-
1.发明授权Method, system and computer program product for secure ticketing in a communications device 有权用于通信设备中安全票务的方法,系统和计算机程序产品公开(公告)号:US07207060B2
公开(公告)日:2007-04-17
申请号:US10051249
申请日:2002-01-22
CPC分类号: G07F7/1008 , G06Q20/04 , G06Q20/045 , G06Q20/1235 , G06Q20/341 , G06Q20/346 , G06Q20/35765 , G06Q20/3823 , G07F7/082 , G07F7/1083 , H04M2250/14
摘要: Method, system and computer program product for secure ticketing in a communications device. In particular, the method, system and computer program product utilizes cryptography and an external, read-write security element to securely transmit and store critical data utilized by users of a communications device. Using the present invention, third-parties can prevent the fraudulent use of third-party services without detection.
摘要翻译: 用于通信设备中安全票务的方法,系统和计算机程序产品。 特别地,方法,系统和计算机程序产品利用加密和外部读写安全元件来安全地传送和存储由通信设备的用户使用的关键数据。 使用本发明,第三方可以防止在不检测的情况下欺骗性地使用第三方服务。
-
公开(公告)号:US10374799B2
公开(公告)日:2019-08-06
申请号:US14111007
申请日:2011-04-13
摘要: A method, apparatus, system and computer program where an apparatus stores user specific credentials, receives a certificate via the communication interface from a certificate authority and stores the certificate in the memory. The apparatus further stores a private key and a public key in the memory and attempts authenticating of the apparatus to a ticket reader for accessing a service, by transmission of one or more messages, wherein the messages contain an authenticator that has at least one of the following: the certificate or its cryptographic derivative; one or more data items contained by the certificate or a cryptographic derivative thereof. The messages are prepared such that the public key is not recoverable from outside of the authenticator.
-
公开(公告)号:US09503462B2
公开(公告)日:2016-11-22
申请号:US11672900
申请日:2007-02-08
申请人: Nadarajah Asokan , Govind Krishnamurthi , Tat Chan
发明人: Nadarajah Asokan , Govind Krishnamurthi , Tat Chan
CPC分类号: H04L63/126 , G06F21/32 , H04L63/0861 , H04L63/0869 , H04L63/1441 , H04L63/1466 , H04W12/06 , H04W12/08
摘要: A method for authenticating communicating parties is disclosed. In the method biometric information associated with a first party is generated based on a recording of the first party presenting a predefined input parameter. Said biometric information may then be transmitted to a second party. Authenticity of a security parameter associated with the first party can then be verified based on said biometric information.
摘要翻译: 公开了一种认证通信方的方法。 在该方法中,基于呈现预定义的输入参数的第一方的记录来生成与第一方相关联的生物特征信息。 然后可以将所述生物特征信息传送给第二方。 然后可以基于所述生物特征信息来验证与第一方相关联的安全参数的真实性。
-
公开(公告)号:US09300641B2
公开(公告)日:2016-03-29
申请号:US11352058
申请日:2006-02-10
CPC分类号: H04L63/0892 , G06F9/4416 , H04L9/0844 , H04L63/06 , H04L63/061 , H04L63/0807 , H04L63/083 , H04L63/0876 , H04L63/12 , H04L63/123 , H04L63/166 , H04L2209/80 , H04W12/04 , H04W12/06
摘要: An approach is provided for performing authentication in a communication system. In one embodiment, a key is established with a terminal in a communication network according to a key agreement protocol. The agreed key is tied to an authentication procedure to provide a security association that supports reuse of the key. A master key is generated based on the agreed key. In another embodiment, digest authentication is combined with key exchange parameters (e.g., Diffie-Hellman parameters) in the payload of the digest message, in which a key (e.g., SMEKEY or MN-AAA) is utilized as a password. In yet another embodiment, an authentication algorithm (e.g., Cellular Authentication and Voice Encryption (CAVE)) is employed with a key agreement protocol with conversion functions to support bootstrapping.
