-
公开(公告)号:US20100215180A1
公开(公告)日:2010-08-26
申请号:US12733233
申请日:2008-06-11
CPC分类号: G06F21/73 , G06F2221/2141 , H04L9/0891
摘要: A method and system for assigning a key to a device, the method including providing a device having a processor ID (CID) and an associated processor key (CK) and including a memory, at a first time, storing a personalization data ID (PDID) and associated personalization data (PD) in the memory, at a later time, sending the CID and the PDID to a security provider and receiving an activation value (AV) back from the security provider, the activation value AV being based, at least in part, on the CK and a personalization data key (PDK) associated with the PDID and the PD, computing, in the device, a result, based, at least in part, on the CK and the activation value, the result being produced by applying a first function g to the CK and the AV, such that the result=g(CK, AV), and storing the result in the memory, wherein a second function ƒ is used to compute the value of AV, such that AV=ƒ(CK, PDK), and ƒ includes an inverse function of function g, such that g(CK, ƒ(CK, PDK))=PDK, thereby assigning the personalization data key PDK to the device. Related methods and hardware are also described.
摘要翻译: 一种用于将密钥分配给设备的方法和系统,所述方法包括提供具有处理器ID(CID)和相关联的处理器密钥(CK)并且包括存储器的设备,第一时间存储个性化数据ID(PDID )和相关联的个性化数据(PD),在稍后的时间,将CID和PDID发送到安全提供商并从安全提供者接收启动值(AV),激活值AV至少基于 部分地基于CK和与PDID和PD相关联的个性化数据密钥(PDK),至少部分地基于CK和激活值在设备中计算结果,产生的结果 通过向CK和AV应用第一函数g,使得结果= g(CK,AV),并将结果存储在存储器中,其中使用第二函数ƒ来计算AV的值,使得AV =ƒ(CK,PDK),ƒ包括函数g的反函数,使得g(CK,ƒ(CK,PDK))= PDK,th ereby将个性化数据密钥PDK分配给设备。 还描述了相关方法和硬件。
-
公开(公告)号:US20060088156A1
公开(公告)日:2006-04-27
申请号:US10541002
申请日:2004-02-16
申请人: Yaacov Belenky , Chaim Shen-Orr
发明人: Yaacov Belenky , Chaim Shen-Orr
IPC分类号: H04L9/28
CPC分类号: H04L9/0637 , H04L2209/30 , H04L2209/60 , H04N7/1675 , H04N21/23897
摘要: A method for producing at least one ciphertext block from at least one plaintext block using a block cipher E and a key K, the method including receiving n plaintext blocks, wherein n is an integer greater than 0, setting Q0 equal to an initial value, and for each plaintext block of the n plaintext blocks: computing Qi=EK(Qi-1) XOR Pi; and computing Ci=M(Pi, Qi), thereby producing n ciphertext blocks, wherein 0
摘要翻译: 一种使用块密码E和密钥K从至少一个明文块生成至少一个密文块的方法,该方法包括接收n个明文块,其中n是大于0的整数,设置Q < SUB>等于初始值,并且对于n个明文块的每个明文块:计算Q N i = 1&lt;&lt;&lt; >)XOR P 并且计算C i(i,i,i i),从而产生n个密文块,其中0 被加密,则选择M的第二个参数。 还提供了相关的装置和方法。
-
公开(公告)号:US08856942B2
公开(公告)日:2014-10-07
申请号:US13527381
申请日:2012-06-19
申请人: Yaacov Belenky
发明人: Yaacov Belenky
摘要: A method and system are disclosed for preventing rendering of content at overlapping time periods on more rendering devices than permitted by a license associated with the content.
摘要翻译: 公开了一种方法和系统,用于防止在与内容相关联的许可证所允许的更多渲染设备上重叠时间段内容呈现内容。
-
公开(公告)号:US20130294601A9
公开(公告)日:2013-11-07
申请号:US13699912
申请日:2010-12-14
申请人: Aviad Kipnis , Yaron Sella , Yaacov Belenky
发明人: Aviad Kipnis , Yaron Sella , Yaacov Belenky
IPC分类号: H04L9/30
CPC分类号: H04L9/30 , H04L9/0813 , H04L9/0819 , H04L9/0822 , H04L9/0825 , H04L9/0838 , H04L9/3073 , H04L9/3093 , H04L9/3247 , H04L2209/12
摘要: A cryptographic method and apparatus, including providing a public key that defines a multivariate polynomial mapping Q( ) over a finite field F, extracting a first vector Y of verification values from a message, computing over the first vector, using a processor, a digital signature X including a second vector of signature values such that application of the mapping to the digital signature gives a third vector Q(X) of output values such that each output value is equal to a corresponding element of a vector sum Y+aYSHIFT over F, wherein YSHIFT is a shifted version of Y, and aεF, and conveying the message with the digital signature to a recipient for authentication using the public key. Related methods, systems, and apparatus are also described.
