-
公开(公告)号:US20070298767A1
公开(公告)日:2007-12-27
申请号:US11750594
申请日:2007-05-18
申请人: Michael Brown , Neil Adams , Steven Fyke , Herbert Little
发明人: Michael Brown , Neil Adams , Steven Fyke , Herbert Little
IPC分类号: H04M1/66
CPC分类号: H04W12/02 , G06F21/305 , G06F21/6218 , G06F21/88 , G06F2221/2143 , H04L9/00 , H04L63/102 , H04L2209/80 , H04W8/02 , H04W8/245 , H04W12/08 , H04W12/12
摘要: A mobile communications device, method and computer program product for providing security on a mobile communications device are described. In accordance with one example embodiment, the mobile communications device comprises: a processor; a communications subsystem connected to the processor operable to exchange signals with a wireless network and with the processor; a storage element connected to the processor and having a plurality of application modules and data stored thereon, the data comprising at least user application data associated with the application modules and service data including data for establishing communications with the wireless network; and a security module operable to detect a locked state of the mobile communications device and initiate a lockout data protection timer for a predetermined duration upon detection of the locked state; and wherein the security module is operable to, after the lockout data protection timer has been initiated, detect if a password shared by the user and the mobile communications device is entered through a user input device within the predetermined duration of the lockout data protection timer; wherein the security module is operable to terminate the lockout data protection timer if entry of the password is detected within the predetermined duration; and wherein the security module is operable to perform a security action comprising erasing or encrypting at least some of the data on the storage element if entry of the password is not detected within the predetermined duration.
摘要翻译: 描述了用于在移动通信设备上提供安全性的移动通信设备,方法和计算机程序产品。 根据一个示例实施例,移动通信设备包括:处理器; 连接到处理器的通信子系统可操作以与无线网络和处理器交换信号; 连接到所述处理器并具有存储在其上的多个应用模块和数据的存储元件,所述数据至少包括与所述应用模块相关联的用户应用数据和包括用于建立与所述无线网络的通信的数据的服务数据; 以及安全模块,其可操作以检测所述移动通信设备的锁定状态,并且在检测到所述锁定状态时在预定持续时间内启动锁定数据保护定时器; 并且其中所述安全模块可操作以在所述锁定数据保护定时器已被启动之后,在所述锁定数据保护定时器的所述预定持续时间内检测用户和所述移动通信设备共享的密码是否通过用户输入设备进入; 其中所述安全模块可操作以在所述预定持续时间内检测到所述密码的输入时终止所述锁定数据保护定时器; 并且其中所述安全模块可操作以执行安全动作,包括擦除或加密所述存储元件上的所述数据中的至少一些,如果在所述预定持续时间内没有检测到所述口令的输入。
-
公开(公告)号:US20070028118A1
公开(公告)日:2007-02-01
申请号:US11196340
申请日:2005-08-04
申请人: Michael Brown , Neil Adams , Herbert Little
发明人: Michael Brown , Neil Adams , Herbert Little
CPC分类号: G07F7/1008 , G06Q20/341 , G06Q20/4012 , G06Q20/40975 , G07F7/1025
摘要: A smart card, system, and method for securely authorizing a user or user device using the smart card is provided. The smart card is configured to provide, upon initialization or a request for authentication, a public key to the user input device such that the PIN or password entered by the user is encrypted before transmission to the smart card via a smart card reader. The smart card then decrypts the PIN or password to authorize the user. Preferably, the smart card is configured to provide both a public key and a nonce to the user input device, which then encrypts a concatenation or other combination of the nonce and the user-input PIN or password before transmission to the smart card. The smart card reader thus never receives a copy of the PIN or password in the clear, allowing the smart card to be used with untrusted smart card readers.
