专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明授权

US07382883B2 Deriving a symmetric key from an asymmetric key for file encryption or decryption 有权
标题翻译：从用于文件加密或解密的非对称密钥中导出对称密钥
公开(公告)号：US07382883B2
公开(公告)日：2008-06-03
申请号：US11611051
申请日：2006-12-14
申请人： David B. Cross , Jianrong Gu , Josh D. Benaloh , Thomas C. Jones , Paul J. Leach , Glenn D. Pittaway
发明人： David B. Cross , Jianrong Gu , Josh D. Benaloh , Thomas C. Jones , Paul J. Leach , Glenn D. Pittaway
IPC分类号： H04L9/00
CPC分类号： H04L63/045 , G06Q20/3829 , H04L9/0822 , H04L9/0894 , H04L63/0823
摘要： One aspect relates to a process and associated device that provides a private key of an asymmetric key pair in a key device. A symmetric master key is derived from the private key of the asymmetric key pair. The symmetric master key is stored in a computer memory location. The symmetric master key is used to encrypt or decrypt a file encryption key. The file encryption key can encrypt or decrypt files. In another aspect, the user can still access the files even if a user deactivates the key device by encrypting or decrypting the file encryption key directly from the symmetric master key.
摘要翻译：一个方面涉及在密钥设备中提供非对称密钥对的私钥的过程和相关设备。对称主密钥是从非对称密钥对的私有密钥导出的。对称主密钥存储在计算机内存位置。对称主密钥用于加密或解密文件加密密钥。文件加密密钥可以加密或解密文件。在另一方面，即使用户通过直接从对称主密钥加密或解密文件加密密钥来使密钥设备停用，用户仍然可以访问文件。

2. 发明授权

US07181016B2 Deriving a symmetric key from an asymmetric key for file encryption or decryption 有权
标题翻译：从用于文件加密或解密的非对称密钥中导出对称密钥
公开(公告)号：US07181016B2
公开(公告)日：2007-02-20
申请号：US10351683
申请日：2003-01-27
申请人： David B. Cross , Jianrong Gu , Josh D. Benaloh , Thomas C. Jones , Paul J. Leach , Glenn D. Pittaway
发明人： David B. Cross , Jianrong Gu , Josh D. Benaloh , Thomas C. Jones , Paul J. Leach , Glenn D. Pittaway
IPC分类号： H04L9/00
CPC分类号： H04L63/045 , G06Q20/3829 , H04L9/0822 , H04L9/0894 , H04L63/0823
摘要： One aspect relates to a process and associated device that provides a private key of an asymmetric key pair in a key device. A symmetric master key is derived from the private key of the asymmetric key pair. The symmetric master key is stored in a computer memory location. The symmetric master key is used to encrypt or decrypt a file encryption key. The file encryption key can encrypt or decrypt files. In another aspect, the user can still access the files even if a user deactivates the key device by encrypting or decrypting the file encryption key directly from the symmetric master key.
摘要翻译：一个方面涉及在密钥设备中提供非对称密钥对的私钥的过程和相关设备。对称主密钥是从非对称密钥对的私有密钥导出的。对称主密钥存储在计算机内存位置。对称主密钥用于加密或解密文件加密密钥。文件加密密钥可以加密或解密文件。在另一方面，即使用户通过直接从对称主密钥加密或解密文件加密密钥来使密钥设备停用，用户仍然可以访问文件。

3. 发明授权

US08621561B2 Selective authorization based on authentication input attributes 有权
标题翻译：基于认证输入属性的选择性授权
公开(公告)号：US08621561B2
公开(公告)日：2013-12-31
申请号：US11969456
申请日：2008-01-04
申请人： David B. Cross , Mark F. Novak , Oded Ye Shekel , Paul J. Leach , Andreas Luther , Thomas C. Jones
发明人： David B. Cross , Mark F. Novak , Oded Ye Shekel , Paul J. Leach , Andreas Luther , Thomas C. Jones
IPC分类号： H04L29/06 , G06F21/00
CPC分类号： H04L9/3213 , H04L9/3226 , H04L9/3263 , H04L63/0807
摘要： Embodiments for providing differentiated access based on authentication input attributes are disclosed. In accordance with one embodiment, a method includes receiving an authentication input at an authentication authority using an authentication protocol. The authentication input being associated with a client. The method also includes providing one or more representations for the authentication input, wherein each of the representations represents an attribute of the authentication input.
摘要翻译：公开了基于认证输入属性提供差分访问的实施例。根据一个实施例，一种方法包括使用认证协议在认证机构处接收认证输入。认证输入与客户端相关联。该方法还包括为认证输入提供一个或多个表示，其中每个表示代表认证输入的属性。

