-
1.发明授权公开(公告)号:US09118463B2
公开(公告)日:2015-08-25
申请号:US13408434
申请日:2012-02-29
申请人: Bin Benjamin Zhu , Min Feng
发明人: Bin Benjamin Zhu , Min Feng
CPC分类号: H04L63/0815 , H04L9/085 , H04L9/3218 , H04L9/3226 , H04L63/0435 , H04L63/083 , H04L63/10
摘要: Technologies for distributed single sign-on operable to provide user access to a plurality of services via authentication to a single entity. The distributed single sign-on technologies provide a set of authentication servers and methods for privacy protection based on splitting secret keys and user profiles into secure shares and periodically updating shares among the authentication servers without affecting the underlying secrets. The correctness of the received partial token or partial profiles can be verified with non-interactive zero-knowledge proofs.
-
公开(公告)号:US20090265760A1
公开(公告)日:2009-10-22
申请号:US12106300
申请日:2008-04-20
申请人: Bin Benjamin Zhu , Rui Guo , Min Feng , Aimin Pan
发明人: Bin Benjamin Zhu , Rui Guo , Min Feng , Aimin Pan
IPC分类号: H04L9/32
CPC分类号: G06F21/53 , G06F2221/2119 , H04L63/10 , H04L63/168 , H04L67/02
摘要: A component-oriented web mashup system and method for communicating between component-oriented Web gadgets to facilitate secure Web mashups. Embodiments of the system and method redefine the traditional definition of gadget to mean a Web component having a verifiable controlled communication channel (a CompoWeb gadget). A CompoWeb gadget is created and defined using new HTML tags and global script objects and functions that extend the functions of the browser. CompoWeb gadget content is treated as a component that is isolated from other gadgets and frames by a browser, and only those allowed access can view data and code therein. Called functions of a CompoWeb gadget are run in the callee's environment instead of the caller's environment. This adds security, because all the requesting CompoWeb gadget receives is the run result. Embodiments of the system and method also include delayed binding of CompoWeb gadgets, such that binding is performed at run time.
摘要翻译: 面向组件的Web混搭系统和方法,用于在面向组件的Web小配件之间进行通信,以促进安全的Web混搭。 系统和方法的实施例重新定义了小工具的传统定义,意味着具有可验证的受控通信通道(CompoWeb小工具)的Web组件。 使用新的HTML标签和扩展浏览器功能的全局脚本对象和功能来创建和定义CompoWeb小工具。 CompoWeb小工具内容被视为与浏览器与其他小工具和框架隔离的组件,只有那些允许的访问可以在其中查看数据和代码。 调用CompoWeb小工具的功能是在被调用者的环境中运行,而不是调用者的环境。 这增加了安全性,因为所有请求的CompoWeb小工具都是运行结果。 系统和方法的实施例还包括CompoWeb小工具的延迟绑定,使得在运行时执行绑定。
-
公开(公告)号:US08185476B2
公开(公告)日:2012-05-22
申请号:US11970161
申请日:2008-01-07
申请人: Bin Benjamin Zhu , Min Feng
发明人: Bin Benjamin Zhu , Min Feng
IPC分类号: G06F21/00
CPC分类号: H04L63/0407 , G06F21/10 , G06F21/6245 , H04L9/0833 , H04L9/302 , H04L9/3073 , H04L9/3257 , H04L63/0442 , H04L63/126 , H04L2209/56 , H04L2209/603 , H04L2463/062 , H04L2463/101 , Y10S705/901 , Y10S705/902 , Y10S705/904 , Y10S705/908
摘要: Technologies for a Consumer Privacy Digital Rights Management system based on stable partially blind signatures that enable a license server to provide licenses for delivery to users without knowing the corresponding digital contents that users access with the license. Therefore consumer privacy is protected during license acquisition. Further, if the client DRM module in the DRM system does not disclose any information about a user's digital content access, and the messages that the client DRM module sends out are in plain text enabling verification that the client DRM module is not disclosing such information, then consumer privacy is fully protected by the DRM system.
摘要翻译: 基于稳定的部分盲签名的消费者隐私数字版权管理系统的技术,使得许可证服务器能够在不知道用户使用许可证访问的相应数字内容的情况下,向用户提供许可证。 因此,许可证获取期间保护消费者的隐私。 此外,如果DRM系统中的客户端DRM模块没有透露关于用户的数字内容访问的任何信息,并且客户端DRM模块发送的消息是纯文本的,使得能够验证客户端DRM模块没有公开这样的信息, 那么消费者隐私就被DRM系统完全保护。
-
4.发明授权Distributed single sign on technologies including privacy protection and proactive updating 有权分布式单点登录技术,包括隐私保护和主动更新公开(公告)号:US09184910B2
公开(公告)日:2015-11-10
申请号:US13409087
申请日:2012-02-29
申请人: Bin Benjamin Zhu , Min Feng
发明人: Bin Benjamin Zhu , Min Feng
CPC分类号: H04L63/0815 , H04L9/085 , H04L9/3218 , H04L9/3226 , H04L63/0435 , H04L63/083 , H04L63/10
摘要: Technologies for distributed single sign-on operable to provide user access to a plurality of services via authentication to a single entity. The distributed single sign-on technologies provide a set of authentication servers and methods for privacy protection based on splitting secret keys and user profiles into secure shares and periodically updating shares among the authentication servers without affecting the underlying secrets. The correctness of the received partial token or partial profiles can be verified with non-interactive zero-knowledge proofs.
