专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明申请

US20080005359A1 Method and apparatus for OS independent platform based network access control 审中-公开
标题翻译：基于OS独立平台的网络访问控制方法和装置
公开(公告)号：US20080005359A1
公开(公告)日：2008-01-03
申请号：US11480629
申请日：2006-06-30
申请人： Hormuzd M. Khosravi , Dylan Larson , Alan D. Ross , Uri Blumenthal , Ahuva Kroizer , Avigdor Eldar , Karanvir Grewal
发明人： Hormuzd M. Khosravi , Dylan Larson , Alan D. Ross , Uri Blumenthal , Ahuva Kroizer , Avigdor Eldar , Karanvir Grewal
IPC分类号： G06F15/16
CPC分类号： H04L63/06 , H04L63/08 , H04L63/10
摘要： Secure enterprise network communication technology provides improved authentication prior to granting network access of enterprise host platforms with the network devices via a backend infrastructure.
摘要翻译：在通过后端基础设施授予企业主机平台与网络设备的网络访问之前，安全的企业网络通信技术提供了改进的认证。

2. 发明申请

US20120226903A1 SECURE PLATFORM VOUCHER SERVICE FOR SOFTWARE COMPONENTS WITHIN AN EXECUTION ENVIRONMENT 有权
标题翻译：执行环境中软件组件的安全平台提供服务
公开(公告)号：US20120226903A1
公开(公告)日：2012-09-06
申请号：US13412382
申请日：2012-03-05
申请人： David Durham , Hormuzd M. Khosravi , Uri Blumenthal , Men Long
发明人： David Durham , Hormuzd M. Khosravi , Uri Blumenthal , Men Long
IPC分类号： H04L29/06
CPC分类号： G06F21/54 , H04L9/004 , H04L9/3236 , H04L63/123 , H04L63/126 , H04L63/20 , H04L2209/60
摘要： Apparatuses, articles, methods, and systems for secure platform voucher service for software within an execution environment. An embodiment includes the ability for a Virtual Machine Monitor, Operating System Monitor, or other underlying platform capability to restrict memory regions for access only by authenticated, authorized and verified software components. A provisioning remote entity or gateway only needs to know a platform's public key or certificate hierarchy to receive verification for any component. The verification or voucher helps assure to the remote entity that no malware running in the platform or on the network will have access to provisioned material. The underlying platform to lock and unlock secrets on behalf of the authenticated/authorized/verified software component provided in protected memory regions only accessible to the software component.
摘要翻译：用于执行环境中的软件的安全平台凭证服务的设备，物品，方法和系统。一个实施例包括虚拟机监视器，操作系统监视器或其他底层平台功能的能力，以限制仅通过认证的，授权和验证的软件组件进行访问的存储器区域。配置远程实体或网关只需要知道平台的公钥或证书层次结构来接收任何组件的验证。验证或凭证有助于向远程实体确保在平台或网络上运行的恶意软件无法访问配置的资料。代表在受保护的内存区域中提供的经认证/授权/验证的软件组件的软件组件可访问的基础平台来锁定和解锁秘密。

3. 发明授权

US08132003B2 Secure platform voucher service for software components within an execution environment 有权
标题翻译：在执行环境中的软件组件的安全平台凭证服务
公开(公告)号：US08132003B2
公开(公告)日：2012-03-06
申请号：US11864573
申请日：2007-09-28
申请人： David Durham , Hormuzd M. Khosravi , Uri Blumenthal , Men Long
发明人： David Durham , Hormuzd M. Khosravi , Uri Blumenthal , Men Long
IPC分类号： H04L29/06
CPC分类号： G06F21/54 , H04L9/004 , H04L9/3236 , H04L63/123 , H04L63/126 , H04L63/20 , H04L2209/60
摘要： Embodiments of apparatus, articles, methods, and systems for secure platform voucher service for software components within an execution environment are generally described herein. An embodiment includes the ability for a Virtual Machine Monitor, Operating System Monitor, or other underlying platform capability to restrict memory regions for access only by specifically authenticated, authorized and verified software components, even when part of an otherwise compromised operating system environment. A provisioning remote entity or gateway only needs to know a platform's public key or certificate hierarchy in order to receive verification proof for any component in the platform. The verification proof or voucher helps to assure to the remote entity that no man-in-the-middle, rootkit, spyware or other malware running in the platform or on the network will have access to the provisioned material. The underlying platform to lock and unlock secrets on behalf of the authenticated/authorized/verified software component provided in protected memory regions only accessible to the authenticated/authorized/verified software component. Other embodiments may be described and claimed.
摘要翻译：这里一般地描述用于执行环境中的软件组件的安全平台凭单服务的装置，物品，方法和系统的实施例。一个实施例包括虚拟机监视器，操作系统监视器或其他底层平台功能的能力，以限制存储器区域，以便仅通过特定认证的，授权的和已验证的软件组件进行访问，即使在其他受损的操作系统环境的一部分。配置远程实体或网关只需要知道平台的公钥或证书层次结构，以便接收平台中任何组件的验证证明。验证证明或凭证有助于向远程实体确保在平台或网络上运行的中间人，rootkit，间谍软件或其他恶意软件将无法访问所提供的资料。代表被保护的内存区域中提供的经过身份验证/授权/验证的软件组件的锁定和解锁秘密的底层平台只能由经过身份验证/授权/验证的软件组件访问。可以描述和要求保护其他实施例。

