公开(公告)号：US20100197292A1

公开(公告)日：2010-08-05

申请号：US12758254

申请日：2010-04-12

申请人： Michael K. Brown ,  Michael S. Brown ,  Michael G. Kirkup

发明人： Michael K. Brown ,  Michael S. Brown ,  Michael G. Kirkup

IPC分类号： H04M3/00

CPC分类号： H04M1/72519 ,  G06Q10/107

摘要： A device and method for generating user notifications associated with tasks that are pending completion on a mobile device. When additional input is required from a user of the mobile device to complete performance of a task and is not being received from the user within a predefined time period, at least one form of user notification is generated. The particular form or forms of user notification are defined by a user profile associated with the user. User notifications may comprise visual, audible, and/or vibratory alerts, and different forms of these user notifications may be generated in a sequence. The volume of audible alerts or the period between periodic user notifications may vary over time.

摘要翻译： 一种用于生成与在移动设备上等待完成的任务相关联的用户通知的设备和方法。 当需要来自移动设备的用户的附加输入以完成任务的执行并且在预定时间段内没有从用户接收到时，将产生至少一种形式的用户通知。 用户通知的特定形式或形式由与用户相关联的用户简档定义。 用户通知可以包括视觉，听觉和/或振动警报，并且可以按顺序生成这些用户通知的不同形式。 可听警报的音量或定期用户通知之间的时间间隔可能会随时间而变化。

公开(公告)号：US07756932B2

公开(公告)日：2010-07-13

申请号：US11192116

申请日：2005-07-29

申请人： Michael K. Brown ,  Michael S. Brown ,  Michael G. Kirkup

发明人： Michael K. Brown ,  Michael S. Brown ,  Michael G. Kirkup

IPC分类号： G06F15/16

CPC分类号： H04L63/102 ,  H04L51/00 ,  H04L51/14 ,  H04L51/38 ,  H04L63/0823

摘要： A system and method for processing messages being composed by a user of a computing device (e.g. a mobile device). Embodiments are described in which the performance of certain tasks is initiated before a direction is received from a user to send a message being composed by the user. This may involve, for example, “pre-fetching” security-related data that will be required in order to send a message that is in the process of being composed by the user securely. Such data may include security policy data, certificate data, and/or certificate status data, for example.

摘要翻译： 一种用于处理由计算设备（例如，移动设备）的用户组成的消息的系统和方法。 描述了在从用户接收到发送由用户正在组成的消息的方向之前启动某些任务的性能的实施例。 这可能涉及例如“预取”与安全相关的数据，这是为了发送正在由用户安全地组成的消息所需要的。 这样的数据可以包括例如安全策略数据，证书数据和/或证书状态数据。

公开(公告)号：US07726566B2

公开(公告)日：2010-06-01

申请号：US11106467

申请日：2005-04-15

申请人： Michael K. Brown ,  Herb Little ,  Neil Adams

发明人： Michael K. Brown ,  Herb Little ,  Neil Adams

IPC分类号： G06K7/08 ,  G06K7/00 ,  G06K19/00 ,  H04B1/38

CPC分类号： G06K19/0723 ,  G06K7/0008

摘要： A system includes a wireless-enabled smart card reader able to be connected concurrently to at least two devices and a mobile device able to be connected wirelessly to the smart card reader and to control connections of the smart card reader.

摘要翻译： 系统包括能够同时连接至少两个设备的无线功能的智能卡阅读器以及能够无线地连接到智能卡读卡器并且控制智能卡读卡器的连接的移动设备。

公开(公告)号：US20100122089A1

公开(公告)日：2010-05-13

申请号：US12691204

申请日：2010-01-21

申请人： James A. Godfrey ,  Herbert A. Little ,  Michael K. Brown ,  Neil P. Adams ,  Carl L. Cherry ,  Timothy R. Tyhurst ,  Michael S. Brown

发明人： James A. Godfrey ,  Herbert A. Little ,  Michael K. Brown ,  Neil P. Adams ,  Carl L. Cherry ,  Timothy R. Tyhurst ,  Michael S. Brown