4. 发明申请

US20090178129A1 SELECTIVE AUTHORIZATION BASED ON AUTHENTICATION INPUT ATTRIBUTES 有权
标题翻译：基于认证输入属性的选择性授权
公开(公告)号：US20090178129A1
公开(公告)日：2009-07-09
申请号：US11969456
申请日：2008-01-04
申请人： David B. Cross , Mark F. Novak , Oded Ye Shekel , Paul J. Leach , Andreas Luther , Thomas C. Jones
发明人： David B. Cross , Mark F. Novak , Oded Ye Shekel , Paul J. Leach , Andreas Luther , Thomas C. Jones
IPC分类号： H04L9/32
CPC分类号： H04L9/3213 , H04L9/3226 , H04L9/3263 , H04L63/0807
摘要： Embodiments for providing differentiated access based on authentication input attributes are disclosed. In accordance with one embodiment, a method includes receiving an authentication input at an authentication authority using an authentication protocol. The authentication input being associated with a client. The method also includes providing one or more representations for the authentication input, wherein each of the representations represents an attribute of the authentication input.
摘要翻译：公开了基于认证输入属性提供差分访问的实施例。根据一个实施例，一种方法包括使用认证协议在认证机构处接收认证输入。认证输入与客户端相关联。该方法还包括为认证输入提供一个或多个表示，其中每个表示代表认证输入的属性。

5. 发明授权

US08045714B2 Systems and methods for managing multiple keys for file encryption and decryption 有权
标题翻译：用于管理文件加密和解密的多个密钥的系统和方法
公开(公告)号：US08045714B2
公开(公告)日：2011-10-25
申请号：US11053212
申请日：2005-02-07
申请人： David B. Cross , Duncan G. Bryce , Jianrong Gu , Kelvin Shek Yiu , Monica Ioana Ene-Pietrosanu
发明人： David B. Cross , Duncan G. Bryce , Jianrong Gu , Kelvin Shek Yiu , Monica Ioana Ene-Pietrosanu
IPC分类号： H04L9/00
CPC分类号： G06F21/602 , G06F21/6209 , G06F21/6281 , G06F2221/2141 , H04L9/0891 , H04L9/0894 , H04L9/16
摘要： Systems and methods for managing multiple keys for file encryption and decryption may provide an encrypted list of previously used keys. The list itself may be encrypted using a current key. To decrypt files that are encrypted in one or more of the previous keys, the list can be decrypted, and the appropriate previous key can be retrieved. To re-key files, an automated process can decrypt any files using previous keys and encrypt them using the current key. If a new current key is introduced, the prior current key can be used to decrypt the list of keys, the prior current key can be added to the list, and the list can be re-encrypted using the new current key.
摘要翻译：用于管理用于文件加密和解密的多个密钥的系统和方法可以提供先前使用的密钥的加密列表。列表本身可以使用当前密钥进行加密。要解密在一个或多个先前密钥中加密的文件，可以解密该列表，并且可以检索相应的上一个密钥。要重新启动文件，自动化过程可以使用先前的密钥解密任何文件，并使用当前密钥进行加密。如果引入新的当前密钥，则可以使用先前的当前密钥来解密密钥列表，可以将先前的当前密钥添加到列表中，并且可以使用新的当前密钥重新加密列表。

