公开(公告)号：US11650935B2

公开(公告)日：2023-05-16

申请号：US16234726

申请日：2018-12-28

Applicant: Intel Corporation

Inventor： Richard Edgecombe ,  Reshma Lal

IPC: G06F9/455 ,  H04L9/08 ,  G06F12/14 ,  H04L9/32 ,  G06F21/76 ,  G06F21/60 ,  G06F21/57 ,  G06F21/64 ,  H04L41/28 ,  G06F21/79 ,  H04L41/046 ,  H04L9/06 ,  G06F9/38 ,  G06F12/0802

CPC classification number: G06F12/1408 ,  G06F9/3877 ,  G06F9/45558 ,  G06F12/0802 ,  G06F21/57 ,  G06F21/602 ,  G06F21/606 ,  G06F21/64 ,  G06F21/76 ,  G06F21/79 ,  H04L9/0631 ,  H04L9/0637 ,  H04L9/083 ,  H04L9/085 ,  H04L9/0838 ,  H04L9/0844 ,  H04L9/0891 ,  H04L9/321 ,  H04L9/3215 ,  H04L9/3226 ,  H04L9/3268 ,  H04L9/3278 ,  H04L41/046 ,  H04L41/28 ,  G06F2009/45591 ,  G06F2009/45595

Abstract: Technologies for secure key provisioning include a computing device having a processor with secure enclave support and a manageability controller. The manageability controller receives a secret key from a network source via a network interface that is isolated from untrusted software of the computing device. The manageability controller authenticates a secure enclave of the computing device and, if successful, securely provisions a session key derived from the secret key to the secure enclave. The manageability controller may provision additional session keys after expiration of the session key. The manageability controller may monitor for revocation of the secret key by the network source. If revoked, the manageability controller does not provision additional session keys to the secure enclave. The manageability controller may also provision the session key to a sensor device protected by the secret key, which is pre-provisioned to the sensor device. Other embodiments are described and claimed.

公开(公告)号：US20190238531A1

公开(公告)日：2019-08-01

申请号：US16379558

申请日：2019-04-09

Applicant: EARLY WARNING SERVICES, LLC

Inventor： Ravi Ganesan

IPC: H04L29/06 ,  H04L9/32

CPC classification number: H04L63/0838 ,  H04L9/3215 ,  H04L9/3228 ,  H04L63/18 ,  H04L63/20 ,  H04L2463/082

Abstract: To provide a user signature on a network transaction, a security server receives transaction information representing a transaction between a network user and a network site, such as a website, directly from the network site. The security server calculates a one-time-password based on the received transaction information and a secret shared by the security server and the network site, but not by the user. The security server transmits the calculated one-time-password for application as the user's signature on the transaction. The one-time-password is independently calculable by the network site based on the shared secret.

公开(公告)号：US20190020479A1

公开(公告)日：2019-01-17

申请号：US15650100

申请日：2017-07-14

Applicant: Adobe Systems Incorporated

Inventor： Damien M. Antipa ,  Antonio Sanso

IPC: H04L9/32 ,  G06F21/44 ,  H04L29/06

CPC classification number: H04L9/3213 ,  G06F21/44 ,  G06Q30/0267 ,  H04L9/302 ,  H04L9/3215 ,  H04L9/3221 ,  H04L9/3228 ,  H04L9/3271 ,  H04L63/0442 ,  H04L63/062 ,  H04L63/0807 ,  H04L63/0838 ,  H04L63/0884 ,  H04W12/06 ,  H04W12/08

Abstract: A digital medium environment includes a computing device (e.g., a mobile device), a digital signage device, and a server. The computing device is coupled to the digital signage device via a first communication channel, e.g., according to a low emissions protocol. The digital signage device is coupled to the server via a second communication channel that is encrypted. Security is achieved using a one-time-use token and a resolution provided by the computing device that proves the computing device knows a factorization, known to both the digital signage device and the server, without exposing the factorization in the resolution. The token is communicated from the server to the digital signage device, and is not exposed to the computing device. Thus, the authentication techniques described herein are robust and secure to an attack of communication between the computing device and the digital signage device, and are seamless to the user.

公开(公告)号：US20180204213A1

公开(公告)日：2018-07-19

申请号：US15857093

申请日：2017-12-28

Applicant: HashLynx Inc.

