公开(公告)号：US08738910B2

公开(公告)日：2014-05-27

申请号：US13514100

申请日：2009-12-07

申请人： Göran Selander ,  Yi Cheng ,  Mattias Eld ,  Frank Hartung ,  Michael Liljenstam ,  Mats Näslund

发明人： Göran Selander ,  Yi Cheng ,  Mattias Eld ,  Frank Hartung ,  Michael Liljenstam ,  Mats Näslund

IPC分类号： H04L9/32

CPC分类号： H04N7/17318 ,  H04L9/0844 ,  H04L12/282 ,  H04L63/18 ,  H04L65/4076 ,  H04L65/4084 ,  H04L67/10 ,  H04L2012/2849 ,  H04L2209/60 ,  H04N7/162 ,  H04N21/25816 ,  H04N21/42204 ,  H04N21/4227 ,  H04N21/43637 ,  H04N21/4405 ,  H04N21/63345

摘要： Methods and arrangements for enabling the use of a first device (300) for controlling transfer of media content from a content provider (306) to a second device (302). The first device has a pre-established security association with the communications network. When the network detects a request made by the first device for delivery of media content to the second device, key information is established which enables determination of one or more media keys for encryption of the media content. The network sends key information to the content provider and to the first device. The content provider then delivers media content encrypted by the media key(s) to the second device. Further, the first device forward the media key(s) over a local communication link to the second device for decryption of media content encrypted by the media key(s) when delivered by the content provider.

摘要翻译： 允许使用第一设备（300）来控制媒体内容从内容提供商（306）传送到第二设备（302）的方法和装置。 第一个设备与通信网络有预先建立的安全关联。 当网络检测到由第一设备发送用于向第二设备传送媒体内容的请求时，建立了能够确定用于加密媒体内容的一个或多个媒体密钥的密钥信息。 网络向内容提供商和第一个设备发送密钥信息。 然后，内容提供商将由媒体密钥加密的媒体内容传送到第二设备。 此外，当由内容提供商递送时，第一设备通过本地通信链路将媒体密钥转发到第二设备以解密由媒体密钥加密的媒体内容。

公开(公告)号：US20130268681A1

公开(公告)日：2013-10-10

申请号：US13800129

申请日：2013-03-13

申请人： Luis Barriga ,  Rolf Blom ,  Yi Cheng ,  Fredrik Lindholm ,  Mats Naslund ,  Karl Norrman

发明人： Luis Barriga ,  Rolf Blom ,  Yi Cheng ,  Fredrik Lindholm ,  Mats Naslund ,  Karl Norrman

IPC分类号： H04W76/02

CPC分类号： H04W76/02 ,  H04L63/0428 ,  H04L65/1016 ,  H04L65/1069 ,  H04W12/02 ,  H04W12/04 ,  H04W76/10

摘要： An IMS system includes an IMS initiator user entity. The system includes an IMS responder user entity that is called by the initiator user entity. The system includes a calling side S-CSCF in communication with the caller entity which receives an INVITE having a first protection offer and parameters for key establishment from the caller entity, removes the first protection offer from the INVITE and forwards the INVITE without the first protection offer. The system includes a receiving end S-CSCF in communication with the responder user entity and the calling side S-CSCF which receives the INVITE without the first protection offer and checks that the responder user entity supports the protection, inserts a second protection offer into the INVITE and forwards the INVITE to the responder user entity, wherein the responder user entity accepts the INVITE including the second protection offer and answers with an acknowledgment having a first protection accept. A method for supporting a call by a telecommunications node.

摘要翻译： IMS系统包括IMS发起者用户实体。 该系统包括由发起者用户实体调用的IMS应答器用户实体。 该系统包括与主叫实体进行通信的主叫侧S-CSCF，其从呼叫方实体接收具有第一保护报价的INVITE和用于密钥建立的参数，从INVITE中移除第一保护报价并转发INVITE而没有第一保护 提供。 该系统包括与响应者用户实体通信的接收端S-CSCF，以及在没有第一保护提供的情况下接收INVITE的主叫侧S-CSCF，并检查响应者用户实体是否支持保护，将第二保护请求插入到 INVITE并将INVITE转发到响应者用户实体，其中响应者用户实体接受包括第二保护请求的INVITE和具有第一保护接受的确认的应答。 一种用于支持电信节点的呼叫的方法。

公开(公告)号：US08429737B2

公开(公告)日：2013-04-23

申请号：US12744720

申请日：2008-12-01

申请人： Luis Barriga ,  Rolf Blom ,  Yi Cheng ,  Fredrik Lindholm ,  Mats Naslund ,  Karl Norrman

发明人： Luis Barriga ,  Rolf Blom ,  Yi Cheng ,  Fredrik Lindholm ,  Mats Naslund ,  Karl Norrman

