公开(公告)号：US20070260874A1

公开(公告)日：2007-11-08

申请号：US11417108

申请日：2006-05-04

申请人： Neil Adams ,  Herbert Little ,  Michael Brown ,  Michael Brown ,  Michael Kirkup

发明人： Neil Adams ,  Herbert Little ,  Michael Brown ,  Michael Brown ,  Michael Kirkup

IPC分类号： H04L9/00

CPC分类号： H04L51/38 ,  H04L9/3263 ,  H04L63/0823 ,  H04L2209/80 ,  H04W4/02 ,  H04W4/12 ,  H04W12/06

摘要： A system and method for processing certificates located in a certificate search. Certificates located in a certificate search are processed at a data server (e.g. a mobile data server) coupled to a computing device (e.g. a mobile device) to determine status data that can be used to indicate the status of those certificates to a user of the computing device, without having to download those certificates to the computing device in their entirety. The data server is further adapted to transmit the status data to the computing device. In one embodiment, at least one status property of the certificates is verified at the data server in determining the status data. In another embodiment, additional certificate data is determined and transmitted to the computing device, which can be used by the computing device to verify, at the computing device, at least one other status property of the certificates.

摘要翻译： 用于处理位于证书搜索中的证书的系统和方法。 位于证书搜索中的证书在耦合到计算设备（例如，移动设备）的数据服务器（例如移动数据服务器）处理，以确定可用于向用户指示这些证书的状态的状态数据 计算设备，而无需将这些证书全部下载到计算设备。 数据服务器还适于将状态数据发送到计算设备。 在一个实施例中，在确定状态数据时，在数据服务器处验证证书的至少一个状态属性。 在另一个实施例中，确定附加证书数据并将其发送到计算设备，计算设备可以由计算设备在计算设备处验证证书的至少一个其他状态属性。

公开(公告)号：US20070038820A1

公开(公告)日：2007-02-15

申请号：US11202786

申请日：2005-08-11

申请人： Michael Brown ,  Herbert Little ,  Michael Brown

发明人： Michael Brown ,  Herbert Little ,  Michael Brown

IPC分类号： G06F13/28

CPC分类号： G06F21/79 ,  G06F12/0802 ,  G06F12/1408

摘要： Increasing security for a hand-held data processing device with communication functionality where such a device includes an access-ordered memory cache relating to communications carried out by the device. The hand-held data processing device has a locked state that is entered by the device receiving or initiating a trigger. On occurrence of the trigger to enter the locked state the memory cache is reordered so as to disrupt the access-ordering of the cache to obscure device traffic information and thus increase the security of the device in the locked state.

摘要翻译： 提高具有通信功能的手持式数据处理设备的安全性，其中这样的设备包括与由设备执行的通信相关的访问有序的存储器高速缓存。 手持式数据处理装置具有被接收或发起触发的装置输入的锁定状态。 在发生触发器进入锁定状态时，存储器高速缓存被重新排序，以便中断高速缓存的访问排序以模糊设备交通信息，从而增加处于锁定状态的设备的安全性。

公开(公告)号：US20060288207A1

公开(公告)日：2006-12-21

申请号：US11154953

申请日：2005-06-17

申请人： Michael Brown ,  Herbert Little ,  Michael Brown ,  Michael McCallum ,  Scott Totzke ,  Neil Adams

发明人： Michael Brown ,  Herbert Little ,  Michael Brown ,  Michael McCallum ,  Scott Totzke ,  Neil Adams

IPC分类号： H04L9/00

CPC分类号： H04L9/088 ,  H04L63/0428 ,  H04L63/20 ,  H04L2209/80

摘要： A communication system is provided with program logic for enforcing an IT Policy specifying suitable encryption encoding levels for corresponding security classification levels (and/or encryption strengths).

摘要翻译： 通信系统被提供有用于执行IT策略的程序逻辑，用于指定用于相应的安全分类级别（和/或加密强度）的合适的加密编码级别。

公开(公告)号：US20060094442A1

公开(公告)日：2006-05-04

申请号：US10976303

申请日：2004-10-29

申请人： Michael Kirkup ,  Michael Brown ,  Herbert Little ,  Ian Robertson ,  Michael Brown

发明人： Michael Kirkup ,  Michael Brown ,  Herbert Little ,  Ian Robertson ,  Michael Brown

IPC分类号： H04Q7/20

CPC分类号： H04W88/02

摘要： A mobile wireless communication device also has at least one wired communication port. Enhanced security is achieved by permitting the device to automatically disable one or more wireless ports when connected to a wired port. Specific combinations/permutations of such automatic control may be effected by use of an IT Policy also resident on the device.

