-
公开(公告)号:US09665730B2
公开(公告)日:2017-05-30
申请号:US14374602
申请日:2014-03-18
发明人: Zhou Lu , Huazhang Yu
CPC分类号: G06F21/6209 , G06F8/31 , G06F9/45516 , G06F21/14 , G06F21/52 , G06F21/53 , G06F2221/033
摘要: A method for protecting java program is provided, which relates the field of software protection. The method includes: java virtual machine loading class file; transplanting java instruction corresponding java class method into preset buffer when java instruction corresponding to java class method in class file meets preset condition of portable instruction; obtaining the deepest stack level and the maximum number of local variable of java class method, java class method for obtaining stack and local variable, java method executing the virtual machine in encryption lock and java class method for modifying stack and local variable are filled into position of the transplanted java instruction in class file. By the technical solution, a part of java instructions are transplanted into the encryption lock, the java programs protected are modified, the logic of which is incomplete, and the original code cannot be restored, the security of the which are improved.
-
公开(公告)号:US09588696B2
公开(公告)日:2017-03-07
申请号:US14434275
申请日:2013-12-02
发明人: Zhou Lu , Huazhang Yu
CPC分类号: G06F3/061 , G06F3/0655 , G06F3/0673 , G06F7/728
摘要: Disclosed is a Montgomery modular multiplication-based data processing method. The method includes: a CPU initializing a fifth random access memory, and performing the following operations on content in a unit of a word in a second random access memory, namely: (1) calling a multiplying and adding module to multiply one word of the content of the second random access memory and content of a first random access memory and add the product to content of the fifth random access memory; (2) extracting one word from an operation result of the step (1) and multiplying the word with content of a constant register, and writing a low-order word of the multiplied result into a fourth register; (3) calling the multiplying and adding module to multiply content of a fourth register with content of a third random access memory and add the product to the content of the fifth random access memory; and finally, outputting the content of the fifth random access memory according to the content of the third memory.
摘要翻译: 公开了一种基于蒙哥马利模数乘法的数据处理方法。 该方法包括:CPU初始化第五随机存取存储器,并对第二随机存取存储器中单词中的内容执行以下操作,即:(1)调用乘法和加法模块将 第二随机存取存储器的内容和第一随机存取存储器的内容,并将产品添加到第五随机存取存储器的内容; (2)从步骤(1)的运算结果中提取一个单词,并将该单词与常数寄存器的内容相乘,并将相乘结果的低位字写入第四寄存器; (3)调用乘法和加法模块将第四寄存器的内容与第三随机存取存储器的内容相乘,并将乘积加到第五随机存取存储器的内容中; 最后根据第三存储器的内容输出第五随机存取存储器的内容。
-
公开(公告)号:US09288061B2
公开(公告)日:2016-03-15
申请号:US14380980
申请日:2013-07-30
发明人: Zhou Lu , Huazhang Yu
CPC分类号: H04L9/3247 , H04L9/0869 , H04L63/0428 , H04L63/0853 , H04L63/105
摘要: Disclosed is a safe communication method with a card, comprising: conducting mutual authentication between a card and an entity other than the card; and after the authentication has passed, the entity other than the card sending a communication command of a corresponding security level, and the card executing a corresponding operation according to the corresponding security level, and then sending a communication success response to the entity other than the card. The method solves the problem that communication data may be monitored or intercepted.
