公开(公告)号：US10540658B2

公开(公告)日：2020-01-21

申请号：US14962365

申请日：2015-12-08

Applicant: Samsung Electronics Co., Ltd.

Inventor： Kunal M. Patel ,  Abraham J. Kang ,  Bulent Kasman ,  Peng Ning ,  Michael C. Grace

IPC: G06Q40/00 ,  G06Q20/40 ,  G06Q20/32

Abstract: A user device comprising: i) transmit path circuitry and receive path circuitry configured to communicate with a payment server; and ii) processing circuitry configured to control the transmit path circuitry and receive path circuitry. The processing circuitry is further configured to: a) receive a user input related to a payment process; b) calculate a risk score indicative of a likelihood of fraudulent activity associated with the payment process, wherein the risk score calculation is based on confidential information associated with the user that is stored on the user device; and c) transmit to the payment server a payment action and the risk score associated with the payment action without disclosing the confidential information. The confidential information comprises personally identifiable information and/or private information of the user. The processing circuitry calculates the risk score using a risk base model received from a model server.

公开(公告)号：US10320745B2

公开(公告)日：2019-06-11

申请号：US15048531

申请日：2016-02-19

Applicant: Samsung Electronics Co., Ltd.

Inventor： Peng Ning ,  Stephen E McLaughlin ,  Michael C Grace ,  Ahmed M Azab ,  Rohan Bhutkar ,  Wenbo Shen ,  Xun Chen ,  Yong Choi ,  Ken Chen

IPC: G06F21/00 ,  H04L29/06 ,  G07C5/02 ,  G07C5/08 ,  G06F13/10 ,  G06F13/40 ,  H04L9/32 ,  H04W12/10 ,  G06F21/62 ,  G06F21/60 ,  G06F21/12 ,  H04W12/08 ,  H04L29/08

Abstract: An apparatus and method of an attachment device for interfacing with an on-board diagnostic system of a vehicle is provided. The device includes an application processor configured to receive input from a terminal, control processing of the input by the on-board diagnostic system, transmit a result of the processing of the input by the on-board diagnostic system to the terminal, and a secure element interposed in the communication path between the application processor and the on-board diagnostic system, the secure element configured to filter the input of an on-board diagnostic operation that is untrusted.

公开(公告)号：US09971895B2

公开(公告)日：2018-05-15

申请号：US14138810

申请日：2013-12-23

Applicant: Samsung Electronics Co., Ltd.

Inventor： Injong Rhee ,  Peng Ning ,  Youngkyoo Kim ,  Youngjip Kim ,  Dongho Jang ,  Siejoon Cho

IPC: H04L29/06 ,  G06F21/57 ,  G06F21/64 ,  H04W88/02

CPC classification number: G06F21/575 ,  G06F21/57 ,  G06F21/64 ,  H04W88/02

Abstract: A method for supporting change of the authentication means for secure booting with the change of the trust root (root of trust) of the readymade electronic device and the electronic device therefor is provided. The secure boot generation method of an electronic device of the present disclosure includes storing plural initial certificates including a first initial certificate and a second initial certificate, designating the first initial certificate as a root certificate for secure booting of the electronic device, and switching the initial certificate from the first initial certificate to the second initial certificate in response to a request. Various other embodiments are possible.

公开(公告)号：US09507941B2

公开(公告)日：2016-11-29

申请号：US14536940

申请日：2014-11-10

Applicant: Samsung Electronics Co., Ltd.

Inventor： Peng Ning ,  Moo-Young Kim ,  Min-Jung Kim

IPC: G06F11/00 ,  G06F21/57

CPC classification number: G06F21/57

Abstract: Disclosed herein are techniques for verifying the integrity of an electronic device. A normal world virtual processor and a secure world virtual processor are instantiated. An integrity verification agent is executed by the secure world virtual processor. A kernel operation attempted by the normal world virtual processor is intercepted by the secure world virtual processor.

Abstract translation: 这里公开了用于验证电子设备的完整性的技术。 正常世界虚拟处理器和安全世界虚拟处理器被实例化。 完整性验证代理由安全世界虚拟处理器执行。 正常世界虚拟处理器尝试的内核操作由安全世界虚拟处理器拦截。

公开(公告)号：US10735385B2

公开(公告)日：2020-08-04

申请号：US14855078

申请日：2015-09-15

Applicant: Samsung Electronics Co., Ltd.

Inventor： Abdul Syed-Ebrahim ,  Peng Ning ,  SJ Oh ,  Hyunchul Woo ,  Sang-Hyup Cho ,  Roy Heeseung Yoo

IPC: H04L29/06 ,  H04W12/06

Abstract: A method and apparatus for data security incorporating device state. The method includes encrypting sensitive data written to an electronic device while the electronic device is in a locked state using a public key of an asymmetric master key pair. The method also includes, in response to detecting that the electronic device enters an unlocked state, converting asymmetric encryption of the sensitive data into symmetric encryption of the sensitive data using a symmetric master key. Encrypting of the sensitive data may include encrypting the sensitive data using a data encryption key (DEK) and encrypting the DEK using the public key. Converting of the asymmetric encryption of the sensitive data into the symmetric encryption may include decrypting the encrypted DEK using a private key of the asymmetric master key pair and re-encrypting the DEK using the symmetric master key without decrypting and re-encrypting the sensitive data.

