专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明申请

US20100202609A1 SECURING MULTIFACTOR SPLIT KEY ASYMMETRIC CRYPTO KEYS 有权
标题翻译：安全多用户分离关键不对称CRYPTO KEYS
公开(公告)号：US20100202609A1
公开(公告)日：2010-08-12
申请号：US12729469
申请日：2010-03-23
申请人： Ravinderpal Singh Sandhu , Brett Jason Schoppert , Ravi Ganesan , Mihir Bellare , Colin Joseph deSa
发明人： Ravinderpal Singh Sandhu , Brett Jason Schoppert , Ravi Ganesan , Mihir Bellare , Colin Joseph deSa
IPC分类号： H04L9/28 , H04L9/00
CPC分类号： H04L9/3228 , H04L9/0825 , H04L9/0894 , H04L9/3271
摘要： Techniques for securing an asymmetric crypto-key having a public key and a split private key with multiple private portions are provided. A first one of multiple factors is stored. All of the factors are under the control of a user and all are required to generate a first private portion of the split private key. The first private portion not stored in a persistent state. A second private portion of the split private key under control of an entity other than the user is also stored. The first private portion and the second private portion are combinable to form a complete private portion.
摘要翻译：提供了用于保护具有公开密钥的非对称密钥和具有多个私有部分的分离私钥的技术。存储多个因素中的第一个。所有因素都处于用户的控制之下，所有这些因素都需要生成分割私钥的第一私人部分。第一个私有部分未存储在持久状态。除了用户之外的实体的控制下，分割私钥的第二私人部分也被存储。第一私人部分和第二私人部分可组合以形成完整的私人部分。

2. 发明授权

US07734045B2 Multifactor split asymmetric crypto-key with persistent key security 有权
标题翻译：具有持久密钥安全性的多因素拆分非对称密钥
公开(公告)号：US07734045B2
公开(公告)日：2010-06-08
申请号：US11381829
申请日：2006-05-05
申请人： Ravinderpal Singh Sandhu , Brett Jason Schoppert , Ravi Ganesan , Mihir Bellare , Colin Joseph Desa
发明人： Ravinderpal Singh Sandhu , Brett Jason Schoppert , Ravi Ganesan , Mihir Bellare , Colin Joseph Desa
IPC分类号： H04L9/00 , H04L29/06
CPC分类号： H04L9/302
摘要： A processor generates an asymmetric crypto-key, such as an RSA crypto-key, which is associated with the user and includes a private key and a public key. It computes a first key portion based on a stored random number generation function, which has one or more constants such as a salt and/or iteration count, and a first value of a constant, and a second key portion based on the computed first key portion and one of the private key and the public key. It additionally computes another first key portion based on the stored random number generation function and a second value of that constant, and another second key portion based on the computed other first key portion and the one key. The computed first and second key portions and the computed other first and second key portions form first and second splits of the one key of the asymmetric crypto-key.
摘要翻译：处理器生成与用户相关联并包括私钥和公共密钥的非对称加密密钥，例如RSA密钥。它基于存储的随机数生成函数来计算第一密钥部分，该函数具有一个或多个常数，例如盐和/或迭代计数，以及常数的第一值，以及基于计算出的第一密钥的第二密钥部分部分和私钥和公钥之一。另外基于所存储的随机数生成函数和该常数的第二值，另外基于计算的其他第一密钥部分和一个密钥另外计算第二密钥部分。所计算的第一和第二密钥部分和计算的其他第一和第二密钥部分形成非对称密钥的一个密钥的第一和第二拆分。

