专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明授权

US08793497B2 Puzzle-based authentication between a token and verifiers 有权
标题翻译：令牌和验证者之间的基于拼图的身份验证
公开(公告)号：US08793497B2
公开(公告)日：2014-07-29
申请号：US12118593
申请日：2008-05-09
申请人： Gregory Gordon Rose , Alexander Gantman , Miriam Wiggers De Vries , Michael Paddon , Philip Michael Hawkes
发明人： Gregory Gordon Rose , Alexander Gantman , Miriam Wiggers De Vries , Michael Paddon , Philip Michael Hawkes
IPC分类号： G06F21/00
CPC分类号： H04L63/0435 , H04L63/06 , H04L63/0853
摘要： A puzzle-based protocol is provided that allows a token and verifier to agree on a secure symmetric key for authentication between the token and verifier. A token stores a secret key and one or more puzzle-generating algorithms. The verifier independently obtains a plurality of puzzles associated with the token, pseudorandomly selects at least one of the puzzles, and solves it to obtain a puzzle secret and a puzzle identifier. The verifier generates a verifier key based on the puzzle secret. The verifier sends the puzzle identifier and an encoded version of the verifier key to the token. The token regenerates the puzzle secret using its puzzle-generating algorithms and the puzzle identifier. The token sends an encoded response to the verifier indicating that it knows the verifier key. The token and verifier may use the verifier key as a symmetric key for subsequent authentications.
摘要翻译：提供了一个基于拼图的协议，允许令牌和验证者在安全对称密钥之间达成令牌和验证者之间的认证。令牌存储密钥和一个或多个拼图生成算法。验证者独立地获得与令牌相关联的多个谜题，伪随机地选择至少一个谜题，并解决它以获得拼图秘密和谜题标识符。验证者基于拼图秘密生成验证码。验证者将拼图标识符和验证者密钥的编码版本发送到令牌。令牌使用其拼图生成算法和拼图标识符重新生成拼图秘密。令牌向验证者发送编码的响应，指示它知道验证者密钥。令牌和验证者可以使用验证者密钥作为后续认证的对称密钥。

2. 发明授权

US08724803B2 Method and apparatus for providing authenticated challenges for broadcast-multicast communications in a communication system 有权
标题翻译：在通信系统中为广播多播通信提供认证挑战的方法和装置
公开(公告)号：US08724803B2
公开(公告)日：2014-05-13
申请号：US10932514
申请日：2004-09-01
申请人： James Semple , Gregory Gordon Rose
发明人： James Semple , Gregory Gordon Rose
IPC分类号： H04L9/00 , H04L9/08 , H04L29/06 , H04L9/32
CPC分类号： H04L63/067 , H04L9/0822 , H04L9/3242 , H04L9/3247 , H04L63/0823 , H04L63/123 , H04L63/126 , H04L2209/60 , H04L2209/80 , H04W4/06 , H04W12/04 , H04W12/06 , H04W12/10
摘要： A method and apparatus for secure generation of a short-term key SK for viewing information content in a Multicast-broadcast-multimedia system are described. A short-term key is generated by a memory module residing in user equipment (UE) only when the source of the information used to generate the short-term key can be validated. A short-term key can be generated by a Broadcast Access Key (BAK) or a derivative of BAK and a changing value with a Message Authentication Code (MAC) appended to the changing value. A short-term key (SK) can also be generated by using a private key and a short-term key (SK) manager with a corresponding public key distributed to the memory module residing in the user equipment (UE), using a digital signature.
摘要翻译：描述用于安全地生成用于观看组播广播多媒体系统中的信息内容的短期密钥SK的方法和装置。只有当用于生成短期密钥的信息的来源可以被验证时，由位于用户设备（UE）中的存储器模块产生短期密钥。可以通过广播接入密钥（BAK）或BAK的派生产生短期密钥，并且将附加消息认证码（MAC）的变化值附加到变化值。也可以通过使用私钥和短期密钥（SK）管理器，使用分配给驻留在用户设备（UE）中的存储器模块的相应公钥来生成短期密钥（SK），使用数字签名。

