-
公开(公告)号:US20090271621A1
公开(公告)日:2009-10-29
申请号:US12109580
申请日:2008-04-25
申请人: Meir Mendelovich , John Neystadt , Ken Aoyama , Nir Nice , Shay Yehuda Gurman
发明人: Meir Mendelovich , John Neystadt , Ken Aoyama , Nir Nice , Shay Yehuda Gurman
CPC分类号: H04W12/06 , H04L9/00 , H04L9/32 , H04L9/321 , H04L9/3226 , H04L63/0428 , H04L63/083 , H04L63/10 , H04W12/02
摘要: Aspects of the subject matter described herein relate to a simplified login for mobile devices. In aspects, on a first logon, a mobile device asks a user to enter credentials and a PIN. The credentials and PIN are sent to a server which validates user credentials. If the user credentials are valid, the server encrypts data that includes at least the user credentials and the PIN and sends the encrypted data to the mobile device. In subsequent logons, the user may logon using only the PIN. During login, the mobile device sends the PIN in conjunction with the encrypted data. The server can then decrypt the data and compare the received PIN with the decrypted PIN. If the PINs are equal, the server may grant access to a resource according to the credentials.
摘要翻译: 本文描述的主题的方面涉及用于移动设备的简化登录。 在方面,在第一次登录时,移动设备要求用户输入凭据和PIN。 凭证和PIN被发送到验证用户凭证的服务器。 如果用户凭证有效,则服务器加密至少包括用户凭证和PIN的数据,并将加密的数据发送到移动设备。 在后续登录中,用户只能使用PIN登录。 在登录期间,移动设备与加密数据一起发送PIN。 然后,服务器可以对数据进行解密并将接收到的PIN与解密的PIN进行比较。 如果PIN相等,则服务器可以根据凭证授予对资源的访问。
-
公开(公告)号:US20080209120A1
公开(公告)日:2008-08-28
申请号:US11710763
申请日:2007-02-26
申请人: Itai Almog , Nir Nice
发明人: Itai Almog , Nir Nice
IPC分类号: G06F13/00
CPC分类号: H04L67/28 , H04L67/2852
摘要: Described is a technology by which a web proxy server evaluates its cached objects, and when an object is invalid, performs a freshness check on that object, independent of any client requests. As a result, the cache contains objects that have a greater likelihood of being fresh when requested by a client. By scanning a web cache data structure to determine whether corresponding cached content is still valid, and sending a freshness check to a web server when the content is not valid, the cache is kept up to date. The scanning may be periodic or based upon some other triggering event, and all of the cache's corresponding entries may be scanned, or some smaller subset of the entries. In one example implementation, a web proxy server that contains the cache includes a freshness check mechanism that scans and keeps the cached objects up to date.
摘要翻译: 描述了一种Web代理服务器对其缓存的对象进行评估的技术,当对象无效时,对该对象执行新鲜度检查,而与任何客户端请求无关。 因此,缓存包含客户端请求时可能性更高的对象。 通过扫描Web缓存数据结构以确定相应的缓存内容是否仍然有效,并且当内容无效时向web服务器发送新鲜度检查,则缓存保持最新。 扫描可以是周期性的或者基于一些其他触发事件,并且可以扫描所有高速缓存的相应条目,或者进入条目的一些较小子集。 在一个示例实现中,包含高速缓存的web代理服务器包括扫描并保持缓存的对象为最新的新鲜度检查机制。
-
公开(公告)号:US20070294749A1
公开(公告)日:2007-12-20
申请号:US11454373
申请日:2006-06-15
申请人: Nir Nice , Ron Mondri , Tomer Shiran , Boaz Ein-Gil
发明人: Nir Nice , Ron Mondri , Tomer Shiran , Boaz Ein-Gil
IPC分类号: H04L9/32
CPC分类号: H04L63/0838 , H04L9/0863 , H04L9/3228 , H04L63/083 , H04L63/0853
摘要: A single passcode can be used for validation by a user of several entities in a system without compromising security. The source of the entity providing validation credentials, along with the passcode, is considered when determining validity. A one-time password system validates credentials if a validation credentials, such as a user's valid passcode and the source of the credentials, have not been used previously. In a one-time passcode system, a validation processor receives validation credentials from a client processor. If the client processor has not previously sent the validation credentials to the validation processor, and the credentials are valid, the validation processor will validate the credentials. Otherwise, the credentials are invalid. Other client processors can utilize the same passcode and their respective source identifiers, and as long as the other client processors have not previously utilized the credentials, the credentials are declared valid.
