专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明申请

WO2010092138A2 COLLABORATIVE RECONCILIATION OF APPLICATION TRUSTWORTHINESS 审中-公开
标题翻译：应用信息的协同重新配置
公开(公告)号：WO2010092138A2
公开(公告)日：2010-08-19
申请号：PCT/EP2010/051754
申请日：2010-02-12
申请人： TELEFONAKTIEBOLAGET L M ERICSSON (PUBL) , JOHANSSON, Björn , SMEETS, Bernard , PERSSON, Jan Patrik
发明人： JOHANSSON, Björn , SMEETS, Bernard , PERSSON, Jan Patrik
IPC分类号： H04W12/10
CPC分类号： H04L63/123 , G06F21/51 , G06F21/64 , G06F2221/2115 , H04W12/10
摘要： A mobile terminal receives trustworthiness information for a software application by receiving a voucher that indicates the trustworthiness of that application as represented by a third party. To ensure the integrity of this information, the mobile terminal authenticates the voucher and verifies that the software application is the one having its trustworthiness indicated by the voucher. Given such indications of trustworthiness, a user of the mobile terminal may decide whether install and run it. If decided in the affirmative, the user may form his or her own basis for the trustworthiness of the software application. Accordingly, the mobile terminal may also create a new voucher that indicates the trustworthiness of the software application as represented by the user. With third parties representing the trustworthiness of software applications in this manner, their development is not hindered by the imposition of security requirements on application developers.
摘要翻译：移动终端通过接收指示由第三方表示的该应用的可信赖性的凭单来接收软件应用的可信赖信息。为了确保该信息的完整性，移动终端对凭证进行身份验证，并验证该软件应用程序是否具有凭证所示的可信赖性。给定这种可信度的指示，移动终端的用户可以决定是否安装并运行它。如果确定为肯定的，用户可以形成他或她自己的软件应用的可信赖性的基础。因此，移动终端还可以创建指示由用户表示的软件应用程序的可信赖性的新凭证。由于第三方以这种方式代表软件应用程序的可信赖性，因此对应用程序开发人员施加安全要求并不妨碍其开发。

2. 发明申请

WO2006066698A1 WATERMARKING COMPUTER CODE BY EQUIVALENT MATHEMATICAL EXPRESSIONS 审中-公开
标题翻译：水印计算机代码等价数学表达式
公开(公告)号：WO2006066698A1
公开(公告)日：2006-06-29
申请号：PCT/EP2005/012819
申请日：2005-11-24
申请人： TELEFONAKTIEBOLAGET L M ERICSSON (PUBL) , SMEETS, Bernard , JOHANSSON, Björn
发明人： SMEETS, Bernard , JOHANSSON, Björn
IPC分类号： G06F21/00
CPC分类号： G06F21/16
摘要： A method of embedding information in a computer program code, including a plurality of program statements. The method comprises: parsing the computer program code to identify at least one program statement that includes a first mathematical expression, wherein said first mathematical expression includes at least a first algebraic expression adapted to produce at least one numeric result; generating a modified mathematical expression by performing a predetermined transformation of the first mathematical expression, wherein the modified mathematical expression includes a transformed algebraic expression instead of the first algebraic expression, such that the modified mathematical expression is adapted to produce the same result as the first mathematical expression, and wherein the modified mathematical expression is indicative of at least a part of said information; replacing said first mathematical expression in the identified program statement by the modified mathematical expression.
摘要翻译：一种在包括多个程序语句的计算机程序代码中嵌入信息的方法。该方法包括：解析计算机程序代码以识别包括第一数学表达式的至少一个程序语句，其中所述第一数学表达式至少包括适于产生至少一个数值结果的第一代数表达式; 通过执行第一数学表达式的预定变换来生成修改的数学表达式，其中修改的数学表达式包括转换的代数表达式而不是第一代数表达式，使得修改的数学表达式适于产生与第一数学表达式相同的结果表达，并且其中所述修改的数学表达式指示所述信息的至少一部分; 通过修改的数学表达式替换所识别的程序语句中的所述第一数学表达式。

