专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明申请

US20100242102A1 Biometric credential verification framework 审中-公开
标题翻译：生物识别凭证验证框架
公开(公告)号：US20100242102A1
公开(公告)日：2010-09-23
申请号：US11477160
申请日：2006-06-27
申请人： David B. Cross , Paul J. Leach , Klaus U. Schutz , Robert D. Young , Nathan C. Sherman
发明人： David B. Cross , Paul J. Leach , Klaus U. Schutz , Robert D. Young , Nathan C. Sherman
IPC分类号： G06F21/00 , H04L29/06 , H04L9/08
CPC分类号： G06F21/32 , G06F21/335 , G06Q20/40145 , H04L63/0428 , H04L63/067 , H04L63/0807 , H04L63/0823 , H04L63/083 , H04L63/0861 , H04L63/10 , H04L63/126
摘要： Use of a biometric identification device in a client computer system to subsequently access an authentication system includes receiving biometric sample data which is digitally signed and combining the data with a user ID and PIN. This package of data is then securely transmitted to a biometric matching server to validate the user and the biometric sample. Once validated, the biometric matching server return the data package plus a temporary certificate and a public/private key pair to the client computer. The client computer may then use this information to access an authentication system to subsequently gain access to a secure resource.
摘要翻译：在客户端计算机系统中使用生物识别装置随后访问认证系统包括接收数字签名的生物特征样本数据，并将数据与用户ID和PIN组合。然后将该数据包安全地传输到生物特征匹配服务器以验证用户和生物特征样本。一旦验证，生物特征匹配服务器将数据包加上临时证书和公钥/私钥对返回给客户端计算机。然后，客户端计算机可以使用该信息来访问认证系统以随后获得对安全资源的访问。

2. 发明授权

US07802294B2 Controlling computer applications' access to data 有权
标题翻译：控制计算机应用程序访问数据
公开(公告)号：US07802294B2
公开(公告)日：2010-09-21
申请号：US11046281
申请日：2005-01-28
申请人： Eric C. Perlin , Klaus U. Schutz , Paul J. Leach , Peter T. Brundrett , Thomas C. Jones
发明人： Eric C. Perlin , Klaus U. Schutz , Paul J. Leach , Peter T. Brundrett , Thomas C. Jones
IPC分类号： G06F7/04
CPC分类号： G06F21/6218 , G06F21/6281 , G06F2221/2141
摘要： Systems and methods are described that control attempts made by an application to access data. In one embodiment, the application is associated with a security token that includes an application ID. In operation, the system receives a request, initiated by the application, for access to the data. The system is configured to evaluate the request for access based in part on comparison of the security token and a listing of approved application IDs associated with the data.
摘要翻译：描述了控制由应用访问数据的尝试的系统和方法。在一个实施例中，该应用与包括应用ID的安全令牌相关联。在操作中，系统接收由应用程序启动的用于访问数据的请求。该系统被配置为基于安全令牌的比较和与数据相关联的已批准应用ID的列表来部分地评估访问请求。

3. 发明授权

US07810153B2 Controlling execution of computer applications 有权
标题翻译：控制计算机应用程序的执行
公开(公告)号：US07810153B2
公开(公告)日：2010-10-05
申请号：US11046607
申请日：2005-01-28
申请人： Eric C. Perlin , Klaus U. Schutz , Paul J. Leach , Peter T. Brundrett , Thomas C. Jones
发明人： Eric C. Perlin , Klaus U. Schutz , Paul J. Leach , Peter T. Brundrett , Thomas C. Jones
IPC分类号： G06F7/04 , G06F12/00 , G06F12/14 , G06F13/00 , G06F17/30
CPC分类号： G06F21/62 , G06F21/31 , G06F21/54 , G06F2221/2141
摘要： Systems and methods are described that control attempts made by an application to access data. In one embodiment, the application is associated with a security token that includes an application ID. In operation, the system receives a request, initiated by the application, for access to the data. The system is configured to evaluate the request for access based in part on comparison of the security token and a listing of approved application IDs associated with the data.
摘要翻译：描述了控制由应用访问数据的尝试的系统和方法。在一个实施例中，该应用与包括应用ID的安全令牌相关联。在操作中，系统接收由应用程序发起的用于访问数据的请求。该系统被配置为基于安全令牌的比较和与数据相关联的已批准应用ID的列表来部分地评估访问请求。

