公开(公告)号：US20140108825A1

公开(公告)日：2014-04-17

申请号：US14141230

申请日：2013-12-26

Applicant: Certicom Corp.

Inventor： Daniel Francis O'Loughlin ,  Keelan Smith ,  Jay Scott Fuller ,  William Lundy Lattin ,  Marinus Struik ,  Yuri Poeluev ,  Matthew John Campagna ,  Thomas Rudolf Stiemerling ,  Weicheng Joseph Ku

IPC: G06F12/14

CPC classification number: G06F12/1408 ,  G06F21/123 ,  G06F21/57 ,  G06F21/606 ,  G06F21/72 ,  G06F21/73 ,  G06F21/76 ,  G06F21/80 ,  G06F2212/1052 ,  G06F2221/2101 ,  H04L9/0877 ,  H04L9/3066 ,  H04L9/3252 ,  H04L9/3263 ,  H04L9/3273 ,  H04L2209/24

Abstract: An asset management system is provided, which includes a hardware module operating as an asset control core. The asset control core generally includes a small hardware core embedded in a target system on chip that establishes a hardware-based point of trust on the silicon die. The asset control core can be used as a root of trust on a consumer device by having features that make it difficult to tamper with. The asset control core is able to generate a unique identifier for one device and participate in the tracking and provisioning of the device through a secure communication channel with an appliance. The appliance generally includes a secure module that caches and distributes provisioning data to one of many agents that connect to the asset control core, e.g. on a manufacturing line or in an after-market programming session.

Abstract translation: 提供资产管理系统，其中包括作为资产控制核心运行的硬件模块。 资产控制核心通常包括嵌入在目标片上系统中的小型硬件核心，其在硅芯片上建立基于硬件的信任点。 资产控制核心可以作为消费者设备的信任根源，具有使其难以篡改的特征。 资产控制核心能够为一个设备生成唯一的标识符，并通过与设备的安全通信通道参与设备的跟踪和配置。 该设备通常包括一个安全模块，它将配置数据高速缓存并分配给连接到资产控制核心的许多代理之一，例如， 在生产线上或在售后市场的程序设计会议。

公开(公告)号：US20140032911A1

公开(公告)日：2014-01-30

申请号：US14039186

申请日：2013-09-27

Applicant: Certicom Corp.

Inventor： Marinus STRUIK

IPC: H04L9/08

CPC classification number: H04L9/0838 ,  G06F7/725 ,  H04L9/0844

Abstract: A key establishment protocol includes the generation of a value of cryptographic function, typically a hash, of a session key and public information. This value is transferred between correspondents together with the information necessary to generate the session key. Provided the session key has not been compromised, the value of the cryptographic function will be the same at each of the correspondents. The value of the cryptographic function cannot be compromised or modified without access to the session key.

Abstract translation: 密钥建立协议包括生成会话密钥和公共信息的加密函数的值，通常是散列值。 该值在通讯者之间传送，以及生成会话密钥所需的信息。 如果会话密钥尚未被泄露，则密码功能的值在每个记者端都是相同的。 加密功能的值不能在不访问会话密钥的情况下被破坏或修改。

公开(公告)号：US20130343542A1

公开(公告)日：2013-12-26

申请号：US13715610

申请日：2012-12-14

Applicant: CERTICOM CORP.

Inventor： Anthony Rosati ,  Matthew John Campagna ,  Gregory Marc Zaverucha

IPC: H04W12/04

CPC classification number: H04W12/04 ,  H04L63/0435 ,  H04L63/0492 ,  H04L63/061 ,  H04L63/101 ,  H04W4/80 ,  H04W12/003 ,  H04W12/08

Abstract: Methods and devices for establishing trust on first use for close proximity communications are disclosed. An example method includes receiving a public key from a device via a close proximity communications connection, obtaining, via a user interface, an indication that the device is trusted, and storing at least one of the public key or an identifier for the device.

Abstract translation: 公开了用于建立近距离通信首次使用信任的方法和设备。 示例性方法包括经由近距离通信连接从设备接收公共密钥，经由用户接口获得设备被信任的指示，以及存储该设备的公开密钥或标识符中的至少一个。

公开(公告)号：US20130232554A1

公开(公告)日：2013-09-05

申请号：US13741598

申请日：2013-01-15

Applicant: CERTICOM CORP.

