公开(公告)号：US10218496B2

公开(公告)日：2019-02-26

申请号：US14808691

申请日：2015-07-24

Applicant: Cryptography Research, Inc.

Inventor： Megan Anneke Wachs ,  Ambuj Kumar ,  Benjamin Che-Ming Jun

IPC: H04L9/32 ,  H04L9/06 ,  H04L9/08 ,  H04L29/06

Abstract: Values and a sequence of operations associated with generating a key may be received. A determination may be made as to whether the sequence of operations associated with the key matches an authorized sequence of operations. The key may be outputted when the received sequence of operations matches the authorized sequence of operations and the key may not be outputted when the received sequence of operations does not match the authorized sequence of operations.

公开(公告)号：US20180183593A1

公开(公告)日：2018-06-28

申请号：US15900722

申请日：2018-02-20

Applicant: Cryptography Research, Inc.

Inventor： Ambuj Kumar ,  Mark Evan Marson ,  Daniel Robert Beitel

IPC: H04L9/30 ,  H04W12/02 ,  H04L9/32 ,  G06F21/60 ,  H04W4/40 ,  H04L29/06

CPC classification number: H04L9/3066 ,  G06F21/606 ,  G06F2221/2107 ,  G06F2221/2111 ,  H04L9/0872 ,  H04L9/3263 ,  H04L63/0442 ,  H04L63/107 ,  H04W4/046 ,  H04W4/40 ,  H04W12/00503 ,  H04W12/02

Abstract: A first entity may provide a request to transmit data from the first entity to a second entity. The first entity may receive a session key from the second entity in response to the request where the session key is encrypted by a second key that is based on a combination of a public key and a location associated with the second entity. A location associated with the first entity may be identified. Furthermore, a first key may be generated based on a combination of the location associated with the first entity and a private key that corresponds to the public key. The first key may decrypt data encrypted by the second key when the location associated with the first entity corresponds to the location associated with the second entity.

公开(公告)号：US09584509B2

公开(公告)日：2017-02-28

申请号：US14535202

申请日：2014-11-06

Applicant: CRYPTOGRAPHY RESEARCH, INC.

Inventor： Michael Hamburg ,  Benjamin Che-Ming Jun ,  Paul C. Kocher ,  Daniel O'Loughlin ,  Denis Alexandrovich Pochuev ,  Ambuj Kumar

IPC: H04L9/32 ,  H04L29/06 ,  H04L29/08 ,  H04W12/06 ,  G06F21/60 ,  G06F21/62 ,  G06F21/72 ,  G06F21/73 ,  G06F21/33

CPC classification number: H04L63/0853 ,  G06F21/335 ,  G06F21/602 ,  G06F21/6209 ,  G06F21/72 ,  G06F21/73 ,  G06F2221/2107 ,  G06F2221/2135 ,  G06F2221/2145 ,  G06F2221/2149 ,  G06F2221/2153 ,  H04L63/0428 ,  H04L63/062 ,  H04L63/123 ,  H04L67/32 ,  H04W12/06

Abstract: The embodiments described herein describe technologies for ticketing systems used in consumption and provisioning of data assets, such as a pre-computed (PCD) asset. A ticket may be a digital file or data that enables enforcement of usage count limits and uniqueness issuance ore sequential issuance of target device parameters. On implementation includes an Appliance device of a cryptographic manager (CM) system that receives a Module and a ticket over a network from a Service device. The Module is an application that securely provisions a data asset to a target device in an operation phase of a manufacturing lifecycle of the target device. The ticket is digital data that grants permission to the Appliance device to execute the Module. The Appliance device verifies the ticket to execute the Module. The Module, when executed, results in a secure construction of a sequence of operations to securely provision the data asset to the target device.

Abstract translation: 这里描述的实施例描述了在诸如预先计算（PCD）资产的数据资产的消费和供应中使用的票务系统的技术。 票可以是数字文件或数据，其能够执行使用计数限制和唯一性发放矿石连续发放目标设备参数。 实施时包括通过网络从服务设备接收模块和故障单的密码管理器（CM）系统的电器设备。 该模块是在目标设备的制造生命周期的操作阶段中将数据资产安全地提供给目标设备的应用程序。 该票是允许电器设备执行模块的数字数据。 电器设备验证机票以执行模块。 该模块在执行时会导致一系列操作的安全构造，以将数据资产安全地提供给目标设备。

公开(公告)号：US20150312036A1

公开(公告)日：2015-10-29

申请号：US14679929

申请日：2015-04-06

Applicant: CRYPTOGRAPHY RESEARCH, INC.

Inventor： Ambuj Kumar

IPC: H04L9/08

CPC classification number: H04L9/0866

Abstract: A request to generate a first key may be received. A device generated key that is stored in a memory may be received in response to the request. Furthermore, a first entity identification (ID) that is stored in the memory may be received. The first key may be generated based on the first entity ID and the device generated key that are stored in the memory.

Abstract translation: 可以接收生成第一密钥的请求。 可以响应于该请求而接收存储在存储器中的设备生成的密钥。 此外，可以接收存储在存储器中的第一实体标识（ID）。 可以基于存储在存储器中的第一实体ID和设备生成的密钥来生成第一密钥。