会员体验
专利管家(专利管理)
工作空间(专利管理)
风险监控(情报监控)
数据分析(专利分析)
侵权分析(诉讼无效)
联系我们
交流群
官方交流:
QQ群: 891211   
微信请扫码    >>>
现在联系顾问~
热词
    • 1. 发明申请
    • CRYPTOGRAPHIC FILE LABELING SYSTEM FOR SUPPORTING SECURED ACCESS BY MULTIPLE USERS
    • 用于支持多个用户的安全访问的拼接文件标签系统
    • WO1997042726A1
    • 1997-11-13
    • PCT/US1997006335
    • 1997-04-14
    • SYMANTEC CORPORATION
    • SYMANTEC CORPORATIONLOHSTROH, Shawn, R.McDONNAL, William, D.GRAWROCK, David
    • H04K01/00
    • G06F21/6209G06F12/1408G06F2211/007G06F2211/008G06F2221/2141
    • A system is disclosed for automatically distributing secured versions (*Sys_D_key*) of a file decryption key (Sys_D_key) to a plurality of file users by way of the file's security label. The label is defined to contain a plurality of Access-Control-Entries Records (ACER's) where each ACER includes a respective secured version (*Sys_D_key*) of the file decryption key. Each such secured version (*Sys_D_key*) is decipherable by a respective ACER private key. Each ACER may include respective other data such as: (a) ACER-unique identifying data for uniquely identifiying the ACER or an associated user; (b) decryption algorithm identifying data for identifying the decryption process to be used to decrypt the encrypted *DATA* portion of the file; and (c) special handling code for specifying special handling for the code-containing ACER. The label is preferably covered by a digital signature but includes an extension buffer that is not covered by the digital signature. Users who wish to have an ACER of their own added to the label may submit add-on requests by writing to the extension buffer.
    • 公开了一种用于通过文件的安全标签将文件解密密钥(Sys_D_key)的安全版本(* Sys_D_key *)自动分发到多个文件用户的系统。 该标签被定义为包含多个访问控制条目记录(ACER),其中每个ACER包括文件解密密钥的相应的安全版本(* Sys_D_key *)。 每个这样的安全版本(* Sys_D_key *)可由相应的ACER私钥解密。 每个ACER可以包括相应的其他数据,例如:(a)用于唯一地识别ACER或相关用户的ACER唯一识别数据; (b)识别用于识别用于解密文件的加密的* DATA *部分的解密过程的数据的解密算法; 和(c)用于指定代码含有ACER的特殊处理的特殊处理代码。 标签优选地被数字签名覆盖,但包括未被数字签名覆盖的扩展缓冲区。 希望将ACER自己添加到标签的用户可以通过写入扩展缓冲区来提交附加请求。
    • 2. 发明申请
    • A METHOD FOR PROVIDING A SECURE NON-REUSABLE ONE-TIME PASSWORD
    • 一种提供安全不可重复的一次性密码的方法
    • WO1997042732A1
    • 1997-11-13
    • PCT/US1997005964
    • 1997-04-10
    • SYMANTEC CORPORATION
    • SYMANTEC CORPORATIONLOHSTROH, Shawn, R.GRAWROCK, David
    • H04L09/00
    • G06F21/6209G06F21/31G06F2211/008G06F2221/2131
    • The present invention is directed toward providing a secure method to access data when the user has lost or forgotten the user password (261). In accordance with the invention and in a system where decryption of an access key (232) will give access to data, two encrypted versions of the access key are created (236, 270). A first version (236) is formed using a key (264) formed with the user password. A second version (270) is formed using a public key (266) from a public-private key pair. Generally, data access can be had by decrypting the first encrypted version (236) of the access key (232) with the password key (264). However, if the password (261) is forgotten, access to data can be accomplished by decrypting the second encrypted version (270) of the access key (232) with the private key (260) from the public-private key pair. One embodiment of the invention requires the private key (280) to be stored at a remote site and for decryption using the private key to take place at the remote site. In this manner the user can gain access to data without significantly compromising the data security.
    • 本发明旨在提供一种当用户丢失或忘记用户密码时访问数据的安全方法(261)。 根据本发明,并且在访问密钥(232)的解密将给出对数据的访问的系统中,创建访问密钥的两个加密版本(236,270)。 使用形成有用户密码的密钥(264)形成第一版本(236)。 使用来自公 - 私钥对的公开密钥(266)形成第二版本(270)。 通常,通过用密码密钥(264)解密访问密钥(232)的第一加密版本(236)可以进行数据访问。 然而,如果忘记了密码(261),则可以通过使用来自公 - 私钥对的专用密钥(260)解密访问密钥(232)的第二加密版本(270)来实现对数据的访问。 本发明的一个实施例需要将私钥(280)存储在远程站点处,并且使用私钥在远程站点进行解密。 以这种方式,用户可以获得对数据的访问,而不会显着地损害数据安全性。