3. 发明申请

WO2012168212A1 METHOD OF DETERMINING AN ATTRIBUTE OF A SERVER 审中-公开
标题翻译：确定服务器属性的方法
公开(公告)号：WO2012168212A1
公开(公告)日：2012-12-13
申请号：PCT/EP2012/060551
申请日：2012-06-05
申请人： TELEFONAKTIEBOLAGET L M ERICSSON (PUBL) , SMEETS, Bernard
发明人： SMEETS, Bernard
IPC分类号： G06F21/00
CPC分类号： H04L43/04 , G06F21/57 , G06F21/64
摘要： A method of determining an operational attribute of a server executed on a first execution platform and providing a service, the method comprising: performing a measurement indicative of an operational attribute of the server, wherein the measurement is performed by a platform observer system executed on said first execution platform; communicating a result of said measurement to an external observer system; wherein the communicating comprises protecting secrecy of the communicated result; verifying, by the external observer system, that the received measurement result is indicative of a measurement performed on said server.
摘要翻译：一种确定在第一执行平台上执行并提供服务的服务器的操作属性的方法，所述方法包括：执行指示所述服务器的操作属性的测量，其中所述测量由在所述服务器上执行的平台观察器系统执行第一执行平台; 将所述测量的结果传达给外部观察者系统; 其中所述通信包括保护所传送结果的保密性; 由外部观察者系统验证所接收的测量结果是指示在所述服务器上执行的测量。

4. 发明申请

WO2011147661A1 REDUNDANT CREDENTIALED ACCESS TO A SECURED NETWORK 审中-公开
标题翻译：冗余认证访问安全网络
公开(公告)号：WO2011147661A1
公开(公告)日：2011-12-01
申请号：PCT/EP2011/056984
申请日：2011-05-02
申请人： TELEFONAKTIEBOLAGET L M ERICSSON (PUBL) , SMEETS, Bernard
发明人： SMEETS, Bernard
IPC分类号： H04W12/12 , H04W12/06 , H04W8/18
CPC分类号： H04W12/06 , H04W12/12 , H04W48/18
摘要： A mobile communication device (10) is configured to provide redundant credentialed access to one or more secured wireless communication networks. The mobile device (10) obtains credentialed access to one of the secured networks ((30 -1), (30 -2)) by remotely using credentials stored in a credentialed communication device that is locally available (i.e., in the vicinity of the mobile device) (200). Responsive to detecting the actual, or potential, compromise of the mobile device's credentialed access to that secured network, the mobile device (10) switches to other credentials stored in a different credentialed device and obtains credentialed access to one of the secured networks by remotely using those other credentials (220). This switching occurs dynamically upon detecting the compromise of credentialed access, as well as automatically without requiring the mobile device's user to manually enter commands into the device's user interface.
摘要翻译：移动通信设备（10）被配置为向一个或多个安全的无线通信网络提供冗余的认证接入。移动设备（10）通过远程使用存储在本地可用的凭证通信设备中的凭证（即，在（30-2）附近）获得对安全网络之一（30-1），（30-2））的凭证访问移动设备）（200）。响应于检测移动设备对该安全网络的凭证访问的实际或潜在的妥协，移动设备（10）切换到存储在不同的凭证设备中的其他凭证，并通过远程使用获得对一个安全网络的凭证访问其他凭证（220）。在检测到凭据访问的折中以及自动地切换时，动态地进行切换，而不需要移动设备的用户手动地将命令输入设备的用户界面。

5. 发明申请

WO2009132908A1 METHOD AND APPARATUS FOR SECURE HARDWARE ANALYSIS 审中-公开
标题翻译：安全硬件分析的方法和装置
公开(公告)号：WO2009132908A1
公开(公告)日：2009-11-05
申请号：PCT/EP2009/053609
申请日：2009-03-26
申请人： TELEFONAKTIEBOLAGET L M ERICSSON (PUBL) , GEHRMANN, Christian , SMEETS, Bernard , DAMBERG, Kent
发明人： GEHRMANN, Christian , SMEETS, Bernard , DAMBERG, Kent
IPC分类号： G06F21/00
CPC分类号： G06F21/31 , G06F21/445 , G06F21/74 , G06F2221/2103 , G06F2221/2129
摘要： A Hardware Analysis Module ("HAM") embedded in an integrated circuit (IC) implements a dedicated hardware-controlled access control procedure. The secure hardware analysis features are unlocked by a key unit subject to successful completion of an access control procedure. The access control procedure prevents unlocking of the secure hardware analysis features by an unauthorized or compromised key unit by including an embedded control command in an authentication challenge sent by the HAM to the key unit during the access control procedure.
摘要翻译：嵌入在集成电路（IC）中的硬件分析模块（“HAM”）实现了专用的硬件控制访问控制程序。安全硬件分析功能由成功完成访问控制程序的关键单元解锁。访问控制过程通过在访问控制过程期间通过将由HAM发送的认证挑战中的嵌入控制命令包括在密钥单元上来防止由未授权或受损的密钥单元解锁安全硬件分析特征。