IPC分类号： H04L9/00

CPC分类号： H04L12/5835 ,  G06Q10/107 ,  H04L51/066 ,  H04L51/38 ,  H04L63/0442 ,  H04L63/045 ,  H04L63/062 ,  H04L63/101 ,  H04L63/126 ,  H04L67/04 ,  H04L67/28 ,  H04L67/2828 ,  H04L69/04 ,  H04L69/329 ,  H04L2463/062 ,  H04W4/12 ,  H04W4/16 ,  H04W12/02 ,  H04W12/10 ,  H04W24/02 ,  H04W28/06

摘要： A system and method are provided for pre-processing encrypted and/or signed messages at a host system before the message is transmitted to a wireless mobile communication device. The message is received at the host system from a message sender. There is a determination as to whether any of the message receivers has a corresponding wireless mobile communication device. For each message receiver that has a corresponding wireless mobile communication device: the message is processed so as to modify the message with respect to encryption and/or authentication aspect. The processed message is transmitted to a wireless mobile communication device that corresponds to the first message receiver. The system and method may include post-processing messages sent from a wireless mobile communications device to a remote system. Authentication and/or encryption message processing is performed upon the message. The processed message may then be sent through the remote system to one or more receivers.

摘要翻译： 提供了一种用于在将消息发送到无线移动通信设备之前在主机系统处理加密和/或签名的消息的系统和方法。 消息在主机系统从消息发送方接收。 确定任何消息接收机是否具有相应的无线移动通信设备。 对于具有对应的无线移动通信设备的每个消息接收机：处理消息以便修改关于加密和/或认证方面的消息。 经处理的消息被发送到对应于第一消息接收器的无线移动通信设备。 系统和方法可以包括从无线移动通信设备发送到远程系统的后处理消息。 对消息执行认证和/或加密消息处理。 经处理的消息然后可以通过远程系统发送到一个或多个接收器。

公开(公告)号：US20100104102A1

公开(公告)日：2010-04-29

申请号：US12651630

申请日：2010-01-04

申请人： Michael K. Brown ,  Herbert A. Little ,  David Victor MacFarlane ,  Michael S. Brown ,  Dinah Lea Marie Davis

发明人： Michael K. Brown ,  Herbert A. Little ,  David Victor MacFarlane ,  Michael S. Brown ,  Dinah Lea Marie Davis

IPC分类号： H04K1/00

CPC分类号： H04L9/08 ,  H04L9/002 ,  H04L9/0841 ,  H04L9/0844 ,  H04L9/3066 ,  H04L9/3215 ,  H04L9/3226 ,  H04L63/061 ,  H04L63/083 ,  H04L63/18 ,  H04L2209/80 ,  H04W12/04 ,  H04W12/06

摘要： A method for secure bidirectional communication between two systems is described. A first key pair and a second key pair are generated, the latter including a second public key that is generated based upon a shared secret. First and second public keys are sent to a second system, and third and fourth public keys are received from the second system. The fourth public key is generated based upon the shared secret. A master key for encrypting messages is calculated based upon a first private key, a second private key, the third public key and the fourth public key. For re-keying, a new second key pair having a new second public key and a new second private key is generated, and a new fourth public key is received. A new master key is calculated using elliptic curve calculations using the new second private key and the new fourth public key.

摘要翻译： 描述了两个系统之间的安全双向通信的方法。 产生第一密钥对和第二密钥对，后者包括基于共享秘密生成的第二公钥。 第一和第二公钥被发送到第二系统，并且从第二系统接收第三和第四公钥。 第四个公钥是基于共享的秘密生成的。 基于第一私钥，第二私钥，第三公钥和第四公钥来计算用于加密消息的主密钥。 为了重新键入，生成具有新的第二公钥和新的第二私钥的新的第二密钥对，并接收新的第四公钥。 使用新的第二私钥和新的第四公钥，使用椭圆曲线计算来计算新的主密钥。

公开(公告)号：US20100082976A1

公开(公告)日：2010-04-01

申请号：US12632217

申请日：2009-12-07

申请人： Michael S. Brown ,  Michael K. Brown ,  Herbert A. Little ,  Neil P. Adams ,  Michael G. Kirkup

发明人： Michael S. Brown ,  Michael K. Brown ,  Herbert A. Little ,  Neil P. Adams ,  Michael G. Kirkup

