利索-全球专利检索

  1. 登录
  2. 注册

搜索结果

118 条记录 (耗时 0.04 秒)

    Copy security for portable music players
    92.
    发明授权
    Copy security for portable music players 有权
    复制便携式音乐播放器的安全性

    公开(公告)号:US06367019B1

    公开(公告)日:2002-04-02

    申请号:US09277439

    申请日:1999-03-26

    申请人: Steven T. Ansell Andrew R. Cherenson Mark E. Paley Steven B. Katz John Michael Kelsey, Jr. Bruce Schneier

    发明人: Steven T. Ansell Andrew R. Cherenson Mark E. Paley Steven B. Katz John Michael Kelsey, Jr. Bruce Schneier

    IPC分类号: G06F1130

    CPC分类号: G11B20/00086 G06F21/10 G06F2211/007 G11B20/00094 G11B20/00115 G11B20/00188 G11B20/00195 G11B20/0021 G11B20/00333 G11B20/00782 G11B20/00797 G11B20/0084

    摘要: Data such as a musical track is stored as a secure portable track (SPT) which can be bound to one or more players and can be bound to a particular storage medium, restricting playback of the SPT to the specific players and ensuring that playback is only from the original storage medium. The SPT is bound to a player by encrypting data of the SPT using a storage key which is unique to the player, is difficult to change, and is held in strict secrecy by the player. The SPT is bound to a particular storage medium by including data uniquely identifying the storage medium in a tamper-resistant form, e.g., cryptographically signed. The SPT can also be bound to the storage medium by embedding cryptographic logic circuitry, e.g., integrate circuitry, in the packaging of the storage medium. The SPT is bound by encrypting an encryption key using the embedded logic. By using unique cryptographic logic, only that particular storage medium can decrypt the encryption key and, therefore, the data of the SPT encrypted with the encryption key. To allow a user to playback the SPT on a number of players, players can share storage keys with one another. Such key sharing is done in a cryptographically secure manner. Before downloading an SPT to a particular external player, the ability of the external player to enforce restrictions placed upon the SPT is verified.

    摘要翻译: 诸如音乐曲目的数据被存储为可以绑定到一个或多个玩家并且可以绑定到特定存储介质的安全便携式轨道(SPT),将SPT的播放限制到特定玩家并确保仅播放仅 从原始存储介质。 SPT通过使用玩家独有的存储密钥加密SPT的数据,难以改变并被玩家严格保密地绑定到玩家。 SPT通过包括以防篡改形式唯一地识别存储介质的数据(例如,加密地签名)来绑定到特定的存储介质。 也可以通过将加密逻辑电路(例如,集成电路)嵌入存储介质的封装中来将SPT绑定到存储介质。 SPT通过使用嵌入式逻辑加密加密密钥来约束。 通过使用唯一的加密逻辑,只有特定的存储介质可以解密加密密钥,并因此解密用加密密钥加密的SPT的数据。 为了允许用户在多个玩家上播放SPT,玩家可以彼此共享存储密钥。 这种密钥共享是以密码安全的方式完成的。 在将SPT下载到特定的外部播放器之前,外部播放器执行对SPT的限制的能力得到了验证。

    Virtual property system
    93.
    发明授权
    Virtual property system 失效
    虚拟财产制度

    公开(公告)号:US6119229A

    公开(公告)日:2000-09-12

    申请号:US834027

    申请日:1997-04-11

    申请人: Ronald Martinez Bruce Schneier Greg Guerin

    发明人: Ronald Martinez Bruce Schneier Greg Guerin

    IPC分类号: A63F13/12 G06F19/00 G06F21/00 G06Q20/04 G06Q20/38 G07F17/32 G06F12/14

    CPC分类号: A63F13/70 A63F13/12 G06F21/10 G06Q20/0453 G06Q20/389 G07F17/32 A63F13/335 A63F2300/407 G06F2221/0737

    摘要: A digital object ownership system is disclosed. The system includes a plurality of user terminals, where each terminal is accessible by at least one individual user. The system also includes at least one central computer system that is capable of communicating with each of the user terminals. A plurality of digital objects are provided, where each of the digital objects has a unique object identification code. Each of the digital objects are assigned to an owner. The digital objects are persistent, such that each of the digital objects is accessible by a particular user both when the user's terminal is in communication with the central computer system and also when the user's terminal is not in communication with the central computer system. The digital objects have utility in connection with communication over a network in that the object requires both the presence of the object identification code and proof of ownership.

