专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明申请

US20090006594A1 Method and system for remote manageability of networked computers 审中-公开
标题翻译：联网计算机的远程管理方法和系统
公开(公告)号：US20090006594A1
公开(公告)日：2009-01-01
申请号：US11819505
申请日：2007-06-27
申请人： Avigdor Eldar , Adi Shaliv , Asaf Haskel , Carey Smith , Johan Van De Groenendaal
发明人： Avigdor Eldar , Adi Shaliv , Asaf Haskel , Carey Smith , Johan Van De Groenendaal
IPC分类号： G06F15/173
CPC分类号： H04L12/66
摘要： A method and system may allow a management server in a first network to communicate via a mediator server with a management module of a computing system in a second network. The mediator server may establish a communication connection to the management module and the data transferred from the management server to the management module may be associated with the communication connection.
摘要翻译：方法和系统可允许第一网络中的管理服务器经由中介服务器与第二网络中的计算系统的管理模块进行通信。中介服务器可以建立到管理模块的通信连接，并且从管理服务器传送到管理模块的数据可以与通信连接相关联。

2. 发明申请

US20140096179A1 SYSTEM AND METHOD FOR PERFORMING SECURE COMMUNICATIONS 有权
标题翻译：用于执行安全通信的系统和方法
公开(公告)号：US20140096179A1
公开(公告)日：2014-04-03
申请号：US13631080
申请日：2012-09-28
申请人： OMER BEN-SHALOM , Alex Nayshtut , Edward V. Jimison, JR. , Avigdor Eldar , Adi Shaliv
发明人： OMER BEN-SHALOM , Alex Nayshtut , Edward V. Jimison, JR. , Avigdor Eldar , Adi Shaliv
IPC分类号： G06F21/00 , G06F15/16
CPC分类号： H04L63/061 , G06F21/445 , G06F21/6218 , H04L63/0869 , H04W12/06
摘要： A system establishes secure communications between first and second electronic devices. The first device stores secured content to be accessed by second device based on identification information of the first device. The identification information of the first device may be manually input into the second device, and the second device may perform an initial pairing operation with the first device based on this manually entered information. The identification information stored from initial pairing may allow secure automatic pairing.
摘要翻译：系统建立第一和第二电子设备之间的安全通信。第一设备基于第一设备的识别信息存储要被第二设备访问的安全内容。可以将第一设备的识别信息手动输入到第二设备中，并且第二设备可以基于该手动输入的信息与第一设备进行初始配对操作。从初始配对中存储的识别信息可以允许安全的自动配对。

3. 发明申请

US20150079933A1 SECURELY MANAGED LOCATION-AND-TRACKING SERVICE ACCESS 有权
标题翻译：安全管理的位置和跟踪服务访问
公开(公告)号：US20150079933A1
公开(公告)日：2015-03-19
申请号：US14119493
申请日：2013-09-19
申请人： Ned M. Smith , Adi Shaliv
发明人： Ned M. Smith , Adi Shaliv
IPC分类号： H04W4/02 , H04W12/06
CPC分类号： H04W4/02 , G01C21/206 , G01S5/02 , H04L63/0869 , H04L63/0876 , H04W4/029 , H04W4/043 , H04W12/06 , H04W84/12
摘要： Systems and techniques for securely managed location-and-tracking service (LTS) access are described herein. A trusted execution environment (TEE) may establish a connection to an LTS. The TEE may provide verification to the LTS that the connection origination from the TEE. The TEE may request an LTS location for the mobile device from the LTS using the connection. The TEE may provide the LTS location to applications of the mobile device.
摘要翻译：本文描述了用于安全管理的位置和跟踪服务（LTS）访问的系统和技术。可信执行环境（TEE）可以建立到LTS的连接。 TEE可以向LTS提供来自TEE的连接的验证。 TEE可以使用连接从LTS请求移动设备的LTS位置。 TEE可以向移动设备的应用提供LTS位置。

