利索-全球专利检索

  1. 登录
  2. 注册

搜索结果

154 条记录 (耗时 0.027 秒)

    System and method for registering entities for code signing services
    2.
    发明申请
    System and method for registering entities for code signing services 有权
    用于注册代码签名服务实体的系统和方法

    公开(公告)号:US20070074034A1

    公开(公告)日:2007-03-29

    申请号:US11237727

    申请日:2005-09-29

    申请人: Neil Adams Michael Kirkup Herbert Little David Tapuska

    发明人: Neil Adams Michael Kirkup Herbert Little David Tapuska

    IPC分类号: H04L9/00

    CPC分类号: H04L9/3226 G06F21/629 H04L9/3215 H04L9/3247 H04L63/166 H04L2209/80 H04W12/10

    摘要: A system and method for registering entities for code signing services. The entities may be software application developers or other individuals or entities that wish to have applications digitally signed. Signing of the applications may be required in order to enable the applications to access sensitive APIs and associated resources of a computing device when the applications are executed on the computing device. In one embodiment, a method of registering entities for code signing services will comprise the step of transmitting at least some account data to the registering individual or entity using an out-of-band communication system. This provides added security that the individual or entity registering for a code signing service is who that individual or entity purports to be.

    摘要翻译: 一种用于注册代码签名服务实体的系统和方法。 实体可以是软件应用程序开发人员或希望对应用进行数字签名的其他个人或实体。 可能需要签署应用程序,以便在应用程序在计算设备上执行时,使应用程序能够访问计算设备的敏感API和相关资源。 在一个实施例中,注册用于代码签名服务的实体的方法将包括使用带外通信系统将至少一些帐户数据发送到注册个人或实体的步骤。 这提供了增加的安全性,注册代码签名服务的个人或实体是个人或实体所声称的。

    Remote hash generation in a system and method for providing code signing services
    3.
    发明申请
    Remote hash generation in a system and method for providing code signing services 审中-公开
    用于提供代码签名服务的系统中的远程哈希生成和方法

    公开(公告)号:US20070074032A1

    公开(公告)日:2007-03-29

    申请号:US11237725

    申请日:2005-09-29

    申请人: Neil Adams Michael Kirkup Herbert Little Michael Rybak David Tapuska

    发明人: Neil Adams Michael Kirkup Herbert Little Michael Rybak David Tapuska

    IPC分类号: H04L9/00

    CPC分类号: G06F21/629

    摘要: A system and method for providing code signing services to software application developers or to other individuals or entities that wish to have applications digitally signed. Signing of the applications may be required in order to enable the applications to access sensitive APIs and associated resources of a computing device when the applications are executed on the computing device. In one embodiment, a hash of an application is generated by a requestor of code signing services. The hash of the application, and not the application itself, may then be received in a code signing request to be digitally signed.

    摘要翻译: 一种用于向软件应用程序开发人员或希望对应用程序进行数字签名的其他个人或实体提供代码签名服务的系统和方法。 可能需要签署应用程序,以便在应用程序在计算设备上执行时,使应用程序能够访问计算设备的敏感API和相关资源。 在一个实施例中,应用的散列由代码签名服务的请求者产生。 然后可以在代码签名请求中接收应用程序的散列,而不是应用程序本身,以进行数字签名。

    System and method for providing an indication of randomness quality of random number data generated by a random data service
    4.
    发明申请
    System and method for providing an indication of randomness quality of random number data generated by a random data service 有权
    用于提供由随机数据服务生成的随机数数据的随机性质量指示的系统和方法

    公开(公告)号:US20070071238A1

    公开(公告)日:2007-03-29

    申请号:US11237723

    申请日:2005-09-29

    申请人: Neil Adams Michael Kirkup Herbert Little Michael Rybak David Tapuska

    发明人: Neil Adams Michael Kirkup Herbert Little Michael Rybak David Tapuska

    IPC分类号: H04L9/00

    CPC分类号: H04L9/0869 H04L9/3247 H04L2209/80

    摘要: A system and method for providing an indication of randomness quality of random number data generated by a random data service. The random data service may provide random number data to one or more applications adapted to generate key pairs used in code signing applications, for example. In one aspect, the method comprises the steps of: retrieving random number data from the random data service; applying one or more randomness tests to the retrieved random number data to compute at least one indicator of the randomness quality of the random number data; associating the at least one indicator with at least one state represented by a color; and displaying the color associated with the at least one indicator to a user. The color may be displayed in a traffic light icon, for example.

