-
公开(公告)号:US20110010543A1
公开(公告)日:2011-01-13
申请号:US12718480
申请日:2010-03-05
申请人: Andreas U. Schmidt , Andreas Leicher , Inhyok Cha , Yogendra C. Shah , Sudhir B. Pattar , Dolores F. Howry , David G. Greiner , Lawrence Case , Michael V. Meyerstein , Louis J. Guccione
发明人: Andreas U. Schmidt , Andreas Leicher , Inhyok Cha , Yogendra C. Shah , Sudhir B. Pattar , Dolores F. Howry , David G. Greiner , Lawrence Case , Michael V. Meyerstein , Louis J. Guccione
IPC分类号: H04L9/32
CPC分类号: H04W12/10 , G06F21/44 , G06F21/57 , H04L63/123 , H04W12/0023 , H04W12/00502 , H04W12/00512 , H04W12/06 , H04W12/08
摘要: Methods, components and apparatus for implementing platform validation and management (PVM) are disclosed. PVM provides the functionality and operations of a platform validation entity with remote management of devices by device management components and systems such as a home node-B management system or component. Example PVM operations bring devices into a secure target state before allowing connectivity and access to a core network.
摘要翻译: 公开了实现平台验证和管理(PVM)的方法,组件和设备。 PVM通过设备管理组件和系统(如家庭节点B管理系统或组件)提供对设备进行远程管理的平台验证实体的功能和操作。 示例PVM操作在允许连接和访问核心网络之前将设备置于安全目标状态。
-
2.发明申请公开(公告)号:US20110041003A1
公开(公告)日:2011-02-17
申请号:US12718572
申请日:2010-03-05
申请人: Sudhir B. Pattar , Inhyok Cha , Andreas U. Schmidt , Andreas Leicher , Yogendra C. Shah , Dolores F. Howry , David G. Greiner , Lawrence L. Case , Michael V. Meyerstein , Louis J. Guccione
发明人: Sudhir B. Pattar , Inhyok Cha , Andreas U. Schmidt , Andreas Leicher , Yogendra C. Shah , Dolores F. Howry , David G. Greiner , Lawrence L. Case , Michael V. Meyerstein , Louis J. Guccione
CPC分类号: H04L41/0869 , H04L41/0654 , H04L41/0681 , H04L63/123 , H04L63/166 , H04W12/10 , H04W84/045
摘要: An apparatus and method for providing home evolved node-B (H(e)NB) integrity verification and validation using autonomous validation and semi-autonomous validation is disclosed herein.
摘要翻译: 本文公开了一种使用自主验证和半自主验证来提供家庭演进节点B(H(e)NB)完整性验证和验证的装置和方法。
-
3.发明授权公开(公告)号:US09253643B2
公开(公告)日:2016-02-02
申请号:US12718572
申请日:2010-03-05
申请人: Sudhir B. Pattar , Inhyok Cha , Andreas U. Schmidt , Andreas Leicher , Yogendra C. Shah , Dolores F. Howry , David G. Greiner , Lawrence L. Case , Michael V. Meyerstein , Louis J. Guccione
发明人: Sudhir B. Pattar , Inhyok Cha , Andreas U. Schmidt , Andreas Leicher , Yogendra C. Shah , Dolores F. Howry , David G. Greiner , Lawrence L. Case , Michael V. Meyerstein , Louis J. Guccione
CPC分类号: H04L41/0869 , H04L41/0654 , H04L41/0681 , H04L63/123 , H04L63/166 , H04W12/10 , H04W84/045
摘要: An apparatus and method for providing home evolved node-B (H(e)NB) integrity verification and validation using autonomous validation and semi-autonomous validation is disclosed herein.
摘要翻译: 本文公开了一种使用自主验证和半自主验证来提供家庭演进节点B(H(e)NB)完整性验证和验证的装置和方法。
-
公开(公告)号:US08509431B2
公开(公告)日:2013-08-13
申请号:US13237344
申请日:2011-09-20
申请人: Andreas U. Schmidt , Michael V. Meyerstein , Andreas Leicher , Yogendra C. Shah , Louis J. Guccione , Inhyok Cha
发明人: Andreas U. Schmidt , Michael V. Meyerstein , Andreas Leicher , Yogendra C. Shah , Louis J. Guccione , Inhyok Cha
CPC分类号: H04W12/06 , H04L63/061 , H04L63/068 , H04L63/08 , H04L63/0815 , H04L63/0853 , H04L67/02 , H04L2463/061 , H04L2463/081 , H04W12/04 , H04W88/02
摘要: A wireless device may perform a local authentication to reduce the traffic on a network. The local authentication may be performed using a local web server and/or a local OpenID provider (OP) associated with the wireless device. The local web server and/or local OP may be implemented on a security module, such as a smartcard or a trusted execution environment for example. The local OP and/or local web server may be used to implement a provisioning phase to derive a session key, associated with a service provider, from an authentication between the wireless device and the network. The session key may be reusable for subsequent local authentications to locally authenticate a user of the wireless device to the service provider.