摘要翻译: 提供了一种使用智能卡安全授权用户或用户设备的智能卡,系统和方法。 智能卡被配置为在初始化或请求验证时向用户输入设备提供公共密钥,使得在经由智能卡读卡器传输到智能卡之前,由用户输入的PIN或密码被加密。 智能卡然后解密PIN或密码以授权用户。 优选地,智能卡被配置为向用户输入设备提供公开密钥和随机数,该用户输入设备然后在发送到智能卡之前加密随机数和用户输入的PIN或密码的级联或其他组合。 因此,智能卡读卡器从未收到PIN或密码的副本,允许智能卡与不可信的智能卡读卡器一起使用。
-
公开(公告)号:US20060036848A1
公开(公告)日:2006-02-16
申请号:US10913693
申请日:2004-08-09
申请人: Michael Brown , Neil Adams , David Tapuska , Herbert Little
发明人: Michael Brown , Neil Adams , David Tapuska , Herbert Little
IPC分类号: H04L9/00
CPC分类号: H04L9/3263 , H04L61/1523 , H04L63/0823 , H04L2209/80 , H04W12/04 , Y10S707/99933
摘要: A system and method for searching and retrieving certificates, which may be used in the processing of encoded messages. In one embodiment, a certificate synchronization application is programmed to perform certificate searches by querying one or more certificate servers for all of the certificates on those certificate servers. If all of the certificates on a certificate server cannot be successfully retrieved using a single search query, due to a search quota on the certificate server being exceeded for example, the search is re-performed through multiple queries, each corresponding to a narrower subsearch. The invention enables users to large amounts of certificates to be automatically searched for and retrieved from certificate servers, thereby minimizing the need for users to manually search for individual certificates.
摘要翻译: 用于搜索和检索证书的系统和方法,其可以用于编码消息的处理。 在一个实施例中,证书同步应用程序被编程为通过向一个或多个证书服务器查询那些证书服务器上的所有证书来执行证书搜索。 如果证书服务器上的所有证书都无法使用单个搜索查询成功检索,因为例如超过了证书服务器上的搜索配额,则通过多个查询重新执行搜索,每个查询对应于较窄的子搜索。 本发明使用户能够从证书服务器自动搜索和检索大量的证书,从而最小化用户手动搜索单个证书的需要。
-
公开(公告)号:US20050278545A1
公开(公告)日:2005-12-15
申请号:US10857436
申请日:2004-06-01
CPC分类号: H04L63/083 , H04M1/673 , H04M1/7255
摘要: A communication device (and its related method of operation), when accessing password protected voicemail services, may invoke an enhanced security feature which effectively masks at least the password digit values from being discernible by feedback to the user. This is especially important where portable wireless communication devices may have pre-stored password data for use with automated voicemail access—even in a “locked” mode. Unauthorized possessors of such a device might utilize conventional audible feedback during password transmission to decipher the password value. However, such lack of security is avoided by masking the password data values from the audible and/or visual user feedback, if any.
摘要翻译: 通信设备(及其相关操作方法)在访问受密码保护的语音邮件服务时,可以调用增强的安全特征,其有效地屏蔽至少通过对用户的反馈来识别密码数字值。 这在便携式无线通信设备可能具有用于自动语音邮件访问的预存的密码数据 - 甚至在“锁定”模式中尤为重要。 这种设备的未经许可的拥有者可以在密码传输期间利用传统的可听反馈来解密密码值。 然而,通过从可听和/或可视用户反馈(如果有的话)屏蔽密码数据值来避免这种缺乏安全性。
-
公开(公告)号:US20050257209A1
公开(公告)日:2005-11-17
申请号:US11118844
申请日:2005-04-29
申请人: Neil Adams , Michael Kirkup , Herbert Little , Russell Owen
发明人: Neil Adams , Michael Kirkup , Herbert Little , Russell Owen
IPC分类号: G06F9/44 , G06F9/445 , G06F12/14 , G06K5/00 , H04L9/32 , H04L12/22 , H04M1/67 , H04M1/725 , H04Q7/32 , H04Q7/38
CPC分类号: G06F21/629 , G06F8/61 , G06F12/1458 , G06F21/51 , G06F21/52 , G06F21/53 , G06F21/6218 , G06F21/71 , G06F2221/2149 , H04L63/102 , H04L67/34 , H04M1/72525
摘要: Systems and methods of owner application control of an electronic device are provided. Owner application control information is stored on the electronic device and/or one or more remote servers. Owner application control information is consulted to determine if one or more required applications are available for execution on the electronic device. If not, one or more required applications not available are downloaded and installed. This could be in a manner transparent to the user of the electronic device. If one or more required applications are not available on the electronic device, the device can be functionally disabled in whole, or in part, until one or more required applications are available.