    摘要翻译: 一种用于提供由随机数据服务产生的随机数数据的随机性质量指示的系统和方法。 随机数据服务可以向例如适用于生成在代码签名应用中使用的密钥对的一个或多个应用提供随机数字数据。 一方面,该方法包括以下步骤:从随机数据服务中检索随机数字数据; 对所检索的随机数数据应用一个或多个随机性测试以计算所述随机数数据的随机性质量的至少一个指示符; 将所述至少一个指示符与由颜色表示的至少一个状态相关联; 以及将与所述至少一个指示符相关联的颜色显示给用户。 例如,颜色可以显示在交通灯图标中。

    Account management in a system and method for providing code signing services
    5.
    发明申请
    Account management in a system and method for providing code signing services 审中-公开
    用于提供代码签名服务的系统和方法中的帐户管理

    公开(公告)号:US20070074033A1

    公开(公告)日:2007-03-29

    申请号:US11237726

    申请日:2005-09-29

    申请人: Neil Adams Michael Kirkup Herbert Little Michael Rybak David Tapuska

    发明人: Neil Adams Michael Kirkup Herbert Little Michael Rybak David Tapuska

    IPC分类号: H04L9/00

    CPC分类号: G06F21/629 H04L9/3247 H04L2209/56 H04L2209/80

    摘要: A system and method for providing code signing services to software application developers or to other individuals or entities that wish to have applications digitally signed. Signing of the applications may be required in order to enable the applications to access sensitive APIs and associated resources of a computing device when the applications are executed on the computing device. In one embodiment, a method of providing code signing services will comprise at least some steps relating to registering the entities that seek access to sensitive APIs as controlled by the code signing authority, and managing the accounts of the registered entities.

    摘要翻译: 一种用于向软件应用程序开发人员或希望对应用程序进行数字签名的其他个人或实体提供代码签名服务的系统和方法。 可能需要签署应用程序,以便在应用程序在计算设备上执行时,使应用程序能够访问计算设备的敏感API和相关资源。 在一个实施例中,提供代码签名服务的方法将包括至少一些步骤,其涉及登记由代码签名机构控制的敏感API的访问的实体,以及管理注册实体的帐户。

    System and method for providing code signing services
    6.
    发明申请
    System and method for providing code signing services 审中-公开
    用于提供代码签名服务的系统和方法

    公开(公告)号:US20070074031A1

    公开(公告)日:2007-03-29

    申请号:US11237724

    申请日:2005-09-29

    申请人: Neil Adams Michael Kirkup Herbert Little Michael Rybak David Tapuska

    发明人: Neil Adams Michael Kirkup Herbert Little Michael Rybak David Tapuska

    IPC分类号: H04L9/00

    CPC分类号: G06F21/629

    摘要: A system and method for providing code signing services to software application developers or to other individuals or entities that wish to have applications digitally signed. Signing of the applications may be required in order to enable the applications to access sensitive APIs and associated resources of a computing device when the applications are executed on the computing device. In one embodiment, a method of providing code signing services will comprise at least some steps relating to registering the entities that seek access to sensitive APIs as controlled by the code signing authority. These steps are performed in order to establish trust relationships with those entities. The method of providing code signing services will also comprise additional steps relating to receiving and processing the code signing requests from such entities.

    摘要翻译: 一种用于向软件应用程序开发人员或希望对应用程序进行数字签名的其他个人或实体提供代码签名服务的系统和方法。 可能需要签署应用程序,以便在应用程序在计算设备上执行时,使应用程序能够访问计算设备的敏感API和相关资源。 在一个实施例中,提供代码签名服务的方法将包括至少一些步骤,其涉及登记由代码签名机构控制的敏感API访问的实体。 执行这些步骤以便与这些实体建立信任关系。 提供代码签名服务的方法还将包括与从这些实体接收和处理代码签名请求相关的附加步骤。

    System and method for processing certificates located in a certificate search
    7.
    发明申请
    System and method for processing certificates located in a certificate search 有权
    用于处理证书搜索中的证书的系统和方法

    公开(公告)号:US20070260874A1

    公开(公告)日:2007-11-08

    申请号:US11417108

    申请日:2006-05-04

    申请人: Neil Adams Herbert Little Michael Brown Michael Brown Michael Kirkup

    发明人: Neil Adams Herbert Little Michael Brown Michael Brown Michael Kirkup

    IPC分类号: H04L9/00

    CPC分类号: H04L51/38 H04L9/3263 H04L63/0823 H04L2209/80 H04W4/02 H04W4/12 H04W12/06

    摘要: A system and method for processing certificates located in a certificate search. Certificates located in a certificate search are processed at a data server (e.g. a mobile data server) coupled to a computing device (e.g. a mobile device) to determine status data that can be used to indicate the status of those certificates to a user of the computing device, without having to download those certificates to the computing device in their entirety. The data server is further adapted to transmit the status data to the computing device. In one embodiment, at least one status property of the certificates is verified at the data server in determining the status data. In another embodiment, additional certificate data is determined and transmitted to the computing device, which can be used by the computing device to verify, at the computing device, at least one other status property of the certificates.

