-
公开(公告)号:US20080219445A1
公开(公告)日:2008-09-11
申请号:US11984676
申请日:2007-11-20
CPC分类号: H04L63/0428 , H04L63/1408
摘要: A communications audit support system is provided, which makes it possible to audit communications of an arbitrary encrypted communication session at any time. The communications audit support system of the present invention stores key information used for encrypted communication in a key management DB in association with a key ID each time the key information is created, stores IP addresses of a user terminal and a service providing server which perform an encrypted communication session using the key information in a communication state management DB in association with the key ID, and stores an encrypted packet sent in an encrypted communication session in a packet DB in association with IP addresses of a sender and a receiver of the encrypted packet.
摘要翻译: 提供通信审计支持系统,使得可以随时审核任意加密通信会话的通信。 本发明的通信审计支持系统在每次创建密钥信息时,与密钥ID相关联地将用于加密通信的密钥信息存储在密钥管理DB中,存储执行密钥信息的用户终端和服务提供服务器的IP地址 使用与密钥ID相关联的通信状态管理DB中的密钥信息的加密通信会话,并且将加密通信会话中发送的加密分组与加密分组的发送者和接收者的IP地址相关联地存储在分组DB中 。
-
公开(公告)号:USD309761S
公开(公告)日:1990-08-07
申请号:US88590
申请日:1987-08-24
申请人: Yoko Hashimoto
设计人: Yoko Hashimoto
-
13.发明授权Certificate validation method and certificate validation server and storage medium 有权证书验证方法和证书验证服务器和存储介质公开(公告)号:US08380985B2
公开(公告)日:2013-02-19
申请号:US12826248
申请日:2010-06-29
申请人: Akane Sato , Takahiro Fujishiro , Shingo Hane , Yoko Hashimoto , Masahiko Furuya , Masami Ogawa
发明人: Akane Sato , Takahiro Fujishiro , Shingo Hane , Yoko Hashimoto , Masahiko Furuya , Masami Ogawa
IPC分类号: G06F21/00
CPC分类号: H04L63/06 , H04L9/006 , H04L9/0891 , H04L9/321 , H04L9/3263 , H04L9/3265 , H04L9/3268 , H04L63/0823
摘要: A certificate validation method for causing a certificate validation server to receive a certificate validation request from a given terminal device, build a certification path of from a first certificate authority (CA) to a second CA, perform validation of the certification path, and send a validation result to the terminal which issued the certificate validation request is disclosed. The validation server detects either a key update of any given CA or a compromise of the given CA, acquires a certificate of relevant CA and first certificate status information and second certificate status information, stores the acquired information in a storage unit or, alternatively, updates the information stored in the storage based on the acquired information, and performs the building of a certification path and validation of the certification path by use of the information of the storage unit.
摘要翻译: 一种证书验证方法,用于使证书验证服务器从给定终端设备接收证书验证请求,构建从第一认证中心(CA)到第二CA的认证路径,执行证书路径的验证,并发送 公开了颁发证书验证请求的终端的验证结果。 验证服务器检测任何给定CA的密钥更新或给定CA的妥协,获取相关CA和第一证书状态信息和第二证书状态信息的证书,将获取的信息存储在存储单元中,或者替换地,更新 基于获取的信息存储在存储器中的信息,并且通过使用存储单元的信息来执行认证路径的建立和认证路径的验证。
-
14.发明申请CERTIFICATE VALIDATION METHOD AND CERTIFICATE VALIDATION SERVER AND STORAGE MEDIUM 有权证书验证方法和证书验证服务器和存储介质公开(公告)号:US20110004763A1
公开(公告)日:2011-01-06
申请号:US12826248
申请日:2010-06-29
申请人: Akane SATO , Takahiro Fujishiro , Shingo Hane , Yoko Hashimoto , Masahiko Furuya , Masami Ogawa
发明人: Akane SATO , Takahiro Fujishiro , Shingo Hane , Yoko Hashimoto , Masahiko Furuya , Masami Ogawa
IPC分类号: H04L9/32
CPC分类号: H04L63/06 , H04L9/006 , H04L9/0891 , H04L9/321 , H04L9/3263 , H04L9/3265 , H04L9/3268 , H04L63/0823
摘要: A certificate validation method for causing a certificate validation server to receive a certificate validation request from a given terminal device, build a certification path of from a first certificate authority (CA) to a second CA, perform validation of the certification path, and send a validation result to the terminal which issued the certificate validation request is disclosed. The validation server detects either a key update of any given CA or a compromise of the given CA, acquires a certificate of relevant CA and first certificate status information and second certificate status information, stores the acquired information in a storage unit or, alternatively, updates the information stored in the storage based on the acquired information, and performs the building of a certification path and validation of the certification path by use of the information of the storage unit.
