公开(公告)号：US07764793B2

公开(公告)日：2010-07-27

申请号：US11255113

申请日：2005-10-20

Applicant: Xin Qiu ,  Bridget D. Kimball ,  Eric J. Sprunk ,  Lawrence W. Tang

Inventor： Xin Qiu ,  Bridget D. Kimball ,  Eric J. Sprunk ,  Lawrence W. Tang

IPC: H04L29/06 ,  H04K1/00 ,  H04N7/16 ,  H04N7/167

CPC classification number: H04L9/083 ,  H04L9/0841 ,  H04L63/0428 ,  H04L2463/062

Abstract: According to one embodiment of the invention a system is utilized to leverage the security arrangement between a first and second device to establish a secure link between the first device and a third device. One embodiment of the invention is particularly suitable for loading security data on a set top box, such as that utilized in the cable television industry.

Abstract translation: 根据本发明的一个实施例，利用系统利用第一和第二设备之间的安全布置来建立第一设备和第三设备之间的安全链路。 本发明的一个实施例特别适合于将安全数据加载在诸如有线电视工业中使用的机顶盒上。

公开(公告)号：US07660986B1

公开(公告)日：2010-02-09

申请号：US09576516

申请日：2000-05-23

Applicant: Xin Qiu ,  Eric J. Sprunk ,  Paul Moroney

Inventor： Xin Qiu ,  Eric J. Sprunk ,  Paul Moroney

IPC: H04L9/32 ,  H04N7/167

CPC classification number: H04N21/4623 ,  H04L9/002 ,  H04L9/088 ,  H04N7/1675 ,  H04N21/26606

Abstract: A system to change security levels is used to change the level of security used in a secured processing system. The system uses a status indicator to designate the security level being implemented. The security level can be upgraded to allow a higher level of security to be implemented with relative ease. However, in order to change from a higher level of security to a lower level of security, an authorization code is utilized to confirm that the change in security is authorized.

Abstract translation: 用于更改安全级别的系统用于改变安全处理系统中使用的安全级别。 系统使用状态指示器来指定正在执行的安全级别。 可以升级安全级别，以便相对容易地实现更高级别的安全性。 然而，为了从更高的安全级别改为较低级别的安全性，使用授权码来确认安全性的改变是否被授权。

公开(公告)号：US07607022B1

公开(公告)日：2009-10-20

申请号：US09587932

申请日：2000-06-06

Applicant: Xin Qiu ,  Eric J. Sprunk

Inventor： Xin Qiu ,  Eric J. Sprunk

IPC: H04N7/16 ,  H04N7/167

CPC classification number: H04N7/52 ,  H04L9/088 ,  H04N7/1675 ,  H04N21/2347 ,  H04N21/2365 ,  H04N21/4347 ,  H04N21/4405

Abstract: A system to transmit a set of programs from a transmitter to a receiver is used to accommodate different levels of security used for each program. When a high level of security is necessary for transmitting or receiving a program the transmitter and/or receiver is operable to accommodate that level of security. Thus, both transmitters and receivers are operable to be reconfigured to encrypt or decrypt, respectively, at different levels. Accordingly, differing amounts of programs can be transmitted or received based on the resource requirements needed at any level of security. Consequently, a high level of encryption/decryption requires more resources and allows the processing of fewer services, while a lower level of encryption/decryption allows more services to be transmitted/received.

Abstract translation: 用于将一组程序从发射机发射到接收机的系统被用于适应用于每个节目的不同级别的安全性。 当需要高水平的安全性来发送或接收程序时，发射器和/或接收器可操作以适应该级别的安全性。 因此，发射机和接收机都可以被重新配置以分别在不同的级别进行加密或解密。 因此，可以基于任何安全级别所需的资源要求来发送或接收不同数量的程序。 因此，高级别的加密/解密需要更多的资源并且允许处理较少的服务，而较低级别的加密/解密允许发送/接收更多的服务。

公开(公告)号：US20220297062A1

公开(公告)日：2022-09-22

申请号：US17638927

申请日：2020-08-28

Applicant: David J. Wood ,  Stephanie D. Roth ,  Scott A. Shayko ,  William Van Heyst ,  Xin Qiu

Inventor： David J. Wood ,  Stephanie D. Roth ,  Scott A. Shayko ,  William Van Heyst ,  Xin Qiu

IPC: B01D53/88 ,  A61L9/20 ,  B01D53/00 ,  B01D53/96

Abstract: Gaseous pollution control devices and methods of removing pollutants from air are described herein. The devices include a body having a first end, a second end opposed to the first end, an upper wall and a lower wall opposed to the upper wall that all co-operate to define a cavity of the body. The device also includes one or more barriers within the body that form one or more channels within the body. At least one barrier has a flow disruptor to disrupt the flow of gas through the one or more channels. The device also includes a light source arranged within the body to direct light into the one or more channels. At least a portion of an inner surface of the device is at least partially coated with a photocatalytic composite material and the light source is configured to illuminate the coated inner surface to activate the photocatalytic composite material to remove the gaseous pollutants.