3. 发明授权

US08099607B2 Asymmetric crypto-graphy with rolling key security 有权
标题翻译：具有滚动密钥安全性的不对称密码
公开(公告)号：US08099607B2
公开(公告)日：2012-01-17
申请号：US11332204
申请日：2006-01-17
申请人： Ravinderpal Singh Sandhu , Brett Jason Schoppert , Ravi Ganesan , Mihir Bellare , Colin Joseph deSa
发明人： Ravinderpal Singh Sandhu , Brett Jason Schoppert , Ravi Ganesan , Mihir Bellare , Colin Joseph deSa
IPC分类号： G06F21/00 , H04L9/08
CPC分类号： H04L9/085 , H04L9/302 , H04L9/3218 , H04L2209/80
摘要： A system for securing information, includes a processor and storage device. The storage device stores information encrypted with one of a first private rolling key and a first public rolling key of an a first asymmetric rolling crypto-key, along with the one first rolling key. The processor has the logic to direct transmission, via a network, of proof of knowledge of the stored one first rolling key to authenticate a user, and of a request for the other of the first private rolling key and the first public rolling key. The processor receives the other first rolling key via the network, responsive to the directed transmission. The processor then decrypts the stored encrypted information with the received other first rolling key, and generates a second asymmetric rolling crypto-key having a second private rolling key and a second public rolling key. The processor encrypts the information with one of the second private rolling key and the second public rolling key. The processor also directs transmission of the other of the second private rolling key and the second public rolling key via the network. The storage device stores the information encrypted with the one second rolling key and the one second rolling key itself.
摘要翻译：一种用于保护信息的系统，包括处理器和存储设备。存储装置与第一滚动键一起存储用第一非对称滚动加密密钥的第一专用滚动键和第一公开滚动键加密的信息。处理器具有通过网络直接传送所存储的一个第一滚动密钥的认证证明以验证用户的逻辑，以及对第一私人滚动密钥和第一公共滚动密钥中的另一个的请求的逻辑。响应于定向传输，处理器经由网络接收另一第一滚动键。然后处理器用接收到的其他第一滚动密钥对存储的加密信息进行解密，并且生成具有第二专用滚动键和第二公共滚动键的第二非对称滚动加密密钥。处理器使用第二专用滚动键和第二公共滚动键之一来加密信息。处理器还通过网络指导第二私人滚动键和第二公共滚动键中的另一个的传输。存储装置存储利用一个第二滚动键和一个第二滚动键本身加密的信息。

4. 发明授权

US07630493B2 Multiple factor private portion of an asymmetric key 有权
标题翻译：多重因子私有部分的非对称密钥
公开(公告)号：US07630493B2
公开(公告)日：2009-12-08
申请号：US11056120
申请日：2005-02-14
申请人： Ravinderpal Singh Sandhu , Brett Jason Schoppert , Ravi Ganesan , Mihir Bellare , Colin Joseph deSa
发明人： Ravinderpal Singh Sandhu , Brett Jason Schoppert , Ravi Ganesan , Mihir Bellare , Colin Joseph deSa
IPC分类号： H04L9/00
CPC分类号： H04L63/0442 , H04L9/0847 , H04L9/3247 , H04L2209/80
摘要： Techniques for generating a private portion of a split private key of an asymmetric key pair are provided. Multiple factors upon which the private portion of the split private key is based are received. Each of these multiple factors is under control of a user associated with the asymmetric key pair. Multiple cryptographic operations are then performed using the received multiple factors to generate the private portion.
摘要翻译：提供了用于生成非对称密钥对的分离私钥的专用部分的技术。收到分离私钥的私有部分所基于的多个因素。这些多个因素中的每一个都在与非对称密钥对相关联的用户的控制之下。然后使用所接收的多个因素来执行多个加密操作以产生私有部分。

5. 发明授权

US07571471B2 Secure login using a multifactor split asymmetric crypto-key with persistent key security 有权
标题翻译：使用具有持久密钥安全性的多因素拆分非对称密钥进行安全登录
公开(公告)号：US07571471B2
公开(公告)日：2009-08-04
申请号：US11381878
申请日：2006-05-05
申请人： Ravinderpal Singh Sandhu , Brett Jason Schoppert , Ravi Ganesan , Mihir Bellare , Colin Joseph Desa
发明人： Ravinderpal Singh Sandhu , Brett Jason Schoppert , Ravi Ganesan , Mihir Bellare , Colin Joseph Desa
IPC分类号： H04L9/32
CPC分类号： H04L9/3218 , H04L9/0825 , H04L9/0863
摘要： A first network station encrypts a first message with a first key portion from a first split of a private or public key of a user's asymmetric crypto-key and transmits it during a network session. The second network station decrypts the transmitted encrypted first message with a second key portion from the first split of the one key of the asymmetric crypto-key to initially authenticate the user for access, during the session, to store information. The first network station also encrypts a second message with another first key portion from a second split of that one key, and subsequently transmits it during the same network session. The second network station decrypts the subsequently transmitted encrypted second message with another second key portion from the second split of that same one key to subsequently authenticate the user for access, during the same session, to other stored_information.
摘要翻译：第一网络站利用来自用户非对称密钥的私钥或公钥的第一次拆分的第一密钥部分加密第一消息，并在网络会话期间发送它。第二网络站利用来自非对称密钥的一个密钥的第一次拆分的第二密钥部分解密发送的加密第一消息，以在会话期间初始认证用户访问以存储信息。第一网络台还用来自该一个密钥的第二分组的另一个第一密钥部分来加密第二个消息，并且随后在相同的网络会话期间发送它。第二网络站利用来自相同一个密钥的第二次拆分的另一个第二密钥部分来解密随后发送的加密第二消息，随后在同一会话期间认证用户访问其他存储信息。