3. 发明授权

US08675017B2 Real world gaming framework 有权
标题翻译：现实世界游戏框架
公开(公告)号：US08675017B2
公开(公告)日：2014-03-18
申请号：US11768888
申请日：2007-06-26
申请人： Gregory Gordon Rose , Miriam Wiggers De Vries , Michael Paddon , Philip Michael Hawkes
发明人： Gregory Gordon Rose , Miriam Wiggers De Vries , Michael Paddon , Philip Michael Hawkes
IPC分类号： G09G5/00
CPC分类号： A63F13/65 , A63F13/00 , A63F13/12 , A63F13/213 , A63F13/216 , A63F13/92 , A63F2300/1093 , A63F2300/406 , A63F2300/5573 , A63F2300/69 , A63F2300/807
摘要： A virtual environment and real world environment are combined into a framework that facilitates large-scale social interaction in multi-player fantasy games played in both the real world and/or a virtual world. Such combination of real and virtual world features may blend geo-caching, orienteering, and other virtual gaming features to enable players to interact across the real and virtual environments. A real world player is also mapped into the virtual environment, thereby inserting the player's movements and actions into the virtual environment. Additionally, this feature enables interaction between players located in a real environment with characters found in a virtual environment. A player may use a mobile device that is configured to recognize the geo-location and orientation of the player and display a corresponding view of the virtual environment gaming landscape for the player.
摘要翻译：虚拟环境和现实世界环境被组合成一个框架，可以在现实世界和/或虚拟世界中玩的多玩家幻想游戏中促进大规模社交互动。真实世界和虚拟世界特征的这种组合可以融合地理缓存，定向运动和其他虚拟游戏功能，使玩家能够在真实和虚拟环境中进行交互。现实世界的玩家也被映射到虚拟环境中，从而将玩家的动作和动作插入到虚拟环境中。此外，此功能可实现位于真实环境中的玩家与虚拟环境中发现的人物之间的交互。播放器可以使用被配置为识别播放器的地理位置和方向的移动设备，并显示玩家的虚拟环境游戏景观的相应视图。

4. 发明授权

US08595501B2 Network helper for authentication between a token and verifiers 有权
标题翻译：网络助手用于令牌和验证者之间的身份验证
公开(公告)号：US08595501B2
公开(公告)日：2013-11-26
申请号：US12118580
申请日：2008-05-09
申请人： Gregory Gordon Rose , Alexander Gantman , Miriam Wiggers De Vries , Michael Paddon , Philip Michael Hawkes
发明人： Gregory Gordon Rose , Alexander Gantman , Miriam Wiggers De Vries , Michael Paddon , Philip Michael Hawkes
IPC分类号： H04L29/06
CPC分类号： H04L63/0435 , H04L63/06 , H04L63/0853
摘要： A network helper is provided that assists verifiers in executing a puzzle-based protocol for authentication of a token. A token stores a secret key and one or more puzzle-generating algorithms. The helper stores a plurality of puzzles associated with a particular token. When requested to do so by a verifier, the helper provides a plurality of pseudorandomly selected puzzles for the token to a verifier. The puzzles are encoded with information that is used between the verifier and token to establish a secured symmetric key. The verifier selects one or a few of the encoded puzzles and breaks them by a brute force attack. Because the helper does not know which puzzles have been selected, it has to break all puzzles to attempt to figure out the symmetric key. However, if a large number of puzzles are utilized, say millions, then breaking all of them becomes a computationally prohibitive task.
摘要翻译：提供了一个网络助手，帮助验证者执行一个基于拼图的协议，用于令牌的身份验证。令牌存储密钥和一个或多个拼图生成算法。辅助者存储与特定令牌相关联的多个谜题。当验证者要求这样做时，帮助者为验证者提供多个伪随机选择的令牌的拼图。使用在验证者和令牌之间使用的信息来编码谜题以建立安全的对称密钥。验证者选择一个或几个编码的谜题，并通过暴力攻击破坏它们。因为帮手不知道哪些谜题被选中，所以它必须打破所有的谜题，试图找出对称的关键。然而，如果大量的谜题被利用，说数百万，那么打破所有这些都成为一个计算上令人望而却步的任务。