Inventor： Paul Zappier ,  Nicholas Paul Zappier

IPC: G06Q20/38 ,  H04L9/32 ,  H04L9/08 ,  H04L29/06

CPC classification number: G06Q20/38215 ,  G06Q2220/00 ,  H04L9/0637 ,  H04L9/0819 ,  H04L9/3215 ,  H04L9/3239 ,  H04L63/065 ,  H04L63/08 ,  H04L63/10 ,  H04L2209/38 ,  H04L2209/56

Abstract: Embodiments of the present invention provide a system for utilizing one or more decentralized applications to allow entities to interface with a blockchain for the purposes of conducting a resource transfer. Typically, the blockchain is a permissioned blockchain which may be accessed only by the entities involved in the resource transfer. The decentralized applications may communicate with the legacy systems within each entity through an application programming interface (API) such that the data stored on the legacy systems may be governed by the blockchain. This ensures the authenticity of the data stored on the legacy systems while preventing the possibility of disparate versions of data being created over time.

公开(公告)号：US09906369B2

公开(公告)日：2018-02-27

申请号：US15001015

申请日：2016-01-19

Applicant: Cyph, Inc.

Inventor： Ryan Lester ,  Jann Horn ,  Bryant Zadegan

IPC: G06F21/45 ,  G06F21/60 ,  G06F9/445 ,  H04L12/58 ,  H04L29/06 ,  H04L29/08 ,  H04L5/00 ,  H04L9/08 ,  H04L9/32 ,  H04W12/10

CPC classification number: H04L9/3247 ,  G06F8/60 ,  G06F21/45 ,  G06F21/606 ,  H04L5/0037 ,  H04L9/08 ,  H04L9/0861 ,  H04L9/321 ,  H04L9/3215 ,  H04L9/3228 ,  H04L51/046 ,  H04L51/16 ,  H04L63/0281 ,  H04L63/0435 ,  H04L63/0442 ,  H04L63/061 ,  H04L63/065 ,  H04L63/08 ,  H04L63/0838 ,  H04L63/123 ,  H04L63/18 ,  H04L67/02 ,  H04L67/10 ,  H04L67/141 ,  H04L67/146 ,  H04L67/42 ,  H04W12/10

Abstract: Embodiments disclosed herein provide a method that includes receiving, at a client-side web browser, a minimal bootstrap payload from an application server; storing, by a client-side processor, the minimal bootstrap payload in a client-side local cache, where the locally cached minimal bootstrap payload is executed by the client-side processor before executing an application from the application server; the minimal bootstrap payload includes at least one public key and at least one Uniform Resource Location (URL) address of an application code payload.

公开(公告)号：US09900148B1

公开(公告)日：2018-02-20

申请号：US15612712

申请日：2017-06-02

Applicant: Cryptomathic Ltd

Inventor： Guillaume Forget ,  Torben Pryds Pedersen ,  Peter Landrock

IPC: H04L9/32 ,  H04L9/06

CPC classification number: H04L9/06 ,  G06F21/42 ,  H04L9/3215 ,  H04L9/3234 ,  H04L9/3247 ,  H04L9/3271 ,  H04L63/08 ,  H04L63/0823 ,  H04L63/0853 ,  H04L63/123 ,  H04L63/18 ,  H04L2209/56 ,  H04L2209/80

Abstract: A method for validating a signature request for a first message M, comprising: receiving, a validation challenge (VC) from a signature creation device (SCD), the VC created by the SCD, in response to receiving the signature request and message M from a user, using a second message M′ which is based on message M and a secret shared between the SCD and user, the VC generated by encrypting message M′ using the secret; generating, the message M′ from the VC by decrypting the VC using the secret; displaying the message M′ to the user; receiving confirmation from the user that the displayed message M′ corresponds to the message M; generating, a validation code confirming the signature request to create a signature; and outputting the code to the SCD, to cause the SCD to generate the signature for the user for message M based on successfully verifying the code.

公开(公告)号：US20180048475A1

公开(公告)日：2018-02-15

申请号：US15673884

申请日：2017-08-10

Applicant: Cyph, Inc.