摘要翻译: 公开了一种具有卡的安全通信方法,包括:在卡和除卡之外的实体之间进行相互认证; 在认证通过之后,除了卡之外的实体发送对应的安全级别的通信命令,并且该卡根据相应的安全级别执行相应的操作,然后向除实体以外的实体发送通信成功响应 卡。 该方法解决了可能监控或拦截通信数据的问题。
-
公开(公告)号:US20160012253A1
公开(公告)日:2016-01-14
申请号:US14423465
申请日:2013-11-27
发明人: Zhou Lu , Huazhang Yu
IPC分类号: G06F21/71
CPC分类号: G06F21/71 , G06F21/602 , H04L9/3066
摘要: A method for generating a coordinate point in an embedded system comprises the following steps: obtaining a random number and a first fixed value, and performing a modulo operation on the random number by using the first fixed value as a modulus, so as to obtain first data; selecting each data bit from the first data; obtaining, according to a position of the selected data bit in the first data, an initial point value corresponding to the selected data bit from a pre-stored initial point value list when data in the selected data bit is not zero; and performing a point adding operation on the obtained initial point value and an intermediate point value, and outputting the obtained operation result as result data. In the present invention, by querying in a preset initial point value list, an initial point value in the initial point value list is obtained, and calculation is performed according to the initial point value, thereby greatly improving the speed of generating a coordinate point.
摘要翻译: 一种用于在嵌入式系统中生成坐标点的方法包括以下步骤:获得随机数和第一固定值,并且通过使用第一固定值作为模数对随机数执行模运算,以获得第一 数据; 从第一数据中选择每个数据位; 当所选择的数据位中的数据不为零时,根据所述第一数据中所选择的数据位的位置,从预先存储的初始点值列表获得与所选数据位对应的初始点值; 对所获得的初始点值和中间点值进行加法运算,并输出所得到的运算结果作为结果数据。 在本发明中,通过在预设的初始点值列表中查询,获得初始点值列表中的初始点值,并根据初始点值进行计算,从而大大提高生成坐标点的速度。
-
公开(公告)号:US09047486B2
公开(公告)日:2015-06-02
申请号:US13286520
申请日:2011-11-01
申请人: Zhou Lu , Huazhang Yu
发明人: Zhou Lu , Huazhang Yu
CPC分类号: G06F21/6245 , G06F9/45537 , G06F21/34 , G06F2221/2149
摘要: The present invention is directed to a method for virtualizing a personal working environment and a device for the same, relating to the information security field. The method comprises the steps of: installing a Virtual Machine (VM) environment on a device; upon virtualizing the personal working environment, connecting the device to a host, loading the VM environment into the host; and responding to a user operation and saving data of the user operation to the device by the VM environment. The device comprises a communication interface module, a VM environment storage module, and a control module. The present invention provides a means for secure and convenient mobile work.
-
36.发明授权Method for identifying version type of windows operating system on a host by a USB device 有权用于通过USB设备识别主机上的Windows操作系统的版本类型的方法公开(公告)号:US08862790B2
公开(公告)日:2014-10-14
申请号:US13640997
申请日:2011-09-15
申请人: Zhou Lu , Huazhang Yu
发明人: Zhou Lu , Huazhang Yu
CPC分类号: G06F9/4411
摘要: The invention provides a method for identifying version type of a Windows operating system on a host by USB device, relating to operating system field and including steps: A, USB device is powered on and initialized; B, the USB device performs USB enumeration, determines whether a first predetermined instruction is received in process of USB enumeration, if yes, determines the operating system is a first operating system and goes to Step D, if no, goes to C; C, the USB device determines the device type returned in process of USB enumeration, if it is a CCID device, determines whether the received instruction includes a second predetermined instruction, if yes, determines the operating system is a second operating system, if no, determines the operating system is a third operating system; when the device is an SCSI device, the USB device determines whether the second received SCSI instruction is a third predetermined instruction or fourth predetermined instruction, if it is the third predetermined instruction, determines that the operating system is a second operating system, if it is the fourth predetermined instruction, determines that the operating system is a third operating system; D, the USB device establishes communication with the host, waits for instruction sent by the host and returns related information to the host according to the determined type of the host operating system.
