-
公开(公告)号:US11068426B2
公开(公告)日:2021-07-20
申请号:US11469483
申请日:2006-08-31
摘要: Embodiments of the present invention relate to a device includes both a transferring and receiving interface. The device may include a direction indicator, for example an arrow, indicating a direction of data transfer. The device may also include a switch, such as a button, to initiate data transfer. The device may also include a counter, display, or light that indicates the amount data transferred and serves as a user interface. The device may also include a power source, such as a battery, to power the device during data transfer.
-
2.发明授权公开(公告)号:US08589695B2
公开(公告)日:2013-11-19
申请号:US11448156
申请日:2006-06-07
IPC分类号: H04L9/18
CPC分类号: H04L9/0662 , H04L9/0822 , H04L9/0869 , H04L63/061 , H04L63/0853 , H04L2209/603
摘要: Systems and methods for providing a multiple source entropy feed for a PRNG that is used to generate server-side encryption keys are disclosed. A data recovery manager may collect additional entropy sources that feed into the PRNG between each key generation. The entropy may be collected from a variety of sources, for example, high-resolution timer intervals between input/output interrupts, hard disk access operations, and the like. The number of bits of entropy collected may be configured for each key generation.
摘要翻译: 公开了用于为用于生成服务器端加密密钥的PRNG提供多源熵馈送的系统和方法。 数据恢复管理器可以收集在每个密钥生成之间馈入PRNG的额外的熵源。 可以从各种来源收集熵,例如,输入/输出中断之间的高分辨率定时器间隔,硬盘访问操作等。 可以为每个密钥生成配置收集的熵的比特数。
-
公开(公告)号:US08356342B2
公开(公告)日:2013-01-15
申请号:US11469482
申请日:2006-08-31
CPC分类号: H04L63/0807
摘要: An embodiment relates generally to a method of managing a token. The method includes marking a token to be killed and detecting a presence of the token. The method also includes disabling the token in response to the marking of the token.
摘要翻译: 实施例一般涉及管理令牌的方法。 该方法包括标记要被杀死的标记并检测令牌的存在。 该方法还包括响应标记的标记来禁用令牌。
-
公开(公告)号:US08112624B2
公开(公告)日:2012-02-07
申请号:US11564623
申请日:2006-11-29
CPC分类号: H03M7/30 , G06F21/33 , G06F2221/2149 , G06F2221/2151 , H04L9/3268 , H04L2209/60
摘要: Embodiments of the present invention provide a compression capability for compressing a CRL, such as an X.509 CRL, stored as a file, data structure or data object in a computer system having a certification authority (CA) and a security client. An exemplary method provides for accessing the CRL contents including a certificate revocation record and performing compression procedure, such as a lossless compression procedure on the contents of the CRL. The compressed CRL contents can be stored in another file, data structure or data object. A request for the compressed CRL is from a security client whereupon the compressed CRL is returned to the security client by transferring the compressed CRL contents to the security client. The security can client un-compress the compressed CRL contents. In some cases the uncompressed CRL contents can be transferred to the security client. The compression procedure can further compress a body portion of the CRL and modify a header portion of the CRL to indicate that the body portion is compressed. The security client can read the header portion to determine that the CRL is compressed and can un-compresses the CRL.
摘要翻译: 本发明的实施例提供了一种用于压缩在具有证书颁发机构(CA)和安全客户端的计算机系统中存储为文件,数据结构或数据对象的诸如X.509CRL之类的CRL的压缩能力。 一种示例性方法提供了访问包括证书吊销记录的CRL内容,并对CRL的内容执行诸如无损压缩过程之类的压缩过程。 压缩的CRL内容可以存储在另一个文件,数据结构或数据对象中。 对压缩CRL的请求来自安全客户端,因此通过将压缩的CRL内容传送到安全客户端将压缩的CRL返回给安全客户机。 安全性可以客户端解压缩压缩的CRL内容。 在某些情况下,未压缩的CRL内容可以传输到安全客户端。 压缩过程可以进一步压缩CRL的主体部分并且修改CRL的头部部分以指示主体部分被压缩。 安全客户端可以读取头部分,以确定CRL是被压缩的,并可以解压缩CRL。
-
公开(公告)号:US08098829B2
公开(公告)日:2012-01-17
申请号:US11447196
申请日:2006-06-06
IPC分类号: H04L9/08
CPC分类号: H04L9/0897 , H04L9/0822
摘要: An embodiment pertains generally to a method of delivering keys in a server. The method includes generating a subject key pair, where the subject key pair includes a subject public key and a subject private key. The method also includes retrieving a storage key and encrypting the subject private key with the storage key as a wrapped storage private key. The method further includes storing the wrapped storage private key.