4. 发明授权

US07996682B2 Secure prompting 有权
标题翻译：安全提示
公开(公告)号：US07996682B2
公开(公告)日：2011-08-09
申请号：US11251946
申请日：2005-10-17
申请人： Klaus U. Schutz , Matthew W. Thomlinson , Scott A. Field
发明人： Klaus U. Schutz , Matthew W. Thomlinson , Scott A. Field
IPC分类号： G06F21/00
CPC分类号： G06F21/57
摘要： Techniques are described herein for securely prompting a user to confirm sensitive operations, input sensitive information or the like. The techniques include receiving or intercepting calls from applications to prompting routines. When a call to a prompting routine is received or intercepted a hint may be provided to the user to switch to a secure desktop. When the user switches from the user desktop to the secure desktop the particular prompt is displayed. The input to the prompt is received on the secure desktop and verified to have been provided by the user. The user input or a representation of the input is then returned to the application running on the user desktop. Using these techniques, interception of prompting messages by malware does not result in sensitive information being revealed. Furthermore, spoofing of new messages by malware does not lead to the dismissal of critical prompting.
摘要翻译：这里描述了用于安全地提示用户确认敏感操作，输入敏感信息等的技术。这些技术包括接收或拦截来自应用程序的呼叫以提示例程。当接收或拦截对提示例程的调用时，可以向用户提供切换到安全桌面的提示。当用户从用户桌面切换到安全桌面时，会显示特定的提示。在安全桌面上接收到提示的输入，并验证其已由用户提供。用户输入或输入的表示然后返回到在用户桌面上运行的应用程序。使用这些技术，通过恶意软件拦截提示消息不会导致敏感信息被显示。此外，恶意软件欺骗新消息不会导致关键提示被解雇。

5. 发明授权

US07783573B2 Performance optimized smartcard transaction management 有权
标题翻译：性能优化智能卡交易管理
公开(公告)号：US07783573B2
公开(公告)日：2010-08-24
申请号：US10756045
申请日：2004-01-13
申请人： Daniel C. Griffin , Eric C. Perlin , Klaus U. Schutz
发明人： Daniel C. Griffin , Eric C. Perlin , Klaus U. Schutz
IPC分类号： G06Q99/00
CPC分类号： G06F9/5027 , G06F2209/5016 , G06Q20/10
摘要： Methods and apparatuses are provided for use with smartcards or other like shared computing resources. By selectively granting exclusive use to a requesting entity for a period of time, performance is improved by reducing unnecessary redundant overhead data, communication, storage and/or processing for an applicable series of transactions associated with a granted access request operation.
摘要翻译：提供了与智能卡或其他类似的共享计算资源一起使用的方法和装置。通过选择性地向请求实体授权一段时间，通过减少对与授权的访问请求操作相关联的一系列适用的事务的不必要的冗余开销数据，通信，存储和/或处理来提高性能。

6. 发明授权

US07079648B2 Tester of cryptographic service providers 失效
标题翻译：加密服务提供商测试人员
公开(公告)号：US07079648B2
公开(公告)日：2006-07-18
申请号：US09876697
申请日：2001-06-07
申请人： Daniel C. Griffin , Monica I. Ene-Pietrosanu , Klaus U. Schutz , Glenn D. Pittaway
发明人： Daniel C. Griffin , Monica I. Ene-Pietrosanu , Klaus U. Schutz , Glenn D. Pittaway
IPC分类号： H04K1/00 , G06F9/44
CPC分类号： G06F21/577
摘要： An implementation of a technology, described herein, for ensuring reliability, stability, and adherence to a given set of security conformance standards for cryptographic program modules. An implementation of the present claimed invention is a debugging and testing tool for customized cryptographic service providers (“CSPs”). A CSP has a cryptographic type and functionality level within that type. The CSPs are tested based various test classifications. The crypto sub-system of the OS has a set of application program interface (“API”) that manage cryptographic procedures called “CryptoAPI.” For a CSP to be considered reliable, stable, and in compliance with a given set of security conformance standards, it must successfully operate with the CryptoAPI in a reliable and stable manner and it must react appropriately for the given security conformance standards. The CSPs are tested in order of increasing complexity/sophistication in functionality from simplest to most complex. This abstract itself is not intended to limit the scope of this patent. The scope of the present invention is pointed out in the appending claims.
摘要翻译：本文描述的技术的实现，用于确保加密程序模块的给定的一组安全一致性标准的可靠性，稳定性和遵守性。本发明的实现是用于定制加密服务提供商（“CSP”）的调试和测试工具。 CSP具有该类型的加密类型和功能级别。根据各种测试分类测试CSP。 OS的加密子系统具有一组应用程序接口（“API”），用于管理称为“CryptoAPI”的加密过程。 CSP被认为是可靠的，稳定的，并且符合给定的安全一致性标准，它必须以可靠和稳定的方式成功运行CryptoAPI，并且必须对给定的安全一致性标准做出适当的反应。按照从简单到最复杂的功能越来越复杂/复杂化的顺序对CSP进行了测试。本摘要本身并不旨在限制本专利的范围。在所附权利要求中指出了本发明的范围。

