公开(公告)号：US20110265153A1

公开(公告)日：2011-10-27

申请号：US12910596

申请日：2010-10-22

申请人： Louis J. Guccione ,  Inhyok Cha ,  Andreas Schmidt ,  Andreas Leicher ,  David G. Greiner ,  Dolores F. Howry

发明人： Louis J. Guccione ,  Inhyok Cha ,  Andreas Schmidt ,  Andreas Leicher ,  David G. Greiner ,  Dolores F. Howry

IPC分类号： H04L9/32 ,  G06F15/16 ,  G06F21/00

CPC分类号： H04L63/101 ,  G06F21/33 ,  G06F21/36 ,  H04L51/12 ,  H04L63/0227 ,  H04L63/08 ,  H04L63/0869 ,  H04L63/145 ,  H04L65/1016 ,  H04W12/06

摘要： Methods and apparatus are disclosed to provide protection against Unsolicited Communication (UC) in a network, such as, without limitation, an Internet Protocol (IP) Multimedia Subsystem (IMS). A communication may originate from a sending device and may be intended for delivery to a receiving device. A network may determine authentication information associated with the sending device. The network may send the authentication information to a receiving entity to evaluate if the communication is unsolicited using the authentication information. If the communication is determined to be acceptable, a connection associated with the communication may be allowed.

摘要翻译： 披露了一种方法和装置，用于提供对网络中的非请求通信（UC）的保护，例如但不限于互联网协议（IP）多媒体子系统（IMS）。 通信可以来自发送设备，并且可以用于传送到接收设备。 网络可以确定与发送设备相关联的认证信息。 网络可以将认证信息发送到接收实体，以使用认证信息评估该通信是否是主动的。 如果通信被确定为可接受的，则可以允许与该通信相关联的连接。

公开(公告)号：US08015408B2

公开(公告)日：2011-09-06

申请号：US11733536

申请日：2007-04-10

申请人： Sasidhar Movva ,  Richard Dan Herschaft ,  Inhyok Cha

发明人： Sasidhar Movva ,  Richard Dan Herschaft ,  Inhyok Cha

IPC分类号： H04L9/32

CPC分类号： H04W12/10 ,  H04L63/12 ,  H04W12/12

摘要： A method and system for performing trust evaluation for a mobile software agent on a trusted computing platform are disclosed. A sending entity, which includes a mobile software agent, verifies if a receiving entity is trustworthy before transferring the mobile software agent to the receiving entity. The receiving entity may verify the state and details of the mobile software agent and/or the state of the sending entity, and receive the mobile software agent if the state of the mobile software agent and the sending entity are trustworthy. The mobile software agent may include its own virtual trusted platform module (TPM) which is tied to an agent's identity. The agent's virtual TPM is part of the agent and transferred along with the mobile code when the mobile code is transferred.

摘要翻译： 公开了一种用于对可信计算平台上的移动软件代理执行信任评估的方法和系统。 包括移动软件代理的发送实体在将移动软件代理传送到接收实体之前验证接收实体是否可信任。 接收实体可以验证移动软件代理的状态和细节和/或发送实体的状态，并且如果移动软件代理和发送实体的状态是可信赖的，则接收移动软件代理。 移动软件代理可以包括其自己的虚拟可信平台模块（TPM），其与代理的身份相关联。 代理商的虚拟TPM是代理商的一部分，并在移动代码被传输时与移动代码一起传输。

公开(公告)号：US20100011214A1

公开(公告)日：2010-01-14

申请号：US12389088

申请日：2009-02-19

申请人： Inhyok Cha ,  Yogendra C. Shah ,  Andreas U. Schmidt ,  Christian Hett

发明人： Inhyok Cha ,  Yogendra C. Shah ,  Andreas U. Schmidt ,  Christian Hett

IPC分类号： H04L9/00

CPC分类号： G06F21/81 ,  G06F21/725 ,  H04L63/123 ,  H04L2463/101 ,  H04L2463/121 ,  H04W12/10

摘要： A method and apparatus to establish a trustworthy local time based on trusted computing methods are described. The concepts are scaling because they may be graded by the frequency and accuracy with which a reliable external time source is available for correction and/or reset, and how trustworthy this external source is in a commercial scenario. The techniques also take into account that the number of different paths and number of hops between the device and the trusted external time source may vary. A local clock related value which is protected by a TPM securely bound to an external clock. A system of Accuracy Statements (AS) is added to introduce time references to the audit data provided by other maybe cheaper sources than the time source providing the initial time.