公开(公告)号：US09646332B2

公开(公告)日：2017-05-09

申请号：US13238850

申请日：2011-09-21

Applicant: Jinsong Zheng ,  Tat Keung Chan ,  Liqiang Chen ,  Greg N. Nakanishi ,  Jason A. Pasion ,  Xin Qiu ,  Ting Yao

Inventor： Jinsong Zheng ,  Tat Keung Chan ,  Liqiang Chen ,  Greg N. Nakanishi ,  Jason A. Pasion ,  Xin Qiu ,  Ting Yao

IPC: G06F21/00 ,  G06Q30/06

CPC classification number: G06F21/105 ,  G06Q30/06 ,  G06Q2220/18

Abstract: Disclosed is a manufacturing process and feature licensing system for provisioning personalized (device-unique) licenses to devices. The secure system uses a secure key wrapping mechanism to deliver the LSK to LPS. Another feature is that various network communication links are secured using standard security protocol. Application messages, license templates, licenses are digitally signed. The system is flexible, configured to allow multiple manufacturers and to allow various feature configurations via the use of License Template; scalable, as it is possible to use multiple LPS hosts to serve multiple programming stations; and available in that the delegation of license signing capability from CLS to LPS eliminates the dependency on unreliable Internet connections. Redundant LPS hosts provide high level of availability required for high volume license provisioning. The system is traceable: license and device association are replicated back to the CLS to provide full license request and generation traceability.

公开(公告)号：US08627083B2

公开(公告)日：2014-01-07

申请号：US13267672

申请日：2011-10-06

Applicant: Xin Qiu ,  Alexander Medvinsky ,  Stuart P. Moskovics ,  Jason A. Pasion ,  Fan Wang ,  Ting Yao

Inventor： Xin Qiu ,  Alexander Medvinsky ,  Stuart P. Moskovics ,  Jason A. Pasion ,  Fan Wang ,  Ting Yao

IPC: H04L9/32

CPC classification number: H04L9/006 ,  H04L9/0891 ,  H04L9/14 ,  H04L9/321

Abstract: One or more servers are provided including a session manager, authentication module, authorization module, encryption module, database, and protocol handler. The session manager is configured to receive requests for new identity data from network-enabled devices. Each request is authenticated first by the update server via its authentication module by validating the signature of the request message as well as the certificate chain trusted by the update server. The authorization module is configured to determine if the network-enabled devices specified on a whitelist are authorized to be provisioned with new identity data. The database is configured to receive new identity records generated by an identity data generation system. Each of the new identity records includes a new identifier. The new identifier is not associated or linked to any previously assigned/used identifiers and identity data, thus all the new identity records are generated independently and then loaded to the update server.

Abstract translation: 提供一个或多个服务器，包括会话管理器，认证模块，授权模块，加密模块，数据库和协议处理程序。 会话管理器被配置为从网络启用的设备接收新的身份数据的请求。 通过验证请求消息的签名以及由更新服务器信任的证书链，通过其认证模块，更新服务器首先对每个请求进行认证。 授权模块被配置为确定白名单上指定的启用网络的设备是否被授权为新的身份数据提供。 数据库被配置为接收由身份数据生成系统生成的新的身份记录。 每个新的身份记录都包含一个新的标识符。 新标识符不与任何先前分配/使用的标识符和身份数据相关联或链接，因此所有新的身份记录都是独立生成的，然后加载到更新服务器。

公开(公告)号：US20130139198A1

公开(公告)日：2013-05-30

申请号：US13305958

申请日：2011-11-29

Applicant: John I. Okimoto ,  Alexander Medvinsky ,  Xin Qiu

Inventor： John I. Okimoto ,  Alexander Medvinsky ,  Xin Qiu

IPC: H04N21/2347

CPC classification number: H04N21/25841 ,  H04N21/25816 ,  H04N21/26613 ,  H04N21/4623

Abstract: A method, a digital content consumption device, and a conditional access system are disclosed. A network interface may receive in a digital content consumption device a public key message that includes an encrypted key. A processor may decrypt the encrypted key using a secret key to produce the transmitted public key, identify a region descriptor in the public key message, and determine the secret key based on the region descriptor.

Abstract translation: 公开了一种方法，数字内容消费装置和条件访问系统。 网络接口可以在数字内容消费设备中接收包括加密密钥的公开密钥消息。 处理器可以使用秘密密钥来解密加密的密钥，以产生所传送的公共密钥，识别公开密钥消息中的区域描述符，并且基于区域描述符确定秘密密钥。

公开(公告)号：US08268052B2

公开(公告)日：2012-09-18

申请号：US13240484

申请日：2011-09-22

Applicant: Xin Qiu ,  Meiring Beyers ,  Michael Roth ,  Mark Vanderheyden ,  Scott Shayko

Inventor： Xin Qiu ,  Meiring Beyers ,  Michael Roth ,  Mark Vanderheyden ,  Scott Shayko

IPC: B01D45/00

CPC classification number: E01C1/005

Abstract: A wall assembly for mixing polluted air with less polluted air to provide moderately polluted air. The wall assembly includes means for dividing air from a roadway region into a lower part and an upper part, and means for permitting at least a portion of the upper part to flow substantially in one or more flow directions toward a leeward region. The wall assembly also includes means for directing the lower part substantially upwardly in a direction substantially transverse to the flow direction to intersect with the upper part and to mix the polluted air with the less polluted air, to provide the moderately polluted air proximal to the leeward area.