摘要翻译: 单个密码可用于系统中的几个实体的用户的验证,而不会影响安全性。 在确定有效性时,会考虑提供验证凭证的实体的来源以及密码。 如果先前没有使用验证凭证(例如用户的有效密码和凭据来源),则一次性密码系统将验证凭据。 在一次性密码系统中,验证处理器从客户端处理器接收验证凭证。 如果客户机处理器以前没有将验证凭证发送给验证处理器,并且凭据有效,则验证处理器将验证凭据。 否则,凭据无效。 其他客户端处理器可以使用相同的密码及其各自的源标识符,只要其他客户端处理器以前没有使用过凭据,凭证就被声明为有效的。
-
公开(公告)号:US10284679B2
公开(公告)日:2019-05-07
申请号:US12683618
申请日:2010-01-07
申请人: Nir Nice , Ehud Wieder , Arie Friedman
发明人: Nir Nice , Ehud Wieder , Arie Friedman
摘要: Embodiments of the present invention relate to systems, methods, and computer-storage media for maintaining privacy while delivering advertisements based on encrypted user profile identifiers. In embodiments, a Public key Encryption with Keyword Search (PEKS) is used to generate a public key and a private key. In embodiments, a public key and a private key are used to encrypt user profile identifiers and generate trapdoors associated with defined profile identifiers, respectively. A portion of the encrypted user profile identifiers are compared to a portion of the trapdoors. If a match is present between at least one encrypted user profile identifier and an associated trapdoor, a delivery engine is provided with an identification of content to be delivered to the user. The provided description is then used to determine an advertisement to present to a user. The advertisement is then presented to the user.
-
公开(公告)号:US09436816B2
公开(公告)日:2016-09-06
申请号:US12970100
申请日:2010-12-16
申请人: Nir Nice , Eyal Krupka
发明人: Nir Nice , Eyal Krupka
CPC分类号: H04L63/0861 , G06F21/32 , G06Q50/265 , H04L63/101 , H04L63/102
摘要: A computer may identify an individual according to one or more biometrics based on various physiological aspects of the individual, such as metrics of various features of the face, gait, fingerprint, or voice of the individual. However, biometrics are often computationally intensive to compute, inaccurate, and unable to scale to identify an individual among a large set of known individuals. Therefore, the biometric identification of an individual may be supplemented by identifying one or more devices associated with the individual (e.g., a mobile phone, a vehicle driven by the individual, or an implanted medical device). When an individual is registered for identification, various device identifiers of devices associated with the individual may be stored along with the biometrics of the individual. Individuals may then be identified using both biometrics and detected device identifiers, thereby improving the efficiency, speed, accuracy, and scalability of the identification.
