专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明授权

US08618913B1 Radio frequency identification enabled mobile device 有权
标题翻译：射频识别启用移动设备
公开(公告)号：US08618913B1
公开(公告)日：2013-12-31
申请号：US12907625
申请日：2010-10-19
申请人： Daniel V. Bailey , John Brainard , Ari Juels , Kevin D. Bowers
发明人： Daniel V. Bailey , John Brainard , Ari Juels , Kevin D. Bowers
IPC分类号： H04Q5/22
CPC分类号： H04L67/12 , G06F3/017 , H04M1/7253 , H04M1/72569 , H04Q2213/13095 , H04W4/02 , H04W4/80 , H04W12/06 , H04W12/08
摘要： An RFID enabled mobile device is configured to provide a secure release of RFID information. The RFID enabled mobile device, such as an RFID enabled cellular telephone, includes a set of sensors, such as a camera, one or more accelerometers, a wireless transceiver configured to send and receive data with an Internet device, and a global positioning system (GPS) receiver. The RFID enabled mobile device utilizes sensor attributes or information from one or more sensor of the set of sensors and, based upon the sensor attributes, controls the release of RFID information and/or other authentication data to an RFID interrogation system. In essence, the RFID enabled mobile device leverages from the conventional sensors typically incorporated as part of the mobile device and uses contextual data from its sensors and communication partners to make security decisions regarding the release of RFID information.
摘要翻译： RFID启用的移动设备被配置为提供RFID信息的安全释放。支持RFID的移动设备，例如支持RFID的蜂窝电话，包括一组传感器，例如相机，一个或多个加速度计，被配置为使用因特网设备发送和接收数据的无线收发器以及全球定位系统（ GPS）接收机。 RFID启用的移动设备利用来自传感器组的一个或多个传感器的传感器属性或信息，并且基于传感器属性，控制RFID信息和/或其他认证数据到RFID询问系统的释放。实质上，支持RFID的移动设备利用通常作为移动设备的一部分并入的常规传感器，并使用来自其传感器和通信伙伴的上下文数据来做出关于RFID信息的释放的安全决定。

2. 发明授权

US10101787B1 Energy-aware virtual infrastructure 有权
公开(公告)号：US10101787B1
公开(公告)日：2018-10-16
申请号：US13076747
申请日：2011-03-31
申请人： Daniel V. Bailey , Qiyan Chen , Robert B. Masson , Tianqing Wang , Yun Zhang
发明人： Daniel V. Bailey , Qiyan Chen , Robert B. Masson , Tianqing Wang , Yun Zhang
IPC分类号： G06F1/32
摘要： Example embodiments of the present invention provide a method, apparatus and computer program product for determining a share of power consumption by an application executing on a server. The method includes obtaining metrics relating to operation of the server and obtaining metrics relating to server resource utilization attributable to the application. A transformation is then performed using the metrics relating to operation of the server and server resource utilization attributable to the application to determine the respective share of power consumption by the application executing on the server. Additionally, greenhouse-gases attributable to the application also may be calculated.

3. 发明授权

US09281943B1 Defending against factoring by collision 有权
标题翻译：防范碰撞分解
公开(公告)号：US09281943B1
公开(公告)日：2016-03-08
申请号：US13534879
申请日：2012-06-27
申请人： Daniel V. Bailey
发明人： Daniel V. Bailey
IPC分类号： H04K1/04 , H04L9/22 , H04L9/18
CPC分类号： H04L9/22 , H04L9/3033
摘要： An improved technique involves combining a random seed with unique identifying information to form an input into a RNG. Along these lines, a key pair generator obtains a primary random seed through an interaction with a random process from a web server on which the key pair generator runs. Before putting the primary random seed into a RNG, however, the key pair generator obtains a web domain name that uniquely identifies the web server. The key pair generator concatenates the web domain name, the primary random seed, and an epoch time to produce a secondary random seed. The key pair generator inputs the secondary random seed into the RNG, obtains a large integer output, and finds a first prime factor of a modulus of the public key near the large integer through a search technique.
摘要翻译：一种改进的技术涉及将随机种子与唯一识别信息组合以形成RNG中的输入。沿着这些方式，密钥对生成器通过与密钥对生成器运行的Web服务器的随机进程的交互来获得主随机种子。然而，在将主随机种子放入RNG之前，密钥对生成器获取唯一标识Web服务器的Web域名。密钥对生成器将Web域名，主随机种子和时代时间连接以产生次要随机种子。密钥对生成器将二次随机种子输入到RNG中，获得大的整数输出，并通过搜索技术找到大整数附近的公钥的模数的第一素因子。