    摘要翻译: 公开了数字对象所有权系统。 该系统包括多个用户终端,其中每个终端由至少一个单独的用户访问。 该系统还包括能够与每个用户终端通信的至少一个中央计算机系统。 提供了多个数字对象,其中每个数字对象具有唯一的对象识别码。 每个数字对象都分配给所有者。 数字对象是持久的,使得当用户的终端与中央计算机系统通信时以及当用户的终端不与中央计算机系统通信时,每个数字对象可由特定用户访问。 数字对象在通过网络的通信中具有实用性,因为对象需要存在对象识别码和所有权证明。

    Remote-auditing of computer generated outcomes and authenticated biling and access control system using cryptographic and other protocols
    94.
    发明授权
    Remote-auditing of computer generated outcomes and authenticated biling and access control system using cryptographic and other protocols 失效
    对计算机生成结果进行远程审核,并使用加密和其他协议进行身份验证的加密和访问控制系统

    公开(公告)号:US5768382A

    公开(公告)日:1998-06-16

    申请号:US561668

    申请日:1995-11-22

    申请人: Bruce Schneier Jay Walker James Jorasch

    发明人: Bruce Schneier Jay Walker James Jorasch

    IPC分类号: A63F13/12 G07F17/32 H04L9/32 G06F19/00

    CPC分类号: G07F17/32 A63F13/12 G07F17/3218 A63F2300/401 A63F2300/513 A63F2300/532 A63F2300/535 A63F2300/5513 A63F2300/5546 A63F2300/558

    摘要: A computer device and method for encoding a message corresponding to an outcome of a computer game, and a computer device and method for decoding the message to detect a fraudulent outcome. The computer device used to generate the encoded message includes (1) a memory device containing encoding control code and (2) a processor configured to process the encoding control code in conjunction with a computer game outcome to generate an encoded message containing the computer game outcome and to transmit the encoded message to a human-readable output device, such as a display device. The computer device includes various tamper resistant or tamper evidence features. A secure module containing the processor and memory is used to plug into an existing personal computer or dedicated game device. The method for encoding the message includes the steps of executing a computer game program to generate a computer game outcome, encoding the computer game outcome to generate an encoded message, and providing the encoded message to a user, who may then transmit the encoded message to a device configured for decoding the encoded message to reveal the computer game outcome. A second central or host computer device is used to decode the encoded message. The second computer device has (a) a memory device containing decoding control code and an encoded message corresponding to a computer game outcome and (b) a processor configured to process the code to decode the encoded message to reveal the computer game outcome.

    摘要翻译: 用于对与计算机游戏的结果相对应的消息进行编码的计算机设备和方法,以及用于解码消息以检测欺诈结果的计算机设备和方法。 用于生成编码消息的计算机设备包括(1)包含编码控制代码的存储设备和(2)配置成结合计算机游戏结果处理编码控制代码以生成包含计算机游戏结果的编码消息的处理器 并将编码的消息发送到诸如显示设备的人类可读输出设备。 计算机设备包括各种防篡改或篡改证据的特征。 包含处理器和存储器的安全模块用于插入现有的个人计算机或专用游戏设备。 用于对消息进行编码的方法包括以下步骤:执行计算机游戏程序以产生计算机游戏结果,编码计算机游戏结果以生成编码消息,以及将编码消息提供给用户,然后用户可以将编码消息发送到 被配置为解码编码消息以显示计算机游戏结果的设备。 第二个中央或主机计算机设备用于对编码的消息进行解码。 第二计算机设备具有(a)包含解码控制代码和对应于计算机游戏结果的编码消息的存储设备,以及(b)处理器,被配置为处理代码以解码编码消息以显示计算机游戏结果。

    Method and System for Dynamic Network Intrusion Monitoring, Detection and Response
    96.
    发明申请
    Method and System for Dynamic Network Intrusion Monitoring, Detection and Response 有权
    动态网络入侵监控,检测和响应方法与系统

