公开(公告)号：US11139986B2

公开(公告)日：2021-10-05

申请号：US16785090

申请日：2020-02-07

申请人： ASSA ABLOY AB

发明人： Milan Khan ,  François-Eric Michel Guyomarc'h ,  James William Holland

IPC分类号： H04L29/06 ,  H04L9/32 ,  G06Q20/40 ,  G06Q20/32 ,  G06Q20/38 ,  G06Q50/00

摘要： Methods, devices, and systems are provided for approving a transaction through an exchange of presented user contextual approval information and approval decryption. The user contextual approval information is generated by a user during a transaction, cryptographically signed, and provided to a transaction server. The user contextual data uniquely describes the transaction to the user and can be employed to aid a user in approving or validating the transaction in a subsequent approval action. In particular, a transaction may present the contextual approval information to a user in the form of an approval challenge message. The approval challenge message may be sent to a known user device via the transaction server in the form of a text or multi-media message. The user may respond to the message with an approval or denial response.

公开(公告)号：US10824737B1

公开(公告)日：2020-11-03

申请号：US15901433

申请日：2018-02-21

申请人： Assa Abloy AB

发明人： François-Eric Michel Guyomarc'h ,  Francois Menard

IPC分类号： G06F21/60 ,  G06F3/06 ,  H04L9/32 ,  H04L9/06 ,  H04L9/08 ,  H04L29/06

摘要： Securely storing data includes encrypting the data using a random key to provide obfuscated data, scrambling the obfuscated data to provide scrambled obfuscated data, generating a scramble schema indicating how to unscramble the scrambled obfuscated data, encrypting the scrambled obfuscated data to provide encrypted scrambled obfuscated data, splitting the scramble schema, and distributing separate portions of the scramble schema and separate portions of the encrypted scrambled obfuscated data to separate entities. The data may be private key data. Securely storing data may also include concatenating the random key on to the obfuscated data prior to scrambling the obfuscated data, wherein the random key is scrambled together with the obfuscated data. Scrambling the obfuscated data may use a Fisher Yates Shuffle mechanism. Securely storing data may also include generating and distributing a symmetric authentication key that is used to authenticate a first entity to a second entity.

公开(公告)号：US12095759B2

公开(公告)日：2024-09-17

申请号：US17454128

申请日：2021-11-09

申请人： ASSA ABLOY AB

发明人： Marc Raymond Powell ,  François-Eric Michel Guyomarc'h ,  Francois Menard

IPC分类号： H04L9/40 ,  H04L9/08 ,  H04L9/32 ,  H04L67/55

CPC分类号： H04L63/0838 ,  H04L9/0866 ,  H04L9/3247 ,  H04L63/10 ,  H04L67/55 ,  H04L2463/061 ,  H04L2463/062

摘要： A method of device authentication comprises receiving a password into an application of a user device; transmitting verification information of the password from the application to an authentication device; verifying, by the authentication device, validity of the password using the verification information; granting, by the authentication device, access by the user device to a secure resource when the password is valid; sending no indication of an invalid password to the user device when the authentication device determines the password is invalid; and blocking access of the user device to the secure resource when a predetermined number of passwords are determined to be invalid by the authentication device.

公开(公告)号：US09722999B2

公开(公告)日：2017-08-01

申请号：US14769865

申请日：2014-02-24

申请人： Assa Abloy AB

发明人： John Babbidge ,  François-Eric Michel Guyomarc'h

IPC分类号： H04L29/06 ,  G06F21/41 ,  G06F21/35

CPC分类号： H04L63/0838 ,  G06F21/35 ,  G06F21/41

摘要： A system and method are provided to access a secure host device using a personal security device (PSD). A user's PSD may hold a credential of a requesting component of the secure host device. The credential may only be readable from the PSD when a secure channel is established therewith. The establishment of a secure channel with the PSD may require access to keys. The secure host device may contain a SAM capable of securely storing and operating keys. The SMA may contain the relevant keys to support establishment of a secure channel with the personal security device and release a credential to its requesting component. These criteria may achieve the secure release of the credential from the PSD to the requesting component of the secure host device to achieve access by the user when the PSD is presented in the non-contract field of a card reader monitored by the secure host device.

公开(公告)号：US20240143796A1

公开(公告)日：2024-05-02

申请号：US18531889

申请日：2023-12-07

申请人： ASSA ABLOY AB

发明人： François-Eric Michel Guyomarc'h ,  Francois Menard

IPC分类号： G06F21/60 ,  G06F3/06 ,  H04L9/06 ,  H04L9/08 ,  H04L9/32

CPC分类号： G06F21/602 ,  G06F3/0623 ,  H04L9/0625 ,  H04L9/0825 ,  H04L9/0894 ,  H04L9/3247 ,  H04L63/08

摘要： Securely storing data includes encrypting the data using a random key to provide obfuscated data, scrambling the obfuscated data to provide scrambled obfuscated data, generating a scramble schema indicating how to unscramble the scrambled obfuscated data, encrypting the scrambled obfuscated data to provide encrypted scrambled obfuscated data, splitting the scramble schema, and distributing separate portions of the scramble schema and separate portions of the encrypted scrambled obfuscated data to separate entities. The data may be private key data. Securely storing data may also include concatenating the random key on to the obfuscated data prior to scrambling the obfuscated data, wherein the random key is scrambled together with the obfuscated data. Scrambling the obfuscated data may use a Fisher Yates Shuffle mechanism. Securely storing data may also include generating and distributing a symmetric authentication key that is used to authenticate a first entity to a second entity.

