专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明授权

US08904525B1 Techniques for detecting malware on a mobile device 有权
标题翻译：在移动设备上检测恶意软件的技术
公开(公告)号：US08904525B1
公开(公告)日：2014-12-02
申请号：US13536355
申请日：2012-06-28
申请人： Roy Hodgman , Samir D. Saklikar , Kevin D. Bowers
发明人： Roy Hodgman , Samir D. Saklikar , Kevin D. Bowers
IPC分类号： G06F12/14 , G06F21/56
CPC分类号： G06F21/562 , G06F21/56 , G06F21/566 , G06F21/567 , G06F2201/815
摘要： A technique to detect malware on a mobile device which stores a virtual machine image involves establishing a connection from an electronic malware detection apparatus to the mobile device, the electronic malware detection apparatus being external to the mobile device. The technique further involves transferring mobile device data from the mobile device to the electronic malware detection apparatus through the connection to form a copy of the virtual machine image within the electronic malware detection apparatus. The technique further involves performing, by the electronic detection apparatus, a set of malware detection operations on the copy of the virtual machine image to determine whether the mobile device is infected with malware.
摘要翻译：一种用于检测存储虚拟机图像的移动设备上的恶意软件的技术涉及建立从电子恶意软件检测设备到移动设备的连接，电子恶意软件检测设备在移动设备外部。该技术还涉及通过连接将移动设备数据从移动设备传送到电子恶意软件检测设备，以在电子恶意软件检测设备内形成虚拟机映像的副本。该技术还包括通过电子检测设备对虚拟机映像的副本执行一组恶意软件检测操作，以确定移动设备是否被恶意软件感染。

2. 发明授权

US09659177B1 Authentication token with controlled release of authentication information based on client attestation 有权
公开(公告)号：US09659177B1
公开(公告)日：2017-05-23
申请号：US13625465
申请日：2012-09-24
申请人： Ari Juels , Kevin D. Bowers
发明人： Ari Juels , Kevin D. Bowers
IPC分类号： G06F3/00 , G06F21/57
CPC分类号： G06F21/57 , G06F21/34 , G06F21/445 , G06F21/575 , H04L63/0853 , H04L63/0869
摘要： An authentication token configured to generate authentication information comprises an attestation module. The attestation module of the authentication token is configured to receive an attestation generated by an attestation module of a client, to perform a check on the received attestation, and to release the authentication information to a designated entity if the check indicates that the attestation is valid. The designated entity may comprise the client itself or another entity that participates in an authentication process involving at least one of the authentication token and the client. The authentication token in performing the check on the attestation received from the client may determine if the received attestation conforms to a predetermined policy. The attestation may comprise a platform attestation generated by the client for a given instantiated software stack of the client.

3. 发明授权

US09015476B1 Cryptographic device operable in a challenge-response mode 有权
标题翻译：加密设备可在质询 - 响应模式下操作
公开(公告)号：US09015476B1
公开(公告)日：2015-04-21
申请号：US13708322
申请日：2012-12-07
申请人： Ari Juels , Guoying Luo , Kevin D. Bowers
发明人： Ari Juels , Guoying Luo , Kevin D. Bowers
IPC分类号： H04L9/34 , G06F21/34
CPC分类号： G06F21/34 , G06F2221/2103
摘要： Methods, apparatus and articles of manufacture for implementing cryptographic devices operable in a challenge-response mode are provided herein. A method includes storing a set of authentication information in a first cryptographic device associated with a user, receiving a challenge in the first cryptographic device in connection with a user authentication request responsive to a request from the user to access a protected resource, wherein the challenge comprises an index of at least one non-sequential portion of the authentication information stored in the first cryptographic device, and outputting a non-sequential portion of the authentication information from the set of authentication information stored in the first cryptographic device in response to the challenge for use in authenticating the user.
摘要翻译：本文提供了用于实现以质询 - 响应模式操作的加密装置的方法，装置和制造。一种方法包括将一组认证信息存储在与用户相关联的第一密码设备中，响应于来自用户访问受保护资源的请求，在与第一密码设备相关联的用户认证请求中接收质询，其中，挑战包括存储在第一密码装置中的认证信息的至少一个非顺序部分的索引，并且响应于该挑战从存储在第一密码装置中的认证信息集合输出认证信息的非顺序部分用于认证用户。

