专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明申请

US20140089202A1 CRM Security Core 审中-公开
标题翻译： CRM安全核心
公开(公告)号：US20140089202A1
公开(公告)日：2014-03-27
申请号：US13628828
申请日：2012-09-27
申请人： Michael K. Bond , Mads Landrok , Peter Landrock
发明人： Michael K. Bond , Mads Landrok , Peter Landrock
IPC分类号： H04L29/06 , G06Q40/02
CPC分类号： G06Q20/3829 , G06F21/31 , G06Q20/3223 , G06Q20/4014 , G06Q20/4016 , G06Q40/02 , G06Q2220/00 , H04L9/0822 , H04L9/14 , H04L9/3239 , H04L63/145 , H04L63/166 , H04L63/168 , H04L67/02 , H04W4/50 , H04W12/06 , H04W12/0608 , H04W12/10 , H04W12/12
摘要： A security core supports a networked banking app for a client application device communicating with a server, such as e.g. a smartphone. It provides a secure environment for the banking app to conduct registration, enrollment, and transaction workflows with corresponding back-end servers on the network. It includes defenses against static analysis, attempts at reverse engineering, and real-time transaction fraud. A principal defense employed is obfuscation of the protocols, APIs, algorithms, and program code. It actively detects, thwarts, misdirects, and reports reverse engineering attempts and malware activity it senses. A routing obfuscator is configured to operate at the outer layer. Previous core designs are retained as camouflage. An internal TLS library is used rather than the OS TLS layer. Cookies are managed internally in the core rather than in the webkit-browser layer.
摘要翻译：安全核心支持用于与服务器通信的客户端应用设备的联网银行应用，例如，一个智能手机它为银行应用程序提供一个安全的环境，以便与网络上相应的后端服务器进行注册，注册和交易工作流程。它包括防止静态分析，反向工程尝试和实时交易欺诈。使用的主要防御措施是对协议，API，算法和程序代码进行模糊处理。它会主动检测，阻止，误导，并报告反向工程尝试和它感觉到的恶意软件活动。路由混淆器被配置为在外层操作。以前的核心设计保留为伪装。使用内部TLS库而不是OS TLS层。 Cookie在内核中进行内部管理，而不是在webkit浏览器层中进行管理。

2. 发明授权

US08478990B2 Mobile transaction methods and devices with three-dimensional colorgram tokens 失效
标题翻译：移动交易方法和设备具有三维彩色图案令牌
公开(公告)号：US08478990B2
公开(公告)日：2013-07-02
申请号：US13151397
申请日：2011-06-02
申请人： Kerry D. Brown , Michael Keith Bond , Ronald P. Knapp , Peter Landrock
发明人： Kerry D. Brown , Michael Keith Bond , Ronald P. Knapp , Peter Landrock
IPC分类号： H04L29/06
CPC分类号： G06Q20/3274 , G06Q20/4014 , G06Q20/40975 , H04L9/0894 , H04L9/3226 , H04L9/3278 , H04L2209/56 , H04L2209/80 , H04W12/02 , H04W12/04 , H04W12/06
摘要： A transaction security process includes authentication and identification parts for pushing an encrypted colorgram for user authentication and persona descriptors for user identification from a transaction server to a first personal trusted device. A decryption of the colorgram is displayed on the first personal trusted device. An image is captured by a second personal trusted device. An encryption of the image captured from the second personal trusted device is uploaded to the transaction server. The persona descriptors are used to build a composite rendering for identification of the first user to the second user. The second user clicks “OK” if they recognize the composite drawing as a reasonable persona of the first user.
摘要翻译：交易安全过程包括用于将用于用户认证的加密彩色图片和用于用户标识的个人描述符从交易服务器推送到第一个人信任设备的认证和识别部件。彩色图案的解密显示在第一个人信任的设备上。图像由第二个个人信任的设备捕获。将从第二个人信任设备捕获的图像的加密上传到事务服务器。角色描述符用于构建用于向第二用户识别第一用户的复合呈现。第二个用户如果将复合图形识别为第一个用户的合理角色，则单击“确定”。

