-
公开(公告)号:US20140245007A1
公开(公告)日:2014-08-28
申请号:US14270120
申请日:2014-05-05
Applicant: Broadcom Corporation
Inventor: Mark BUER , Ed FRANK , Nambi SESHADRI
CPC classification number: H04L9/3263 , H04L9/30 , H04L9/321 , H04L63/06 , H04L63/068 , H04L63/0823 , H04L63/0861 , H04L63/0884 , H04W12/06
Abstract: Techniques are provided for users to authenticate themselves to components in a system. The users may securely and efficiently enter credentials into the components. These credentials may be provided to a server in the system with strong authentication that the credentials originate from secure components. The server may then automatically build a network by securely distributing keys to each secure component to which a user presented credentials.
Abstract translation: 为用户提供了技术来对系统中的组件进行身份验证。 用户可以安全有效地将凭据输入到组件中。 这些凭证可以被提供给具有认证的系统中的服务器,证书来自安全组件。 然后,服务器可以通过将密钥安全地分发给用户呈现证书的每个安全组件来自动构建网络。
-
公开(公告)号:US20160248595A1
公开(公告)日:2016-08-25
申请号:US15066490
申请日:2016-03-10
Applicant: Broadcom Corporation
Inventor: Mark BUER , Ed FRANK , Nambi SESHADRI
CPC classification number: H04L9/3263 , H04L9/30 , H04L9/321 , H04L63/06 , H04L63/068 , H04L63/0823 , H04L63/0861 , H04L63/0884 , H04W12/06
Abstract: Techniques are provided for users to authenticate themselves to components in a system. The users may securely and efficiently enter credentials into the components. These credentials may be provided to a server in the system with strong authentication that the credentials originate from secure components. The server may then automatically build a network by securely distributing keys to each secure component to which a user presented credentials.
Abstract translation: 为用户提供了技术来对系统中的组件进行身份验证。 用户可以安全有效地将凭据输入到组件中。 这些凭证可以被提供给具有认证的系统中的服务器,证书来自安全组件。 然后,服务器可以通过将密钥安全地分发给用户呈现证书的每个安全组件来自动构建网络。
-
公开(公告)号:US20150058620A1
公开(公告)日:2015-02-26
申请号:US14447131
申请日:2014-07-30
Applicant: Broadcom Corporation
Inventor: Mark BUER , Ed FRANK , Nambi SESHADRI
CPC classification number: H04L63/0823 , G06F21/35 , G06Q20/327 , G07C9/00007 , H04L9/32 , H04L63/0492 , H04L63/0807 , H04L63/0853 , H04L63/0861 , H04L2209/805 , H04W4/021 , H04W4/80
Abstract: An authorized user may be provided access to a service only when a wireless token assigned to the user is in the proximity of a computing device. A user's credential may be stored on an RFID token and an RFID reader may be implemented within a security boundary on the computing device. Thus, the credential may be passed to the security boundary without passing through the computing device via software messages or applications. The security boundary may be provided, in part, by incorporating the RFID reader onto the same chip as a cryptographic processing component. Once the information is received by the RFID reader it may be encrypted within the chip. As a result, the information may never be presented in the clear outside of the chip. The cryptographic processing component may cryptographically encrypt/sign the credential received from the token.
Abstract translation: 只有当分配给用户的无线令牌处于计算设备附近时,才可以向授权用户提供对服务的访问。 用户的证书可以存储在RFID令牌上,并且可以在计算设备上的安全边界内实现RFID读取器。 因此,凭证可以被传递到安全边界,而不经由软件消息或应用程序通过计算设备。 可以部分地通过将RFID读取器结合到与密码处理部件相同的芯片上来提供安全边界。 一旦RFID读取器接收到信息,它可以在芯片内进行加密。 因此,信息可能永远不会出现在芯片外面。 加密处理组件可以对从令牌接收到的凭证进行密码加密/签名。
-
-
Search Results
3
records
(took 0.023 seconds)
