公开(公告)号：US20130232554A1

公开(公告)日：2013-09-05

申请号：US13741598

申请日：2013-01-15

Applicant: CERTICOM CORP.

Inventor： Matthew John CAMPAGNA ,  Daniel Richard L. BROWN ,  Gregory Marc ZAVERUCHA

IPC: H04L29/06

CPC classification number: H04L63/0823 ,  H04L9/0847 ,  H04L9/0869 ,  H04L9/3066 ,  H04L63/08 ,  H04L63/126 ,  H04L63/166 ,  H04L63/18 ,  H04L67/14

Abstract: A system and method are provided for enabling a client device to connect to a network. The method comprises: obtaining an authorization code via a communication channel different from the network, the authorization code corresponding to the client device; and after detecting initiation of a security negotiation protocol by the client device, using the authorization code in at least one security negotiation operation.

Abstract translation: 提供了一种用于使客户端设备能够连接到网络的系统和方法。 该方法包括：经由与网络不同的通信信道获得授权码，与客户端设备对应的授权码; 并且在检测到客户端设备发起安全协商协议之后，在至少一个安全协商操作中使用授权码。

公开(公告)号：US20200028694A1

公开(公告)日：2020-01-23

申请号：US16150930

申请日：2018-10-03

Applicant: Certicom Corp.

Inventor： Gregory Marc ZAVERUCHA ,  David William KRAVITZ ,  Daniel Richard L. BROWN

IPC: H04L9/32

Abstract: Methods, systems, and computer programs for using an implicit certificate are disclosed. In some aspects, a message and an implicit certificate are accessed. The implicit certificate is associated with an entity. A modified message is generated by combining the message with a value based on the implicit certificate. A digital signature can be generated based on the modified message and transmitted to a recipient. In some aspects, a digital signature from an entity and a message to be verified based on the digital signature are accessed. An implicit certificate associated with the entity is accessed. A modified message is generated by combining the message with a value based on the implicit certificate. The message is verified based on the digital signature and the modified message.

公开(公告)号：US20140136834A1

公开(公告)日：2014-05-15

申请号：US13676730

申请日：2012-11-14

Applicant: RESEARCH IN MOTION LIMITED ,  CERTICOM CORP.

Inventor： Alexander SHERKIN ,  Gregory Marc ZAVERUCHA ,  Alexander TRUSKOVSKY ,  Michael MATOVSKY ,  Osman Zohaib ARFEEN

IPC: H04L29/06

CPC classification number: H04L63/0428 ,  H04L63/0823 ,  H04L63/166

Abstract: A client application, when executed by a processor, is operative to create a HyperText Transfer Protocol (HTTP) request containing a target header that includes a confidential value. The HTTP request is to be sent over a Secure Sockets Layer (SSL) 3.0 connection or a Transport Layer Security (TLS) 1.0 connection to a web server. The client application implements at its HTTP layer a countermeasure to a blockwise chosen-boundary attack. The client application generates an additional header having a header name that is not recognizable by the web server and inserts the additional header into the HTTP request ahead of the target header, thus creating a modified HTTP request. The modified HTTP request is to be sent, instead of the unmodified HTTP request, over the SSL 3.0 connection or the TLS 1.0 connection to the web server.

Abstract translation: 当由处理器执行时，客户端应用程序可操作以创建包含包含机密值的目标报头的超文本传输​​协议（HTTP）请求。 HTTP请求将通过安全套接字层（SSL）3.0连接或传输层安全（TLS）1.0连接发送到Web服务器。 客户端应用程序在其HTTP层实现了对块选择边界攻击的对策。 客户机应用程序生成一个额外的标头，其标题名称不能由Web服务器识别，并将附加标头插入到目标标题之前的HTTP请求中，从而创建修改的HTTP请求。 修改的HTTP请求将通过SSL 3.0连接或与服务器的TLS 1.0连接发送，而不是未修改的HTTP请求。