公开(公告)号：US20160087950A1

公开(公告)日：2016-03-24

申请号：US14491526

申请日：2014-09-19

Applicant: Bank of America Corporation

Inventor： Abdulkader Barbir ,  Eileen D. Bridges ,  Davindar Gill ,  Lawrence R. LaBella ,  Craig Worstell

IPC: H04L29/06

CPC classification number: H04L63/062 ,  H04L9/085

Abstract: Aspects of the present disclosure are directed to methods and systems for securing mobile computing applications with distributed keys. In one aspect, a computer implemented method or computer readable media include steps electronically receiving, at a computer processor of a computing device, a first security key fragment based on a user input to the computing device; electronically receiving, at the computer processor, a second security key fragment from a network connected storage entity; and electronically concatenating, at the computer processor, the first security key fragment and the second security key fragment to generate a third security key.

Abstract translation: 本公开的方面针对用于使用分布式密钥来保护移动计算应用的方法和系统。 在一个方面，计算机实现的方法或计算机可读介质包括在计算设备的计算机处理器处基于对计算设备的用户输入来电接收第一安全密钥片段的步骤; 在计算机处理器处电子地从网络连接的存储实体接收第二安全密钥片段; 以及在所述计算机处理器处电子连接所述第一安全密钥片段和所述第二安全密钥片段以生成第三安全密钥。

公开(公告)号：US09531542B2

公开(公告)日：2016-12-27

申请号：US14491541

申请日：2014-09-19

Applicant: Bank of America Corporation

Inventor： Abdulkader Barbir ,  Eileen D. Bridges ,  Davindar Gill ,  Lawrence R. LaBella ,  Craig Worstell

IPC: G06F21/31 ,  H04L9/32 ,  H04L29/06

CPC classification number: H04L9/3236 ,  H04L9/3226 ,  H04L9/3273 ,  H04L63/062 ,  H04L63/126

Abstract: Aspects of the present disclosure pertain to system and method of securing mobile devices using virtual certificates at a computer processor. A method may include receiving a request for access to a computer network associated with a computing device to an application associated with a network connected server processor; electronically receiving, at the server processor, a first security key fragment from the computing device; the first security key fragment being paired with a verifier key fragment unknown to the computing device; generating a conditional seed key fragment at the server processor associated with the verifier key fragment; comparing a first hash parameter to a second hash parameter at the server processor; transmitting, at the server processor, a session security key for enabling network access to the application associated with the server processor.

Abstract translation: 本公开的方面涉及在计算机处理器处使用虚拟证书来保护移动设备的系统和方法。 一种方法可以包括：向与网络连接的服务器处理器相关联的应用接收对与计算设备相关联的计算机网络的访问请求; 在所述服务器处理器处电子地接收来自所述计算设备的第一安全密钥片段; 所述第一安全密钥片段与所述计算设备未知的验证者密钥片段配对; 在与验证者密钥片段相关联的服务器处理器处生成条件种子密钥片段; 将第一散列参数与所述服务器处理器处的第二散列参数进行比较; 在服务器处理器处发送会话安全密钥，用于启用对与服务器处理器相关联的应用的网络访问。

公开(公告)号：US09531692B2

公开(公告)日：2016-12-27

申请号：US14491526

申请日：2014-09-19

Applicant: Bank of America Corporation

Inventor： Abdulkader Barbir ,  Eileen D. Bridges ,  Davindar Gill ,  Lawrence R. LaBella ,  Craig Worstell

IPC: H04L9/00 ,  H04L29/06

CPC classification number: H04L63/062 ,  H04L9/085

Abstract: Aspects of the present disclosure are directed to methods and systems for securing mobile computing applications with distributed keys. In one aspect, a computer implemented method or computer readable media include steps electronically receiving, at a computer processor of a computing device, a first security key fragment based on a user input to the computing device; electronically receiving, at the computer processor, a second security key fragment from a network connected storage entity; and electronically concatenating, at the computer processor, the first security key fragment and the second security key fragment to generate a third security key.

Abstract translation: 本公开的方面针对用于使用分布式密钥来保护移动计算应用的方法和系统。 在一个方面，计算机实现的方法或计算机可读介质包括在计算设备的计算机处理器处基于对计算设备的用户输入来电接收第一安全密钥片段的步骤; 在计算机处理器处电子地从网络连接的存储实体接收第二安全密钥片段; 以及在所述计算机处理器处电子连接所述第一安全密钥片段和所述第二安全密钥片段以生成第三安全密钥。

公开(公告)号：US20160087797A1

公开(公告)日：2016-03-24

申请号：US14491541

申请日：2014-09-19

Applicant: Bank of America Corporation

Inventor： Abdulkader Barbir ,  Eileen D. Bridges ,  Davindar Gill ,  Lawrence R. LaBella ,  Craig Worstell

IPC: H04L9/32 ,  H04L29/06

CPC classification number: H04L9/3236 ,  H04L9/3226 ,  H04L9/3273 ,  H04L63/062 ,  H04L63/126

Abstract: Aspects of the present disclosure pertain to system and method of securing mobile devices using virtual certificates at a computer processor. A method may include receiving a request for access to a computer network associated with a computing device to an application associated with a network connected server processor; electronically receiving, at the server processor, a first security key fragment from the computing device; the first security key fragment being paired with a verifier key fragment unknown to the computing device; generating a conditional seed key fragment at the server processor associated with the verifier key fragment; comparing a first hash parameter to a second hash parameter at the server processor; transmitting, at the server processor, a session security key for enabling network access to the application associated with the server processor.

Abstract translation: 本公开的方面涉及在计算机处理器处使用虚拟证书来保护移动设备的系统和方法。 一种方法可以包括：向与网络连接的服务器处理器相关联的应用接收对与计算设备相关联的计算机网络的访问请求; 在所述服务器处理器处电子地接收来自所述计算设备的第一安全密钥片段; 所述第一安全密钥片段与所述计算设备未知的验证者密钥片段配对; 在与验证者密钥片段相关联的服务器处理器处生成条件种子密钥片段; 将第一散列参数与所述服务器处理器处的第二散列参数进行比较; 在服务器处理器处发送会话安全密钥，用于启用对与服务器处理器相关联的应用的网络访问。