专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明申请

WO1997042726A1 CRYPTOGRAPHIC FILE LABELING SYSTEM FOR SUPPORTING SECURED ACCESS BY MULTIPLE USERS 审中-公开
标题翻译：用于支持多个用户的安全访问的拼接文件标签系统
公开(公告)号：WO1997042726A1
公开(公告)日：1997-11-13
申请号：PCT/US1997006335
申请日：1997-04-14
申请人： SYMANTEC CORPORATION
发明人： SYMANTEC CORPORATION , LOHSTROH, Shawn, R. , McDONNAL, William, D. , GRAWROCK, David
IPC分类号： H04K01/00
CPC分类号： G06F21/6209 , G06F12/1408 , G06F2211/007 , G06F2211/008 , G06F2221/2141
摘要： A system is disclosed for automatically distributing secured versions (*Sys_D_key*) of a file decryption key (Sys_D_key) to a plurality of file users by way of the file's security label. The label is defined to contain a plurality of Access-Control-Entries Records (ACER's) where each ACER includes a respective secured version (*Sys_D_key*) of the file decryption key. Each such secured version (*Sys_D_key*) is decipherable by a respective ACER private key. Each ACER may include respective other data such as: (a) ACER-unique identifying data for uniquely identifiying the ACER or an associated user; (b) decryption algorithm identifying data for identifying the decryption process to be used to decrypt the encrypted *DATA* portion of the file; and (c) special handling code for specifying special handling for the code-containing ACER. The label is preferably covered by a digital signature but includes an extension buffer that is not covered by the digital signature. Users who wish to have an ACER of their own added to the label may submit add-on requests by writing to the extension buffer.
摘要翻译：公开了一种用于通过文件的安全标签将文件解密密钥（Sys_D_key）的安全版本（* Sys_D_key *）自动分发到多个文件用户的系统。该标签被定义为包含多个访问控制条目记录（ACER），其中每个ACER包括文件解密密钥的相应的安全版本（* Sys_D_key *）。每个这样的安全版本（* Sys_D_key *）可由相应的ACER私钥解密。每个ACER可以包括相应的其他数据，例如：（a）用于唯一地识别ACER或相关用户的ACER唯一识别数据; （b）识别用于识别用于解密文件的加密的* DATA *部分的解密过程的数据的解密算法; 和（c）用于指定代码含有ACER的特殊处理的特殊处理代码。标签优选地被数字签名覆盖，但包括未被数字签名覆盖的扩展缓冲区。希望将ACER自己添加到标签的用户可以通过写入扩展缓冲区来提交附加请求。

2. 发明申请

WO1997042732A1 A METHOD FOR PROVIDING A SECURE NON-REUSABLE ONE-TIME PASSWORD 审中-公开
标题翻译：一种提供安全不可重复的一次性密码的方法
公开(公告)号：WO1997042732A1
公开(公告)日：1997-11-13
申请号：PCT/US1997005964
申请日：1997-04-10
申请人： SYMANTEC CORPORATION
发明人： SYMANTEC CORPORATION , LOHSTROH, Shawn, R. , GRAWROCK, David
IPC分类号： H04L09/00
CPC分类号： G06F21/6209 , G06F21/31 , G06F2211/008 , G06F2221/2131
摘要： The present invention is directed toward providing a secure method to access data when the user has lost or forgotten the user password (261). In accordance with the invention and in a system where decryption of an access key (232) will give access to data, two encrypted versions of the access key are created (236, 270). A first version (236) is formed using a key (264) formed with the user password. A second version (270) is formed using a public key (266) from a public-private key pair. Generally, data access can be had by decrypting the first encrypted version (236) of the access key (232) with the password key (264). However, if the password (261) is forgotten, access to data can be accomplished by decrypting the second encrypted version (270) of the access key (232) with the private key (260) from the public-private key pair. One embodiment of the invention requires the private key (280) to be stored at a remote site and for decryption using the private key to take place at the remote site. In this manner the user can gain access to data without significantly compromising the data security.
摘要翻译：本发明旨在提供一种当用户丢失或忘记用户密码时访问数据的安全方法（261）。根据本发明，并且在访问密钥（232）的解密将给出对数据的访问的系统中，创建访问密钥的两个加密版本（236,270）。使用形成有用户密码的密钥（264）形成第一版本（236）。使用来自公 - 私钥对的公开密钥（266）形成第二版本（270）。通常，通过用密码密钥（264）解密访问密钥（232）的第一加密版本（236）可以进行数据访问。然而，如果忘记了密码（261），则可以通过使用来自公 - 私钥对的专用密钥（260）解密访问密钥（232）的第二加密版本（270）来实现对数据的访问。本发明的一个实施例需要将私钥（280）存储在远程站点处，并且使用私钥在远程站点进行解密。以这种方式，用户可以获得对数据的访问，而不会显着地损害数据安全性。

3. 发明申请

WO1997026736A1 SYSTEM FOR DECRYPTION AND RE-ENCRYPTION OF FILES 审中-公开
标题翻译：用于分解和重新加密文件的系统
公开(公告)号：WO1997026736A1
公开(公告)日：1997-07-24
申请号：PCT/US1997000723
申请日：1997-01-15
申请人： SYMANTEC CORPORATION
发明人： SYMANTEC CORPORATION , McDONNAL, William, D. , LOHSTROH, Shawn , GRAWROCK, David
IPC分类号： H04L09/00
CPC分类号： G06F21/6218 , G06F12/1408 , G06F21/602 , G06F2211/007 , G06F2211/008 , G06F2221/2141
摘要： A machine system (100) for automatic decryption of confidential file data on a per-use basis and automatic later elimination of the decrypted data by scorching and/or re-encrypting is disclosed. The following features are provided for secure and automatic recryption: (1) use of file-exclusion lists; (2) use of application-program exclusion lists; (3) decrypting as needed in response to intercepted file-OPEN requests; (4) encrypting as needed in response to intercepted file-CLOSE requests; (5) delaying post-CLOSE encryption.
摘要翻译：公开了一种用于每次使用的机密文件数据的自动解密并通过焦点和/或重新加密自动稍后消除解密的数据的机器系统（100）。提供以下功能用于安全和自动重新加注：（1）使用文件排除列表; （2）使用应用程序排除列表; （3）响应于截取的文件OPEN请求，根据需要进行解密; （4）响应截取的文件关闭请求，根据需要进行加密; （5）延迟关闭后加密。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式