公开(公告)号：US07877605B2

公开(公告)日：2011-01-25

申请号：US11041223

申请日：2005-01-25

申请人： Yannis Labrou ,  Lusheng Ji ,  Jonathan Russell Agre ,  Jesus Molina Terriza

发明人： Yannis Labrou ,  Lusheng Ji ,  Jonathan Russell Agre ,  Jesus Molina Terriza

IPC分类号： H04L29/06

CPC分类号： G06Q10/10

摘要： A computer-based system securely transmitting and authenticating a transaction input by a user while retaining the anonymity of the user with respect to content of the transaction, including a device encoding the content of the transaction input by the user with a key known only to another device, encoding other portions of the transaction with another key known only to a secure transaction server, and sending the encoded content of the transaction and the encoded other portions of the transaction to the secure transaction server to authenticate an identity of the user of the device, wherein the secure transaction server decodes the other portions of the transaction and sends the encoded content of the transaction to the another device to be finally decoded.

摘要翻译： 一种基于计算机的系统，安全地传送和认证用户输入的交易，同时保留用户对交易内容的匿名性，包括用仅使用另一个知道的密钥来编码用户输入的交易内容的设备 设备，使用仅为安全事务服务器知道的另一密钥对事务的其他部分进行编码，以及将事务的编码内容和事务的编码的其他部分发送到安全事务服务器，以验证设备的用户的身份 其中所述安全事务服务器对所述事务的其他部分进行解码，并将所述事务的编码内容发送到所述另一设备以最终解码。

公开(公告)号：US08683059B2

公开(公告)日：2014-03-25

申请号：US11453074

申请日：2006-06-15

申请人： Jonathan Russell Agre ,  Jesus Molina-Terriza ,  Lusheng Ji ,  Prabha Ramachandran

发明人： Jonathan Russell Agre ,  Jesus Molina-Terriza ,  Lusheng Ji ,  Prabha Ramachandran

IPC分类号： G06F15/16 ,  G06F15/173

CPC分类号： H04L63/0263 ,  H04L63/104

摘要： A security management approach that combines network security management with application layer or software service security to address the threat of internal network security attacks. The invention is directed to a method for enhancing network security on a computer network. Data access privileges relating to users and services are interpreted, network access rules are determined based on the interpreted privileges, and network message traffic is monitored and filtered based on the determined network access rules. The interpreting, determining, monitoring, and filtering are performed at a network layer responsible for controlling how a network device gains access to the network, such as the Media Access Control (MAC) layer.

摘要翻译： 一种将网络安全管理与应用层或软件服务安全性相结合的安全管理方法，以解决内部网络安全攻击的威胁。 本发明涉及一种用于增强计算机网络上的网络安全性的方法。 解释与用户和服务相关的数据访问权限，基于解释的权限确定网络访问规则，并且基于所确定的网络访问规则来监视和过滤网络消息业务。 解释，确定，监视和过滤在负责控制网络设备如何获得对网络（例如媒体访问控制（MAC））层的访问的网络层执行。

公开(公告)号：US07822688B2

公开(公告)日：2010-10-26

申请号：US11045484

申请日：2005-01-31

申请人： Yannis Labrou ,  Lusheng Ji ,  Jonathan Russell Agre ,  Jesus Molina Terriza ,  Wei-lun Chen

发明人： Yannis Labrou ,  Lusheng Ji ,  Jonathan Russell Agre ,  Jesus Molina Terriza ,  Wei-lun Chen

IPC分类号： G06Q20/00

CPC分类号： G07F7/0866 ,  G06Q20/02 ,  G06Q20/04 ,  G06Q20/10 ,  G06Q20/102 ,  G06Q20/12 ,  G06Q20/32 ,  G06Q20/3227 ,  G06Q20/341 ,  G06Q20/3552 ,  G06Q20/363 ,  G06Q20/3674 ,  G06Q20/40 ,  G06Q20/401 ,  G07F7/0886 ,  G07F7/1008

摘要： A mobile phone system and method of initializing, at a secure transaction server (STS), a mobile payment software with a software authentication parameter, as an authentic mobile payment software; providing an STS correlation between a personal identification entry (PIE) and the authentic mobile payment software; installing, in a mobile phone, the authentic mobile payment software; and inputting, by a user, the PIE to the installed authentic mobile payment software to generate according to the PIE and the software authentication parameter a transformed secure authenticable mobile phone cashless monetary transaction over the mobile phone network, as a mobile phone wireless wallet of the user of the mobile phone. The mobile phone authenticable cashless monetary transaction is performed according to an agreement view(s) protocol.

摘要翻译： 一种移动电话系统和方法，在安全交易服务器（STS）下，具有软件认证参数的移动支付软件作为真正的移动支付软件; 在个人识别条目（PIE）和真实移动支付软件之间提供STS相关性; 在移动电话中安装真正的移动支付软件; 并且由用户将PIE输入到所安装的真实移动支付软件，以根据PIE和软件认证参数通过移动电话网络转换安全可认证的手机无现金货币交易，作为移动电话无线钱包 用户手机。 根据协议视图协议执行手机可认证的无现金货币交易。

公开(公告)号：US20070294416A1

公开(公告)日：2007-12-20

申请号：US11453074

申请日：2006-06-15

申请人： Jonathan Agre ,  Jesus Molina-Terriza ,  Lusheng Ji ,  Prabha Ramachandran

发明人： Jonathan Agre ,  Jesus Molina-Terriza ,  Lusheng Ji ,  Prabha Ramachandran

IPC分类号： G06F15/173 ,  G06F15/16

CPC分类号： H04L63/0263 ,  H04L63/104

摘要： A security management approach that combines network security management with application layer or software service security to address the threat of internal network security attacks. The invention is directed to a method for enhancing network security on a computer network. Data access privileges relating to users and services are interpreted, network access rules are determined based on the interpreted privileges, and network message traffic is monitored and filtered based on the determined network access rules. The interpreting, determining, monitoring, and filtering are performed at a network layer responsible for controlling how a network device gains access to the network, such as the Media Access Control (MAC) layer.

摘要翻译： 一种将网络安全管理与应用层或软件服务安全性相结合的安全管理方法，以解决内部网络安全攻击的威胁。 本发明涉及一种用于增强计算机网络上的网络安全性的方法。 解释与用户和服务相关的数据访问权限，基于解释的权限确定网络访问规则，并且基于所确定的网络访问规则来监视和过滤网络消息业务。 解释，确定，监视和过滤在负责控制网络设备如何获得对网络（例如媒体访问控制（MAC））层的访问的网络层执行。