专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明授权

US07861288B2 User authentication system for providing online services based on the transmission address 有权
标题翻译：用户认证系统，用于根据传输地址提供在线业务
公开(公告)号：US07861288B2
公开(公告)日：2010-12-28
申请号：US10534541
申请日：2004-07-12
申请人： Yukio Tsuruoka , Yoshinao Kikuchi , Shintaro Mizuno , Kenji Takahashi , Kei Karasawa
发明人： Yukio Tsuruoka , Yoshinao Kikuchi , Shintaro Mizuno , Kenji Takahashi , Kei Karasawa
IPC分类号： H04L29/06
CPC分类号： H04L63/061 , H04L9/0866 , H04L9/3213 , H04L9/3271 , H04L29/12216 , H04L61/2007 , H04L63/0442 , H04L63/0807 , H04L2209/56 , H04L2209/80
摘要： An address allocated to a user by an authentication server is used as an IP address of a packet which is transmitted from a user terminal, preventing an illicit use if the IP address were eavesdropped. An authentication server 100 performs an authentication of a user based on a user authentication information which is transmitted from the user terminal, and upon a successful authentication, allocates an address to the user terminal, and issues a ticket containing the address to be returned to the user terminal. The user terminal sets up the address contained in the ticket as a source address, and transmits the ticket to the application server 300, requesting a session to be established. After verifying that the ticket is authentic, the server 300 stores the ticket and establishes a session with the user terminal. The user terminal transmits a service request packet containing the source address to the server 300 utilizing the session. If the source address coincides with the address contained in the stored ticket, the server 300 provides a service to the user.
摘要翻译：使用由认证服务器分配给用户的地址作为从用户终端发送的分组的IP地址，如果IP地址被窃听，则防止非法使用。认证服务器100基于从用户终端发送的用户认证信息来执行用户的认证，成功认证后，向用户终端分配地址，并发送包含要返回的地址的票据用户终端。用户终端将包含在票中的地址设置为源地址，并将票据发送到应用服务器300，请求建立会话。在验证票证是真实的之后，服务器300存储票据并与用户终端建立会话。用户终端利用会话向服务器300发送包含源地址的服务请求包。如果源地址与存储的票证中包含的地址一致，则服务器300向用户提供服务。

2. 发明申请

US20060048212A1 Authentication system based on address, device thereof, and program 有权
标题翻译：基于地址，设备和程序的认证系统
公开(公告)号：US20060048212A1
公开(公告)日：2006-03-02
申请号：US10534541
申请日：2004-07-12
申请人： Yukio Tsuruoka , Yoshinaro Kikuchi , Shintaro Mizuno , Kenji Takahashi , Kei Karasawa
发明人： Yukio Tsuruoka , Yoshinaro Kikuchi , Shintaro Mizuno , Kenji Takahashi , Kei Karasawa
IPC分类号： H04L9/32
CPC分类号： H04L63/061 , H04L9/0866 , H04L9/3213 , H04L9/3271 , H04L29/12216 , H04L61/2007 , H04L63/0442 , H04L63/0807 , H04L2209/56 , H04L2209/80
摘要： An address allocated to a user by an authentication server is used as an IP address of a packet which is transmitted from a user terminal, preventing an illicit use if the IP address were eavesdropped. An authentication server 100 performs an authentication of a user based on a user authentication information which is transmitted from the user terminal, and upon a successful authentication, allocates an address to the user terminal, and issues a ticket containing the address to be returned to the user terminal. The user terminal sets up the address contained in the ticket as a source address, and transmits the ticket to the application server 300, requesting a session to be established. After verifying that the ticket is authentic, the server 300 stores the ticket and establishes a session with the user terminal. The user terminal transmits a service request packet containing the source address to the server 300 utilizing the session. If the source address coincides with the address contained in the stored ticket, the server 300 provides a service to the user.
摘要翻译：使用由认证服务器分配给用户的地址作为从用户终端发送的分组的IP地址，如果IP地址被窃听，则防止非法使用。认证服务器100基于从用户终端发送的用户认证信息来执行用户的认证，成功认证后，向用户终端分配地址，并发送包含要返回的地址的票据用户终端。用户终端将包含在票中的地址设置为源地址，并将票据发送到应用服务器300，请求建立会话。在验证票证是真实的之后，服务器300存储票据并与用户终端建立会话。用户终端利用会话向服务器300发送包含源地址的服务请求包。如果源地址与存储的票证中包含的地址一致，则服务器300向用户提供服务。