5. 发明授权

US08407760B2 Apparatus and method for transitioning access rights for role-based access control compatibility 有权
标题翻译：用于转换基于角色的访问控制兼容性的访问权限的设备和方法
公开(公告)号：US08407760B2
公开(公告)日：2013-03-26
申请号：US12253754
申请日：2008-10-17
申请人： Gregory Gordon Rose , Alexander Gantman , Lu Xiao
发明人： Gregory Gordon Rose , Alexander Gantman , Lu Xiao
IPC分类号： G06F17/00 , G06F7/04 , G06F9/00 , G06F21/00
CPC分类号： H04L63/102 , G06F21/6218
摘要： Disclosed is a method for transitioning access rights, in a remote station with role-based access control, for an unknown role having access rights defined by a central access control management module. In the method, a role capability table is maintained in the remote station specifying centrally-defined access rights of roles that are interpretable in the remote station. An access request associated with an unknown role that is not interpretable in the remote station is received. The access request includes a role transition list that relates the unknown role to other centrally-defined roles. At least one of the other centrally-defined roles is interpretable in the remote station. A role is selected, from the role transition list, that is interpretable in the remote station for interpreting the unknown role of the access request. Access is granted based on the access request associated with the unknown role using the access rights of the interpretable role selected from the role transition table.
摘要翻译：公开了一种用于在具有基于角色的访问控制的远程站中转换访问权限的方法，用于具有由中央访问控制管理模块定义的访问权限的未知角色。在该方法中，在远程站中维护角色能力表，指定在远程站中可解释的角色的集中定义的访问权限。接收到与远程站中不可解释的未知角色相关联的访问请求。访问请求包括将未知角色与其他中心定义角色相关联的角色转换列表。其他中心定义角色中的至少一个可在远程站中解释。从角色转换列表中选择一个角色，该角色可在远程站中解释，用于解释访问请求的未知角色。基于与角色转换表中选择的可解释角色的访问权限，基于与未知角色关联的访问请求授予访问权限。

6. 发明申请

US20120042374A1 EFFICIENT CLASSIFICATION OF NETWORK PACKETS 有权
标题翻译：网络分组的高效分类
公开(公告)号：US20120042374A1
公开(公告)日：2012-02-16
申请号：US13245680
申请日：2011-09-26
申请人： Michael PADDON , Gregory Gordon Rose , Philip Michael Hawkes
发明人： Michael PADDON , Gregory Gordon Rose , Philip Michael Hawkes
IPC分类号： H04L12/56 , G06F17/00
CPC分类号： H04L63/0227 , H04L63/0263 , H04L63/102
摘要： Embodiments describe a system and/or method for efficient classification of network packets. According to an aspect a method includes describing a packet as a feature vector and mapping the feature vector to a feature space. The method can further include defining a feature prism, classifying the packet relative to the feature prism, and determining if the feature vector matches the feature prism. If the feature vector matches the feature prism the packet is passed to a data recipient, if not, the packet is blocked. Another embodiment is an apparatus that includes an identification component that defines at least one feature of a packet and a classification component that classifies the packet based at least in part upon the at least one defined feature.
摘要翻译：实施例描述了用于网络分组的有效分类的系统和/或方法。根据一方面，一种方法包括将分组描述为特征向量并将特征向量映射到特征空间。该方法还可以包括定义特征棱镜，对分组相对于特征棱镜进行分类，以及确定特征向量是否与特征棱镜匹配。如果特征向量与特征棱镜匹配，则将数据包传递给数据收件人，否则，数据包被阻止。另一个实施例是一种装置，其包括定义分组的至少一个特征的识别组件和至少部分地基于至少一个定义的特征对分组进行分类的分类组件。

