公开(公告)号：US20130061057A1

公开(公告)日：2013-03-07

申请号：US13582419

申请日：2011-03-01

申请人： Abhinav Sinha ,  Abhishek Sinha ,  Anupam Varghese ,  Prasad Naldurg ,  Raghav Bhaskar ,  Saurabh Panjwani

发明人： Abhinav Sinha ,  Abhishek Sinha ,  Anupam Varghese ,  Prasad Naldurg ,  Raghav Bhaskar ,  Saurabh Panjwani

IPC分类号： H04L9/32

CPC分类号： H04W12/06 ,  H04L63/0428 ,  H04L63/083

摘要： The present invention describes a method for authenticating a user of a mobile device by a verification authority, by making use of at least a personal identification number (PIN) and at least one cryptographic key, such that the PIN and the cryptographic key is known only to the user and the verification authority. The cryptographic key has at least one session key. Firstly, the user encodes the PIN by using at least one session key and then transfers the encoded PIN to a predefined address of the verification authority via the mobile device. Next, the verification authority decodes the PIN by using the cryptographic key authenticates the user if the decoded PIN matches a PIN stored corresponding to the user.

摘要翻译： 本发明描述了一种通过使用至少一个个人识别号码（PIN）和至少一个加密密钥来验证一个移动设备的用户的方法，使得PIN和密码密钥仅被知道 给用户和验证机构。 加密密钥具有至少一个会话密钥。 首先，用户使用至少一个会话密钥对PIN进行编码，然后经由移动设备将编码的PIN传送到验证机构的预定义地址。 接下来，验证机构通过使用加密密钥来解码PIN，如果解码的PIN匹配与用户相对应存储的PIN，则验证用户。

公开(公告)号：US09277403B2

公开(公告)日：2016-03-01

申请号：US13582419

申请日：2011-03-01

申请人： Abhinav Sinha ,  Abhishek Sinha ,  Anupam Varghese ,  Prasad Naldurg ,  Raghav Bhaskar ,  Saurabh Panjwani

发明人： Abhinav Sinha ,  Abhishek Sinha ,  Anupam Varghese ,  Prasad Naldurg ,  Raghav Bhaskar ,  Saurabh Panjwani

IPC分类号： G06F21/00 ,  H04W12/06 ,  H04L29/06

CPC分类号： H04W12/06 ,  H04L63/0428 ,  H04L63/083

摘要： The present invention describes a method for authenticating a user of a mobile device by a verification authority, by making use of at least a personal identification number (PIN) and at least one cryptographic key, such that the PIN and the cryptographic key is known only to the user and the verification authority. The cryptographic key has at least one session key. Firstly, the user encodes the PIN by using at least one session key and then transfers the encoded PIN to a predefined address of the verification authority via the mobile device. Next, the verification authority decodes the PIN by using the cryptographic key authenticates the user if the decoded PIN matches a PIN stored corresponding to the user.

摘要翻译： 本发明描述了一种通过使用至少一个个人识别号码（PIN）和至少一个加密密钥来验证一个移动设备的用户的方法，使得PIN和密码密钥仅被知道 给用户和验证机构。 加密密钥具有至少一个会话密钥。 首先，用户使用至少一个会话密钥对PIN进行编码，然后经由移动设备将编码的PIN传送到验证机构的预定义地址。 接下来，验证机构通过使用加密密钥来解码PIN，如果解码的PIN匹配与用户相对应存储的PIN，则验证用户。

公开(公告)号：US20120317034A1

公开(公告)日：2012-12-13

申请号：US13159224

申请日：2011-06-13

申请人： Saikat Guha ,  Raghav Bhaskar ,  Srivatsan Laxman ,  Prasad Naldurg

发明人： Saikat Guha ,  Raghav Bhaskar ,  Srivatsan Laxman ,  Prasad Naldurg

IPC分类号： G06Q20/00

CPC分类号： G06Q20/065 ,  G06Q20/3823 ,  G06Q20/389 ,  G07F17/3251 ,  G07F17/3255

摘要： Users make online purchases using a virtual currency. A series of secret encryption keys is generated, where each key in the series is associated with a different epoch. A token tracking table is initialized. Whenever real currency is received from a user wanting to purchase tokens, a semantically secure encryption method is used in conjunction with the secret encryption key in the series that is associated with the current epoch to generate a set of encrypted tokens which includes one or more encrypted paid tokens. The set of encrypted tokens is sent to the user wanting to purchase tokens, and each encrypted paid token in the set is entered into the token tracking table, where the entry for each encrypted paid token includes information specifying that the token has not yet been spent and has not yet been encashed.

摘要翻译： 用户使用虚拟货币进行在线购物。 生成一系列秘密加密密钥，其中系列中的每个密钥与不同的时期相关联。 令牌跟踪表被初始化。 每当从想要购买令牌的用户接收真实货币时，将语义上安全的加密方法与与当前时期相关联的系列中的秘密加密密钥结合使用，以生成一组加密令牌，其包括一个或多个加密 付费令牌。 加密令牌的集合被发送给想要购买令牌的用户，并且集合中的每个加密的付费令牌被输入到令牌跟踪表中，其中每个加密的付费令牌的条目包括指定令牌尚未被花费的信息 并没有被删除。