6. 发明申请

WO2002087269A2 SYSTEM AND METHOD FOR SECURING INFORMATION IN MEMORY 审中-公开
标题翻译：用于保护存储器中的信息的系统和方法
公开(公告)号：WO2002087269A2
公开(公告)日：2002-10-31
申请号：PCT/EP2002/003816
申请日：2002-04-05
申请人： TELEFONAKTIEBOLAGET L M ERICSSON (publ) , SMEETS, Bernard , OSTHOFF, Harro
发明人： SMEETS, Bernard , OSTHOFF, Harro
IPC分类号： H04Q7/32
CPC分类号： G06F21/71 , H04W88/02
摘要： A system and method for securing information in the memory of an electronic device. A terminal identifier that identifies the device is stored in memory in the device. Also stored in memory of the device is a cryptographic hash algorithm and a hash value that is calculated from the application of the hash algorithm against the terminal identifier. The terminal identifier, the hash algorithm, and the hash value are all stored in protected memory within the electronic device with the protected memory being read only memory or one time programmable memory. In response to the occurrence of an event on the electronic device, such as at time of device power up, the hash algorithm is applied against the stored terminal identifier, with the resultant hash value being compared against the stored hash value. If the two hash values fail to match, normal operation of the device is disabled.
摘要翻译：一种用于将信息保护在电子设备的存储器中的系统和方法。识别设备的终端标识符存储在设备的存储器中。还存储在设备的存储器中的是加密散列算法和从哈希算法应用于终端标识符的应用计算的散列值。终端标识符，散列算法和哈希值都存储在电子设备内的受保护的存储器中，其中受保护的存储器是只读存储器或一次可编程存储器。响应于电子设备上的事件的发生，例如在设备上电时，针对所存储的终端标识符应用散列算法，将所得到的散列值与存储的散列值进行比较。如果两个哈希值不匹配，则设备的正常运行被禁用。

7. 发明申请

WO2011151211A1 PROCESSING DEVICE 审中-公开
标题翻译：加工设备
公开(公告)号：WO2011151211A1
公开(公告)日：2011-12-08
申请号：PCT/EP2011/058333
申请日：2011-05-23
申请人： TELEFONAKTIEBOLAGET L M ERICSSON (PUBL) , SMEETS, Bernard , EKDAHL, Patrik
发明人： SMEETS, Bernard , EKDAHL, Patrik
IPC分类号： G06F9/445 , G06F21/00
CPC分类号： G06F9/4416 , G06F21/57 , G06F2221/2137
摘要： Disclosed herein is a processing device comprising a secured execution environment comprising means for bringing the processing device into a predetermined operational state; and a timer; a communication interface for data communication between the processing device and a remote device management system external to the processing device; wherein the secured execution environment is configured, responsive to an expiry of the timer, to bring the processing device into said predetermined operational state; and responsive to a receipt, from the remote device management system via said communications interface, of a predetermined signal, to restart the timer.
摘要翻译：本文公开了一种包括安全执行环境的处理装置，包括用于使处理装置进入预定操作状态的装置; 和定时器; 用于处理设备与处理设备外部的远程设备管理系统之间的数据通信的通信接口; 其中所述安全执行环境被配置为响应于所述定时器的期满使所述处理设备进入所述预定操作状态; 并且响应于来自所述远程设备管理系统的经由所述通信接口的预定信号的接收重新启动所述定时器。