IPC分类号： H04L29/00 ,  H04L29/06 ,  H04L9/00 ,  H04L9/32 ,  H04L9/30 ,  G06F17/30

CPC分类号： H04L9/3265 ,  H04L61/1523 ,  H04L63/0823 ,  H04L2209/80 ,  H04W12/04

摘要： A system and method for searching and retrieving certificates, which may be used in the processing of encoded messages. In one embodiment, a certificate synchronization application is programmed to perform certificate searches by querying one or more certificate servers for all certificate authority (CA) certificates and cross-certificates on the certificate servers. In another embodiment, all certificates related to an identified certificate are retrieved from the certificate servers automatically by the certificate synchronization application, where the related certificates comprise at least one of one or more CA certificates and one or more cross-certificates. Embodiments of the invention facilitate at least partial automation of the downloading and establishment of certificate chains, thereby minimizing the need for users to manually search for individual certificates.

摘要翻译： 用于搜索和检索证书的系统和方法，其可以用于编码消息的处理。 在一个实施例中，证书同步应用程序被编程为通过在一个或多个证书服务器上查询证书服务器上的所有证书颁发机构（CA）证书和交叉证书来执行证书搜索。 在另一个实施例中，证书同步应用程序自动从证书服务器检索与所识别的证书相关的所有证书，其中相关证书包括一个或多个CA证书和一个或多个交叉证书中的至少一个。 本发明的实施例促进了证书链的下载和建立的至少部分自动化，从而最小化对用户手动搜索单个证书的需要。

公开(公告)号：US07653696B2

公开(公告)日：2010-01-26

申请号：US11192115

申请日：2005-07-29

申请人： Michael K. Brown ,  Michael G. Kirkup ,  Michael S. Brown

发明人： Michael K. Brown ,  Michael G. Kirkup ,  Michael S. Brown

IPC分类号： G06F15/16

CPC分类号： H04W12/10 ,  H04L51/28 ,  H04L63/123 ,  H04L63/126 ,  H04L63/168

摘要： A method and apparatus for processing digitally signed messages in which address mismatch errors are detected. In at least one aspect, the number of address mismatch errors reported to a user for a message may be minimized for messages that properly incorporate message portions signed by someone other than the sender of the message, as may be the case where the message contains a conversation thread for example, by performing at least one predetermined action for digital signatures corresponding to signed data appearing after a message separator. The message separator may indicate that the message contains data from an older forwarded message or from an older message that has been replied to, for example. The at least one-predetermined action may comprise bypassing verification of address matches for those digital signatures, or verifying address matches for those digital signatures but suppressing user notification of any address mismatch errors, for example.

摘要翻译： 一种用于处理其中检测到地址不匹配错误的数字签名消息的方法和装置。 在至少一个方面中，针对消息的用户报告的地址不匹配错误的数量可以被最小化，以适当地合并由消息的发送者以外的其他人签名的消息部分的消息，如可以是消息包含 例如，通过对与消息分离器之后出现的签名数据相对应的数字签名执行至少一个预定动作。 消息分隔符可以指示该消息包含来自较旧转发消息的数据，或者包含已被回复的旧消息。 所述至少一个预定动作可以包括绕过对那些数字签名的地址匹配的验证，或验证那些数字签名的地址匹配，但抑制用户对任何地址不匹配错误的通知。

公开(公告)号：US07613304B2

公开(公告)日：2009-11-03

申请号：US11073677

申请日：2005-03-08

申请人： Neil P. Adams ,  Michael S. Brown ,  Michael K. Brown

发明人： Neil P. Adams ,  Michael S. Brown ,  Michael K. Brown

IPC分类号： H04L9/08

CPC分类号： H04L51/28 ,  H04L9/3263 ,  H04L51/066 ,  H04L51/14 ,  H04L63/0442 ,  H04L2209/80

摘要： A system and method for sending encrypted messages to a distribution list that facilitates the sending of such messages only to individuals or other entities associated with the distribution list that will be able to read the message. In one embodiment, the method comprises the steps of: identifying a distribution list address in a message; determining one or more member addresses associated with the distribution list address; for each member address, determining if a public key for a member identified by the respective member address is available on the computing device; encrypting the message to each member identified by the one or more member addresses for which a public key for the respective member is available on the computing device; sending the encrypted message to the distribution list address if each of the one or more member addresses associated with the distribution list identifies a member for which a public key is available on the computing device; and sending the message to each of the one or more member addresses that identifies a member for which a public key is available on the computing device otherwise.

