知搜-全球专利检索

  1. 登录
  2. 注册

搜索结果

37 条记录 (耗时 0.024 秒)

    Device validation, distress indication, and remediation
    2.
    发明授权
    Device validation, distress indication, and remediation 有权
    设备验证,遇险指示和修复

    公开(公告)号:US08914674B2

    公开(公告)日:2014-12-16

    申请号:US13289154

    申请日:2011-11-04

    申请人: Yogendra C. Shah Lawrence Case Dolores F. Howry Inhyok Cha Andreas Leicher Andreas Schmidt

    发明人: Yogendra C. Shah Lawrence Case Dolores F. Howry Inhyok Cha Andreas Leicher Andreas Schmidt

    IPC分类号: G06F11/00 H04W12/10 G06F21/10 G06F21/57

    CPC分类号: G06F11/0709 G06F11/0751 G06F11/079 G06F11/0793 G06F11/08 G06F21/10 G06F21/575 G06F2221/2103 G06F2221/2111 H04L63/123 H04M1/24 H04W8/22 H04W12/10 H04W24/02

    摘要: A wireless communications device may be configured to perform integrity checking and interrogation with a network entity to isolate a portion of a failed component on the wireless network device for remediation. Once an integrity failure is determined on a component of the device, the device may identify a functionality associated with the component and indicate the failed functionality to the network entity. Both the wireless network device and the network entity may identify the failed functionality and/or failed component using a component-to-functionality map. After receiving an indication of an integrity failure at the device, the network entity may determine that one or more additional iterations of integrity checking may be performed at the device to narrow the scope of the integrity failure on the failed component. Once the integrity failure is isolated, the network entity may remediate a portion of the failed component on the wireless communications device.

    摘要翻译: 无线通信设备可以被配置为执行与网络实体的完整性检查和询问,以隔离无线网络设备上的故障组件的一部分以进行修复。 一旦在设备的组件上确定完整性故障,则设备可以识别与组件相关联的功能并且向网络实体指示失败的功能。 无线网络设备和网络实体都可以使用组件到功能映射来识别故障功能和/或故障组件。 在接收到设备上的完整性故障的指示之后,网络实体可以确定可以在设备处执行完整性检查的一个或多个附加迭代以缩小故障组件上的完整性故障的范围。 一旦完整性故障被隔离,则网络实体可以修复无线通信设备上的故障组件的一部分。

    AUTHENTICATION AND SECURE CHANNEL SETUP FOR COMMUNICATION HANDOFF SCENARIOS
    3.
    发明申请
    AUTHENTICATION AND SECURE CHANNEL SETUP FOR COMMUNICATION HANDOFF SCENARIOS 有权
    认证和安全通道设置通信手持场景

    公开(公告)号:US20130007858A1

    公开(公告)日:2013-01-03

    申请号:US13341670

    申请日:2011-12-30

    申请人: Yogendra C. SHAH Inhyok CHA Andreas SCHMIDT Louis J. GUCCIONE Lawrence CASE Andreas LEICHER Yousif TARGALI

    发明人: Yogendra C. SHAH Inhyok CHA Andreas SCHMIDT Louis J. GUCCIONE Lawrence CASE Andreas LEICHER Yousif TARGALI

    IPC分类号: H04W12/06

    CPC分类号: H04L63/08 H04L63/0209 H04L63/0815 H04L63/0892 H04L63/10 H04L63/18 H04W12/04 H04W12/06 H04W12/08 H04W36/0038

    摘要: Persistent communication layer credentials generated on a persistent communication layer at one network may be leveraged to perform authentication on another. For example, the persistent communication layer credentials may include application-layer credentials derived on an application layer. The application-layer credentials may be used to establish authentication credentials for authenticating a mobile device for access to services at a network server. The authentication credentials may be derived from the application-layer credentials of another network to enable a seamless handoff from one network to another. The authentication credentials may be derived from the application-layer credentials using reverse bootstrapping or other key derivation functions. The mobile device and/or network entity to which the mobile device is being authenticated may enable communication of authentication information between the communication layers to enable authentication of a device using multiple communication layers.