    摘要翻译: 用于处理位于证书搜索中的证书的系统和方法。 位于证书搜索中的证书在耦合到计算设备(例如,移动设备)的数据服务器(例如移动数据服务器)处理,以确定可用于向用户指示这些证书的状态的状态数据 计算设备,而无需将这些证书全部下载到计算设备。 数据服务器还适于将状态数据发送到计算设备。 在一个实施例中,在确定状态数据时,在数据服务器处验证证书的至少一个状态属性。 在另一个实施例中,确定附加证书数据并将其发送到计算设备,计算设备可以由计算设备在计算设备处验证证书的至少一个其他状态属性。

    Challenge response system and method
    9.
    发明申请
    Challenge response system and method 有权
    挑战响应系统和方法

    公开(公告)号:US20050250473A1

    公开(公告)日:2005-11-10

    申请号:US10996369

    申请日:2004-11-26

    申请人: Michael Brown Michael Brown Michael Kirkup Herbert Little

    发明人: Michael Brown Michael Brown Michael Kirkup Herbert Little

    IPC分类号: G06F12/14 G06F13/14 H04L9/00 H04L9/32 H04L29/06

    CPC分类号: H04L9/3271 H04L9/3226 H04L9/3236 H04L63/083 H04L2209/80

    摘要: A challenge response scheme includes the authentication of a requesting device by an authenticating device. The authenticating device generates a challenge that is issued to the requesting device. The requesting device combines the challenge with a hash of a password provided by a user of the requesting device, and the combination of the hash of the password and the challenge is further hashed in order to generate a requesting encryption key that is used to encrypt the user supplied password. The encrypted user supplied password is sent to the authenticating device as a response to the issued challenge. The authenticating device generates an authenticating encryption key by generating the hash of a combination of the challenge and a stored hash of an authenticating device password. The authenticating encryption key is used to decrypt the response in order to retrieve the user-supplied password. If a hash of the user-supplied password matches the stored hash of the authenticating device password, then the requesting device has been authenticated and the authenticating device is in possession of the password.

    摘要翻译: 挑战响应方案包括认证设备对请求设备的认证。 认证设备产生发出到请求设备的质询。 请求设备将挑战与由请求设备的用户提供的密码的散列相结合,并进一步散列密码散列和质询的组合,以便生成用于加密的请求加密密钥 用户提供的密码。 加密的用户提供的密码作为对发布的挑战的响应被发送到认证设备。 认证设备通过生成质询的组合和存储的认证设备密码的哈希的散列来生成认证加密密钥。 认证加密密钥用于解密响应,以便检索用户提供的密码。 如果用户提供的密码的散列与存储的认证设备密码的哈希匹配,则请求设备已被认证,认证设备拥有密码。

    System and method for managing memory in a mobile device
    10.
    发明申请
    System and method for managing memory in a mobile device 审中-公开
    用于管理移动设备中的存储器的系统和方法

    公开(公告)号:US20060294304A1

    公开(公告)日:2006-12-28

    申请号:US11195615

    申请日:2005-08-03

    申请人: Michael Brown Michael Brown Michael Kirkup Neil Adams Herbert Little

    发明人: Michael Brown Michael Brown Michael Kirkup Neil Adams Herbert Little

    IPC分类号: G06F12/00 G06F12/14

    CPC分类号: G06F12/126 G06F12/14 G06F21/62 G06F21/6281 G06F2212/2022 G06Q20/341 G06Q20/3576 G07F7/1008 H04M1/72522

    摘要: A system and method for managing memory in a mobile device to prevent the swapping out of sensitive data to non-volatile storage from a volatile memory, to provide enhanced security for the sensitive data. In one broad aspect, there is provided a method of managing memory in a mobile device comprising the steps of identifying one or more data objects stored in a volatile memory on the mobile device to be swapped out to a non-volatile storage component, determining objects marked as containing sensitive data, and retaining so-marked objects in the volatile memory of the mobile device.

    摘要翻译: 一种用于管理移动设备中的存储器以防止将敏感数据从易失性存储器转换为非易失性存储器的系统和方法,以为敏感数据提供增强的安全性。 在一个广泛的方面,提供了一种管理移动设备中的存储器的方法,包括以下步骤:识别存储在移动设备上的易失性存储器中的一个或多个数据对象,以被交换到非易失性存储组件,确定对象 标记为包含敏感数据,并将所标记的对象保留在移动设备的易失性存储器中。