专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明授权

US08689306B2 Method for the unique authentication of a user by service providers 有权
标题翻译：服务提供商对用户进行唯一身份验证的方法
公开(公告)号：US08689306B2
公开(公告)日：2014-04-01
申请号：US12528470
申请日：2008-02-25
申请人： Sébastien Canard , Eric Malville , Jacques Traore , Stéphane Guilloteau
发明人： Sébastien Canard , Eric Malville , Jacques Traore , Stéphane Guilloteau
IPC分类号： H04L29/06
CPC分类号： H04L63/0421 , H04L9/3013 , H04L9/3257 , H04L63/0815 , H04L63/0823 , H04L63/126 , H04L2209/04
摘要： A method for unique authentication of a user including federating an identity of said user for said service provider and an identity of the user for an identity provider, the federating including the steps of generating a user alias for that service provider and sending said identity provider a masked alias deduced from said alias, the identity provider associating said masked alias for that service provider with the identity of the user for the identity provider and sending the user elements for calculation by the user of a signature of a message containing the non-masked alias calculating said signature and sending the service provider said message with said signature, and the service provider verifying said signature, authenticating the user, and associating said alias with the user's identity.
摘要翻译：一种用于用户的唯一认证的方法，包括联合用于所述服务提供商的所述用户的身份以及用于身份提供者的身份的身份，所述联合包括以下步骤：为所述服务提供商生成用户别名并发送所述身份提供者所述身份提供者将所述服务提供商的所述被屏蔽的别名与身份提供者的用户的身份相关联，并且发送用户元素以由用户计算包含非掩蔽别名的消息的签名计算所述签名并且发送具有所述签名的服务提供商所述消息，以及验证所述签名的服务提供者，认证用户，以及将所述别名与用户身份相关联。

2. 发明授权

US07840813B2 Method and system with authentication, revocable anonymity and non-repudiation 有权
标题翻译：方法和系统具有认证，可撤销匿名和不可否认性
公开(公告)号：US07840813B2
公开(公告)日：2010-11-23
申请号：US10534857
申请日：2003-11-14
申请人： Sébastien Canard , Stéphane Guilloteau , Eric Malville , Jacques Traore
发明人： Sébastien Canard , Stéphane Guilloteau , Eric Malville , Jacques Traore
IPC分类号： H04L9/32
CPC分类号： H04L63/0823 , G06F21/33 , G06Q20/383 , G06Q40/04 , H04L9/3234 , H04L9/3255 , H04L63/08 , H04L2209/42
摘要： The present invention relates to a method of access to a service consisting in i) identifying and registering a client (C), ii) authenticating the client to an anonymous certification authority, iii) authenticating the client by producing an anonymous signature and opening and maintaining an anonymous authentication session with a server (Se), and iv) selectively allowing contact between the server (Se) and the anonymous certification authority (ACA) to revoke the anonymity of the client (C) using the signature provided in step iii). The invention also relates to a system for opening and maintaining an authentication session guaranteeing non-repudiation.
摘要翻译：本发明涉及一种访问服务的方法，该方法包括：i）识别和注册客户端（C），ii）向匿名证书颁发机构认证客户端，iii）通过产生匿名签名和开放和维护来认证客户端与服务器（Se）的匿名认证会话，以及iv）使用在步骤iii）中提供的签名，选择性地允许服务器（Se）和匿名认证机构（ACA）之间的联系来撤销客户端（C）的匿名。本发明还涉及一种用于打开和维护保证不可否认性的认证会话的系统。