公开(公告)号：US20050251680A1

公开(公告)日：2005-11-10

申请号：US11118236

申请日：2005-04-29

申请人： Michael Brown ,  Herbert Little ,  David MacFarlane ,  Michael Brown ,  Dinah Davis

发明人： Michael Brown ,  Herbert Little ,  David MacFarlane ,  Michael Brown ,  Dinah Davis

IPC分类号： H04L9/00 ,  H04L9/30 ,  H04L29/06

CPC分类号： H04L9/08 ,  H04L9/002 ,  H04L9/0841 ,  H04L9/0844 ,  H04L9/3066 ,  H04L9/3215 ,  H04L9/3226 ,  H04L63/061 ,  H04L63/083 ,  H04L63/18 ,  H04L2209/80 ,  H04W12/04 ,  H04W12/06

摘要： A method for secure bidirectional communication between two systems is described. A first key pair and a second key pair are generated, the latter including a second public key that is generated based upon a shared secret. First and second public keys are sent to a second system, and third and fourth public keys are received from the second system. The fourth public key is generated based upon the shared secret. A master key for encrypting messages is calculated based upon a first private key, a second private key, the third public key and the fourth public key. For re-keying, a new second key pair having a new second public key and a new second private key is generated, and a new fourth public key is received. A new master key is calculated using elliptic curve calculations using the new second private key and the new fourth public key.

摘要翻译： 描述了两个系统之间的安全双向通信的方法。 产生第一密钥对和第二密钥对，后者包括基于共享秘密生成的第二公钥。 第一和第二公钥被发送到第二系统，并且从第二系统接收第三和第四公钥。 第四个公钥是基于共享的秘密生成的。 基于第一私钥，第二私钥，第三公钥和第四公钥来计算用于加密消息的主密钥。 为了重新键入，生成具有新的第二公钥和新的第二私钥的新的第二密钥对，并接收新的第四公钥。 使用新的第二私钥和新的第四公钥，使用椭圆曲线计算来计算新的主密钥。

公开(公告)号：US20050250473A1

公开(公告)日：2005-11-10

申请号：US10996369

申请日：2004-11-26

申请人： Michael Brown ,  Michael Brown ,  Michael Kirkup ,  Herbert Little

发明人： Michael Brown ,  Michael Brown ,  Michael Kirkup ,  Herbert Little

IPC分类号： G06F12/14 ,  G06F13/14 ,  H04L9/00 ,  H04L9/32 ,  H04L29/06

CPC分类号： H04L9/3271 ,  H04L9/3226 ,  H04L9/3236 ,  H04L63/083 ,  H04L2209/80

摘要： A challenge response scheme includes the authentication of a requesting device by an authenticating device. The authenticating device generates a challenge that is issued to the requesting device. The requesting device combines the challenge with a hash of a password provided by a user of the requesting device, and the combination of the hash of the password and the challenge is further hashed in order to generate a requesting encryption key that is used to encrypt the user supplied password. The encrypted user supplied password is sent to the authenticating device as a response to the issued challenge. The authenticating device generates an authenticating encryption key by generating the hash of a combination of the challenge and a stored hash of an authenticating device password. The authenticating encryption key is used to decrypt the response in order to retrieve the user-supplied password. If a hash of the user-supplied password matches the stored hash of the authenticating device password, then the requesting device has been authenticated and the authenticating device is in possession of the password.

摘要翻译： 挑战响应方案包括认证设备对请求设备的认证。 认证设备产生发出到请求设备的质询。 请求设备将挑战与由请求设备的用户提供的密码的散列相结合，并进一步散列密码散列和质询的组合，以便生成用于加密的请求加密密钥 用户提供的密码。 加密的用户提供的密码作为对发布的挑战的响应被发送到认证设备。 认证设备通过生成质询的组合和存储的认证设备密码的哈希的散列来生成认证加密密钥。 认证加密密钥用于解密响应，以便检索用户提供的密码。 如果用户提供的密码的散列与存储的认证设备密码的哈希匹配，则请求设备已被认证，认证设备拥有密码。

公开(公告)号：US20050071508A1

公开(公告)日：2005-03-31

申请号：US10916098

申请日：2004-08-11

申请人： Michael Brown ,  Michael Brown ,  Herbert Little

发明人： Michael Brown ,  Michael Brown ,  Herbert Little

IPC分类号： G06F20060101 ,  G06F11/30 ,  G06F12/14 ,  G06F15/16 ,  H04L9/00 ,  H04L12/24 ,  H04L12/54 ,  H04W12/10

CPC分类号： H04L63/123 ,  H04L51/38 ,  H04L63/0272 ,  H04L63/0442 ,  H04L63/0823 ,  H04L63/168 ,  H04W12/10

摘要： Systems and methods for processing encoded messages within a wireless communication system. A server within the wireless communication system provides one or more indications to a mobile device as to certain conditions existing with respect to an encoded message. The mobile device performs a different message processing function based upon whether the indication is provided. The indications may include indicating whether a message exceeds a message size threshold and/or may indicate whether a partial message is being sent.