    公开(公告)号:US20070162973A1

    公开(公告)日:2007-07-12

    申请号:US11551606

    申请日:2006-10-20

    申请人: Bruce Schneier Andrew Gross Jonathan Callas

    发明人: Bruce Schneier Andrew Gross Jonathan Callas

    IPC分类号: G06F12/14

    CPC分类号: G06F21/552 H04L63/1416 H04L63/20

    摘要: A probe attached to a customer's network collects status data and other audit information from monitored components of the network, looking for footprints or evidence of unauthorized intrusions or attacks. The probe filters and analyzes the collected data to identify potentially security-related events happening on the network. Identified events are transmitted to a human analyst for problem resolution. The analyst has access to a variety of databases (including security intelligence databases containing information about known vulnerabilities of particular network products and characteristics of various hacker tools, and problem resolution databases containing information relevant to possible approaches or solutions) to aid in problem resolution. The analyst may follow a predetermined escalation procedure in the event he or she is unable to resolve the problem without assistance from others. Various customer personnel can be alerted in a variety of ways depending on the nature of the problem and the status of its resolution. Feedback from problem resolution efforts can be used to update the knowledge base available to analysts for future attacks and to update the filtering and analysis capabilities of the probe and other systems.

    摘要翻译: 连接到客户网络的探头从网络的受监视组件收集状态数据和其他审核信息,寻找未经授权的入侵或攻击的脚印或证据。 探测器过滤和分析收集的数据,以识别网络上发生的潜在安全相关事件。 识别的事件被传送给人类分析人员以解决问题。 分析人员可以访问各种数据库(包括安全情报数据库,其中包含有关特定网络产品的已知漏洞和各种黑客工具的特征的信息,以及包含与可能的方法或解决方案相关的信息的问题解决数据库),以帮助解决问题。 如果分析人员无法在没有他人协助的情况下解决问题,分析师可能会遵循预定的升级程序。 可以根据问题的性质和其解决状况,以各种方式提醒各种客户人员。 解决问题的反馈可用于更新分析人员可用于未来攻击的知识库,并更新探测器和其他系统的过滤和分析功能。

    Off-line remote lottery system
    98.
    发明授权
    Off-line remote lottery system 失效
    离线远程彩票系统

    公开(公告)号:US6024640A

    公开(公告)日:2000-02-15

    申请号:US858123

    申请日:1997-05-19

    申请人: Jay Walker Bruce Schneier

    发明人: Jay Walker Bruce Schneier

    IPC分类号: G07C15/00 A63F3/08 G06Q10/00 G06Q50/00 G07F17/32 A63F9/00

    CPC分类号: G07F17/3218 G07F17/3251 G07F17/329 A63F2003/086

    摘要: An off-line remote lottery system which enables players to purchase instant-type lottery game outcomes from a randomized prize datastream in a central computer and view the outcomes on remotely disposed gaming computers which do not require an on-line connection to the central computer during play, the central computer storing identification data for a plurality of gaming computers and being configured for randomly assigning outcomes from the randomized prize datastream to the gaming computers in response to purchase requests by players for a requested number of outcomes in each purchase request, each gaming computer including a game program in memory for execution on the gaming computer to generate games which yield the purchased outcomes or aggregate net payoff of the purchased outcomes, and a redemption function for generating a redemption request to cash-out winnings, the system enabling outcome purchase and redemption of winnings to be effectuated directly with the central computer over a telephone network, or via a plurality of agent terminals located at various lottery retailers.

    摘要翻译: 一种离线远程彩票系统,使得玩家能够从中央计算机中的随机奖品数据流购买即时型彩票游戏结果,并且在远程设置的游戏计算机上查看不需要在中央计算机上的在线连接的结果 播放,中央计算机存储多个游戏计算机的识别数据,并且被配置为响应于玩家对每个购买请求中所请求的结果数量的购买请求而将随机分配的奖励数据流的结果随机分配给游戏计算机,每个游戏 计算机,包括用于在游戏计算机上执行的游戏程序,以产生产生购买结果或购买结果的总收益的游戏,以及用于生成兑现奖金的兑换请求的兑换功能,该系统使能结果购买 并通过中央计算直接兑现奖金 r通过电话网络,或经由位于各种彩票零售商的多个代理终端。

