-
11.发明授权公开(公告)号:US07908474B2
公开(公告)日:2011-03-15
申请号:US11534232
申请日:2006-09-22
申请人: Todd W. Arnold , Elizabeth A. Dames , Carsten D. Frehr , Kurt S. Jacobsen , Michael J. Kelly , Mark D. Marik , Jesper Wiese
发明人: Todd W. Arnold , Elizabeth A. Dames , Carsten D. Frehr , Kurt S. Jacobsen , Michael J. Kelly , Mark D. Marik , Jesper Wiese
CPC分类号: H04L9/3242 , H04L9/0637 , H04L9/0822 , H04L9/088 , H04L9/3247 , H04L63/0435 , H04L63/062 , H04L63/0823 , H04L63/123 , H04L63/20
摘要: A method, article, and system for providing an effective implementation of a data structure comprising instructions that are cryptographically protected against alteration or misuse, wherein the instructions further comprise a trusted block that defines specific key management policies that are permitted when an application program employs the trusted block in application programming interface (API) functions to generate or export symmetric cryptographic keys. The trusted block has a number of fields containing rules that provide an ability to limit how the trusted block is used, thereby reducing the risk of the trusted block being employed in unintended ways or with unintended keys.
摘要翻译: 一种用于提供数据结构的有效实现的方法,制品和系统,所述数据结构包括密码保护以防止改变或误用的指令,其中所述指令还包括定义在应用程序采用所述应用程序时允许的特定密钥管理策略的可信任块 应用程序编程接口(API)中的可信块功能用于生成或导出对称加密密钥。 受信任的块具有包含提供限制如何使用受信任块的能力的规则的字段,从而降低以非预期的方式或非预期密钥使用可信块的风险。
-
12.发明授权Method for controlling security function execution with a flexible, extendable, and non-forgable block 失效用灵活,可扩展和不可阻止的块来控制安全功能执行的方法公开(公告)号:US07779258B2
公开(公告)日:2010-08-17
申请号:US11534236
申请日:2006-09-22
申请人: Todd W. Arnold , Elizabeth A. Dames , Carsten D. Frehr , Kurt S. Jacobsen , Michael J. Kelly , Mark D. Marik , Jesper Wiese
发明人: Todd W. Arnold , Elizabeth A. Dames , Carsten D. Frehr , Kurt S. Jacobsen , Michael J. Kelly , Mark D. Marik , Jesper Wiese
CPC分类号: H04L9/0822 , H04L9/088 , H04L9/3242 , H04L9/3247 , H04L2209/04 , H04L2209/34
摘要: A method, article, and system for providing an effective implementation of data structures, and application programming interface (API) functions that allow secure execution of functions behind a secure boundary. The controlling mechanism is a flexible, extendable, and non-forgeable block that details how values and parameters behind the secure boundary can be changed. The invention allows for one entity to execute a security function that will normally require extensive authorizations or dual or multiple control. The method and system comprise instructions that are cryptographically protected against alteration or misuse, wherein the instructions further comprise a trusted block that defines security policies that are permitted when an application program employs the trusted block in APIs. The trusted block has a number of fields containing rules that provide an ability to limit how the trusted block is used, thereby reducing the risk of the trusted block being employed in unintended ways.