摘要翻译： 描述了基于可信计算方法建立可靠的本地时间的方法和装置。 概念是缩放，因为它们可以通过可靠的外部时间源可用于校正和/或重置的频率和准确度进行分级，并且在商业场景中该外部源是如何可信赖的。 这些技术还考虑到设备与受信任的外部时间源之间的不同路径和跳数的数量可能会有所不同。 由TPM保护的本地时钟相关值安全地绑定到外部时钟。 添加准确性声明（AS）的系统来引入时间参考，以提供其他可能比提供初始时间的时间源更便宜的源提供的审计数据。

公开(公告)号：US20090313472A1

公开(公告)日：2009-12-17

申请号：US12419798

申请日：2009-04-07

申请人： Louis J. Guccione ,  Yevgeniy Dodis ,  Yogendra C. Shah ,  Inhyok Cha

发明人： Louis J. Guccione ,  Yevgeniy Dodis ,  Yogendra C. Shah ,  Inhyok Cha

IPC分类号： H04L9/00 ,  H04L29/06

CPC分类号： H04L63/0428 ,  H04L63/061 ,  H04W12/02 ,  H04W12/04 ,  H04W88/02

摘要： A method and apparatus for securing the interface between a Universal Integrated Circuit Card (UICC) and a Terminal in wireless communications is disclosed. The security of Authentication and Key Agreement (AKA) and application level generic bootstrapping architecture (GBA) with UICC-based enhancements (GBA_U) procedures is improved. A secure shared session key is used to encrypt communications between the UICC and the Terminal. The secure shared session key generated using authenticating or non-authenticating procedures.

摘要翻译： 公开了一种在无线通信中用于固定通用集成电路卡（UICC）和终端之间的接口的方法和装置。 基于UICC的增强（GBA_U）程序的身份验证和密钥协商（AKA）和应用级通用引导体系结构（GBA）的安全性得到了改进。 安全的共享会话密钥用于加密UICC和终端之间的通信。 使用验证或非验证过程产生的安全共享会话密钥。

公开(公告)号：US20090307487A1

公开(公告)日：2009-12-10

申请号：US12297966

申请日：2007-04-23

申请人： Sasidhar Movva ,  Richard D. Herschaft ,  Renuka Racha ,  Inhyok Cha

发明人： Sasidhar Movva ,  Richard D. Herschaft ,  Renuka Racha ,  Inhyok Cha

IPC分类号： H04L9/00

CPC分类号： G06F21/57

摘要： The present application discloses a method and apparatus for using trusted platform modules (TPM) for integrity measurements of multiple subsystems. The state of the platform configuration registers (PCR) after boot up are stored as the base state of the system. Base state in this context is defined as the state of the system when the startup of the system is complete and can only be changed when new software is loaded at the kernel level. This state itself can be reported to challengers who are interested in verifying the integrity of the operating system. Also disclosed is a method where the application that is to be verified, requests that its state be extended from the base state of the system. When such a request is received, the state of the system is extended directly from the base state PCR contents and not from the system state.

