公开(公告)号：US20050154879A1

公开(公告)日：2005-07-14

申请号：US11036221

申请日：2005-01-10

Applicant: David Engberg ,  Phil Libin ,  Silvio Micali

Inventor： David Engberg ,  Phil Libin ,  Silvio Micali

IPC: H04L9/00

CPC classification number: H04L9/3268 ,  H04L9/3247 ,  H04L2209/56 ,  H04L2209/80

Abstract: Providing information about digital certificate validity includes obtaining a plurality of signing key/verification key pairs, where each signing key provides a digital signature and a corresponding one of the verification keys verifies the digital signature and where digitally signing together a plurality of data elements using the signing keys is computationally more efficient than digitally signing each of the data elements individually, ascertaining digital certificate validity status for each certificate in a set of digital certificates, generating a plurality of artificially pre-computed messages about the validity status of at least a subset of the set of digital certificates, and digitally signing together the artificially pre-computed messages using signing keys from the pairs. Ascertaining digital certificate validity status may include obtaining authenticated information about digital certificates. The authenticated information about digital certificates may be generated by an entity that also revokes certificates. The authenticated information about digital certificates may be a CRL. The artificially pre-computed responses may be OCSP format responses.

Abstract translation: 提供关于数字证书有效性的信息包括获得多个签名密钥/验证密钥对，其中每个签名密钥提供数字签名，并且对应的一个验证密钥验证数字签名，并且使用该签名密钥/验证密钥对将多个数据元素数字签名在一起 签名密钥在计算上比单独地数字签名每个数据元素更有效，确定一组数字证书中的每个证书的数字证书有效性状态，生成关于至少一个子集的有效性状态的多个人为预计算的消息 数字证书集合，并使用签名密钥从人员预先计算的消息数字签名。 确定数字证书的有效性状态可能包括获取关于数字证书的认证信息。 关于数字证书的认证信息可以由也撤销证书的实体生成。 关于数字证书的认证信息可能是CRL。 人为预先计算的响应可以是OCSP格式响应。

公开(公告)号：US09519725B2

公开(公告)日：2016-12-13

申请号：US13227798

申请日：2011-09-08

Applicant: Phil Libin ,  Phil Constantinou ,  Dmitry Stavisky ,  Alex Pachikov ,  Pavel Skaldin ,  Andrew Sinkov

Inventor： Phil Libin ,  Phil Constantinou ,  Dmitry Stavisky ,  Alex Pachikov ,  Pavel Skaldin ,  Andrew Sinkov

IPC: G06F3/048 ,  G06F17/30

CPC classification number: G06F17/30884

Abstract: A system is provided for presenting users with relevant personalized and/or customized information whenever a visitor visits a website or performs an internet search. The described system described herein advantageously provides for the saving (clipping) of website information as an integrated part of a visitor's browsing experience. The content of the website information that is clipped may be advantageously controlled by a website owner/publisher. Using website clips, identified as “notes,” previously stored by a visitor, currently displayed website content may be accordingly modified in connection with identified relevant notes and/or a notification may be displayed on the current website for a particular visitor identifying stored relevant notes of the visitor.

Abstract translation: 提供一种系统，用于每当访问者访问网站或执行因特网搜索时向用户呈现相关的个性化和/或定制信息。 本文描述的系统有利地提供了将网站信息作为访问者的浏览体验的集成部分的保存（剪辑）。 可以由网站所有者/出版商有利地控制被剪辑的网站信息的内容。 使用由访问者先前存储的网站剪辑，当前显示的网站内容可以相应地被修改以与已识别的相关注释相关联，和/或可以在当前网站上显示用于识别存储的相关笔记的特定访问者的通知 的访客。

公开(公告)号：US08171524B2

公开(公告)日：2012-05-01

申请号：US12069227

申请日：2008-02-08

Applicant: Silvio Micali ,  David Engberg ,  Phil Libin ,  Leo Reyzin ,  Alex Sinelnikov

Inventor： Silvio Micali ,  David Engberg ,  Phil Libin ,  Leo Reyzin ,  Alex Sinelnikov

IPC: G06F7/04

CPC classification number: H04L9/3236 ,  H04L9/007 ,  H04L9/3247 ,  H04L9/3263 ,  H04L2209/56 ,  H04L2209/805

Abstract: A system and method are disclosed for controlling physical access through a digital certificate validation process that works with standard certificate formats and that enables a certifying authority (CA) to prove the validity status of each certificate C at any time interval (e.g., every day, hour, or minute) starting with C's issue date, D1. C's time granularity may be specified within the certificate itself, unless it is the same for all certificates. For example, all certificates may have a one-day granularity with each certificate expires 365 days after issuance. Given certain initial inputs provided by the CA, a one-way hash function is utilized to compute values of a specified byte size that are included on the digital certificate and to compute other values that are kept secret and used in the validation process.