4. 发明申请

US20140006785A1 SYSTEMS AND METHODS FOR AUTHENTICATING DEVICES BY ADDING SECURE FEATURES TO WI-FI TAGS 有权
标题翻译：通过将安全特性添加到WI-FI标签来认证设备的系统和方法
公开(公告)号：US20140006785A1
公开(公告)日：2014-01-02
申请号：US13537523
申请日：2012-06-29
申请人： Adi Shaliv , David Birnbaum
发明人： Adi Shaliv , David Birnbaum
IPC分类号： H04W12/06 , H04L9/32
CPC分类号： H04L9/32 , H04L9/088 , H04L9/3297 , H04L63/0428 , H04L63/126 , H04L2209/80 , H04N1/00055
摘要： Systems and methods are described herein for authenticating a user device that uses a wireless local area network. The user device may generate an encrypted authentication block and/or digitally signed block that includes a variety of information associated with the user device. The user device may attach the encrypted authentication block to periodic messages that are being monitored by the network. The messages may include an unencrypted portion in addition to the encrypted authentication block. A network server may extract the authentication block and decrypt the user device information to verify the identity or the digital signature of the user device. If the network server verifies the identity of the user device, the network server may continue to communicate and provide services with the user device. If the user device identity is not verified, the network server may cease communicating with or providing the user device.
摘要翻译：本文描述了用于认证使用无线局域网的用户设备的系统和方法。用户设备可以生成包括与用户设备相关联的各种信息的加密认证块和/或数字签名块。用户设备可以将加密的认证块附加到由网络监视的定期消息。除了加密的认证块之外，消息可以包括未加密的部分。网络服务器可以提取认证块并解密用户设备信息，以验证用户设备的身份或数字签名。如果网络服务器验证用户设备的身份，则网络服务器可以继续与用户设备通信并提供服务。如果未验证用户设备身份，则网络服务器可以停止与用户设备的通信或提供用户设备。

5. 发明授权

US08339971B2 Network protection via embedded controls 有权
标题翻译：网络保护通过嵌入式控制
公开(公告)号：US08339971B2
公开(公告)日：2012-12-25
申请号：US12773815
申请日：2010-05-04
申请人： Omer Ben-Shalom , Adi Shaliv
发明人： Omer Ben-Shalom , Adi Shaliv
IPC分类号： H04J3/14
CPC分类号： H04L41/5022 , H04L41/0213 , H04L43/00 , H04L43/0811 , H04L43/16 , H04L63/1416
摘要： The present disclosure provides a method for providing network protection. A method according to one embodiment may include detecting an infected data packet at an in-line device. The method may further include receiving a first instruction from the in-line device at a central management server, the instruction identifying the origin of the infected data packet. The method may also include receiving a marking instruction from the central management server at an infected endpoint device and marking outgoing data packets at the infected endpoint device to create marked data packets. Of course, many alternatives, variations and modifications are possible without departing from this embodiment.
摘要翻译：本公开提供了一种用于提供网络保护的方法。根据一个实施例的方法可以包括检测在线设备处的被感染的数据分组。该方法还可以包括在中央管理服务器处从在线设备接收第一指令，该指令标识被感染数据分组的来源。该方法还可以包括在受感染的端点设备处接收来自中央管理服务器的标记指令，并且在感染的端点设备处标记输出数据分组以创建标记的数据分组。当然，在不脱离本实施例的情况下，可以进行许多替代，变化和修改。

6. 发明授权

US07710887B2 Network protection via embedded controls 有权
标题翻译：网络保护通过嵌入式控制
公开(公告)号：US07710887B2
公开(公告)日：2010-05-04
申请号：US11617951
申请日：2006-12-29
申请人： Omer Ben-Shalom , Adi Shaliv
发明人： Omer Ben-Shalom , Adi Shaliv
IPC分类号： H04J3/14
CPC分类号： H04L41/5022 , H04L41/0213 , H04L43/00 , H04L43/0811 , H04L43/16 , H04L63/1416
摘要： The present disclosure provides a method for providing network protection. A method according to one embodiment may include detecting an infected data packet at an in-line device. The method may further include receiving a first instruction from the in-line device at a central management server, the instruction identifying the origin of the infected data packet. The method may also include receiving a marking instruction from the central management server at an infected endpoint device and marking outgoing data packets at the infected endpoint device to create marked data packets. Of course, many alternatives, variations and modifications are possible without departing from this embodiment.
摘要翻译：本公开提供了一种用于提供网络保护的方法。根据一个实施例的方法可以包括检测在线设备处的被感染的数据分组。该方法还可以包括在中央管理服务器处从在线设备接收第一指令，该指令标识被感染数据分组的来源。该方法还可以包括在受感染的端点设备处接收来自中央管理服务器的标记指令，并且在感染的端点设备处标记输出数据分组以创建标记的数据分组。当然，在不脱离本实施例的情况下，可以进行许多替代，变化和修改。

