专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明授权

US09667713B2 Apparatus and method for managing peer-to-peer connections between different service providers 有权
公开(公告)号：US09667713B2
公开(公告)日：2017-05-30
申请号：US13410232
申请日：2012-03-01
申请人： Andrew H. Vyrros , Justin N. Wood , Mitch Adler , Joe S. Abuan , Conrad Sauerwald , Hyeonkuk Jeong , Roberto Garcia
发明人： Andrew H. Vyrros , Justin N. Wood , Mitch Adler , Joe S. Abuan , Conrad Sauerwald , Hyeonkuk Jeong , Roberto Garcia
IPC分类号： G06F15/173 , H04L29/08 , A63F13/71 , A63F13/34 , A63F13/335 , H04L12/741 , H04L29/12
CPC分类号： H04L67/104 , A63F13/335 , A63F13/34 , A63F13/71 , A63F2300/407 , A63F2300/408 , A63F2300/532 , A63F2300/5546 , A63F2300/5566 , A63F2300/5573 , H04L29/12509 , H04L45/745 , H04L61/2567 , H04L67/04 , H04L67/141 , H04L67/26
摘要： In one embodiment of the invention, service providers generate bloom filters with the user ID codes of registered users and exchange the bloom filters with one another. In response to a request to locate a first user, a first service provider will query its own registration database to determine if the first user is registered with the first service provider. If the first user is not registered with the first service provider, then the first service provider will query its bloom filters to identify other service providers with which the first user may be registered. A positive response from a bloom filter indicates that the first user may or may not be registered with the service provider associated with that bloom filter, and a negative response indicates with certainty that the first user is not registered with the service provider associated with that bloom filter.

2. 发明授权

US08681976B2 System and method for device dependent and rate limited key generation 有权
标题翻译：用于设备依赖和速率限制密钥生成的系统和方法
公开(公告)号：US08681976B2
公开(公告)日：2014-03-25
申请号：US13106268
申请日：2011-05-12
申请人： Conrad Sauerwald , Joseph P. Bratt , Joshua Phillips de Cesare , Timothy John Millet , Weihua Mao
发明人： Conrad Sauerwald , Joseph P. Bratt , Joshua Phillips de Cesare , Timothy John Millet , Weihua Mao
IPC分类号： H04L29/06
CPC分类号： H04L9/0863 , H04L9/0866
摘要： Disclosed herein are systems, methods, and non-transitory computer-readable storage media for generating a device dependent cryptographic key in a rate-limited way. A system configured to practice the method first receives data associated with a user. The data associated with the user can be a password, a personal identification number (PIN), or a hash of the password. Then the system performs a first encryption operation on the user data based on a device-specific value to yield first intermediate data and performs a second encryption operation on the first intermediate data based on the device-specific value to yield second intermediate data. Then the system iteratively repeats the second encryption operation until a threshold is met, wherein each second encryption operation is performed on the second intermediate data from a previous second encryption operation. The iterations produce a final cryptographic key which the system can then output or use for a cryptographic operation.
摘要翻译：本文公开了用于以速率限制的方式生成依赖于设备的加密密钥的系统，方法和非暂时的计算机可读存储介质。被配置为练习该方法的系统首先接收与用户相关联的数据。与用户相关联的数据可以是密码，个人识别码（PIN）或密码的散列。然后，系统基于设备特定值对用户数据执行第一加密操作，以产生第一中间数据，并且基于设备特定值对第一中间数据执行第二加密操作以产生第二中间数据。然后，系统迭代地重复第二加密操作，直到满足阈值，其中从先前的第二加密操作对第二中间数据执行每个第二加密操作。迭代产生最终的加密密钥，系统然后可以输出或用于加密操作。