摘要翻译： 用于处理无线通信系统内的编码消息的系统和方法。 无线通信系统内的服务器根据对编码的消息存在的某些条件向移动设备提供一个或多个指示。 移动设备基于是否提供指示来执行不同的消息处理功能。 指示可以包括指示消息是否超过消息大小阈值和/或可以指示是否正在发送部分消息。

公开(公告)号：US20080016359A1

公开(公告)日：2008-01-17

申请号：US11776099

申请日：2007-07-11

申请人： James Godfrey ,  Herbert Little ,  Michael Brown ,  Neil Adams ,  Carl Cherry ,  Timothy Tyhurst ,  Michael Brown

发明人： James Godfrey ,  Herbert Little ,  Michael Brown ,  Neil Adams ,  Carl Cherry ,  Timothy Tyhurst ,  Michael Brown

IPC分类号： H04L9/00

CPC分类号： H04L12/5835 ,  G06Q10/107 ,  H04L51/066 ,  H04L51/38 ,  H04L63/0442 ,  H04L63/045 ,  H04L63/062 ,  H04L63/101 ,  H04L63/126 ,  H04L67/04 ,  H04L67/28 ,  H04L67/2828 ,  H04L69/04 ,  H04L69/329 ,  H04L2463/062 ,  H04W4/12 ,  H04W4/16 ,  H04W12/02 ,  H04W12/10 ,  H04W24/02 ,  H04W28/06

摘要： A system and method are provided for pre-processing encrypted and/or signed messages at a host system before the message is transmitted to a wireless mobile communication device. The message is received at the host system from a message sender. There is a determination as to whether any of the message receivers has a corresponding wireless mobile communication device. For each message receiver that has a corresponding wireless mobile communication device: the message is processed so as to modify the message with respect to encryption and/or authentication aspect. The processed message is transmitted to a wireless mobile communication device that corresponds to the first message receiver. The system and method may include post-processing messages sent from a wireless mobile communications device to a remote system. Authentication and/or encryption message processing is performed upon the message. The processed message may then be sent through the remote system to one or more receivers.

摘要翻译： 提供了一种用于在将消息发送到无线移动通信设备之前在主机系统处理加密和/或签名消息的系统和方法。 消息在主机系统从消息发送方接收。 确定任何消息接收机是否具有相应的无线移动通信设备。 对于具有相应无线移动通信设备的每个消息接收机：处理该消息以便修改关于加密和/或认证方面的消息。 经处理的消息被发送到对应于第一消息接收器的无线移动通信设备。 系统和方法可以包括从无线移动通信设备发送到远程系统的后处理消息。 对消息执行认证和/或加密消息处理。 经处理的消息然后可以通过远程系统发送到一个或多个接收器。

公开(公告)号：US20070006279A1

公开(公告)日：2007-01-04

申请号：US11171477

申请日：2005-07-01

申请人： Michael Brown ,  Michael Brown ,  Neil Adams ,  Herbert Little ,  Michael McCallum ,  Dinah Davis

发明人： Michael Brown ,  Michael Brown ,  Neil Adams ,  Herbert Little ,  Michael McCallum ,  Dinah Davis

IPC分类号： H04L9/00

CPC分类号： H04L63/083 ,  G06F21/31 ,  G06F21/35 ,  G06F2221/2131

摘要： An active new password entry dialog provides a compact visual indication of adherence to password policies. A visual indication of progress towards meeting all applicable password policies is included in the display and updated as new password characters are being entered. A visual hint associated with at least one applicable password policy that has not yet been satisfied is also included in the display. An ability to obtain more detailed comprehensive password policy information is also permitted upon user command (e.g., including an indication whether each password policy has yet been met or unmet). Preferably the displayed hint and associated applicable password policy not yet satisfied is randomly changed during entry of a new password (e.g., upon the entry of each new password character).

摘要翻译： 活动的新密码输入对话框提供了遵守密码策略的紧凑视觉指示。 在满足所有适用密码策略方面的进展的可视指示包含在显示中，并随着输入新密码字符而更新。 与至少一个尚未满足的适用密码策略相关联的视觉提示也包括在显示器中。 在用户命令（例如，包括每个密码策略是否还未满足的指示）中，还允许获得更详细的综合密码策略信息的能力。 优选地，在新密码的输入期间（例如，在每个新密码字符的输入时），所显示的提示和尚未满足的相关联的适用密码策略被随机地改变。

公开(公告)号：US20060021038A1

公开(公告)日：2006-01-26

申请号：US11176116

申请日：2005-07-07

申请人： Michael Brown ,  Michael Brown ,  Michael Kirkup ,  Neil Adams ,  Herbert Little

发明人： Michael Brown ,  Michael Brown ,  Michael Kirkup ,  Neil Adams ,  Herbert Little

IPC分类号： G06F12/14

CPC分类号： H04L63/0823 ,  G06Q10/107 ,  H04L51/00

摘要： Systems and methods for secure e-mail message processing. A device is configured to receive a secure electronic message. The message may then be processed to determine whether the sender's address provided in the message is indicative of the sender's address provided in a sender's security-related certificate. A message's recipient can be notified based upon the determination.