-
公开(公告)号:US08065718B2
公开(公告)日:2011-11-22
申请号:US11978757
申请日:2007-10-30
申请人: Brian Grove , Reed Tibbetts , James Khalaf , Laszlo Elteto
发明人: Brian Grove , Reed Tibbetts , James Khalaf , Laszlo Elteto
CPC分类号: G06F21/31 , G06F21/34 , G06F2221/2129 , H04L9/3234 , H04L9/3236 , H04L9/3271
摘要: A method and apparatus for secure authentication of a hardware token is disclosed. In one embodiment, a host computer fingerprint is used to generate a partial seed for a challenge-response authentication which is performed on the hardware token. In another embodiment, the host computer fingerprint is used as a personal identification number for the hardware token.
摘要翻译: 公开了用于安全认证硬件令牌的方法和装置。 在一个实施例中,使用主计算机指纹来生成用于对硬件令牌执行的询问 - 响应认证的部分种子。 在另一个实施例中,主计算机指纹用作硬件令牌的个人识别号码。
-
公开(公告)号:US08392978B2
公开(公告)日:2013-03-05
申请号:US12641586
申请日:2009-12-18
申请人: Brian Grove , Reed Tibbetts , James Khalaf , Laszlo Elteto
发明人: Brian Grove , Reed Tibbetts , James Khalaf , Laszlo Elteto
IPC分类号: G06F7/04
CPC分类号: G06F21/31 , G06F21/34 , G06F2221/2129 , H04L9/3234 , H04L9/3236 , H04L9/3271
摘要: A method and apparatus for secure authentication of a hardware token is disclosed. In one embodiment, a host computer fingerprint is used to generate a partial seed for a challenge-response authentication which is performed on the hardware token. In another embodiment, the host computer fingerprint is used as a personal identification number for the hardware token.
摘要翻译: 公开了用于安全认证硬件令牌的方法和装置。 在一个实施例中,使用主计算机指纹来生成用于对硬件令牌执行的询问 - 响应认证的部分种子。 在另一个实施例中,主计算机指纹用作硬件令牌的个人识别号码。
-
3.发明申请SECURE AUTHENTICATION USING HARDWARE TOKEN AND COMPUTER FINGERPRINT 有权使用硬件TOKEN和COMPUTER FINGERPRINT进行安全认证公开(公告)号:US20100100746A1
公开(公告)日:2010-04-22
申请号:US12641586
申请日:2009-12-18
申请人: Brian Grove , Reed H. Tibbetts , James Khalaf , Laszlo Elteto
发明人: Brian Grove , Reed H. Tibbetts , James Khalaf , Laszlo Elteto
IPC分类号: G06F21/00
CPC分类号: G06F21/31 , G06F21/34 , G06F2221/2129 , H04L9/3234 , H04L9/3236 , H04L9/3271
摘要: A method and apparatus for secure authentication of a hardware token is disclosed. In one embodiment, a host computer fingerprint is used to generate a partial seed for a challenge-response authentication which is performed on the hardware token. In another embodiment, the host computer fingerprint is used as a personal identification number for the hardware token.
摘要翻译: 公开了用于安全认证硬件令牌的方法和装置。 在一个实施例中,使用主计算机指纹来生成用于对硬件令牌执行的询问 - 响应认证的部分种子。 在另一个实施例中,主计算机指纹用作硬件令牌的个人识别号码。
-
公开(公告)号:US07895443B2
公开(公告)日:2011-02-22
申请号:US10701029
申请日:2003-11-04
申请人: Brian Grove , Reed H. Tibbetts , James Khalaf , Laszlo Elteto
发明人: Brian Grove , Reed H. Tibbetts , James Khalaf , Laszlo Elteto
CPC分类号: G06F21/31 , G06F21/34 , G06F2221/2129 , H04L9/3234 , H04L9/3236 , H04L9/3271
摘要: A method and apparatus for secure authentication of a hardware token is disclosed. In one embodiment, a host computer fingerprint is used to generate a partial seed for a challenge-response authentication which is performed on the hardware token. In another embodiment, the host computer fingerprint is used as a personal identification number for the hardware token.
-
公开(公告)号:US07269844B2
公开(公告)日:2007-09-11
申请号:US09899472
申请日:2001-07-03
申请人: Laszlo Elteto , Shawn D. Abbott , James Khalaf , Reed H. Tibbetts , Mehdi Sotoodeh , Calvin W. Long
发明人: Laszlo Elteto , Shawn D. Abbott , James Khalaf , Reed H. Tibbetts , Mehdi Sotoodeh , Calvin W. Long
CPC分类号: G06F21/78 , G06F21/32 , G06F21/33 , G06F21/34 , G06F21/41 , G06F21/575 , G06F21/6245 , G06F21/6263 , G06F21/83 , G06F21/84 , G06F21/85 , G06K19/07732 , G06K19/07733 , H04L63/0853 , H05K1/117
摘要: A device that secures a token from unauthorized use is disclosed. The device comprises a user interface for accepting a personal identifier, a processor, communicatively coupled to the user interface device, and a token interface. The token interface includes a token interface IR emitter that produces an IR signal having information included in the PIN. The token IR emitter is coupled to the processor and is further communicatively coupled to a token IR sensor when the token is physically coupled with the token interface. The token interface also includes a shield, substantially opaque to the IR signal, for substantially confining the reception of the IR signal to the token IR sensor. In one embodiment, the shield substantially circumscribes the IR emitter. In another embodiment, the interface also comprises a token interface IR sensor, which allows communications from the token to the device as well.