Inventor： Ryan Lester ,  Jann Horn ,  Bryant Zadegan

IPC: H04L9/32 ,  H04L29/06 ,  H04L29/08 ,  G06F21/60 ,  H04L12/58 ,  H04L9/08 ,  H04L5/00 ,  H04W12/10 ,  G06F9/445

CPC classification number: H04L9/3247 ,  G06F8/60 ,  G06F21/606 ,  H04L5/0037 ,  H04L9/0861 ,  H04L9/321 ,  H04L9/3215 ,  H04L9/3271 ,  H04L51/16 ,  H04L63/0281 ,  H04L63/0435 ,  H04L63/0442 ,  H04L63/061 ,  H04L63/065 ,  H04L63/08 ,  H04L63/0838 ,  H04L63/123 ,  H04L63/18 ,  H04L67/02 ,  H04L67/10 ,  H04L67/141 ,  H04L67/146 ,  H04L67/42 ,  H04W12/10

Abstract: Embodiments disclosed herein provide a method that includes receiving, at a client-side web browser, a minimal bootstrap payload from an application server; storing, by a client-side processor, the minimal bootstrap payload in a client-side local cache, where the locally cached minimal bootstrap payload is executed by the client-side processor before executing an application from the application server; the minimal bootstrap payload includes at least one public key and at least one Uniform Resource Location (URL) address of an application code payload.

公开(公告)号：US20180041479A1

公开(公告)日：2018-02-08

申请号：US15667542

申请日：2017-08-02

Applicant: Alibaba Group Holding Limited

Inventor： Qinghua Wang

IPC: H04L29/06 ,  H04W12/06 ,  H04L9/32

CPC classification number: H04L63/0428 ,  H04L9/3215 ,  H04L9/3263 ,  H04L63/0823 ,  H04L63/083 ,  H04L63/0838 ,  H04L63/0853 ,  H04L63/102 ,  H04W12/02 ,  H04W12/06

Abstract: Embodiments of the present application relate to a method, device, and system for processing data. The method includes receiving a login request from a front-end device, the login request comprising account information of an account associated with the front-end device, determining a confirmation device associated with the front-end device based at least in part on the account information, generating an authentication request based at least in part on the account information, wherein said authentication request comprises said account information, obtaining confirmation information from the confirmation device, the confirmation information being generated based at least in part on the authentication request and confirming the login request, and authenticating, by the authentication system, the front-end device based at least in part on the confirmation information.

公开(公告)号：US09864608B2

公开(公告)日：2018-01-09

申请号：US15063145

申请日：2016-03-07

Applicant: Microsoft Technology Licensing, LLC

Inventor： Christopher McCarron ,  Varugis Kurien

IPC: G06F21/00 ,  G06F9/44 ,  G06F21/30 ,  H04L9/32 ,  H04L29/06 ,  G06F3/06 ,  G06F12/14 ,  H04L9/30 ,  H04L29/08

CPC classification number: G06F9/4416 ,  G06F3/0622 ,  G06F3/0659 ,  G06F3/067 ,  G06F12/1408 ,  G06F21/30 ,  G06F21/305 ,  G06F2212/1052 ,  H04L9/30 ,  H04L9/32 ,  H04L9/3215 ,  H04L9/3271 ,  H04L63/0428 ,  H04L63/0869 ,  H04L67/10 ,  H04L2209/127 ,  H04L2209/80

Abstract: A mechanism for performing a network boot sequence and provisioning a device may generate a command by a server and have the command executed by the device. The command may be used to verify the authenticity of the device, and may be used to establish ownership of the device. After authenticity and, in some cases ownership is established, bootable software may be downloaded and executed. The device may be provisioned with software applications.

公开(公告)号：US09856129B2

公开(公告)日：2018-01-02

申请号：US14206697

申请日：2014-03-12

Applicant: ZONAR SYSTEMS, INC.

Inventor： Michael Charles King ,  Rick Fadler ,  Charles Michael McQuade

IPC: H04B1/3822 ,  B67D7/30 ,  H04L9/32 ,  H04L29/06 ,  G06F21/44

CPC classification number: B67D7/302 ,  G06F21/44 ,  G06F2221/2111 ,  H04L9/3215 ,  H04L9/3226 ,  H04L63/107 ,  H04L2209/805 ,  H04L2209/84

Abstract: Described herein is a fuel authorization program that vehicles enrolled in the fuel authorization program to provide fuel tank sensor data in each fuel authorization request, so that an amount of fuel authorized will be limited to the amount needed to fill the vehicle's fuel tank, reducing a likelihood that fuel will be diverted. In at least some embodiments, the fuel authorization controller at the vehicle automatically uses the fuel tank sensor data and known tank size to include in a fuel authorization request sent to a fuel vendor data defining how much fuel is required to fill the vehicle fuel tanks. In at least some embodiments, the fuel vendor consults data from a source other than the vehicle (such as records maintained by the fuel authorization program) to determine how large the vehicles fuel tanks are, and to calculate how much fuel is required.