3. 发明授权

US08208900B2 Secure device configuration profiles 有权
标题翻译：安全设备配置配置文件
公开(公告)号：US08208900B2
公开(公告)日：2012-06-26
申请号：US12347647
申请日：2008-12-31
申请人： Mitchell D. Adler , Curtis C. Galloway , Christophe Allie , Conrad Sauerwald , Dallas Blake De Atley , Dieter Siegmund , Matthew Reda , Michael Lambertus Hubertus Brouwer , Roberto G. Yépez , Stan Jirman , Nitin Ganatra
发明人： Mitchell D. Adler , Curtis C. Galloway , Christophe Allie , Conrad Sauerwald , Dallas Blake De Atley , Dieter Siegmund , Matthew Reda , Michael Lambertus Hubertus Brouwer , Roberto G. Yépez , Stan Jirman , Nitin Ganatra
IPC分类号： H04M1/66
CPC分类号： H04W8/18 , H04L63/0272 , H04L63/0823 , H04L63/083 , H04L63/20
摘要： A method for configuring a device includes receiving a first configuration profile comprising a first configuration and a first certificate and a second certificate, verifying the first configuration profile with the first certificate, receiving a user input indicating to accept the first configuration profile, configuring the device according to the first configuration, receiving a second configuration profile comprising a second configuration, verifying the second configuration profile with the second certificate and updating the device according to the second configuration, wherein the user is unaware of the updating.
摘要翻译：一种用于配置设备的方法包括接收包括第一配置和第一证书和第二证书的第一配置简档，用第一证书验证第一配置简档，接收指示接受第一配置简档的用户输入，配置设备根据第一配置，接收包括第二配置的第二配置简档，使用第二证书验证第二配置简档并根据第二配置更新设备，其中用户不知道更新。

4. 发明申请

US20090228986A1 TRUST EXCEPTION MANAGEMENT 有权
标题翻译：信托例外管理
公开(公告)号：US20090228986A1
公开(公告)日：2009-09-10
申请号：US12347691
申请日：2008-12-31
申请人： MITCHELL D. ADLER , Michael Lambertus Hubertus Brouwer , Conrad Sauerwald
发明人： MITCHELL D. ADLER , Michael Lambertus Hubertus Brouwer , Conrad Sauerwald
IPC分类号： G06F21/00
CPC分类号： G06F21/10 , G06F21/33 , G06F21/57 , G06F2211/009
摘要： A machine implemented method includes storing a first data representing a prior exception to a first trust failure (e.g., expired certificate). The prior exception may be stored as part of establishing a first communication with a data processing system (e.g., a handheld device). The first communication may not be trustworthy. The method may determine, as part of establishing a second communication with the data processing system, that a second trust failure has occurred. The second trust failure (e.g., revoked certificate) indicates that the second communication may not be trustworthy. The method may determine whether the prior exception applies to the second trust failure. If the prior exception does not apply, the data processing system determines, automatically, whether to create a new exception for the second trust failure.
摘要翻译：机器实现的方法包括将表示先前异常的第一数据存储到第一信任失败（例如，过期证书）。可以将先前的例外存储为与数据处理系统（例如，手持设备）建立第一通信的一部分。第一个通信可能不值得信赖。作为与数据处理系统建立第二通信的一部分，该方法可以确定发生了第二信任故障。第二信任失败（例如撤销的证书）指示第二通信可能不可信。该方法可以确定先前的异常是否适用于第二信任失败。如果先前的异常不适用，则数据处理系统自动确定是否为第二个信任失败创建新的异常。

5. 发明申请

US20130073870A1 SECURE RELOCATION OF ENCRYPTED FILES 有权
标题翻译：加密文件的安全转移
公开(公告)号：US20130073870A1
公开(公告)日：2013-03-21
申请号：US13233090
申请日：2011-09-15
申请人： Conrad Sauerwald , Daniel J. Post , Eric Brandon Tamura , Matthew J. Byom , Puja Dilip Gupta
发明人： Conrad Sauerwald , Daniel J. Post , Eric Brandon Tamura , Matthew J. Byom , Puja Dilip Gupta
IPC分类号： G06F12/14
CPC分类号： G06F21/6218
摘要： Systems and methods are disclosed for secure relocation of encrypted files for a system having non-volatile memory (“NVM”). A system can include an encryption module that is configured to use a temporary encryption seed (e.g., a randomly generated key and a corresponding initialization vector) to decrypt and encrypt data files in an NVM. These data files may have originally been encrypted with different encryption seeds. Using such an approach, data files can be securely relocated even if the system does not have access to the original encryption seeds. In addition, the temporary encryption seed allows the system to bypass a default key scheme.
摘要翻译：公开了用于具有非易失性存储器（NVM）的系统的加密文件的安全重定位的系统和方法。系统可以包括被配置为使用临时加密种子（例如，随机生成的密钥和相应的初始化向量）来加密NVM中的数据文件的加密模块。这些数据文件最初可能用不同的加密种子加密。使用这种方法，即使系统无法访问原始加密种子，也可以安全地重新定位数据文件。此外，临时加密种子允许系统绕过默认密钥方案。