7. 发明申请

US20160092697A1 PLATFORM IDENTITY ARCHITECTURE WITH A TEMPORARY PSEUDONYMOUS IDENTITY 有权
标题翻译：具有临时性的身份识别的平台身份建筑
公开(公告)号：US20160092697A1
公开(公告)日：2016-03-31
申请号：US14495959
申请日：2014-09-25
申请人： Alex Nayshtut , Ned Smith , Avishay Sharaga , Oleg Pogorelik , Abhilasha Bhargav-Spantzel , Michael Raziel , Avi Priev , Adi Shaliv , Igor Muttik
发明人： Alex Nayshtut , Ned Smith , Avishay Sharaga , Oleg Pogorelik , Abhilasha Bhargav-Spantzel , Michael Raziel , Avi Priev , Adi Shaliv , Igor Muttik
IPC分类号： G06F21/62 , G06Q30/02 , H04W8/06
CPC分类号： G06F21/6254 , G06Q30/0261 , H04L63/04 , H04L63/0414 , H04W4/021 , H04W4/21 , H04W8/06 , H04W12/00 , H04W12/02
摘要： In an example, a client-server platform identity architecture is disclosed. The platform identity architecture may be used to enable a venue operator to provide online services and to collect telemetry data and metrics while giving end users greater control over privacy. When entering a compatible venue, the user's device generates a signed temporary pseudonymous identity (TPI) in secure hardware or software. Any telemetry uploaded to the venue server includes the signature so that the server can verify that the data are valid. The TPI may have a built-in expiry. The venue server may thus receive useful tracking data during the term of the TPI, while the user is assured that the data are not kept permanently or correlated to personally-identifying information.
摘要翻译：在一个示例中，公开了客户机 - 服务器平台身份架构。平台身份架构可用于使场地运营商能够提供在线服务并收集遥测数据和指标，同时为终端用户提供更多的隐私控制。当进入兼容的场所时，用户的设备在安全硬件或软件中生成签名的临时假名身份（TPI）。上传到场地服务器的任何遥测包括签名，使得服务器可以验证数据是否有效。 TPI可能有内置的到期。因此，场地服务器可以在TPI期间接收有用的跟踪数据，同时确保用户永久地保持数据或与个人识别信息相关联。

8. 发明授权

US08862882B2 Systems and methods for authenticating devices by adding secure features to Wi-Fi tags 有权
标题翻译：通过向Wi-Fi标签添加安全功能来认证设备的系统和方法
公开(公告)号：US08862882B2
公开(公告)日：2014-10-14
申请号：US13537523
申请日：2012-06-29
申请人： Adi Shaliv , David Birnbaum
发明人： Adi Shaliv , David Birnbaum
IPC分类号： H04L9/32 , H04L9/08 , H04N1/00
CPC分类号： H04L9/32 , H04L9/088 , H04L9/3297 , H04L63/0428 , H04L63/126 , H04L2209/80 , H04N1/00055
摘要： Systems and methods are described herein for authenticating a user device that uses a wireless local area network. The user device may generate an encrypted authentication block and/or digitally signed block that includes a variety of information associated with the user device. The user device may attach the encrypted authentication block to periodic messages that are being monitored by the network. The messages may include an unencrypted portion in addition to the encrypted authentication block. A network server may extract the authentication block and decrypt the user device information to verify the identity or the digital signature of the user device. If the network server verifies the identity of the user device, the network server may continue to communicate and provide services with the user device. If the user device identity is not verified, the network server may cease communicating with or providing the user device.
摘要翻译：本文描述了用于验证使用无线局域网的用户设备的系统和方法。用户设备可以生成包括与用户设备相关联的各种信息的加密认证块和/或数字签名块。用户设备可以将加密的认证块附加到由网络监视的定期消息。除了加密的认证块之外，消息可以包括未加密的部分。网络服务器可以提取认证块并解密用户设备信息，以验证用户设备的身份或数字签名。如果网络服务器验证用户设备的身份，则网络服务器可以继续与用户设备通信并提供服务。如果未验证用户设备身份，则网络服务器可以停止与用户设备的通信或提供用户设备。

