公开(公告)号：US12041136B2

公开(公告)日：2024-07-16

申请号：US18320397

申请日：2023-05-19

Applicant: INTEGRITY Security Services LLC

Inventor： Neil Locketz

IPC: H04L67/142 ,  H04L9/40 ,  H04L67/56

CPC classification number: H04L67/142 ,  H04L63/0869 ,  H04L67/56

Abstract: A system for facilitating a plurality of virtual transmission control protocol connections between a target application and a source application is provided. The system includes a server proxy, a client proxy, and a network protection interposed between the server proxy and the client proxy. The server proxy is configured to receive an open request from the client proxy via a stateless protocol, including a target identifier, the open request originating from the source application, open a connection between the server proxy and the target application based on the target identifier, provide a response to the client proxy indicating a status of the open request, the response including at least one of a session identifier or a sequence identifier, receive, a data request from the client proxy, including the session identifier and an incremented sequence identifier, and provide the data request to the target application.

公开(公告)号：US20240171564A1

公开(公告)日：2024-05-23

申请号：US18328054

申请日：2023-06-02

Applicant: INTEGRITY Security Services LLC

Inventor： Daniel R. Fynaardt

IPC: H04L9/40 ,  G06F9/54

CPC classification number: H04L63/0823 ,  G06F9/547 ,  H04L63/0884 ,  H04L63/102 ,  H04L9/3263

Abstract: A system can include a certificate application programming interface (API) device that is operable to receive, via an application programming interface (API), an enrollment request for the at least one computerized device. The certificate API device can also generate, via the API, an enrollment package and an end entity certificate package for the at least one computerized device by obtaining the enrollment package and the end entity certificate package from a certificate management service (CMS). The certificate API device can also transmit, via the API, the enrollment package and the end entity certificate package to the at least one computerized device. The system can also include the CMS that is operable to provide the enrollment package and the end entity certificate package to the certificate API device.

公开(公告)号：US20230370287A1

公开(公告)日：2023-11-16

申请号：US18226351

申请日：2023-07-26

Applicant: INTEGRITY SECURITY SERVICES LLC

Inventor： Daniel R. Fynaardt ,  William L. Lattin ,  Gregory Powell

IPC: H04L9/32 ,  H04L9/40 ,  H04W12/06 ,  H04L41/0806 ,  H04L41/5041 ,  H04W12/30 ,  H04L67/02 ,  H04L67/12 ,  G06F16/22 ,  H04L67/306 ,  H04W4/44

CPC classification number: H04L9/3268 ,  H04L63/20 ,  H04W12/06 ,  H04L41/0806 ,  H04L63/00 ,  H04L41/5041 ,  H04W12/35 ,  H04L63/0823 ,  H04L67/02 ,  H04L63/166 ,  H04L67/12 ,  G06F16/22 ,  H04L67/306 ,  H04L2209/80 ,  H04W4/44 ,  H04L2209/84

Abstract: A system for securely provisioning a plurality of computerized devices of a tenant, is provided. The system includes a processor, and a computer storage medium including instructions that when executed by the processor cause the processor to perform operations. The operations include receiving provisioning requests from the plurality of computerized devices needing certificates, each provisioning request indicating a tenant identifier identifying the tenant, and transmitting the provisioning requests to a set of security credential management system backend components based on the tenant identifier. The set of SCMS backend components includes enrollment certificate authorities operable to generate enrollment certificates, each provisioning request being transmitted to one of the one or more enrollment certificate authorities based on the tenant identifier of each provisioning request, and a pseudonym certificate authority operable to generate digital assets in response to receiving a provisioning request.

公开(公告)号：US20230291803A1

公开(公告)日：2023-09-14

申请号：US18320397

申请日：2023-05-19

Applicant: INTEGRITY Security Services LLC

Inventor： Neil Locketz

IPC: H04L67/142 ,  H04L9/40 ,  H04L67/56

CPC classification number: H04L67/142 ,  H04L63/0869 ,  H04L67/56

Abstract: A system for facilitating a plurality of virtual transmission control protocol connections between a target application and a source application is provided. The system includes a server proxy, a client proxy, and a network protection interposed between the server proxy and the client proxy. The server proxy is configured to receive an open request from the client proxy via a stateless protocol, including a target identifier, the open request originating from the source application, open a connection between the server proxy and the target application based on the target identifier, provide a response to the client proxy indicating a status of the open request, the response including at least one of a session identifier or a sequence identifier, receive, a data request from the client proxy, including the session identifier and an incremented sequence identifier, and provide the data request to the target application.

公开(公告)号：US20220368766A1

公开(公告)日：2022-11-17

申请号：US17580720

申请日：2022-01-21

Applicant: INTEGRITY Security Services LLC

Inventor： Neil Locketz

IPC: H04L67/142 ,  H04L67/56

Abstract: A system for facilitating a plurality of virtual transmission control protocol connections between a target application and a source application is provided. The system includes a server proxy, a client proxy, and a network protection interposed between the server proxy and the client proxy. The server proxy is configured to receive an open request from the client proxy via a stateless protocol, including a target identifier, the open request originating from the source application, open a connection between the server proxy and the target application based on the target identifier, provide a response to the client proxy indicating a status of the open request, the response including at least one of a session identifier or a sequence identifier, receive, a data request from the client proxy, including the session identifier and an incremented sequence identifier, and provide the data request to the target application.