3. 发明申请

US20110185171A1 CERTIFICATE AUTHENTICATING METHOD, CERTIFICATE ISSUING DEVICE, AND AUTHENTICATION DEVICE 有权
标题翻译：认证认证方法，认证发布设备和认证设备
公开(公告)号：US20110185171A1
公开(公告)日：2011-07-28
申请号：US12523420
申请日：2008-02-07
申请人： Kei Karasawa , Masahisa Kawashima , Yukio Tsuruoka , Kenji Takahashi , Shingo Orihara
发明人： Kei Karasawa , Masahisa Kawashima , Yukio Tsuruoka , Kenji Takahashi , Shingo Orihara
IPC分类号： H04L9/32
CPC分类号： G06F21/33 , H04L63/0823 , H04W12/06
摘要： A terminal device 4 transmits a certificate issue request including a communication ID thereof and a sub ID to a certificate issuing device 7 via a NW1. The certificate issuing device 7 inquires of a communication ID checking device 5 whether or not the communication ID included in the certificate issue request is in use or not and inquires of a communication ID/sub ID checking device 6 whether or not the communication ID and the sub ID are associated with each other. If both the check results are OK, the certificate issuing device 7 generates a certificate including the ID of the certificate issuing device 7, the communication ID, the sub ID and a validity period and transmits the certificate to the terminal device 4. In this way, a certificate with a short validity period can be issued only based on the access to the NW1 using the communication ID and the sub ID.
摘要翻译：终端装置4经由NW1向证书发行装置7发送包含其通信ID和子ID的证书发行请求。证书发行装置7向通信ID检查装置5询问包含在证书发行请求中的通信ID是否在使用中，并且向通信ID /子ID检查装置6询问通信ID和子ID相互关联。如果检查结果都可以，证书发行装置7生成包括证书发行装置7的ID，通信ID，子ID和有效期的证书，并将证书发送到终端装置4.以这种方式只能基于使用通信ID和子ID对NW1的访问而发出具有短有效期的证书。

4. 发明授权

US08352743B2 Client device, key device, service providing apparatus, user authentication system, user authentication method, program, and recording medium 有权
标题翻译：客户端设备，密钥设备，服务提供设备，用户认证系统，用户认证方法，程序和记录介质
公开(公告)号：US08352743B2
公开(公告)日：2013-01-08
申请号：US12523537
申请日：2008-02-07
申请人： Yukio Tsuruoka , Shingo Orihara , Kei Karasawa , Kenji Takahashi
发明人： Yukio Tsuruoka , Shingo Orihara , Kei Karasawa , Kenji Takahashi
IPC分类号： H04L9/32
CPC分类号： G06F21/33 , G06F21/445 , G06Q30/06 , H04L9/3226 , H04L9/3247 , H04L9/3273 , H04L63/08 , H04L63/20 , H04L2209/60 , H04L2209/76
摘要： At user registration, a client device obtains a signature for a user ID, a password, and a public key by using a private key, and sends user information that includes the signature and the above-described information items to a service providing apparatus. The service providing apparatus verifies the signature by using the public key and stores the user information by which the password and the public key are associated with each other. When a request for a service is made, the client device allows authentication processing by sending to the service providing apparatus an authentication response that includes the user ID together with password authentication information, a signature for a challenge sent from the service providing apparatus, or a signature for the password and the challenge, irrespective of whether the authentication method for the service is password authentication, public key authentication, or public-key-and-password combination authentication.
摘要翻译：在用户注册时，客户端设备通过使用私钥获得用户ID，密码和公开密钥的签名，并将包括签名和上述信息项的用户信息发送给服务提供装置。服务提供装置通过使用公开密钥来验证签名，并存储密码和公开密钥相互关联的用户信息。当进行服务请求时，客户端设备通过向服务提供设备发送包括用户ID的认证响应以及密码认证信息，从服务提供设备发送的质询的签名，或者无论密码认证方式，公钥认证方式，还是公开密钥和密码组合认证方式，密码和密码签名无关。