摘要翻译: 披露了保护令牌免受未经授权使用的设备。 该设备包括用于接受个人标识符的用户界面,通信地耦合到用户界面设备的处理器和令牌接口。 令牌接口包括令牌接口IR发射器,其产生具有PIN中包括的信息的IR信号。 令牌IR发射器耦合到处理器,并且当令牌与令牌接口物理耦合时,进一步通信地耦合到令牌IR传感器。 令牌接口还包括对IR信号基本不透明的屏蔽,用于将IR信号的接收基本上限制在令牌IR传感器上。 在一个实施例中,屏蔽件基本上包围IR发射器。 在另一个实施例中,接口还包括令牌接口IR传感器,其允许从令牌到设备的通信。
-
公开(公告)号:US07111324B2
公开(公告)日:2006-09-19
申请号:US09764769
申请日:2001-01-16
申请人: Laszlo Elteto , Shawn D. Abbott , James Khalaf , Reed H. Tibbetts , Mehdi Sotoodeh , Calvin W. Long
发明人: Laszlo Elteto , Shawn D. Abbott , James Khalaf , Reed H. Tibbetts , Mehdi Sotoodeh , Calvin W. Long
IPC分类号: G06F17/30 , G06F7/04 , G06F15/173 , G06F15/16 , G06F13/14
CPC分类号: G06F21/85 , G06F21/00 , G06F21/31 , G06F21/32 , G06F21/33 , G06F21/34 , G06F21/41 , G06F21/6245 , G06F21/78 , G06F21/83 , G06F21/84 , G06K19/07732 , H05K1/117
摘要: A method and apparatus for securing a token from unauthorized use is disclosed. The method comprises the steps of receiving a first message transmitted from a host processing device and addressed to a PIN entry device according to a universal serial bus (USB) protocol; accepting a PIN entered into the PIN entry device; and transmitting a second message comprising at least a portion of the first message and the PIN from the PIN entry device to the token along a secure communication path. In another embodiment, the present invention describes an apparatus for securing a token from unauthorized use, comprising a PIN entry device, communicably coupleable to a host processing device transmitting a first message addressed to the PIN entry device, and communicatively coupleable to the token according to a universal serial bus USB protocol, the PIN entry device comprising a user input device, for accepting a user-input PIN; and a processor, communicatively coupled to the user input device, the processor for receiving the first message and combining the first message with the user-input PIN, and for producing a second message having at least a portion of the first message and the user-input PIN.
摘要翻译: 公开了一种用于保护令牌免受未经授权的使用的方法和装置。 该方法包括以下步骤:根据通用串行总线(USB)协议接收从主机处理设备发送并寻址到PIN输入设备的第一消息; 接受输入到PIN输入设备的PIN; 以及沿着安全通信路径将包括所述第一消息和所述PIN的至少一部分的第二消息从所述PIN输入设备发送到所述令牌。 在另一个实施例中,本发明描述了一种用于保护令牌免受未经授权的使用的装置,包括PIN输入设备,可通信地耦合到主机处理设备,所述主机处理设备发送寻址到PIN输入设备的第一消息,并且可通信地耦合到令牌,根据 通用串行总线USB协议,PIN输入设备包括用户输入设备,用于接受用户输入的PIN; 以及处理器,通信地耦合到所述用户输入设备,所述处理器用于接收所述第一消息并且将所述第一消息与所述用户输入的PIN组合,并且用于产生具有所述第一消息和所述用户输入PIN的至少一部分的第二消息, 输入PIN码。
-
7.发明授权Software protection method utilizing hidden application code in a protection dynamic link library object 有权在保护动态链接库对象中利用隐藏应用代码的软件保护方法公开(公告)号:US07320075B2
公开(公告)日:2008-01-15
申请号:US10298701
申请日:2002-11-18
CPC分类号: G06F21/125 , G06F2221/0797
摘要: A system and method in which the operating system of the user computer loads the software application and a DLL having a portion of the application execution code stored therein into memory is disclosed. At selected points during its execution, the software application calls the DLL to execute a portion of the application code that was saved into the DLL before delivery to the end user. Since this code is encrypted and the encryption key is stored in a hardware security device and not in the DLL or the software application, the application code portion cannot be executed without recovering the key.