    摘要翻译: 可以利用在一个网络上的持久通信层上生成的持久通信层凭证来执行对另一个网络的认证。 例如,持久通信层凭证可以包括在应用层上导出的应用层凭证。 应用层凭证可以用于建立认证凭证,用于认证移动设备以访问网络服务器处的服务。 认证证书可以从另一网络的应用层凭证导出,以实现从一个网络到另一个网络的无缝切换。 认证证书可以使用反向引导或其他密钥导出功能从应用层凭证中导出。 移动设备和/或网络实体对移动设备进行身份验证可以实现通信层之间的认证信息的通信,从而能够使用多个通信层对设备进行认证。

    Method and Apparatus for Trusted Federated Identity Management and Data Access Authorization
    4.
    发明申请
    Method and Apparatus for Trusted Federated Identity Management and Data Access Authorization 有权
    用于可信联合身份管理和数据访问授权的方法和装置

    公开(公告)号:US20120023568A1

    公开(公告)日:2012-01-26

    申请号:US13011558

    申请日:2011-01-21

    申请人: Inhyok Cha Andreas Schmidt Andreas Leicher Yogendra C. Shah

    发明人: Inhyok Cha Andreas Schmidt Andreas Leicher Yogendra C. Shah

    IPC分类号: H04W12/06

    CPC分类号: H04W12/06 G06F21/335 G06F21/57 G06F2221/2115 H04L63/0807 H04L2463/121

    摘要: Systems, methods, and instrumentalities are disclosed that may provide for integration of trusted OpenID (TOpenID) with OpenID. The authentication may be accomplished, in part, via communications between a trusted ticket server on a UE and a network application function. The UE may retrieve platform validation data (e.g., from a trusted platform module on the UE). The UE may receive a platform verification in response to the platform validation data. The platform verification may indicate that the network application function has verified the platform validation data and the user. The platform verification may indicate that the platform validation data matches a previously generated reference value.

    摘要翻译: 公开了可以提供可信OpenID(TOpenID)与OpenID的集成的系统,方法和工具。 认证可以部分地通过UE上的信任票据服务器和网络应用功能之间的通信来实现。 UE可以检索平台验证数据(例如,从UE上的可信平台模块)。 UE可以响应于平台验证数据而接收平台验证。 平台验证可以指示网络应用功能已经验证了平台验证数据和用户。 平台验证可以指示平台验证数据与先前生成的参考值相匹配。

    Migration of credentials and/or domains between trusted hardware subscription modules
    7.
    发明授权
    Migration of credentials and/or domains between trusted hardware subscription modules 有权
    可信硬件订阅模块之间的凭证和/或域的迁移

    公开(公告)号:US09032473B2

    公开(公告)日:2015-05-12

    申请号:US13581752

    申请日:2011-03-02

    申请人: Louis J. Guccione Inhyok Cha Andreas Schmidt Andreas Leicher

    发明人: Louis J. Guccione Inhyok Cha Andreas Schmidt Andreas Leicher

    IPC分类号: G06F21/00 H04L29/06 H04W8/20 H04W12/08

    CPC分类号: H04L63/20 H04L63/102 H04W8/205 H04W12/08

    摘要: Systems, methods, and instrumentalities are disclosed that allow a user to initiate migration of a credential from one domain to another domain. A request to initiate a migration of credentials from a first domain to a second domain may be initiated by a user (1a.). A remote owner may receive a message indicating that the migration has been requested. The message received by the remote owner may be an indication that the source and destination devices have performed internal checks and determined that a migration could proceed. The remote owner may evaluate source information received from the source device and destination information received from the destination device (6), (6a.), (6b.). Based on the evaluation of the source information and the destination information, the remote owner may determine that the migration is acceptable. The remote owner may send an indication to proceed with the migration (7), (7a).

