利索-全球专利检索

  1. 登录
  2. 注册

搜索结果

89 条记录 (耗时 0.027 秒)

    Distribution and authentication of public keys using random numbers and diffie-hellman public keys
    62.
    发明授权
    Distribution and authentication of public keys using random numbers and diffie-hellman public keys 失效
    使用随机数字和diffie-hellman公钥对公钥进行分发和认证

    公开(公告)号:US07796761B2

    公开(公告)日:2010-09-14

    申请号:US12352658

    申请日:2009-01-13

    申请人: Mohammad Peyravian Allen Leonid Roginsky Nevenko Zunic

    发明人: Mohammad Peyravian Allen Leonid Roginsky Nevenko Zunic

    IPC分类号: H04L9/00

    CPC分类号: H04L9/3013 H04L9/0844

    摘要: A system to exchange and authenticate public cryptographic keys between parties that share a common but secret password, using a pair of random numbers, a pair of Diffie-Hellman public keys computed from the random numbers and the password, a Diffie-Hellman symmetric secret key computed from the Diffie-Hellman public keys and the random numbers, and hashed values of arguments that depend upon these elements.

    摘要翻译: 使用一对随机数,根据随机数和密码计算的一对Diffie-Hellman公钥来交换和认证共享公共密码的各方之间的公共密钥的系统,Diffie-Hellman对称密钥 根据Diffie-Hellman公钥和随机数计算出的散列值,并根据这些元素的参数进行散列。

    Method for distributing and authenticating public keys using time ordered exchanges
    63.
    发明授权
    Method for distributing and authenticating public keys using time ordered exchanges 失效
    使用时间排序交换分发和认证公钥的方法

    公开(公告)号:US07607009B2

    公开(公告)日:2009-10-20

    申请号:US10361515

    申请日:2003-02-10

    申请人: Mohammad Peyravian Allen Leonid Roginsky Nevenko Zunic

    发明人: Mohammad Peyravian Allen Leonid Roginsky Nevenko Zunic

    IPC分类号: H04L29/06

    CPC分类号: H04L9/3226 H04L9/0825 H04L9/3236

    摘要: A method to exchange and authenticate public cryptographic keys between parties that share a common but secret password. The parties exchange public keys, where the public keys are accompanied by hashed values based on the keys, the password, and random numbers. Each party then encrypts its random number using the public key of the other party, and the encryptions are exchanged. Based on the received encryptions and the known password, each party then re-computes the hashed value received from the other party, and compares the re-computed hashed value with the received hashed value. If the two are the same, the public key that accompanied the hashed value is judged authentic.

    摘要翻译: 一种交换和验证共享密码密码的各方之间的公钥加密密钥的方法。 双方交换公钥,其中公钥基于密钥,密码和随机数字伴随散列值。 每一方然后使用另一方的公钥对其随机数进行加密,并交换加密。 根据接收到的加密和已知密码,每一方然后重新计算从另一方接收的散列值,并将重新计算的散列值与接收到的散列值进行比较。 如果两者相同,伴随散列值的公钥被判断为真实的。

    Generating user-dependent keys and random numbers
    64.
    发明授权
    Generating user-dependent keys and random numbers 失效
    生成与用户相关的键和随机数

    公开(公告)号:US06687375B1

    公开(公告)日:2004-02-03

    申请号:US09324418

    申请日:1999-06-02

    申请人: Stephen Michael Matyas, Jr. Mohammad Peyravian Allen Leonid Roginsky Nevenko Zunic

    发明人: Stephen Michael Matyas, Jr. Mohammad Peyravian Allen Leonid Roginsky Nevenko Zunic

    IPC分类号: H04L900

    CPC分类号: H04L9/0866

    摘要: Methods, systems and computer program products are provided which generate a cryptographic key utilizing user specific information to generate a user dependent key. The user specific information may be a user identification or biometric information associated with a user. In particular embodiments of the present invention a seed value is modified with biometric information to generate a user dependent key value. In alternative embodiments a key value is hashed with user specific information or user specific information is hashed and then combined with the key value to generate the user dependent key value. In still another embodiment of the present invention the space of potential key values is divided into subspaces and the subspaces assigned based on user specific information. A key value is then generated from the assigned subspace. Thus, the generated key values for different users are guaranteed to be disjoint.