摘要翻译: 一种证书验证方法,用于使证书验证服务器从给定终端设备接收证书验证请求,构建从第一认证中心(CA)到第二CA的认证路径,执行认证路径的验证,并发送 公开了颁发证书验证请求的终端的验证结果。 验证服务器检测任何给定CA的密钥更新或给定CA的妥协,获取相关CA和第一证书状态信息和第二证书状态信息的证书,将获取的信息存储在存储单元中,或者替换地,更新 基于获取的信息存储在存储器中的信息,并且通过使用存储单元的信息来执行认证路径的建立和认证路径的验证。
-
公开(公告)号:US20080301439A1
公开(公告)日:2008-12-04
申请号:US12105358
申请日:2008-04-18
IPC分类号: H04L9/06
CPC分类号: H04L9/3268 , H04L63/06
摘要: A technique of managing public keys updated by a certificate authority and a plurality of hash algorithms is provided.Identifiers, each of which is uniquely determined by a pair of a public key updated by a certificate authority and a hash algorithm, are stored in an identifier information storage area (131b). A verification processing part (132c) cross-checks a received validation request and the identifiers stored in the identifier information storage area (131b). When there is an identifier corresponding to the received validation request, the verification processing part (132c) judges that the verification can be performed, and continues the verification processing.
摘要翻译: 提供了一种管理由证书颁发机构更新的公共密钥和多个散列算法的技术。 标识符,每个标识符由认证机构更新的一对公钥和散列算法唯一地确定,被存储在标识符信息存储区域(131b)中。 验证处理部分(132c)交叉检查接收到的确认请求和存储在标识符信息存储区域(131b)中的标识符。 当存在对应于接收到的确认请求的标识符时,验证处理部分(132c)判断可以执行验证,并继续验证处理。
-
公开(公告)号:US20060277406A1
公开(公告)日:2006-12-07
申请号:US11436048
申请日:2006-05-18
申请人: Yoko Hashimoto , Takahiro Fujishiro , Tadashi Kaji , Osamu Takata , Kazuyoshi Hoshino , Shinji Nakamura
发明人: Yoko Hashimoto , Takahiro Fujishiro , Tadashi Kaji , Osamu Takata , Kazuyoshi Hoshino , Shinji Nakamura
IPC分类号: H04L9/00
CPC分类号: H04L63/029 , H04L9/321 , H04L9/3268 , H04L9/3273 , H04L63/062 , H04L63/0823
摘要: In an encryption communication using VPN technologies, a load on a VPN system becomes large if the number of communication terminals increases. When an external terminal accesses via an internal terminal an application server, processes become complicated because it is necessary to perform authentication at VPN and authentication at the application server. A management server is provided for managing external terminals, internal terminals and application servers. The management server authenticates each communication terminal and operates to establish an encryption communication path between communication terminals. Authentication of each terminal by the management server relies upon a validation server. When the external terminal performs encryption communication with the application server via the internal terminal, two encryption communication paths are established and used between the external terminal and internal terminal and between the internal terminal and application server.
