公开(公告)号：US08881266B2

公开(公告)日：2014-11-04

申请号：US12270159

申请日：2008-11-13

申请人： Richard Chow ,  Philippe J. P. Golle ,  Bjorn Markus Jakobsson ,  Jessica N. Staddon

发明人： Richard Chow ,  Philippe J. P. Golle ,  Bjorn Markus Jakobsson ,  Jessica N. Staddon

IPC分类号： G06F21/31 ,  G06F17/30 ,  G06F21/46 ,  H04L29/06 ,  G06F7/02

CPC分类号： G06F21/31 ,  G06F7/02 ,  G06F17/30 ,  G06F21/46 ,  H04L29/06782 ,  H04L29/06795 ,  H04L63/0846

摘要： One embodiment of the present invention provides a system for automatically authenticating a user. During operation, the system receives a user's request for authentication. The system then extracts information associated with the user from user-specific information stored in an enterprise computer. The extracted user information does not explicitly relate to a password. The system further generates one or more challenges based on the extracted user information, and receives the user's response to the challenges. Subsequently, the system compares the user's response to the extracted user information, and authenticates the user.

摘要翻译： 本发明的一个实施例提供一种用于自动认证用户的系统。 在操作期间，系统接收用户的认证请求。 系统然后从存储在企业计算机中的用户特定信息中提取与用户相关联的信息。 提取的用户信息与密码没有明确的关联。 系统进一步基于所提取的用户信息产生一个或多个挑战，并且接收用户对挑战的响应。 随后，系统将用户的响应与提取的用户信息进行比较，并对用户进行认证。

公开(公告)号：US08245038B2

公开(公告)日：2012-08-14

申请号：US12055870

申请日：2008-03-26

申请人： Philippe Jean-Paul Golle ,  Jessica N. Staddon ,  Richard Chow

发明人： Philippe Jean-Paul Golle ,  Jessica N. Staddon ,  Richard Chow

IPC分类号： H04L29/06

CPC分类号： G06F21/64

摘要： One embodiment of the present invention provides a system which allows a document owner to redact content from a document and allows a recipient of the redacted document to challenge the appropriateness of the redaction. During operation, the system allows the document owner to redact a string Mi from location i in the document. In doing so, the system produces a commitment Ci=C(Mi, Ri) based on string Mi and a string Ri used as randomness and communicates Ci to the recipient. When the recipient challenges the redaction, the system receives a topic string T from the recipient, and produces a string RT. The system then communicates RT to the recipient, thereby allowing the recipient to produce a commitment CT=C(T, RT) based on strings T and RT, and compare CT with Ci. Comparing commitment CT with Ci allows the recipient to test redactions for string equality.

摘要翻译： 本发明的一个实施例提供了一种允许文档所有者从文档中修改内容并允许编辑文档的接收者挑战编辑的适当性的系统。 在操作期间，系统允许文档所有者从文档中的位置i修改字符串Mi。 在这样做时，系统基于字符串Mi产生承诺Ci = C（Mi，Ri）和用作随机性的字符串Ri，并将Ci传送给接收者。 当接收方挑战编辑时，系统从收件人接收主题字符串T，并产生字符串RT。 系统然后将RT传送给接收者，从而允许接收者基于字符串T和RT产生承诺CT = C（T，RT），并将CT与Ci进行比较。 将承诺CT与Ci进行比较，允许收件人对字符串相等性进行测试。

公开(公告)号：US08095112B2

公开(公告)日：2012-01-10

申请号：US12196083

申请日：2008-08-21

申请人： Richard Chow ,  Philippe J. P. Golle ,  Jessica N. Staddon

发明人： Richard Chow ,  Philippe J. P. Golle ,  Jessica N. Staddon

IPC分类号： H04M1/66

CPC分类号： H04L29/12594 ,  H04L61/301 ,  H04L61/307 ,  H04L63/105 ,  H04L63/107 ,  H04M1/7253 ,  H04M1/72569 ,  H04M1/72572 ,  H04M1/72577 ,  H04W12/06 ,  H04W88/02

摘要： One embodiment of the present invention provides a method for adjusting security status on a mobile device, the method comprising: collecting security-related contextual information which includes information of nearby mobile devices and/or the geographic location of the intelligent mobile device; evaluating a threat level based on the collected security-related contextual information; invoking a security policy; and adjusting the security status of the mobile device based on the threat level and the security policy.

