专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明授权

US09356779B2 Systems and methods for identity-based encryption and related cryptographic techniques 有权
标题翻译：用于基于身份的加密和相关加密技术的系统和方法
公开(公告)号：US09356779B2
公开(公告)日：2016-05-31
申请号：US13369165
申请日：2012-02-08
申请人： Dan Boneh , Matthew Franklin
发明人： Dan Boneh , Matthew Franklin
IPC分类号： G06F21/00 , H04L29/06 , H04L9/08 , H04L9/30
CPC分类号： H04L9/0847 , H04L9/3073 , H04L2209/04
摘要： A method and system for encrypting a first piece of information M to be sent by a sender [100] to a receiver [110] allows both sender and receiver to compute a secret message key using identity-based information and a bilinear map. The sender uses a bilinear map to encrypt a message M, producing ciphertext V to be sent from the sender [100] to the receiver [110]. The receiver [110] uses the bilinear map to decrypt V and recover the original message M. According to one embodiment, the bilinear map is based on a Weil pairing or a Tate pairing defined on a subgroup of an elliptic curve. Also described are several applications of the techniques, including key revocation, credential management, and return receipt notification.
摘要翻译：用于加密由发送器[100]发送给接收机[110]的第一条信息M的方法和系统允许发送方和接收方使用基于身份的信息和双线性映射来计算秘密消息密钥。发送方使用双线性映射来加密消息M，产生要从发送方[100]发送到接收方[110]的密文V。接收机[110]使用双线性映射来解密V并恢复原始消息M.根据一个实施例，双线性映射基于在椭圆曲线的子组上定义的Weil配对或Tate配对。还描述了技术的若干应用，包括关键撤销，凭证管理和回报收据通知。

2. 发明申请

US20120159604A1 Method and System for Communication Between Devices 审中-公开
标题翻译：设备之间通信的方法和系统
公开(公告)号：US20120159604A1
公开(公告)日：2012-06-21
申请号：US13208330
申请日：2011-08-11
申请人： Hristo Bojinov , Dan Boneh
发明人： Hristo Bojinov , Dan Boneh
IPC分类号： G06F21/00
CPC分类号： G06F21/34
摘要： An embodiment of the present invention includes a system for communicating digital data from a preferably small battery powered device (e.g., key-chain or pocket-sized form-factor) to a personal electronic device (e.g., a smartphone such as an iPhone or a Nexus One). The communication mechanism of the present invention can be used as second factor authentication. The present invention can also be used as a key for accessing physical locations such as building. Alternatively, the present invention can be used as a manner for transmitting digital data to a personal electronic device such as a smart phone.
摘要翻译：本发明的实施例包括一种用于将数字数据从优选小型电池供电设备（例如，密钥链或口袋大小的形式）传送到个人电子设备（例如，诸如iPhone或 Nexus One）。本发明的通信机制可以用作第二因素认证。本发明还可以用作访问物理位置如建筑物的关键。或者，本发明可以用作将数字数据发送到诸如智能电话的个人电子设备的方式。

3. 发明申请

US20110181470A1 Geosecurity methods and devices using geotags derived from noisy location data from multiple sources 有权
标题翻译：使用从多个来源的嘈杂位置数据导出的地理标记的地质安全方法和设备
公开(公告)号：US20110181470A1
公开(公告)日：2011-07-28
申请号：US12657677
申请日：2010-01-25
申请人： Di Qiu , Sherman Lo , David S. De Lorenzo , Dan Boneh , Per Enge
发明人： Di Qiu , Sherman Lo , David S. De Lorenzo , Dan Boneh , Per Enge
IPC分类号： G01S5/02
CPC分类号： G01S5/0252 , G08B21/0213 , G08B21/0269 , G08B21/0283 , H04L63/107 , H04W4/02 , H04W12/08
摘要： In a geo-security system, a device receives RF signals from multiple distinct classes of RF communication systems and extracts location-dependent signal parameters. A current geotag is computed from the parameters by fuzzy extractors involving quantization of the parameters and Reed-Solomon decoding to provide a reproducible unique geotag. The current geotag is compared with a stored geotag, and a geo-secured function of the device is executed based on the result of the comparison. The use of multiple signal sources of different types, combined with special fuzzy extractors provides a robust geotag that allows both lower false rejection rate and lower false acceptance rate.
摘要翻译：在地理安全系统中，设备从多个不同类别的RF通信系统接收RF信号，并提取位置相关的信号参数。目前的地理标签是通过模糊提取器从参数中计算出来的，这些模糊提取器涉及量化参数和里德 - 所罗门解码，以提供可重现的唯一地理标记。将当前的地理标签与存储的地理标签进行比较，并根据比较结果执行设备的地理安全功能。使用不同类型的多个信号源，结合特殊的模糊提取器提供了一个强大的地理标记，允许较低的错误拒收率和较低的错误接受率。