6. 发明申请

US20080172730A1 Enhanced security for user instructions 有权
标题翻译：增强用户指令的安全性
公开(公告)号：US20080172730A1
公开(公告)日：2008-07-17
申请号：US11652616
申请日：2007-01-12
申请人： Ravinderpal Singh Sandhu , Ravi Ganesan
发明人： Ravinderpal Singh Sandhu , Ravi Ganesan
IPC分类号： H04L9/32
CPC分类号： H04L63/06 , H04L63/08 , H04L63/1441
摘要： A user instruction communicated over a communications network via a first communication channel to a relying entity for action, is confirmed by having a trusted entity receive verification information corresponding to the communicated user instruction from the user over the network via a second communication channel and/or verification information corresponding to a received user instruction from the relying entity via a third communication channel. If verification information is received from only the user, it is communicated to the relying entity. If from both, the trusted entity verifies the received user instruction based on the received verification information. If from only the relying entity, it is communicated to the user.
摘要翻译：经由第一通信信道通过第一通信信道通信到依赖实体进行动作的用户指令通过使受信实体经由第二通信信道从网络经受来自用户的所传送的用户指令的对应的验证信息来确认，和/或通过第三通信信道从依赖实体接收的用户指令对应的验证信息。如果仅从用户接收到验证信息，则将其传送给依赖实体。如果来自两者，则可信实体基于接收到的验证信息来验证接收到的用户指令。如果只从依赖实体传送给用户。

7. 发明授权

US07734912B2 Secure login using single factor split key asymmetric cryptography and an augmenting factor 有权
标题翻译：使用单因素分裂密钥非对称加密和增强因子的安全登录
公开(公告)号：US07734912B2
公开(公告)日：2010-06-08
申请号：US11421088
申请日：2006-05-31
申请人： Ravi Ganesan , Ravinderpal Singh Sandhu , Andrew Paul Cottrell , Kyle Austin
发明人： Ravi Ganesan , Ravinderpal Singh Sandhu , Andrew Paul Cottrell , Kyle Austin
IPC分类号： H04L29/00
CPC分类号： H04L9/3226 , H04L9/0822 , H04L9/0825
摘要： A user network station transmits a cookie including a user identifier and an augmenting factor transformed with one key of a first asymmetric crypto-key or with a symmetric crypto-key. A authenticating entity network station recovers the augmenting factor from the transformed augmenting factor with the other key of the first asymmetric crypto-key or with the symmetric crypto-key, and transmits a customized login page corresponding to the user identifier included in the received cookie. The user network station transmits a factor responsive to the transmitted customized login page. The authenticating entity network station generates a first key portion based on the transmitted factor, and validates the generated first key portion based on a second key portion of one key of a second asymmetric crypto-key associated with the user and on the other key of the second asymmetric crypto-key, and the recovered augmenting factor, to thereby authenticate the user.
摘要翻译：用户网络站发送包含用第一非对称密钥或对称密钥的一个密钥转换的用户标识符和扩充因子的cookie。认证实体网络站利用第一非对称密钥或对称密钥的另一个密钥从变换的扩充因子中恢复扩充因子，并发送与包含在接收到的cookie中的用户标识符相对应的定制登录页面。用户网络站发送响应于所发送的定制登录页面的因素。认证实体网站基于所发送的因子生成第一密钥部分，并且基于与用户相关联的第二非对称密钥的一个密钥的第二密钥部分和所述第二密钥部分的另一个密钥来验证生成的第一密钥部分第二非对称密钥和恢复的扩充因子，从而认证用户。