摘要翻译： 本发明的一个实施例提供了一种用于调整移动设备上的安全状态的方法，所述方法包括：收集包括附近的移动设备的信息和/或所述智能移动设备的地理位置的安全相关的上下文信息; 基于收集的与安全相关的背景信息来评估威胁级别; 援引安全政策; 并根据威胁级别和安全策略调整移动设备的安全状态。

公开(公告)号：US20110113028A1

公开(公告)日：2011-05-12

申请号：US12617370

申请日：2009-11-12

申请人： Jessica N. Staddon ,  Richard Chow ,  Philippe J.P. Golle ,  Lisa S. Purvis

发明人： Jessica N. Staddon ,  Richard Chow ,  Philippe J.P. Golle ,  Lisa S. Purvis

IPC分类号： G06F17/30

CPC分类号： G06Q30/0241 ,  G06Q10/00

摘要： A targeted advertising system performs context-based association mining using a publicly available corpus to identify a product or brand name that, under a given context, is associated with a product or brand being marketed. The system analyzes documents within the publicly available corpus that are associated with the given context, and identifies products or brand names that have a high association to the product or brand being marketed. The system can also analyze the publicly available corpus to determine contextual information which is correlated to two or more products or brand names. This contextual information includes a set of terms that facilitates filtering the publicly available corpus into an optimal set of documents that has a high association to a desired market category or demographic.

摘要翻译： 有针对性的广告系统使用公开可用的语料库来执行基于上下文的关联挖掘，以识别在给定上下文与正在上市的产品或品牌相关联的产品或品牌名称。 系统分析与给定上下文相关联的公开可用语料库中的文档，并且识别与被销售的产品或品牌具有高关联性的产品或品牌名称。 系统还可以分析公开的语料库，以确定与两个或多个产品或品牌名称相关的上下文信息。 该上下文信息包括一组术语，其有助于将公开可用的语料库过滤成与期望的市​​场类别或人口统计学高度关联的最佳文档集合。

公开(公告)号：US07860885B2

公开(公告)日：2010-12-28

申请号：US11951198

申请日：2007-12-05

申请人： Richard Chow ,  Philippe J. P. Golle ,  Jessica N. Staddon

发明人： Richard Chow ,  Philippe J. P. Golle ,  Jessica N. Staddon

IPC分类号： G06F17/30

CPC分类号： G06F17/30867 ,  G06Q10/107 ,  Y10S707/99931 ,  Y10S707/99933 ,  Y10S707/99934

摘要： A system is provided to detect email spam. During operation, the system receives an email, extracts a set of keywords from the email body, and constructs a first search query based a keyword extracted from the email body. The system further constructs a second search query based on the keyword in the first query and one additional word which pertains to a known spam word or to the subject of the email. Next, the system receives a first number of hits and a second number of hits in response to the first and second search queries, respectively. The system then determines whether the email is spam based on the first number and the second number. The system can also perform Website filtering using inference detection which is based on search results received in response to search queries formulated with keywords extracted from Websites.

摘要翻译： 提供了一个系统来检测电子邮件垃圾邮件。 在操作期间，系统接收电子邮件，从电子邮件正文中提取一组关键字，并根据从电子邮件正文中提取的关键字构建第一个搜索查询。 该系统还基于第一查询中的关键字和与已知垃圾邮件词或者电子邮件主题相关的一个附加词来构建第二搜索查询。 接下来，系统分别响应于第一和第二搜索查询接收第一数量的命中和第二数量的命中。 系统然后基于第一个数字和第二个数字确定该电子邮件是否为垃圾邮件。 该系统还可以使用推理检测来执行网站过滤，这是基于根据从网站提取的关键词制定的搜索查询而收到的搜索结果。

公开(公告)号：US07707413B2

公开(公告)日：2010-04-27

申请号：US11004748

申请日：2004-12-02

申请人： Teresa F Lunt ,  Daniel H Greene ,  Philippe J Golle ,  Richard H Bruce ,  Jessica N Staddon

发明人： Teresa F Lunt ,  Daniel H Greene ,  Philippe J Golle ,  Richard H Bruce ,  Jessica N Staddon

IPC分类号： H04L9/32

CPC分类号： H04L63/0421 ,  H04L63/102

摘要： Techniques for protecting non-public information in a mobile environment are provided. A request for non-public information about users in a mobile environment is received. Privacy policies, non-public and optional public information about the users affected by the request are determined. An optional privacy impact indicator is determined based on how satisfying the request increases the current public information about the users. Crowds of users having similar attribute name/values are optionally determined. User and optional requestor privacy policies which associate threshold release criteria such minimum crowd size, minimum consideration with the non-public information are determined. A privacy agreement is reached for the disclosure of the requested non-public information based on the compatibility of the requester and user privacy policies. Privacy protecting transformations are optionally determined and applied to create crowds or groups associated with the requested attribute.