Abstract translation: 公开了一种用于通过数字证书验证过程来控制物理访问的系统和方法，所述数字证书验证过程使用标准证书格式，并且使得认证机构（CA）可以在任何时间间隔（例如，每天， 小时或分钟），从C的发行日期开始，D1。 C的时间粒度可以在证书本身内指定，除非对所有证书是相同的。 例如，所有证书可能具有一天的粒度，每个证书在发布后365天到期。 给定由CA提供的某些初始输入，单向散列函数用于计算数字证书中包含的指定字节大小的值，并计算保密并在验证过程中使用的其他值。

公开(公告)号：US20120059811A1

公开(公告)日：2012-03-08

申请号：US13227787

申请日：2011-09-08

Applicant: Phil Libin ,  Phil Constantinou ,  Dmitry Stavisky ,  Alex Pachikov ,  Pavel Skaldin ,  Andrew Sinkov

Inventor： Phil Libin ,  Phil Constantinou ,  Dmitry Stavisky ,  Alex Pachikov ,  Pavel Skaldin ,  Andrew Sinkov

IPC: G06F17/30

CPC classification number: G06F16/9562

Abstract: A system is provided for presenting users with relevant personalized and/or customized information whenever a visitor visits a website or performs an internet search. The described system described herein advantageously provides for the saving (clipping) of website information as an integrated part of a visitor's browsing experience. The content of the website information that is clipped may be advantageously controlled by a website owner/publisher. Using website clips, identified as “notes,” previously stored by a visitor, currently displayed website content may be accordingly modified in connection with identified relevant notes and/or a notification may be displayed on the current website for a particular visitor identifying stored relevant notes of the visitor.

Abstract translation: 提供一种系统，用于每当访问者访问网站或执行因特网搜索时向用户呈现相关的个性化和/或定制信息。 本文描述的系统有利地提供了将网站信息作为访问者的浏览体验的集成部分的保存（剪切）。 可以由网站所有者/出版商有利地控制被剪辑的网站信息的内容。 使用由访问者先前存储的网站剪辑，当前显示的网站内容可以相应地被修改以与已识别的相关注释相关联，和/或可以在当前网站上显示用于识别存储的相关笔记的特定访问者的通知 的访客。

公开(公告)号：US08015597B2

公开(公告)日：2011-09-06

申请号：US10893165

申请日：2004-07-16

Applicant: Phil Libin ,  Silvio Micali ,  David Engberg ,  Alex Sinelnikov

Inventor： Phil Libin ,  Silvio Micali ,  David Engberg ,  Alex Sinelnikov

IPC: G06F7/04 ,  H04L29/06 ,  H04L9/32 ,  G06F21/00

CPC classification number: H04L9/3247 ,  H04L9/3268 ,  H04L2209/80

Abstract: Issuing and disseminating a data about a credential includes having an entity issue authenticated data indicating that the credential has been revoked, causing the authenticated data to be stored in a first card of a first user, utilizing the first card for transferring the authenticated data to a first door, having the first door store information about the authenticated data, and having the first door rely on information about the authenticated data to deny access to the credential. The authenticated data may be authenticated by a digital signature and the first door may verify the digital signature. The digital signature may be a public-key digital signature. The public key for the digital signature may be associated with the credential. The digital signature may be a private-key digital signature. The credential and the first card may both belong to the first user. The credential may be stored in a second card different from the first card, and the first door may rely on information about the authenticated data by retrieving such information from storage. The authenticated data may be first stored in at least one other card different from the first card and the authenticated data may be transferred from the at least one other card to the first card. The authenticated data may be transferred from the at least one other card to the first card by first being transferred to at least one other door different from the first door.