摘要翻译： 用于将加密的消息发送到分发列表的系统和方法，其便于仅将这些消息发送到个人或与分发列表相关联的其他可能读取消息的实体。 在一个实施例中，该方法包括以下步骤：识别消息中的分发列表地址; 确定与所述分发列表地址相关联的一个或多个成员地址; 对于每个成员地址，确定由所述相应成员地址识别的成员的公钥是否在所述计算设备上可用; 将所述消息加密到由所述计算设备上可用于所述相应成员的公钥的所述一个或多个成员地址识别的每个成员; 如果与分发列表相关联的一个或多个成员地址中的每一个标识在计算设备上可用的公钥的成员，则将加密的消息发送到分发列表地址; 并且将所述消息发送到所述一个或多个成员地址中，所述成员地址标识在所述计算设备上公用密钥可用的成员，否则。

公开(公告)号：US20090235351A1

公开(公告)日：2009-09-17

申请号：US12470807

申请日：2009-05-22

申请人： Michael K. Brown ,  Thomas C. Nagy ,  Ian M. Robertson

发明人： Michael K. Brown ,  Thomas C. Nagy ,  Ian M. Robertson

IPC分类号： H04L29/08 ,  H04W28/12

CPC分类号： H04L63/0272 ,  H04L63/062 ,  H04L63/18 ,  H04W12/02

摘要： Protection of real-time data such as voice data exchanged as packets between a mobile electronic device and a VPN gateway during a media session over a communications link that includes a wireless network. A first VPN connection is established between the mobile electronic device and the VPN gateway through the communications link, the first VPN connection using key-based encryption to protect data exchanged therethrough. While the first VPN connection is established, a second VPN connection is established between the mobile electronic device and the VPN gateway through the communications link, the second VPN connection using key-based encryption to protect data exchanged therethrough. Real-time data packets are exchanged between the mobile electronic device and the VPN gateway through the second VPN connection.

摘要翻译： 在包括无线网络的通信链路的媒体会话期间，保护实时数据，例如在移动电子设备和VPN网关之间作为分组交换的语音数据。 通过通信链路在移动电子设备和VPN网关之间建立第一个VPN连接，第一个VPN连接使用基于密钥的加密来保护通过其交换的数据。 当建立第一VPN连接时，通过通信链路在移动电子设备和VPN网关之间建立第二VPN连接，第二VPN连接使用基于密钥的加密来保护通过其交换的数据。 通过第二个VPN连接在移动电子设备和VPN网关之间交换实时数据包。

公开(公告)号：US20090220084A1

公开(公告)日：2009-09-03

申请号：US12039841

申请日：2008-02-29

申请人： Michael K. Brown ,  Michael S. Brown ,  Michael G. Kirkup ,  George Babu

发明人： Michael K. Brown ,  Michael S. Brown ,  Michael G. Kirkup ,  George Babu

IPC分类号： H04L9/00

CPC分类号： H04L9/08 ,  H04L2209/60 ,  H04L2209/80

摘要： Systems and methods for processing messages within a wireless communications system are disclosed. At least part of an encrypted message is received at a device for which it is intended. A security indicator on the device indicates that a message is encrypted. The message is decrypted, and it is determined whether the decrypted message includes a logical attachment. If there is such a logical attachment, an attachment indicator on the device indicates that the encrypted message includes an attachment associated with the message independent of the encryption attachment itself. The indicators may be updated via direct user action, or transparently and free from direct user input to said device.

摘要翻译： 公开了一种在无线通信系统内处理消息的系统和方法。 加密消息的至少一部分在其所期望的设备处被接收。 设备上的安全指示器指示消息被加密。 消息被解密，并且确定解密的消息是否包括逻辑附件。 如果存在这样的逻辑附件，则设备上的附件指示符指示加密的消息包括与消息相关联的附件，而与加密附件本身无关。 可以通过直接用户操作来更新指示符，或者透明地且不直接向用户输入到所述设备。