Abstract translation: 用于混合污染空气和较少污染空气的墙壁组件，以提供适度污染的空气。 壁组件包括用于将空气从道路区域分成下部和上部的装置，以及允许上部的至少一部分基本上沿一个或多个流动方向流向背风区域的装置。 壁组件还包括用于沿基本上横向于流动方向的方向基本向上引导下部的装置，以与上部相交并且将污染的空气与较少污染的空气混合，以在靠近背风的位置提供适度污染的空气 区。

公开(公告)号：US20110197077A1

公开(公告)日：2011-08-11

申请号：US13021384

申请日：2011-02-04

Applicant: Tat Keung Chan ,  Paul D. Baker ,  Christopher P. Gardner ,  Mark E. Gregotski ,  Ted R. Michaud ,  Xin Qiu ,  Jinsong Zheng

Inventor： Tat Keung Chan ,  Paul D. Baker ,  Christopher P. Gardner ,  Mark E. Gregotski ,  Ted R. Michaud ,  Xin Qiu ,  Jinsong Zheng

IPC: G06F21/24

CPC classification number: G06F21/10 ,  Y10S705/902 ,  Y10S705/911

Abstract: A method enables selected features of a software product residing on an end user electronic device with a license delivered from a licensing provider to a service provider of the end user electronic device. The method includes requesting at least one license to authorize a first service provider. An encrypted installation key uniquely associated with the first service provider is received as well as an authorization agent module for installation on one or more authorization agent devices associated with the first service provider. The encrypted installation key and the authorization agent module are installed on the authorization agent devices. A device-unique identifier (DUID) is generated for each authorization agent device based on hardware characteristics of the respective authorization agent devices. The DUID and the encrypted installation key are sent from the authorization agent device to a licensing provider to obtain the requested license. The requested license is received by the authorization agent devices if the DUID and the encrypted installation key are validated by the licensing provider. The license on authorization agent device authorizes and enables the selected features of the software product on an end user electronic device.

Abstract translation: 一种方法使得驻留在最终用户电子设备上的软件产品的选定特征具有从许可提供者向最终用户电子设备的服务提供商提供的许可证。 该方法包括请求至少一个许可证以授权第一服务提供商。 接收与第一服务提供商唯一相关联的加密安装密钥以及用于安装在与第一服务提供商相关联的一个或多个授权代理设备上的授权代理模块。 加密安装密钥和授权代理模块安装在授权代理设备上。 基于相应的授权代理设备的硬件特性，为每个授权代理设备生成设备唯一标识符（DUID）。 DUID和加密的安装密钥从授权代理设备发送到许可提供商以获取所请求的许可证。 如果DUID和加密安装密钥由许可提供商验证，则授权代理设备将收到所请求的许可证。 授权代理设备的许可证在最终用户电子设备上授权并启用软件产品的选定功能。

公开(公告)号：US20110196793A1

公开(公告)日：2011-08-11

申请号：US13021380

申请日：2011-02-04

Applicant: Jinsong Zheng ,  Thomas J. Barbour ,  Tat Keung Chan ,  Christopher P. Gardner ,  Mark E. Gregotski ,  Xin Qiu

Inventor： Jinsong Zheng ,  Thomas J. Barbour ,  Tat Keung Chan ,  Christopher P. Gardner ,  Mark E. Gregotski ,  Xin Qiu

IPC: G06Q30/00 ,  H04L9/28

CPC classification number: G06Q30/00 ,  G06Q30/0601 ,  G06Q30/0641

Abstract: A system enables customers to provision devices with feature licenses that enable specified features in the devices. The system includes a feature definition module configured to store product feature information associated with different products available from a plurality of different manufacturers. The system also includes a feature license management module configured to generate, update and revoke feature licenses. The feature licenses that are generated all have a common format. The system further includes a feature credit management module configured to monitor and account for feature credits available to customer organization units. A user management module is also provided in the system, which is configured to authenticate users of the system. A user interface is accessible over a communications network through which authenticated users can request and receive feature licenses.

Abstract translation: 系统使客户能够为设备提供功能许可证，从而实现设备中的指定功能。 该系统包括功能定义模块，其被配置为存储与多个不同制造商可用的不同产品相关联的产品特征信息。 该系统还包括功能许可证管理模块，用于生成，更新和撤销功能许可证。 生成的功能许可证都具有通用格式。 该系统还包括功能信用管理模块，其被配置为监视和考虑可用于客户组织单元的功能信用。 系统中还提供用户管理模块，该用户管理模块被配置为对系统的用户进行认证。 通过通信网络访问用户界面，通过该网络，经过身份验证的用户可以通过该网络请求和接收功能许