摘要翻译： 本申请公开了一种使用可信平台模块（TPM）进行多个子系统的完整性测量的方法和装置。 启动后的平台配置寄存器（PCR）的状态作为系统的基本状态存储。 在此上下文中的基本状态被定义为系统启动完成时系统的状态，只有在内核级别加载新软件时才能更改该状态。 该状态本身可以向有兴趣验证操作系统完整性的挑战者报告。 还公开了一种方法，其中待验证的应用程序请求其状态从系统的基本状态扩展。 当接收到这样的请求时，系统的状态直接从基本状态PCR内容扩展，而不是从系统状态扩展。

公开(公告)号：US20080089518A1

公开(公告)日：2008-04-17

申请号：US11871683

申请日：2007-10-12

申请人： Alexander Reznik ,  Alain Briancon ,  Yevgeniy Dodis ,  Yogendra Shah ,  Chunxuan Ye ,  Robert DiFazio ,  Inhyok Cha

发明人： Alexander Reznik ,  Alain Briancon ,  Yevgeniy Dodis ,  Yogendra Shah ,  Chunxuan Ye ,  Robert DiFazio ,  Inhyok Cha

IPC分类号： H04L9/20

CPC分类号： H04W12/04 ,  H04L9/065 ,  H04L9/0869 ,  H04L9/0875 ,  H04L63/0457 ,  H04L2209/08 ,  H04L2209/80 ,  H04W12/02

摘要： A secret stream of bits begins by receiving a public random stream contained in a wireless communication signal at a transmit/receive unit. The public random stream is sampled and specific bits are extracted according to a shared common secret. These extracted bits are used to create a longer secret stream. The shared common secret may be generated using JRNSO techniques, or provided to the transmit/receive units prior to the communication session. Alternatively, one of the transmit/receive unit is assumed to be more powerful than any potential eavesdropper. In this situation, the powerful transmit/receive unit may broadcast and store a public random stream. The weaker transmit/receive unit selects select random bits of the broadcast for creating a key. The weaker transmit/receive unit sends the powerful transmit/receive unit the selected bit numbers, and powerful transmit/receive unit uses the random numbers to produce the key created by the weaker transmit/receive unit.

摘要翻译： 秘密的比特流开始于在发送/接收单元处接收包含在无线通信信号中的公共随机流。 公共随机流被采样，并且根据共享的公共秘密提取特定位。 这些提取的比特用于创建更长的秘密流。 可以使用JRNSO技术生成共享公用秘密，或者在通信会话之前提供给发送/接收单元。 或者，假设发射/接收单元之一比任何潜在的窃听者更强大。 在这种情况下，强大的发送/接收单元可以广播和存储公共随机流。 较弱的发送/接收单元选择用于创建密钥的广播的选择随机比特。 较弱的发射/接收单元发送强大的发射/接收单元所选择的位号，强大的发射/接收单元使用随机数产生由较弱发射/接收单元产生的密钥。

公开(公告)号：US20080059804A1

公开(公告)日：2008-03-06

申请号：US11843517

申请日：2007-08-22

申请人： Yogendra Shah ,  Inhyok Cha ,  Alexander Reznik

发明人： Yogendra Shah ,  Inhyok Cha ,  Alexander Reznik

IPC分类号： H04L9/32 ,  G06F17/00 ,  G06F21/00

CPC分类号： H04L63/0442 ,  G06F21/41 ,  H04L63/0815 ,  H04L63/083 ,  H04L63/0884

摘要： A method and apparatus for password management and single sign-on (SSO) access based on trusted computing (TC) technology. The methods implement the Trusted Computing Group (TCG)'s trusted platform module (TPM), which interacts with both proxy SSO unit and web-accessing applications to provide a secure, trusted mechanism to generate, store, and retrieve passwords and SSO credentials. The various embodiments of the present invention allow a user to hop securely and transparently from one site to another that belong to a pre-identified group of sites, after signing on just once to a secured proxy residing at the user's device.

摘要翻译： 一种基于可信计算（TC）技术的密码管理和单点登录（SSO）访问的方法和装置。 该方法实施了可信计算组（TCG）的可信平台模块（TPM），该平台模块与代理SSO单元和Web访问应用程序进行交互，以提供安全可靠的机制来生成，存储和检索密码和SSO凭据。 本发明的各种实施例允许用户在仅驻留在用户设备上的安全代理器一次登录之后，从属于预先识别的站点组的一个站点到另一站点安全地和透明地跳转。

