-
公开(公告)号:US08589674B2
公开(公告)日:2013-11-19
申请号:US13350072
申请日:2012-01-13
IPC分类号: H04L9/00
CPC分类号: H04L9/0891 , H04L9/12 , H04L9/3268
摘要: In one embodiment, a method includes receiving a revocation request for revoking a model type of a device. A first computing device determines a list of device unit identifiers (UIDs) that are associated with the model type from a database. The device UIDs are for devices of the model type manufactured by a first entity. The method adds the list of device UIDs to a device revocation list and outputs the device revocation list to revoke a validity of secure information associated with devices associated with the list of device UIDs.
摘要翻译: 在一个实施例中,一种方法包括接收用于撤销设备的模型类型的吊销请求。 第一计算设备确定与数据库中的模型类型相关联的设备单元标识符(UID)的列表。 设备UID用于由第一实体制造的型号类型的设备。 该方法将设备UID的列表添加到设备撤销列表,并输出设备撤销列表以撤销与设备UID列表相关联的设备相关联的安全信息的有效性。
-
公开(公告)号:US20110138177A1
公开(公告)日:2011-06-09
申请号:US12961455
申请日:2010-12-06
申请人: Xin Qiu , Alexander Medvinsky , Stuart P. Moskovics , John H. Kim
发明人: Xin Qiu , Alexander Medvinsky , Stuart P. Moskovics , John H. Kim
CPC分类号: H04L9/006 , H04L9/083 , H04L9/3263
摘要: A method is provided for updating network-enabled devices with new identity data. The method includes requesting new identity data for a plurality of network-enabled devices and receiving notification that the new identity data is ready to be delivered to the plurality of network-enabled devices. A software object is delivered to the plurality of network-enabled devices over a first communications network. Each of the software objects is configured to cause the network-enabled devices to download the new identity data to the respective network-enabled device over a second communications network and install the new identity data at a time based at least in part on information included with the software object.
摘要翻译: 提供了一种用于使用新的身份数据更新启用网络的设备的方法。 该方法包括向多个启用网络的设备请求新的身份数据,并接收新的身份数据准备好被传送到多个启用网络的设备的通知。 通过第一通信网络将软件对象传送到多个启用网络的设备。 每个软件对象被配置为使得网络启用的设备通过第二通信网络将新的身份数据下载到相应的启用网络的设备,并且至少部分地基于与 软件对象。
-
公开(公告)号:US20110119739A1
公开(公告)日:2011-05-19
申请号:US12622016
申请日:2009-11-19
IPC分类号: H04L29/06
CPC分类号: H04L63/108 , H04L63/0823 , H04L67/04 , H04W12/04 , H04W12/06
摘要: A method is provided for operating a consumer programming device that provisions consumer electronic devices. The method includes receiving over a communication link a first enable message that authorizes the consumer programming device to make available one or more resources which enable it to provide services to consumer electronic devices. Services are provided to consumer electronic devices up until all the resources have been exhausted. Additional consumer electronic devices are provided with services only if a second enable message is received over the communication link.
摘要翻译: 提供了一种用于操作为消费者电子设备提供消费者编程设备的方法。 该方法包括通过通信链路接收授权消费者编程设备使可用的一个或多个资源使其能够向消费者电子设备提供服务的第一启用消息。 向消费电子设备提供服务,直到所有资源耗尽。 仅当通过通信链路接收到第二启用消息时,附加消费者电子设备才被提供有服务。
-
公开(公告)号:US20100138903A1
公开(公告)日:2010-06-03
申请号:US12327326
申请日:2008-12-03
申请人: Alexander Medvinsky
发明人: Alexander Medvinsky
CPC分类号: H04L9/0822 , G06F21/10 , G06F2221/0753 , H04L9/083 , H04L9/3213 , H04L63/0807 , H04L2209/60 , H04L2463/101
摘要: The present invention is a method and system for accessing digital content stored on a computing device. An agreement between a subscriber and a content provider allows the subscriber to lease the digital content from the content provider, and download the digital content from a content server operated by the content provider. The method retrieves a service ticket for the computing device, and retrieves content rights for the digital content. The service ticket includes authorization data, and a session key, where the authorization data include authorized subscription services for the computing device. The content rights include required subscription services for the digital content and are delivered authenticated with the session key. The method allows access to the digital content when the authorized subscription services included with the authorization data match the required subscription services included with the content rights.