7. 发明授权

US06938244B1 Interlaced protocol for smart card application development 失效
标题翻译：用于智能卡应用开发的隔行协议
公开(公告)号：US06938244B1
公开(公告)日：2005-08-30
申请号：US09551957
申请日：2000-04-19
申请人： Eric C. Perlin , Vinay Deo , David Milstein , Gilad Odinak , Scott B. Guthery , Klaus U. Schutz
发明人： Eric C. Perlin , Vinay Deo , David Milstein , Gilad Odinak , Scott B. Guthery , Klaus U. Schutz
IPC分类号： G06F11/36 , G06F9/44
CPC分类号： G06F11/3656 , G06Q20/105 , G06Q20/401
摘要： An integrated circuit (IC) card is presented comprising an input/output (I/O) interface and a smart card development interface (SCDI), coupled to the I/O interface, to receive and identify debug frames interlaced within a normal communication flow between the IC card and a host system.
摘要翻译：提出了一种集成电路（IC）卡，其包括耦合到I / O接口的输入/输出（I / O）接口和智能卡开发接口（SCDI），以接收和识别在正常通信流中隔行扫描的调试帧在IC卡和主机系统之间。

8. 发明授权

US08788673B2 Systems and methods for providing security through sessions 有权
标题翻译：通过会话提供安全性的系统和方法
公开(公告)号：US08788673B2
公开(公告)日：2014-07-22
申请号：US10939954
申请日：2004-09-13
申请人： Ara Bernardi , Klaus U. Schutz , Richard B. Ward , Sriram Sampath
发明人： Ara Bernardi , Klaus U. Schutz , Richard B. Ward , Sriram Sampath
IPC分类号： G06F15/16
CPC分类号： G06F21/575
摘要： Systems and methods are described for providing security through sessions. In an implementation, a method includes initiating a session, by an operating system, in which operating system services are executable and initiating another session, by the operating system, in which a user-interactive application is executable.
摘要翻译：描述了通过会话提供安全性的系统和方法。在一个实现中，一种方法包括由操作系统启动会话，操作系统在操作系统中操作系统服务是可执行的并且由用户交互应用可执行的操作系统发起另一个会话。

9. 发明授权

US08005959B2 Systems and methods for providing security through sessions 有权
标题翻译：通过会话提供安全性的系统和方法
公开(公告)号：US08005959B2
公开(公告)日：2011-08-23
申请号：US10963440
申请日：2004-10-12
申请人： Ara Bernardi , Klaus U. Schutz , Richard B. Ward , Sriram Sampath
发明人： Ara Bernardi , Klaus U. Schutz , Richard B. Ward , Sriram Sampath
IPC分类号： G06F15/16
CPC分类号： G06F21/575
摘要： Systems and methods are described for providing security through sessions. In an implementation, a method includes initiating a session, by an operating system, in which operating system services are executable and initiating another session, by the operating system, in which a user-interactive application is executable.
摘要翻译：描述了通过会话提供安全性的系统和方法。在一个实现中，一种方法包括由操作系统启动会话，操作系统在操作系统中操作系统服务是可执行的并且由用户交互应用可执行的操作系统发起另一个会话。

10. 发明授权

US07636851B2 Providing user on computer operating system with full privileges token and limited privileges token 有权
标题翻译：在计算机操作系统上为用户提供完全权限令牌和有限权限令牌
公开(公告)号：US07636851B2
公开(公告)日：2009-12-22
申请号：US11171744
申请日：2005-06-30
申请人： Jeffrey B. Hamblin , Jonathan Schwartz , Kedarnath A. Dubhashi , Klaus U. Schutz , Peter T. Brundrett , Richard B. Ward , Thomas C. Jones
发明人： Jeffrey B. Hamblin , Jonathan Schwartz , Kedarnath A. Dubhashi , Klaus U. Schutz , Peter T. Brundrett , Richard B. Ward , Thomas C. Jones
IPC分类号： G06F21/00
CPC分类号： G06F21/62 , G06F2221/2145 , G06F2221/2149
摘要： An operating system for a computing device has a first session for a user that includes a first base process that has a first privileges token attached thereto. The first privileges token includes substantially a full set of privileges of the user on the operating system. The operating system also has a second session for the user that includes a second base process that has a second privileges token attached thereto. The second privileges token is derived from the first privileges token and includes only a minimum set of privileges of the user on the operating system. Thus, the second, limited token does not have all privileges associated with the first, full token but instead has a limited set of privileges and not extra privileges that could be employed to take actions that would be harmful, deceptive, or malicious.
摘要翻译：用于计算设备的操作系统具有用于用户的第一会话，所述第一会话包括具有连接到其的第一权限令牌的第一基本进程。第一权限令牌在操作系统上基本上包括用户的一整套特权。操作系统还具有用户的第二会话，其包括具有附加到其的第二权限令牌的第二基本进程。第二个权限令牌是从第一个权限令牌导出的，并且仅包含操作系统上用户的一组最小权限。因此，第二个有限令牌不具有与第一个完整令牌相关联的所有权限，而是具有一组有限的权限，而不是可以用于采取有害，欺骗性或恶意行为的额外权限。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式