5. 发明申请

US20100088519A1 CLIENT DEVICE, KEY DEVICE, SERVICE PROVIDING APPARATUS, USER AUTHENTICATION SYSTEM, USER AUTHENTICATION METHOD, PROGRAM, AND RECORDING MEDIUM 有权
标题翻译：客户设备，主要设备，服务提供设备，用户认证系统，用户认证方法，程序和记录介质
公开(公告)号：US20100088519A1
公开(公告)日：2010-04-08
申请号：US12523537
申请日：2008-02-07
申请人： Yukio Tsuruoka , Shingo Orihara , Kei Karasawa , Kenji Takahashi
发明人： Yukio Tsuruoka , Shingo Orihara , Kei Karasawa , Kenji Takahashi
IPC分类号： H04L9/32 , H04L9/06
CPC分类号： G06F21/33 , G06F21/445 , G06Q30/06 , H04L9/3226 , H04L9/3247 , H04L9/3273 , H04L63/08 , H04L63/20 , H04L2209/60 , H04L2209/76
摘要： In a user authentication system according to the present invention, at user registration, a client device obtains a signature for a user ID, a password, and a public key by using a private key corresponding to the public key, and sends user information that includes the signature and the above-described information items to a service providing apparatus. The service providing apparatus verifies the signature by using the public key and stores the user information by which the password and the public key are associated with each other. When a request for a service is made, the client device allows authentication processing by sending to the service providing apparatus an authentication response that includes the user ID together with password authentication information, a signature for a challenge sent from the service providing apparatus, or a signature for the password and the challenge, irrespective of whether the authentication method for the service is password authentication, public key authentication, or public-key-and-password combination authentication.
摘要翻译：在根据本发明的用户认证系统中，在用户注册时，客户端设备通过使用与公开密钥相对应的私有密钥来获取用户ID，密码和公共密钥的签名，并且发送包括签名和上述信息项提供给服务提供装置。服务提供装置通过使用公开密钥来验证签名，并存储密码和公开密钥相互关联的用户信息。当进行服务请求时，客户端设备通过向服务提供设备发送包括用户ID的认证响应以及密码认证信息，从服务提供设备发送的质询的签名，或者无论密码认证方式，公钥认证方式，还是公开密钥和密码组合认证方式，密码和密码签名无关。

6. 发明授权

US08595816B2 User authentication system and method for the same 有权
标题翻译：用户认证系统和方法相同
公开(公告)号：US08595816B2
公开(公告)日：2013-11-26
申请号：US12681382
申请日：2008-06-25
申请人： Kei Karasawa , Nachi Ueno , Kenji Takahashi , Yukio Tsuruoka , Shingo Orihara
发明人： Kei Karasawa , Nachi Ueno , Kenji Takahashi , Yukio Tsuruoka , Shingo Orihara
IPC分类号： H04L9/32
CPC分类号： G06F21/33 , H04L9/3247 , H04L9/3268 , H04L63/0823
摘要： At the user authentication apparatus 30, an identifier of a certification authority (CA) certificate that a CA information disclosure server 20 discloses in advance is registered in an identifier list of the CA. At the user terminal 10, a key pair consisting of a terminal public key and a terminal secret key is generated, the terminal signature is generated for information containing the terminal public key using the CA secret key acquired in advance, and a self-signed certificate of the same form as the certificate issued from CA, that is, a terminal certificate containing at least a terminal public key, a terminal signature, and a CA identifier, is created and stored, and registered in the user authentication apparatus 30. The terminal certificate having the same issuer information as the CA identifier in the identifier list of the CA notified from the user authentication apparatus 30 at the time of the service request is selected, and user authentication in accordance with a well-known user authentication protocol is executed using the terminal certificate.
摘要翻译：在用户认证装置30中，CA信息公开服务器20预先公开的认证机构（CA）证书的标识符登记在CA的标识符列表中。在用户终端10，生成由终端公开密钥和终端密钥构成的密钥对，使用预先获取的CA密钥生成包含终端公钥的信息的终端签名，以及自签名证书与从CA颁发的证书相同的形式，即至少包含终端公钥，终端签名和CA标识符的终端证书被创建并存储，并登记在用户认证装置30中。终端选择在服务请求时从用户认证装置30通知的CA的CA标识符列表中具有与CA标识符相同的发行者信息的证书，并且根据公知的用户认证协议进行用户认证，使用终端证书。

