公开(公告)号：US20100310077A1

公开(公告)日：2010-12-09

申请号：US12745590

申请日：2008-11-28

申请人： Jiping Sun ,  Yong Han

发明人： Jiping Sun ,  Yong Han

IPC分类号： H04L9/08 ,  H04L9/28

CPC分类号： H04L9/0825 ,  H04L9/3242 ,  H04L9/3263 ,  H04L2209/56

摘要： A method for generating a key pair and transmitting a public key or request file of a certificate in security is provided. Usually, when a user applies for a certificate, a public-private key pair is always generated by a client side; the public key is combined with the user information to form the certificate; the CA's signature enables validity of user's certificate. However, in other cases, the client side is not a perfectly secure environment, so the private key of the user generated from the client side may be filched by a hacker, or may be replaced by a forged public key. On this occasion, the hacker can disguise the user without being detected. The method of the present invention is to use an information security device to generate a public-private key pair, the private key is saved within the information security device; the public key can be exported; and the information security device can generate authentication information for verifying the public key. The CA can determine whether the public key is generated by the information security device or not by verifying the authentication information. By the method provided by the present invention, the security of online transactions can be ensured effectively.

摘要翻译： 提供了一种生成密钥对并以安全方式发送证书的公开密钥或请求文件的方法。 通常，当用户申请证书时，公钥 - 私钥对始终由客户端产生; 公钥与用户信息结合形成证书; CA的签名使用户的证书有效。 然而，在其他情况下，客户端不是完全安全的环境，因此从客户端生成的用户的私钥可能被黑客篡改，或者可以被伪造的公钥替换。 在这种情况下，黑客可以伪装用户，而不会被检测到。 本发明的方法是使用信息安全装置来生成公钥 - 私钥对，将私钥保存在信息安全装置内; 公钥可以出口; 并且信息安全装置可以生成用于验证公钥的认证信息。 CA可以通过验证认证信息来确定信息安全设备是否生成公钥。 通过本发明提供的方法，可以有效地确保在线交易的安全性。

公开(公告)号：US08782171B2

公开(公告)日：2014-07-15

申请号：US12176711

申请日：2008-07-21

申请人： Fakhreddine Karray ,  Jiping Sun

发明人： Fakhreddine Karray ,  Jiping Sun

IPC分类号： G06F15/16

CPC分类号： H04M3/4938 ,  H04M3/4211

摘要： A voice-enabled web portal system includes a web portal server and a call manager software module. The web portal server is operable to download data according to parameters of a web portal. The call manager software module is operable to accept a voice query from a user via telephone, to retrieve a portion of the downloaded data in response to the voice query, and to provide the portion of downloaded data to the user via telephone. A method of providing information from a web portal includes downloading data via a web portal according to parameters of the web portal at a predetermined time interval, filtering the downloaded data to produce portal information, and selectively providing portions of the portal information in response to a voice query.

摘要翻译： 具有语音功能的门户网站系统包括门户网站服务器和呼叫管理器软件模块。 门户网站服务器可操作以根据门户网站的参数下载数据。 呼叫管理器软件模块可操作以通过电话接收来自用户的语音查询，以响应于语音查询来检索下载的数据的一部分，并且通过电话向用户提供下载数据的一部分。 从网络门户提供信息的方法包括：以预定的时间间隔，根据门户网站的参数，经由门户网站下载数据，过滤下载的数据以产生门户信息;以及选择性地提供门户信息的部分以响应于 语音查询。

公开(公告)号：US20140032908A1

公开(公告)日：2014-01-30

申请号：US14111966

申请日：2012-02-23

申请人： Jiping Sun ,  Yong Han

发明人： Jiping Sun ,  Yong Han

IPC分类号： H04L29/06

CPC分类号： H04L63/0428 ,  H04L9/0891 ,  H04L63/061 ,  H04L63/1441

摘要： The present invention discloses a method for managing remote upgrading keys in an information security apparatus. A remote source apparatus generates key disabling data according to a divulged remote upgrading key and sends the key disabling data to the information security apparatus, and the information security apparatus performs the disabling operation on the divulged remote upgrading key according to the received key disabling data. Using the method disclosed in the present invention can prevent the information security apparatus from being maliciously attacked by malicious attackers by using the divulged remote upgrading key and through the remote upgrading process.

摘要翻译： 本发明公开了一种管理信息安全装置中的远程升级密钥的方法。 远程源设备根据泄漏的远程升级密钥生成密钥禁用数据，并将密钥禁止数据发送到信息安全设备，信息安全设备根据接收到的密钥禁止数据对泄密的远程升级密钥进行禁用操作。 通过使用本发明所公开的方法，可以防止信息安全装置利用泄漏的远程升级密钥和远程升级过程恶意攻击恶意攻击者。

公开(公告)号：US08533482B2

公开(公告)日：2013-09-10

申请号：US12745590

申请日：2008-11-28

申请人： Jiping Sun ,  Yong Han

发明人： Jiping Sun ,  Yong Han

IPC分类号： H04L9/32

CPC分类号： H04L9/0825 ,  H04L9/3242 ,  H04L9/3263 ,  H04L2209/56

摘要： A method for generating a key pair and transmitting a public key or request file of a certificate in security is provided. Usually, when a user applies for a certificate, a public-private key pair is always generated by a client side; the public key is combined with the user information to form the certificate; the CA's signature enables validity of user's certificate. However, in other cases, the client side is not a perfectly secure environment, so the private key of the user generated from the client side may be filched by a hacker, or may be replaced by a forged public key. On this occasion, the hacker can disguise the user without being detected. The method of the present invention is to use an information security device to generate a public-private key pair, the private key is saved within the information security device; the public key can be exported; and the information security device can generate authentication information for verifying the public key. The CA can determine whether the public key is generated by the information security device or not by verifying the authentication information. By the method provided by the present invention, the security of online transactions can be ensured effectively.