    摘要翻译: 提供方法,系统和计算机程序产品,其产生利用用户特定信息生成用户依赖密钥的加密密钥。 用户特定信息可以是与用户相关联的用户标识或生物特征信息。 在本发明的特定实施例中,使用生物特征信息修改种子值以生成用户依赖关键值。 在替代实施例中,使用用户特定信息散布密钥值,或者将用户特定信息散列,然后与密钥值组合以生成用户依赖密钥值。 在本发明的另一个实施例中,潜在密钥值的空间被划分为子空间和基于用户特定信息分配的子空间。 然后从分配的子空间生成键值。 因此,不同用户的生成键值被保证是不相交的。

    Decentralized systems methods and computer program products for sending secure messages among a group of nodes
    65.
    发明授权
    Decentralized systems methods and computer program products for sending secure messages among a group of nodes 失效
    用于在一组节点之间发送安全消息的分布式系统方法和计算机程序产品

    公开(公告)号:US06363154B1

    公开(公告)日:2002-03-26

    申请号:US09181631

    申请日:1998-10-28

    申请人: Mohammad Peyravian Stephen Michael Matyas, Jr. Nevenko Zunic

    发明人: Mohammad Peyravian Stephen Michael Matyas, Jr. Nevenko Zunic

    IPC分类号: H04L908

    CPC分类号: H04L9/0869 H04L9/0822 H04L9/0827 H04L63/0428 H04L63/065 H04L63/0823

    摘要: Secure messages are sent among a group of nodes selected from a plurality of nodes that are connected to a communications network, by defining a random secret key at a first one of the group of nodes. The random secret key is sent from the first one of the group nodes to remaining ones of the group of nodes. A random number is generated at a second one of the group of nodes. A one-way hash of the random number and the random secret key is performed at the second one of the group of nodes to generate a working key. A message is encrypted at the second one of the group of nodes, using the working key. The encrypted message and the random number is sent from the second one of the group of nodes to remaining ones of the group of nodes. The encrypted message and the random number are received at the remaining ones of the group of nodes. Each of the remaining ones of the group of nodes performs a one-way hash of the random number and the random secret key, to regenerate the working key. The message is then decrypted using the regenerated working key. The secret key may be defined at any one of the group of nodes rather than a predefined, centralized key distribution center. Moreover, the random number may be generated at any one of the group of nodes that desires to communicate an encrypted message to remaining ones of the group of nodes. Decentralized group key management is thereby provided.

    摘要翻译: 通过在节点组中的第一组定义随机密钥,在从连接到通信网络的多个节点中选择的一组节点中发送安全消息。 随机秘密密钥从组节点中的第一组发送到该组节点中的剩余组。 在该组节点中的第二组生成随机数。 在该组节点中的第二个节点处执行随机数和随机密钥的单向散列以产生工作密钥。 使用工作密钥在一组节点的第二个节点上加密消息。 加密的消息和随机数从节点组中的第二组发送到该组节点中的剩余组。 加密消息和随机数在节点组中的其余部分被接收。 节点组中的剩余的每个节点执行随机数和随机秘密密钥的单向散列,以重新生成工作密钥。 然后使用重新生成的工作密钥对消息进行解密。 秘密密钥可以被定义在该组节点中的任何一个而不是预定义的集中式密钥分发中心。 此外,随机数可以在期望将加密消息传递到该组节点中的剩余的一组节点中的任何一个节点处生成。 从而提供了分散的密钥管理。

    Method and apparatus for verifiably providing key recovery information in a cryptographic system
    67.
    发明授权
    Method and apparatus for verifiably providing key recovery information in a cryptographic system 失效
    用于在加密系统中可验证地提供密钥恢复信息的方法和装置

    公开(公告)号:US5907618A

    公开(公告)日:1999-05-25

    申请号:US775348

    申请日:1997-01-03

    申请人: Rosario Gennaro Paul Ashley Karger Stephen Michael Matyas, Jr. Mohammad Peyravian David Robert Safford Nevenko Zunic

    发明人: Rosario Gennaro Paul Ashley Karger Stephen Michael Matyas, Jr. Mohammad Peyravian David Robert Safford Nevenko Zunic

