公开(公告)号：US10673626B2

公开(公告)日：2020-06-02

申请号：US16237542

申请日：2018-12-31

申请人： SPYRUS, Inc.

发明人： William Sandberg-Maitland ,  Burton George Tregub

IPC分类号： H04L9/08 ,  H04L9/32 ,  G06F16/182 ,  H04L9/06

摘要： For an encryption-protected decentralized and replicated blockchain file storage system maintained and managed by a channel of peers, the invention creates the additional levels of trust that are needed for peer voter authentication and transaction proposal endorsement. The invention effectively excludes hostile agents from influencing or impersonating legitimate voter peers through the mathematical strength of the K-of-N mechanism based on secret sharing with cryptographic hashing. In a further embodiment an extension to nested signatures is disclosed to enforce signing order.

公开(公告)号：US09742561B2

公开(公告)日：2017-08-22

申请号：US15462697

申请日：2017-03-17

申请人： Spyrus, Inc.

发明人： Michael Perretta ,  Burton Tregub

IPC分类号： H04L9/08 ,  H04L9/06 ,  H04L9/14 ,  H04L29/06 ,  H04L9/32 ,  H04L9/30

CPC分类号： H04L9/085 ,  G06F21/44 ,  G06F21/575 ,  G06F21/606 ,  H04L9/0643 ,  H04L9/14 ,  H04L9/30 ,  H04L9/32 ,  H04L9/3231 ,  H04L63/083 ,  H04L63/0861 ,  H04L63/0876 ,  H04L2209/601

摘要： A method for authentication of a computing device so that shares of a secret may be delivered, over a network that uses a communications protocol which does not require use of an address, and on which an authentication server is listening, comprising the steps of dividing the secret into a first share and a second share, or more; destroying the secret; transmitting the second share, together with a unique identifier, out of band to a pre-designated location; erasing the second share from the computing device; storing the first share at the computing device; broadcasting the unique identifier over the network; accepting a request over the network from an authentication server to initiate an authentication protocol; responding to the request; receiving the second share from the authentication server; and reconstructing the secret using the received second share and the stored first share.

公开(公告)号：US09521123B2

公开(公告)日：2016-12-13

申请号：US14697900

申请日：2015-04-28

申请人： Spyrus, Inc.

发明人： Robert R. Jueneman ,  Duane J. Linsenbardt ,  John N. Young ,  William Reid Carlisle ,  Burton George Tregub

IPC分类号： G06F21/32 ,  H04L29/06 ,  G06F21/62 ,  G06F21/72 ,  H04L9/08 ,  H04L9/32 ,  H04W12/04 ,  H04W12/06 ,  H04W12/02

CPC分类号： H04L63/0428 ,  G06F21/32 ,  G06F21/6218 ,  G06F21/72 ,  G06F2221/2113 ,  G06F2221/2153 ,  H04L9/0816 ,  H04L9/0822 ,  H04L9/085 ,  H04L9/0861 ,  H04L9/0877 ,  H04L9/3226 ,  H04L63/061 ,  H04L63/0876 ,  H04L2209/24 ,  H04L2209/80 ,  H04W12/02 ,  H04W12/04 ,  H04W12/06

摘要： A method for encryption and sealing of a plaintext file by hashing the plaintext file to produce a plaintext hash, encrypting the plaintext file to produce ciphertext, hashing the ciphertext to produce a ciphertext hash, hashing the plaintext hash and the ciphertext hash to produce a result hash, and sealing the ciphertext together with the result hash. This provides verification for non-repudiation and protects against undetected malware corrupting the plaintext or ciphertext files.

摘要翻译： 通过散列明文文件产生明文哈希，对明文文件进行加密以产生密文，对明文文件进行加密和密封的方法，对密文进行散列以产生密文散列，散列明文散列和密文哈希生成结果 哈希和密码与结果哈希一起。 这提供了不可否认性的验证，并防止未检测到的恶意软件破坏明文或密文文件。

公开(公告)号：US10447486B2

公开(公告)日：2019-10-15

申请号：US16039335

申请日：2018-07-19

申请人： SPYRUS, Inc.

发明人： Daniel Elvio Turissini ,  William Reid Carlisle ,  Burton George Tregub

IPC分类号： H04L29/06 ,  H04L9/32 ,  H04L9/08 ,  G06F21/00 ,  G09C1/00

摘要： A method by which a hardware security module can attest remotely to its measure of trust as determined by its security certifications and the Level of Assurance it can be relied on to support without the human witnessing elements that are currently used to validate this trust. In a further embodiment the Level of Assurance can be transported to a second hardware security module.

公开(公告)号：US09049010B2

公开(公告)日：2015-06-02

申请号：US13650459

申请日：2012-10-12

申请人： Spyrus, Inc.

发明人： Robert R. Jueneman ,  Duane J. Linsenbardt ,  John N. Young ,  William Reid Carlisle ,  Burton George Tregub

IPC分类号： H04L9/08 ,  G06F21/32 ,  G06F21/62 ,  G06F21/72 ,  H04L9/32 ,  H04W12/04 ,  H04W12/06 ,  H04W12/02

CPC分类号： H04L63/0428 ,  G06F21/32 ,  G06F21/6218 ,  G06F21/72 ,  G06F2221/2113 ,  G06F2221/2153 ,  H04L9/0816 ,  H04L9/0822 ,  H04L9/085 ,  H04L9/0861 ,  H04L9/0877 ,  H04L9/3226 ,  H04L63/061 ,  H04L63/0876 ,  H04L2209/24 ,  H04L2209/80 ,  H04W12/02 ,  H04W12/04 ,  H04W12/06

摘要： A portable encryption device with logon access controlled by an encryption key, with an on board cryptographic processor for reconstituting the encryption key from a plurality of secrets generated by a secret sharing algorithm, optionally shrouded with external secrets using an invertible transform resistant to quantum computing attacks. Another embodiment provides file decryption controlled by a file encryption key, with the on board cryptographic processor reconstituting the file encryption key from a version of the file encryption key which has been shrouded with a network authorization code. A method for encryption of a plaintext file by hashing, compressing, and encrypting the plaintext file, hashing the ciphertext, hashing the plaintext hash and the ciphertext hash, and sealing the ciphertext together with the resulting hash. A portable encryption device for performing the method is also disclosed.

摘要翻译： 具有由加密密钥控制的登录访问的便携式加密装置，具有板上加密处理器，用于从秘密共享算法生成的多个秘密中重构加密密钥，任选地使用可抵抗量子计算攻击的可逆转换覆盖外部秘密 。 另一实施例提供由文件加密密钥控制的文件解密，其中机载加密处理器从已经被网络授权码覆盖的文件加密密钥的版本重新构建文件加密密钥。 通过对明文文件进行散列，压缩和加密来对明文文件进行加密的方法，对密文进行散列，散列明文散列和密文散列，并将密文与所得到的哈希密封在一起。 还公开了一种用于执行该方法的便携式加密装置。