摘要翻译： 提供了一种生成密钥对并以安全方式发送证书的公开密钥或请求文件的方法。 通常，当用户申请证书时，公钥 - 私钥对始终由客户端生成; 公钥与用户信息结合形成证书; CA的签名使用户的证书有效。 然而，在其他情况下，客户端不是完全安全的环境，因此从客户端生成的用户的私钥可能被黑客篡改，或者可以被伪造的公钥替换。 在这种情况下，黑客可以伪装用户，而不会被检测到。 本发明的方法是使用信息安全装置来生成公钥 - 私钥对，将私钥保存在信息安全装置内; 公钥可以出口; 并且信息安全装置可以生成用于验证公钥的认证信息。 CA可以通过验证认证信息来确定信息安全设备是否生成公钥。 通过本发明提供的方法，可以有效地确保在线交易的安全性。

公开(公告)号：US07386449B2

公开(公告)日：2008-06-10

申请号：US10734089

申请日：2003-12-11

申请人： Jiping Sun ,  Fakhreddine Karray ,  Otman A. Basir

发明人： Jiping Sun ,  Fakhreddine Karray ,  Otman A. Basir

IPC分类号： G10L15/18

CPC分类号： G10L15/1822

摘要： A knowledge-based natural speech dialogue system includes: (i) a knowledge support system, (ii) a flexible dialogue control system, and (iii) a context information system. Flexibilities of the conversation structure, inherent in mixed-initiative mode for dealing with complex user request, are managed because the knowledge structures involved are represented by additional, powerful knowledge representation tools, and because the context information is retained by more specific data structures, which covers larger temporal scopes by the logic of the conversation, rather than by a fixed locality of the grammar flow. This system provides a simple yet reliable method to compensate for these factors to enable more powerful conversation engines with mixed-initiative capabilities.

摘要翻译： 基于知识的自然语言对话系统包括：（i）知识支持系统，（ii）灵活的对话控制系统，以及（iii）上下文信息系统。 由于所涉及的知识结构由附加的强大的知识表示工具表示，并且因为上下文信息被更具体的数据结构所保留，因此管理对话结构的灵活性，混合主动模式中固有的用于处理复杂用户请求的灵活性， 通过对话的逻辑来覆盖较大的时间范围，而不是语法流的固定位置。 该系统提供了一种简单而可靠的方法来补偿这些因素，以实现具有混合主动能力的更强大的会话引擎。

公开(公告)号：US09100374B2

公开(公告)日：2015-08-04

申请号：US14111966

申请日：2012-02-23

申请人： Jiping Sun ,  Yong Han

发明人： Jiping Sun ,  Yong Han

IPC分类号： H04L9/32 ,  G06F21/00 ,  H04L29/06 ,  H04L9/08

CPC分类号： H04L63/0428 ,  H04L9/0891 ,  H04L63/061 ,  H04L63/1441

摘要： The present invention discloses a method for managing remote upgrading keys in an information security apparatus. A remote source apparatus generates key disabling data according to a divulged remote upgrading key and sends the key disabling data to the information security apparatus, and the information security apparatus performs the disabling operation on the divulged remote upgrading key according to the received key disabling data. Using the method disclosed in the present invention can prevent the information security apparatus from being maliciously attacked by malicious attackers by using the divulged remote upgrading key and through the remote upgrading process.

摘要翻译： 本发明公开了一种管理信息安全装置中的远程升级密钥的方法。 远程源设备根据泄漏的远程升级密钥生成密钥禁用数据，并将密钥禁止数据发送到信息安全设备，信息安全设备根据接收到的密钥禁止数据对泄密的远程升级密钥进行禁用操作。 通过使用本发明所公开的方法，可以防止信息安全装置利用泄漏的远程升级密钥和远程升级过程恶意攻击恶意攻击者。

公开(公告)号：US20090024720A1

公开(公告)日：2009-01-22

申请号：US12176711

申请日：2008-07-21

申请人： Fakhreddine Karray ,  Jiping Sun

发明人： Fakhreddine Karray ,  Jiping Sun

IPC分类号： G06F15/16 ,  G10L15/18

CPC分类号： H04M3/4938 ,  H04M3/4211

摘要： A voice-enabled web portal system includes a web portal server and a call manager software module. The web portal server is operable to download data according to parameters of a web portal. The call manager software module is operable to accept a voice query from a user via telephone, to retrieve a portion of the downloaded data in response to the voice query, and to provide the portion of downloaded data to the user via telephone. A method of providing information from a web portal includes downloading data via a web portal according to parameters of the web portal at a predetermined time interval, filtering the downloaded data to produce portal information, and selectively providing portions of the portal information in response to a voice query.

摘要翻译： 具有语音功能的门户网站系统包括门户网站服务器和呼叫管理器软件模块。 门户网站服务器可操作以根据门户网站的参数下载数据。 呼叫管理器软件模块可操作以通过电话接收来自用户的语音查询，以响应于语音查询来检索下载的数据的一部分，并且通过电话向用户提供下载数据的一部分。 从网络门户提供信息的方法包括：以预定的时间间隔，根据门户网站的参数，通过门户网站下载数据，过滤下载的数据以产生门户信息;以及选择性地提供门户信息的一部分以响应于 语音查询。