4. 发明授权

US08499151B2 Secure platform voucher service for software components within an execution environment 有权
标题翻译：在执行环境中的软件组件的安全平台凭证服务
公开(公告)号：US08499151B2
公开(公告)日：2013-07-30
申请号：US13412382
申请日：2012-03-05
申请人： David Durham , Hormuzd M. Khosravi , Uri Blumenthal , Men Long
发明人： David Durham , Hormuzd M. Khosravi , Uri Blumenthal , Men Long
IPC分类号： H04L29/06
CPC分类号： G06F21/54 , H04L9/004 , H04L9/3236 , H04L63/123 , H04L63/126 , H04L63/20 , H04L2209/60
摘要： Apparatuses, articles, methods, and systems for secure platform voucher service for software within an execution environment. An embodiment includes the ability for a Virtual Machine Monitor, Operating System Monitor, or other underlying platform capability to restrict memory regions for access only by authenticated, authorized and verified software components. A provisioning remote entity or gateway only needs to know a platform's public key or certificate hierarchy to receive verification for any component. The verification or voucher helps assure to the remote entity that no malware running in the platform or on the network will have access to provisioned material. The underlying platform to lock and unlock secrets on behalf of the authenticated/authorized/verified software component provided in protected memory regions only accessible to the software component.
摘要翻译：用于执行环境中的软件的安全平台凭证服务的设备，物品，方法和系统。一个实施例包括虚拟机监视器，操作系统监视器或其他底层平台功能的能力，以限制仅通过认证的，授权和验证的软件组件进行访问的存储器区域。配置远程实体或网关只需要知道平台的公钥或证书层次结构来接收任何组件的验证。验证或凭证有助于向远程实体确保在平台或网络上运行的恶意软件无法访问配置的资料。代表在受保护的内存区域中提供的经认证/授权/验证的软件组件的软件组件可访问的基础平台来锁定和解锁秘密。

5. 发明授权

US08205238B2 Platform posture and policy information exchange method and apparatus 有权
标题翻译：平台姿势和政策信息交换方法和装置
公开(公告)号：US08205238B2
公开(公告)日：2012-06-19
申请号：US11393486
申请日：2006-03-30
申请人： Uri Blumenthal , Hormuzd Khosravi , Karanvir Grewal
发明人： Uri Blumenthal , Hormuzd Khosravi , Karanvir Grewal
IPC分类号： H04L29/06
CPC分类号： H04L63/0227 , H04L63/101
摘要： Transport agnostic, secure communication protocol for transmitting host platform posture information to the Network Access Control Server or PDP (Policy Decision Point) and for receiving policy information to be enforced on the trusted host platform and respective applications for data processing and communication are described herein.
摘要翻译：这里描述了用于将主机平台姿势信息发送到网络访问控制服务器或PDP（策略决策点）并且用于接收在可信主机平台上执行的策略信息和用于数据处理和通信的相应应用的传输不可知的安全通信协议。

6. 发明申请

US20070240197A1 Platform posture and policy information exchange method and apparatus 有权
标题翻译：平台姿势和政策信息交换方法和装置
公开(公告)号：US20070240197A1
公开(公告)日：2007-10-11
申请号：US11393486
申请日：2006-03-30
申请人： Uri Blumenthal , Hormuzd Khosravi , Karanvir Grewal
发明人： Uri Blumenthal , Hormuzd Khosravi , Karanvir Grewal
IPC分类号： H04L9/00
CPC分类号： H04L63/0227 , H04L63/101
摘要： Transport agnostic, secure communication protocol for transmitting host platform posture information to the Network Access Control Server or PDP (Policy Decision Point) and for receiving policy information to be enforced on the trusted host platform and respective applications for data processing and communication are described herein.
摘要翻译：这里描述了用于将主机平台姿势信息发送到网络访问控制服务器或PDP（策略决策点）并且用于接收在可信主机平台上执行的策略信息和用于数据处理和通信的相应应用的传输不可知的安全通信协议。

7. 发明申请

US20090165099A1 PROVISIONING ACTIVE MANAGEMENT TECHNOLOGY (AMT) IN COMPUTER SYSTEMS 有权
标题翻译：在计算机系统中提供主动管理技术（AMT）
公开(公告)号：US20090165099A1
公开(公告)日：2009-06-25
申请号：US11963062
申请日：2007-12-21
申请人： Avigdor Eldar , Howard C. Herbert , Purushottam Goel , Uri Blumenthal , David Hines , Carey Smith
发明人： Avigdor Eldar , Howard C. Herbert , Purushottam Goel , Uri Blumenthal , David Hines , Carey Smith
IPC分类号： G06F21/00
CPC分类号： H04L41/0869 , H04L41/046 , H04L41/0806
摘要： Active management technology (AMT) may be provisioned in a client device automatically, which may provide a secure connection between the provisioning server and the client device. The client device comprising the active management technology may support zero-touch provisioning and one-touch provisioning.
摘要翻译：主动管理技术（AMT）可以自动地在客户端设备中提供，这可以在配置服务器和客户端设备之间提供安全的连接。包括主动管理技术的客户端设备可以支持零接触供应和一键供应。