Inventor： Matthew John CAMPAGNA ,  Daniel Richard L. BROWN ,  Gregory Marc ZAVERUCHA

IPC: H04L29/06

CPC classification number: H04L63/0823 ,  H04L9/0847 ,  H04L9/0869 ,  H04L9/3066 ,  H04L63/08 ,  H04L63/126 ,  H04L63/166 ,  H04L63/18 ,  H04L67/14

Abstract: A system and method are provided for enabling a client device to connect to a network. The method comprises: obtaining an authorization code via a communication channel different from the network, the authorization code corresponding to the client device; and after detecting initiation of a security negotiation protocol by the client device, using the authorization code in at least one security negotiation operation.

Abstract translation: 提供了一种用于使客户端设备能够连接到网络的系统和方法。 该方法包括：经由与网络不同的通信信道获得授权码，与客户端设备对应的授权码; 并且在检测到客户端设备发起安全协商协议之后，在至少一个安全协商操作中使用授权码。

公开(公告)号：US20130222160A1

公开(公告)日：2013-08-29

申请号：US13859508

申请日：2013-04-09

Applicant: Certicom Corp.

Inventor： Weicheng Joseph KU ,  Paul Daniel IMTHURN

IPC: H03M7/40

CPC classification number: H03M7/40 ,  H04N19/436 ,  H04N19/61 ,  H04N19/91

Abstract: An entropy decoder and method for decoding code words with an indication of associated probability for each code word. The decoder can be operable to receive code words and the indication of associated probability. A branch node block can be in communication with a leaf node block. The branch node block comprising one or more branch node lookup tables and branch node control logic. The branch node control logic operable to process a code word in the input buffer using a selected table from the one or more branch node lookup tables to obtain leaf node information and a bit count of a code word size, the branch control logic further operable to refresh the input buffer to replace the bit count of the code word size and to make the leaf node information and the table selection available to the leaf node block.

Abstract translation: 一种熵解码器和方法，用于对每个代码字具有相关联概率的指示来对码字进行解码。 解码器可以用于接收码字和相关概率的指示。 分支节点块可以与叶节点块通信。 分支节点块包括一个或多个分支节点查找表和分支节点控制逻辑。 所述分支节点控制逻辑可操作以使用来自所述一个或多个分支节点查找表的所选择的表来处理所述输入缓冲器中的码字，以获得叶节点信息和码字大小的位计数，所述分支控制逻辑还可操作为 刷新输入缓冲区以替换代码字大小的位计数，并使叶节点信息和表选择可用于叶节点块。

公开(公告)号：US20130182843A1

公开(公告)日：2013-07-18

申请号：US13739652

申请日：2013-01-11

Applicant: RESEARCH IN MOTION LIMITED ,  CERTICOM CORP.

Inventor： Michael Eoin Buckley ,  Gregory Marc Zaverucha ,  Matthew John Campagna

IPC: H04L9/08

CPC classification number: H04L9/08 ,  H04L9/083 ,  H04L9/0869 ,  H04L9/12 ,  H04L63/0428 ,  H04L63/061 ,  H04L63/306 ,  H04L2209/80

Abstract: The present disclosure relates to systems and methods for secure communications. In some aspects, one or more values used to generate an encryption key used to encrypt a packet are stored in a header of the packet. The packet is transmitted with the encrypted data portion in a communication. In some aspects, one or more values used to generate an encryption key are received. The encryption key is regenerated using the one or more values.

Abstract translation: 本公开涉及用于安全通信的系统和方法。 在一些方面，用于生成用于加密分组的加密密钥的一个或多个值被存储在分组的报头中。 与通信中的加密数据部分一起发送分组。 在一些方面，接收用于生成加密密钥的一个或多个值。 使用一个或多个值重新生成加密密钥。

公开(公告)号：US6424712B2

公开(公告)日：2002-07-23

申请号：US95363797

申请日：1997-10-17

Applicant: CERTICOM CORP

Inventor： VANSTONE SCOTT A ,  JOHNSON DONALD B

IPC: G09C1/00 ,  G06F7/72 ,  H04L9/32 ,  H04L9/28

CPC classification number: H04L9/32 ,  G06F7/725 ,  H04L9/0838 ,  H04L9/3066 ,  H04L9/3247

Abstract: A public key encryption system exchanges information between a pair of correspondents. The recipient performs computations on the received data to recover the transmitted data or verify the identity of the sender. The data transferred includes supplementary information that relates to intermediate steps in the computations performed by the recipient.

Abstract translation: 公开密钥加密系统在一对记者之间交换信息。 收件人对接收到的数据执行计算，以恢复发送的数据或验证发送者的身份。 传送的数据包括与由接收者执行的计算中的中间步骤有关的补充信息。