    IPC分类号: H04L9/08 H04L9/00

    CPC分类号: H04L9/0841 H04L9/0894

    摘要: A method and apparatus for verifiably providing key recovery information to one or more trustees in a cryptographic communication system having a sender and a receiver Each communicating party has its own Diffie-Hellman key pair comprising a secret value and corresponding public value, as does each trustee The sender non-interactively generates from its own secret value and the public value held by the receiver a first shared Diffie-Hellman key pair comprising a first shared secret value, shared with the receiver but not with any trustee, and a corresponding public value. For each trustee, the sender then non-interactively generates an additional shared secret value, shared with the receiver and the trustee, from the first shared secret value and the public value corresponding to the secret value held by the trustee. The sender uses the additional shared secret value to encrypt recovery information for each trustee, which is transmitted to the receiver along with the encrypted message. Each trustee can decrypt its recovery information by regenerating its additional shared secret value from its own secret value and the public value of the first shared Diffie-Hellman key pair. The receiver can verify the correctness of the recovery information for each trustee by decrypting the information using the additional shared secret value for that trustee, without having to recreate the recovery information or perform computationally expensive public key operations.

    摘要翻译: 一种用于在具有发送者和接收者的密码通信系统中可验证地向一个或多个受托人提供密钥恢复信息的方法和装置。每个通信方都有自己的Diffie-Hellman密钥对,包括秘密值和对应的公共价值,每个受托人 发送方从其自己的秘密值和由接收者持有的公开值不交互地生成包括与接收者共享但不与任何受托人共享的第一共享秘密值的第一共享Diffie-Hellman密钥对以及相应的公共值。 对于每个受托人,发件人然后从第一共享秘密值和与受托人​​所持有的秘密值相对应的公共价值非交互地生成与接收方和受托人共享的附加共享秘密值。 发送方使用额外的共享秘密值来加密每个受信任者的恢复信息,这些信息与加密消息一起发送到接收者。 每个受托人可以通过从其自己的秘密值和第一个共享的Diffie-Hellman密钥对的公共值重新生成其附加的共享秘密值来解密其恢复信息。 接收方可以通过使用该受托人的附加共享秘密值解密信息来验证每个受托人的恢复信息的正确性,而无需重新创建恢复信息或执行计算上昂贵的公钥操作。

    Programmatically selecting a service provider based on assured quality of service attributes
    70.
    发明授权
    Programmatically selecting a service provider based on assured quality of service attributes 有权
    基于确保的服务质量属性,以编程方式选择服务提供商

    公开(公告)号:US08868709B2

    公开(公告)日:2014-10-21

    申请号:US13099529

    申请日:2011-05-03

    申请人: Tamer Aboualy Omkharan Arasaratnam Stewart Wolfe Nevenko Zunic

    发明人: Tamer Aboualy Omkharan Arasaratnam Stewart Wolfe Nevenko Zunic

    IPC分类号: G06F15/173 G06F9/50 H04L12/24 H04L29/08 H04L29/06

    CPC分类号: G06F9/5055 H04L41/5003 H04L41/5067 H04L41/509 H04L63/0823 H04L65/4084 H04L67/322

    摘要: A method including querying a service provider for functional and nonfunctional qualifications of the service provider to provide a service having functional and nonfunctional requirements; responsive to input from the service provider, receiving by a requestor the functional qualifications and nonfunctional qualifications of the service provider including attesting by a third party, not the service provider or requestor, to at least the nonfunctional qualifications of the service provider; evaluating the functional qualifications and attested to nonfunctional qualifications of the service provider; and selecting a service provider having functional and attested to nonfunctional qualifications complying with the functional and nonfunctional requirements of the requestor. The method may be performed on one or more computing devices. Also disclosed is a computer program product.

    摘要翻译: 一种方法,包括:查询服务提供商以获得服务提供者的功能和非功能资格,以提供具有功能和非功能性要求的服务; 响应于来自服务提供商的输入,请求者接收服务提供商的功能资格和非功能性资格,包括第三方(而不是服务提供商或请求者)向至少服务提供商的非功能资格认证; 评估职能资格并证明服务提供者的非功能资格; 以及选择具有符合请求者的功能和非功能性要求的功能和证明为非功能资格的服务提供商。 该方法可以在一个或多个计算设备上执行。 还公开了一种计算机程序产品。