4. 发明授权

US08819769B1 Managing user access with mobile device posture 有权
标题翻译：使用移动设备状态管理用户访问
公开(公告)号：US08819769B1
公开(公告)日：2014-08-26
申请号：US13435606
申请日：2012-03-30
申请人： Marten van Dijk , Kevin D. Bowers , Samuel Curry , Sean P. Doyle , Eyal Kolman , Nikolaos Triandopoulos , Riaz Zolfonoon
发明人： Marten van Dijk , Kevin D. Bowers , Samuel Curry , Sean P. Doyle , Eyal Kolman , Nikolaos Triandopoulos , Riaz Zolfonoon
IPC分类号： H04L29/06
CPC分类号： H04L63/0876 , H04L67/303
摘要： An improved technique for managing access of a user of a computing machine to a remote network collects device posture information about the user's mobile device. The mobile device runs a soft token, and the collected posture information pertains to various aspects of the mobile device, such as the mobile device's hardware, software, environment, and/or users, for example. The server applies the collected device posture information along with token codes from the soft token in authenticating the user to the remote network.
摘要翻译：用于管理计算机的用户对远程网络的访问的改进技术收集关于用户的移动设备的设备姿态信息。移动设备运行软令牌，并且收集的姿态信息涉及例如移动设备的各个方面，例如移动设备的硬件，软件，环境和/或用户。服务器将所收集的设备姿态信息以及来自软令牌的令牌代码应用于将用户认证到远程网络。

5. 发明授权

US08683570B1 Scheduling soft token data transmission 有权
标题翻译：调度软令牌数据传输
公开(公告)号：US08683570B1
公开(公告)日：2014-03-25
申请号：US13435611
申请日：2012-03-30
申请人： Marten van Dijk , Kevin D. Bowers , Samuel Curry , Nikolaos Triandopoulos
发明人： Marten van Dijk , Kevin D. Bowers , Samuel Curry , Nikolaos Triandopoulos
IPC分类号： H04L29/06 , G06F21/35
CPC分类号： G06F21/35 , H04L63/0838 , H04L63/0853 , H04L63/1416
摘要： An improved technique provides scheduled data transfer between a mobile device and a server. The mobile device combines token codes generated by a soft token with sequences of auxiliary bits and displays the combinations to users as passcodes. Users may then copy the passcodes to their computers for authenticating to a server on a remote network. As the passcodes include both token codes and sequences of auxiliary bits, a communication channel is established whereby the auxiliary bits as well as the soft token codes are transmitted from the mobile device to the server.
摘要翻译：改进的技术提供了移动设备和服务器之间的调度数据传输。移动设备将由软令牌产生的令牌代码与辅助位序列组合，并将用户的组合显示为密码。然后，用户可以将密码复制到其计算机，以便对远程网络上的服务器进行身份验证。由于密码包括令牌码和辅助比特序列，所以建立通信信道，由此辅助比特以及软令牌码从移动设备发送到服务器。

6. 发明授权

US08875263B1 Controlling a soft token running within an electronic apparatus 有权
标题翻译：控制在电子设备内运行的软令牌
公开(公告)号：US08875263B1
公开(公告)日：2014-10-28
申请号：US13434272
申请日：2012-03-29
申请人： Marten van Dijk , Kevin D. Bowers , John G. Brainard , Samuel Curry , Sean P. Doyle , Michael J. O'Malley , Nikolaos Triandopoulos
发明人： Marten van Dijk , Kevin D. Bowers , John G. Brainard , Samuel Curry , Sean P. Doyle , Michael J. O'Malley , Nikolaos Triandopoulos
IPC分类号： G06F21/00 , H04L9/16 , H04L29/06 , G06F21/31 , H04L9/32 , G06F21/42
CPC分类号： G06F21/31 , G06F21/34 , G06F21/42 , H04L9/3228 , H04L63/08 , H04L63/083 , H04L63/0846 , H04L63/0853 , H04L63/18
摘要： A technique controls a soft token running within an electronic apparatus. The technique involves providing an initial series of authentication codes based on a first set of machine states. The initial series of authentication codes is provided from the electronic apparatus to a server through a forward channel to authenticate a user. The technique further involves receiving a command from the server through a reverse channel between the electronic apparatus and the server. The reverse channel provides communications in a direction opposite to that of the forward channel. The technique further involves changing the first set of machine states to a second set of machine states in response to the command, and providing a new series of authentication codes based on the second set of machine states. The new series of authentication codes is provided from the electronic apparatus to the server through the forward channel for user authentication.
摘要翻译：技术控制在电子设备内运行的软令牌。该技术涉及提供基于第一组机器状态的初始系列认证码。通过前向信道从电子设备向服务器提供初始系列认证码，以认证用户。该技术还涉及通过电子设备和服务器之间的反向信道从服务器接收命令。反向信道在与正向信道相反的方向上提供通信。该技术还涉及响应于该命令将第一组机器状态改变到第二组机器状态，并且基于第二组机器状态提供新的一系列认证代码。新的认证码系列通过前向信道从电子设备提供给服务器，用于用户认证。