7. 发明授权

US08019802B2 Cryptographically secure pseudo-random number generator 有权
标题翻译：密码安全的伪随机数发生器
公开(公告)号：US08019802B2
公开(公告)日：2011-09-13
申请号：US11509215
申请日：2006-08-23
申请人： Gregory Gordon Rose , Alexander Gantman , Lu Xiao
发明人： Gregory Gordon Rose , Alexander Gantman , Lu Xiao
IPC分类号： G06F7/58
CPC分类号： G06F7/588 , G06F7/58 , H04L9/0662 , H04L2209/043 , H04L2209/24
摘要： A cryptographically secure pseudo-random number generator is configured to obtain one or more unpredictable sources of entropy that provide a seed. A current internal state of the number generator is modified as a function of the current internal state and the seed to accumulate entropy. The modified internal state may be obtained by using non-linear feedback shift register operations on the internal state and the seed. A pseudo-random number is then generated based on the modified internal state of the number generator. The one or more unpredictable sources of entropy may be combined into the seed. The internal state of the number generator may be continually modified with additional seeds obtained from the one or more unpredictable sources and the current internal state. Additionally, the internal state of the number generator may be modified on demand with a new seed received from a calling application.
摘要翻译：密码安全的伪随机数发生器被配置为获得提供种子的一个或多个不可预知的熵源。数字发生器的当前内部状态被修改为当前内部状态和种子以累积熵的函数。可以通过对内部状态和种子使用非线性反馈移位寄存器操作来获得修改的内部状态。然后基于数字发生器的修改的内部状态生成伪随机数。一个或多个不可预测的熵源可以组合到种子中。可以使用从一个或多个不可预测的源获得的附加种子和当前的内部状态来连续修改号码发生器的内部状态。此外，可以根据需要修改号码发生器的内部状态，并从呼叫应用程序接收到新的种子。

8. 发明授权

US07966000B2 Secure bootstrapping for wireless communications 有权
标题翻译：无线通信的安全自举
公开(公告)号：US07966000B2
公开(公告)日：2011-06-21
申请号：US12728746
申请日：2010-03-22
申请人： James F. Semple , Gregory Gordon Rose , John W. Nasielski
发明人： James F. Semple , Gregory Gordon Rose , John W. Nasielski
IPC分类号： H04M1/66
CPC分类号： H04L63/0869 , H04L63/0853 , H04W12/06
摘要： A mutual authentication method is provided for securely agreeing application-security keys with mobile terminals supporting legacy Subscriber Identity Modules (e.g., GSM SIM and CDMA2000 R-UIM, which do not support 3G AKA mechanisms). A challenge-response key exchange is implemented between a bootstrapping server function (BSF) and mobile terminal (MT). The BSF generates an authentication challenge and sends it to the MT under a server-authenticated public key mechanism. The MT receives the challenge and determines whether it originates from the BSF based on a bootstrapping server certificate. The MT formulates a response to the authentication challenge based on keys derived from the authentication challenge and a pre-shared secret key. The BSF receives the authentication response and verifies whether it originates from the MT. Once verified, the BSF and MT independently calculate an application security key that the BSF sends to a requesting network application function to establish secure communications with the MT.
摘要翻译：提供了相互认证方法，用于与支持传统用户识别模块（例如，不支持3G AKA机制的GSM SIM和CDMA2000 R-UIM）的移动终端安全地同意应用安全密钥。在引导服务器功能（BSF）和移动终端（MT）之间实现质询 - 响应密钥交换。 BSF生成认证挑战，并通过服务器认证的公钥机制将其发送给MT。 MT接收到挑战，并根据引导服务器证书确定它是从BSF发起的。 MT基于从认证挑战导出的密钥和预共享密钥来形成对认证挑战的响应。 BSF接收认证响应，并验证其是否来自MT。一旦验证，BSF和MT独立地计算BSF发送到请求网络应用功能的应用安全密钥，以建立与MT的安全通信。