摘要翻译: 计算机可以基于个体的各种生理方面根据一个或多个生物特征识别个体,例如个体的各种特征的度量,步态,指纹或个体的声音。 然而,生物识别通常对于计算,不精确和无法扩展以在一大群已知个体中识别个体而计算密集。 因此,可以通过识别与个人(例如,移动电话,由个体驱动的车辆或植入的医疗设备)相关联的一个或多个设备来补充个体的生物特征识别。 当个人被注册用于识别时,可以与个体的生物特征一起存储与个人相关联的设备的各种设备标识符。 然后可以使用生物特征和检测到的设备标识符来识别个体,从而提高识别的效率,速度,准确性和可扩展性。
-
公开(公告)号:US08910270B2
公开(公告)日:2014-12-09
申请号:US12356152
申请日:2009-01-20
申请人: Nir Nice , Amit Finkelstein , Dror Kremer , Noam Ben-Yochanan , Shyam Seshadri
发明人: Nir Nice , Amit Finkelstein , Dror Kremer , Noam Ben-Yochanan , Shyam Seshadri
CPC分类号: H04L63/0281 , G06F17/30861 , H04L61/1511 , H04L61/256 , H04L61/3055 , H04L63/164
摘要: In some embodiments of the invention, techniques may make private identifiers for private network resources usable to establish connections to those private network resources from computing devices connected to an outside network. For example, when a computing device is connected to an outside network and attempting to contact a private network resource, DNS may be used to resolve a domain name for the private network resource to an IP address for an edge resource of the private network. Communications may be passed between the computing device and the edge resource according to protocols which embed the identifier originally used to identify the private network resource. The edge resource of the private network may analyze communications over the connection to determine this identifier, and use it to pass the communication to the desired private network resource.
摘要翻译: 在本发明的一些实施例中,技术可以使私有网络资源的专用标识符可用于从连接到外部网络的计算设备建立到那些专用网络资源的连接。 例如,当计算设备连接到外部网络并尝试联系专用网络资源时,可以使用DNS将专用网络资源的域名解析为专用网络的边缘资源的IP地址。 根据最初用于标识专用网络资源的标识符的协议,可以在计算设备和边缘资源之间传递通信。 私有网络的边缘资源可以分析通过连接的通信以确定该标识符,并且使用它来将通信传递到期望的专用网络资源。
-
公开(公告)号:US08631237B2
公开(公告)日:2014-01-14
申请号:US12109580
申请日:2008-04-25
申请人: Meir Mendelovich , John Neystadt , Ken Aoyama , Nir Nice , Shay Yehuda Gurman
发明人: Meir Mendelovich , John Neystadt , Ken Aoyama , Nir Nice , Shay Yehuda Gurman
CPC分类号: H04W12/06 , H04L9/00 , H04L9/32 , H04L9/321 , H04L9/3226 , H04L63/0428 , H04L63/083 , H04L63/10 , H04W12/02
摘要: Aspects of the subject matter described herein relate to a simplified login for mobile devices. In aspects, on a first logon, a mobile device asks a user to enter credentials and a PIN. The credentials and PIN are sent to a server which validates user credentials. If the user credentials are valid, the server encrypts data that includes at least the user credentials and the PIN and sends the encrypted data to the mobile device. In subsequent logons, the user may logon using only the PIN. During login, the mobile device sends the PIN in conjunction with the encrypted data. The server can then decrypt the data and compare the received PIN with the decrypted PIN. If the PINs are equal, the server may grant access to a resource according to the credentials.
摘要翻译: 本文描述的主题的方面涉及用于移动设备的简化登录。 在方面,在第一次登录时,移动设备要求用户输入凭据和PIN。 凭证和PIN被发送到验证用户凭证的服务器。 如果用户凭证有效,则服务器加密至少包括用户凭证和PIN的数据,并将加密的数据发送到移动设备。 在后续登录中,用户只能使用PIN登录。 在登录期间,移动设备与加密数据一起发送PIN。 然后,服务器可以对数据进行解密并将接收到的PIN与解密的PIN进行比较。 如果PIN相等,则服务器可以根据凭证授予对资源的访问。
-
公开(公告)号:US08613072B2
公开(公告)日:2013-12-17
申请号:US12393046
申请日:2009-02-26
IPC分类号: H04L29/06
CPC分类号: H04L63/0272 , H04L67/1014 , H04L67/1021 , H04L67/2814
摘要: Methods, systems, and computer-readable media are disclosed for processing a secure data connection request. A particular method receives, at a first gateway, a secure data connection request from a client identifying a server to connect to. The first gateway sends the client device a redirect message instructing the client device to attempt alternate connection via a second gateway. The client sends a secure data connection request to the second gateway and the second gateway facilitates the secure data connection between the client and the server.
