-
公开(公告)号:US4434323A
公开(公告)日:1984-02-28
申请号:US278251
申请日:1981-06-29
IPC分类号: H04K1/00
CPC分类号: H04K1/00
摘要: A method for synchronizing the scrambling sequences of communicating scrambler units of a privacy communications system in a reliable and secure manner. The method is particularly adapted for use in noisy or fade prone transmission environments, and permits late entry of authorized third parties to the system. The method utilizes digital sequences interleaved periodically with scrambled analog information to provide reliable synchronization.
摘要翻译: 一种用于以可靠和安全的方式同步隐私通信系统的通信扰乱单元的加扰序列的方法。 该方法特别适用于嘈杂或易褪色的传输环境,并允许授权的第三方将其延迟进入系统。 该方法利用与加扰的模拟信息周期性交织的数字序列,以提供可靠的同步。
-
22.发明授权Method and apparatus as pertains to a biometric template and a corresponding privacy policy 有权关于生物特征模板和相应隐私政策的方法和装置公开(公告)号:US08127337B2
公开(公告)日:2012-02-28
申请号:US12043535
申请日:2008-03-06
IPC分类号: G06F17/00
CPC分类号: G06F21/6218
摘要: At a two-way communications apparatus (200) of choice, one can detect (101) a two-way communications apparatus user instruction and then, in response to detecting that instruction, provide (102) certain information to a nearby two-way communications apparatus (208) via a near field communications link (206). This information can comprise, at least in part, a biometric template as pertains to a user of the two-way communications apparatus and a privacy policy as pertains to further dissemination of the biometric template.
摘要翻译: 在选择的双向通信装置(200)中,可以检测(101)双向通信装置用户指令,然后响应于检测到该指令,向某个附近的双向通信(102)提供某些信息 装置(208)经由近场通信链路(206)。 该信息至少部分地可以包括与双向通信装置的用户有关的生物特征模板和关于进一步传播生物特征模板的隐私政策。
-
23.发明授权Domain-based digital-rights management system with easy and secure device enrollment 有权基于域的数字权限管理系统,具有便捷安全的设备注册公开(公告)号:US07899187B2
公开(公告)日:2011-03-01
申请号:US10306494
申请日:2002-11-27
申请人: Thomas Messerges , Ezzat A. Dabbish , Larry Puhl , Dean Vogler
发明人: Thomas Messerges , Ezzat A. Dabbish , Larry Puhl , Dean Vogler
IPC分类号: H04L9/00
CPC分类号: G06F21/10 , G06F2221/0706 , G06F2221/0797 , H04L63/065
摘要: New devices (101) are added to an existing domain by obtaining domain information (e.g., domain name and private domain password) from devices (101) already in the domain that preferably are in close proximity. Once the domain information has been transferred from the device already in the domain to the device being added to the domain, the device being added to the domain contacts a key issuer (105) to complete its registration into the domain. The key issuer returns a DRM domain private key (206) as well as a DRM certificate (202). Both are utilized by the device to obtain and render digital content (204).
摘要翻译: 新设备(101)通过从已经在域中已经在优选紧邻的设备(101)获得域信息(例如,域名和专用域密码)而被添加到现有域。 一旦域信息已经从已经在域中的设备传送到被添加到该域的设备,则被添加到该域的设备联系一个密钥发行者(105)来完成其注册到域中。 密钥颁发者返回DRM域私钥(206)以及DRM证书(202)。 两者都被设备利用以获得和呈现数字内容(204)。
-
公开(公告)号:US07596812B2
公开(公告)日:2009-09-29
申请号:US11152216
申请日:2005-06-14
申请人: Yi Q. Li , Ezzat A. Dabbish , Morris A. Moore
发明人: Yi Q. Li , Ezzat A. Dabbish , Morris A. Moore
IPC分类号: G06F7/04
CPC分类号: H04L63/0428 , G06F11/1456 , G06F11/1458 , G06F11/1469 , G06F21/606 , G06F21/6218 , G06F21/6245 , G06F2221/2115 , H04L63/0478 , H04L63/08
摘要: Disclosed is a method, system and apparatus for transferring protected data having an authorizing entity's outer encryption layer and having a user-fixed inner encryption layer from a first electronic device having a first unique, unalterable identifier to a second electronic device having a second unique, unalterable identifier. A central unit includes a receiver configured to receive from the first electronic device protected data having an authorizing entity's first outer encryption layer corresponding to the first unique, unalterable identifier and having a user-fixed inner encryption layer; a processor configured to decrypt the authorizing entity's first outer encryption layer of the protected data; a processor configured to encrypt an authorizing entity's second outer encryption layer of the protected data corresponding to the second unique, unalterable identifier; and a transmitter configured to transmit protected data to the second electronic device.