摘要翻译: 用于分布式单点登录的技术可操作以通过认证向单个实体提供用户对多个服务的访问。 分布式单点登录技术提供了一套基于将秘密密钥和用户配置文件分解为安全共享的身份验证服务器和隐私保护方法,并定期更新认证服务器之间的共享,而不会影响潜在的秘密。 可以使用非交互式零知识证明来验证所接收的部分令牌或部分简档的正确性。
-
5.发明申请DISTRIBUTED SINGLE SIGN ON TECHNOLOGIES INCLUDING PRIVACY PROTECTION AND PROACTIVE UPDATING 有权分布式技术的单一标识,包括隐私保护和主动更新公开(公告)号:US20120174207A1
公开(公告)日:2012-07-05
申请号:US13408434
申请日:2012-02-29
申请人: Bin Benjamin Zhu , Min Feng
发明人: Bin Benjamin Zhu , Min Feng
IPC分类号: G06F21/20
CPC分类号: H04L63/0815 , H04L9/085 , H04L9/3218 , H04L9/3226 , H04L63/0435 , H04L63/083 , H04L63/10
摘要: Technologies for distributed single sign-on operable to provide user access to a plurality of services via authentication to a single entity. The distributed single sion-on technologies provide a set of authentication servers and methods for privacy protection based on splitting secret keys and user profiles into secure shares and periodically updating shares among the authentication servers without affecting the underlying secrets. The correctness of the received partial token or partial profiles can be verified with non-interactive zero-knowledge proofs.
摘要翻译: 用于分布式单点登录的技术可操作以通过认证向单个实体提供对多个服务的用户访问。 分布式单一技术提供了一套基于将秘密密钥和用户配置文件分解为安全共享并在认证服务器之间定期更新共享而不影响潜在秘密的隐私保护的认证服务器和方法。 可以使用非交互式零知识证明来验证所接收的部分令牌或部分简档的正确性。
-
6.发明申请公开(公告)号:US20120159589A1
公开(公告)日:2012-06-21
申请号:US13409087
申请日:2012-02-29
申请人: Bin Benjamin Zhu , Min Feng
发明人: Bin Benjamin Zhu , Min Feng
IPC分类号: G06F21/00
CPC分类号: H04L63/0815 , H04L9/085 , H04L9/3218 , H04L9/3226 , H04L63/0435 , H04L63/083 , H04L63/10
摘要: Technologies for distributed single sign-on operable to provide user access to a plurality of services via authentication to a single entity. The distributed single sign-on technologies provide a set of authentication servers and methods for privacy protection based on splitting secret, keys and user profiles into secure shares and periodically updating shares among the authentication servers without affecting the underlying secrets. The correctness of the received partial token or partial profiles can be verified with non-interactive zero-knowledge proofs.
-
公开(公告)号:US20090260077A1
公开(公告)日:2009-10-15
申请号:US12101166
申请日:2008-04-11
申请人: Bin Benjamin Zhu , Min Feng , Aimin Pan , Yuan Kong , Nathan C. Sherman , Hui Fan , Rui Guo , Josh Benaloh
发明人: Bin Benjamin Zhu , Min Feng , Aimin Pan , Yuan Kong , Nathan C. Sherman , Hui Fan , Rui Guo , Josh Benaloh
CPC分类号: G06F21/34 , G06F21/40 , G06F21/41 , G06F21/46 , H04L63/083
摘要: A security-enhanced login technique that provides a convenient and easy-to-use two factor technique to enhance the security of passwords without requiring any changes on the server side of a client-server network. The technique employs a convenient and easy-to-use two-factor technique to generate strong passwords for Web and other applications. In this technique, a convenient or personal device such as a mouse is used as the other factor besides a user password. A secret stored in the mouse or other personal device is hashed together with the password entered by a user and the server ID, to generate a strong, server-specific password which is used to authenticate the user to the server. This password enhancement operation is carried out inside the personal device.
