公开(公告)号：US20120102313A1

公开(公告)日：2012-04-26

申请号：US13375047

申请日：2010-07-01

申请人： Kenneth Alexander Nicolson ,  Hideki Matsushima ,  Hisashi Takayama ,  Takayuki Ito ,  Tomoyuki Haga ,  Manabu Maeda

发明人： Kenneth Alexander Nicolson ,  Hideki Matsushima ,  Hisashi Takayama ,  Takayuki Ito ,  Tomoyuki Haga ,  Manabu Maeda

IPC分类号： G06F21/00

CPC分类号： G06F21/575 ,  H04L9/3236 ,  H04L63/123 ,  H04W12/10

摘要： A method to allow a device to boot in a secure fashion, even though some of the components within the secure device's firmware may be not present, not authorised, or not correctly operating.

摘要翻译： 即使安全设备的固件中的某些组件可能不存在，未被授权或不正确地操作，允许设备以安全方式引导的方法。

公开(公告)号：US07991694B2

公开(公告)日：2011-08-02

申请号：US12318419

申请日：2008-12-29

申请人： Hisashi Takayama

发明人： Hisashi Takayama

IPC分类号： G06Q40/00

CPC分类号： G06Q40/00 ,  G06Q20/04 ,  G06Q20/045 ,  G06Q20/10 ,  G06Q20/105 ,  G06Q20/20 ,  G06Q20/32 ,  G06Q20/322 ,  G06Q20/327 ,  G06Q20/363 ,  G06Q30/06 ,  G07F7/0866 ,  G07F11/002

摘要： The objective of the present invention is to provide a mobile electronic commerce system that is superior in safety and usability. The mobile electronic commerce system comprises an electronic wallet 100, supply sides 101, 102, 103, 104 and 105, and a service providing means 110 that is connected by communication means. The service providing means installs a program for an electronic ticket, an electronic payment card, or an electronic telephone card. The electronic wallet employs the installed card to obtain a product or a service or entrance permission. The settlement process is performed by the electronic wallet and the supply side via the communication means, and data obtained during the settlement process are managed by being transmitted to the service providing means at a specific time. A negotiable card can be easily obtained, and when the negotiable card is used the settlement process can be quickly and precisely performed.

摘要翻译： 本发明的目的是提供一种安全性和可用性优异的移动电子商务系统。 移动电子商务系统包括电子钱包100，供应侧101,102,103,104和105以及通过通信装置连接的服务提供装置110。 服务提供装置安装电子票，电子支付卡或电子电话卡的程序。 电子钱包使用已安装的卡获取产品或服务或入场许可。 通过通信装置由电子钱包和供应方执行结算处理，并且在结算处理期间获得的数据通过在特定时间被发送到服务提供装置来管理。 可以容易地获得可转让卡，当使用可转让卡时，可以快速，精确地执行结算处理。

公开(公告)号：US20110081017A1

公开(公告)日：2011-04-07

申请号：US12993931

申请日：2009-05-25

申请人： Hideki Matsushima ,  Hisashi Takayama ,  Yuichi Futa ,  Takayuki Ito ,  Tomoyuki Haga

发明人： Hideki Matsushima ,  Hisashi Takayama ,  Yuichi Futa ,  Takayuki Ito ,  Tomoyuki Haga

IPC分类号： H04L9/00

CPC分类号： H04L9/0836 ,  H04L9/088

摘要： Provided is a key migration device which can securely and reliably control the migration of keys. A migration authority (101) fetches a generation level which is the security level of a first electronic terminal (3011) and an output destination level which is the security level of a third electronic terminal (3013), decides whether the relationship between the generation level and the output destination level satisfies a predetermined condition when a request for fetching a collection of keys is received from the third electronic terminal (3013), outputs the key generated by the first electronic terminal (3011) among the collection of keys to the third electronic terminal (3013) if the predetermined condition is fulfilled, and restricts output to the third electronic terminal (3013) of the key generated by the first electronic terminal (3011) among the collection of keys if the predetermined condition is not fulfilled.