IPC分类号： H04L29/06 ,  G06F15/16

摘要： An IMS system includes an IMS initiator user entity. The system includes an IMS responder user entity that is called by the initiator user entity. The system includes a calling side S-CSCF in communication with the caller entity which receives an INVITE having a first protection offer and parameters for key establishment from the caller entity, removes the first protection offer from the INVITE and forwards the INVITE without the first protection offer. The system includes a receiving end S-CSCF in communication with the responder user entity and the calling side S-CSCF which receives the INVITE without the first protection offer and checks that the responder user entity supports the protection, inserts a second protection offer into the INVITE and forwards the INVITE to the responder user entity, wherein the responder user entity accepts the INVITE including the second protection offer and answers with an acknowledgment having a first protection accept. A method for supporting a call by a telecommunications node.

公开(公告)号：US20120246480A1

公开(公告)日：2012-09-27

申请号：US13514100

申请日：2009-12-07

申请人： Göran Selander ,  Yi Cheng ,  Mattias Eld ,  Frank Hartung ,  Michael Liljenstam ,  Mats Näslund

发明人： Göran Selander ,  Yi Cheng ,  Mattias Eld ,  Frank Hartung ,  Michael Liljenstam ,  Mats Näslund

IPC分类号： H04L9/32

CPC分类号： H04N7/17318 ,  H04L9/0844 ,  H04L12/282 ,  H04L63/18 ,  H04L65/4076 ,  H04L65/4084 ,  H04L67/10 ,  H04L2012/2849 ,  H04L2209/60 ,  H04N7/162 ,  H04N21/25816 ,  H04N21/42204 ,  H04N21/4227 ,  H04N21/43637 ,  H04N21/4405 ,  H04N21/63345

摘要： Methods and arrangements for enabling the use of a first device (300) for controlling transfer of media content from a content provider (306) to a second device (302). The first device has a pre-established security association with the communications network. When the network detects a request made by the first device for delivery of media content to the second device, key information is established which enables determination of one or more media keys for encryption of the media content. The network sends key information to the content provider and to the first device. The content provider then delivers media content encrypted by the media key(s) to the second device. Further, the first device forward the media key(s) over a local communication link to the second device for decryption of media content encrypted by the media key(s) when delivered by the content provider.

摘要翻译： 允许使用第一设备（300）来控制媒体内容从内容提供商（306）传送到第二设备（302）的方法和装置。 第一个设备与通信网络有预先建立的安全关联。 当网络检测到由第一设备发送用于向第二设备传送媒体内容的请求时，建立了能够确定用于加密媒体内容的一个或多个媒体密钥的密钥信息。 网络向内容提供商和第一个设备发送密钥信息。 然后，内容提供商将由媒体密钥加密的媒体内容传送到第二设备。 此外，当由内容提供商递送时，第一设备通过本地通信链路将媒体密钥转发到第二设备以解密由媒体密钥加密的媒体内容。

公开(公告)号：US20120198527A1

公开(公告)日：2012-08-02

申请号：US13254013

申请日：2009-03-04

申请人： Mats Näslund ,  Rolf Blom ,  Yi Cheng ,  Fredrik Lindholm ,  Karl Norrman

发明人： Mats Näslund ,  Rolf Blom ,  Yi Cheng ,  Fredrik Lindholm ,  Karl Norrman

IPC分类号： G06F21/20

CPC分类号： H04L63/06 ,  H04L9/0844 ,  H04L2209/80 ,  H04W12/04

摘要： A method of establishing keys for at least partially securing media plane data exchanged between first and second end users via respective first and second media plane network nodes. The method comprises sending session set-up signalling from said first end point towards said second end point, said session set-up signalling including a session key generated by said first end point. The set-up signalling is intercepted at a first signalling plane network node and a determination made as to whether or not a signalling plane key has already been established for securing the signalling plane between said first end point and said first signalling plane network node. If a signalling plane key has already been established, then a media plane key is derived from that signalling plane key, and the media plane key sent to said first media plane network node for securing the media plane between said first end user and said first media plane network node. If a signalling plane key has not already been established, then an alternative media plane key is derived from said session key and sent to said first media plane network node for securing the media plane between said first end user and said first media plane network node.