6. 发明授权

US07376968B2 BIOS integrated encryption 有权
标题翻译： BIOS集成加密
公开(公告)号：US07376968B2
公开(公告)日：2008-05-20
申请号：US10718153
申请日：2003-11-20
申请人： Andrew J. Ritz , David B. Cross , Duncan Bryce , James A. Schwartz, Jr. , Jianrong Gu , Scott A. Field
发明人： Andrew J. Ritz , David B. Cross , Duncan Bryce , James A. Schwartz, Jr. , Jianrong Gu , Scott A. Field
IPC分类号： G06F1/00 , G06F17/30 , G06F9/00
CPC分类号： G06F21/575 , G06F21/6209 , G06F2221/2107
摘要： A system and method for facilitating BIOS integrated encryption is provided. An interface is defined between the operating system and the BIOS. The operating system employs this interface to provide BIOS code information to facilitate decryption of data that is encrypted on the system. In the pre-operating system boot phase, the BIOS employs the decryption information provided from this interface in order to decrypt the data. The decrypted information can be employed to facilitate secure rebooting of a computer system from hibernate mode and/or secure access to device(s).
摘要翻译：提供了一种用于促进BIOS集成加密的系统和方法。在操作系统和BIOS之间定义一个接口。操作系统采用该接口提供BIOS代码信息，以便于在系统上加密的数据的解密。在操作前系统启动阶段，BIOS使用从该接口提供的解密信息来解密数据。解密的信息可用于促进计算机系统从休眠模式的安全重新启动和/或安全地访问设备。

7. 发明授权

US07325115B2 Encryption of system paging file 有权
标题翻译：加密系统页面文件
公开(公告)号：US07325115B2
公开(公告)日：2008-01-29
申请号：US10721562
申请日：2003-11-25
申请人： Benjamin A. Leis , David B. Cross , Duncan G. Bryce , Jianrong Gu , Rajeev Y. Nagar , Scott A. Field
发明人： Benjamin A. Leis , David B. Cross , Duncan G. Bryce , Jianrong Gu , Rajeev Y. Nagar , Scott A. Field
IPC分类号： G06F12/00
CPC分类号： G06F12/145 , G06F21/62 , G06F21/6281 , G06F21/80 , G06F2221/2143
摘要： An operating system copies data from memory pages into a paging file on disk, in order to free up space in the memory. A mechanism is disclosed that causes the data to be encrypted as it is copied into the paging file, thereby protecting the paged data from unauthorized (or otherwise undesired) observation. The data that is stored in the paging file is encrypted with a session key, that is generated shortly after the machine on which the paging file exists is started. The session key, which is used both for encryption and decryption of the paging file data, is stored in volatile memory, so that the key is not persisted across boots of the machine. Since the key is not persisted across boots, old paging file data that was stored prior to the most recent boot cannot be recovered in clear text, thereby protecting the data from observation.
摘要翻译：操作系统将数据从内存页复制到磁盘上的页面文件中，以释放内存中的空间。公开了一种机制，使得数据在被复制到寻呼文件中时被加密，从而保护分页数据免受未经授权（或以其他方式不希望的）观察。存储在页面文件中的数据使用会话密钥进行加密，会话密钥是在启动了分页文件的计算机之后不久生成的。用于分页文件数据的加密和解密的会话密钥存储在易失性存储器中，使得密钥不会在机器的引导上持久存储。由于密钥在整个引导过程中不会持久存在，所以在最新引导之前存储的旧页面文件数据无法以明文形式恢复，从而保护数据免受观察。

8. 发明申请

US20110085664A1 SYSTEMS AND METHODS FOR MANAGING MULTIPLE KEYS FOR FILE ENCRYPTION AND DECRYPTION 有权
标题翻译：用于管理文件加密和解密的多个核的系统和方法
公开(公告)号：US20110085664A1
公开(公告)日：2011-04-14
申请号：US12971157
申请日：2010-12-17
申请人： David B. Cross , Duncan G. Bryce , Jianrong Gu , Kelvin Sjek Yiu , Monica Ioana Ene-Pietrosanu
发明人： David B. Cross , Duncan G. Bryce , Jianrong Gu , Kelvin Sjek Yiu , Monica Ioana Ene-Pietrosanu
IPC分类号： H04L9/00
CPC分类号： G06F21/602 , G06F21/6209 , G06F21/6281 , G06F2221/2141 , H04L9/0891 , H04L9/0894 , H04L9/16
摘要： Systems and methods for managing multiple keys for file encryption and decryption may provide an encrypted list of previously used keys. The list itself may be encrypted using a current key. To decrypt files that are encrypted in one or more of the previous keys, the list can be decrypted, and the appropriate previous key can be retrieved. To re-key files, an automated process can decrypt any files using previous keys and encrypt them using the current key. If a new current key is introduced, the prior current key can be used to decrypt the list of keys, the prior current key can be added to the list, and the list can be re-encrypted using the new current key.
摘要翻译：用于管理用于文件加密和解密的多个密钥的系统和方法可以提供先前使用的密钥的加密列表。列表本身可以使用当前密钥进行加密。要解密在一个或多个先前密钥中加密的文件，可以解密该列表，并且可以检索相应的上一个密钥。要重新启动文件，自动化过程可以使用先前的密钥解密任何文件，并使用当前密钥进行加密。如果引入新的当前密钥，则可以使用先前的当前密钥来解密密钥列表，可以将先前的当前密钥添加到列表中，并且可以使用新的当前密钥重新加密列表。