3. 发明申请

US20130226812A1 CLOUD PROXY SECURED MOBILE PAYMENTS 审中-公开
标题翻译：云保护移动支付
公开(公告)号：US20130226812A1
公开(公告)日：2013-08-29
申请号：US13404023
申请日：2012-02-24
申请人： Mads Landrok , Peter Landrock
发明人： Mads Landrok , Peter Landrock
IPC分类号： G06Q20/40
CPC分类号： G06Q20/32 , G06Q20/4016
摘要： A secure payment system provisions a payment transaction proxy with virtual EMV-type chipcards on secure backend servers. Users authorize the proxy in each transaction to make payments in the Cloud for them. The proxy carries out the job without exposing the cryptographic keys to risk. User, message, and/or device authentication in multifactor configurations are erected in realtime to validate each user's intent to permit the proxy to sign for a particular transaction on the user's behalf. Users are led through a series of steps by the proxy to validate their authenticity and intent, sometimes incrementally involving additional user devices and communications channels that were pre-registered. Authentication risk can be scored by the proxy, and high risk transactions that are identified are tasked by further incrementally linking in more user devices, communications channels, and user challenges to increase the number of security factors required to authenticate.
摘要翻译：安全支付系统在安全的后端服务器上配置了具有虚拟EMV型芯片卡的支付交易代理。用户授权每个交易中的代理在云中进行付款。代理执行该作业，而不会使加密密钥暴露于风险。多因素配置中的用户，消息和/或设备认证实时建立，以验证每个用户的意图，以允许代理人代表用户签署特定交易。用户通过代理进行一系列步骤，以验证其真实性和意图，有时会逐步涉及预先注册的其他用户设备和通信通道。验证风险可以由代理进行评分，并且识别的高风险事务通过进一步递增地链接更多的用户设备，通信信道和用户挑战来增加认证所需的安全因素的数量。

4. 发明授权

US07362869B2 Method of distributing a public key 有权
标题翻译：分发公钥的方法
公开(公告)号：US07362869B2
公开(公告)日：2008-04-22
申请号：US10497674
申请日：2002-12-10
申请人： Peter Landrock
发明人： Peter Landrock
IPC分类号： H04L9/00
CPC分类号： H04L9/0863 , G06Q20/341 , G06Q20/40975 , G07F7/1008 , H04L9/0825 , H04L9/0897 , H04L9/3236 , H04L63/0442 , H04L63/062 , H04L63/0838 , H04L63/0853 , H04L2209/80 , H04L2463/081 , H04W12/02 , H04W12/04 , H04W12/06
摘要： A method of distributing the public key of an asymmetric key pair with a private key and the public key from a mobile station to a key managing computer, the method include the steps of: communicating a password (OTP) from the key managing (203) computer to the mobile station (209) of a registered user (201) by a secure channel (202) to thereby provide a shared secret; at the mobile station and at the key managing computer, generating a first code (MAC1) and a second node (MACT1), respectively, based on the same predefined generation method, which codes (MAC1; MACT1) are generated from the password (OTP); by the mobile station (209), transmitting the public key and the first code (MAC1) to the key managing computer (203); at the key managing computer (203), receiving the public key and the first code (MAC1) from the mobile station (209); checking the authenticity of the registered user (201) based on comparing the first code (MAC1) and the second code (MACT1).
摘要翻译：一种将非对称密钥对的公开密钥和公开密钥从移动台分发到密钥管理计算机的方法，包括以下步骤：从密钥管理（203）传送密码（OTP）通过安全信道（202）向注册用户（201）的移动台（209）计算机，从而提供共享秘密; 在移动站和密钥管理计算机上，分别根据相同的预定义生成方法生成第一代码（MAC 1）和第二节点（MACT 1），所述第一代码（MAC 1; MACT 1）从密码（OTP）; 由所述移动台（209）向所述密钥管理计算机（203）发送所述公开密钥和所述第一代码（MAC 1）。在所述密钥管理计算机（203）处，从所述移动站（209）接收所述公共密钥和所述第一代码（MAC 1）; 基于比较第一代码（MAC 1）和第二代码（MACT 1）来检查注册用户（201）的真实性。