摘要翻译: 本发明是用于访问存储在计算设备上的数字内容的方法和系统。 用户和内容提供商之间的协议允许用户从内容提供商租赁数字内容,并从内容提供商操作的内容服务器下载数字内容。 该方法检索计算设备的服务票证,并检索数字内容的内容权限。 服务票包括授权数据和会话密钥,其中授权数据包括用于计算设备的授权订阅服务。 内容权限包括数字内容所需的订阅服务,并通过会话密钥进行验证。 当授权数据所包含的授权订阅服务与内容权限所包含的所需订阅服务相匹配时,该方法允许访问数字内容。
-
45.发明授权Built-in manufacturer's certificates for a cable telephony adapter to provide device and service certification 有权内置有线电话适配器的制造商证书,以提供设备和服务认证公开(公告)号:US07376837B1
公开(公告)日:2008-05-20
申请号:US10296846
申请日:2000-04-07
申请人: Alexander Medvinsky
发明人: Alexander Medvinsky
IPC分类号: G06F1/24
CPC分类号: H04L63/0823 , H04L63/164
摘要: System for using a manufacturer issued certificate to authenticate a CTA device during registration with an IP telephony network. In response to providing the manufacturer issued certificate, the issuance of another certificate allows the CTA to be provisioned by a specific IP telephony network. The system includes a method of operating a cable telephony adapter in an IP telephony network. The method includes steps of storing a manufacturer issued certificate in the cable telephony adapter, providing the manufacturer issued certificate to the telephony network, receiving a network issued certificate, and registering for telephony services with the telephony network using the network issued certificate.
摘要翻译: 用于在与IP电话网络注册期间使用制造商颁发的证书来认证CTA设备的系统。 响应于提供制造商颁发的证书,另一证书的颁发允许CTA由特定的IP电话网络提供。 该系统包括在IP电话网络中操作有线电话适配器的方法。 该方法包括以下步骤:将制造商颁发的证书存储在有线电话适配器中,向制造商颁发的证书提供给电话网络,接收网络颁发的证书,以及使用网络颁发的证书向电话网络注册电话服务。
-
46.发明申请公开(公告)号:US20080049942A1
公开(公告)日:2008-02-28
申请号:US11846045
申请日:2007-08-28
申请人: Eric Sprunk , Alexander Medvinsky , Xin Qiu , Stuart Moskovics , Liqiang Chen
发明人: Eric Sprunk , Alexander Medvinsky , Xin Qiu , Stuart Moskovics , Liqiang Chen
IPC分类号: H04L9/08
CPC分类号: H04L9/0844 , H04L9/006 , H04L9/0822 , H04L63/0428 , H04L63/062 , H04L63/0823 , H04L63/166
摘要: A system and method for securely distributing PKI data, such as one or more private keys or other confidential digital information, from a PKI data generation facility to a product in a product personalization facility that is not connected to the PKI data generation facility and is assumed to be a non-secure product personalization facility. The system includes a PKI data loader for securely transmitting the encrypted PKI data transferred from the PKI data generator to a PKI server at the product personalization facility. The PKI server then transfers the PKI data to the product of interest, typically via a PKI station acting as a proxy between the PKI server and the product. In each communication step, PKI data being transferred is encrypted multiple times and the system is designed such that if any intermediate node is compromised with all of its keys, the overall system has not yet been compromised.
摘要翻译: 用于将PKI数据(例如一个或多个私钥或其他机密数字信息)的PKI数据安全地分发到不连接到PKI数据生成设备并被假定的产品个性化设施中的产品的系统和方法 成为不安全的产品个性化设施。 该系统包括PKI数据加载器,用于将从PKI数据发生器传送的加密的PKI数据安全地发送到产品个性化设施的PKI服务器。 PKI服务器然后将PKI数据传送到感兴趣的产品,通常通过充当PKI服务器和产品之间代理的PKI站。 在每个通信步骤中,正在传送的PKI数据被加密多次,并且系统被设计成使得如果任何中间节点与其所有密钥相冲突,则整个系统尚未被破坏。
-
47.发明申请Method and apparatus for providing a secure move of a decrpytion content key 审中-公开提供解密内容密钥的安全移动的方法和装置公开(公告)号:US20060149676A1
公开(公告)日:2006-07-06
申请号:US11027830
申请日:2004-12-30
申请人: Eric Sprunk , Alexander Medvinsky
发明人: Eric Sprunk , Alexander Medvinsky
IPC分类号: H04L9/00
CPC分类号: H04L9/0822 , H04L9/0841 , H04L2209/60
摘要: The present invention discloses an apparatus and method for providing a secure move of a content decryption key within or between domains. Namely, the present invention addresses the single copy usage rule by restricting the movement of the decryption key instead of restricting the movement of the encrypted content itself.
摘要翻译: 本发明公开了一种用于提供域内或域之间的内容解密密钥的安全移动的装置和方法。 即,本发明通过限制解密密钥的移动而不是限制加密内容本身的移动来解决单一复制使用规则。
-
48.发明授权公开(公告)号:US06993652B2
公开(公告)日:2006-01-31
申请号:US09972523
申请日:2001-10-05
申请人: Alexander Medvinsky
发明人: Alexander Medvinsky
IPC分类号: H04L9/32
CPC分类号: H04L63/04 , G06Q20/3678 , H04L9/083 , H04L9/3213 , H04L9/3297 , H04L63/08 , H04L2209/60
摘要: Method and system for providing client privacy on the Internet when the client requests content from a public application server. The method is well-suited to key management protocols that utilize the concept of tickets. The client name or identity is encrypted in all key management messages where the client is requesting a ticket for a specific application server. The key management messages are between the client and a key distribution center (KDC) and between the client and the specific application server. The KDC does not provide the client name or identity in the clear in such messages. This prevents the client's identity from being linked with the content provided by the specific application server, which results in improved user privacy.