9. 发明授权

US08798272B2 Systems and methods for managing multiple keys for file encryption and decryption 有权
标题翻译：用于管理文件加密和解密的多个密钥的系统和方法
公开(公告)号：US08798272B2
公开(公告)日：2014-08-05
申请号：US12971157
申请日：2010-12-17
申请人： David B. Cross , Duncan G. Bryce , Jianrong Gu , Kelvin Sjek Yiu , Monica Ioana Ene-Pietrosanu
发明人： David B. Cross , Duncan G. Bryce , Jianrong Gu , Kelvin Sjek Yiu , Monica Ioana Ene-Pietrosanu
IPC分类号： H04L29/06
CPC分类号： G06F21/602 , G06F21/6209 , G06F21/6281 , G06F2221/2141 , H04L9/0891 , H04L9/0894 , H04L9/16
摘要： Systems and methods for managing multiple keys for file encryption and decryption may provide an encrypted list of previously used keys. The list itself may be encrypted using a current key. To decrypt files that are encrypted in one or more of the previous keys, the list can be decrypted, and the appropriate previous key can be retrieved. To re-key files, an automated process can decrypt any files using previous keys and encrypt them using the current key. If a new current key is introduced, the prior current key can be used to decrypt the list of keys, the prior current key can be added to the list, and the list can be re-encrypted using the new current key.
摘要翻译：用于管理用于文件加密和解密的多个密钥的系统和方法可以提供先前使用的密钥的加密列表。列表本身可以使用当前密钥进行加密。要解密在一个或多个先前密钥中加密的文件，可以解密该列表，并且可以检索相应的上一个密钥。要重新启动文件，自动化过程可以使用先前的密钥解密任何文件，并使用当前密钥进行加密。如果引入新的当前密钥，则可以使用先前的当前密钥来解密密钥列表，可以将先前的当前密钥添加到列表中，并且可以使用新的当前密钥重新加密列表。

10. 发明授权

US08640256B2 File system operation and digital rights management (DRM) 有权
标题翻译：文件系统操作和数字版权管理（DRM）
公开(公告)号：US08640256B2
公开(公告)日：2014-01-28
申请号：US13352038
申请日：2012-01-17
申请人： David B. Cross , Paul J. Leach
发明人： David B. Cross , Paul J. Leach
IPC分类号： H04L9/32
CPC分类号： G06F17/30067
摘要： A file system is configured for use with files protected by digital rights management (DRM) content controls and to interact both with applications that are, and are not, DRM aware. The file system may be configured for use by two applications, in a manner that may provide the second application with protected files if the first application was previously allowed access. In one example, a user context cache of DRM-protected files is created. The files in the cache may have been decrypted in response to a request(s) from the first application. Subsequent requests from the second application may be received for files within the user context cache of DRM-protected files. At least one of the files within the user context cache of DRM-protected files may be provided to the second application if the second application has a joint user context with the first application.
摘要翻译：文件系统被配置为与受数字权限管理（DRM）内容控制保护的文件一起使用，并且与DRM感知的应用程序进行交互。文件系统可以被配置为由两个应用程序使用，其方式可以是如果第一应用程序以前被允许访问则可以向第二应用提供受保护的文件。在一个示例中，创建DRM保护文件的用户上下文高速缓存。响应于来自第一应用的请求，缓存中的文件可能已被解密。可以针对受DRM保护的文件的用户上下文高速缓存中的文件接收来自第二应用的后续请求。如果第二应用具有与第一应用的联合用户上下文，则DRM受保护文件的用户上下文高速缓存内的至少一个文件可以被提供给第二应用。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式