摘要翻译: 一种用于提供有效实施数据结构的方法,文章和系统,以及允许安全执行安全边界后面的功能的应用程序编程接口(API)功能。 控制机制是一个灵活,可扩展和不可伪造的块,详细介绍了安全边界背后的值和参数如何改变。 本发明允许一个实体执行通常需要广泛授权或双重或多重控制的安全功能。 所述方法和系统包括密码保护以防止改变或误用的指令,其中所述指令还包括定义在应用程序在API中使用所述可信块时允许的安全策略的可信块。 可信块具有包含规则的多个字段,这些规则提供了限制如何使用受信任块的能力,从而降低以非预期的方式使用可信块的风险。
-
公开(公告)号:US20100031021A1
公开(公告)日:2010-02-04
申请号:US11534232
申请日:2006-09-22
申请人: Todd W. Arnold , Elizabeth A. Dames , Carsten D. Frehr , Kurt S. Jacobsen , Michael J. Kelly , Mark D. Marik , Jesper Wiese
发明人: Todd W. Arnold , Elizabeth A. Dames , Carsten D. Frehr , Kurt S. Jacobsen , Michael J. Kelly , Mark D. Marik , Jesper Wiese
CPC分类号: H04L9/3242 , H04L9/0637 , H04L9/0822 , H04L9/088 , H04L9/3247 , H04L63/0435 , H04L63/062 , H04L63/0823 , H04L63/123 , H04L63/20
摘要: A method, article, and system for providing an effective implementation of a data structure comprising instructions that are cryptographically protected against alteration or misuse, wherein the instructions further comprise a trusted block that defines specific key management policies that are permitted when an application program employs the trusted block in application programming interface (API) functions to generate or export symmetric cryptographic keys. The trusted block has a number of fields containing rules that provide an ability to limit how the trusted block is used, thereby reducing the risk of the trusted block being employed in unintended ways or with unintended keys.
摘要翻译: 一种用于提供数据结构的有效实现的方法,制品和系统,所述数据结构包括密码保护以防止改变或误用的指令,其中所述指令还包括定义在应用程序采用所述应用程序时允许的特定密钥管理策略的可信任块 应用程序编程接口(API)中的可信块功能用于生成或导出对称加密密钥。 受信任的块具有包含提供限制如何使用受信任块的能力的规则的字段,从而降低以非预期的方式或非预期密钥使用可信块的风险。
-
14.发明申请公开(公告)号:US20080077794A1
公开(公告)日:2008-03-27
申请号:US11534236
申请日:2006-09-22
申请人: Todd W. Arnold , Elizabeth A. Dames , Carsten D. Frehr , Kurt S. Jacobsen , Michael J. Kelly , Mark D. Marik , Jesper Wiese
发明人: Todd W. Arnold , Elizabeth A. Dames , Carsten D. Frehr , Kurt S. Jacobsen , Michael J. Kelly , Mark D. Marik , Jesper Wiese
CPC分类号: H04L9/0822 , H04L9/088 , H04L9/3242 , H04L9/3247 , H04L2209/04 , H04L2209/34
摘要: A method, article, and system for providing an effective implementation of data structures, and application programming interface (API) functions that allow secure execution of functions behind a secure boundary. The controlling mechanism is a flexible, extendable, and non-forgeable block that details how values and parameters behind the secure boundary can be changed. The invention allows for one entity to execute a security function that will normally require extensive authorizations or dual or multiple control. The method and system comprise instructions that are cryptographically protected against alteration or misuse, wherein the instructions further comprise a trusted block that defines security policies that are permitted when an application program employs the trusted block in APIs. The trusted block has a number of fields containing rules that provide an ability to limit how the trusted block is used, thereby reducing the risk of the trusted block being employed in unintended ways. This trusted block controls the critical values or parameters behind the secure boundary. Cryptographically secured data structures are provided that allow for breaking up the instructions in the trusted blocks in a number of steps without reducing the level of security. Systems that make use of the trusted block must provide two API functions; one that encapsulates the block under at least dual control, and one that process the instructions or rules in the trusted block. In particular the invention provides a method, article, and system for the effective implementation for securely transferring symmetric encryption keys to remote devices, such as Automated Teller Machines (ATMs), PIN entry devices, and point of sale terminals. It may also be used to exchange symmetric keys with another cryptographic system of any type, such as a Host Security Module (HSM) in a computer server.