    摘要翻译: 公开了允许用户启动将证书从一个域迁移到另一个域的系统,方法和工具。 可以由用户(1a。)发起将凭证从第一域迁移到第二域的请求。 远程所有者可能会收到指示已请求迁移的消息。 远程所有者收到的消息可能表示源设备和目标设备已执行内部检查,并确定迁移可以进行。 远程所有者可以评估从源设备接收的源信息和从目的地设备(6),(6a。),(6b。)接收的目的地信息。 基于源信息和目的地信息的评估,远程所有者可以确定迁移是可接受的。 远程所有者可以发送进行迁移的指示(7),(7a)。

    VALIDATION AND/OR AUTHENTICATION OF A DEVICE FOR COMMUNICATION WITH NETWORK
    8.
    发明申请
    VALIDATION AND/OR AUTHENTICATION OF A DEVICE FOR COMMUNICATION WITH NETWORK 有权
    用于与网络通信的设备的验证和/或认证

    公开(公告)号:US20140129815A9

    公开(公告)日:2014-05-08

    申请号:US12760690

    申请日:2010-04-15

    申请人: Yogendra C. Shah Inhyok Cha Andreas Schmidt Andreas Leicher Joseph Gredone Samian J. Kaur

    发明人: Yogendra C. Shah Inhyok Cha Andreas Schmidt Andreas Leicher Joseph Gredone Samian J. Kaur

    IPC分类号: G06F21/02 G06F9/445

    CPC分类号: H04W12/10 H04L63/123

    摘要: A device may include a trusted component. The trusted component may be verified by a trusted third party and may have a certificate of verification stored therein based on the verification by the trusted third party. The trusted component may include a root of trust that may provide secure code and data storage and secure application execution. The root of trust may also be configured to verify an integrity of the trusted component via a secure boot and to prevent access to the certain information in the device if the integrity of the trusted component may not be verified.

    摘要翻译: 设备可以包括可信组件。 受信任的组件可以由受信任的第三方验证,并且可以基于可信赖的第三方的验证来存储其中的验证证书。 受信任的组件可以包括可以提供安全代码和数据存储以及安全应用执行的信任根。 还可以配置信任根以通过安全引导来验证可信组件的完整性,并且如果可信组件的完整性可能未被验证,则阻止访问设备中的某些信息。

    IDENTITY MANAGEMENT ON A WIRELESS DEVICE
    9.
    发明申请
    IDENTITY MANAGEMENT ON A WIRELESS DEVICE 有权
    无线设备的身份管理

    公开(公告)号:US20120254959A1

    公开(公告)日:2012-10-04

    申请号:US13237344

    申请日:2011-09-20

    申请人: Andreas SCHMIDT Michael V. MEYERSTEIN Andreas LEICHER Yogendra C. SHAH Louis J. GUCCIONE Inhyok CHA

    发明人: Andreas SCHMIDT Michael V. MEYERSTEIN Andreas LEICHER Yogendra C. SHAH Louis J. GUCCIONE Inhyok CHA

    IPC分类号: H04W12/04

    CPC分类号: H04W12/06 H04L63/061 H04L63/068 H04L63/08 H04L63/0815 H04L63/0853 H04L67/02 H04L2463/061 H04L2463/081 H04W12/04 H04W88/02

    摘要: A wireless device may perform a local authentication to reduce the traffic on a network. The local authentication may be performed using a local web server and/or a local OpenID provider (OP) associated with the wireless device. The local web server and/or local OP may be implemented on a security module, such as a smartcard or a trusted execution environment for example. The local OP and/or local web server may be used to implement a provisioning phase to derive a session key, associated with a service provider, from an authentication between the wireless device and the network. The session key may be reusable for subsequent local authentications to locally authenticate a user of the wireless device to the service provider.

    摘要翻译: 无线设备可以执行本地认证以减少网络上的流量。 可以使用与无线设备相关联的本地Web服务器和/或本地OpenID提供商(OP)来执行本地认证。 本地Web服务器和/或本地OP可以在例如智能卡或可信执行环境的安全模块上实现。 可以使用本地OP和/或本地Web服务器实现供应阶段,以从无线设备和网络之间的认证导出与服务提供商相关联的会话密钥。 会话密钥可以可重用于随后的本地认证,以向服务提供商本地认证无线设备的用户。