6. 发明申请

US20130035065A1 SECURE DEVICE CONFIGURATION PROFILES 有权
公开(公告)号：US20130035065A1
公开(公告)日：2013-02-07
申请号：US13528200
申请日：2012-06-20
申请人： Mitchell D. Adler , Curtis C. Galloway , Christophe Allie , Conrad Sauerwald , Dallas Blake De Atley , Dieter Siegmund , Matthew Reda , Michael Lambertus Hubertus Brouwer , Roberto G. Yépez , Stan Jirman , Nitin Ganatra
发明人： Mitchell D. Adler , Curtis C. Galloway , Christophe Allie , Conrad Sauerwald , Dallas Blake De Atley , Dieter Siegmund , Matthew Reda , Michael Lambertus Hubertus Brouwer , Roberto G. Yépez , Stan Jirman , Nitin Ganatra
IPC分类号： H04W12/06
CPC分类号： H04W8/18 , H04L63/0272 , H04L63/0823 , H04L63/083 , H04L63/20
摘要： A method for configuring a device includes receiving a first configuration profile comprising a first configuration and a first certificate and a second certificate, verifying the first configuration profile with the first certificate, receiving a user input indicating to accept the first configuration profile, configuring the device according to the first configuration, receiving a second configuration profile comprising a second configuration, verifying the second configuration profile with the second certificate and updating the device according to the second configuration, wherein the user is unaware of the updating.

7. 发明申请

US20120288089A1 SYSTEM AND METHOD FOR DEVICE DEPENDENT AND RATE LIMITED KEY GENERATION 有权
标题翻译：用于设备依赖和速率的系统和方法有限的主要生成
公开(公告)号：US20120288089A1
公开(公告)日：2012-11-15
申请号：US13106268
申请日：2011-05-12
申请人： Conrad Sauerwald , Joseph P. Bratt , Joshua Phillips de Cesare , Timothy John Millet , Weihua Mao
发明人： Conrad Sauerwald , Joseph P. Bratt , Joshua Phillips de Cesare , Timothy John Millet , Weihua Mao
IPC分类号： H04L9/06
CPC分类号： H04L9/0863 , H04L9/0866
摘要： Disclosed herein are systems, methods, and non-transitory computer-readable storage media for generating a device dependent cryptographic key in a rate-limited way. A system configured to practice the method first receives data associated with a user. The data associated with the user can be a password, a personal identification number (PIN), or a hash of the password. Then the system performs a first encryption operation on the user data based on a device-specific value to yield first intermediate data and performs a second encryption operation on the first intermediate data based on the device-specific value to yield second intermediate data. Then the system iteratively repeats the second encryption operation until a threshold is met, wherein each second encryption operation is performed on the second intermediate data from a previous second encryption operation. The iterations produce a final cryptographic key which the system can then output or use for a cryptographic operation.
摘要翻译：本文公开了用于以速率限制的方式生成依赖于设备的加密密钥的系统，方法和非暂时的计算机可读存储介质。被配置为练习该方法的系统首先接收与用户相关联的数据。与用户相关联的数据可以是密码，个人识别码（PIN）或密码的散列。然后，系统基于设备特定值对用户数据执行第一加密操作，以产生第一中间数据，并且基于设备特定值对第一中间数据执行第二加密操作以产生第二中间数据。然后，系统迭代地重复第二加密操作，直到满足阈值，其中从先前的第二加密操作对第二中间数据执行每个第二加密操作。迭代产生最终的加密密钥，系统然后可以输出或用于加密操作。

8. 发明申请

US20120246301A1 APPARATUS AND METHOD FOR MANAGING PEER-TO-PEER CONNECTIONS BETWEEN DIFFERENT SERVICE PROVIDERS 有权
标题翻译：用于管理不同服务提供商之间的对等连接的装置和方法
公开(公告)号：US20120246301A1
公开(公告)日：2012-09-27
申请号：US13410232
申请日：2012-03-01
申请人： Andrew H. Vyrros , Justin N. Wood , Mitch Adler , Joe S. Abuan , Conrad Sauerwald , Hyeonkuk Jeong , Roberto Garcia
发明人： Andrew H. Vyrros , Justin N. Wood , Mitch Adler , Joe S. Abuan , Conrad Sauerwald , Hyeonkuk Jeong , Roberto Garcia
IPC分类号： G06F15/173
CPC分类号： H04L67/104 , A63F13/335 , A63F13/34 , A63F13/71 , A63F2300/407 , A63F2300/408 , A63F2300/532 , A63F2300/5546 , A63F2300/5566 , A63F2300/5573 , H04L29/12509 , H04L45/745 , H04L61/2567 , H04L67/04 , H04L67/141 , H04L67/26
摘要： In one embodiment of the invention, service providers generate bloom filters with the user ID codes of registered users and exchange the bloom filters with one another. In response to a request to locate a first user, a first service provider will query its own registration database to determine if the first user is registered with the first service provider. If the first user is not registered with the first service provider, then the first service provider will query its bloom filters to identify other service providers with which the first user may be registered. A positive response from a bloom filter indicates that the first user may or may not be registered with the service provider associated with that bloom filter, and a negative response indicates with certainty that the first user is not registered with the service provider associated with that bloom filter.
摘要翻译：在本发明的一个实施例中，服务提供商产生具有注册用户的用户ID代码的布隆过滤器并且彼此交换布局过滤器。响应于定位第一用户的请求，第一服务提供商将查询其自己的注册数据库以确定第一用户是否向第一服务提供商注册。如果第一用户没有向第一服务提供商注册，则第一服务提供商将查询其布隆过滤器以识别可以注册第一用户的其他服务提供商。来自绽放过滤器的积极响应指示第一用户可能登录到与该绽放过滤器相关联的服务提供商，也可以不向与该绽放过滤器相关联的服务提供商注册，并且否定响应确定地指示第一用户未向与该盛产相关联的服务提供商注册过滤。