摘要翻译： 提供了一种可以安全可靠地控制密钥迁移的密钥迁移设备。 移动机构（101）取出作为第一电子终端（3011）的安全级别的生成级别和作为第三电子终端（3013）的安全级别的输出目的地级别，决定生成级别 并且当从第三电子终端（3013）接收到提取密钥集合的请求时，输出目的地级别满足预定条件，将由第一电子终端（3011）生成的密钥输出到第三电子邮件集合 如果满足预定条件，并且如果不满足预定条件，则在密钥集合中限制由第一电子终端（3011）生成的密钥的输出到第三电子终端（3013）的终端（3013）。

公开(公告)号：US20110072266A1

公开(公告)日：2011-03-24

申请号：US12992699

申请日：2009-10-09

申请人： Hisashi Takayama ,  Hideki Matsushima ,  Takayuki Ito ,  Tomoyuki Haga ,  Kenneth Alexander Nicolson

发明人： Hisashi Takayama ,  Hideki Matsushima ,  Takayuki Ito ,  Tomoyuki Haga ,  Kenneth Alexander Nicolson

IPC分类号： G06F21/22

CPC分类号： H04L9/3247 ,  G06F21/445 ,  G06F2221/2129 ,  H04L9/3263 ,  H04L2209/60 ,  H04L2209/68 ,  H04L2209/80

摘要： The present invention provides an information processing device, an authentication system, etc. that save a server the trouble of updating a database, etc., even when a software module in a client device is updated, and that are capable of verifying whether software modules that have been started in the client device are valid. The terminal device A100 holds private keys 1 and 2, and performs authentication processing with the terminal device B101 using the private key 2. The private key 1 has been encrypted such that the private key 1 is decryptable only when secure boot is completed. The private key 2 has been encrypted such that the private key 2 is decryptable using the private key 1 only when the application module X that has been started is valid. When the authentication processing is successful, the terminal device B101 verifies that the terminal device A100 has completed secure boot and the application module X that has been started in the terminal device A100 is valid. Also, the terminal device B101 performs the authentication processing using the same private key 2, regardless of whether a program pertaining to the secure boot of the terminal device A100 is updated or not.

摘要翻译： 本发明提供一种信息处理装置，认证系统等，其即使在客户端装置中的软件模块被更新时也能够保存服务器更新数据库等的故障，并且能够验证软件模块 已经在客户端设备中启动的是有效的。 终端装置A100保持私有密钥1和2，并使用专用密钥2对终端装置B101进行认证处理。专用密钥1已被加密，使得专用密钥1仅在安全引导完成时被解密。 专用密钥2已经被加密，使得仅当已经启动的应用模块X有效时，私钥2可以使用专用密钥1被解密。 当认证处理成功时，终端装置B101验证终端装置A100是否已经完成安全引导，并且已经在终端装置A100中启动的应用模块X有效。 此外，终端装置B101使用相同的私钥2执行认证处理，而不管终端装置A100的安全引导有关的程序是否被更新。

公开(公告)号：US07664697B2

公开(公告)日：2010-02-16

申请号：US09960923

申请日：2001-09-25

申请人： Hisashi Takayama

发明人： Hisashi Takayama

IPC分类号： G06Q40/00

CPC分类号： G06Q20/327 ,  G06Q20/04 ,  G06Q20/0425 ,  G06Q20/10 ,  G06Q20/102 ,  G06Q20/12 ,  G06Q20/204 ,  G06Q20/32 ,  G06Q20/3227 ,  G06Q20/363 ,  G06Q30/06 ,  G06Q40/02 ,  G07F7/0866

摘要： According to the present invention provided is an accounting means that is superior in safety and usability. The accounting means comprises: payment means including a plurality of systems of communication means; charging means including a plurality of systems of communication means; and settlement means including a plurality of systems of communication means. Since the payment means and the settlement means exchange transaction data by communicating with each other, it is possible to prevent the assessment of an illegal charge by the charging means. In addition, since a signature (a digital signature) and an accounting statement are exchanged by communication between the payment means and the charging means, the efficiency of the sale can be improved.

摘要翻译： 根据本发明，提供了一种安全性和可用性优越的会计手段。 会计手段包括：支付手段，包括多个通信手段系统; 充电装置包括多个通信装置系统; 以及包括多个通信装置系统的结算装置。 由于支付手段和结算手段是通过彼此通信来交换交易数据的，所以可以防止充电手段对非法收费的评估。 另外，由于通过支付单元和收费单元之间的通信来交换签名（数字签名）和会计报表，所以能够提高销售效率。

公开(公告)号：US20090320110A1

公开(公告)日：2009-12-24

申请号：US12484537

申请日：2009-06-15

申请人： Kenneth Alexander Nicolson ,  Hideki Matsushima ,  Hisashi Takayama ,  Takayuki Ito ,  Tomoyuki Haga ,  Manabu Maeda