公开(公告)号：US20220038296A1

公开(公告)日：2022-02-03

申请号：US17503784

申请日：2021-10-18

Applicant: INTEGRITY SECURITY SERVICES LLC

Inventor： Daniel R. Fynaardt ,  William L. Lattin ,  Gregory Powell

IPC: H04L9/32 ,  H04L29/06 ,  H04L12/24 ,  H04W12/06 ,  H04W12/30

Abstract: A system for securely provisioning a plurality of computerized devices of a tenant, is provided. The system includes a processor, and a computer storage medium including instructions that when executed by the processor cause the processor to perform operations. The operations include receiving provisioning requests from r the plurality of computerized devices needing certificates, each provisioning request indicating a tenant identifier identifying the tenant, and transmitting the provisioning requests to a set of security credential management system backend components based on the tenant identifier. The set of SCMS backend components includes enrollment certificate authorities operable to generate enrollment certificates, each provisioning request being transmitted to one of the one or more enrollment certificate authorities based on the tenant identifier of each provisioning request, and a pseudonym certificate authority operable to generate digital assets in response to receiving a provisioning request.

公开(公告)号：US20210336989A1

公开(公告)日：2021-10-28

申请号：US17316259

申请日：2021-05-10

Applicant: INTEGRITY Security Services LLC

Inventor： Erik S. Schetina

IPC: H04L29/06 ,  H04W12/08 ,  H04W12/02 ,  H04W12/06 ,  H04W4/44

Abstract: Disclosed herein are systems, methods and devices system for identifying a misbehaving computerized device. In some implementations, the system includes a processor to perform operations including receiving, by the system, a report about a computerized device, wherein the report comprises a pseudonym certificate from the computerized device, and wherein the pseudonym certificate comprises a linkage value. The operations also include transmitting, by the system and to a cloaking authority device, a request for a cloak index, wherein the request for the cloak index comprises the linkage value from the pseudonym certificate from the computerized device. The operations also include receiving, by the system, the cloak index from the cloaking authority device, and determining, by the system and using the cloak index, that the computerized device is the misbehaving computerized device.

公开(公告)号：US11080413B2

公开(公告)日：2021-08-03

申请号：US17077308

申请日：2020-10-22

Applicant: INTEGRITY Security Services LLC

Inventor： Alan T. Meyer ,  Cameron Durham

IPC: G06F21/62 ,  G06F21/60 ,  G06F3/12

Abstract: A system for securely producing and using high-entropy security information, such as a password. The system includes a printer, a display device, and a generator computer that is connected to the printer and the display device. The generator computer generates the high-entropy set of characters, (e.g., password), and also generates a machine-readable representation of the high-entropy set of characters, (e.g., a barcode). The generator computer causes the printer to print the high-entropy set of characters and the machine-readable representation on paper, and then deletes the high-entropy set of characters and the machine-readable representation from the system. The high-entropy set of characters, (e.g., password), may be entered into a target computer by scanning the barcode on the paper using a barcode scanner connected to the target computer, which is significantly faster than, and eliminates the human error associated with, typing in a high-entropy set of characters.

公开(公告)号：US20210176048A1

公开(公告)日：2021-06-10

申请号：US17156859

申请日：2021-01-25

Applicant: INTEGRITY Security Services LLC

Inventor： Neil Locketz

IPC: H04L9/06 ,  G06F8/65

Abstract: A system includes a campaign management service to detect a campaign initiation request indicating a number of computerized devices to be updated for a campaign and store data corresponding to the computerized devices to be updated. The campaign management service can generate a filter data structure comprising hash values based on the data for each of the computerized devices to be updated and transmit the filter data structure to a network edge. The system can include the network edge that can use the filter data structure from the campaign management service to determine whether a computerized device is to obtain a device update from the campaign management service. The network edge can retrieve the device update and modify the computerized device by transmitting the device update to the computerized device, which then installs it.

公开(公告)号：US11005885B2

公开(公告)日：2021-05-11

申请号：US16788529

申请日：2020-02-12

Applicant: INTEGRITY Security Services LLC

Inventor： Erik S. Schetina

IPC: H04L9/00 ,  H04L29/06 ,  H04W12/08 ,  H04W12/02 ,  H04W12/06 ,  H04W4/44

Abstract: Disclosed herein are systems, methods and devices system for identifying a misbehaving computerized device. In some implementations, the system includes a processor to perform operations including receiving, by the system, a report about a computerized device, wherein the report comprises a pseudonym certificate from the computerized device, and wherein the pseudonym certificate comprises a linkage value. The operations also include transmitting, by the system and to a cloaking authority device, a request for a cloak index, wherein the request for the cloak index comprises the linkage value from the pseudonym certificate from the computerized device. The operations also include receiving, by the system, the cloak index from the cloaking authority device, and determining, by the system and using the cloak index, that the computerized device is the misbehaving computerized device.