公开(公告)号：US07711152B1

公开(公告)日：2010-05-04

申请号：US09303053

申请日：1999-04-30

申请人： George I. Davida ,  Yair Frankel

发明人： George I. Davida ,  Yair Frankel

IPC分类号： G06K9/00

CPC分类号： G06F21/34 ,  G06F21/32 ,  G06K9/00885

摘要： A system and method for the identification of users and objects using biometric techniques is disclosed. This invention describes a biometric based identification and authorization systems which do not require the incorporation of an on-line database of stored complete biometrics for the security infrastructure. In order to remove the connectivity requirements, an off-line biometric system is achieved by incorporating an identity verification template (IVT) on a storage device/token (e.g., magnetic strip or smart-card) during the user's registration which provides for a reliable storage medium; however, there are no security requirements required of the token even to protect the privacy of the stored biometric. The IVT does not contain complete information of the user's biometric but allows for the verification of the user when that user later provides a biometric reading. To deal with errors that may be introduced into later scans of the biometric (for example at the time of verification) error correcting techniques, well known in the art of communication and error control systems, are incorporated into the system. The system is also usable in the online model. Moreover, it may also be used to enable cryptographic operations by being used to partially compose or encrypt private keys for cryptographic operation.

摘要翻译： 公开了一种使用生物识别技术识别用户和对象的系统和方法。 本发明描述了一种基于生物特征的识别和授权系统，其不需要结合用于安全基础设施的存储的完整生物识别的在线数据库。 为了消除连接性要求，通过在用户注册期间在存储设备/令牌（例如，磁条或智能卡）上并入身份验证模板（IVT）来实现离线生物识别系统，其提供可靠的 存储介质; 然而，即使保护存储的生物特征的隐私，也不需要令牌的安全性要求。 IVT不包含用户生物特征的完整信息，但是当该用户稍后提供生物特征读数时，允许验证用户。 为了处理可能被引入到生物测定的后续扫描中的错误（例如在验证时），通信和错误控制系统领域众所周知的纠错技术被并入到系统中。 该系统也可用于在线模型。 此外，它还可以用于通过用于部分地组合或加密用于加密操作的私钥来启用加密操作。

公开(公告)号：US20080025510A1

公开(公告)日：2008-01-31

申请号：US11896361

申请日：2007-08-31

申请人： Marcel Yung ,  Yair Frankel

发明人： Marcel Yung ,  Yair Frankel

IPC分类号： H04K1/00 ,  H04L9/00

CPC分类号： H04L9/0838 ,  H04L9/0897

摘要： A method of distributed cryptography for high consequence security systems which employs shared randomness between operating parties. Shared randomness is accomplished by sharing cryptographic keys stored in secure hardware tokens by potentially less secure software or general purpose computing units that perform distributed cryptography. The shared randomness is based on shared keys (at the tokens) and unique context. Shared random values are incorporated into the computation of partial results used in the distributed cryptographic calculation. The incorporation of shared randomness provides a hand-shake among the hardware tokens. When the operation is successful, a result is computed with assurance that the correct parties have taken part in forming the result. The hand-shake assures binding of operating parties and added system security.

摘要翻译： 一种分布式密码学方法，用于高结果安全系统，其使用了各方之间的共享随机性。 共享随机性通过共享由安全硬件令牌存储的加密密钥来完成，潜在的较不安全的软件或执行分布式加密的通用计算单元。 共享随机性基于共享密钥（令牌）和唯一上下文。 共享随机值被并入分布式加密计算中使用的部分结果的计算中。 共享随机性的并入提供了硬件令牌之间的握手。 当操作成功时，计算结果是确保正确的方参与形成结果。 握手确保了操作方的约束和增加的系统安全性。

公开(公告)号：US20070005798A1

公开(公告)日：2007-01-04

申请号：US11089592

申请日：2004-05-17

申请人： Adrian Gropper ,  Sean Doyle ,  William Donner ,  Hugh Cottingham ,  Yair Frankel

发明人： Adrian Gropper ,  Sean Doyle ,  William Donner ,  Hugh Cottingham ,  Yair Frankel

IPC分类号： G06F15/173

CPC分类号： G06F19/321

摘要： The invention, in one embodiment, is directed to systems and methods for providing a “Virtual Radiology” service. This service, potentially, can provide any radiological digital image data to any computer at any institution. The service is “Virtual” in that the radiological digital image data accessible on a DICOM LAN and PACS of a first institution is made available to a second institution, without either institution having to open their networks to each other, establish legal or other business relationships and understandings or to become administratively involved with each other.

摘要翻译： 在一个实施例中，本发明涉及用于提供“虚拟放射学”服务的系统和方法。 该服务潜在地可以向任何机构的任何计算机提供任何放射性数字图像数据。 该服务是“虚拟”，因为第一机构的DICOM LAN和PACS可访问的放射性数字图像数据可用于第二机构，而无需任何一个机构必须彼此打开网络，建立合法或其他业务关系 理解或相互行政相关。

公开(公告)号：US20050018840A1

公开(公告)日：2005-01-27

申请号：US10901079

申请日：2004-07-29

申请人： Marcel Yung ,  Yair Frankel

发明人： Marcel Yung ,  Yair Frankel

IPC分类号： G09C1/00 ,  H04L9/08 ,  H04L9/30 ,  H04L9/32 ,  H04K1/00

CPC分类号： H04L9/0838 ,  H04L9/0897

摘要： A method of distributed cryptography for high consequence security systems which employs shared randomness between operating parties. Shared randomness is accomplished by sharing cryptographic keys stored in secure hardware tokens by potentially less secure software or general purpose computing units that perform distributed cryptography. The shared randomness is based on shared keys (at the tokens) and unique context. Shared random values are incorporated into the computation of partial results used in the distributed cryptographic calculation. The incorporation of shared randomness provides a hand-shake among the hardware tokens. When the operation is successful, a result is computed with assurance that the correct parties have taken part in forming the result. The hand-shake assures binding of operating parties and added system security.

摘要翻译： 一种分布式密码学方法，用于高结果安全系统，其使用了各方之间的共享随机性。 共享随机性通过共享由安全硬件令牌存储的加密密钥来完成，潜在的较不安全的软件或执行分布式加密的通用计算单元。 共享随机性基于共享密钥（令牌）和唯一上下文。 共享随机值被并入分布式加密计算中使用的部分结果的计算中。 共享随机性的并入提供了硬件令牌之间的握手。 当操作成功时，计算结果是确保正确的方参与形成结果。 握手确保了操作方的约束和增加的系统安全性。