7. 发明授权

US08601552B1 Personal identification pairs 有权
标题翻译：个人识别对
公开(公告)号：US08601552B1
公开(公告)日：2013-12-03
申请号：US12748690
申请日：2010-03-29
申请人： Kevin D. Bowers , Ari Juels
发明人： Kevin D. Bowers , Ari Juels
IPC分类号： G06F21/00
CPC分类号： G06F21/36
摘要： A method by which a computer system authenticates a user is provided. The method includes (a) displaying a plurality of unique elements to a user on a display device, (b) receiving a set of points corresponding to a sweeping motion performed by the user with respect to the display device, (c) determining a pair of unique elements of the plurality of unique elements defined by endpoints of the sweeping motion, and (d) authenticating the user only if the pair of unique elements is associated for authentication purposes with the user. An apparatus and computer program product for performing the method are also provided.
摘要翻译：提供了计算机系统认证用户的方法。该方法包括：（a）在显示设备上向用户显示多个唯一元素，（b）接收与用户相对于显示设备执行的扫描运动相对应的一组点，（c）确定一对由扫描运动的端点定义的多个唯一元素的唯一元素，以及（d）只有当该对唯一元素与用户的认证目的相关联时才对用户进行认证。还提供了一种用于执行该方法的装置和计算机程序产品。

8. 发明授权

US08752156B1 Detecting soft token copies 有权
标题翻译：检测软令牌副本
公开(公告)号：US08752156B1
公开(公告)日：2014-06-10
申请号：US13435848
申请日：2012-03-30
申请人： Marten van Dijk , Kevin D. Bowers , Samuel Curry , Sean P. Doyle , Nikolaos Triandopoulos , Riaz Zolfonoon
发明人： Marten van Dijk , Kevin D. Bowers , Samuel Curry , Sean P. Doyle , Nikolaos Triandopoulos , Riaz Zolfonoon
IPC分类号： H04L29/06
CPC分类号： H04W12/06 , H04L9/0869 , H04L9/3228 , H04W12/12
摘要： A technique for detecting unauthorized copies of a soft token that runs on a mobile device includes generating a set of random bits on the mobile device and providing samples of the set of random bits, as well as token codes from the soft token, for delivery to a server during authentication requests. The server acquires the set of random bits of the mobile device, or learns the set of random bits over the course of multiple login attempts. Thereafter, the server predicts values of the samples of the set of random bits and tests actual samples arriving in connection with subsequent authentication requests. Mismatches between predicted samples and received samples indicate discrepancies between the random bits of the device providing the samples and the random bits of the mobile device, and thus indicate unauthorized soft token copies.
摘要翻译：用于检测在移动设备上运行的软令牌的未授权复制的技术包括在移动设备上生成一组随机比特，并提供该组随机比特的样本以及来自该软令牌的令牌代码，用于递送到认证请求期间的服务器。服务器获取移动设备的一组随机比特，或者在多次登录尝试过程中学习一组随机比特。此后，服务器预测该组随机比特的样本的值并测试结合后续认证请求到达的实际样本。预测样本和接收到的样本之间的不匹配指示提供样本的设备的随机比特与移动设备的随机比特之间的差异，并且因此指示未授权的软令牌副本。