-
公开(公告)号:US20120290843A1
公开(公告)日:2012-11-15
申请号:US13527381
申请日:2012-06-19
申请人: Yaacov Belenky
发明人: Yaacov Belenky
IPC分类号: H04L9/30
摘要: A method and system are disclosed for preventing rendering of content at overlapping time periods on more rendering devices than permitted by a license associated with the content.
摘要翻译: 公开了一种方法和系统,用于防止在与内容相关联的许可证所允许的更多渲染设备上重叠时间段内容呈现内容。
-
公开(公告)号:US20120263296A1
公开(公告)日:2012-10-18
申请号:US13322211
申请日:2010-06-28
IPC分类号: H04L9/00
CPC分类号: H04L9/0869 , H04L9/302
摘要: Apparatus for ciphering, including a non-volatile memory, which stores a number from which a private cryptographic key, having a complementary public cryptographic key, is derivable, wherein the number is shorter than the private cryptographic key, and a processor, which is configured to receive an instruction indicating that the private cryptographic key is to be applied to data and, responsively to the instruction, to compute the private cryptographic key using the stored number and to perform a cryptographic operation on the data using the private cryptographic key. Related apparatus and methods are also described.
摘要翻译: 用于加密的装置,包括非易失性存储器,其存储具有补充公共密码密钥的专用密钥的数量,其中所述数量比所述专用加密密钥短;以及处理器,其被配置 接收指示将私有密码密钥应用于数据的指令,并且响应于该指令,使用所存储的号码计算专用密码密钥,并使用专用密码密钥对数据执行密码操作。 还描述了相关装置和方法。
-
公开(公告)号:US08239957B2
公开(公告)日:2012-08-07
申请号:US12311539
申请日:2007-10-30
申请人: Yaacov Belenky
发明人: Yaacov Belenky
摘要: A method for preventing rendering of content at overlapping time periods on more rendering devices than permitted by a license associated with the content is disclosed. The method includes: transmitting the following to a rendering device of a user: the content, first software that is operative to receive the content and to associate keys with the content, identification information (ID) that is associated with the user, and second software that comprises a player for rendering the content, receiving the following information from the rendering device during rendering of the content: a number representation X which comprises a number representation in bits of a result obtained from encrypting together a number representation of a present time interval and the ID, both encrypted with a public key of a key pair generated at the rendering device, and a number representation which comprises a number representation in bits of a share (SH) of a private key of the key pair generated at the rendering device, and detecting an attempt to render the content at overlapping time periods on more rendering devices than permitted by the license associated with the content based on a determination that number representations X received from separate rendering devices are identical, and number representations Y received from the separate rendering devices and paired with the number representations X received from the separate rendering devices are different. Related apparatus and methods are also disclosed.
摘要翻译: 公开了一种用于在比与内容相关联的许可允许的更多渲染设备上的重叠时间段内呈现内容的方法。 该方法包括:将以下内容发送到用户的呈现设备:内容,可操作以接收内容并将密钥与内容相关联的第一软件,与用户相关联的识别信息(ID)和第二软件 其包括用于呈现内容的播放器,在呈现内容期间从呈现设备接收以下信息:数字表示X,其包括通过将当前时间间隔的数字表示加密而获得的结果的比特中的数字表示,以及 所述ID都使用在所述再现设备处生成的密钥对的公开密钥进行加密,以及数字表示,其包括在所述再现设备处生成的密钥对的私钥的共享(SH)的比特中的数字表示, 并且检测尝试在与所述公司相关联的许可证允许的更多渲染设备上的重叠时间段内呈现所述内容 基于从分离的再现设备接收到的数字表示X的确定是相同的,并且从单独的渲染设备接收的并且与从单独的呈现设备接收的数字表示X配对的数字表示Y是不同的。 还公开了相关的装置和方法。
-
公开(公告)号:US08181017B2
公开(公告)日:2012-05-15
申请号:US11587714
申请日:2005-09-08
申请人: Reuben Sumner , Yaacov Belenky
发明人: Reuben Sumner , Yaacov Belenky
IPC分类号: H04L29/06
CPC分类号: H04L9/3265 , H04L63/064 , H04L63/0823
摘要: An intermediate certificate authority (ICA) for a hierarchical certificate authority structure (HCAS), the HCAS having a plurality of levels, the levels including a root level, at least one intermediate level, and a leaf level, the root level having a root certificate authority, the ICA being in the at least one intermediate level, the ICA including a certificate receiving module to receive a first certificate signed by a certificate authority in a level above the level of the ICA, the first certificate certifying an aspect of the ICA, the first certificate having an expiration time, and a certificate signing module to sign a second certificate for a member of the HCAS, prior to the expiration time of the first certificate, such that the second certificate expires after the expiration time of the first certificate, the member being in a level below the level of the ICA, the second certificate certifying an aspect of the member. Related apparatus and methods are also described.