5. 发明申请

US20050010758A1 Data certification method and apparatus 有权
标题翻译：数据认证方法和装置
公开(公告)号：US20050010758A1
公开(公告)日：2005-01-13
申请号：US10486487
申请日：2002-08-12
申请人： Peter Landrock , Jonathan Tuliani
发明人： Peter Landrock , Jonathan Tuliani
IPC分类号： G06F1/00 , G06F21/64 , H04L29/06 , H04L9/00
CPC分类号： H04L63/18 , G06F21/313 , G06F21/645 , G06F2221/2115 , H04L63/0823 , H04L63/126
摘要： An apparatus and method for signing electronic data with a digital signature in which a central server comprises a signature server (110) and a authentication server (120). The signature server (110) securely stores the private cryptographic keys of a number of users (102). The user (102) contacts the central server using a workstation (101) through a secure tunnel which is setup for the purpose. The user (102) supplies a password or other token (190), based on information previously supplied to the user by the authentication server (120) through a separate authentication channel. The authentication server provides the signature server with a derived version of the same information through a permanent see tunnel between the servers, which is compared with the one supplied by the user (102). If they match, data received from the user (102) is signed with the user's private key.
摘要翻译：一种用数字签名签名电子数据的装置和方法，其中中央服务器包括签名服务器（110）和认证服务器（120）。签名服务器（110）安全地存储多个用户（102）的专用密钥。使用工作站（101）的用户（102）通过安全隧道与中央服务器联系，安全隧道是为此而设立的。用户（102）基于先前由认证服务器（120）通过单独的认证信道提供给用户的信息来提供密码或其他令牌（190）。身份验证服务器通过服务器之间的永久查看隧道向签名服务器提供相同信息的派生版本，并将其与用户提供的服务器进行比较（102）。如果它们匹配，则从用户（102）接收的数据用用户的私钥进行签名。

6. 发明授权

US08549308B2 Data certification method and system 有权
标题翻译：数据认证方法和系统
公开(公告)号：US08549308B2
公开(公告)日：2013-10-01
申请号：US13297321
申请日：2011-11-16
申请人： Peter Landrock , Jonathan Roshan Tuliani
发明人： Peter Landrock , Jonathan Roshan Tuliani
IPC分类号： H04L29/06
CPC分类号： H04L63/18 , G06F21/313 , G06F21/645 , G06F2221/2115 , H04L63/0823 , H04L63/126
摘要： A data certification system and method for signing electronic data with a digital signature in which a central server comprises a signature server and an authentication server. The signature server securely stores the private cryptographic keys of a number of users. The user contacts the central server using a workstation through the secure tunnel which is set up for the purpose. The user supplies a password or other token based on information previously supplied to the user by the authentication server through a separate authentication channel. The authentication server provides the signature server with a derived version of the same information through a permanent secure tunnel between the servers, which is compared with the one supplied by the user. If they match, data received from the user is signed with the user's private key.
摘要翻译：一种用于使用数字签名签署电子数据的数据认证系统和方法，其中中央服务器包括签名服务器和认证服务器。签名服务器安全地存储多个用户的私有加密密钥。用户通过安全隧道与工作站联系中央服务器，安全隧道是为此而设立的。用户根据先前通过认证服务器通过单独的认证信道提供给用户的信息来提供密码或其他令牌。认证服务器通过服务器之间的永久性安全隧道向签名服务器提供相同信息的派生版本，与用户提供的相比较。如果它们匹配，则从用户接收的数据用用户的私钥进行签名。