摘要翻译： 提供了在移动环境中保护非公开信息的技术。 接收到关于用户在移动环境中的非公开信息的请求。 确定关于受请求影响的用户的隐私政策，非公开和可选的公开信息。 可选的隐私影响指标是根据请求如何满足当前有关用户的公开信息来确定的。 具有相似属性名称/值的用户群可以任选地确定。 用户和可选择的请求者隐私策略，其将阈值释放标准与最小人群大小，最小考虑与非公开信息相关联。 根据请求者和用户隐私政策的兼容性，达成了所要求的非公开信息披露的隐私协议。 可选地确定并应用隐私保护转换以创建与所请求的属性相关联的人群或组。

公开(公告)号：US10311445B2

公开(公告)日：2019-06-04

申请号：US12194920

申请日：2008-08-20

申请人： Richard Chow ,  Philippe Jean-Paul Golle ,  Jessica N. Staddon

发明人： Richard Chow ,  Philippe Jean-Paul Golle ,  Jessica N. Staddon

IPC分类号： G06Q30/02 ,  G06Q30/06

摘要： One embodiment of the present invention provides a system that performs inference detection based on Internet advertisements. In doing so, this system first receives a set of topic words, performs a search query on each topic word using a search engine, and gathers a set of Uniform Resource Locators (URLs) associated with sponsored advertisement from the search results corresponding to each search query. Then, the system determines a correlation between two topic words based on their corresponding URLs associated with sponsored advertisement, and produces a result which indicates groups of correlated topic words.

公开(公告)号：US08732176B2

公开(公告)日：2014-05-20

申请号：US12431556

申请日：2009-04-28

申请人： Richard Chow ,  Philippe J.P. Golle ,  Jessica N. Staddon

发明人： Richard Chow ,  Philippe J.P. Golle ,  Jessica N. Staddon

IPC分类号： G06F17/30

CPC分类号： G06Q30/02

摘要： One embodiment provides a computer system for detecting associations between a reviewer and an entity under review. During operation, the system estimates a relationship strength between the reviewer and the entity under review, and determines whether the relationship strength between the reviewer and the entity under review exceeds a predetermined threshold.

摘要翻译： 一个实施例提供了一种用于检测审阅者和被审查实体之间的关联的计算机系统。 在运营期间，系统估计审查者与被审查实体之间的关系强度，并确定审查人与被审查实体之间的关系强度是否超过预定阈值。

公开(公告)号：US08229939B2

公开(公告)日：2012-07-24

申请号：US12345599

申请日：2008-12-29

申请人： Jessica N. Staddon ,  David P. Woodruff

发明人： Jessica N. Staddon ,  David P. Woodruff

IPC分类号： G06F7/00

CPC分类号： G06F21/6227 ,  H04L9/008 ,  H04L9/085 ,  H04L9/0894 ,  H04L9/3218 ,  Y10S707/99931

摘要： A server system maintains records and their associated attributes in a secure database. A plurality of queries generated by encrypting indices identifying a records and their associated attributes, by homomorphic encryption is received from a client system. A secret key is generated at a certain query count and is divided into randomly generated key shares. A key share sequence is homomorphically encrypted. A table is formed by encrypting the indices, secret key and attributes. Query responses, which each comprise the attributes for each of the records of the table of entries are provided. The key shares are decrypted sufficient to recover the secret key subject to a non-inference enabling query.

摘要翻译： 服务器系统在安全数据库中维护记录及其关联的属性。 从客户端系统接收通过加密识别记录的索引及其相关属性，通过同态加密产生的多个查询。 在某个查询计数下生成密钥，并将其分为随机生成的密钥共享。 密钥共享序列是同态加密的。 通过加密索引，秘密密钥和属性形成表。 提供了每个包含条目表的每个记录的属性的查询响应。 密钥份额被解密为足以恢复秘密密钥，受到非推断启用查询。

公开(公告)号：US07865742B2

公开(公告)日：2011-01-04

申请号：US11611845

申请日：2006-12-15

申请人： Jessica N. Staddon ,  Philippe Jean-Paul Golle

发明人： Jessica N. Staddon ,  Philippe Jean-Paul Golle

IPC分类号： G06F21/00

CPC分类号： G06F21/6209 ,  G06Q20/3821 ,  H04L9/0847 ,  H04L9/085 ,  H04L9/3073

摘要： A capability key is generated that provides access to sensitive information within a selectively encrypted data unit created from an unencrypted data unit. A user specifies access rights as a monotone boolean relationship between a selection of a list of attributes related to the unencrypted data unit. This relationship is used to compute a key descriptor. Next one or more shares of a master secret is generated responsive to the monotone boolean relationship and a random number. Next a unique capability key is computed from one or more cryptosystem parameters, the one or more shares and the random number. The unique capability key and the key descriptor together enable decryption of sensitive information within a selectively encrypted data unit created from an unencrypted data unit. Finally, the unique capability key and the key descriptor are provided to allow decryption of sensitive information within the selectively encrypted data unit.

摘要翻译： 生成能够提供对从未加密的数据单元创建的选择性加密的数据单元中的敏感信息的访问的能力密钥。 用户将访问权限指定为与未加密的数据单元相关的属性列表的选择之间的单调布尔关系。 该关系用于计算密钥描述符。 响应于单调布尔关系和随机数生成下一个主秘密的一个或多个共享。 接下来，从一个或多个密码系统参数，一个或多个共享和随机数计算独特的能力密钥。 唯一能力密钥和密钥描述符可以在从未加密的数据单元创建的选择性加密的数据单元中解密敏感信息。 最后，提供独特的能力密钥和密钥描述符，以允许对选择性加密的数据单元内的敏感信息进行解密。