摘要翻译: 公开了一种系统和方法,其中用户计算机的操作系统将软件应用程序加载,并且具有其中存储有应用执行代码的一部分的DLL到存储器中。 在执行期间的选定点,软件应用程序调用DLL,以便在发送给最终用户之前执行保存到DLL中的应用程序代码的一部分。 由于该代码被加密并且加密密钥存储在硬件安全设备中,而不存储在DLL或软件应用程序中,所以在不恢复密钥的情况下不能执行应用程序代码部分。
-
公开(公告)号:US07222240B2
公开(公告)日:2007-05-22
申请号:US10289042
申请日:2002-11-06
申请人: Laszlo Elteto
发明人: Laszlo Elteto
CPC分类号: G06F9/4411 , G06F2221/0797 , G06F2221/2153
摘要: A “dual” personal key/token is disclosed. The “dual” personal key is useful for installing drivers and other command interfaces which allow the personal key to be coupled to and used with a host computer. In a first embodiment, the personal key operates as a USB hub, and reports two devices, a storage device and a personal key, to the host computer. In a second embodiment presents a single device, and different portions of the personal key are activated as required.
摘要翻译: 披露“双重”个人密钥/令牌。 “双”个人密钥对于安装驱动程序和其他命令界面是有用的,这些命令界面允许将个人密钥耦合到主计算机并与其一起使用。 在第一实施例中,个人密钥作为USB集线器操作,并向主计算机报告两个设备,存储设备和个人密钥。 在第二实施例中呈现单个设备,并且根据需要激活个人密钥的不同部分。
-
公开(公告)号:US06463538B1
公开(公告)日:2002-10-08
申请号:US09222002
申请日:1998-12-30
申请人: Laszlo Elteto
发明人: Laszlo Elteto
IPC分类号: G06F1214
CPC分类号: G06F21/125
摘要: The computer-based software protection systems are provided using methods that improve the protection of vendor's software against unauthorized use. A code generator generates randomized protection code, which is then used to protect the application software. Because the code is unique for each protected software, potential crackers have to analyze and crack every instance of the protection, so that generic hack is almost impossible. Some embodiments of the present invention also randomize license verification module, add and randomize a specific anti-hacking code, and randomize the protection code execution sequence(s). The same embodiments can also select which instructions and how many instructions are randomized. Moreover, these embodiments select where the data is being stored, in which register, memory address and stack position, and also randomize variable offsets. Other embodiments of the present invention are used for interpreted code.
摘要翻译: 基于计算机的软件保护系统使用提高供应商软件防止未经授权的使用的方法来提供。 代码生成器生成随机保护代码,然后用于保护应用软件。 由于代码对于每个受保护的软件都是独一无二的,所以潜在的破解者必须分析和破解每个实例的保护,所以通用的黑客几乎是不可能的。 本发明的一些实施例还将许可证验证模块随机化,添加并随机化特定的反黑客代码,并随机化保护代码执行序列。 相同的实施例还可以选择哪个指令和多少指令是随机的。 此外,这些实施例选择存储数据的位置,其中寄存器,存储器地址和堆栈位置,并且还随机化可变偏移量。 本发明的其他实施例用于解释代码。
-
公开(公告)号:US5892906A
公开(公告)日:1999-04-06
申请号:US684659
申请日:1996-07-19
CPC分类号: G06F21/34 , G06F21/31 , G06F21/575 , G06F21/88 , G06F2211/1097 , G06F2221/2105 , G06F2221/2147
摘要: Apparatus and method for discouraging computer theft. The apparatus and method requires that a password or other unique information be supplied to the computer before the computer BIOS routines can be completely executed. A BIOS memory storing the BIOS routines includes a security routine which will determine whether or not the required password entered by the user, or a known quantity read from an externally connected memory device is present. The security function stored within the BIOS memory also includes an administration function which permits the computer to be either placed in a locked state, thereby requiring password or the known quantity read from an externally connected memory device to be present each time the computer is booted up. The administration function also permits an unlock state which permits the computer boot up process to complete without entering any password or externally supplied quantity. The external memory location is consulted during each boot up sequence, to determine whether the computer has been placed in the locked or in the unlocked state. If the security depends upon the supply of the known quantity from an externally connected memory device, the computer will be inoperable to anyone not in possession of the external memory device. In the event that the external memory location bearing the locked or unlocked code is removed, the security function assumes the computer to be in the locked state, thus frustrating avoidance of the locked state by tampering with the external memory.
摘要翻译: 阻止计算机盗窃的装置和方法。 该装置和方法要求在可以完全执行计算机BIOS例程之前将密码或其他唯一信息提供给计算机。 存储BIOS例程的BIOS存储器包括将确定用户输入的所需密码是否存在或从外部连接的存储器件读取的已知数量的安全程序。 存储在BIOS存储器中的安全功能还包括管理功能,其允许计算机被置于锁定状态,从而要求密码或从外部连接的存储器设备读取的已知数量在计算机启动时存在 。 管理功能还允许解锁状态,允许计算机启动过程完成,而无需输入任何密码或外部提供的数量。 在每个启动顺序期间,请参阅外部存储器位置,以确定计算机是否已被置于锁定或处于未锁定状态。 如果安全性取决于从外部连接的存储设备提供已知数量,则计算机将不能使用不拥有外部存储器件的任何人操作。 在外部存储器位置被锁定或解除锁定的情况下,安全功能使计算机处于锁定状态,从而通过篡改外部存储器来挫败锁定状态。
-
-
-
-
-
-
-
-
-
搜索结果
27 条记录 (耗时 0.033 秒)