9. 发明申请

US20090227274A1 SECURE DEVICE CONFIGURATION PROFILES 有权
标题翻译：安全设备配置配置文件
公开(公告)号：US20090227274A1
公开(公告)日：2009-09-10
申请号：US12347647
申请日：2008-12-31
申请人： MITCHELL D. ADLER , Curtis C. Galloway , Christophe Allie , Conrad Sauerwald , Dallas Blake De Atley , Dieter Siegmund , Matthew Reda , Michael Lambertus Hubertus Brouwer , Roberto G. Yepez , Stan Jirman , Nitin Ganatra
发明人： MITCHELL D. ADLER , Curtis C. Galloway , Christophe Allie , Conrad Sauerwald , Dallas Blake De Atley , Dieter Siegmund , Matthew Reda , Michael Lambertus Hubertus Brouwer , Roberto G. Yepez , Stan Jirman , Nitin Ganatra
IPC分类号： H04B7/00 , H04W4/00
CPC分类号： H04W8/18 , H04L63/0272 , H04L63/0823 , H04L63/083 , H04L63/20
摘要： A method for configuring a device includes receiving a first configuration profile comprising a first configuration and a first certificate and a second certificate, verifying the first configuration profile with the first certificate, receiving a user input indicating to accept the first configuration profile, configuring the device according to the first configuration, receiving a second configuration profile comprising a second configuration, verifying the second configuration profile with the second certificate and updating the device according to the second configuration, wherein the user is unaware of the updating.
摘要翻译：一种用于配置设备的方法包括接收包括第一配置和第一证书和第二证书的第一配置简档，用第一证书验证第一配置简档，接收指示接受第一配置简档的用户输入，配置设备根据第一配置，接收包括第二配置的第二配置简档，使用第二证书验证第二配置简档并根据第二配置更新设备，其中用户不知道更新。

10. 发明授权

US08886963B2 Secure relocation of encrypted files 有权
标题翻译：安全地重新安置加密文件
公开(公告)号：US08886963B2
公开(公告)日：2014-11-11
申请号：US13233090
申请日：2011-09-15
申请人： Conrad Sauerwald , Daniel J. Post , Eric Brandon Tamura , Matthew J. Byom , Puja Dilip Gupta
发明人： Conrad Sauerwald , Daniel J. Post , Eric Brandon Tamura , Matthew J. Byom , Puja Dilip Gupta
IPC分类号： G06F21/00 , G06F21/62
CPC分类号： G06F21/6218
摘要： Systems and methods are disclosed for secure relocation of encrypted files for a system having non-volatile memory (“NVM”). A system can include an encryption module that is configured to use a temporary encryption seed (e.g., a randomly generated key and a corresponding initialization vector) to decrypt and encrypt data files in an NVM. These data files may have originally been encrypted with different encryption seeds. Using such an approach, data files can be securely relocated even if the system does not have access to the original encryption seeds. In addition, the temporary encryption seed allows the system to bypass a default key scheme.
摘要翻译：公开了用于具有非易失性存储器（“NVM”）的系统的加密文件的安全重定位的系统和方法。系统可以包括被配置为使用临时加密种子（例如，随机生成的密钥和相应的初始化向量）来加密NVM中的数据文件的加密模块。这些数据文件最初可能用不同的加密种子加密。使用这种方法，即使系统无法访问原始加密种子，也可以安全地重新定位数据文件。此外，临时加密种子允许系统绕过默认密钥方案。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式