8. 发明授权

US07386720B2 Authentication protocol using a multi-factor asymmetric key pair 有权
标题翻译：使用多因素非对称密钥对的认证协议
公开(公告)号：US07386720B2
公开(公告)日：2008-06-10
申请号：US11055988
申请日：2005-02-14
申请人： Ravinderpal Singh Sandhu , Brett Jason Schoppert , Ravi Ganesan , Mihir Bellare , Colin Joseph Desa
发明人： Ravinderpal Singh Sandhu , Brett Jason Schoppert , Ravi Ganesan , Mihir Bellare , Colin Joseph Desa
IPC分类号： H04L9/00
CPC分类号： H04L9/3271 , H04L9/085
摘要： Techniques for user authentication based upon an asymmetric key pair having a public key and a split private key are provided. A first portion of the split private key is generated based upon multiple factors under control of the user. The factors include a password. A challenge is cryptographically combined with a first one of the multiple factors, but not the user password, to form a first message. The first message is transformed with the generated first portion to form a second message, which is then sent to an authentication entity. The sent second message is transformed to authenticate the user by proving direct verification of user control of the first factor.
摘要翻译：提供了基于具有公共密钥和分离私钥的非对称密钥对的用户认证技术。基于在用户的控制下的多个因素来生成分割私钥的第一部分。因素包括密码。挑战是加密地与多个因素中的第一个而不是用户密码相结合以形成第一个消息。用生成的第一部分来转换第一消息以形成第二消息，然后将其发送到认证实体。通过证明第一因素的用户控制的直接验证，转发所发送的第二消息来认证用户。

9. 发明申请

US20060184786A1 Technique for asymmetric crypto-key generation 有权
公开(公告)号：US20060184786A1
公开(公告)日：2006-08-17
申请号：US11055986
申请日：2005-02-14
申请人： Ravinderpal Singh Sandhu , Brett Schoppert , Ravi Ganesan , Mihir Bellare , Colin deSa
发明人： Ravinderpal Singh Sandhu , Brett Schoppert , Ravi Ganesan , Mihir Bellare , Colin deSa
IPC分类号： H04L9/00
CPC分类号： H04L9/085
摘要： Techniques for generating a multi-factor asymmetric key pair having a public key and split private key with multiple private portions, at least one of the multiple portions being a multiple factor private key portion, are provided. First and second asymmetric key pairs are generated, each having a private key and a public key. A text string and the first private key are cryptographically combined to make a first private key portion of the split private key. This first private key portion is a multiple factor private key portion. A second private key portion of the split private key is generated based upon the generated first private key portion and the second private key.

10. 发明授权

US08407475B2 Augmented single factor split key asymmetric cryptography-key generation and distributor 有权
标题翻译：增强单因素分裂密钥非对称加密 - 密钥生成和分发
公开(公告)号：US08407475B2
公开(公告)日：2013-03-26
申请号：US12958496
申请日：2010-12-02
申请人： Ravi Ganesan , Ravinderpal Singh Sandhu , Andrew Paul Cottrell , Kyle Austin
发明人： Ravi Ganesan , Ravinderpal Singh Sandhu , Andrew Paul Cottrell , Kyle Austin
IPC分类号： H04L29/00
CPC分类号： H04L9/3226 , H04L9/0822 , H04L9/0825
摘要： A system for authenticating communication network users includes a user-associated user station communicatively coupled to an authenticating station via the communication network. The authenticating station is configured to authenticate the user and receive a first value, representing a first user credential, from the user station. A first key portion is generated based on the first value and a second value that is unknown to the user. The first key portion, along with a second key portion, is used for authenticating credentials of the user for a predefined period of time or for authenticating user credentials for a predefined number of times. The second key portion is generated based on the first key portion. A cookie that includes the second value or a value derived from the second value is generated and transmitted to the user station and then the second value is destroyed.
摘要翻译：用于认证通信网络用户的系统包括经由通信网络通信地耦合到认证站的用户相关联的用户站。认证台被配置为认证用户并从用户站接收表示第一用户凭证的第一值。基于第一值和用户未知的第二值生成第一关键部分。第一密钥部分以及第二密钥部分用于在预定义的时间段内验证用户的凭证或者用于在预定义次数中验证用户凭证。基于第一密钥部分生成第二密钥部分。生成包含第二个值的cookie或从第二个值导出的值，并发送给用户站，然后第二个值被销毁。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式