发明人： Kenneth Alexander Nicolson ,  Hideki Matsushima ,  Hisashi Takayama ,  Takayuki Ito ,  Tomoyuki Haga ,  Manabu Maeda

IPC分类号： G06F21/00 ,  H04L9/32

CPC分类号： G06F21/57 ,  H04L9/3268 ,  H04L2209/80

摘要： A method is executed which is for managing the optional trusted components that are active within a device, such that the device itself controls the availability of trusted components. The device includes: a storing unit which stores a plurality of pieces of software and a plurality of certificates; a receiving unit which receives the certificates; and a selecting unit which selects one of the certificates. The device further includes an executing unit which verifies an enabled one of the plurality of pieces of software using the selected and updated one of the certificates.

摘要翻译： 执行用于管理在设备内活动的可选可信组件的方法，使得设备本身控制可信组件的可用性。 该装置包括：存储单元，存储多个软件和多个证书; 接收证书的接收单元; 以及选择单元，其选择证书之一。 该设备还包括执行单元，其使用所选择和更新的一个证书来验证多个软件中启用的一个软件。

公开(公告)号：US20090271637A1

公开(公告)日：2009-10-29

申请号：US12305126

申请日：2007-06-14

申请人： Hiroshi Takekawa ,  Hisashi Takayama

发明人： Hiroshi Takekawa ,  Hisashi Takayama

IPC分类号： G06F12/14 ,  H04L9/28 ,  H04L9/06

CPC分类号： G06F21/6245 ,  G06F21/552 ,  G06F2221/2151 ,  H04L9/3236 ,  H04L9/3247 ,  H04L2209/127 ,  H04L2209/603

摘要： The present invention aims at providing an information processing terminal, a status notification system, and a status notification method that can protect both privacy and security when a status of the information processing terminal is notified to a server. An information processing terminal 10 has a disclosure/nondisclosure determination section 1001 that determines a notifiable server for each entry; a log concealing section 1002 that conceals an entry; a multi-log measurement section 1003 that commands to update hashes as to a plurality of parties; a log configuration section 1004 that configures a log directed at a notified party and that causes performance of signing action; a verification request section 1005 that requests verification; a policy storage section 1006 that stores a policy used for determining a party that can be notified; and a log storage section 1007 for storing the entry. The information processing terminal 10 commands accumulation, into a hash, of entries subjected to processing suitable for each notified party, such as concealing operation.

摘要翻译： 本发明旨在提供一种信息处理终端，状态通知系统和状态通知方法，当信息处理终端的状态被通知给服务器时，可以保护隐私和安全。 信息处理终端10具有确定每个条目的通知服务器的公开/非公开确定部分1001; 隐藏条目的日志隐藏部分1002; 命令更新关于多个方的散列的多对数测量部分1003; 日志配置部分1004，其配置针对被通知方的日志并导致签名动作的执行; 请求验证的验证请求部分1005; 存储用于确定可以通知的一方的策略的策略存储部分1006; 以及用于存储条目的日志存储部分1007。 信息处理终端10向诸如隐藏操作之类的处理适合于每个被通知方的处理的条目进行散列散列。

公开(公告)号：US20090172419A1

公开(公告)日：2009-07-02

申请号：US12303420

申请日：2007-06-05

申请人： Hisashi Takayama

发明人： Hisashi Takayama

IPC分类号： H04L9/06 ,  G06F17/30 ,  H04L9/28

CPC分类号： H04N21/6112 ,  G06F21/57 ,  H04L9/0891 ,  H04L2209/38 ,  H04N21/26613 ,  H04N21/42684 ,  H04N21/6175 ,  H04N21/818 ,  H04W12/04

摘要： Provided is a data storage device capable of safely and effectively updating software of a home electric apparatus. In the home electric apparatus (100) in which currently used data is to be updated to new data, a reception unit (140) receives encrypted new data and a serial number of data to be updated. A key generation unit (112) generates a key by executing a predetermined irreversible calculation on the unique information correlated to the currently used data by a number of times based on the serial number of the data to be updated. An update unit (113) decrypts the new data by using the key.