摘要翻译: 公开了用于处理安全数据连接请求的方法,系统和计算机可读介质。 特定方法在第一网关处接收来自识别要连接的服务器的客户端的安全数据连接请求。 第一个网关向客户端设备发送重定向消息,指示客户端设备通过第二个网关尝试备用连接。 客户端向第二网关发送安全数据连接请求,而第二网关便于客户端与服务器之间的安全数据连接。
-
59.发明授权Combining a mobile device and computer to create a secure personalized environment 有权结合移动设备和计算机来创建安全的个性化环境公开(公告)号:US08595491B2
公开(公告)日:2013-11-26
申请号:US12270920
申请日:2008-11-14
申请人: Nir Nice , Hen Fitoussi
发明人: Nir Nice , Hen Fitoussi
CPC分类号: H04L63/102 , G06F21/53 , G06F21/57 , G06F2221/2149 , G06F2221/2153 , H04L63/1433
摘要: A mobile device, such as a mobile phone, smart phone, personal music player, handheld game device, and the like, when operatively combined with a PC, creates a secure and personalized computing platform through configuration of the mobile device's CPU (central processing unit) and OS (operating system) to function as an immutable trusted core. The trusted core in the mobile device verifies the integrity of the PC including, for example, that its drivers, applications, and other software are trusted and unmodified, and thus safe to use without presenting a threat to the integrity of the combined computing platform. The mobile device can further optionally store and transport the user's personalization data—including, for example, the user's desktop, applications, data, certificates, settings, and preferences—which can be accessed by the PC when the devices are combined to thus create a personalized computing environment.
摘要翻译: 当与PC可操作地组合时,诸如移动电话,智能电话,个人音乐播放器,手持游戏设备等的移动设备通过配置移动设备的CPU(中央处理单元)来创建安全且个性化的计算平台 )和OS(操作系统)作为不可变信任的核心。 移动设备中的可信核心验证PC的完整性,包括例如其驱动程序,应用程序和其他软件是受信任和未修改的,因此安全使用而不会对组合计算平台的完整性构成威胁。 移动设备还可以进一步可选地存储和传送用户的个性化数据 - 包括例如用户的桌面,应用,数据,证书,设置和偏好 - 当设备组合时,PC可以访问用户的个性化数据,从而创建 个性化计算环境。
-
公开(公告)号:US08520842B2
公开(公告)日:2013-08-27
申请号:US12683586
申请日:2010-01-07
申请人: Nir Nice , Ehud Wieder , Boaz Feldbaum , Sefy Ophir , Eran Shamir , Yacov Yacobi , Arie Friedman
发明人: Nir Nice , Ehud Wieder , Boaz Feldbaum , Sefy Ophir , Eran Shamir , Yacov Yacobi , Arie Friedman
IPC分类号: H04L29/06
CPC分类号: H04L67/306 , G06F21/6263 , H04L9/30 , H04L63/0442 , H04L63/102 , H04L67/20 , H04L67/22 , H04L2209/84
摘要: Systems, methods, and computer storage media having computer-executable instructions embodied thereon that maintain privacy during user profiling are provided. A profiling service receives, from a first device, rules for profiling a user. The rules were encrypted using a private key. The profiling service also receives, from a second device, user data. The user data was encrypted using a public key communicated to the second device by the first device. The profiling service then matches the encrypted rules with the encrypted user data, and based on the matching, generates a profile for the user. In embodiments, such a user profile can be utilized to deliver personalized digital content to a user.
摘要翻译: 提供了具有在其上体现的具有在用户分析期间保持隐私的计算机可执行指令的系统,方法和计算机存储介质。 分析服务从第一设备接收用于分析用户的规则。 这些规则是使用私钥加密的。 分析服务还从第二设备接收用户数据。 使用由第一设备传送到第二设备的公共密钥对用户数据进行加密。 然后,分析服务将加密的规则与加密的用户数据相匹配,并且基于匹配,为用户生成简档。 在实施例中,可以利用这样的用户简档来向用户传送个性化数字内容。
-
-
-
-
-
-
-
-
-
搜索结果
71 条记录 (耗时 0.031 秒)