3. 发明申请

US20100275009A1 METHOD FOR THE UNIQUE AUTHENTICATION OF A USER BY SERVICE PROVIDERS 有权
标题翻译：服务提供者对用户进行单一认证的方法
公开(公告)号：US20100275009A1
公开(公告)日：2010-10-28
申请号：US12528470
申请日：2008-02-25
申请人： Sébastien Canard , Eric Malville , Jacques Traore , Stéphane Guilloteau
发明人： Sébastien Canard , Eric Malville , Jacques Traore , Stéphane Guilloteau
IPC分类号： H04L29/06 , H04L9/32
CPC分类号： H04L63/0421 , H04L9/3013 , H04L9/3257 , H04L63/0815 , H04L63/0823 , H04L63/126 , H04L2209/04
摘要： The invention relates to a method for unique authentication of a user (U) by at least one service provider (SP), said method including a preliminary identity federation stage of federating an identity (user@sp) of said user for said service provider and an identity (user@idp) of the user (U) for an identity provider (IdP). According to the invention, said preliminary identity federation stage includes the steps of: the user (U) generating a user alias ([alias]) for that service provider (SP) and sending said identity provider (IdP) a masked alias ([alias]masked) deduced from said alias, the identity provider (IdP) associating said masked alias ([alias]masked) for that service provider (SP) with the identity (user@idp) of the user for the identity provider (IdP) and sending the user (U) elements for calculation by the user of a signature (σ) of a message (msg) containing the non-masked alias ([alias]), the user (U) calculating said signature (σ) and sending the service provider (SP) said message (msg) with said signature (σ), and the service provider (SP) verifying said signature (σ), authenticating the user (U), and associating said alias ([alias]) with the user's identity (user@sp) for the service provider (SP).
摘要翻译：本发明涉及一种用于由至少一个服务提供商（SP）对用户（U）进行唯一认证的方法，所述方法包括联合用于所述服务提供商的所述用户的身份（user @ sp）的初步身份联合级，以及身份提供者（IdP）的用户（U）的身份（user @ idp）。根据本发明，所述初步身份联合阶段包括以下步骤：用户（U）为该服务提供商（SP）生成用户别名（[别名]），并且发送所述身份提供者（IdP）被掩蔽的别名（[别名所述身份提供者（IdP）将用于该服务提供商（SP）的所述被屏蔽的别名（[alias] masked））与身份提供者（IdP）的用户的身份（user @ idp）相关联，并且发送用户（U）元素以供用户计算包含非掩蔽别名（[别名]）的消息（msg）的签名（＆sgr），计算所述签名（＆sgr）的用户（U）和使用所述签名（＆sgr）向所述服务提供商（SP）发送所述消息（msg）以及验证所述签名（＆sgr）的服务提供商（SP），认证所述用户（U），以及将所述别名（[alias] ）与服务提供商（SP）的用户身份（user @ sp）。

4. 发明申请

US20080304663A1 System and Method for the Anonymisation of Sensitive Personal Data and Method of Obtaining Such Data 有权
标题翻译：敏感个人数据匿名化的系统和方法以及获取此类数据的方法
公开(公告)号：US20080304663A1
公开(公告)日：2008-12-11
申请号：US11883267
申请日：2006-01-26
申请人： Sébastien Canard , Stéphane Guilloteau , François Boudet
发明人： Sébastien Canard , Stéphane Guilloteau , François Boudet
IPC分类号： H04L9/14
CPC分类号： G06F21/6254 , G06F2221/2153
摘要： A system for managing sensitive personal data (DD_A) includes two databases (45, 35) hosted by two independent subsystems (40, 30). One of these databases associates data (ID_A) identifying a person (A) with a common key (IDC_A) shared with the second database, which associates that common key (IDC_A) with the sensitive personal data (DD_A) of that person (A).
摘要翻译：用于管理敏感个人数据（DD_A）的系统包括由两个独立子系统（40,30）托管的两个数据库（45,35）。这些数据库中的一个数据库将识别人（A）的数据（ID_A）与与第二数据库共享的公共密钥（IDC_A）相关联，其将该公共密钥（IDC_A）与该人（A）的敏感个人数据（DD_A）相关联，。

5. 发明授权

US08607332B2 System and method for the anonymisation of sensitive personal data and method of obtaining such data 有权
标题翻译：敏感个人数据匿名化的系统和方法以及获取此类数据的方法
公开(公告)号：US08607332B2
公开(公告)日：2013-12-10
申请号：US11883267
申请日：2006-01-26
申请人： Sébastien Canard , Stéphane Guilloteau , François Boudet
发明人： Sébastien Canard , Stéphane Guilloteau , François Boudet
IPC分类号： G06F17/30 , H04L9/22
CPC分类号： G06F21/6254 , G06F2221/2153
摘要： A system for managing sensitive personal data includes a first data processing subsystem and a second data processing subsystem. The first data processing subsystem includes a generating unit and a private database. The generating unit generates a common key from data identifying a person. The private database associates the common key with the identification data. The second data processing subsystem includes an obtaining unit, a generating unit, a receiving unit and a storing unit. The obtaining unit obtains the common key. The generating unit generates a random number from the common key. The receiving unit receives a registration message including sensitive personal data of the person and the random number. The storing unit stores the personal data in a second database in association with the random number and the common key.
摘要翻译：用于管理敏感个人数据的系统包括第一数据处理子系统和第二数据处理子系统。第一数据处理子系统包括生成单元和专用数据库。生成单元从识别人的数据生成公共密钥。私有数据库将公共密钥与识别数据相关联。第二数据处理子系统包括获取单元，生成单元，接收单元和存储单元。获取单元获得公共密钥。生成单元从公共密钥生成随机数。接收单元接收包括人的敏感个人数据和随机数的注册消息。存储单元将个人数据与随机数和公共密钥相关联地存储在第二数据库中。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式