7. 发明授权

US08775796B2 Certificate authenticating method, certificate issuing device, and authentication device 有权
标题翻译：证书认证方式，证书颁发设备和认证设备
公开(公告)号：US08775796B2
公开(公告)日：2014-07-08
申请号：US12523420
申请日：2008-02-07
申请人： Kei Karasawa , Masahisa Kawashima , Yukio Tsuruoka , Kenji Takahashi , Shingo Orihara
发明人： Kei Karasawa , Masahisa Kawashima , Yukio Tsuruoka , Kenji Takahashi , Shingo Orihara
IPC分类号： H04L9/32
CPC分类号： G06F21/33 , H04L63/0823 , H04W12/06
摘要： A terminal device 4 transmits a certificate issue request including a communication ID thereof and a sub ID to a certificate issuing device 7 via a NW1 (a first network). The certificate issuing device 7 inquires of a communication ID (identifier) checking device 5 whether or not the communication ID included in the certificate issue request is in use or not and inquires of a communication ID/sub ID checking device 6 whether or not the communication ID and the sub ID are associated with each other. If both the check results are OK, the certificate issuing device 7 generates a certificate including the ID of the certificate issuing device 7, the communication ID, the sub ID and a validity period and transmits the certificate to the terminal device 4. In this way, a certificate with a short validity period can be issued only based on the access to the NW1 using the communication ID and the sub ID.
摘要翻译：终端装置4经由NW1（第一网络）向证书发行装置7发送包含其通信ID和子ID的证书发行请求。证书发行装置7向通信ID（标识符）检查装置5询问包含在证书发行请求中的通信ID是否在使用中，并且向通信ID /子ID检查装置6询问通信 ID和子ID相互关联。如果检查结果都可以，证书发行装置7生成包括证书发行装置7的ID，通信ID，子ID和有效期的证书，并将证书发送到终端装置4.以这种方式只能基于使用通信ID和子ID对NW1的访问而发出具有短有效期的证书。

8. 发明申请

US20110047373A1 USER AUTHENTICATION SYSTEM AND METHOD FOR THE SAME 有权
标题翻译：用户认证系统及其相关方法
公开(公告)号：US20110047373A1
公开(公告)日：2011-02-24
申请号：US12681382
申请日：2008-06-25
申请人： Kei Karasawa , Nachi Ueno , Kenji Takahashi , Yukio Tsuruoka , Shingo Orihara
发明人： Kei Karasawa , Nachi Ueno , Kenji Takahashi , Yukio Tsuruoka , Shingo Orihara
IPC分类号： H04L9/32 , G06F21/00 , H04L9/08
CPC分类号： G06F21/33 , H04L9/3247 , H04L9/3268 , H04L63/0823
摘要： At the user authentication apparatus 30, an identifier of a certification authority (CA) certificate that a CA information disclosure server 20 discloses in advance is registered in an identifier list of the CA. At the user terminal 10, a key pair consisting of a terminal public key and a terminal secret key is generated, the terminal signature is generated for information containing the terminal public key using the CA secret key acquired in advance, and a self-signed certificate of the same form as the certificate issued from CA, that is, a terminal certificate containing at least a terminal public key, a terminal signature, and a CA identifier, is created and stored, and registered in the user authentication apparatus 30. The terminal certificate having the same issuer information as the CA identifier in the identifier list of the CA notified from the user authentication apparatus 30 at the time of the service request is selected, and user authentication in accordance with a well-known user authentication protocol is executed using the terminal certificate.
摘要翻译：在用户认证装置30中，CA信息公开服务器20预先公开的认证机构（CA）证书的标识符登记在CA的标识符列表中。在用户终端10，生成由终端公开密钥和终端密钥构成的密钥对，使用预先获取的CA密钥生成包含终端公钥的信息的终端签名，以及自签名证书与从CA颁发的证书相同的形式，即至少包含终端公钥，终端签名和CA标识符的终端证书被创建并存储，并登记在用户认证装置30中。终端选择在服务请求时从用户认证装置30通知的CA的CA标识符列表中具有与CA标识符相同的发行者信息的证书，并且根据公知的用户认证协议进行用户认证，使用终端证书。

