Security provision in standards-compliant RFID systems
    1.
    发明授权
    Security provision in standards-compliant RFID systems 有权
    符合标准的RFID系统的安全提供

    公开(公告)号:US08378786B2

    公开(公告)日:2013-02-19

    申请号:US11671275

    申请日:2007-02-05

    摘要: Enhanced security is provided in an RFID system comprising a plurality of RFID devices and at least one reader which communicates with one or more of the devices. In one aspect of the invention, a first command is transmitted from the reader to write a first data unit to a memory of given one of the RFID devices. A reply is received in the reader from the given RFID device indicating that a second data unit determined based on contents of the first data unit is available in the memory to be accessed by the reader. A second command is transmitted from the reader to the given RFID device to allow the reader to read the memory to thereby obtain the second data unit. The first and second data units comprise information exchanged as part of a cryptographic protocol carried out between the reader and the given RFID device. In an illustrative embodiment, the cryptographic protocol may comprise a challenge-response authentication protocol.

    摘要翻译: RFID系统中提供了增强的安全性,RFID系统包括多个RFID设备和与一个或多个设备通信的至少一个读取器。 在本发明的一个方面,从读取器发送第一命令以将第一数据单元写入给定的一个RFID设备的存储器。 在读取器中从给定的RFID装置接收到答复,指示基于第一数据单元的内容确定的第二数据单元在读取器要访问的存储器中可用。 第二命令从读取器发送到给定的RFID设备,以允许读取器读取存储器,从而获得第二数据单元。 第一和第二数据单元包括作为在读取器和给定RFID设备之间执行的密码协议的一部分交换的信息。 在说明性实施例中,密码协议可以包括询问 - 响应认证协议。

    Access Control for Implanted Medical Devices
    2.
    发明申请
    Access Control for Implanted Medical Devices 有权
    植入医疗器械的门禁控制

    公开(公告)号:US20090125084A1

    公开(公告)日:2009-05-14

    申请号:US12251036

    申请日:2008-10-14

    IPC分类号: A61N1/08

    摘要: Enhanced security is provided in a system comprising a medical device and a monitoring device. The medical device is configured for implantation into a living organism, and comprises processing circuitry and an interface for communicating with the monitoring device. Access to the medical device by the monitoring device is controlled based on measurement of one or more physiological values of the living organism by at least one of the two devices. In an illustrative embodiment, the medical device and the monitoring device are configured to include respective physiological value sensors for measuring respective dynamic physiological values of the living organism. The medical device is further configured to determine if the dynamic physiological values are sufficiently similar to one another and to grant or deny the monitoring device access to the medical device based on the determination.

    摘要翻译: 在包括医疗装置和监视装置的系统中提供增强的安全性。 医疗装置被配置为植入生物体,并且包括处理电路和用于与监视装置通信的接口。 基于由两个装置中的至少一个测量生物体的一个或多个生理值来控制由监视装置对医疗装置的访问。 在说明性实施例中,医疗装置和监视装置被配置为包括用于测量活体的各个动态生理值的各自的生理值传感器。 医疗设备还被配置为确定动态生理值是否彼此足够相似,并且基于该确定来授予或拒绝监视设备对医疗设备的访问。

    Gaming systems with authentication token support
    3.
    发明授权
    Gaming systems with authentication token support 有权
    具有认证令牌支持的游戏系统

    公开(公告)号:US09280871B2

    公开(公告)日:2016-03-08

    申请号:US11774857

    申请日:2007-07-09

    IPC分类号: G07F17/32

    CPC分类号: G07F17/3251 G07F17/32

    摘要: Techniques for providing authentication functionality in a gaming system are disclosed. In one aspect, a gaming system is configured such that, at a given point during a current session of a game in progress that involves at least one user previously granted access by the system to participate in the current session, information available from an authentication token associated with the user is obtained prior to allowing the user to take a particular action in the game. A determination is made as to whether or not the user will be allowed to take the particular action in the game, based on the obtained information. The obtained information may comprise, for example, at least a portion of a one-time password generated by a hardware or software authentication token.

    摘要翻译: 公开了一种用于在游戏系统中提供认证功能的技术。 在一个方面,游戏系统被配置为使得在正在进行的游戏的当前会话期间的给定点处涉及至少一个用户先前被系统授权参与当前会话的访问,来自认证令牌的信息 在允许用户在游戏中采取特定动作之前获得与用户相关联。 根据所获得的信息确定用户是否将被允许在游戏中采取特定动作。 获得的信息可以包括例如由硬件或软件认证令牌生成的一次性密码的至少一部分。

    Access control for implanted medical devices
    4.
    发明授权
    Access control for implanted medical devices 有权
    植入医疗器械的门禁控制

    公开(公告)号:US08515070B2

    公开(公告)日:2013-08-20

    申请号:US12251036

    申请日:2008-10-14

    IPC分类号: H04K1/00 H04Q5/22 A61N1/00

    摘要: Enhanced security is provided in a system comprising a medical device and a monitoring device. The medical device is configured for implantation into a living organism, and comprises processing circuitry and an interface for communicating with the monitoring device. Access to the medical device by the monitoring device is controlled based on measurement of one or more physiological values of the living organism by at least one of the two devices. In an illustrative embodiment, the medical device and the monitoring device are configured to include respective physiological value sensors for measuring respective dynamic physiological values of the living organism. The medical device is further configured to determine if the dynamic physiological values are sufficiently similar to one another and to grant or deny the monitoring device access to the medical device based on the determination.