摘要翻译: 一种安全增强的登录技术,提供了一种方便易用的双因素技术来增强密码的安全性,而不需要在客户端 - 服务器网络的服务器端进行任何更改。 该技术采用方便易用的双因素技术为Web和其他应用程序生成强大的密码。 在这种技术中,除了用户密码之外,还使用诸如鼠标之类的便利的或个人的设备作为另一个因素。 存储在鼠标或其他个人设备中的秘密与用户输入的密码和服务器ID一起被散列,以生成用于向服务器认证用户的强大的服务器专用密码。 该密码增强操作在个人设备内部进行。
-
公开(公告)号:US20090175442A1
公开(公告)日:2009-07-09
申请号:US11970161
申请日:2008-01-07
申请人: Min Feng , Bin Benjamin Zhu
发明人: Min Feng , Bin Benjamin Zhu
CPC分类号: H04L63/0407 , G06F21/10 , G06F21/6245 , H04L9/0833 , H04L9/302 , H04L9/3073 , H04L9/3257 , H04L63/0442 , H04L63/126 , H04L2209/56 , H04L2209/603 , H04L2463/062 , H04L2463/101 , Y10S705/901 , Y10S705/902 , Y10S705/904 , Y10S705/908
摘要: Technologies for a Consumer Privacy Digital Rights Management system based on stable partially blind signatures that enable a license server to provide licenses for delivery to users without knowing the corresponding digital contents that users access with the license. Therefore consumer privacy is protected during license acquisition. Further, if the client DRM module in the DRM system does not disclose any information about a user's digital content access, and the messages that the client DRM module sends out are in plain text enabling verification that the client DRM module is not disclosing such information, then consumer privacy is fully protected by the DRM system.
摘要翻译: 基于稳定的部分盲签名的消费者隐私数字版权管理系统的技术,使得许可证服务器能够在不知道用户使用许可证访问的相应数字内容的情况下,向用户提供许可证。 因此,许可证获取期间保护消费者的隐私。 此外,如果DRM系统中的客户端DRM模块没有透露关于用户的数字内容访问的任何信息,并且客户端DRM模块发送的消息是纯文本的,使得能够验证客户端DRM模块没有公开这样的信息, 那么消费者隐私就被DRM系统完全保护。
-
9.发明授权Distributed single sign on technologies including privacy protection and proactive updating 有权分布式单点登录技术,包括隐私保护和主动更新公开(公告)号:US09160528B2
公开(公告)日:2015-10-13
申请号:US13408875
申请日:2012-02-29
申请人: Bin Benjamin Zhu , Min Feng
发明人: Bin Benjamin Zhu , Min Feng
CPC分类号: H04L63/0815 , H04L9/085 , H04L9/3218 , H04L9/3226 , H04L63/0435 , H04L63/083 , H04L63/10
摘要: Technologies for distributed single sign-on operable to provide user access to a plurality of services via authentication to a single entity. The distributed single sign-on technologies provide a set of authentication servers and methods for privacy protection based on splitting secret, keys and user profiles into secure shares and periodically updating shares among the authentication servers without affecting the underlying secrets. The correctness of the received partial token or partial profiles can be verified with non-interactive zero-knowledge proofs.
摘要翻译: 用于分布式单点登录的技术可操作以通过认证向单个实体提供用户对多个服务的访问。 分布式单点登录技术提供了一套基于将秘密,密钥和用户配置文件分解为安全共享的认证服务器和隐私保护方法,并定期更新认证服务器之间的共享,而不会影响潜在的秘密。 可以使用非交互式零知识证明来验证所接收的部分令牌或部分简档的正确性。
-
10.发明申请DISTRIBUTED SINGLE SIGN ON TECHNOLOGIES INCLUDING PRIVACY PROTECTION AND PROACTIVE UPDATING 有权分布式技术的单一标识,包括隐私保护和主动更新公开(公告)号:US20120159588A1
公开(公告)日:2012-06-21
申请号:US13408875
申请日:2012-02-29
申请人: Bin Benjamin Zhu , Min Feng
发明人: Bin Benjamin Zhu , Min Feng
IPC分类号: G06F21/00
CPC分类号: H04L63/0815 , H04L9/085 , H04L9/3218 , H04L9/3226 , H04L63/0435 , H04L63/083 , H04L63/10
摘要: Technologies for distributed single sign-on operable to provide user access to a plurality of services via authentication to a single entity. The distributed single sign-on technologies provide a set of authentication servers and methods for privacy protection based on splitting secret, keys and user profiles into secure shares and periodically updating shares among the authentication servers without affecting the underlying secrets. The correctness of the received partial token or partial profiles can be verified with non-interactive zero-knowledge proofs.
摘要翻译: 用于分布式单点登录的技术可操作以通过认证向单个实体提供用户对多个服务的访问。 分布式单点登录技术提供了一套基于将秘密,密钥和用户配置文件分解为安全共享的认证服务器和隐私保护方法,并定期更新认证服务器之间的共享,而不会影响潜在的秘密。 可以使用非交互式零知识证明来验证所接收的部分令牌或部分简档的正确性。
-
-
-
-
-
-
-
-
-
搜索结果
44 条记录 (耗时 0.027 秒)