-
公开(公告)号:US20130203756A1
公开(公告)日:2013-08-08
申请号:US13825616
申请日:2011-10-24
申请人: Jamie L. Bunda , Christopher D. Cox , Vadim Y. Dudkin , Hannah D. Fiji , Michael J. Kelly , Mark E. Layton , Joseph E. Pero , William D. Shipe , Justin T. Sheen
发明人: Jamie L. Bunda , Christopher D. Cox , Vadim Y. Dudkin , Hannah D. Fiji , Michael J. Kelly , Mark E. Layton , Joseph E. Pero , William D. Shipe , Justin T. Sheen
IPC分类号: C07D403/06 , C07D519/00 , C07D417/14 , C07D413/14 , C07D471/04
CPC分类号: C07D403/06 , A61K31/44 , C07D413/14 , C07D417/14 , C07D471/04 , C07D519/00
摘要: The present invention is directed to isoindolinone compounds which are useful as therapeutic agents for the treatment of central nervous system disorders associated with phosphodiesterase 10 (PDE10). The present invention also relates to the use of such compounds for treating neurological and psychiatric disorders, such as schizophrenia, psychosis or Huntington's disease, and those associated with striatal hypofunction or basal ganglia dysfunction.
摘要翻译: 本发明涉及可用作治疗与磷酸二酯酶10(PDE10)相关的中枢神经系统疾病的治疗剂的异吲哚啉酮化合物。 本发明还涉及这些化合物用于治疗神经和精神疾病如精神分裂症,精神病或亨廷顿病以及与纹状体功能减退或基底神经节功能障碍相关的疾病的用途。
-
公开(公告)号:US07991891B2
公开(公告)日:2011-08-02
申请号:US11346094
申请日:2006-02-02
IPC分类号: G06F15/173
CPC分类号: G06F17/30861 , H04L67/02 , Y10S707/99933 , Y10S707/99945
摘要: Content returned by a search query is specific to a version of a product installed on or associated with the computer system requesting the search. Upon receipt of the search query, a search system accesses a persistent descriptor corresponding to a detected version of the product. The persistent descriptor may be a cookie file stored on the requesting computer system. A product detection module interrogates the computer system to identify the associated products, including the particular versions of those products. The search of a repository of general content related to the product is scoped using the persistent descriptor as a search filter in order to provide version-specific content.
摘要翻译: 搜索查询返回的内容特定于安装在请求搜索的计算机系统上或与之相关联的产品的版本。 在接收到搜索查询时,搜索系统访问对应于产品的检测版本的持久描述符。 持久性描述符可以是存储在请求计算机系统上的cookie文件。 产品检测模块询问计算机系统以识别相关产品,包括这些产品的特定版本。 使用持久描述符作为搜索过滤器来搜索与该产品相关的一般内容的存储库,以便提供版本特定的内容。
-
公开(公告)号:US20110022512A1
公开(公告)日:2011-01-27
申请号:US12872929
申请日:2010-08-31
IPC分类号: G06Q40/00
CPC分类号: G06Q40/02 , G06Q40/025
摘要: Embodiments of the present invention relate to methods and apparatuses for providing, processing, and/or servicing a mortgage loan having one or more exercisable options. For example, in some embodiments, a method is provided that includes storing, in a non-transitory computer-readable medium, one or more terms of an exercisable option, where the option is incorporated into a mortgage loan, where exercising the option results in one or more terms of the mortgage loan being modified, and where one or more terms of the option are based at least partially on a non-mortgage relationship between a borrower associated with the mortgage loan and a lender associated with the mortgage loan.
摘要翻译: 本发明的实施例涉及用于提供,处理和/或提供具有一个或多个可行使选项的抵押贷款的方法和装置。 例如,在一些实施例中,提供了一种方法,其包括在非暂时性计算机可读介质中存储可行权期权的一个或多个条款,其中该期权被并入抵押贷款中,其中行使该期权的结果 抵押贷款的一个或多个条款被修改,以及期权的一个或多个条款至少部分地基于与抵押贷款相关联的借款人与与抵押贷款相关的贷款人之间的非抵押关系。
-
公开(公告)号:US20100199534A1
公开(公告)日:2010-08-12
申请号:US12704671
申请日:2010-02-12
CPC分类号: G09F7/18 , G09F21/04 , G09F2007/1813 , G09F2007/1865 , G09F2007/1878
摘要: A system for mounting a sign to a vehicle includes a bar connected to the vehicle. A clamp assembly includes first and second jaw members adapted to frictionally engage the bar between the first and second jaw members. At least one structural member supports the first and second jaw members. A sign assembly includes a support frame having the at least one structural member connected to the support frame. A frame member is slidably received by and releasably engaged to the support frame. A sign connected to the frame member is adapted to be positioned in each of a stowed and a deployed position.