    Event auditing system
    99.
    发明授权
    Event auditing system 失效
    活动审计制度

    公开(公告)号:US5978475A

    公开(公告)日:1999-11-02

    申请号:US896785

    申请日:1997-07-18

    申请人: Bruce Schneier John M. Kelsey

    发明人: Bruce Schneier John M. Kelsey

    IPC分类号: G06F1/00 G06F21/00 H04L9/00

    CPC分类号: H04L9/3242 G06F21/6209 G06F21/64 H04L9/0825 H04L9/0841 H04L9/321 H04L9/3297 G06F2221/2101 G06F2221/2107 H04L2209/04 H04L2209/38 H04L2209/56

    摘要: In many computer applications, sensitive information must be kept on an untrusted machine. Such information must be protected against attackers, as well as against partially trusted entities to be given partial, but not total, access to the stored information. This invention provides a method, apparatus and computer-readable data structure for inhibiting an attacker from accessing or corrupting information stored by an untrusted machine. More specifically, in a log file generated during a process in which the untrusted machine is in limited communication with a trusted machine, entries generated prior to the attack remain secure (they cannot be modified without detection), even though subsequent entries can not be trusted. One embodiment of the invention also allows a partially trusted verifier to read and verify entries in the log file, but not to change them without detection. In another embodiment of the invention, operating with or without the trusted machine, the untrusted machine's log file can also incorporate log files of other processes.

    摘要翻译: 在许多计算机应用中,敏感信息必须保存在不受信任的机器上。 此类信息必须受到攻击者的保护,同时还可以防止部分受信任的实体被部分访问,而不是全部访问存储的信息。 本发明提供了一种用于禁止攻击者访问或破坏由不可信机器存储的信息的方法,装置和计算机可读数据结构。 更具体地说,在不信任机器与受信任机器有限通信的处理期间生成的日志文件中,在攻击之前生成的条目保持安全(即使不检测也不能修改它们),即使后续条目不可信 。 本发明的一个实施例还允许部分可信验证者读取和验证日志文件中的条目,但是不在不检测的情况下更改它们。 在本发明的另一个实施例中,在使用或不使用可信机器的情况下,不受信任的机器的日志文件也可以包含其他进程的日志文件。

    Digital signature with auditing bits
    100.
    发明授权
    Digital signature with auditing bits 失效
    数字签名与审计位

    公开(公告)号:US5956404A

    公开(公告)日:1999-09-21

    申请号:US724622

    申请日:1996-09-30

    申请人: Bruce Schneier John Kelsey

    发明人: Bruce Schneier John Kelsey

    IPC分类号: H04L9/32 H04L9/00

    CPC分类号: H04L9/3234 G06Q20/401 H04L9/3247 H04L9/3297 H04L2209/38 H04L2209/56

    摘要: A method for digitally signing a message by a tamper-resistant device to generate a digital signature. The method includes the step of hashing the message to form message bits; and encrypting with a private key the message bits, redundancy bits for the security of the signature, and auditing bits to form the digital signature for the message. The auditing bits provide an audit trail for the message. The auditing bits include one or more of the following categories: signature-packet version bits to identify the version of the device generating the signature; device ID bits to identify the token generating the digital signature; key ID bits to identify the private key; a packet-sequence number, which increments every time the device generates a signature to indicate the sequence of signatures generated; bits generated by hashing the prior signature to provide an auditing trail of signatures generated and a time-stamp to indicate the time when the signature is generated. The auditing bits may further include a random number.

    摘要翻译: 一种用于通过防篡改设备对消息进行数字签名以产生数字签名的方法。 该方法包括散列消息以形成消息比特的步骤; 并用私钥加密消息比特,用于签名的安全性的冗余比特,以及审计比特,以形成消息的数字签名。 审计位提供了消息的审计跟踪。 审计位包括以下类别中的一个或多个:用于标识生成签名的设备的版本的签名包版本位; 设备ID位以识别生成数字签名的令牌; 密钥ID位来标识私钥; 分组序列号,其每当设备生成签名以指示生成的签名序列时递增; 通过对先前的签名进行散列而产生的比特来提供所生成的签名的审计跟踪,以及用于指示签名被生成的时间的时间戳。 审计位还可以包括随机数。