摘要翻译: 实施例一般涉及在服务器中传递密钥的方法。 该方法包括生成主体密钥对,其中主体密钥对包括对象公钥和对象私钥。 该方法还包括检索存储密钥并使用存储密钥作为包装存储私钥对主体私钥进行加密。 该方法还包括存储封装的存储私钥。
-
公开(公告)号:US20100275025A1
公开(公告)日:2010-10-28
申请号:US11670664
申请日:2007-02-02
IPC分类号: H04L9/00
CPC分类号: H04L9/0894 , H04L9/3247
摘要: In a device, method and/or computer-readable medium for secure communication between a client device and a server, the client device includes a browser for accessing a website provided by the server, the client device generates a key according to a key generating cryptographic routine; tags the key with a marker associating the key with the website; and stores the tagged key in a memory associated with the browser.
摘要翻译: 在用于客户端设备和服务器之间的安全通信的设备,方法和/或计算机可读介质中,客户端设备包括用于访问服务器提供的网站的浏览器,客户端设备根据密钥生成密码 常规; 使用将该键与网站相关联的标记来标记该键; 并将标记的密钥存储在与浏览器相关联的存储器中。
-
7.发明申请Method and system for reducing a size of a security-related data object stored on a token 有权用于减少存储在令牌上的安全相关数据对象的大小的方法和系统公开(公告)号:US20080189543A1
公开(公告)日:2008-08-07
申请号:US11670661
申请日:2007-02-02
IPC分类号: H04L9/32
CPC分类号: G06F21/34 , G06F21/33 , H04L63/0823 , H04L63/0853
摘要: Embodiments of the present invention provide a method and system, including a client and security token, for reducing a size of a security-related object stored in the token. The object is stored in a storage structure that is indexed according to an identity reference to a certificate associated with the object and a private key identifier identifying a private key assigned to an owner of the token. A request to access an encrypted data object results in accessing the private key identifier in the storage structure using only the identity reference as an index.
摘要翻译: 本发明的实施例提供了一种包括客户机和安全令牌的方法和系统,用于减小存储在令牌中的安全相关对象的大小。 该对象被存储在根据对与对象相关联的证书的身份引用进行索引的存储结构中,以及识别分配给令牌的所有者的私钥的私钥标识符。 访问加密数据对象的请求导致仅使用身份引用作为索引来访问存储结构中的私钥标识符。
-
公开(公告)号:US20080022088A1
公开(公告)日:2008-01-24
申请号:US11446956
申请日:2006-06-06
IPC分类号: H04L9/00
CPC分类号: H04L9/0822 , H04L9/0897 , H04L9/3263 , H04L2209/603
摘要: An embodiment pertains generally to a method of storing keys. The method includes receiving a request for generating a subject private key at a token processing system and generating a subject key pair, where the subject key pair includes a subject public and the subject private key. The method also includes archiving the subject private key within the token processing system.
摘要翻译: 实施例一般涉及存储密钥的方法。 该方法包括在令牌处理系统处接收用于生成主体私钥的请求并生成主题密钥对,其中主体密钥对包括对象公共和主体私钥。 该方法还包括在令牌处理系统内归档主体私钥。
-
公开(公告)号:US20070288745A1
公开(公告)日:2007-12-13
申请号:US11448179
申请日:2006-06-07
IPC分类号: H04L9/00
CPC分类号: H04L9/0822 , H04L9/083
摘要: Embodiments of the present invention provide a profile framework for handling enrollment requests. In particular, when a token processing system receives an enrollment request, it selects an applicable profile based on information in the request. The profile may indicate a variety of parameters for fulfilling the enrollment request, such as the locations of the applicable certificate authority, token key service, and the like. The profile may also indicate items, such as the number of keys to generate on a token, a token label, and connection information to securely communicate with other components and the client making the enrollment request.
摘要翻译: 本发明的实施例提供了一种用于处理注册请求的简档框架。 特别地,当令牌处理系统接收到注册请求时,它根据请求中的信息选择适用的简档。 该简档可以指示用于满足注册请求的各种参数,诸如适用的认证机构的位置,令牌密钥服务等。 简档还可以指示项目,例如在令牌上生成的密钥的数量,令牌标签和连接信息,以安全地与其他组件和进行注册请求的客户端通信。
-
10.发明授权公开(公告)号:US08813243B2
公开(公告)日:2014-08-19
申请号:US11670661
申请日:2007-02-02
IPC分类号: G06F7/00
CPC分类号: G06F21/34 , G06F21/33 , H04L63/0823 , H04L63/0853
摘要: Embodiments of the present invention provide a method and system, including a client and security token, for reducing a size of a security-related object stored in the token. The object is stored in a storage structure that is indexed according to an identity reference to a certificate associated with the object and a private key identifier identifying a private key assigned to an owner of the token. A request to access an encrypted data object results in accessing the private key identifier in the storage structure using only the identity reference as an index.
摘要翻译: 本发明的实施例提供了一种包括客户机和安全令牌的方法和系统,用于减小存储在令牌中的安全相关对象的大小。 该对象被存储在根据对与对象相关联的证书的身份引用进行索引的存储结构中,以及识别分配给令牌的所有者的私钥的私钥标识符。 访问加密数据对象的请求导致仅使用身份引用作为索引来访问存储结构中的私钥标识符。
-
-
-
-
-
-
-
-
-
搜索结果
32 条记录 (耗时 0.021 秒)