Abstract translation: 发布和传播关于凭证的数据包括：使实体发出指示证书已被撤销的认证数据，使认证数据存储在第一用户的第一卡中，利用第一卡将认证数据传送到 第一门，具有关于认证数据的第一门店信息，并且使第一门依靠关于认证数据的信息来拒绝对证书的访问。 认证数据可以通过数字签名认证，并且第一门可以验证数字签名。 数字签名可以是公钥数字签名。 数字签名的公钥可能与凭证相关联。 数字签名可以是私钥数字签名。 证书和第一张卡可能都属于第一个用户。 证书可以存储在与第一卡不同的第二卡中，并且第一门可以通过从存储检索这些信息来依赖关于认证数据的信息。 认证数据可以首先存储在与第一卡不同的至少一个其他卡中，并且认证数据可以从至少一个其他卡传送到第一卡。 经认证的数据可以通过首先被传送到与第一门不同的至少一个其他门，从至少一个其他卡传送到第一卡。

公开(公告)号：US07616091B2

公开(公告)日：2009-11-10

申请号：US11639387

申请日：2006-12-14

Applicant: Phil Libin

Inventor： Phil Libin

IPC: G05B19/00 ,  G06F7/00 ,  G06K19/00 ,  H04B1/00

CPC classification number: H04W12/08 ,  G07C9/00103 ,  G07C9/00309 ,  G07C9/00817 ,  G07C2009/00825 ,  G07C2209/08 ,  G08C17/02 ,  G08C2201/21 ,  G08C2201/93 ,  G08C2201/94 ,  H04L63/0846

Abstract: Actuating a security system includes providing a first set of access codes to a wireless device and causing the wireless device to transmit the first set of access codes to a first controller that actuates the security system. The first set of access codes provided to the wireless device may expire. Actuating a security system may also include providing expiration dates for each of the first set of access codes provided to the wireless device. Actuating a security system may also include examining each of the expiration dates and, in response to a particular expiration date being prior to a current date, erasing from the wireless device a particular one of the first set of access codes that corresponds to the particular expiration date.

Abstract translation: 启动安全系统包括向无线设备提供第一组访问代码，并且使无线设备将第一组访问代码发送到致动安全系统的第一控制器。 提供给无线设备的第一组接入码可能会过期。 启动安全系统还可以包括为提供给无线设备的第一组访问代码中的每一个提供到期日期。 启动安全系统还可以包括检查每个到期日期，并且响应于在当前日期之前的特定有效期，从无线设备擦除与特定到期日期对应的第一组访问代码中的特定一个 日期。

公开(公告)号：US20070011100A1

公开(公告)日：2007-01-11

申请号：US11471273

申请日：2006-06-20

Applicant: Phil Libin ,  David Engberg

Inventor： Phil Libin ,  David Engberg

IPC: G06Q99/00

CPC classification number: G06Q20/40 ,  G06F21/34 ,  G06F21/35 ,  G06Q20/24 ,  G06Q20/341 ,  G06Q20/346 ,  G06Q20/367 ,  G06Q20/4014 ,  G07C9/00126 ,  G07F7/1008 ,  G07F7/122

Abstract: Determining whether to remotely authorize an action on behalf of a requester includes having the requester provide a privacy token, remotely obtaining data from the privacy token, and authorizing the action if the data from the privacy token verifies that the requester is authorized to take the action. The action may include issuing a credit card for the requester. The privacy token may be a smart card. The data may be digitally signed. Determining whether to remotely authorize an action on behalf of a requester may also include authorizing the action if the requester had previously indicated a desire not to require presentation of the privacy token. The action may be authorized only if the data from the privacy token verifies the identity of the requester.

Abstract translation: 确定是否代表请求者远程授权操作包括让请求者提供隐私令牌，从隐私令牌远程获得数据，以及如果来自隐私令牌的数据验证请求者被授权采取行动，则授权该动作 。 该举措可能包括为请求者发放信用卡。 隐私令牌可以是智能卡。 数据可能是数字签名的。 确定是否代表请求者远程授权操作还可以包括如果请求者先前已经指示了不要求呈现隐私令牌的愿望，则授权该动作。 仅当来自隐私令牌的数据验证请求者的身份时，该操作才可以被授权。