9. 发明申请

US20100218252A1 NETWORK PROTECTION VIA EMBEDDED CONTROLS 有权
标题翻译：网络保护通过嵌入式控制
公开(公告)号：US20100218252A1
公开(公告)日：2010-08-26
申请号：US12773815
申请日：2010-05-04
申请人： Omer Ben-Shalom , Adi Shaliv
发明人： Omer Ben-Shalom , Adi Shaliv
IPC分类号： G06F21/00 , H04L12/56
CPC分类号： H04L41/5022 , H04L41/0213 , H04L43/00 , H04L43/0811 , H04L43/16 , H04L63/1416
摘要： The present disclosure provides a method for providing network protection. A method according to one embodiment may include detecting an infected data packet at an in-line device. The method may further include receiving a first instruction from the in-line device at a central management server, the instruction identifying the origin of the infected data packet. The method may also include receiving a marking instruction from the central management server at an infected endpoint device and marking outgoing data packets at the infected endpoint device to create marked data packets. Of course, many alternatives, variations and modifications are possible without departing from this embodiment.
摘要翻译：本公开提供了一种用于提供网络保护的方法。根据一个实施例的方法可以包括检测在线设备处的被感染的数据分组。该方法还可以包括在中央管理服务器处从在线设备接收第一指令，该指令标识被感染数据分组的来源。该方法还可以包括在受感染的端点设备处接收来自中央管理服务器的标记指令，并且在感染的端点设备处标记输出数据分组以创建标记的数据分组。当然，在不脱离本实施例的情况下，可以进行许多替代，变化和修改。

10. 发明授权

US08954735B2 Device, method, and system for secure trust anchor provisioning and protection using tamper-resistant hardware 有权
标题翻译：使用防篡改硬件的安全信任锚配置和保护的设备，方法和系统
公开(公告)号：US08954735B2
公开(公告)日：2015-02-10
申请号：US13631562
申请日：2012-09-28
申请人： Ned M. Smith , David Johnston , George W. Cox , Adi Shaliv
发明人： Ned M. Smith , David Johnston , George W. Cox , Adi Shaliv
IPC分类号： H04L29/06
CPC分类号： H04L63/061 , H04L9/0822 , H04L9/0866 , H04L9/3231 , H04L63/0861 , H04L2209/127
摘要： A method and device for securely provisioning trust anchors includes generating a database wrapper key as a function of computing device hardware. The database wrapper key encrypts a key database when it is not in use by a trusted execution environment and may be generated using a Physical Unclonable Function (PUF). A local computing device establishes a secure connection and security protocols with a remote computing device. In establishing the secure connection, the local computing device and remote computing device may exchange and/or authenticate cryptographic keys, including Enhanced Privacy Identification (EPID) keys, and establish a session key and device identifier(s). One or more trust anchors are then provisioned depending on whether unilateral, bilateral, or multilateral trust is established. The local computing device may act as a group or domain controller in establishing multilateral trust. Any of the devices may also require user presence to be verified.
摘要翻译：用于安全地配置信任锚的方法和设备包括生成作为计算设备硬件的函数的数据库包装密钥。数据库包装器密钥在密钥数据库不被可信执行环境使用时加密，并且可以使用物理不可克隆功能（PUF）生成密钥数据库。本地计算设备与远程计算设备建立安全连接和安全协议。在建立安全连接时，本地计算设备和远程计算设备可以交换和/或验证密码密钥，包括增强型隐私标识（EPID）密钥，并建立会话密钥和设备标识符。根据单方面，双边或多边信托是否建立了一个或多个信托基金。本地计算设备可以充当组或域控制器来建立多边信任。任何设备也可能要求验证用户存在。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式