知搜-全球专利检索

  1. Login
  2. Sign Up

Search Results

6 records (took 0.013 seconds)

    SECURE VALIDATION USING HARDWARE SECURITY MODULES
    1.
    发明申请
    SECURE VALIDATION USING HARDWARE SECURITY MODULES 审中-公开
    使用硬件安全模块进行安全验证

    公开(公告)号:US20150278804A1

    公开(公告)日:2015-10-01

    申请号:US14733795

    申请日:2015-06-08

    Applicant: Amazon Technologies, Inc.

    Inventor: Jason Jenks Brandon B. Low Hanson Char Peter S. Vosshall Waylon Brunette

    IPC: G06Q20/36 G06Q20/40

    CPC classification number: G06Q20/3674 G06Q20/382 G06Q20/3823 G06Q20/401 H04L9/3226

    Abstract: Disclosed is secure decryption and business rule validation of encrypted confidential data within a hardware security module (HSM). The validation may include the use of a Bloom filter stored and executing within the HSM. The return order of encrypted data within the HSM as well as requests for external data relating to validation may be randomized to further harden against correlation attacks.

    Abstract translation: 披露了硬件安全模块(HSM)内的加密机密数据的安全解密和业务规则验证。 验证可以包括使用在HSM内存储和执行的Bloom过滤器。 HSM内加密数据的返回顺序以及与验证相关的外部数据请求可能被随机化以进一步加强相关攻击。

    Incremental authenticated data encodings
    2.
    发明授权
    Incremental authenticated data encodings 有权

    公开(公告)号:US11968292B1

    公开(公告)日:2024-04-23

    申请号:US14576142

    申请日:2014-12-18

    Applicant: Amazon Technologies, Inc.

    Inventor: Hanson Char

    IPC: H04L9/08

    CPC classification number: H04L9/0819 H04L2209/24

    Abstract: Data is encoded to be incrementally authenticable. A plaintext is used to generate a ciphertext that comprises a plurality of authentication tags. Proper subsets of the authentication tags are usable to authenticate respective portions of plaintexts obtained from the ciphertext. Portions of the plaintext can be obtained and authenticated without decrypting the complete ciphertext.

    Multipart authenticated encryption
    5.
    发明授权
    Multipart authenticated encryption 有权
    多部门认证加密

    公开(公告)号:US09537657B1

    公开(公告)日:2017-01-03

    申请号:US14290699

    申请日:2014-05-29

    Applicant: Amazon Technologies, Inc.

    Inventor: Hanson Char Matthew John Campagna Gregory Alan Rubin

    IPC: G06F21/00 H04L9/32

    CPC classification number: H04L9/3226 H04L9/0637 H04L9/3242

    Abstract: Incremented authenticated encryption involves dividing a data stream to be encrypted into multiple data segments and encrypting each of the data segments. For each encrypted data segment, an authorization tag is generated. Each segment's authorization tag may be based on the corresponding segment's position in the sequence of data segments within the data stream. A segment authorization tag may be generated based on an segment initialization vector that may be incremented with each segment authorization tag. Each data segment may be encrypted independently of the others. Similarly, each encrypted data segment may be decrypted and authenticated independently of the others. Additionally, a final authentication tag may be generated. The final authentication tag may be used to authenticate all the data segments of the data stream as a whole.

    Abstract translation: 递增的认证加密包括将要加密的数据流划分为多个数据段并对每个数据段进行加密。 对于每个加密的数据段,生成授权标签。 每个段的授权标签可以基于数据流内的数据段序列中相应段的位置。 可以基于可以与每个段授权标签递增的段初始化向量来生成段授权标签。 每个数据段可以独立于其他数据段进行加密。 类似地,每个加密的数据段可以被独立于其他加密的数据段解密和认证。 另外,可以生成最终认证标签。 最终的认证标签可用于对整个数据流的所有数据段进行认证。

Patent Agency Ranking