4. 发明申请

US20080170701A1 Delegation system for decryption rights 审中-公开
标题翻译：授权系统解密权
公开(公告)号：US20080170701A1
公开(公告)日：2008-07-17
申请号：US11894448
申请日：2007-08-21
申请人： Toshihiko Matsuo , Dan Boneh , Eu-Jin Goh
发明人： Toshihiko Matsuo , Dan Boneh , Eu-Jin Goh
IPC分类号： H04L9/08 , H04L9/30 , H04L9/14
CPC分类号： H04L9/083 , H04L9/3073 , H04L63/0442 , H04L63/0478 , H04L2209/603 , H04L2209/76
摘要： An object of this ciphertext decryption rights delegation system is to enable conversion of PKE-system ciphertext into IBE-system encrypted ciphertext, and, in a delegation system with users using only an IBE system, of preventing restoration of the master-secret key generated by a PKG device (public key generation device) even when there is collusion attack between the ciphertext converter and a decryption rights delegatee. A ciphertext decryption rights delegation system realizes delegation of ciphertext decryption rights between a device used by a decryption rights delegator and a device used by a decryption rights delegatee. From the master-secret key stored in the PKG device which generates secret keys, a secret key of the IBE system and auxiliary information are generated, and a re-encryption key is generated based on this auxiliary information. When sharing content, ciphertext encrypted by the decryption rights delegator device is converted by a ciphertext conversion device using the re-encryption key, and the converted ciphertext is decoded by the decryption rights delegatee device using the IBE-system secret key.
摘要翻译：该密文解密权限委托系统的一个目的是能够将PKE系统密文转换成IBE系统加密的密文，并且在仅使用IBE系统的用户的授权系统中，防止恢复由主机秘密密钥生成的主秘密密钥 PKG设备（公共密钥生成设备）即使在密文转换器和解密权限代理之间存在串通攻击的情况下也是如此。密文解密权限委托系统在解密权利委托人使用的设备与解密权限委托使用的设备之间实现密文解密权限的授权。从存储在生成秘密密钥的PKG设备中的主秘密密钥生成IBE系统的秘密密钥和辅助信息，并且基于该辅助信息生成重新加密密钥。当共享内容时，使用重新加密密钥通过密文转换装置转换由解密权限委托装置加密的密文，并且使用IBE系统密钥由解密权限委托装置解码转换的密文。

5. 发明授权

US08839451B1 Activation and security of software 有权
标题翻译：软件的激活和安全
公开(公告)号：US08839451B1
公开(公告)日：2014-09-16
申请号：US11835339
申请日：2007-08-07
申请人： Monica Sin-Ling Lam , Constantine P. Sapuntzakis , Dan Boneh , Ramesh U. V. Chandra
发明人： Monica Sin-Ling Lam , Constantine P. Sapuntzakis , Dan Boneh , Ramesh U. V. Chandra
IPC分类号： G06F7/04 , G06F12/14
CPC分类号： G06F21/10 , G06F2221/0704
摘要： Methods, systems, and apparatus, including computer program products, for retaining the function of product activation schemes and other persistent state changes based on hardware identifiers, even when running in a virtual machine monitor. It can tie such schemes to a single identifier, e.g., a USB serial number, instead of the multiple hardware identifiers.
摘要翻译：方法，系统和装置，包括计算机程序产品，用于基于硬件标识符保留产品激活方案和其他持久状态更改的功能，即使在虚拟机监视器中运行。它可以将这种方案与单个标识符（例如，USB序列号）相结合，而不是多个硬件标识符。

6. 发明申请

US20120322387A1 SYSTEM FOR ANALYZING MOBILE BROWSER ENERGY CONSUMPTION 有权
标题翻译：用于分析移动浏览器能源消耗的系统
公开(公告)号：US20120322387A1
公开(公告)日：2012-12-20
申请号：US13524136
申请日：2012-06-15
申请人： Angela Nicoara , Narendan Thiagarajan , Gaurav Aggarwal , Dan Boneh
发明人： Angela Nicoara , Narendan Thiagarajan , Gaurav Aggarwal , Dan Boneh
IPC分类号： H04B17/00
CPC分类号： H04M1/24 , H04M1/72561 , H04W52/0264 , Y02D70/00 , Y02D70/124 , Y02D70/142
摘要： A system for measuring power consumption by a mobile device corresponding to access of web pages is provided. The system includes: the mobile device, configured to access web pages via a wireless network; a power measurement device connected to a battery of the mobile device, configured to measure parameters related to power consumption; and a server, in communication with the mobile device and the power measurement device, configured to control the mobile device's access of web pages and control the power measurement device's measurement of parameters, to receive measurements from the power measurement device, and to process the received measurements so as to correlate the mobile device's access of a web page with an amount of power consumed corresponding to the mobile device's access of the web page.
摘要翻译：提供了一种用于测量与网页访问相对应的移动设备的功耗的系统。该系统包括：移动设备，被配置为经由无线网络访问网页; 连接到移动设备的电池的功率测量设备，被配置为测量与功耗相关的参数; 以及与所述移动设备和所述功率测量设备通信的服务器，被配置为控制所述移动设备对网页的访问并且控制所述功率测量设备的参数测量，以从所述功率测量设备接收测量值，并且处理所接收的测量，以便将移动设备对网页的访问与对应于移动设备访问网页的消耗量相关联。