摘要翻译： 一种建立用于经由相应的第一和第二媒体平面网络节点至少部分地保护在第一和第二终端用户之间交换的媒体平面数据的密钥的方法。 该方法包括从所述第一端点向所述第二端点发送会话建立信令，所述会话建立信令包括由所述第一端点产生的会话密钥。 建立信令在第一信令平面网络节点被拦截，并且确定信令平面密钥是否已被建立用于在所述第一终端和所述第一信令平面网络节点之间保护信令平面。 如果已经建立了信令平面密钥，则从该信令平面密钥导出媒体平面密钥，并且将媒体平面密钥发送到所述第一媒体平面网络节点，以将介质平面固定在所述第一终端用户和所述第一媒体之间 平面网络节点。 如果还没有建立信令平面密钥，则从所述会话密钥导出替代媒体平面密钥，并将其发送到所述第一媒体平面网络节点，以便在所述第一终端用户和所述第一媒体平面网络节点之间保护媒体平面。

公开(公告)号：US08234497B2

公开(公告)日：2012-07-31

申请号：US12738390

申请日：2008-10-22

申请人： Yi Cheng ,  Frank Hartung ,  Nilo Mitra ,  Ignacio Mas Ivars

发明人： Yi Cheng ,  Frank Hartung ,  Nilo Mitra ,  Ignacio Mas Ivars

IPC分类号： H04L29/06

CPC分类号： H04L63/0853 ,  H04L63/0823 ,  H04L63/30 ,  H04L2463/101 ,  H04L2463/103 ,  H04W12/04

摘要： Disclosed is a DRM device and method for providing secure linking to a user identity. A first request is sent to a subscriber identity module. A message is received from the subscriber identity module via a secure authenticated channel. The message comprises at least a master key identifier, a random number, and a derived key. In response to the message, a second request is sent to a DRM server. The second request comprises at least a master key identifier, the device identifier, and a random number. Also disclosed is a DRM server and method for providing secure linking to a user identity. A first request is received from a DRM device. The first request comprises at least master key identifier, a device identifier, and a random number. The DRM device is authenticated. A second request for an application specific key is sent to a trusted key management server. The second request comprises at least a master key identifier. At least a key is received from the trusted key management server. A derived key is determined from the key received from the trusted key management server based at least on the device identifier and the random number. A challenge/response scheme is used to determine whether the derived key of the DRM server matches a derived key of the DRM device.

摘要翻译： 公开了一种用于提供对用户身份的安全链接的DRM设备和方法。 第一个请求被发送到订户身份模块。 通过安全认证的信道从订户身份模块接收到消息。 消息至少包括主密钥标识符，随机数和导出密钥。 响应该消息，向DRM服务器发送第二个请求。 第二请求至少包括主密钥标识符，设备标识符和随机数。 还公开了一种用于提供对用户身份的安全链接的DRM服务器和方法。 从DRM设备接收到第一请求。 第一请求至少包括主密钥标识符，设备标识符和随机数。 DRM设备被认证。 对应用程序特定密钥的第二个请求被发送到可信密钥管理服务器。 第二请求至少包括主密钥标识符。 至少从可信密钥管理服务器接收到密钥。 从至少基于设备标识符和随机数的从可信密钥管理服务器接收到的密钥来确定派生密钥。 挑战/响应方案用于确定DRM服务器的导出密钥是否与DRM设备的派生密钥相匹配。

公开(公告)号：US20120088243A1

公开(公告)日：2012-04-12

申请号：US12673322

申请日：2009-04-17

申请人： Qingkuo Lan ,  Yong Wang ,  Yi Cheng ,  Xin Zhao ,  Zhu Zhu

发明人： Qingkuo Lan ,  Yong Wang ,  Yi Cheng ,  Xin Zhao ,  Zhu Zhu

IPC分类号： C12Q1/68 ,  G01N33/559

CPC分类号： C12N15/8286 ,  A01H1/04 ,  C12Q1/6895 ,  C12Q2600/156 ,  Y02A40/162

摘要： The invention discloses a method for detection of genetically modified maize BT11. The principle of the method is that the DNA template of the sample is amplified at a temperature of 63° C.˜65° C. for 45˜60 min by using 4 specific primers and a DNA polymerase with strand displacement activity. The identification thereof is to make a judgment on whether BT11 component is contained in the sample by directly observing the turbidity in the reaction tube or the color change after the addition of SYBR Green with naked eyes or by agarose gel electrophoresis. The detection method of the invention has the advantages of high specificity, quickness, simplicity and convenience and the like, which provides a convenient method for detection of genetically modified maize BT11 with an extensive application prospect.