9. 发明授权

US08683563B1 Soft token posture assessment 有权
标题翻译：软令牌姿势评估
公开(公告)号：US08683563B1
公开(公告)日：2014-03-25
申请号：US13435616
申请日：2012-03-30
申请人： Marten van Dijk , Kevin D. Bowers , Samuel Curry , Sean P. Doyle , William M. Duane , Ari Juels , Michael J. O'Malley , Nikolaos Triandopoulos , Riaz Zolfonoon
发明人： Marten van Dijk , Kevin D. Bowers , Samuel Curry , Sean P. Doyle , William M. Duane , Ari Juels , Michael J. O'Malley , Nikolaos Triandopoulos , Riaz Zolfonoon
IPC分类号： G06F7/04
CPC分类号： H04L9/00 , G06F21/43 , G06F21/554 , G06F21/56 , H04L63/1433 , H04W12/06 , H04W12/12
摘要： An improved technique for assessing the security status of a device on which a soft token is run collects device posture information from the device running the soft token and initiates transmission of the device posture information to a server to be used in assessing whether the device has been subjected to malicious activity. The device posture information may relate to the software status, hardware status, and/or environmental context of the device. In some examples, the device posture information is transmitted to the server directly. In other examples, the device posture information is transmitted to the server via auxiliary bits embedded in passcodes displayed to the user, which the user may read and transfer to the server as part of authentication requests. The server may apply the device posture information in a number of areas, including, for example, authentication management, risk assessment, and/or security analytics.
摘要翻译：用于评估其上运行软令牌的设备的安全状态的改进技术从运行软令牌的设备收集设备姿态信息，并且发起设备姿态信息传输到服务器以用于评估设备是否已经被遭受恶意活动。设备姿态信息可以涉及设备的软件状态，硬件状态和/或环境上下文。在一些示例中，设备姿态信息被直接发送到服务器。在其他示例中，设备姿态信息通过嵌入在显示给用户的密码中的辅助位发送到服务器，用户可以作为认证请求的一部分读取和传送到服务器。服务器可以在多个区域中应用设备姿态信息，包括例如认证管理，风险评估和/或安全分析。

10. 发明授权

US08618913B1 Radio frequency identification enabled mobile device 有权
标题翻译：射频识别启用移动设备
公开(公告)号：US08618913B1
公开(公告)日：2013-12-31
申请号：US12907625
申请日：2010-10-19
申请人： Daniel V. Bailey , John Brainard , Ari Juels , Kevin D. Bowers
发明人： Daniel V. Bailey , John Brainard , Ari Juels , Kevin D. Bowers
IPC分类号： H04Q5/22
CPC分类号： H04L67/12 , G06F3/017 , H04M1/7253 , H04M1/72569 , H04Q2213/13095 , H04W4/02 , H04W4/80 , H04W12/06 , H04W12/08
摘要： An RFID enabled mobile device is configured to provide a secure release of RFID information. The RFID enabled mobile device, such as an RFID enabled cellular telephone, includes a set of sensors, such as a camera, one or more accelerometers, a wireless transceiver configured to send and receive data with an Internet device, and a global positioning system (GPS) receiver. The RFID enabled mobile device utilizes sensor attributes or information from one or more sensor of the set of sensors and, based upon the sensor attributes, controls the release of RFID information and/or other authentication data to an RFID interrogation system. In essence, the RFID enabled mobile device leverages from the conventional sensors typically incorporated as part of the mobile device and uses contextual data from its sensors and communication partners to make security decisions regarding the release of RFID information.
摘要翻译： RFID启用的移动设备被配置为提供RFID信息的安全释放。支持RFID的移动设备，例如支持RFID的蜂窝电话，包括一组传感器，例如相机，一个或多个加速度计，被配置为使用因特网设备发送和接收数据的无线收发器以及全球定位系统（ GPS）接收机。 RFID启用的移动设备利用来自传感器组的一个或多个传感器的传感器属性或信息，并且基于传感器属性，控制RFID信息和/或其他认证数据到RFID询问系统的释放。实质上，支持RFID的移动设备利用通常作为移动设备的一部分并入的常规传感器，并使用来自其传感器和通信伙伴的上下文数据来做出关于RFID信息的释放的安全决定。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式