摘要翻译: 本发明提供了一种用于通过USB设备识别主机上的Windows操作系统的版本类型的方法,涉及操作系统领域并且包括以下步骤:A,USB设备被通电和初始化; B,USB设备执行USB枚举,确定在USB枚举过程中是否接收到第一预定指令,如果是,则确定操作系统是第一操作系统,并且如果否,则转到步骤D; 如图C所示,USB设备确定USB枚举过程中返回的设备类型,如果它是CCID设备,则确定接收到的指令是否包括第二预定指令,如果是,则确定操作系统是第二操作系统,如果否, 确定操作系统是第三个操作系统; 当设备是SCSI设备时,USB设备确定第二接收到的SCSI指令是否是第三预定指令或第四预定指令,如果它是第三预定指令,则确定操作系统是第二操作系统,如果是 第四预定指令确定操作系统是第三操作系统; D,USB设备与主机建立通信,等待主机发送的指令,并根据主机操作系统的确定类型向主机返回相关信息。
-
37.发明授权公开(公告)号:US08856521B2
公开(公告)日:2014-10-07
申请号:US13696200
申请日:2011-05-04
申请人: Zhou Lu , Huazhang Yu
发明人: Zhou Lu , Huazhang Yu
CPC分类号: G06F21/602 , G06F21/6209 , G06F21/6218
摘要: The invention discloses a file protecting method and a system therefor, relating to the information security field. The method includes: an application receives an instruction for opening a protected file sent by a user and invokes an upper interface of an operation system, and the upper interface sends an instruction for opening the protected file sent by a file system, and a filter driver intercepts the instruction for opening the protected file sent by the upper-layer interface to the file system, if the filter driver determines that the application is valid, it creates an image file on a virtual disk for the protected file, and returns a handler of the image file and reads or writes the protected file by the handler, which avoids a possible disclosure of plain text of the protected file in a buffer in prior art.
摘要翻译: 本发明公开了一种与信息安全领域相关的文件保护方法及其系统。 该方法包括:应用接收用于打开用户发送的受保护文件的指令,并调用操作系统的上层接口,上层接口发送用于打开文件系统发送的受保护文件的指令,以及过滤器驱动程序 截取打开上层接口发送到文件系统的受保护文件的指令,如果过滤器驱动程序确定应用程序有效,则在受保护文件的虚拟磁盘上创建一个映像文件,并返回一个 图像文件,并由处理程序读取或写入受保护的文件,这避免了在现有技术的缓冲器中可能泄露受保护文件的纯文本。
-
公开(公告)号:US20140298029A1
公开(公告)日:2014-10-02
申请号:US14116379
申请日:2012-12-25
发明人: Zhou Lu , Huazhang Yu
CPC分类号: H04L9/3213 , H04L9/0891 , H04L9/3271 , H04L63/0853 , H04L2209/805
摘要: The invention discloses a contactless seed programming method, belonging to information security field. In the method, a seed programming device obtains a token ID of a dynamic token, obtains corresponding first seed data according to the token ID, communicates with the dynamic token contactlessly, obtains first seed data from the dynamic token, decrypts the first seed data so as to obtain second seed data, encrypts the second seed data with the first data so as to obtain third seed data and sends the third seed data to the dynamic token; and the dynamic token decrypts the seed and updates seed stored in itself. By the invention, programming operation is simplified and programming efficiency is improved by communicating with the dynamic token contactlessly and security is ensured by transferring the encrypted seed during communication between the programming device and the token.