4. 发明授权

US08726405B1 Techniques for providing security using a mobile wireless communications device having data loss prevention circuitry 有权
标题翻译：用于使用具有数据丢失防止电路的移动无线通信设备来提供安全性的技术
公开(公告)号：US08726405B1
公开(公告)日：2014-05-13
申请号：US12978017
申请日：2010-12-23
申请人： Daniel V. Bailey , Robert W. Griffin
发明人： Daniel V. Bailey , Robert W. Griffin
IPC分类号： G06F21/00
CPC分类号： G06F21/6218 , G06F2221/2141
摘要： A technique provides wireless communications security. The technique involves providing a mobile wireless communications apparatus (e.g., a smart phone) having DLP circuitry, and configuring the DLP circuitry to perform DLP scanning operations. The technique further involves conducting, after the DLP circuitry is configured to perform the DLP scanning operations, wireless communications sessions (e.g., a mobile phone calls) between the mobile wireless communications apparatus and external devices (e.g., wireless access points) while the DLP circuitry performs the DLP scanning operations. In some arrangements, the DLP circuitry is configured by a user to (i) allow only authorized apps to send sensitive information and/or (ii) block retransmission of the sensitive information (e.g., in the event an application containing spyware attempts to send the sensitive information to an attacker after the user has completed a legitimate transaction). Thus, the DLP circuitry protects the mobile wireless communications apparatus against illicit dissemination of sensitive information.
摘要翻译：一种技术提供无线通信安全性。该技术涉及提供具有DLP电路的移动无线通信设备（例如，智能电话），以及配置DLP电路以执行DLP扫描操作。该技术还涉及在DLP电路被配置为执行DLP扫描操作之后，在移动无线通信设备和外部设备（例如，无线接入点）之间进行无线通信会话（例如，移动电话呼叫），而DLP电路执行DLP扫描操作。在一些安排中，DLP电路由用户配置为（i）仅允许授权应用发送敏感信息和/或（ii）阻止敏感信息的重传（例如，在包含间谍软件的应用尝试发送敏感信息的情况下用户完成合法交易后，向攻击者发送敏感信息）。因此，DLP电路保护移动无线通信装置免于非法传播敏感信息。

5. 发明授权

US08601553B1 Techniques of imposing access control policies 有权
标题翻译：强制访问控制策略的技术
公开(公告)号：US08601553B1
公开(公告)日：2013-12-03
申请号：US12826481
申请日：2010-06-29
申请人： Robert W. Griffin , Daniel V. Bailey , Joshua A. Rosenthol
发明人： Robert W. Griffin , Daniel V. Bailey , Joshua A. Rosenthol
IPC分类号： G06F7/04
CPC分类号： G06F21/335 , G06F2221/2141 , G06F2221/2149 , H04L9/3236 , H04L63/0807 , H04L63/101
摘要： A technique of imposing access control policies is presented. The technique comprises receiving a token which is associated with a datum by a tokenization server. The technique also includes generating an access control result based on at least a portion of the token. The technique further includes imposing a first access control policy which includes refraining from sending an access request to the tokenization server when the access control result has a first value and a second access control policy which includes sending an access request to the tokenization server, the access request being constructed and arranged to request access to the datum when the access control result has a second value which is different from the first value.
摘要翻译：介绍了一种强制访问控制策略的技术。该技术包括通过标记服务器接收与数据相关联的令牌。该技术还包括基于令牌的至少一部分来生成访问控制结果。该技术还包括强制执行第一访问控制策略，其包括当访问控制结果具有第一值时禁止向该标记服务器发送访问请求;以及第二访问控制策略，其包括向该标记服务器发送访问请求，该访问请求被构造和布置成当访问控制结果具有与第一值不同的第二值时请求访问基准。