摘要翻译： 提供了能够安全且有效地更新家用电器的软件的数据存储装置。 在将当前使用的数据更新为新数据的家用电气设备（100）中，接收单元（140）接收加密的新数据和要更新的数据的序列号。 密钥生成单元（112）通过基于要更新的​​数据的序列号对与当前使用的数据相关的唯一信息多次执行预定的不可逆计算来生成密钥。 更新单元（113）通过使用密钥解密新数据。

公开(公告)号：US20070175979A1

公开(公告)日：2007-08-02

申请号：US10594060

申请日：2005-03-31

申请人： Kaoru Yokota ,  Motoji Ohmori ,  Hisashi Takayama ,  Atsushi Saso

发明人： Kaoru Yokota ,  Motoji Ohmori ,  Hisashi Takayama ,  Atsushi Saso

IPC分类号： G06K5/00 ,  G06K7/01 ,  G07B15/02

CPC分类号： G07B15/00 ,  G06Q20/045 ,  G06Q20/346 ,  G07F7/1008

摘要： A useful ticket management system is provided, which can perform adjustment using a ticket to which non-updatable value information is assigned together with an electronic value, according to a payment form. The ticket management system includes an IC tag attached to a money ticket, a money ticket management server, and a mobile terminal. The IC tag holds a money ticket ID for identifying the money ticket, and reads the money ticket ID. The money ticket management server includes a storage unit, receives the money ticket ID from the mobile terminal, and writes a valid money ticket ID to the storage unit. The mobile terminal includes a storage unit, acquires the money ticket ID held in the IC tag, transmits the acquired money ticket ID to the money ticket management server, and writes amount information of the money ticket identified by the valid money ticket ID to the storage unit.

摘要翻译： 提供了一种有用的票据管理系统，其可以根据支付方式使用不可更新价值信息被分配的票据与电子价值进行调整。 售票管理系统包括附加到货币单的IC标签，货币单管理服务器和移动终端。 IC标签保存用于识别货币单的钱票ID，并读取票单ID。 货币单管理服务器包括存储单元，从移动终端接收到钱票ID，并向存储单元写入有效的票证ID。 移动终端包括存储单元，获取保存在IC标签中的钱票ID，将所获取的钱票ID发送到钱票管理服务器，并将由有效票证ID识别的钱票的金额信息写入到存储器 单元。

公开(公告)号：US20050033983A1

公开(公告)日：2005-02-10

申请号：US10910808

申请日：2004-08-04

申请人： Hiroshi Takekawa ,  Hisashi Takayama ,  Ken Naka

发明人： Hiroshi Takekawa ,  Hisashi Takayama ,  Ken Naka

IPC分类号： G06F21/24 ,  G06F1/00 ,  G06F12/14 ,  G06F13/00 ,  G06F17/00 ,  G06F21/22 ,  G06K17/00 ,  G06K19/10 ,  G09C1/00 ,  H04L9/00 ,  H04L9/08 ,  H04L9/10 ,  H04L9/32

CPC分类号： G06F21/77 ,  G06F21/31 ,  G06F21/445 ,  G06F21/62 ,  G06F21/78 ,  G06F2221/2153

摘要： The present invention is designed to enable a secure device to authenticate a terminal application that operates on an information processing terminal and that accesses the secure device. An application issue request transmitter (301) of the information processing terminal (30) sends a request for issue of a terminal application to an application issuer (101). The application issuer (101) of an secure device (10) reads a terminal application (31) from an application storage (105) and embeds authentication information in the terminal application (31), associates an ID and the authentication information of the terminal application (31) and save them in an issue information storage (106), and sends the terminal application (31) to an application receiver (302) of the information processing terminal through an application transmitter (102). The application receiver (302) starts the terminal application (31). An application authenticator (311) of the terminal application (31) performs an authentication with the secure device (10) by means of the application authentication information.

摘要翻译： 本发明旨在使得安全设备能够对在信息处理终端上操作并且访问安全设备的终端应用进行认证。 信息处理终端（30）的应用程序发出请求发送机（301）将发出终端应用的请求发送到应用发行者（101）。 安全装置（10）的应用发行者（101）从应用存储器（105）读取终端应用程序（31），并在终端应用程序（31）中嵌入认证信息，将ID和终端应用程序的认证信息 （31）并将其保存在发布信息存储（106）中，并通过应用发送器（102）将终端应用程序（31）发送到信息处理终端的应用接收机（302）。 应用接收器（302）启动终端应用（31）。 终端应用程序（31）的应用认证器（311）通过应用认证信息与安全设备（10）进行认证。