公开(公告)号：US09749309B2

公开(公告)日：2017-08-29

申请号：US13124045

申请日：2008-09-12

申请人： Günther Horn ,  Wolf-Dietrich Moeller ,  Hariharan Rajasekaran

发明人： Günther Horn ,  Wolf-Dietrich Moeller ,  Hariharan Rajasekaran

IPC分类号： H04L29/06

CPC分类号： H04L63/0815 ,  H04L65/1016

摘要： A system comprising an IMS network (104), an adapter module (106), an identity provider (108) and an application (110) is described. The adapter module (106) is within an IMS trust domain. The application (110) is within the trust domain of the identity provider. A user of the system can access the application (110) via the IMS network (104), regardless of whether the application is within the IMS trust domain, by making use of the adapter module (106) to obtain the user's user credentials for the application from the identity provider.

公开(公告)号：US20110202986A1

公开(公告)日：2011-08-18

申请号：US13124045

申请日：2008-09-12

申请人： Gunther Horn ,  Wolf-Dietrich Moeller ,  Hariharan Rajasekaran

发明人： Gunther Horn ,  Wolf-Dietrich Moeller ,  Hariharan Rajasekaran

IPC分类号： H04L9/32 ,  G06F21/00

CPC分类号： H04L63/0815 ,  H04L65/1016

摘要： A system comprising an IMS network (104), an adapter module (106), an identity provider (108) and an application (110) is described. The adapter module (106) is within an IMS trust domain. The application (110) is within the trust domain of the identity provider. A user of the system can access the application (110) via the IMS network (104), regardless of whether the application is within the IMS trust domain, by making use of the adapter module (106) to obtain the user's user credentials for the application from the identity provider.

摘要翻译： 描述了包括IMS网络（104），适配器模块（106），身份提供商（108）和应用（110）的系统。 适配器模块（106）在IMS信任域内。 应用程序（110）在身份提供者的信任域内。 系统的用户可以通过使用适配器模块（106）获得用户的用户凭证，而不管应用是否在IMS信任域内，经由IMS网络（104）访问应用（110） 来自身份提供者的申请。

公开(公告)号：US08261076B2

公开(公告)日：2012-09-04

申请号：US12223386

申请日：2007-01-26

申请人： Jörg Abendroth ,  Jorge Cuellar ,  Hariharan Rajasekaran

发明人： Jörg Abendroth ,  Jorge Cuellar ,  Hariharan Rajasekaran

IPC分类号： H04L29/02 ,  H04L9/32

CPC分类号： H04L63/061 ,  H04L9/0844 ,  H04L63/0823 ,  H04L63/0869 ,  H04L2209/603 ,  H04L2209/805 ,  H04L2463/101

摘要： Based on security parameters previously agreed upon by first and second communication devices, a first security value is determined by the second communication device and transmitted to the first communication device. The first communication device determines second and third security values based on the security parameters and the first security value and transmits the second and third security values to the second communication device. The second communication device determines a fourth security value based on the security parameters and, if the second security value matches the fourth security value, authenticates the first communication device. Upon successful authentication of the first communication device, a shared key is determined by both communication devices based on the third security value and the security parameters.

摘要翻译： 基于先前由第一和第二通信设备约定的安全参数，第一安全值由第二通信设备确定并被发送到第一通信设备。 第一通信设备基于安全参数和第一安全值确定第二和第三安全值，并将第二和第三安全值发送到第二通信设备。 第二通信设备基于安全参数确定第四安全值，并且如果第二安全值与第四安全值匹配，则认证第一通信设备。 在第一通信设备的成功认证之后，基于第三安全值和安全参数，由两个通信设备确定共享密钥。

公开(公告)号：US08122516B2

公开(公告)日：2012-02-21

申请号：US11918072

申请日：2006-04-04

申请人： Jorge Cuellar ,  Michael Marhöfer ,  Hariharan Rajasekaran

发明人： Jorge Cuellar ,  Michael Marhöfer ,  Hariharan Rajasekaran

IPC分类号： G06F7/04 ,  G06F21/00

CPC分类号： H04L63/0428 ,  H04L63/0807 ,  H04L2463/101

摘要： A method for enabling a first party to provide a second party with personalized digital content includes at a network unit: in response to receiving a request from a first party, the request including an identifier identifying a second party, retrieving identity credentials of the second party; and transmitting the identity credentials of the second part to a first party or to a content providing system; and in a content providing system: in response to receiving: a) an identifier from the first party, the identifier identifying digital content in a digital content storage, and b) the identity credentials of the second party, personalizing digital content using the identity credentials, the personalizing adapted to enable the second party to reproduce the digital content but to prevent any unauthorized party to reproduce it; and delivering the personalized digital content to the first party.