7. 发明授权

US08320559B1 Identity-based-encryption system 有权
标题翻译：基于身份的加密系统
公开(公告)号：US08320559B1
公开(公告)日：2012-11-27
申请号：US12537231
申请日：2009-08-06
申请人： Dan Boneh , Xavier Boyen
发明人： Dan Boneh , Xavier Boyen
IPC分类号： H04K1/00 , H04L9/30
CPC分类号： H04L9/3073 , H04L9/0841 , H04L63/0428 , H04L63/06
摘要： Systems and methods for supporting symmetric-bilinear-map and asymmetric-bilinear-map identity-based-encryption (IBE) key exchange and encryption schemes are provided. IBE key exchange schemes use an IBE encapsulation engine to produce a secret key and an encapsulated version of the secret key. An IBE unencapsulation engine is used to unencapsulate the encapsulated key. IBE encryption schemes use an IBE encryption engine to produce ciphertext from plaintext. An IBE decryption engine is used to decrypt the ciphertext to reveal the plaintext. The IBE unencapsulation engine and decryption engines use bilinear maps. The IBE encapsulation and encryption engines perform group multiplication operations without using bilinear maps, improving efficiency. IBE private keys for use in decryption and unencapsulation operations may be generated using a distributed key arrangement in which each IBE private key is assembled from private key shares.
摘要翻译：提供了支持对称双线性映射和非对称双线性映射身份加密（IBE）密钥交换和加密方案的系统和方法。 IBE密钥交换方案使用IBE封装引擎来产生秘密密钥和秘密密钥的封装版本。使用IBE未封装引擎来封装封装的密钥。 IBE加密方案使用IBE加密引擎从明文生成密文。 IBE解密引擎用于解密密文以显示明文。 IBE未封装引擎和解密引擎使用双线性映射。 IBE封装和加密引擎在不使用双线性映射的情况下执行组乘法运算，从而提高效率。可以使用分布式密钥布置来生成用于解密和未封装操作的IBE私钥，其中每个IBE私钥由私人密钥共享组合。

8. 发明授权

US08315389B2 Geosecurity methods and devices using geotags derived from noisy location data from multiple sources 有权
标题翻译：使用从多个来源的嘈杂位置数据导出的地理标记的地质安全方法和设备
公开(公告)号：US08315389B2
公开(公告)日：2012-11-20
申请号：US12657677
申请日：2010-01-25
申请人： Di Qiu , Sherman Lo , David S. De Lorenzo , Dan Boneh , Per Enge
发明人： Di Qiu , Sherman Lo , David S. De Lorenzo , Dan Boneh , Per Enge
IPC分类号： H04K1/00
CPC分类号： G01S5/0252 , G08B21/0213 , G08B21/0269 , G08B21/0283 , H04L63/107 , H04W4/02 , H04W12/08
摘要： In a geo-security system, a device receives RF signals from multiple distinct classes of RF communication systems and extracts location-dependent signal parameters. A current geotag is computed from the parameters by fuzzy extractors involving quantization of the parameters and Reed-Solomon decoding to provide a reproducible unique geotag. The current geotag is compared with a stored geotag, and a geo-secured function of the device is executed based on the result of the comparison. The use of multiple signal sources of different types, combined with special fuzzy extractors provides a robust geotag that allows both lower false rejection rate and lower false acceptance rate.
摘要翻译：在地理安全系统中，设备从多个不同类别的RF通信系统接收RF信号，并提取位置相关的信号参数。目前的地理标签是通过模糊提取器从参数中计算出来的，这些模糊提取器涉及量化参数和里德 - 所罗门解码，以提供可重现的唯一地理标记。将当前的地理标签与存储的地理标签进行比较，并根据比较结果执行设备的地理安全功能。使用不同类型的多个信号源，结合特殊的模糊提取器提供了一个强大的地理标记，允许较低的错误拒收率和较低的错误接受率。