-
5.发明申请METHOD AND APPARATUS FOR PROVIDING FILE ACCESS USING APPLICATION-PRIVATE STORAGE 审中-公开使用应用程序存储提供文件访问的方法和装置公开(公告)号:US20130304764A1
公开(公告)日:2013-11-14
申请号:US13468598
申请日:2012-05-10
CPC分类号: G06F16/9535
摘要: An approach is provided for determining one or more social networks. A processor may then process and/or facilitate a processing of access information associated with one or more files, wherein access to the one or more files is based, at least in part, on the one or more social networks.
摘要翻译: 提供了一种用于确定一个或多个社交网络的方法。 然后,处理器可以处理和/或促进与一个或多个文件相关联的访问信息的处理,其中对所述一个或多个文件的访问至少部分地基于所述一个或多个社交网络。
-
公开(公告)号:US08566910B2
公开(公告)日:2013-10-22
申请号:US12782216
申请日:2010-05-18
IPC分类号: G06F7/04
CPC分类号: H04L29/12613 , H04L9/321 , H04L9/3263 , H04L9/3273 , H04L29/12066 , H04L61/1511 , H04L61/301 , H04L63/0823 , H04L63/101 , H04L2209/80 , H04W4/00 , H04W12/04 , H04W12/08
摘要: A method includes identifying an application installed on a device as an authorized application of a certain domain, the application being signed with a private key; deriving a signer identity using a public key that forms a key pair with the private key; mapping the certain domain to another domain using a deterministic function map; making a request to the another domain to obtain a list of signer identities that are authorized to act on behalf of the certain domain; determining whether the signer of the application is in the list and, if it is, authorizing the application to act with the same privileges as granted in the certain domain. Apparatus and computer programs for performing the method are also disclosed.
摘要翻译: 一种方法包括将安装在设备上的应用标识为特定域的授权应用,该应用使用私钥进行签名; 使用与私钥形成密钥对的公钥来导出签名者身份; 使用确定性函数图将特定域映射到另一个域; 向另一个域发出请求以获得被授权代表某个域的签名者身份的列表; 确定应用程序的签名者是否在列表中,如果是,授权应用程序以在特定域中授予的相同权限来执行。 还公开了用于执行该方法的装置和计算机程序。
-
7.发明授权公开(公告)号:US08484466B2
公开(公告)日:2013-07-09
申请号:US11575967
申请日:2006-11-16
申请人: Janne Marin , Kari Kostiainen , Nadarajah Asokan , Seamus Moloney , Philip Ginzboorg , Javier Lafuente
发明人: Janne Marin , Kari Kostiainen , Nadarajah Asokan , Seamus Moloney , Philip Ginzboorg , Javier Lafuente
IPC分类号: H04L29/06
CPC分类号: H04L9/0841 , H04L63/061 , H04L2209/80 , H04W12/04 , H04W84/12 , H04W84/18
摘要: A system and method for efficiently enabling local security connectivity between electronic devices over multiple bearers. Electronic devices are configured to advertise, over each bearer, their respective configuration parameters for each bearer. After a connection has been established between the electronic devices over a first bearer, the two electronic devices use the first bearer to establish connections over the other bearers using the configuration parameters contained in the advertisements and advertised over the first bearer. Shared keys are established for the other bearers either using keys derived from the first shared key or by using the first secure connection as an out-of-band channel. The present invention also provides for the creation of an ad hoc WLAN connection once a Bluetooth connection has been established.