摘要翻译: 用于将标志安装到车辆的系统包括连接到车辆的杆。 夹具组件包括适于摩擦地接合第一和第二钳口构件之间的杆的第一和第二钳口构件。 至少一个结构构件支撑第一和第二钳口构件。 标志组件包括具有连接到支撑框架的至少一个结构构件的支撑框架。 框架构件被可滑动地容纳并且可释放地接合到支撑框架。 连接到框架构件的标志适于定位在收起和展开位置中的每一个中。
-
公开(公告)号:US20090327700A1
公开(公告)日:2009-12-31
申请号:US12125871
申请日:2008-05-22
申请人: Steven A. Blade , Linda Nancy Betz , Andrew Gregory Kegel , Michael J. Kelly , William Lee Terrell
发明人: Steven A. Blade , Linda Nancy Betz , Andrew Gregory Kegel , Michael J. Kelly , William Lee Terrell
IPC分类号: G06F1/24
CPC分类号: G06F21/57 , G06F21/53 , H04L9/0897
摘要: A method, an apparatus, a system, and a computer program product is presented for virtualizing trusted platform modules within a data processing system. A virtual trusted platform module along with a virtual endorsement key is created within a physical trusted platform module within the data processing system using a platform signing key of the physical trusted platform module, thereby providing a transitive trust relationship between the virtual trusted platform module and the core root of trust for the trusted platform. The virtual trusted platform module can be uniquely associated with a partition in a partitionable runtime environment within the data processing system.
摘要翻译: 提出了一种方法,装置,系统和计算机程序产品,用于虚拟化数据处理系统内的可信平台模块。 使用物理可信平台模块的平台签名密钥在数据处理系统内的物理可信平台模块内创建虚拟可信平台模块以及虚拟认证密钥,从而在虚拟可信平台模块和虚拟可信平台模块之间提供传递信任关系 信任平台的核心信任根源。 虚拟可信平台模块可以与数据处理系统内的可分区运行时环境中的分区唯一关联。
-
公开(公告)号:US07380119B2
公开(公告)日:2008-05-27
申请号:US10835330
申请日:2004-04-29
申请人: Steven A. Bade , Linda Nancy Betz , Andrew Gregory Kegel , Michael J. Kelly , William Lee Terrell
发明人: Steven A. Bade , Linda Nancy Betz , Andrew Gregory Kegel , Michael J. Kelly , William Lee Terrell
IPC分类号: G06F1/24
CPC分类号: G06F21/57 , G06F21/53 , H04L9/0897
摘要: A method, an apparatus, a system, and a computer program product is presented for virtualizing trusted platform modules within a data processing system. A virtual trusted platform module along with a virtual endorsement key is created within a physical trusted platform module within the data processing system using a platform signing key of the physical trusted platform module, thereby providing a transitive trust relationship between the virtual trusted platform module and the core root of trust for the trusted platform. The virtual trusted platform module can be uniquely associated with a partition in a partitionable runtime environment within the data processing system.
摘要翻译: 提出了一种方法,装置,系统和计算机程序产品,用于虚拟化数据处理系统内的可信平台模块。 使用物理可信平台模块的平台签名密钥在数据处理系统内的物理可信平台模块内创建虚拟可信平台模块以及虚拟认证密钥,从而在虚拟可信平台模块和虚拟可信平台模块之间提供传递信任关系 信任平台的核心信任根源。 虚拟可信平台模块可以与数据处理系统内的可分区运行时环境中的分区唯一关联。
-
-
-
-
-
-
-
-
-
搜索结果
85 条记录 (耗时 0.042 秒)