摘要翻译: 提供了电子设备的所有者应用控制的系统和方法。 所有者应用控制信息存储在电子设备和/或一个或多个远程服务器上。 咨询所有者应用程序控制信息以确定一个或多个所需应用程序是否可用于在电子设备上执行。 如果没有,则下载并安装一个或多个不可用的必需应用程序。 这可以以对电子设备的用户透明的方式。 如果一个或多个所需的应用程序在电子设备上不可用,则该设备可以在全部或部分功能上禁用,直到一个或多个所需的应用程序可用。
-
公开(公告)号:US20070074034A1
公开(公告)日:2007-03-29
申请号:US11237727
申请日:2005-09-29
申请人: Neil Adams , Michael Kirkup , Herbert Little , David Tapuska
发明人: Neil Adams , Michael Kirkup , Herbert Little , David Tapuska
IPC分类号: H04L9/00
CPC分类号: H04L9/3226 , G06F21/629 , H04L9/3215 , H04L9/3247 , H04L63/166 , H04L2209/80 , H04W12/10
摘要: A system and method for registering entities for code signing services. The entities may be software application developers or other individuals or entities that wish to have applications digitally signed. Signing of the applications may be required in order to enable the applications to access sensitive APIs and associated resources of a computing device when the applications are executed on the computing device. In one embodiment, a method of registering entities for code signing services will comprise the step of transmitting at least some account data to the registering individual or entity using an out-of-band communication system. This provides added security that the individual or entity registering for a code signing service is who that individual or entity purports to be.
摘要翻译: 一种用于注册代码签名服务实体的系统和方法。 实体可以是软件应用程序开发人员或希望对应用进行数字签名的其他个人或实体。 可能需要签署应用程序,以便在应用程序在计算设备上执行时,使应用程序能够访问计算设备的敏感API和相关资源。 在一个实施例中,注册用于代码签名服务的实体的方法将包括使用带外通信系统将至少一些帐户数据发送到注册个人或实体的步骤。 这提供了增加的安全性,注册代码签名服务的个人或实体是个人或实体所声称的。
-
57.发明申请Remote hash generation in a system and method for providing code signing services 审中-公开用于提供代码签名服务的系统中的远程哈希生成和方法公开(公告)号:US20070074032A1
公开(公告)日:2007-03-29
申请号:US11237725
申请日:2005-09-29
申请人: Neil Adams , Michael Kirkup , Herbert Little , Michael Rybak , David Tapuska
发明人: Neil Adams , Michael Kirkup , Herbert Little , Michael Rybak , David Tapuska
IPC分类号: H04L9/00
CPC分类号: G06F21/629
摘要: A system and method for providing code signing services to software application developers or to other individuals or entities that wish to have applications digitally signed. Signing of the applications may be required in order to enable the applications to access sensitive APIs and associated resources of a computing device when the applications are executed on the computing device. In one embodiment, a hash of an application is generated by a requestor of code signing services. The hash of the application, and not the application itself, may then be received in a code signing request to be digitally signed.