公开(公告)号：US20180176222A1

公开(公告)日：2018-06-21

申请号：US15740648

申请日：2016-06-22

申请人： Raghav Bhaskar ,  Kunal Sharma

发明人： Raghav Bhaskar ,  Kunal Sharma

IPC分类号： H04L29/06 ,  H04L9/08 ,  H04L9/32 ,  H04L9/14 ,  G06Q20/40 ,  G06Q20/36

CPC分类号： H04L63/0884 ,  G06Q20/363 ,  G06Q20/401 ,  G06Q2220/00 ,  H04L9/085 ,  H04L9/0863 ,  H04L9/14 ,  H04L9/3228 ,  H04L63/0435 ,  H04L63/0442 ,  H04L63/061 ,  H04L63/0815 ,  H04L63/083 ,  H04L63/0838 ,  H04L63/0861 ,  H04L2463/082

摘要： A user friendly two factor authentication method and system for a user is disclosed. In an embodiment the system includes a user device, an authentication server, a network interconnecting the user device and authentication server and software on the user device and authentication server that cooperates to first register the user by storing first key share K1 of an authentication key K on the user device and storing a second key share K2 of K blinded by a user chosen password on the authentication server, and then authenticate the user by implementing a protocol where the user's knowledge of the password and the possession of the user device is used to derive the key K for authentication. Thus, the two factors are checked in one integrated protocol, thereby requiring no additional work or change in user behavior.

公开(公告)号：US08819451B2

公开(公告)日：2014-08-26

申请号：US12474235

申请日：2009-05-28

申请人： Satyanarayana V. Lokam ,  Ajay Manchepalli ,  Balasubramanyan Ashok ,  Sandeep P. Karanth ,  Raghav Bhaskar

发明人： Satyanarayana V. Lokam ,  Ajay Manchepalli ,  Balasubramanyan Ashok ,  Sandeep P. Karanth ,  Raghav Bhaskar

IPC分类号： G06F7/00 ,  G06F11/30 ,  G06F17/30

CPC分类号： G06F17/30631 ,  G06F17/30622 ,  G06F17/30675 ,  G06F21/6227 ,  G06F21/6245 ,  H04L9/002 ,  H04L9/088 ,  H04L9/32

摘要： A method and system for cryptographically indexing, searching for, and retrieving documents is provided. In some embodiments, an encryption system is provided that generates a document index that allows users to retrieve documents by performing encrypted queries for keywords associated with the documents. In some embodiments, each keyword maps to the same number of encrypted document identifiers. In some embodiments, an extractor graph is employed to map an indication of each keyword to a number of buckets storing encrypted document identifiers. In some embodiments, an order-preserving encryption system is provided. The encryption system uses an ordered index that maps encrypted instances of ordered attribute values to documents that are associated with those values. The ordered index enables queries containing query operators that rely on order, such as less than (“ ”), to be successfully performed on encrypted attribute values.

摘要翻译： 提供了一种用于加密索引，搜索和检索文档的方法和系统。 在一些实施例中，提供了一种加密系统，其生成文档索引，其允许用户通过对与文档相关联的关键字执行加密查询来检索文档。 在一些实施例中，每个关键字映射到相同数量的加密文档标识符。 在一些实施例中，使用提取器图将每个关键字的指示映射到存储加密文档标识符的桶的数量。 在一些实施例中，提供了订单保存加密系统。 加密系统使用有序索引，将已排序的属性值的加密实例映射到与这些值相关联的文档。 有序索引使得能够在加密的属性值上成功执行包含依赖于订单的查询运算符（例如小于（“<”）或大于（“>”）的查询。

公开(公告)号：US20110004607A1

公开(公告)日：2011-01-06

申请号：US12474235

申请日：2009-05-28

申请人： Satyanarayana V. Lokam ,  Ajay Manchepalli ,  Balasubramanyan Ashok ,  Sandeep P. Karanth ,  Raghav Bhaskar

发明人： Satyanarayana V. Lokam ,  Ajay Manchepalli ,  Balasubramanyan Ashok ,  Sandeep P. Karanth ,  Raghav Bhaskar

IPC分类号： G06F17/30 ,  H04L9/00

CPC分类号： G06F17/30631 ,  G06F17/30622 ,  G06F17/30675 ,  G06F21/6227 ,  G06F21/6245 ,  H04L9/002 ,  H04L9/088 ,  H04L9/32

摘要： A method and system for cryptographically indexing, searching for, and retrieving documents is provided. In some embodiments, an encryption system is provided that generates a document index that allows users to retrieve documents by performing encrypted queries for keywords associated with the documents. In some embodiments, each keyword maps to the same number of encrypted document identifiers. In some embodiments, an extractor graph is employed to map an indication of each keyword to a number of buckets storing encrypted document identifiers. In some embodiments, an order-preserving encryption system is provided. The encryption system uses an ordered index that maps encrypted instances of ordered attribute values to documents that are associated with those values. The ordered index enables queries containing query operators that rely on order, such as less than (“ ”), to be successfully performed on encrypted attribute values.

摘要翻译： 提供了一种用于加密索引，搜索和检索文档的方法和系统。 在一些实施例中，提供了一种加密系统，其生成文档索引，其允许用户通过对与文档相关联的关键字执行加密查询来检索文档。 在一些实施例中，每个关键字映射到相同数量的加密文档标识符。 在一些实施例中，使用提取器图将每个关键字的指示映射到存储加密文档标识符的桶的数量。 在一些实施例中，提供了订单保存加密系统。 加密系统使用有序索引，将已排序的属性值的加密实例映射到与这些值相关联的文档。 有序索引使得能够在加密的属性值上成功执行包含依赖于订单的查询运算符（例如小于（“<”）或大于（“>”）的查询。