摘要翻译： 用于使第一方能够向第二方提供个性化数字内容的方法包括在网络单元处：响应于接收到来自第一方的请求，所述请求包括标识第二方的标识符，检索第二方的身份证书 ; 以及将第二部分的身份证件发送给第一方或内容提供系统; 并且在内容提供系统中：响应于接收：a）来自第一方的标识符，识别数字内容存储器中的数字内容的标识符，以及b）第二方的身份证件，使用身份证件个性化数字内容 个性化使得第二方能够再现数字内容，但是防止任何未经授权的方复制数字内容; 并将个性化数字内容提供给第一方。

公开(公告)号：US20070061863A1

公开(公告)日：2007-03-15

申请号：US11217719

申请日：2005-09-01

申请人： Hariharan Rajasekaran

发明人： Hariharan Rajasekaran

IPC分类号： H04L9/32 ,  G06K9/00

CPC分类号： G06Q30/02 ,  G06F21/10 ,  G06F2221/0788

摘要： Disclosed is a method and system for distribution of digital protected content data via a peer-to-peer data network, wherein for each user connected to said peer-to-peer data network a corresponding credit counter is provided for acquiring protected content data from a content provider, wherein said credit counter is increased depending on the amount of protected content data uploaded by said user to said peer-to-peer data network.

摘要翻译： 公开了一种用于经由对等数据网络分发数字保护内容数据的方法和系统，其中对于连接到所述对等数据网络的每个用户，提供相应的信用计数器用于从 内容提供商，其中所述信用计数器根据由所述用户上传到所述对等数据网络的受保护内容数据的数量而增加。

公开(公告)号：US20090249070A1

公开(公告)日：2009-10-01

申请号：US11887585

申请日：2006-03-30

申请人： Jörg Abendroth ,  Jorge Cuellar ,  Michael Marhöfer ,  Hariharan Rajasekaran

发明人： Jörg Abendroth ,  Jorge Cuellar ,  Michael Marhöfer ,  Hariharan Rajasekaran

IPC分类号： H04L9/32 ,  G06F21/00

CPC分类号： G06F21/10

摘要： Digital right management systems are technically constructed for protecting and carrying out wishes of a copyright holder such that the digital content is connected in a cryptographic and unique manner to any particular device and/or data carrier. Use of the digital content on other devices of the person who acquires rights is only possible after previous registration by the copyright holder. The person who acquires rights is enabled to manage the acquired rights thereof themselves on the electronic data object without instructing the intervention of a central copyright holder. This is accomplished by the person who acquires the rights creating partial amounts of the user rights having individual user rights. The digital content can be used, respectively, in the periphery of the created partial amounts of the individual user rights.

摘要翻译： 数字权利管理系统在技术上被构造用于保护和执行版权所有者的愿望，使得数字内容以加密和唯一的方式连接到任何特定的设备和/或数据载体。 仅在获得权利的人的其他设备上使用数字内容才可能在版权所有人先前注册之后。 获得权利的人能够在电子数据对象上自己管理所获得的权利，而不指示中央着作权人的干预。 这是由获得创建部分数量的具有个人用户权限的用户权限的权利的人完成的。 数字内容可以分别用于所创建的部分数量的个人用户权限的外围。

公开(公告)号：US20120266224A1

公开(公告)日：2012-10-18

申请号：US13500503

申请日：2009-12-30

申请人： Nils Gruschka ,  Luigi Lo Iacono ,  Gregory Allen Kohring ,  Hariharan Rajasekaran

发明人： Nils Gruschka ,  Luigi Lo Iacono ,  Gregory Allen Kohring ,  Hariharan Rajasekaran

IPC分类号： G06F21/20

CPC分类号： G06F21/35 ,  G06F2221/2103 ,  H04L63/067

摘要： A method for user authentication for accessing from a client to a server over a packet based network using an one-time password, wherein the client includes a first secret, and the server includes a database for storing a second secret and a chosen username associated with the second secret, wherein the method includes providing the second secret associated with the first secret by the client to the server and storing the second secret and the chosen username in the database; transmitting a challenge from the server to the client; computing the one-time password by the client using the second secret and the random data decoded from the challenge; submitting the one-time password and the chosen username on the client to access the server; validating the one time password received from the client with the one-time password.