摘要翻译: 一种用于向软件应用程序开发人员或希望对应用程序进行数字签名的其他个人或实体提供代码签名服务的系统和方法。 可能需要签署应用程序,以便在应用程序在计算设备上执行时,使应用程序能够访问计算设备的敏感API和相关资源。 在一个实施例中,应用的散列由代码签名服务的请求者产生。 然后可以在代码签名请求中接收应用程序的散列,而不是应用程序本身,以进行数字签名。
-
公开(公告)号:US20050252963A1
公开(公告)日:2005-11-17
申请号:US11118748
申请日:2005-04-29
申请人: Neil Adams , Michael Kirkup , Herbert Little , Russell Owen
发明人: Neil Adams , Michael Kirkup , Herbert Little , Russell Owen
IPC分类号: G06F9/44 , G06F9/445 , G06F12/14 , G06K5/00 , H04L9/32 , H04L12/22 , H04M1/67 , H04M1/725 , H04Q7/32 , H04Q7/38
CPC分类号: G06F21/629 , G06F8/61 , G06F12/1458 , G06F21/51 , G06F21/52 , G06F21/53 , G06F21/6218 , G06F21/71 , G06F2221/2149 , H04L63/102 , H04L67/34 , H04M1/72525
摘要: Systems and methods of application control for use on an electronic device. A device can be configured to receive an operation request from an application. The device can determine whether the requested operation is allowed to be performed by the application based upon a stored authorization record and an application identifier associated with the application. The application is allowed to perform the requested operation based upon whether the requested operation is determined to be allowed to be performed by the application.
摘要翻译: 用于电子设备的应用控制系统和方法。 可以将设备配置为从应用程序接收操作请求。 设备可以基于存储的授权记录和与应用相关联的应用标识来确定应用是否允许执行所请求的操作。 允许应用程序基于所请求的操作是否被允许由应用程序执行来执行所请求的操作。
-
公开(公告)号:US20050149442A1
公开(公告)日:2005-07-07
申请号:US10508115
申请日:2003-03-20
申请人: Neil Adams , Herbert Little , Michael Kirkup
发明人: Neil Adams , Herbert Little , Michael Kirkup
CPC分类号: H04L63/0823 , G06F21/606
摘要: A system and method of storing in a computer device digital certificate data from a digital certificate are provided. When a digital certificate is received at the computer device, it is determined whether the digital certificate data in the digital certificate is stored in a first memory store in the computer device. The digital certificate data is stored in the first memory store upon determining that the digital certificate data is not stored in the first memory store.
摘要翻译: 提供了一种在计算机设备中存储来自数字证书的数字证书数据的系统和方法。 当在计算机设备处接收到数字证书时,确定数字证书中的数字证书数据是否存储在计算机设备中的第一存储器存储器中。 在确定数字证书数据未被存储在第一存储器存储器中时,数字证书数据被存储在第一存储器存储器中。
-
60.发明申请System and method for providing an indication of randomness quality of random number data generated by a random data service 有权用于提供由随机数据服务生成的随机数数据的随机性质量指示的系统和方法公开(公告)号:US20070071238A1
公开(公告)日:2007-03-29
申请号:US11237723
申请日:2005-09-29
申请人: Neil Adams , Michael Kirkup , Herbert Little , Michael Rybak , David Tapuska
发明人: Neil Adams , Michael Kirkup , Herbert Little , Michael Rybak , David Tapuska
IPC分类号: H04L9/00
CPC分类号: H04L9/0869 , H04L9/3247 , H04L2209/80
摘要: A system and method for providing an indication of randomness quality of random number data generated by a random data service. The random data service may provide random number data to one or more applications adapted to generate key pairs used in code signing applications, for example. In one aspect, the method comprises the steps of: retrieving random number data from the random data service; applying one or more randomness tests to the retrieved random number data to compute at least one indicator of the randomness quality of the random number data; associating the at least one indicator with at least one state represented by a color; and displaying the color associated with the at least one indicator to a user. The color may be displayed in a traffic light icon, for example.
摘要翻译: 一种用于提供由随机数据服务产生的随机数数据的随机性质量指示的系统和方法。 随机数据服务可以向例如适用于生成在代码签名应用中使用的密钥对的一个或多个应用提供随机数字数据。 一方面,该方法包括以下步骤:从随机数据服务中检索随机数字数据; 对所检索的随机数数据应用一个或多个随机性测试以计算所述随机数数据的随机性质量的至少一个指示符; 将所述至少一个指示符与由颜色表示的至少一个状态相关联; 以及将与所述至少一个指示符相关联的颜色显示给用户。 例如,颜色可以显示在交通灯图标中。
-
-
-
-
-
-
-
-
-
搜索结果
154 条记录 (耗时 0.027 秒)