    摘要翻译: 在包括医疗装置和监视装置的系统中提供增强的安全性。 医疗装置被配置为植入生物体,并且包括处理电路和用于与监视装置通信的接口。 基于由两个装置中的至少一个测量生物体的一个或多个生理值来控制由监视装置对医疗装置的访问。 在说明性实施例中,医疗装置和监视装置被配置为包括用于测量活体的各个动态生理值的各自的生理值传感器。 医疗设备还被配置为确定动态生理值是否彼此足够相似,并且基于该确定来授予或拒绝监视设备对医疗设备的访问。

    Authentication methods and apparatus using pairing protocols and other techniques
    5.
    发明授权
    Authentication methods and apparatus using pairing protocols and other techniques 有权
    使用配对协议和其他技术的认证方法和设备

    公开(公告)号:US08495372B2

    公开(公告)日:2013-07-23

    申请号:US11939232

    申请日:2007-11-13

    IPC分类号: H04L9/32 H04L9/00

    摘要: In one aspect, a first processing device, which may be an authentication token, establishes a shared key through a pairing protocol carried out between the first processing device and a second processing device. The pairing protocol also involves communication between the second processing device and an authentication server. As part of the pairing protocol, the first processing device sends identifying information to the second processing device, and the second processing device utilizes the identifying information to obtain the shared key from the authentication server. The first processing device encrypts authentication information utilizing the shared key, and transmits the encrypted authentication information from the first processing device to the second processing device. The second processing device utilizes the shared key to decrypt the encrypted authentication information.

    摘要翻译: 一方面,可以是认证令牌的第一处理设备通过在第一处理设备和第二处理设备之间执行的配对协议来建立共享密钥。 配对协议还涉及第二处理设备和认证服务器之间的通信。 作为配对协议的一部分,第一处理设备向第二处理设备发送识别信息,并且第二处理设备利用识别信息从认证服务器获得共享密钥。 第一处理装置利用共享密钥加密认证信息,并将加密的认证信息从第一处理装置发送到第二处理装置。 第二处理装置利用共享密钥对加密的认证信息进行解密。

    Wireless authentication methods and apparatus
    6.
    发明授权
    Wireless authentication methods and apparatus 有权
    无线认证方法和设备

    公开(公告)号:US09137012B2

    公开(公告)日:2015-09-15

    申请号:US11671264

    申请日:2007-02-05

    摘要: A first processing device, which may be, for example, a wireless authentication token or an RFID tag, transmits information in a wireless network in a manner that emulates standard communications of an access point of the wireless network, although the first processing device is not configured to operate as an actual access point of the wireless network. A second processing device, which may be, for example, a computer or other station of the wireless network, receives the transmitted information and is able to determine therefrom that the information originates from an emulated access point rather than an actual access point. The second processing device responds to this condition by utilizing the transmitted information in a manner distinct from its utilization of similar information received from the actual access point of the wireless network.

    摘要翻译: 可以是例如无线认证令牌或RFID标签的第一处理设备以模拟无线网络的接入点的标准通信的方式在无线网络中发送信息,尽管第一处理设备不是 被配置为作为无线网络的实际接入点进行操作。 可以是例如无线网络的计算机或其他站的第二处理设备接收所发送的信息,并且能够从其确定信息源自仿真接入点而不是实际接入点。 第二处理装置以与从无线网络的实际接入点接收到的类似信息不同的方式利用所发送的信息来响应该条件。

    Proxy device for enhanced privacy in an RFID system
    7.
    发明授权
    Proxy device for enhanced privacy in an RFID system 有权
    用于RFID系统中增强隐私的代理设备

    公开(公告)号:US07920050B2

    公开(公告)日:2011-04-05

    申请号:US11193729

    申请日:2005-07-29

    IPC分类号: H04Q5/22

    CPC分类号: G06K19/07336

    摘要: A proxy device is disclosed for use in an RFID system comprising a plurality of RFID devices and at least one reader which communicates with the proxy device and one or more of the RFID devices. The proxy device acquires information characterizing at least a given one of the RFID devices, controls the given RFID device so as to at least partially prevent the given RFID device from being read by the reader, and communicates with the reader in a manner which simulates the given RFID device. This advantageously allows the proxy device to implement privacy policies of arbitrary sophistication on behalf of the given RFID device. The proxy device subsequently releases control of the given RFID device so as to permit the given RFID device to again be read by the reader.

    摘要翻译: 公开了用于RFID系统中的代理设备,该RFID系统包括多个RFID设备和至少一个与代理设备和一个或多个RFID设备通信的读取器。 代理设备获取表征至少一个给定的RFID设备的信息,控制给定的RFID设备,以至少部分地防止给定的RFID设备被读取器读取,并以模拟该设备的方式与读取器通信 给定RFID设备。 这有利地允许代理设备代表给定的RFID设备实现任意复杂的隐私策略。 代理设备随后释放给定RFID设备的控制,以便允许读取器再次读取给定的RFID设备。

    Tokencode exchanges for peripheral authentication
    8.
    发明授权
    Tokencode exchanges for peripheral authentication 有权
    令牌代码交换外围认证

    公开(公告)号:US08607045B2

    公开(公告)日:2013-12-10

    申请号:US11530655

    申请日:2006-09-11

    IPC分类号: G06F21/00

    摘要: In a system comprising a transient storage device (TSD) or other type of peripheral configured for communication with a host device, a first one-time password or other type of code is generated in the peripheral and transmitted to the host device. The first code is presented by the host device to an authentication server for authentication. The host device receives a second one-time password or other type of code from the authentication server and transmits it to the peripheral for authentication.

    摘要翻译: 在包括被配置为与主机设备进行通信的瞬时存储设备(TSD)或其他类型的外围设备的系统中,在外围设备中生成第一个一次性密码或其他类型的代码,并发送给主机设备。 第一个代码由主机设备提供给认证服务器进行认证。 主机设备从认证服务器接收第二个一次性密码或其他类型的代码,并将其发送到外围设备进行认证。