9. 发明申请

US20110107107A1 Multisigning - A Protocol For Robust Multiple Party Digital Signatures 有权
标题翻译：多重签名 - 一个强大的多方数字签名协议
公开(公告)号：US20110107107A1
公开(公告)日：2011-05-05
申请号：US12964213
申请日：2010-12-09
申请人： Alexander Gantman , Aram Perez , Gregory Gordon Rose , Laurence Lundblade , Matthew Hohlfeld , Michael Paddon , Oliver Michaelis , Ricardo Jorge Lopez
发明人： Alexander Gantman , Aram Perez , Gregory Gordon Rose , Laurence Lundblade , Matthew Hohlfeld , Michael Paddon , Oliver Michaelis , Ricardo Jorge Lopez
IPC分类号： H04L9/32
CPC分类号： H04L63/126 , H04L9/3255 , H04L9/3265 , H04L9/3297 , H04L63/0478 , H04L63/0823 , H04L2209/80
摘要： Embodiments describe a system and/or method for multiple party digital signatures. According to a first aspect a method comprises establishing a first validity range for a first key, establishing a first validity range for at least a second key, and determining if the validity range of the first key overlaps the first validity range of the at least a second key. A certificate is signed with the first validity range of the first key and the first validity range of the at least a second key if the validity ranges overlap. According to another embodiment, signage of the certificate is refused if the first validity range of the first key does not overlap with the first validity range of the at least a second key.
摘要翻译：实施例描述了用于多方数字签名的系统和/或方法。根据第一方面，一种方法包括建立第一密钥的第一有效范围，为至少第二密钥建立第一有效范围，以及确定第一密钥的有效范围是否与至少一个密钥的第一有效范围重叠第二个关键如果有效范围重叠，则证书具有第一密钥的第一有效范围和至少第二密钥的第一有效范围。根据另一实施例，如果第一密钥的第一有效范围不与至少第二密钥的第一有效范围重叠，则拒绝证书的标识。

10. 发明申请

US20100246824A1 APPARATUS AND METHOD FOR VIRTUAL PAIRING USING AN EXISTING WIRELESS CONNECTION KEY 有权
标题翻译：使用现有无线连接钥匙进行虚拟配对的装置和方法
公开(公告)号：US20100246824A1
公开(公告)日：2010-09-30
申请号：US12415911
申请日：2009-03-31
申请人： Lu Xiao , Gregory Gordon Rose , David Jonathan Julian
发明人： Lu Xiao , Gregory Gordon Rose , David Jonathan Julian
IPC分类号： H04L9/00 , H04B7/00 , H04L9/06
CPC分类号： H04L63/061 , H04L9/0827 , H04L9/0841 , H04L9/0861 , H04L63/162 , H04L2209/80 , H04L2463/061 , H04W12/04
摘要： Disclosed is a method for virtual pairing of a first peer device with a second peer device. In the method, a nonce is generated at the first peer device for use in virtually pairing the first and second peer devices to establish a first-type wireless connection. The nonce is forwarded from the first peer device to the second peer device over an already established second-type wireless connection between the first and second peer devices. At least one new key is generated from the nonce and a shared key for the already established second-type wireless connection. The first peer device is virtually paired with the second peer device using the at least one new key to establish the first-type wireless connection between the first and second peer devices.
摘要翻译：公开了一种用于将第一对等设备与第二对等设备进行虚拟配对的方法。在该方法中，在第一对等设备处生成随机数，用于虚拟地配对第一和第二对等设备以建立第一类型的无线连接。通过已经建立的第一和第二对等设备之间的第二类无线连接，该随机数从第一对等设备转发到第二对等设备。至少一个新密钥是从该随机数生成的，另一个是已经建立的第二类无线连接的共享密钥。第一对等设备使用至少一个新密钥与第二对等设备实际配对，以在第一和第二对等设备之间建立第一类型的无线连接。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式