7. 发明授权

US08224293B1 Encoded colorgram for mobile device security 失效
标题翻译：用于移动设备安全性的编码彩色图
公开(公告)号：US08224293B1
公开(公告)日：2012-07-17
申请号：US12983186
申请日：2010-12-31
申请人： Ronald P. Knapp , Kerry D. Brown , Peter Landrock
发明人： Ronald P. Knapp , Kerry D. Brown , Peter Landrock
IPC分类号： H04W12/06
CPC分类号： G06F21/35 , G06F21/36 , G06F21/43 , G06K19/06046
摘要： A security system includes a software application running in a user's smartphone and a separately carried visual key that the user can image at will with the smartphone's camera. An effective visual key would typically comprise digital data encoded in a series of colored cells arranged in a colorgram. Such digital data is treated as a what-you-have security factor, and is concatenated with other security factors so users can authenticate themselves to websites, internet services, and even within the smartphone device itself or its applications. In one aspect, when users authenticate themselves to a server, the server returns a short-term supply of one-time-passwords or account numbers for use in secure access and financial transactions on other systems.
摘要翻译：安全系统包括在用户智能手机中运行的软件应用程序和用户可随意使用智能手机的相机进行成像的单独携带的视觉键。一个有效的视觉键通常包括以彩色图表排列的一系列彩色单元格中编码的数字数据。这样的数字数据被视为您所拥有的安全因素，并且与其他安全因素连接在一起，因此用户可以对网站，互联网服务甚至智能手机设备本身或其应用程序进行身份验证。在一个方面，当用户向服务器认证自己时，服务器返回短期供应一次性密码或帐号，以用于其他系统上的安全访问和金融交易。

8. 发明授权

US08077866B2 Protecting against security attack 有权
标题翻译：防止安全攻击
公开(公告)号：US08077866B2
公开(公告)日：2011-12-13
申请号：US12104196
申请日：2008-04-16
申请人： Peter Landrock , Jan Ulrik Kjaersgaard
发明人： Peter Landrock , Jan Ulrik Kjaersgaard
IPC分类号： H04L9/00 , H04L9/32 , G06F12/14
CPC分类号： H04L9/0841 , H04L9/002 , H04L9/3066 , H04L2209/08 , H04L2209/805
摘要： A communication device having a private key and configured to implement an elliptic curve security mechanism for successful operation of which it: (a) receives a first value from another device, (b) computes a second value as the scalar multiplication of the first value with its private key and (c) returns that second value for use by the other device; the mechanism being such that the first value defines a pair of coordinates representing a first point and the second value defines a pair of coordinates representing a second point and being such that the first value is valid only if it lies on an elliptic curve of predefined form; the device being configured to implement the mechanism by the steps of: receiving data as the first value; making a first evaluation as to whether the first value is a singular point with respect to the elliptic curve; computing the second value as the scalar multiplication of the first value with the private key; making a second evaluation as to whether the second value lies on the elliptic curve; and returning the second value only if the first evaluation is false and the second evaluation is true.
摘要翻译：一种具有专用密钥并被配置为实现其成功操作的椭圆曲线安全机制的通信设备，其中：（a）从另一设备接收第一值，（b）计算第二值作为第一值的标量乘法与其私钥和（c）返回第二个值供其他设备使用; 所述机构使得所述第一值定义表示第一点的一对坐标，并且所述第二值定义表示第二点的一对坐标，并且使得所述第一值仅在其位于预定义形式的椭圆曲线上时才有效 ; 所述设备被配置为通过以下步骤来实现所述机制：接收数据作为所述第一值; 对第一个值是否是相对于椭圆曲线的奇异点进行第一个评估; 计算第二值作为第一值与私钥的标量乘法; 对第二个值是否位于椭圆曲线上进行第二次评估; 并且仅当第一评估为假并且第二评估为真时返回第二值。