-
公开(公告)号:US20050027985A1
公开(公告)日:2005-02-03
申请号:US10893047
申请日:2004-07-15
CPC分类号: H04L29/06027 , G06F12/1408 , G06F21/606 , G06F2207/7219 , G06F2211/008 , G06F2221/2129 , H04L9/083 , H04L9/0841 , H04L9/3213 , H04L9/3263 , H04L63/0435 , H04L63/0442 , H04L63/061 , H04L63/062 , H04L63/0807 , H04L63/12 , H04L65/1043
摘要: A secure Internet Protocol (IP) telephony system, apparatus, and methods are disclosed. Communications over an IP telephony system can be secured by securing communications to and from a Cable Telephony Adapter (CTA). The system can include one or more CTAs, network servers, servers configured as signaling controllers, key distribution centers (KDC), and can include gateways that couple the IP telephony system to a Public Switched Telephone Network (PSTN). Each CTA can be configured as secure hardware and can be configured with multiple encryption keys that are used to communicate signaling or bearer channel communications. The KDC can be configured to periodically distribute symmetric encryption keys to secure communications between devices that have been provisioned to operate in the system and signaling controllers. The secure devices, such as the CTA, can communicate with other secure devices by establishing signaling and bearer channels that are encrypted with session specific symmetric keys derived from a symmetric key distributed by a signaling controller.
摘要翻译: 公开了一种安全的因特网协议(IP)电话系统,装置和方法。 通过IP电话系统的通信可以通过保护与有线电话适配器(CTA)的通信来保护。 该系统可以包括一个或多个CTA,网络服务器,配置为信令控制器的服务器,密钥分配中心(KDC),并且可以包括将IP电话系统耦合到公共交换电话网络(PSTN)的网关。 每个CTA都可以配置为安全硬件,并且可以配置多个用于通信信令或承载信道通信的加密密钥。 KDC可以被配置为周期性地分配对称加密密钥以保护已经被提供以在系统和信令控制器中操作的设备之间的通信。 诸如CTA之类的安全设备可以通过建立用由信令控制器分配的对称密钥导出的会话专用对称密钥加密的信令和承载信道来与其他安全设备进行通信。
-
50.发明申请Enforcement of playback count in secure hardware for presentation of digital productions 审中-公开在安全硬件中执行播放计数,以呈现数字制作公开(公告)号:US20050022019A1
公开(公告)日:2005-01-27
申请号:US10613868
申请日:2003-07-05
申请人: Alexander Medvinsky , Eric Sprunk
发明人: Alexander Medvinsky , Eric Sprunk
IPC分类号: G06F20060101 , G06F15/16 , G06F15/173 , H04H60/31 , H04L9/00 , H04L9/32 , H04N7/173
CPC分类号: H04L9/32 , G06F21/10 , G06F2221/2135 , G11B20/00086 , G11B20/00753 , G11B20/0084 , G11B20/00869 , G11B2220/2545 , H04L2209/56 , H04L2209/603 , H04N21/254 , H04N21/2541 , H04N21/4405 , H04N21/44204 , H04N21/4627 , H04N21/835 , H04N21/8355
摘要: A system for restricting playback of an electronic presentation, such as a digital video or song. The system uses a playback time limit that specifies a duration of allowable playback time. The playback time limit is typically longer than the running time of the presentation so that a user is able to use standard transport controls such as pause, stop, rewind, fast forward, etc., that affect the overall playback time needed to view the presentation in its entirety. One approach uses a secure time base that is provided by a server over a network to a client device that includes a playback device. The secure time base is received and used by secure processing within the playback device. This approach allows rendering of the presentation to an output device to be performed by non-secure processing without unduly compromising the security of the system.
摘要翻译: 一种用于限制诸如数字视频或歌曲之类的电子演示文稿播放的系统。 系统使用播放时间限制,指定播放时间允许的持续时间。 播放时间限制通常比演示的运行时间长,以便用户能够使用影响观看演示所需的整体播放时间的标准传输控制,例如暂停,停止,倒退,快进等 的全部。 一种方法使用由服务器通过网络向包括回放设备的客户端设备提供的安全时基。 通过播放设备内的安全处理来接收和使用安全时基。 该方法允许将呈现呈现给输出设备以通过非安全处理来执行,而不会不适当地危及系统的安全性。
-
-
-
-
-
-
-
-
-
搜索结果
128 条记录 (耗时 0.036 秒)