9. 发明授权

US08291231B2 Common key setting method, relay apparatus, and program 有权
标题翻译：公共密钥设置方法，中继设备和程序
公开(公告)号：US08291231B2
公开(公告)日：2012-10-16
申请号：US12741758
申请日：2008-11-06
申请人： Nachi Ueno , Shingo Orihara , Kei Karasawa , Yukio Tsuruoka
发明人： Nachi Ueno , Shingo Orihara , Kei Karasawa , Yukio Tsuruoka
IPC分类号： H04L9/32
CPC分类号： H04L9/3263 , H04L9/0844 , H04L9/321 , H04L9/3247 , H04L63/0272 , H04L63/0281 , H04L63/0428 , H04L63/061 , H04L63/166
摘要： A secret key of a second apparatus is stored in a relay apparatus. A first apparatus specifies secret information used to identify a common key, generates encrypted secret information by encrypting the secret information by using a public key of the second apparatus, and transmits the encrypted secret information to the relay apparatus. Then, the relay apparatus decrypts the encrypted secret information by using the secret key of the second apparatus to extract the secret information. The relay apparatus transmits the encrypted secret information to the second apparatus. The second apparatus decrypts the encrypted secret information by using the secret key of the second apparatus to extract the secret information. Finished messages corresponding to communication log information and the secret information are exchanged between the first apparatus and the relay apparatus and between the second apparatus and the relay apparatus.
摘要翻译：第二装置的秘密密钥存储在中继装置中。第一装置指定用于识别公用密钥的秘密信息，通过使用第二装置的公钥加密秘密信息来生成加密的秘密信息，并将加密的秘密信息发送到中继装置。然后，中继装置通过使用第二装置的秘密密钥来解密加密的秘密信息，以提取秘密信息。中继装置将加密的秘密信息发送到第二装置。第二装置通过使用第二装置的秘密密钥来解密加密的秘密信息以提取秘密信息。与第一装置和中继装置之间以及第二装置与中继装置之间交换对应于通信日志信息和秘密信息的完成消息。

10. 发明申请

US20100250951A1 COMMON KEY SETTING METHOD, RELAY APPARATUS, AND PROGRAM 有权
标题翻译：通用键设置方法，继电器和程序
公开(公告)号：US20100250951A1
公开(公告)日：2010-09-30
申请号：US12741758
申请日：2008-11-06
申请人： Nachi Ueno , Shingo Orihara , Kei Karasawa , Yukio Tsuruoka
发明人： Nachi Ueno , Shingo Orihara , Kei Karasawa , Yukio Tsuruoka
IPC分类号： H04L9/32 , H04L9/00
CPC分类号： H04L9/3263 , H04L9/0844 , H04L9/321 , H04L9/3247 , H04L63/0272 , H04L63/0281 , H04L63/0428 , H04L63/061 , H04L63/166
摘要： A secret key of a second apparatus is stored in a relay apparatus. A first apparatus specifies secret information used to identify a common key, generates encrypted secret information by encrypting the secret information by using a public key of the second apparatus, and transmits the encrypted secret information to the relay apparatus. Then, the relay apparatus decrypts the encrypted secret information by using the secret key of the second apparatus to extract the secret information. The relay apparatus transmits the encrypted secret information to the second apparatus. The second apparatus decrypts the encrypted secret information by using the secret key of the second apparatus to extract the secret information. Finished messages corresponding to communication log information and the secret information are exchanged between the first apparatus and the relay apparatus and between the second apparatus and the relay apparatus.
摘要翻译：第二装置的秘密密钥存储在中继装置中。第一装置指定用于识别公用密钥的秘密信息，通过使用第二装置的公钥加密秘密信息来生成加密的秘密信息，并将加密的秘密信息发送到中继装置。然后，中继装置通过使用第二装置的秘密密钥来解密加密的秘密信息，以提取秘密信息。中继装置将加密的秘密信息发送到第二装置。第二装置通过使用第二装置的秘密密钥来解密加密的秘密信息以提取秘密信息。与第一装置和中继装置之间以及第二装置与中继装置之间交换对应于通信日志信息和秘密信息的完成消息。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式