摘要翻译: 本发明公开了一种属于信息安全领域的非接触种子编程方法。 在该方法中,种子编程装置获取动态令牌的令牌ID,根据令牌ID获取对应的第一种子数据,与动态令牌无接触地通信,从动态令牌获取第一种子数据,解密第一种子数据 为了获得第二种子数据,用第一数据加密第二种子数据,以获得第三种子数据并将第三种子数据发送到动态标记; 并且动态令牌解密种子并更新存储在其中的种子。 通过本发明,编程操作被简化,并且通过与动态令牌非接触地通信来提高编程效率,并且通过在编程设备和令牌之间的通信期间传送加密的种子来确保安全性。
-
公开(公告)号:US20140208403A1
公开(公告)日:2014-07-24
申请号:US13806311
申请日:2011-12-27
申请人: Zhou Lu , Huazhang Yu
发明人: Zhou Lu , Huazhang Yu
IPC分类号: H04L29/06
CPC分类号: H04L63/0838 , H04K1/00 , H04L9/3226 , H04L63/0823
摘要: The invention provides a method for identifying pulse optical signal, including: a. receiving first trigger information; b. collecting and identifying pulse optical signal with a predetermined method to obtain a unit of data; c. parsing the unit of data and determining type of it, if the unit of data is a unit of data representing header information, step d is executed; or if the unit of data is other type of unit of data, step b is executed; d. going on collecting and identifying pulse optical signal with the predetermined method to obtain a unit of data; e. determining whether all units of data corresponding to the unit of data representing the header information is received; f. packeting the unit of data representing the header information with all corresponding units of data into a group of data packets. The invention converts the pulse optical signal into bits, packets and converts the bits into a data packet, and receives the photosensitive-transfer information which accelerates the process of obtaining required data by a signal identifying device.
摘要翻译: 本发明提供一种识别脉冲光信号的方法,包括:a。 接收第一触发信息; b。 以预定方法收集和识别脉冲光信号以获得数据单位; C。 解析数据单元并确定其类型,如果数据单元是表示头信息的数据单元,则执行步骤d; 或者如果数据单位是数据单位的其他类型,则执行步骤b; d。 以预定方法收集和识别脉冲光信号以获得数据单位; e。 确定是否接收到对应于表示头部信息的数据单元的所有数据单元; F。 将表示头部信息的数据的单位与所有对应的数据单元打包成一组数据分组。 本发明将脉冲光信号转换为比特,分组,并将比特转换为数据分组,并且接收通过信号识别装置加速获得所需数据的处理的光敏传输信息。
-
公开(公告)号:US08789166B2
公开(公告)日:2014-07-22
申请号:US13502772
申请日:2010-10-29
申请人: Zhou Lu , Huazhang Yu
发明人: Zhou Lu , Huazhang Yu
CPC分类号: H04L9/16 , H04L9/3226 , H04L63/0846 , H04L63/1483 , H04L2209/56
摘要: The invention discloses an authenticating method and a system thereof, which relates to information security field and solves the problem that the user information is not safe in transaction process. The embodiment of the invention comprises that the server side receives user data information and a first dynamic password sent from the user side; the server side generates the first authenticating dynamic password according to the user data information; server side verifies the first dynamic password according to the first authenticating dynamic password and generates the second authenticating dynamic password after successful verification; the server side sends the second authenticating dynamic or the first password to the user side; the server side executes the transaction data in the user data information or permits the user to log on after using a third authenticating dynamic password generated by the server side to verify the user data information or the third dynamic password sent from the user side successfully. The invention enhances the safety of transaction for the user and prevents the user from loss caused by logging on phishing website by the user.
摘要翻译: 本发明公开了一种与信息安全领域相关的认证方法及其系统,解决了用户信息在交易过程中不安全的问题。 本发明的实施例包括服务器侧接收从用户侧发送的用户数据信息和第一动态密码; 服务器端根据用户数据信息生成第一认证动态密码; 服务器端根据第一个验证动态密码验证第一个动态密码,并在验证成功后生成第二个验证动态密码; 服务器侧向用户侧发送第二认证动态或第一密码; 服务器端执行用户数据信息中的交易数据,或者允许用户在使用由服务器端生成的第三认证动态密码之后登录,以验证用户端发送的用户数据信息或第三动态密码。 本发明增强了用户交易的安全性,防止用户因用户登录网络钓鱼网站而导致的丢失。
-
-
-
-
-
-
-
-
-
搜索结果
309 条记录 (耗时 0.033 秒)