摘要翻译: 公开了一种用于传送具有授权实体的外部加密层并且具有用户固定的内部加密层的受保护数据的方法,系统和装置,其具有来自具有第一唯一的,不可更改标识符的第一电子设备的用户固定的内部加密层, 不可变的标识符 中央单元包括:接收器,被配置为从所述第一电子设备接收受保护的数据,所述受保护数据具有与所述第一唯一的,不可更改的标识符相对应的授权实体的第一外部加密层,并且具有用户固定的内部加密层; 处理器,被配置为对授权实体的受保护数据的第一外部加密层进行解密; 处理器,被配置为对授权实体的第二外部加密层加密对应于第二唯一的,不可更改的标识符的受保护数据; 以及被配置为将保护的数据发送到所述第二电子设备的发射机。
-
25.发明申请Method and Apparatus as Pertains to a Biometric Template and a Corresponding Privacy Policy 有权与生物特征模板相关的方法和装置以及相应的隐私政策公开(公告)号:US20090228952A1
公开(公告)日:2009-09-10
申请号:US12043535
申请日:2008-03-06
IPC分类号: G06F17/00
CPC分类号: G06F21/6218
摘要: At a two-way communications apparatus (200) of choice, one can detect (101) a two-way communications apparatus user instruction and then, in response to detecting that instruction, provide (102) certain information to a nearby two-way communications apparatus (208) via a near field communications link (206). This information can comprise, at least in part, a biometric template as pertains to a user of the two-way communications apparatus and a privacy policy as pertains to further dissemination of the biometric template.
摘要翻译: 在选择的双向通信装置(200)中,可以检测(101)双向通信装置用户指令,然后响应于检测到该指令,向某个附近的双向通信(102)提供某些信息 装置(208)经由近场通信链路(206)。 该信息至少部分地可以包括与双向通信装置的用户有关的生物特征模板和关于进一步传播生物特征模板的隐私政策。
-
公开(公告)号:US07137001B2
公开(公告)日:2006-11-14
申请号:US10186370
申请日:2002-06-28
申请人: Ezzat A. Dabbish , Larry C. Puhl
发明人: Ezzat A. Dabbish , Larry C. Puhl
IPC分类号: H04L9/32
CPC分类号: B60R25/25 , B60R25/04 , B60R25/307 , H04L9/3247 , H04L9/3263 , H04L9/3271 , H04L2209/84
摘要: A vehicle authenticates a first prospective component by obtaining from a certification authority a certification that an authentic component is associated with a cryptographic key unique to the first prospective component and determining whether the first prospective component is the authentic component based on whether the cryptographic key is successfully utilized in cryptographic communication with the first prospective component. The vehicle authenticates a component class of a second prospective component by obtaining from a certification authority a certification that an authentic component of the component class is associated with a second cryptographic key unique to the component class and determining whether the second prospective component is an authentic component of the component class based on whether the second cryptographic key is successfully utilized in the cryptographic communication with the second prospective component.
摘要翻译: 车辆通过从认证机构获得认证,证明认证组件与第一预期组件特有的加密密钥相关联,并且基于加密密钥是否成功确定第一预期组件是真实组件,来认证第一预期组件 用于与第一个预期组件进行加密通信。 车辆通过从认证机构获得组件类的真实组件与组件类别唯一的第二密码密钥相关联的认证,并且确定第二预期组件是否是真实组件来认证第二预期组件的组件类别 基于第二密码密钥是否在与第二预期成分的密码通信中成功利用的组件类别。
-
公开(公告)号:US07010682B2
公开(公告)日:2006-03-07
申请号:US10184530
申请日:2002-06-28
申请人: Jurgen Reinold , John D. Bruner , Ezzat A. Dabbish , Walton L. Fehr , Samual M. Levenson , Larry C. Puhl
发明人: Jurgen Reinold , John D. Bruner , Ezzat A. Dabbish , Walton L. Fehr , Samual M. Levenson , Larry C. Puhl
IPC分类号: G06F11/30
CPC分类号: H04L63/0823 , H04L9/3247 , H04L9/3263 , H04L9/3271 , H04L29/06 , H04L67/12 , H04L69/329 , H04L2209/84
摘要: A vehicle authenticates a prospective component for use in the vehicle by obtaining from a certification authority a certification that an authentic component is associated with a cryptographic key. The certification certifies that the cryptographic key is bound to information identifying the authentic component. The vehicle utilizes the cryptographic key obtained from the certification authority in cryptographic communication with the prospective component, and determines whether the prospective component is the authentic component based on whether the cryptographic key is successfully utilized in the cryptographic communication.