公开(公告)号：US20230409693A1

公开(公告)日：2023-12-21

申请号：US18458520

申请日：2023-08-30

申请人： ASSA ABLOY AB

发明人： François-Eric Michel Guyomarc'h ,  James William Holland ,  Milan Khan ,  Caleb Wattles

IPC分类号： G06F21/40 ,  G06F21/34 ,  G06F21/36 ,  G06F21/42 ,  H04L9/40 ,  G06Q20/32 ,  H04W12/06 ,  G06F21/57

CPC分类号： G06F21/40 ,  G06F21/34 ,  G06F21/36 ,  G06F21/42 ,  H04L63/0838 ,  G06K7/1417 ,  G06Q20/3223 ,  G06Q20/3276 ,  H04L63/18 ,  H04W12/06 ,  G06F21/57 ,  H04L63/0853

摘要： Customizing an application on a mobile device includes storing at least a portion of customization data in a customization server that is independent of the mobile device, a user of the mobile device accessing the customization server independently of the mobile device, receiving authorization data from the customization server that enables the mobile device to securely receive customization data from the customization server, and the mobile device using the authorization data to cause the customization server to provide the customization data to the mobile device. The authorization data may be provided by postal message, email message, an SMS text message, and/or a visual code provided on a screen of a computer used to access the customization server. The user may use a computer to provide credential information to access the customization server. Customizing the application may allow the mobile device to access a user service on behalf of the user.

公开(公告)号：US10560273B2

公开(公告)日：2020-02-11

申请号：US15294573

申请日：2016-10-14

申请人： ASSA ABLOY AB

发明人： Milan Khan ,  François-Eric Michel Guyomarc'h ,  James William Holland

IPC分类号： H04L29/06 ,  H04L9/32 ,  G06Q20/38 ,  G06Q50/00

摘要： Methods, devices, and systems are provided for approving a transaction through an exchange of presented user contextual approval information and approval decryption. The user contextual approval information is generated by a user during a transaction, cryptographically signed, and provided to a transaction server. The user contextual data uniquely describes the transaction to the user and can be employed to aid a user in approving or validating the transaction in a subsequent approval action. In particular, a transaction may present the contextual approval information to a user in the form of an approval challenge message. The approval challenge message may be sent to a known user device via the transaction server in the form of a text or multi-media message. The user may respond to the message with an approval or denial response.

公开(公告)号：US20180109386A1

公开(公告)日：2018-04-19

申请号：US15294573

申请日：2016-10-14

申请人： ASSA ABLOY AB

发明人： Milan Khan ,  François-Eric Michel Guyomarc'h ,  James William Holland

IPC分类号： H04L9/32 ,  H04L29/06 ,  G06Q20/38 ,  G06Q50/00

摘要： Methods, devices, and systems are provided for approving a transaction through an exchange of presented user contextual approval information and approval decryption. The user contextual approval information is generated by a user during a transaction, cryptographically signed, and provided to a transaction server. The user contextual data uniquely describes the transaction to the user and can be employed to aid a user in approving or validating the transaction in a subsequent approval action. In particular, a transaction may present the contextual approval information to a user in the form of an approval challenge message. The approval challenge message may be sent to a known user device via the transaction server in the form of a text or multi-media message. The user may respond to the message with an approval or denial response.

公开(公告)号：US11874935B2

公开(公告)日：2024-01-16

申请号：US17064922

申请日：2020-10-07

申请人： ASSA ABLOY AB

发明人： François-Eric Michel Guyomarc'h ,  Francois Menard

IPC分类号： G06F21/60 ,  G06F3/06 ,  H04L9/32 ,  H04L9/06 ,  H04L9/08 ,  H04L9/40

CPC分类号： G06F21/602 ,  G06F3/0623 ,  H04L9/0625 ,  H04L9/0825 ,  H04L9/0894 ,  H04L9/3247 ,  H04L63/08

摘要： Securely storing data includes encrypting the data using a random key to provide obfuscated data, scrambling the obfuscated data to provide scrambled obfuscated data, generating a scramble schema indicating how to unscramble the scrambled obfuscated data, encrypting the scrambled obfuscated data to provide encrypted scrambled obfuscated data, splitting the scramble schema, and distributing separate portions of the scramble schema and separate portions of the encrypted scrambled obfuscated data to separate entities. The data may be private key data. Securely storing data may also include concatenating the random key on to the obfuscated data prior to scrambling the obfuscated data, wherein the random key is scrambled together with the obfuscated data. Scrambling the obfuscated data may use a Fisher Yates Shuffle mechanism. Securely storing data may also include generating and distributing a symmetric authentication key that is used to authenticate a first entity to a second entity.

公开(公告)号：US20210097187A1

公开(公告)日：2021-04-01

申请号：US17064922

申请日：2020-10-07

申请人： ASSA ABLOY AB

发明人： François-Eric Michel Guyomarc'h ,  Francois Menard

IPC分类号： G06F21/60 ,  G06F3/06 ,  H04L9/32 ,  H04L9/06 ,  H04L9/08

摘要： Securely storing data includes encrypting the data using a random key to provide obfuscated data, scrambling the obfuscated data to provide scrambled obfuscated data, generating a scramble schema indicating how to unscramble the scrambled obfuscated data, encrypting the scrambled obfuscated data to provide encrypted scrambled obfuscated data, splitting the scramble schema, and distributing separate portions of the scramble schema and separate portions of the encrypted scrambled obfuscated data to separate entities. The data may be private key data. Securely storing data may also include concatenating the random key on to the obfuscated data prior to scrambling the obfuscated data, wherein the random key is scrambled together with the obfuscated data. Scrambling the obfuscated data may use a Fisher Yates Shuffle mechanism. Securely storing data may also include generating and distributing a symmetric authentication key that is used to authenticate a first entity to a second entity.