公开(公告)号：US20200012511A1

公开(公告)日：2020-01-09

申请号：US16504075

申请日：2019-07-05

Applicant: Samsung Electronics Co., Ltd.

Inventor： Guruprasad Ganesh ,  Sudhi Herle ,  Ahmed M. Azab ,  Rohan Bhutkar ,  Ivan Getta ,  Xun Chen ,  Wenbo Shen ,  Ruowen Wang ,  Haining Chen ,  Khaled Elwazeer ,  Mengmeng Li ,  Peng Ning ,  Hyungseok Yu ,  Myungsu Cha ,  Kyungsun Lee ,  Se Young Choi ,  Yurak Choe ,  Yong Shin ,  Kyoung-Joong Shin ,  Donguk Seo ,  Junyong Choi

IPC: G06F9/455 ,  G06F9/48 ,  G06F9/54 ,  G06F9/445

Abstract: A method for operating an electronic device, the method including spawning a name space tool (NST) as part of a boot process of a host OS, wherein the NST is a process with a plurality of root privileges of the host OS. The method further includes spawning, by the NST, a container for a guest OS, wherein the container for the guest OS is mapped to a dedicated domain in the host OS, and dropping, by the NST, a root privilege of the host OS in response to spawning the container for the guest OS.

公开(公告)号：US20190279221A1

公开(公告)日：2019-09-12

申请号：US16122705

申请日：2018-09-05

Applicant: Samsung Electronics Co., Ltd.

Inventor： Yifei Wang ,  An Liu ,  Pai Peng ,  Peng Ning

IPC: G06Q20/40 ,  G06Q20/38 ,  G06Q20/32 ,  G06F21/57 ,  H04L9/00 ,  H04L9/32 ,  H04L29/06

Abstract: A mobile communications device includes a near field communications (NFC) port and processor. The processor executes a trusted application within a trusted execution environment (TEE) for processing sensitive data. Additionally, the processor executes a NFC driver within the TEE for providing a secure channel between the trusted application and the NFC port such that sensitive data being exchanged across the secure channel are inaccessible to other processes being executed by the processor.

公开(公告)号：US10380370B2

公开(公告)日：2019-08-13

申请号：US15053250

申请日：2016-02-25

Applicant: Samsung Electronics Co., Ltd.

Inventor： Abdul Syed-Ebrahim ,  Peng Ning ,  Ken Chen

IPC: G06F21/62 ,  G06F16/245

Abstract: An apparatus and method for operating a relational database (DB) are provided. The method includes determining a sensitivity classification for a column of a table in the DB, performing encryption, using a data encryption key (DEK), of sensitive data when writing the sensitive data to the column determined to be sensitive, performing decryption, using the DEK, of the encrypted sensitive data when reading the sensitive data from the column determined to be sensitive, and performing writing to the column and reading from the column of unencrypted non-sensitive data when the column is determined to be non-sensitive.

公开(公告)号：US09727732B2

公开(公告)日：2017-08-08

申请号：US14459002

申请日：2014-08-13

Applicant: Samsung Electronics Co., Ltd.

Inventor： Se-Hyeon Jang ,  Peng Ning ,  Yu-Seung Kim ,  Balakrishna Venkataraman

IPC: G06F9/00 ,  G06F21/53 ,  G06F21/57

CPC classification number: G06F21/575 ,  G06F21/53

Abstract: An apparatus and a method for identifying security of an electronic device are provided. The method includes identifying a security state of a system binary loaded to a memory of the electronic device based on booting of the electronic device in a second operating system of the electronic device, and sending security state information to a first operating system in the second operating system based on a request from the first operating system of the electronic device.

公开(公告)号：US09378372B2

公开(公告)日：2016-06-28

申请号：US14331935

申请日：2014-07-15

Applicant: Samsung Electronics Co., Ltd.

Inventor： Youngjip Kim ,  Peng Ning ,  Mooyoung Kim ,  Siejoon Cho ,  Dongho Jang

IPC: G06F9/44 ,  G06F9/00 ,  G06F15/177 ,  G06F21/57 ,  G06F9/445

CPC classification number: G06F21/575 ,  G06F8/60

Abstract: A method and electronic device for executing secure download and security function is provided. The method includes storing a unique identifier (ID) of the electronic device, receiving a binary update request, determining whether the stored unique ID matches a unique ID signed to the binary, and downloading the binary depending on whether the unique IDs match.

Abstract translation: 提供了一种用于执行安全下载和安全功能的方法和电子设备。 该方法包括存储电子设备的唯一标识符（ID），接收二进制更新请求，确定所存储的唯一ID是否与签名到二进制文件的唯一ID相匹配，以及根据唯一ID是否匹配来下载二进制文件。