-
公开(公告)号:US09807608B2
公开(公告)日:2017-10-31
申请号:US12763827
申请日:2010-04-20
摘要: Methods and instrumentalities are disclosed that enable one or more domains on one or more devices to be owned or controlled by one or more different local or remote owners, while providing a level of system-wide management of those domains. Each domain may have a different owner, and each owner may specify policies for operation of its domain and for operation of its domain in relation to the platform on which the domain resides, and other domains. A system-wide domain manager may be resident on one of the domains. The system-wide domain manager may enforce the policies of the domain on which it is resident, and it may coordinate the enforcement of the other domains by their respective policies in relation to the domain in which the system-wide domain manager resides. Additionally, the system-wide domain manager may coordinate interaction among the other domains in accordance with their respective policies.
-
公开(公告)号:US08533803B2
公开(公告)日:2013-09-10
申请号:US13023985
申请日:2011-02-09
申请人: Inhyok Cha , Andreas Schmidt , Andreas Leicher , Yogendra C. Shah , Louis J. Guccione , Dolores F. Howry
发明人: Inhyok Cha , Andreas Schmidt , Andreas Leicher , Yogendra C. Shah , Louis J. Guccione , Dolores F. Howry
CPC分类号: H04L63/0815 , G06F21/34 , G06F21/35 , G06F2221/2115 , H04L63/0853 , H04W12/06
摘要: A trusted computing environment, such as a smartcard, UICC, Java card, global platform, or the like may be used as a local host trust center and a proxy for a single-sign on (SSO) provider. This may be referred to as a local SSO provider (OP). This may be done, for example, to keep authentication traffic local and to prevent over the air communications, which may burden an operator network. To establish the OP proxy in the trusted environment, the trusted environment may bind to the SSO provider in a number of ways. For example, the SSO provider may interoperate with UICC-based UE authentication or GBA. In this way, user equipment may leverage the trusted environment in order to provide increased security and reduce over the air communications and authentication burden on the OP or operator network.
摘要翻译: 可以使用诸如智能卡,UICC,Java卡,全球平台等的可信计算环境作为本地主机信任中心和用于单点登录(SSO)提供商的代理。 这可以被称为本地SSO提供商(OP)。 这可以被实现,例如,保持认证流量本地并且防止空中通信,这可能会对运营商网络造成负担。 要在受信任的环境中建立OP代理,可信环境可以通过多种方式绑定到SSO提供者。 例如,SSO提供商可以与基于UICC的UE认证或GBA进行互操作。 以这种方式,用户设备可以利用可信环境来提供增加的安全性并减少OP或运营商网络上的空中通信和认证负担。
-
公开(公告)号:US20110099605A1
公开(公告)日:2011-04-28
申请号:US12763827
申请日:2010-04-20
IPC分类号: G06F15/173 , G06F21/00
摘要: Methods and instrumentalities are disclosed that enable one or more domains on one or more devices to be owned or controlled by one or more different local or remote owners, while providing a level of system-wide management of those domains. Each domain may have a different owner, and each owner may specify policies for operation of its domain and for operation of its domain in relation to the platform on which the domain resides, and other domains. A system-wide domain manager may be resident on one of the domains. The system-wide domain manager may enforce the policies of the domain on which it is resident, and it may coordinate the enforcement of the other domains by their respective policies in relation to the domain in which the system-wide domain manager resides. Additionally, the system-wide domain manager may coordinate interaction among the other domains in accordance with their respective policies.