摘要翻译: 一种用于在多个承载上有效地实现电子设备之间的本地安全连接的系统和方法。 电子设备被配置为在每个承载上通告每个承载的各自的配置参数。 在通过第一承载在电子设备之间建立连接之后,两个电子设备使用第一承载通过使用包含在广告中并通过第一承载通告的配置参数在其他承载上建立连接。 使用从第一共享密钥导出的密钥或通过使用第一安全连接作为带外信道为其他承载建立共享密钥。 一旦建立蓝牙连接,本发明还提供了创建自组织WLAN连接。
-
公开(公告)号:US20120239936A1
公开(公告)日:2012-09-20
申请号:US13513662
申请日:2009-12-18
CPC分类号: H04L9/3242 , H04L9/3213 , H04L9/3226 , H04L9/3263 , H04L2209/76 , H04W12/0023 , H04W12/00403 , H04W12/04
摘要: Methods and apparatus, including computer program products, are provided for credential transfer. In one aspect there is provided a method. The method may include receiving, at a first device, an authorization token; determining, at the first device, a delegation token, one or more credentials, and metadata; and providing, by the first device to a second device, the delegation token, the one or more credentials, and the metadata. Related apparatus, systems, methods, and articles are also described.
摘要翻译: 提供方法和设备,包括计算机程序产品,用于凭证转移。 在一个方面,提供了一种方法。 该方法可以包括在第一设备处接收授权令牌; 在第一设备处确定委托令牌,一个或多个凭证和元数据; 以及由第一设备向第二设备提供委托令牌,一个或多个凭证和元数据。 还描述了相关装置,系统,方法和制品。
-
公开(公告)号:US08059818B2
公开(公告)日:2011-11-15
申请号:US11057107
申请日:2005-02-11
IPC分类号: H04L9/00
CPC分类号: H04L63/062 , H04L9/0844 , H04L9/0891 , H04L9/0894 , H04L9/30 , H04L63/10 , H04L2209/805
摘要: The present invention relates to a method and a system of securely storing data on a network (100) for access by an authorized domain (101, 102, 103), which authorized domain includes at least two devices that share a confidential domain key (K), and an authorized domain management system for securely storing data on a network for access by an authorized domain. The present invention enables any member device to store protected data on the network such that any other member device can access the data in plaintext without having to communicate with the device that actually stored the data.
摘要翻译: 本发明涉及一种在由授权域(101,102,103)进行访问的网络(100)上安全地存储数据的方法和系统,该授权域包括至少两个共享机密域密钥(K )以及用于在网络上安全地存储数据以由授权域访问的授权域管理系统。 本发明使得任何成员设备能够在网络上存储受保护的数据,使得任何其他成员设备可以以明文方式访问数据,而不必与实际存储数据的设备进行通信。
-
公开(公告)号:US07707412B2
公开(公告)日:2010-04-27
申请号:US10528161
申请日:2002-11-25
申请人: Kaisa Nyberg , Valtteri Niemi , Nadarajah Asokan
发明人: Kaisa Nyberg , Valtteri Niemi , Nadarajah Asokan
IPC分类号: H04L9/32
CPC分类号: H04L63/0869 , H04L63/162 , H04W12/06
摘要: A system and method for authenticating a terminal in a communication system is described. The method includes executing a terminal authentication protocol, whereby the executing the terminal authentication protocol includes authenticating an identity of a network entity by a terminal in a communication system. The method further includes executing a challenge authentication protocol, wherein the executing the challenge authentication protocol includes sharing challenge data between the terminal and the network entity, and forming at the terminal, test data by at least applying one authentication function to the challenge data using the identifier. The executing the challenge authentication protocol further includes transmitting a message including terminal authentication data from the terminal to the network entity, and determining, based on the terminal authentication data, whether to provide the terminal with access to a service.
摘要翻译: 描述用于认证通信系统中的终端的系统和方法。 该方法包括执行终端认证协议,由此执行终端认证协议包括通信系统中的终端认证网络实体的身份。 该方法还包括执行挑战认证协议,其中执行挑战认证协议包括在终端和网络实体之间共享挑战数据,以及在终端上形成测试数据,至少使用一个认证功能将其应用于质询数据 标识符 执行挑战认证协议还包括从终端向网络实体发送包括终端认证数据的消息,并且基于终端认证数据确定是否向终端提供对服务的访问。
-
-
-
-
-
-
-
-
-
搜索结果
91 条记录 (耗时 0.031 秒)