9. 发明授权

US08555081B2 Cryptographic multi-shadowing with integrity verification 有权
标题翻译：加密多重阴影与完整性验证
公开(公告)号：US08555081B2
公开(公告)日：2013-10-08
申请号：US12261194
申请日：2008-10-30
申请人： Xiaoxin Chen , Carl A. Waldspurger , Pratap Subrahmanyam , Tal Garfinkel , Dan Boneh
发明人： Xiaoxin Chen , Carl A. Waldspurger , Pratap Subrahmanyam , Tal Garfinkel , Dan Boneh
IPC分类号： G06F12/14
CPC分类号： G06F9/461 , G06F9/4486 , G06F9/45533 , G06F9/45558 , G06F9/4881 , G06F11/1451 , G06F11/1484 , G06F2009/45562 , G06F2009/45583 , G06F2201/815 , G06F2201/84
摘要： A virtual-machine-based system that may protect the privacy and integrity of application data, even in the event of a total operating system compromise. An application is presented with a normal view of its resources, but the operating system is presented with an encrypted view. This allows the operating system to carry out the complex task of managing an application's resources, without allowing it to read or modify them. Different views of “physical” memory are presented, depending on a context performing the access. An additional dimension of protection beyond the hierarchical protection domains implemented by traditional operating systems and processors is provided.
摘要翻译：一种基于虚拟机的系统，可以保护应用程序数据的隐私和完整性，即使在整个操作系统受损的情况下也是如此。应用程序呈现其资源的正常视图，但操作系统呈现加密视图。这允许操作系统执行管理应用程序资源的复杂任务，而不允许它读取或修改它们。呈现“物理”存储器的不同视图，这取决于执行访问的上下文。提供了超越由传统操作系统和处理器实现的分级保护域的附加维度。

10. 发明授权

US08130964B2 Systems and methods for identity-based encryption and related cryptographic techniques 有权
标题翻译：用于基于身份的加密和相关加密技术的系统和方法
公开(公告)号：US08130964B2
公开(公告)日：2012-03-06
申请号：US12589880
申请日：2009-10-28
申请人： Dan Boneh , Matthew Franklin
发明人： Dan Boneh , Matthew Franklin
IPC分类号： H04L9/30 , H04L9/00 , H04L9/08 , H04L9/28 , H04K1/00 , G06F17/00 , G06F21/24 , G09C1/00 , H04L12/22
CPC分类号： H04L9/0847 , H04L9/3073 , H04L2209/04
摘要： A method and system for encrypting a first piece of information M to be sent by a sender [100] to a receiver [110] allows both sender and receiver to compute a secret message key using identity-based information and a bilinear map. In a one embodiment, the sender [100] computes an identity-based encryption key from an identifier ID associated with the receiver [110]. The identifier ID may include various types of information such as the receiver's e-mail address, a receiver credential, a message identifier, or a date. The sender uses a bilinear map and the encryption key to compute a secret message key gIDr, which is then used to encrypt a message M, producing ciphertext V to be sent from the sender [100] to the receiver [110] together with an element rP. An identity-based decryption key dID is computed by a private key generator [120] based on the ID associated with the receiver and a secret master key s. After obtaining the private decryption key from the key generator [120], the receiver [110] uses it together with the element rP and the bilinear map to compute the secret message key gIDr, which is then used to decrypt V and recover the original message M. According to one embodiment, the bilinear map is based on a Weil pairing or a Tate pairing defined on a subgroup of an elliptic curve. Also described are several applications of the techniques, including key revocation, credential management, and return receipt notification.
摘要翻译：用于加密由发送器[100]发送给接收机[110]的第一条信息M的方法和系统允许发送方和接收方使用基于身份的信息和双线性映射来计算秘密消息密钥。在一个实施例中，发送器[100]从与接收机[110]相关联的标识符ID计算基于身份的加密密钥。标识符ID可以包括诸如接收者的电子邮件地址，接收者凭证，消息标识符或日期的各种类型的信息。发送方使用双线性映射和加密密钥来计算秘密消息密钥gIDr，然后将其用于加密消息M，产生要从发送方[100]发送到接收方[110]的密文V以及元素 rP。基于身份的解密密钥dID由私钥生成器[120]基于与接收者相关联的ID和秘密主密钥s计算。在从密钥生成器[120]获得私有解密密钥之后，接收机110将其与元素rP和双线性映射一起使用以计算秘密消息密钥gIDr，然后将密钥gIDr用于解密V并恢复原始消息 M.根据一个实施例，双线性映射基于在椭圆曲线的子组上定义的Weil配对或Tate配对。还描述了技术的若干应用，包括密钥撤销，凭证管理和回执接收通知。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式