公开(公告)号：US20160219055A1

公开(公告)日：2016-07-28

申请号：US14982869

申请日：2015-12-29

申请人： Paul Hilliar

发明人： Paul Hilliar

IPC分类号： H04L29/06

CPC分类号： H04L63/10 ,  H04L9/0816 ,  H04L9/3228 ,  H04L63/0428 ,  H04L63/06 ,  H04L2209/80

摘要： To prevent malicious code from accessing security sensitive functions implemented in a private portion of an application, accesses to the private portion are performed using a secure session established within the application between the private portion and a public portion of the same application. An authorization key can be shared between the public portion and the private portion. When the public portion attempts to invoke a function implemented in the private portion, a secure session is set up by generating a session ID, combining the session ID and the authorization key in a key derivation function to generate a conversation key, and using the conversation key to encrypt the function call from the public potion. The private portion can then decrypt a properly encrypted function call and invoke the appropriate function.

摘要翻译： 为了防止恶意代码访问在应用程序的私有部分中实现的安全敏感功能，使用在同一应用程序的私有部分和公共部分之间的应用程序中建立的安全会话来执行对私有部分的访问。 公共部分和私有部分之间可以共享授权密钥。 当公共部分尝试调用在私有部分中实现的功能时，通过产生会话ID来建立安全会话，该会话ID在密钥导出功能中组合会话ID和授权密钥以生成会话密钥，并且使用会话 从公共药水加密功能调用的关键。 私有部分可以解密正确加密的函数调用并调用适当的函数。

公开(公告)号：US20160182543A1

公开(公告)日：2016-06-23

申请号：US14979082

申请日：2015-12-22

申请人： CHRISTIAN AABYE ,  ROBERT YOUDALE ,  MOHAMED NOSSEIR ,  BRIJENDRA SINGH ,  PAUL HILLIAR

发明人： CHRISTIAN AABYE ,  ROBERT YOUDALE ,  MOHAMED NOSSEIR ,  BRIJENDRA SINGH ,  PAUL HILLIAR

IPC分类号： H04L29/06

CPC分类号： H04L63/1416 ,  G06F21/14 ,  G06F21/88 ,  H04L63/18 ,  H04W12/12

摘要： A method is disclosed. The method includes determining, by a security software application on a communication device, that the communication device has been accessed by an unauthorized user. The communication device is configured to communicate with a telecommunications network over the air through a first communication channel. The method also includes generating, by the communication device, security notification data and providing the security notification data or a derivative of the security notification data to a host computer via a second communication channel.

摘要翻译： 公开了一种方法。 该方法包括通过通信设备上的安全软件应用确定通信设备已被未经授权的用户访问。 通信设备被配置为通过第一通信信道通过空中与电信网络通信。 该方法还包括通过通信设备生成安全通知数据，并且经由第二通信信道向主计算机提供安全通知数据或安全通知数据的派生。

公开(公告)号：US20190098030A1

公开(公告)日：2019-03-28

申请号：US16201825

申请日：2018-11-27

申请人： Christian Aabye ,  Robert Youdale ,  Mohamed Nosseir ,  Brijendra Singh ,  Paul Hilliar

发明人： Christian Aabye ,  Robert Youdale ,  Mohamed Nosseir ,  Brijendra Singh ,  Paul Hilliar

IPC分类号： H04L29/06 ,  G06F21/88 ,  G06F21/14 ,  H04W12/12

摘要： A method is disclosed. The method includes determining, by a security software application on a communication device, that the communication device has been accessed by an unauthorized user. The communication device is configured to communicate with a telecommunications network over the air through a first communication channel. The method also includes generating, by the communication device, security notification data and providing the security notification data or a derivative of the security notification data to a host computer via a second communication channel.

公开(公告)号：US20180081672A1

公开(公告)日：2018-03-22

申请号：US15666791

申请日：2017-08-02

申请人： Paul Hilliar ,  Brijendra Singh ,  Mohamed Nosseir ,  Robert Youdale

发明人： Paul Hilliar ,  Brijendra Singh ,  Mohamed Nosseir ,  Robert Youdale

IPC分类号： G06F9/445 ,  H04W4/00 ,  G06F9/44

CPC分类号： G06F8/65 ,  G06F8/70 ,  G06F8/71 ,  H04L63/0428 ,  H04L67/34 ,  H04W4/50 ,  H04W4/60 ,  H04W12/02 ,  H04W12/12

摘要： Techniques for updating an application installed on a communication device may include determining that an update for a private portion of the application is available at a server, sending a request for the update to the server, receiving an updated version of the private portion from the server, and installing the updated version of the private portion on the portable communication device without updating the public portion.

公开(公告)号：US20160188317A1

公开(公告)日：2016-06-30

申请号：US14982923

申请日：2015-12-29

申请人： Paul Hilliar ,  Brijendra Singh ,  Mohamed Nosseir ,  Robert Youdale

发明人： Paul Hilliar ,  Brijendra Singh ,  Mohamed Nosseir ,  Robert Youdale

IPC分类号： G06F9/445 ,  H04L29/08 ,  H04L29/06 ,  G06F9/44

CPC分类号： G06F8/65 ,  G06F8/70 ,  G06F8/71 ,  H04L63/0428 ,  H04L67/34 ,  H04W4/50 ,  H04W4/60 ,  H04W12/02 ,  H04W12/12

摘要： Techniques for updating an application installed on a communication device may include determining that an update for a private portion of the application is available at a server, sending a request for the update to the server, receiving an updated version of the private portion from the server, and installing the updated version of the private portion on the portable communication device without updating the public portion.

摘要翻译： 用于更新安装在通信设备上的应用的技术可以包括确定应用的私有部分的更新在服务器处可用，向服务器发送更新请求，从服务器接收私有部分的更新版本 ，并且在便携式通信设备上安装私有部分的更新版本而不更新公共部分。