-
公开(公告)号:US09215220B2
公开(公告)日:2015-12-15
申请号:US13097545
申请日:2011-04-29
CPC分类号: H04L9/3263 , H04L9/08 , H04L9/0816 , H04L9/0819 , H04L9/0838 , H04L63/0428 , H04L63/06 , H04L63/062 , H04L63/0823 , H04L2209/24 , H04L2209/64 , H04L2463/061 , H04W12/04 , H04W36/0055 , H04W84/047
摘要: It is provided an apparatus, comprising property checking means configured to check whether a claimant property information received from a claimant device corresponds to a predefined claimant attribute; obtaining means configured to obtain a result, which is positive only if the claimant property information corresponds to the predefined claimant attribute as checked by the property checking means; key generation means configured to generate a first claimant intermediate key from a predefined claimant permanent key stored in the apparatus; supplying means configured to supply, to the claimant device, the first claimant intermediate key using a secured protocol, wherein at least one of the key generation means and the supplying means is configured to generate and to supply, respectively, the first claimant intermediate key only if the result is positive.
摘要翻译: 提供了一种装置,包括属性检查装置,被配置为检查从索赔装置接收的索赔属性信息是否对应于预定义的索赔人属性; 获取装置,其被配置为获得结果,其仅当所述索赔者属性信息对应于由所述属性检查装置检查的所述预定义的索赔属性时才是正的; 密钥生成装置,被配置为从存储在所述装置中的预定义请求者永久密钥生成第一请求者中间密钥; 供应装置,被配置为使用安全协议向所述索赔人设备提供所述第一请求者中间密钥,其中所述密钥生成装置和所述提供装置中的至少一个被配置为分别产生并仅分别提供所述第一请求者中间密钥 如果结果是肯定的。
-
公开(公告)号:US20110083169A1
公开(公告)日:2011-04-07
申请号:US12450208
申请日:2008-03-03
IPC分类号: H04L9/32
CPC分类号: H04L63/0853 , H04L63/0815 , H04L63/0823 , H04L63/101 , H04L63/12
摘要: Services are provided for terminal devices, each having a TPM module. The TPM module of a terminal device transmits a service request with an ID assertion signed by a configurable credential to a server for the purpose of accessing the services of the server.
摘要翻译: 为终端设备提供服务,每个终端设备都有一个TPM模块。 为了访问服务器的服务,终端设备的TPM模块将具有由可配置凭证签名的ID断言的服务请求发送到服务器。
-
公开(公告)号:US09444814B2
公开(公告)日:2016-09-13
申请号:US12450208
申请日:2008-03-03
IPC分类号: H04L29/06
CPC分类号: H04L63/0853 , H04L63/0815 , H04L63/0823 , H04L63/101 , H04L63/12
摘要: Services are provided for terminal devices, each having a TPM module. The TPM module of a terminal device transmits a service request with an ID assertion signed by a configurable credential to a server for the purpose of accessing the services of the server.
摘要翻译: 为终端设备提供服务,每个终端设备都有一个TPM模块。 为了访问服务器的服务,终端设备的TPM模块将具有由可配置凭证签名的ID断言的服务请求发送到服务器。
-
公开(公告)号:US20110314289A1
公开(公告)日:2011-12-22
申请号:US13097545
申请日:2011-04-29
IPC分类号: H04L9/32
CPC分类号: H04L9/3263 , H04L9/08 , H04L9/0816 , H04L9/0819 , H04L9/0838 , H04L63/0428 , H04L63/06 , H04L63/062 , H04L63/0823 , H04L2209/24 , H04L2209/64 , H04L2463/061 , H04W12/04 , H04W36/0055 , H04W84/047
摘要: It is provided an apparatus, comprising property checking means configured to check whether a claimant property information received from a claimant device corresponds to a predefined claimant attribute; obtaining means configured to obtain a result, which is positive only if the claimant property information corresponds to the predefined claimant attribute as checked by the property checking means; key generation means configured to generate a first claimant intermediate key from a predefined claimant permanent key stored in the apparatus; supplying means configured to supply, to the claimant device, the first claimant intermediate key using a secured protocol, wherein at least one of the key generation means and the supplying means is configured to generate and to supply, respectively, the first claimant intermediate key only if the result is positive.
摘要翻译: 提供了一种装置,包括属性检查装置,被配置为检查从索赔装置接收的索赔属性信息是否对应于预定义的索赔人属性; 获取装置,其被配置为获得结果,其仅当所述索赔者属性信息对应于由所述属性检查装置检查的所述预定义的索赔属性时才是正的; 密钥生成装置,被配置为从存储在所述装置中的预定义请求者永久密钥生成第一请求者中间密钥; 供应装置,被配置为使用安全协议向所述索赔人设备提供所述第一请求者中间密钥,其中所述密钥生成装置和所述提供装置中的至少一个被配置为分别产生并仅分别提供所述第一请求者中间密钥 如果结果是肯定的。
-
公开(公告)号:US20110202986A1
公开(公告)日:2011-08-18
申请号:US13124045
申请日:2008-09-12
CPC分类号: H04L63/0815 , H04L65/1016
摘要: A system comprising an IMS network (104), an adapter module (106), an identity provider (108) and an application (110) is described. The adapter module (106) is within an IMS trust domain. The application (110) is within the trust domain of the identity provider. A user of the system can access the application (110) via the IMS network (104), regardless of whether the application is within the IMS trust domain, by making use of the adapter module (106) to obtain the user's user credentials for the application from the identity provider.
