-
公开(公告)号:US07430757B1
公开(公告)日:2008-09-30
申请号:US09227770
申请日:1999-01-08
IPC分类号: G06K9/00 , G06F15/173 , G06F15/16
CPC分类号: H04L67/2823 , H04L63/20 , H04L67/28 , H04L69/08
摘要: A method, apparatus and system is provided for an entity to facilitate secure communication between a client and server even when they do not support the same set of protocols without violating the trust model which requires that only the client and server be privy to the contents of the communication. In an embodiment this is accomplished by embedding at the site of the proxy an application running inside a secure coprocessor which translates between the protocols that the client supports and those that the server understands. The invention is also useful for purposes such as adaptation of content at the site of the proxy without violating the trust model between the client and the proxy. In general, the scheme describes mechanisms to securely delegate to the infrastructure the ability to enforce an arbitrary trust model between a set of clients and servers participating in some computational task.
摘要翻译: 为实体提供了一种方法,装置和系统,以便即使在不违反信任模型的情况下不支持相同协议集合的情况下,客户机和服务器之间的安全通信也是有利的,只要客户机和服务器对于 沟通。 在一个实施例中,这是通过在代理的站点处嵌入在安全协处理器内运行的应用程序来实现的,所述安全协处理器在客户机支持的协议和服务器理解的协议之间进行转换。 本发明对于诸如在代理站点处的内容的改编而不违反客户端和代理之间的信任模型的目的也是有用的。 通常,该方案描述了安全地委托给基础设施的机制,能够在参与一些计算任务的一组客户端和服务器之间执行任意信任模型。
-
2.发明授权Method, apparatus and system for resistance to side channel attacks on random number generators 失效对随机数发生器进行侧向通道攻击的方法,装置和系统公开(公告)号:US08135766B2
公开(公告)日:2012-03-13
申请号:US12131201
申请日:2008-06-02
申请人: Suresh Narayana Chari , Vincenzo Valentino Diluoffo , Paul Ashley Karger , Elaine Rivette Palmer , Tal Rabin , Josyula Ramachandra Rao , Pankaj Rohatgi , Helmut Scherzer , Michael Steiner , David Claude Toll
发明人: Suresh Narayana Chari , Vincenzo Valentino Diluoffo , Paul Ashley Karger , Elaine Rivette Palmer , Tal Rabin , Josyula Ramachandra Rao , Pankaj Rohatgi , Helmut Scherzer , Michael Steiner , David Claude Toll
IPC分类号: G06F7/58
CPC分类号: G06F7/582 , H04L9/003 , H04L9/0662
摘要: A random number generator (RNG) resistant to side channel attacks includes an activation pseudo random number generator (APRNG) having an activation output connected to an activation seed input to provide a next seed to the activation seed input. A second random number generator includes a second seed input, which receives the next seed and a random data output, which outputs random data in accordance with the next seed. An input seed memory is connected to the activation seed input and a feedback connection from the activation output so that the next seed is stored in the input seed memory to be used by the APRNG as the activation seed input at a next startup cycle.
摘要翻译: 具有抗侧向信道攻击的随机数发生器(RNG)包括具有连接到激活种子输入的激活输出的激活伪随机数生成器(APRNG),以向激活种子输入提供下一种子。 第二随机数生成器包括第二种子输入,其接收下一个种子和随机数据输出,其根据下一种子输出随机数据。 输入种子存储器连接到激活种子输入和来自激活输出的反馈连接,使得下一种子存储在输入种子存储器中,以供APRNG使用,作为下一个启动周期的激活种子输入。
-
3.发明申请METHOD, APPARATUS AND SYSTEM FOR RESISTANCE TO SIDE CHANNEL ATTACKS ON RANDOM NUMBER GENERATORS 失效方法,装置和系统,用于抵抗随机数发生器的侧面通道攻击公开(公告)号:US20090049111A1
公开(公告)日:2009-02-19
申请号:US12131201
申请日:2008-06-02
申请人: Suresh Narayana Chari , Vincenzo Valentino Diluoffo , Paul Ashley Karger , Elaine Rivette Palmer , Tal Rabin , Josyula Ramachandra Rao , Pankaj Rohatgi , Helmut Scherzer , Michael Steiner , David Claude Toll
发明人: Suresh Narayana Chari , Vincenzo Valentino Diluoffo , Paul Ashley Karger , Elaine Rivette Palmer , Tal Rabin , Josyula Ramachandra Rao , Pankaj Rohatgi , Helmut Scherzer , Michael Steiner , David Claude Toll
IPC分类号: G06F7/58
CPC分类号: G06F7/582 , H04L9/003 , H04L9/0662
摘要: A random number generator (RNG) resistant to side channel attacks includes an activation pseudo random number generator (APRNG) having an activation output connected to an activation seed input to provide a next seed to the activation seed input. A second random number generator includes a second seed input, which receives the next seed and a random data output, which outputs random data in accordance with the next seed. An input seed memory is connected to the activation seed input and a feedback connection from the activation output so that the next seed is stored in the input seed memory to be used by the APRNG as the activation seed input at a next startup cycle.
摘要翻译: 具有抗侧向信道攻击的随机数发生器(RNG)包括具有连接到激活种子输入的激活输出的激活伪随机数生成器(APRNG),以向激活种子输入提供下一种子。 第二随机数生成器包括第二种子输入,其接收下一个种子和随机数据输出,其根据下一种子输出随机数据。 输入种子存储器连接到激活种子输入和来自激活输出的反馈连接,使得下一种子存储在输入种子存储器中,以供APRNG使用,作为下一个启动周期的激活种子输入。
-
4.发明授权Method, apparatus and system for resistance to side channel attacks on random number generators 失效对随机数发生器进行侧向通道攻击的方法,装置和系统公开(公告)号:US07496616B2
公开(公告)日:2009-02-24
申请号:US10987640
申请日:2004-11-12
申请人: Suresh Narayana Chari , Vincenzo Valentino Diluoffo , Paul Ashley Karger , Elaine Rivette Palmer , Tal Rabin , Josyula Ramachandra Rao , Pankaj Rohatgi , Helmut Scherzer , Michael Steiner , David Claude Toll
发明人: Suresh Narayana Chari , Vincenzo Valentino Diluoffo , Paul Ashley Karger , Elaine Rivette Palmer , Tal Rabin , Josyula Ramachandra Rao , Pankaj Rohatgi , Helmut Scherzer , Michael Steiner , David Claude Toll
IPC分类号: G06F1/02
CPC分类号: G06F7/582 , H04L9/003 , H04L9/0662
摘要: A random number generator (RNG) resistant to side channel attacks includes an activation pseudo random number generator (APRNG) having an activation output connected to an activation seed input to provide a next seed to the activation seed input. A second random number generator includes a second seed input, which receives the next seed and a random data output, which outputs random data in accordance with the next seed. An input seed memory is connected to the activation seed input and a feedback connection from the activation output so that the next seed is stored in the input seed memory to be used by the APRNG as the activation seed input at a next startup cycle.
摘要翻译: 具有抗侧向信道攻击的随机数发生器(RNG)包括具有连接到激活种子输入的激活输出的激活伪随机数生成器(APRNG),以向激活种子输入提供下一种子。 第二随机数生成器包括第二种子输入,其接收下一个种子和随机数据输出,其根据下一种子输出随机数据。 输入种子存储器连接到激活种子输入和来自激活输出的反馈连接,使得下一种子存储在输入种子存储器中,以供APRNG使用,作为下一个启动周期的激活种子输入。
-
-
-
搜索结果
4 条记录 (耗时 0.009 秒)