6. 发明授权

US09781129B1 Authenticating an entity 有权
公开(公告)号：US09781129B1
公开(公告)日：2017-10-03
申请号：US13536978
申请日：2012-06-28
申请人： Daniel V. Bailey , Lawrence N. Friedman , Samuel Curry , Yedidya Dotan
发明人： Daniel V. Bailey , Lawrence N. Friedman , Samuel Curry , Yedidya Dotan
IPC分类号： H04L29/06
CPC分类号： H04L63/107 , G06F2221/2111 , G06F2221/2151 , H04L9/3271 , H04L9/3297 , H04L2209/80 , H04W12/06
摘要： There is disclosed a method and system for use in authenticating an entity. An authentication request is received from the entity. An input signal is received from a communications device associated with the entity. The input signal comprises the current location of the communications device. The current location of the communications device is derived from the input signal. Based on the current location of the communications device, an event is detected at substantially the same location as the current location of the communications device. An analysis is performed between the current location of the communications device and the event. An authentication result is generated based on the analysis between the current location of the communications device and the event. The authentication result can be used for authenticating the entity.

7. 发明授权

US09230066B1 Assessing risk for third-party data collectors 有权
标题翻译：评估第三方数据收集者的风险
公开(公告)号：US09230066B1
公开(公告)日：2016-01-05
申请号：US13534873
申请日：2012-06-27
申请人： Daniel V. Bailey , Lawrence N. Friedman , Yedidya Dotan
发明人： Daniel V. Bailey , Lawrence N. Friedman , Yedidya Dotan
IPC分类号： H04L29/00 , G06F21/00
CPC分类号： G06F21/00 , G06F21/316 , G06F2221/2111 , H04L63/107 , H04W4/02 , H04W12/06
摘要： An improved technique authenticates a user based on an ability to corroborate previous transaction data sent by a user device. Along these lines, the improved technique makes use of an independent information source for verifying the accuracy of previous transaction data obtained by a given collector. For example, when a collector of location data is a GPS unit of a cell phone, an independent information source may be a cell tower closest to the cell phone at the time of the transaction. While location data provided by the cell tower may not be as precise as that provided by the GPS unit, such data is useful for corroborating the location data from the GPS unit. In this scenario, if the data provided by the cell tower fails to corroborate that provided by the GPS unit, then the GPS unit adds significant risk to authenticating the user.
摘要翻译：改进的技术基于确定用户设备发送的先前交易数据的能力来认证用户。沿着这些方式，改进的技术使用独立的信息源来验证给定收集器获得的先前交易数据的准确性。例如，当位置数据的收集器是手机的GPS单元时，独立的信息源可以是在交易时最靠近手机的信元塔。虽然由单元塔提供的位置数据可能不如GPS单元提供的位置数据那样精确，但是这样的数据对于确认来自GPS单元的位置数据是有用的。在这种情况下，如果单元塔提供的数据未能证实由GPS单元提供的数据，则GPS单元增加了验证用户的重大风险。

8. 发明授权

US08904496B1 Authentication based on a current location of a communications device associated with an entity 有权
标题翻译：基于与实体相关联的通信设备的当前位置的认证
公开(公告)号：US08904496B1
公开(公告)日：2014-12-02
申请号：US13435951
申请日：2012-03-30
申请人： Daniel V. Bailey , Lawrence N. Friedman , Yedidya Dotan , Samuel Curry , Riaz Zolfonoon
发明人： Daniel V. Bailey , Lawrence N. Friedman , Yedidya Dotan , Samuel Curry , Riaz Zolfonoon
IPC分类号： G06F21/00 , G06F21/44
CPC分类号： G06F21/44 , G06F21/552 , G06F2221/2111 , G06F2221/2151 , H04L9/3271 , H04L9/3297 , H04L2209/80 , H04W12/06
摘要： There is disclosed a method and system for use in authenticating an entity in connection with a computerized resource. An authentication request is received from entity for access to computerized resource. An input signal is received from a communications device associated with entity. The input signal comprises current location of communications device. The current location of communications device is derived from input signal. A location history in connection with communications device is captured. The location history comprises a record of discrete locations visited by communications device over a period of time. An analysis is performed between current location of the communications device and location history in connection with communications device. An authentication result is generated based on analysis between current location of communications device and location history in connection with communications device. The authentication result can be used for authenticating entity.
摘要翻译：公开了一种用于认证与计算机资源有关的实体的方法和系统。从实体接收到对计算机资源的访问的认证请求。从与实体相关联的通信设备接收输入信号。输入信号包括通信设备的当前位置。通信设备的当前位置来源于输入信号。捕获与通信设备相关的位置历史记录。位置历史包括通信设备在一段时间内访问的离散位置的记录。在通信设备的当前位置和与通信设备相关的位置历史之间进行分析。基于通信设备的当前位置和与通信设备相关的位置历史之间的分析生成认证结果。验证结果可用于认证实体。