摘要翻译: 用于分级证书机构结构(HCAS)的中间认证机构(ICA),具有多个级别的HCAS,所述级别包括根级别,至少一个中间级别和叶级别,根级别具有根证书 授权,ICA处于至少一个中间级别,ICA包括证书接收模块,用于接收由ICA级别以上级别的认证机构签名的第一证书,证明ICA方面的第一证书, 所述第一证书具有到期时间,以及证书签名模块,用于在所述第一证书的到期时间之前签署所述HCAS成员的第二证书,使得所述第二证书在所述第一证书的到期时间到期后, 该成员处于低于ICA级别的级别,第二份证书证明该成员的一个方面。 还描述了相关装置和方法。
-
公开(公告)号:US08041943B2
公开(公告)日:2011-10-18
申请号:US12223642
申请日:2006-10-03
IPC分类号: H04L9/00
CPC分类号: G06F21/31 , H04L9/3268
摘要: A method for enforcing use of certificate revocation lists in validating certificates, the lists being associated with a series of list generation indices such that each list is assigned one index which advances according to a time of generation of the list, the lists and the indices being cryptographically signed, the method including receiving one of the lists and an associated index as an identifier of the one list, checking the certificates against the list, associating each of the certificates, which have been checked against the list, with the index, receiving an enforcement generation index (EGI) associated with a latest list in use, storing the EGI as a last known EGI, and refusing performance of an action associated with a certificate if the one index of the one certificate is earlier in the series than the last known EGI. Related apparatus and methods are also included.
摘要翻译: 一种用于在验证证书中强制使用证书吊销列表的方法,该列表与一系列列表生成索引相关联,使得每个列表被分配一个根据列表生成时间而前进的索引,列表和索引为 所述方法包括接收一个列表和相关联的索引作为一个列表的标识符,根据列表检查证书,将已经检查的每个证书与列表相关联,并将其与索引相关联, 与最新使用的列表相关联的执行生成索引(EGI),将EGI存储为最后一个已知的EGI,并且如果一个证书的一个索引比最后一个已知的EGI更早,则拒绝执行与证书相关联的动作 EGI。 还包括相关的装置和方法。
-
公开(公告)号:US20090290713A1
公开(公告)日:2009-11-26
申请号:US12311539
申请日:2007-10-30
申请人: Yaacov Belenky
发明人: Yaacov Belenky
摘要: A method for preventing rendering of content at overlapping time periods on more rendering devices than permitted by a license associated with the content is disclosed. The method includes: transmitting the following to a rendering device of a user: the content, first software that is operative to receive the content and to associate keys with the content, identification information (ID) that is associated with the user, and second software that comprises a player for rendering the content, receiving the following information from the rendering device during rendering of the content: a number representation X which comprises a number representation in bits of a result obtained from encrypting together a number representation of a present time interval and the ID, both encrypted with a public key of a key pair generated at the rendering device, and a number representation which comprises a number representation in bits of a share (SH) of a private key of the key pair generated at the rendering device, and detecting an attempt to render the content at overlapping time periods on more rendering devices than permitted by the license associated with the content based on a determination that number representations X received from separate rendering devices are identical, and number representations Y received from the separate rendering devices and paired with the number representations X received from the separate rendering devices are different. Related apparatus and methods are also disclosed.
摘要翻译: 公开了一种用于在比与内容相关联的许可允许的更多渲染设备上的重叠时间段内呈现内容的方法。 该方法包括:将以下内容发送到用户的呈现设备:内容,可操作以接收内容并将密钥与内容相关联的第一软件,与用户相关联的识别信息(ID)和第二软件 其包括用于呈现内容的播放器,在呈现内容期间从呈现设备接收以下信息:数字表示X,其包括通过将当前时间间隔的数字表示加密而获得的结果的比特中的数字表示,以及 所述ID都使用在所述再现设备处生成的密钥对的公开密钥进行加密,以及数字表示,其包括在所述再现设备处生成的密钥对的私钥的共享(SH)的比特中的数字表示, 并且检测尝试在与所述公司相关联的许可证允许的更多渲染设备上的重叠时间段内呈现所述内容 基于从分离的再现设备接收到的数字表示X的确定是相同的,并且从单独的渲染设备接收的并且与从单独的呈现设备接收的数字表示X配对的数字表示Y是不同的。 还公开了相关的装置和方法。
-
-
-
-
-
-
-
-
-
搜索结果
43 条记录 (耗时 0.022 秒)