9. 发明申请

US20090214027A1 PROTECTING AGAINST SECURITY ATTACK 有权
标题翻译：防范安全防范
公开(公告)号：US20090214027A1
公开(公告)日：2009-08-27
申请号：US12104196
申请日：2008-04-16
申请人： Peter Landrock , Jan Ulrik Kjaersgaard
发明人： Peter Landrock , Jan Ulrik Kjaersgaard
IPC分类号： H04L9/30
CPC分类号： H04L9/0841 , H04L9/002 , H04L9/3066 , H04L2209/08 , H04L2209/805
摘要： A communication device having a private key and configured to implement an elliptic curve security mechanism for successful operation of which it: (a) receives a first value from another device, (b) computes a second value as the scalar multiplication of the first value with its private key and (c) returns that second value for use by the other device; the mechanism being such that the first value defines a pair of coordinates representing a first point and the second value defines a pair of coordinates representing a second point and being such that the first value is valid only if it lies on an elliptic curve of predefined form; the device being configured to implement the mechanism by the steps of: receiving data as the first value; making a first evaluation as to whether the first value is a singular point with respect to the elliptic curve; computing the second value as the scalar multiplication of the first value with the private key; making a second evaluation as to whether the second value lies on the elliptic curve; and returning the second value only if the first evaluation is false and the second evaluation is true.
摘要翻译：一种具有专用密钥并被配置为实现其成功操作的椭圆曲线安全机制的通信设备，其中：（a）从另一设备接收第一值，（b）计算第二值作为第一值的标量乘法与其私钥和（c）返回第二个值供其他设备使用; 所述机构使得所述第一值定义表示第一点的一对坐标，并且所述第二值定义表示第二点的一对坐标，并且使得所述第一值仅在其位于预定义形式的椭圆曲线上时才有效 ; 所述设备被配置为通过以下步骤来实现所述机制：接收数据作为所述第一值; 对第一个值是否是相对于椭圆曲线的奇异点进行第一个评估; 计算第二值作为第一值与私钥的标量乘法; 对第二个值是否位于椭圆曲线上进行第二次评估; 并且仅当第一评估为假并且第二评估为真时返回第二值。

10. 发明授权

US08358778B2 Computationally asymmetric cryptographic systems 有权
标题翻译：计算非对称加密系统
公开(公告)号：US08358778B2
公开(公告)日：2013-01-22
申请号：US11579843
申请日：2005-02-04
申请人： Peter Landrock , Jonathan Roshan Tuliani
发明人： Peter Landrock , Jonathan Roshan Tuliani
IPC分类号： G06F21/00
CPC分类号： H04L9/3247 , H04L9/3236 , H04L2209/20 , H04L2209/56
摘要： This invention is generally concerned with methods, apparatus and computer program code for a computationally asymmetric hash function, in particular for use with symmetric cryptographic algorithms. We describe a method of determining a computationally asymmetric hash function value, the method including: receiving input data to be hashed; computing an asymmetric value from said input data, said asymmetric value being computable by two methods, a first method employing at least one first parameter and a second method employing at least one second parameter, computation of said asymmetric value by said second method being faster than by said first method; and determining a computationally asymmetric hash function value using said asymmetric value. We also describe methods of providing a computationally asymmetric electronic signature from a symmetric cryptographic signature.
摘要翻译：本发明通常涉及用于计算非对称散列函数的方法，装置和计算机程序代码，特别是与对称加密算法一起使用。我们描述了一种确定计算非对称散列函数值的方法，该方法包括：接收要散列的输入数据; 从所述输入数据计算非对称值，所述非对称值可通过两种方法计算，第一种方法采用至少一种第一参数，第二种方法采用至少一种第二参数，所述第二种方法的所述非对称值的计算速度快于通过第一种方法; 以及使用所述非对称值来确定计算上非对称的散列函数值。我们还描述了从对称加密签名提供计算不对称电子签名的方法。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式