公开(公告)号：US20070211671A1

公开(公告)日：2007-09-13

申请号：US11684177

申请日：2007-03-09

申请人： Inhyok Cha

发明人： Inhyok Cha

IPC分类号： H04B7/216

CPC分类号： H04B7/2637 ,  H04W74/0866

摘要： A method and apparatus for a flexible physical random access channel (PRACH) preamble are disclosed. A wireless transmit/receive unit (WTRU) transmits a PRACH preamble generated by using a scrambling code and a signature code to a Node B to access the channel. The WTRU incorporates PRACH access information and preamble channel resources into the preamble, thereby providing flexibility and efficiency in transmission of the PRACH preamble. The method and apparatus may also be applied to an acquisition indicator channel preamble, a high speed uplink packet access channel preamble, an orthogonal frequency division multiplexing preamble, or an orthogonal frequency division multiple access preamble.

摘要翻译： 公开了一种用于灵活物理随机接入信道（PRACH）前导码的方法和装置。 无线发射/接收单元（WTRU）通过使用扰码和签名码将节点B发送的PRACH前导码发送到节点B以访问该信道。 WTRU将PRACH接入信息和前导信道资源合并到前导码中，从而提供PRACH前导码的传输中的灵活性和效率。 该方法和装置还可以应用于采集指示符信道前导码，高速上行链路分组接入信道前导码，正交频分复用前导码或正交频分多址前同步码。

公开(公告)号：US07200376B2

公开(公告)日：2007-04-03

申请号：US11080039

申请日：2005-03-15

申请人： Inhyok Cha ,  Zheng Zhao ,  Thomas Eric Gorsuch ,  Ross L. Lintelman

发明人： Inhyok Cha ,  Zheng Zhao ,  Thomas Eric Gorsuch ,  Ross L. Lintelman

IPC分类号： H04B1/06

CPC分类号： H04B7/0617 ,  H04B7/0408 ,  H04B7/0695 ,  Y02D70/142 ,  Y02D70/20 ,  Y02D70/444

摘要： A smart antenna steering algorithm operates in response to different functions monitored by the media access control (MAC) layer within a client station. One function is when the MAC layer indicates that the client station has been placed in a power savings mode. In response, the antenna algorithm stores an index of the currently selected antenna. Another function is when the MAC layer indicates that the client station has not been synchronized, associated and authenticated with an access point. In response, the algorithm selects an omni-directional antenna beam as the default antenna beam. Another function is when the MAC layer provides beacon period synchronization information to the antenna steering algorithm so that the algorithm can update its own timer.

摘要翻译： 智能天线导向算法响应于由客户站内的媒体访问控制（MAC）层监视的不同功能而工作。 一个功能是当MAC层指示客户端站已经处于省电模式时。 作为响应，天线算法存储当前选择的天线的索引。 另一个功能是当MAC层指示客户端站未被同步，与接入点关联和认证时。 作为响应，该算法选择全向天线波束作为默认天线波束。 另一个功能是当MAC层向天线导向算法提供信标周期同步信息时，算法可以更新自己的定时器。

公开(公告)号：US20060270343A1

公开(公告)日：2006-11-30

申请号：US11400400

申请日：2006-04-06

申请人： Inhyok Cha ,  Eldad Zeira ,  Keith Baldwin

发明人： Inhyok Cha ,  Eldad Zeira ,  Keith Baldwin

IPC分类号： H04B7/14

CPC分类号： H04B7/0413 ,  H04B7/0695 ,  H04B7/088

摘要： A method and apparatus for selecting an antenna mapping in multiple-in/multiple-out (MIMO) enabled wireless communication networks. A candidate set of currently available antenna mappings is determined based upon measured long term channel conditions. An antenna mapping is selected from the candidate set, and the mapping is calibrated with a selected antenna mapping of a receiving wireless transmit/receive unit (WTRU). When the selected mappings are calibrated, packet data transmission begins. In an alternative embodiment, a calibration training frame (CTF) is used to calibrate multiple antenna mappings simultaneously or sequentially. Also disclosed are physical layer and medium access control layer frame formats for implementing antenna mapping selection according to the invention.