8. 发明申请

WO2009115394A3 A SYSTEM AND METHOD FOR SECURELY ISSUING SUBSCRIPTION CREDENTIALS TO COMMUNICATION DEVICES 审中-公开
公开(公告)号：WO2009115394A3
公开(公告)日：2009-09-24
申请号：PCT/EP2009/052104
申请日：2009-02-23
申请人： Telefonaktiebolaget L M Ericsson (publ) , SMEETS, Bernard
发明人： SMEETS, Bernard
IPC分类号： H04L29/06
摘要： According to teachings presented herein, communication devices are conveniently provisioned with network subscription credentials after purchasing, without device manufacturer or network operators having to preload temporary subscription credentials or to otherwise make provisions for supporting direct over-the-air provisioning of the devices. Such devices may be, for example, cellular telephones or other mobile devices. Broadly, a user communicatively couples a communication device to be provisioned to an intermediate data device that has existing communication capabilities, e.g., a PC or already-provisioned mobile telephone. A subscription server or other entity then uses a communication link with the intermediate data device to provide subscription credentials to the communication device, subject to trusted-device and owner identity verifications.

9. 发明申请

WO2002091704A3 SECURE REMOTE SUBSCRIPTION MODULE ACCESS 审中-公开
公开(公告)号：WO2002091704A3
公开(公告)日：2002-11-14
申请号：PCT/EP2002/003716
申请日：2002-03-22
申请人： TELEFONAKTIEBOLAGET L M ERICSSON (PUBL) , GEHRMANN, Christian , SMEETS, Bernard
发明人： GEHRMANN, Christian , SMEETS, Bernard
IPC分类号： H04L29/06
摘要： Disclosed is a method of granting a client communications terminal access to a subscription module of a server communications terminal, the method comprising the steps of establishing a communications link between the client communications terminal and the server communications terminal; communicating data related to the subscription module between the server communications terminal and the client communications terminal via the communications link; authenticating the client communications terminal by the subscription module using a key-based authentication procedure; and initiating the step of communicating data related to the subscription module conditioned on a result of the step of authenticating the client communications device. The present invention further relates to an arrangement for granting access to a subscription module in a communications system. The present invention also relates to a server communications terminal comprising a subscription module, a client communications terminal and a subscription module.

10. 发明申请

WO2010089005A1 CRYPTOGRAPHIC PROTECTION OF USAGE RESTRICTIONS IN ELECTRONIC DEVICES 审中-公开
标题翻译：电子设备中使用限制的纹理保护
公开(公告)号：WO2010089005A1
公开(公告)日：2010-08-12
申请号：PCT/EP2009/067653
申请日：2009-12-21
申请人： TELEFONAKTIEBOLAGET L M ERICSSON (PUBL) , STÅHL, Per , LORESKÄR, Chris , SMEETS, Bernard
发明人： STÅHL, Per , LORESKÄR, Chris , SMEETS, Bernard
IPC分类号： H04L29/06
CPC分类号： G06F21/10 , G06F2221/0704 , H04L9/088 , H04L9/3242 , H04L2209/80 , H04W12/08 , H04W12/10 , H04W88/02
摘要： An electronic device requires valid control keys to change any usage restriction setting 50. The device is provided with control keys, a secret key, and a signed software object including a batch ID and a hash of the secret key. For each control key, the device generates a cryptographic footprint bound to the device and the secret key. A message authentication code (MAC) of each usage restriction setting is generated 48, the MAC bound to the device and a control key. To change a usage restriction, the device receives a control key, validates it against the stored footprint, changes the usage restriction settings, and generates a new usage restriction setting MAC. The control key footprints are bound to the secret key, but the device retains only a hash of the secret key.
摘要翻译：电子设备需要有效的控制键来改变任何使用限制设置50.该设备具有控制密钥，秘密密钥和包括批密码和密钥的散列的签名软件对象。对于每个控制密钥，设备生成绑定到设备和秘密密钥的加密覆盖。生成每个使用限制设置的消息认证码（MAC）48，绑定到设备的MAC和控制密钥。为了更改使用限制，设备接收到控制密钥，根据存储的足迹进行验证，更改使用限制设置，并生成新的使用限制设置MAC。控制键占用空间被绑定到秘密密钥，但设备仅保留秘密密钥的散列。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式