摘要翻译: 车辆通过从认证机构获得真实组件与加密密钥相关联的认证来认证用于车辆的预期组件。 该证书证明加密密钥与识别真实组件的信息绑定。 车辆利用从认证机构获得的加密密钥与预期组件进行加密通信,并且基于在密码通信中是否成功利用密码密钥来确定预期组件是否是真实组件。
-
28.发明授权Method and apparatus for preventing information leakage attacks on a microelectronic assembly 有权用于防止对微电子组件的信息泄漏攻击的方法和装置公开(公告)号:US06295606B1
公开(公告)日:2001-09-25
申请号:US09360585
申请日:1999-07-26
IPC分类号: G06F1214
CPC分类号: G07F7/1008 , G06F21/72 , G06F21/755 , G06F2207/7219 , G06Q20/341 , G07F7/082 , G07F7/084 , G07F7/1016 , G07F7/1083 , H04L9/003 , H04L9/0625 , H04L2209/046 , H04L2209/08
摘要: An apparatus and method for preventing information leakage attacks on a microelectronic assembly is described for performing a cryptographic algorithm by transforming a first function, used by the cryptographic algorithm, into a second function. The method includes receiving (1102) a masked input data having n number of bits that is masked with an input mask, wherein n is a first predetermined integer. The method also includes processing (1104) the masked input data using a second function based on a predetermined masking scheme, and producing (1106) a masked output data having m number of bits that is masked with an output mask, wherein m is a second predetermined integer.
摘要翻译: 描述了一种用于防止对微电子组件的信息泄漏攻击的装置和方法,用于通过将由密码算法使用的第一功能变换为第二功能来执行密码算法。 该方法包括:接收(1102)具有n个比特的被掩码的输入数据,该掩码的输入数据被用输入掩码掩码,其中n是第一预定整数。 该方法还包括使用基于预定屏蔽方案的第二函数来处理(1104)屏蔽的输入数据,并且产生(1106)具有m个位数的屏蔽输出数据,该数据被输出掩码掩蔽,其中m是第二个 预定整数。
-
公开(公告)号:US5917911A
公开(公告)日:1999-06-29
申请号:US788068
申请日:1997-01-23
CPC分类号: H04L9/3247 , H04L9/0836 , H04L9/0894
摘要: A key management system includes a hierarchy (10) of independent key arbitration centers (KAC) for providing access to a user's session keys through key management centers (KMC). When a court order is issued for a user's session keys, a message requesting the keys is transferred down through hierarchy until a terminal KAC (16,36) is reached. Each KAC in the hierarchy adds its ID and signs (116) the message, verifying prior signatures (114). The user's ID is encrypted with the terminal KAC's public key. The terminal KAC engages in a blind key access procedure (129) with the KMC (18,38) to receive the user's session key. The key is provided encrypted with the requesting party's or agency's public key. Accordingly, privacy is assured because only the KMC and the requesting agency have access to the actual key value, and only the terminal KAC and requesting agency have access to the user's ID. No other KACs in the hierarchy have access to the user ID or key value, and the KMC does not know which user's key has been provided.
摘要翻译: 密钥管理系统包括用于通过密钥管理中心(KMC)提供对用户会话密钥的访问的独立密钥仲裁中心(KAC)的层次结构(10)。 当为用户的会话密钥发出法庭命令时,请求密钥的消息通过层次结构传送,直到到达终端KAC(16,36)。 层级中的每个KAC将其ID和符号(116)添加到消息中,验证先前的签名(114)。 使用终端KAC的公钥加密用户的ID。 终端KAC与KMC(18,38)进行盲密钥访问过程(129),以接收用户的会话密钥。 密钥是用请求方或代理公钥加密的。 因此,只有KMC和请求机构能够访问实际的密钥值,并且只有终端KAC和请求机构可以访问用户的ID,才能保证隐私。 层次结构中没有其他KAC可以访问用户ID或密钥值,并且KMC不知道已经提供了哪个用户的密钥。
-
公开(公告)号:US5564106A
公开(公告)日:1996-10-08
申请号:US401592
申请日:1995-03-09
CPC分类号: H04L9/0833
摘要: Blind access (100, 300, 400) to a desired encryption key of a predetermined first group member is provided to a second group. The first group encrypts a plurality of first group member encryption keys using a predetermined algorithm and transfers to the second group, the encrypted plurality of first group member encryption keys with corresponding unencrypted first group member identification fields, IDs, and a list of IDs corresponding to the first group members. The desired ID-free encryption key is selected and encrypted by the second group using a predetermined algorithm. The doubly encrypted key is transferred to the first group, decrypted by the first group and transferred to the second group for decryption. Thus, the encryption key is provided without knowledge to the first group of which member's encryption key is being examined and with knowledge to the second group of only the desired encryption key.
摘要翻译: 盲目访问(100,300,400)到预定的第一组成员的所需加密密钥被提供给第二组。 第一组使用预定的算法对多个第一组成员加密密钥进行加密,并将加密的多个第一组成员加密密钥与对应的未加密的第一组成员标识字段,ID以及对应于 第一组成员。 使用预定算法由第二组选择并加密所需的无ID加密密钥。 双加密密钥被传送到第一组,由第一组解密并传送到第二组进行解密。 因此,提供加密密钥而不知道正在检查哪个成员的加密密钥的第一组,并且向第二组提供只有期望的加密密钥的知识。
-
-
-
-
-
-
-
-
-
搜索结果
31 条记录 (耗时 0.04 秒)