摘要翻译： 本发明公开了一种检测转基因玉米BT11的方法。 该方法的原理是通过使用4种特异性引物和具有链置换活性的DNA聚合酶，在63℃〜65℃的温度下扩增样品的DNA模板45〜60分钟。 其鉴别是通过直接观察反应管中的浊度或用肉眼添加SYBR Green后的颜色变化或通过琼脂糖凝胶电泳来判断样品中BT11成分是否包含在样品中。 本发明的检测方法具有特异性高，快速，简便，方便等优点，为广泛应用前景的转基因玉米BT11检测提供了便捷的方法。

公开(公告)号：US20100268937A1

公开(公告)日：2010-10-21

申请号：US12744986

申请日：2007-11-30

申请人： Rolf Blom ,  Yi Cheng ,  Fredrik Lindholm ,  John Mattsson ,  Mats Naslund ,  Karl Norrman

发明人： Rolf Blom ,  Yi Cheng ,  Fredrik Lindholm ,  John Mattsson ,  Mats Naslund ,  Karl Norrman

IPC分类号： H04L9/32 ,  H04L29/06 ,  H04L9/08

CPC分类号： H04L9/0838 ,  H04L9/083 ,  H04L9/0861 ,  H04L63/061 ,  H04L63/062 ,  H04L63/0884 ,  H04L65/1016

摘要： A method and arrangement is disclosed for managing session keys for secure communication between a first and at least a second user device in a communications network. The method is characterized being independent of what type of credential each user device implements for security operations. A first user receives from a first key management server keying information and a voucher and generates a first session key. The voucher is forwarded to at least a responding user device that, with support from a second key management server communicating with the first key management server, resolves the voucher and determines a second session keys. First and second session keys are, thereafter, used for secure communication. In one embodiment the communication traverses an intermediary whereby first and second session keys protect communication with respective leg to intermediary.

摘要翻译： 公开了一种用于管理用于通信网络中的第一和第二用户设备之间的安全通信的会话密钥的方法和装置。 该方法的特征在于独立于每个用户设备为安全操作实现什么类型的凭证。 第一用户从第一密钥管理服务器接收密钥信息和凭证并生成第一会话密钥。 该凭证被转发到至少一个响应用户设备，在来自与第一密钥管理服务器通信的第二密钥管理服务器的支持下，解决凭证并确定第二会话密钥。 此后，第一和第二会话密钥用于安全通信。 在一个实施例中，通信遍及中间体，由此第一和第二会话密钥保护与相应的腿到中间的通信。

公开(公告)号：US06705285B2

公开(公告)日：2004-03-16

申请号：US10003779

申请日：2001-10-31

申请人： James W Yip ,  Michael J Prucka ,  Yi Cheng ,  Paul R Arlauskas ,  Daniel B Diebel ,  Kerry D Franks ,  Gregory L Ohl

发明人： James W Yip ,  Michael J Prucka ,  Yi Cheng ,  Paul R Arlauskas ,  Daniel B Diebel ,  Kerry D Franks ,  Gregory L Ohl

IPC分类号： F02D4100

CPC分类号： F02D35/027 ,  F02D31/005 ,  F02D41/1446 ,  F02D41/18 ,  F02D2200/0802 ,  F02D2200/1004

摘要： A method for characterizing an air flow target within an internal combustion engine. The method includes determining an air mass flow rate target, determining an engine speed term, and processing these terms to obtain an air flow target. The air flow target can be used as an input for vehicle controllers including those for controlling pressurized induction systems.

摘要翻译： 一种用于表征内燃机内的空气流量目标的方法。 该方法包括确定空气质量流量目标，确定发动机速度项，以及处理这些项以获得空气流量目标。 空气流动目标可以用作车辆控制器的输入，包括用于控制加压感应系统的控制器。

公开(公告)号：US06357431B1

公开(公告)日：2002-03-19

申请号：US09574537

申请日：2000-05-18

申请人： Kenneth P DeGroot ,  Yi Cheng ,  Edward M Vuylsteke ,  Timothy A Coatesworth ,  Jonathan F Rose ,  Bruce H Teague ,  Michael J Reale

发明人： Kenneth P DeGroot ,  Yi Cheng ,  Edward M Vuylsteke ,  Timothy A Coatesworth ,  Jonathan F Rose ,  Bruce H Teague ,  Michael J Reale

IPC分类号： F02D4100

CPC分类号： F02D41/1408 ,  F02D41/0235 ,  F02D41/1441 ,  F02D41/1454 ,  F02D41/1456

摘要： A method of determining a goal voltage for a fuel/air sensor of an engine electronic fuel injection system includes the steps of determining a goal fuel/air sensor voltage, superimposing a wave form forcing function to the fuel/air sensor voltage for providing a goal fuel/air sensor voltage having a wave form pattern and controlling the engine to operate according to the goal fuel/air sensor voltage. The wave form forcing function provides the required fuel/air perturbations that are required to retain proper oxygen storage of the catalyst to maintain high three-way conversion efficiency.

摘要翻译： 确定发动机电子燃料喷射系统的燃料/空气传感器的目标电压的方法包括以下步骤：确定目标燃料/空气传感器电压，将波形强制功能叠加到燃料/空气传感器电压以提供目标 燃料/空气传感器电压具有波形图案，并且控制发动机根据目标燃料/空气传感器电压进行操作。 波形强制功能提供所需的燃料/空气扰动，以保持催化剂的适当的氧气储存以保持高的三向转换效率。