8. 发明申请

US20070005985A1 Techniques for password attack mitigation 失效
标题翻译：减轻密码攻击的技术
公开(公告)号：US20070005985A1
公开(公告)日：2007-01-04
申请号：US11174126
申请日：2005-06-30
申请人： Avigdor Eldar , Itamar Sharoni , Tsippy Mendelson , Uri Blumenthal
发明人： Avigdor Eldar , Itamar Sharoni , Tsippy Mendelson , Uri Blumenthal
IPC分类号： H04L9/00
CPC分类号： H04L63/083 , G06Q20/206 , G06Q20/3674 , G06Q20/4012 , H04L63/1441 , H04L63/1458
摘要： Apparatus, system, and method having a first counter to record a number of invalid authentication requests, a first timer to set a first time period based on a value of the first counter, and an authentication module associated with the first counter and the first timer to receive an initial authentication request that includes a username and when said username is invalid, the module is to invalidate any subsequent authentication requests under the username during the first time period regardless of whether the subsequent requests includes a valid username. The system further includes a communication medium. The method includes receiving an authentication request with new information in a first session, validating the new information, and caching the validated new information in the first session.
摘要翻译：具有记录多个无效认证请求的第一计数器的装置，系统和方法，基于第一计数器的值设置第一时间段的第一定时器和与第一计数器和第一定时器相关联的认证模块为了接收包括用户名的初始认证请求，并且当所述用户名无效时，该模块将使第一时间段内的用户名下的任何后续认证请求无效，而不管后续请求是否包括有效的用户名。该系统还包括通信介质。该方法包括在第一会话中接收具有新信息的认证请求，验证新信息，以及在第一会话中缓存经验证的新信息。

9. 发明授权

US08438618B2 Provisioning active management technology (AMT) in computer systems 有权
标题翻译：在计算机系统中配置主动管理技术（AMT）
公开(公告)号：US08438618B2
公开(公告)日：2013-05-07
申请号：US11963062
申请日：2007-12-21
申请人： Avigdor Eldar , Howard C. Herbert , Purushottam Goel , Uri Blumenthal , David Hines , Carey Smith
发明人： Avigdor Eldar , Howard C. Herbert , Purushottam Goel , Uri Blumenthal , David Hines , Carey Smith
IPC分类号： H04L29/06
CPC分类号： H04L41/0869 , H04L41/046 , H04L41/0806
摘要： Active management technology (AMT) may be provisioned in a client device automatically, which may provide a secure connection between the provisioning server and the client device. The client device comprising the active management technology may support zero-touch provisioning and one-touch provisioning.
摘要翻译：主动管理技术（AMT）可以自动地在客户端设备中提供，这可以在配置服务器和客户端设备之间提供安全的连接。包括主动管理技术的客户端设备可以支持零接触供应和一键供应。

10. 发明授权

US08132018B2 Techniques for password attack mitigation 失效
标题翻译：减轻密码攻击的技术
公开(公告)号：US08132018B2
公开(公告)日：2012-03-06
申请号：US11174126
申请日：2005-06-30
申请人： Avigdor Eldar , Itamar Sharoni , Tsippy Mendelson , Uri Blumenthal
发明人： Avigdor Eldar , Itamar Sharoni , Tsippy Mendelson , Uri Blumenthal
IPC分类号： G06F21/00
CPC分类号： H04L63/083 , G06Q20/206 , G06Q20/3674 , G06Q20/4012 , H04L63/1441 , H04L63/1458
摘要： Apparatus, system, and method having a first counter to record a number of invalid authentication requests, a first timer to set a first time period based on a value of the first counter, and an authentication module associated with the first counter and the first timer to receive an initial authentication request that includes a username and when said username is invalid, the module is to invalidate any subsequent authentication requests under the username during the first time period regardless of whether the subsequent requests includes a valid username. The system further includes a communication medium. The method includes receiving an authentication request with new information in a first session, validating the new information, and caching the validated new information in the first session.
摘要翻译：具有记录多个无效认证请求的第一计数器的装置，系统和方法，基于第一计数器的值设置第一时间段的第一定时器和与第一计数器和第一定时器相关联的认证模块为了接收包括用户名的初始认证请求，并且当所述用户名无效时，该模块将在第一时间段期间使用户名下的任何后续认证请求无效，而不管后续请求是否包括有效的用户名。该系统还包括通信介质。该方法包括在第一会话中接收具有新信息的认证请求，验证新信息，以及在第一会话中缓存经验证的新信息。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式