摘要翻译: 在使用VPN技术的加密通信中,如果通信终端的数量增加,则VPN系统的负载变大。 当外部终端通过内部终端访问应用服务器时,由于需要在VPN处进行认证并在应用服务器进行认证,所以处理变得复杂。 提供管理服务器,用于管理外部终端,内部终端和应用服务器。 管理服务器对每个通信终端进行认证,并且操作以在通信终端之间建立加密通信路径。 管理服务器对每个终端的认证依赖于验证服务器。 当外部终端通过内部终端与应用服务器进行加密通信时,在外部终端与内部终端之间以及内部终端与应用服务器之间建立并使用两个加密通信路径。
-
公开(公告)号:US20100122081A1
公开(公告)日:2010-05-13
申请号:US12542798
申请日:2009-08-18
申请人: Akane Sato , Yoko Hashimoto , Shingo Hane , Takahiro Fujishiro , Masahiko Furuya , Masami Uzawa
发明人: Akane Sato , Yoko Hashimoto , Shingo Hane , Takahiro Fujishiro , Masahiko Furuya , Masami Uzawa
IPC分类号: H04L9/00
CPC分类号: H04L63/0823 , H04L9/0891 , H04L9/321 , H04L9/3263
摘要: In response to a validation request that includes second information identifying the certificate authority, key information of the certificate authority at issuance of the public key certificate, and information identifying the public key certificate, if the second information identifying the certificate authority included in the validation request corresponds to the first information identifying the certificate authority included in the authority certificate, and the information identifying the public key certificate included in the validation request does not exist in the revocation information, the validation server creates a validation result indicating that the public key certificate corresponding to the information identifying the public key certificate included in the validation request is valid.
摘要翻译: 响应于包括标识证书颁发机构的第二信息的确认请求,在发行公共密钥证书时的证书颁发机构的密钥信息和识别公开密钥证书的信息,如果识别包括在验证请求中的证书颁发机构的第二信息 对应于识别权限证书中包含的证书颁发机构的第一信息,并且识别包含在验证请求中的公钥证书的信息不存在于撤销信息中,验证服务器创建指示公钥证书对应的验证结果 识别包含在验证请求中的公钥证书的信息是有效的。
-
公开(公告)号:US20090300349A1
公开(公告)日:2009-12-03
申请号:US12392430
申请日:2009-02-25
申请人: Yoko HASHIMOTO , Takahiro FUJISHIRO , Masahiko FURUYA , Masami UZAWA , Shingo HANE , Akane SATO
发明人: Yoko HASHIMOTO , Takahiro FUJISHIRO , Masahiko FURUYA , Masami UZAWA , Shingo HANE , Akane SATO
CPC分类号: H04L63/166 , H04L63/0485 , H04L63/0823
摘要: A validation server using HSM, which reduces required process time from receiving a validation request to responding with a validation result, and comprises a first software cryptographic module 142 and a second software cryptographic module 143 on a validation server 130 whose HSM is coupled with an I/F part 148. According to the validation server, load states of HSM, the first software cryptographic module 142 and the second software cryptographic module 143 are monitored by a cryptographic module monitor unit 141, and when cryptographic calculations in a validation process of certificates are conducted, the cryptographic calculations are executed by using the least loaded cryptographic module selected at a cryptographic module selector unit 140.
摘要翻译: 使用HSM的验证服务器,其减少从接收验证请求到响应验证结果所需的处理时间,并且包括验证服务器130上的第一软件加密模块142和第二软件加密模块143,其中HSM与I / F部分148.根据验证服务器,HSM的加载状态,第一软件加密模块142和第二软件加密模块143由加密模块监视单元141监视,并且当证书的验证过程中的密码计算是 通过使用在加密模块选择器单元140处选择的最少加密的加密模块来执行加密计算。
-
公开(公告)号:USD309688S
公开(公告)日:1990-08-07
申请号:US182752
申请日:1988-04-18
申请人: Yoko Hashimoto
设计人: Yoko Hashimoto
-
-
-
-
-
-
-
-
搜索结果
19 条记录 (耗时 0.035 秒)