摘要翻译: 公开了使一个或多个设备上的一个或多个域由一个或多个不同的本地或远程所有者拥有或控制的方法和手段,同时提供这些域的系统范围管理级别。 每个域可以具有不同的所有者,并且每个所有者可以指定用于其域的操作的策略以及关于域所在的平台以及其他域的其域的操作。 系统范围的域管理员可能驻留在其中一个域上。 全系统域管理员可以强制执行其驻留的域的策略,并且可以通过其相关于与全系统域管理员所在的域相关的策略来协调其他域的强制。 另外,系统范围的域管理器可以根据各自的策略协调其他域之间的交互。
-
公开(公告)号:US20120072979A1
公开(公告)日:2012-03-22
申请号:US13023985
申请日:2011-02-09
申请人: Inhyok Cha , Andreas Schmidt , Andreas Leicher , Yogendra C. Shah , Louis J. Guccione , Dolores F. Howry
发明人: Inhyok Cha , Andreas Schmidt , Andreas Leicher , Yogendra C. Shah , Louis J. Guccione , Dolores F. Howry
CPC分类号: H04L63/0815 , G06F21/34 , G06F21/35 , G06F2221/2115 , H04L63/0853 , H04W12/06
摘要: A trusted computing environment, such as a smartcard, UICC, Java card, global platform, or the like may be used as a local host trust center and a proxy for a single-sign on (SSO) provider. This may be referred to as a local SSO provider (OP). This may be done, for example, to keep authentication traffic local and to prevent over the air communications, which may burden an operator network. To establish the OP proxy in the trusted environment, the trusted environment may bind to the SSO provider in a number of ways. For example, the SSO provider may interoperate with UICC-based UE authentication or GBA. In this way, user equipment may leverage the trusted environment in order to provide increased security and reduce over the air communications and authentication burden on the OP or operator network.
摘要翻译: 可以使用诸如智能卡,UICC,Java卡,全球平台等的可信计算环境作为本地主机信任中心和用于单点登录(SSO)提供商的代理。 这可以被称为本地SSO提供商(OP)。 这可以被实现,例如,保持认证流量本地并且防止空中通信,这可能会对运营商网络造成负担。 要在受信任的环境中建立OP代理,可信环境可以通过多种方式绑定到SSO提供者。 例如,SSO提供商可以与基于UICC的UE认证或GBA进行互操作。 以这种方式,用户设备可以利用可信环境来提供增加的安全性并减少OP或运营商网络上的空中通信和认证负担。
-
公开(公告)号:US09762583B2
公开(公告)日:2017-09-12
申请号:US12910596
申请日:2010-10-22
申请人: Louis J. Guccione , Inhyok Cha , Andreas Schmidt , Andreas Leicher , David G. Greiner , Dolores F. Howry
发明人: Louis J. Guccione , Inhyok Cha , Andreas Schmidt , Andreas Leicher , David G. Greiner , Dolores F. Howry
IPC分类号: G06F7/04 , G06F15/16 , G06F17/30 , H04L29/06 , G06F21/33 , G06F21/36 , H04L12/58 , H04W12/06
CPC分类号: H04L63/101 , G06F21/33 , G06F21/36 , H04L51/12 , H04L63/0227 , H04L63/08 , H04L63/0869 , H04L63/145 , H04L65/1016 , H04W12/06
摘要: Methods and apparatus are disclosed to provide protection against Unsolicited Communication (UC) in a network, such as, without limitation, an Internet Protocol (IP) Multimedia Subsystem (IMS). A communication may originate from a sending device and may be intended for delivery to a receiving device. A network may determine authentication information associated with the sending device. The network may send the authentication information to a receiving entity to evaluate if the communication is unsolicited using the authentication information. If the communication is determined to be acceptable, a connection associated with the communication may be allowed.
-
公开(公告)号:US20110265153A1
公开(公告)日:2011-10-27
申请号:US12910596
申请日:2010-10-22
申请人: Louis J. Guccione , Inhyok Cha , Andreas Schmidt , Andreas Leicher , David G. Greiner , Dolores F. Howry
发明人: Louis J. Guccione , Inhyok Cha , Andreas Schmidt , Andreas Leicher , David G. Greiner , Dolores F. Howry
CPC分类号: H04L63/101 , G06F21/33 , G06F21/36 , H04L51/12 , H04L63/0227 , H04L63/08 , H04L63/0869 , H04L63/145 , H04L65/1016 , H04W12/06
摘要: Methods and apparatus are disclosed to provide protection against Unsolicited Communication (UC) in a network, such as, without limitation, an Internet Protocol (IP) Multimedia Subsystem (IMS). A communication may originate from a sending device and may be intended for delivery to a receiving device. A network may determine authentication information associated with the sending device. The network may send the authentication information to a receiving entity to evaluate if the communication is unsolicited using the authentication information. If the communication is determined to be acceptable, a connection associated with the communication may be allowed.
摘要翻译: 披露了一种方法和装置,用于提供对网络中的非请求通信(UC)的保护,例如但不限于互联网协议(IP)多媒体子系统(IMS)。 通信可以来自发送设备,并且可以用于传送到接收设备。 网络可以确定与发送设备相关联的认证信息。 网络可以将认证信息发送到接收实体,以使用认证信息评估该通信是否是主动的。 如果通信被确定为可接受的,则可以允许与该通信相关联的连接。
-
-
-
-
-
-
-
-
-
搜索结果
40 条记录 (耗时 0.049 秒)