9. 发明授权

US08655787B1 Automated detection of defined input values and transformation to tokens 有权
标题翻译：自动检测定义的输入值并转换为令牌
公开(公告)号：US08655787B1
公开(公告)日：2014-02-18
申请号：US12826491
申请日：2010-06-29
申请人： Robert W. Griffin , Daniel V. Bailey , Joshua A. Rosenthol
发明人： Robert W. Griffin , Daniel V. Bailey , Joshua A. Rosenthol
IPC分类号： G06F17/00
CPC分类号： G06F17/00 , G06F21/6272 , G06Q20/24 , G06Q20/385 , H04L63/00
摘要： A computer-implemented technique processes a potentially sensitive item of data (e.g., data which may be either a credit card number or a token having a similar format). The technique involves, after the potentially sensitive item of data is properly received within a physical memory location, generating a token result which indicates whether the potentially sensitive item of data satisfies a valid-token requirement. The technique further involves preserving the potentially sensitive item of data in an unaltered form within the physical memory location when the token result indicates that the potentially sensitive item of data satisfies the valid-token requirement. The technique further involves replacing the potentially sensitive item of data within the physical memory location with a token when the token result indicates that the potentially sensitive item of data does not satisfy the valid-token requirement.
摘要翻译：计算机实现的技术处理可能敏感的数据项目（例如，可能是信用卡号码或具有类似格式的令牌的数据）。该技术涉及在物理存储器位置中适当地接收到潜在的敏感数据项之后，生成指示潜在敏感数据项是否满足有效令牌要求的令牌结果。该技术还涉及当令牌结果指示潜在敏感数据项满足有效令牌要求时，在物理存储器位置内以未改变的形式保留潜在敏感数据项。该技术还包括当令牌结果指示潜在的敏感数据项不满足有效令牌要求时，用令牌替换物理存储器位置内的潜在敏感数据项。

10. 发明授权

US08621237B1 Protecting against cryptographic key exposure in source code 有权
标题翻译：防止密码密码暴露在源代码中
公开(公告)号：US08621237B1
公开(公告)日：2013-12-31
申请号：US13173874
申请日：2011-06-30
申请人： Daniel V. Bailey , Aaron Katz , Craig R. Paradis , Robert D. Hopley
发明人： Daniel V. Bailey , Aaron Katz , Craig R. Paradis , Robert D. Hopley
IPC分类号： G06F11/30 , G06F12/14 , G06F11/00 , G06F12/16 , G08B23/00
CPC分类号： G06F21/54 , G06F21/602
摘要： A technique protects source code and is performed in an electronic device. The technique involves performing, on the source code, a scanning operation which provides a scanning result indicating whether the source code includes a cryptographic key. The technique further involves performing a remedial operation (e.g., alerting an administrator, deleting the key, replacing the key, combinations thereof, etc.) to prevent undesired exposure of the cryptographic key when the scanning result indicates that the source code includes a cryptographic key. The technique further involves refraining from performing the remedial operation when the scanning result indicates that the source code does not include a cryptographic key.
摘要翻译：一种技术保护源代码，并在电子设备中执行。该技术涉及在源代码上执行提供指示源代码是否包括密码密钥的扫描结果的扫描操作。该技术还包括执行补救操作（例如，提醒管理员，删除密钥，替换密钥及其组合等），以防止当扫描结果指示源代码包括加密密钥时密码密钥的不期望的暴露。该技术还包括当扫描结果指示源代码不包括加密密钥时，避免执行补救操作。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式