摘要翻译: 描述了包括IMS网络(104),适配器模块(106),身份提供商(108)和应用(110)的系统。 适配器模块(106)在IMS信任域内。 应用程序(110)在身份提供者的信任域内。 系统的用户可以通过使用适配器模块(106)获得用户的用户凭证,而不管应用是否在IMS信任域内,经由IMS网络(104)访问应用(110) 来自身份提供者的申请。
-
公开(公告)号:US09749309B2
公开(公告)日:2017-08-29
申请号:US13124045
申请日:2008-09-12
IPC分类号: H04L29/06
CPC分类号: H04L63/0815 , H04L65/1016
摘要: A system comprising an IMS network (104), an adapter module (106), an identity provider (108) and an application (110) is described. The adapter module (106) is within an IMS trust domain. The application (110) is within the trust domain of the identity provider. A user of the system can access the application (110) via the IMS network (104), regardless of whether the application is within the IMS trust domain, by making use of the adapter module (106) to obtain the user's user credentials for the application from the identity provider.
-
公开(公告)号:US08566815B2
公开(公告)日:2013-10-22
申请号:US13318622
申请日:2009-05-04
CPC分类号: G06F21/572
摘要: Arrangements for updating software, such as initial trusted code and data, are described, including providing proof of execution of the update. The mechanism for updating the software is logically or physically separated from the general purpose CPU of the system. Thus, the update mechanism can be trusted even if the system to be updated may be compromised.
摘要翻译: 描述用于更新软件的安排,例如初始可信代码和数据,包括提供更新的执行证明。 用于更新软件的机制在逻辑上或物理上与系统的通用CPU分离。 因此,即使要更新的系统可能被破坏,更新机制也是可信赖的。
-
8.发明申请METHOD FOR ESTABLISHING A SECURE AND AUTHORIZED CONNECTION BETWEEN A SMART CARD AND A DEVICE IN A NETWORK 审中-公开在智能卡和网络中的设备之间建立安全和授权连接的方法公开(公告)号:US20130091556A1
公开(公告)日:2013-04-11
申请号:US13703985
申请日:2010-06-21
IPC分类号: H04L29/06
CPC分类号: H04L63/0876 , H04L63/062 , H04L2463/061 , H04W4/00 , H04W4/60 , H04W12/04 , H04W12/12 , H04W80/02
摘要: It is provided a method a method for establishing a first secure and authorized connection between a smart card and a first device in a network, wherein the first device comprises a second secure connection to a second device, wherein the method comprises storing a first security data; transferring the first security data between the first device and the second device; providing the first security data at the first device; establishing a binding between the smart card and the first device via the first secure and authorized connection utilizing the first security data; authorizing the binding between the smart card and the first device; and sending a second security data from the smart card to the first device via the first secure and authorized connection whereas the second security data may be usable for authentication of the first device to the network.
摘要翻译: 提供了一种用于在智能卡和网络中的第一设备之间建立第一安全授权连接的方法,其中所述第一设备包括到第二设备的第二安全连接,其中所述方法包括:存储第一安全数据 ; 在所述第一设备和所述第二设备之间传送所述第一安全数据; 在第一设备处提供第一安全数据; 通过使用所述第一安全数据的所述第一安全授权连接在所述智能卡与所述第一设备之间建立绑定; 授权智能卡与第一设备之间的绑定; 以及经由所述第一安全授权连接将第二安全数据从所述智能卡发送到所述第一设备,而所述第二安全数据可用于将所述第一设备认证到所述网络。
-
公开(公告)号:US20120096450A1
公开(公告)日:2012-04-19
申请号:US13318622
申请日:2009-05-04
IPC分类号: G06F9/44
CPC分类号: G06F21/572
摘要: Arrangements for updating software, such as initial trusted code and data, are described, including providing proof of execution of the update. The mechanism for updating the software is logically or physically separated from the general purpose CPU of the system. Thus, the update mechanism can be trusted even if the system to be updated may be compromised.
摘要翻译: 描述用于更新软件的安排,例如初始可信代码和数据,包括提供更新的执行证明。 用于更新软件的机制在逻辑上或物理上与系统的通用CPU分离。 因此,即使要更新的系统可能被破坏,更新机制也是可信赖的。
-
-
-
-
-
-
-
-
搜索结果
9 条记录 (耗时 0.013 秒)
