点设备从支付工具替换中接收输入，其将该交易标识到销售点设备作为包括接入终端的交易。至少通过应用接入终端的位置和/或位置确定特征，客户寻找的供应商或商家的销售点设备的位置和/或位置来实现接入终端的用户的认证购买商品或服务，以及在销售点设备上输入的付款金额。支付匹配服务器可以协助处理跨通信网络的位置数据和支付金额。

10. 发明申请

WO2008049046A3 METHOD FOR SECURELY EXTENDING KEY STREAM TO ENCRYPT HIGH-ENTROPY DATA 审中-公开
标题翻译：用于安全地延长关键流道以加强高入侵数据的方法
公开(公告)号：WO2008049046A3
公开(公告)日：2008-10-09
申请号：PCT/US2007081737
申请日：2007-10-18
申请人： QUALCOMM INC , ROSE GREGORY GORDON , HAWKES PHILIP MICHAEL
发明人： ROSE GREGORY GORDON , HAWKES PHILIP MICHAEL
IPC分类号： H04L9/22
CPC分类号： H04L9/0662 , H04L2209/30
摘要： A stream stretcher is provided for securely expanding a key stream to match the length of a data block to be encrypted and/or decrypted. A key stream is obtained having a length of L Z bits. A length LD corresponding to a data block to be encrypted/decrypted is obtained, where L D > L Z . L D -L Z new bits are recursively generated by combining at least two bits of the key stream. The L D -L Z new bits are appended to the key stream to generate a stretched key stream. The data block may then be encrypted/decrypted with the stretched key stream. The at least two bits are selected to have offsets that form a full positive difference set.
摘要翻译：提供了流担架，用于安全地扩展密钥流以匹配要加密和/或解密的数据块的长度。获得具有长度为L个Z位的密钥流。获得对应于要加密/解密的数据块的长度LD，其中L L1> Z Z。通过组合密钥流的至少两个比特递归地生成新的比特。新的比特被添加到密钥流中以产生延伸的密钥流。然后可以用拉伸的密钥流对数据块进行加密/解密。选择至少两个位以具有形成完全正差分集的偏移。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式