摘要翻译： 一种用于通过基于分组的网络使用一次性密码从客户机访问服务器的用户认证方法，其中所述客户端包括第一秘密，并且所述服务器包括用于存储第二密码的数据库和与 所述第二秘密，其中所述方法包括向所述服务器提供与所述客户端的第一秘密相关联的第二秘密，并将所述第二秘密和所选择的用户名存储在所述数据库中; 从服务器向客户端发送挑战; 使用第二秘密和从挑战中解码的随机数据计算客户端的一次性密码; 在客户端提交一次性密码和所选择的用户名以访问服务器; 使用一次性密码验证从客户端收到的一次性密码。

公开(公告)号：US20090070862A1

公开(公告)日：2009-03-12

申请号：US11918072

申请日：2006-04-04

申请人： Jorge Cuellar ,  Michael Marhofer ,  Hariharan Rajasekaran

发明人： Jorge Cuellar ,  Michael Marhofer ,  Hariharan Rajasekaran

IPC分类号： G06F21/20

CPC分类号： H04L63/0428 ,  H04L63/0807 ,  H04L2463/101

摘要： A method for enabling a first party to provide a second party with personalized digital content includes at a network unit: in response to receiving a request from a first party, the request including an identifier identifying a second party, retrieving identity credentials of the second party; and transmitting the identity credentials of the second part to a first party or to a content providing system; and in a content providing system: in response to receiving: a) an identifier from the first party, the identifier identifying digital content in a digital content storage, and b) the identity credentials of the second party, personalizing digital content using the identity credentials, the personalizing adapted to enable the second party to reproduce the digital content but to prevent any unauthorized party to reproduce it; and delivering the personalized digital content to the first party.

摘要翻译： 用于使第一方能够向第二方提供个性化数字内容的方法包括在网络单元处：响应于接收到来自第一方的请求，所述请求包括标识第二方的标识符，检索第二方的身份证书 ; 以及将第二部分的身份证件发送给第一方或内容提供系统; 并且在内容提供系统中：响应于接收：a）来自第一方的标识符，识别数字内容存储器中的数字内容的标识符，以及b）第二方的身份证件，使用身份证件个性化数字内容 个性化使得第二方能够再现数字内容，但是防止任何未经授权的方复制数字内容; 并将个性化数字内容提供给第一方。

公开(公告)号：US20090041251A1

公开(公告)日：2009-02-12

申请号：US12223386

申请日：2007-01-26

申请人： Jörg Abendroth ,  Jorge Cuellar ,  Hariharan Rajasekaran

发明人： Jörg Abendroth ,  Jorge Cuellar ,  Hariharan Rajasekaran

IPC分类号： H04L9/06 ,  G06F21/00

CPC分类号： H04L63/061 ,  H04L9/0844 ,  H04L63/0823 ,  H04L63/0869 ,  H04L2209/603 ,  H04L2209/805 ,  H04L2463/101

摘要： Based on security parameters previously agreed upon by first and second communication devices, a first security value is determined by the second communication device and transmitted to the first communication device. The first communication device determines second and third security values based on the security parameters and the first security value and transmits the second and third security values to the second communication device. The second communication device determines a fourth security value based on the security parameters and, if the second security value matches the fourth security value, authenticates the first communication device. Upon successful authentication of the first communication device, a shared key is determined by both communication devices based on the third security value and the security parameters.

摘要翻译： 基于先前由第一和第二通信设备约定的安全参数，第一安全值由第二通信设备确定并被发送到第一通信设备。 第一通信设备基于安全参数和第一安全值确定第二和第三安全值，并将第二和第三安全值发送到第二通信设备。 第二通信设备基于安全参数确定第四安全值，并且如果第二安全值与第四安全值匹配，则认证第一通信设备。 在第一通信设备的成功认证之后，基于第三安全值和安全参数，由两个通信设备确定共享密钥。