公开(公告)号：US20110041003A1

公开(公告)日：2011-02-17

申请号：US12718572

申请日：2010-03-05

申请人： Sudhir B. Pattar ,  Inhyok Cha ,  Andreas U. Schmidt ,  Andreas Leicher ,  Yogendra C. Shah ,  Dolores F. Howry ,  David G. Greiner ,  Lawrence L. Case ,  Michael V. Meyerstein ,  Louis J. Guccione

发明人： Sudhir B. Pattar ,  Inhyok Cha ,  Andreas U. Schmidt ,  Andreas Leicher ,  Yogendra C. Shah ,  Dolores F. Howry ,  David G. Greiner ,  Lawrence L. Case ,  Michael V. Meyerstein ,  Louis J. Guccione

IPC分类号： H04L9/32 ,  G06F21/20 ,  G06F11/07 ,  G06F11/20

CPC分类号： H04L41/0869 ,  H04L41/0654 ,  H04L41/0681 ,  H04L63/123 ,  H04L63/166 ,  H04W12/10 ,  H04W84/045

摘要： An apparatus and method for providing home evolved node-B (H(e)NB) integrity verification and validation using autonomous validation and semi-autonomous validation is disclosed herein.

摘要翻译： 本文公开了一种使用自主验证和半自主验证来提供家庭演进节点B（H（e）NB）完整性验证和验证的装置和方法。

公开(公告)号：US09253643B2

公开(公告)日：2016-02-02

申请号：US12718572

申请日：2010-03-05

申请人： Sudhir B. Pattar ,  Inhyok Cha ,  Andreas U. Schmidt ,  Andreas Leicher ,  Yogendra C. Shah ,  Dolores F. Howry ,  David G. Greiner ,  Lawrence L. Case ,  Michael V. Meyerstein ,  Louis J. Guccione

发明人： Sudhir B. Pattar ,  Inhyok Cha ,  Andreas U. Schmidt ,  Andreas Leicher ,  Yogendra C. Shah ,  Dolores F. Howry ,  David G. Greiner ,  Lawrence L. Case ,  Michael V. Meyerstein ,  Louis J. Guccione

IPC分类号： G06F11/20 ,  H04W12/10

CPC分类号： H04L41/0869 ,  H04L41/0654 ,  H04L41/0681 ,  H04L63/123 ,  H04L63/166 ,  H04W12/10 ,  H04W84/045

摘要： An apparatus and method for providing home evolved node-B (H(e)NB) integrity verification and validation using autonomous validation and semi-autonomous validation is disclosed herein.

摘要翻译： 本文公开了一种使用自主验证和半自主验证来提供家庭演进节点B（H（e）NB）完整性验证和验证的装置和方法。

公开(公告)号：US20110099605A1

公开(公告)日：2011-04-28

申请号：US12763827

申请日：2010-04-20

申请人： Inhyok Cha ,  Louis J. Guccione ,  Yogendra C. Shah ,  Andreas U. Schmidt ,  Sudhir B. Pattar

发明人： Inhyok Cha ,  Louis J. Guccione ,  Yogendra C. Shah ,  Andreas U. Schmidt ,  Sudhir B. Pattar

IPC分类号： G06F15/173 ,  G06F21/00

CPC分类号： H04W12/06 ,  H04L63/20 ,  H04W12/04

摘要： Methods and instrumentalities are disclosed that enable one or more domains on one or more devices to be owned or controlled by one or more different local or remote owners, while providing a level of system-wide management of those domains. Each domain may have a different owner, and each owner may specify policies for operation of its domain and for operation of its domain in relation to the platform on which the domain resides, and other domains. A system-wide domain manager may be resident on one of the domains. The system-wide domain manager may enforce the policies of the domain on which it is resident, and it may coordinate the enforcement of the other domains by their respective policies in relation to the domain in which the system-wide domain manager resides. Additionally, the system-wide domain manager may coordinate interaction among the other domains in accordance with their respective policies.

摘要翻译： 公开了使一个或多个设备上的一个或多个域由一个或多个不同的本地或远程所有者拥有或控制的方法和手段，同时提供这些域的系统范围管理级别。 每个域可以具有不同的所有者，并且每个所有者可以指定用于其域的操作的策略以及关于域所在的平台以及其他域的其域的操作。 系统范围的域管理员可能驻留在其中一个域上。 全系统域管理员可以强制执行其驻留的域的策略，并且可以通过其相关于与全系统域管理员所在的域相关的策略来协调其他域的强制。 另外，系统范围的域管理器可以根据各自的策略协调其他域之间的交互。

公开(公告)号：US09807608B2

公开(公告)日：2017-10-31

申请号：US12763827

申请日：2010-04-20

申请人： Inhyok Cha ,  Louis J. Guccione ,  Yogendra C. Shah ,  Andreas U. Schmidt ,  Sudhir B. Pattar

发明人： Inhyok Cha ,  Louis J. Guccione ,  Yogendra C. Shah ,  Andreas U. Schmidt ,  Sudhir B. Pattar

IPC分类号： H04W12/06 ,  H04W12/04 ,  H04L29/06

CPC分类号： H04W12/06 ,  H04L63/20 ,  H04W12/04

摘要： Methods and instrumentalities are disclosed that enable one or more domains on one or more devices to be owned or controlled by one or more different local or remote owners, while providing a level of system-wide management of those domains. Each domain may have a different owner, and each owner may specify policies for operation of its domain and for operation of its domain in relation to the platform on which the domain resides, and other domains. A system-wide domain manager may be resident on one of the domains. The system-wide domain manager may enforce the policies of the domain on which it is resident, and it may coordinate the enforcement of the other domains by their respective policies in relation to the domain in which the system-wide domain manager resides. Additionally, the system-wide domain manager may coordinate interaction among the other domains in accordance with their respective policies.

公开(公告)号：US20110010543A1

公开(公告)日：2011-01-13

申请号：US12718480

申请日：2010-03-05

申请人： Andreas U. Schmidt ,  Andreas Leicher ,  Inhyok Cha ,  Yogendra C. Shah ,  Sudhir B. Pattar ,  Dolores F. Howry ,  David G. Greiner ,  Lawrence Case ,  Michael V. Meyerstein ,  Louis J. Guccione

发明人： Andreas U. Schmidt ,  Andreas Leicher ,  Inhyok Cha ,  Yogendra C. Shah ,  Sudhir B. Pattar ,  Dolores F. Howry ,  David G. Greiner ,  Lawrence Case ,  Michael V. Meyerstein ,  Louis J. Guccione

IPC分类号： H04L9/32

CPC分类号： H04W12/10 ,  G06F21/44 ,  G06F21/57 ,  H04L63/123 ,  H04W12/0023 ,  H04W12/00502 ,  H04W12/00512 ,  H04W12/06 ,  H04W12/08

摘要： Methods, components and apparatus for implementing platform validation and management (PVM) are disclosed. PVM provides the functionality and operations of a platform validation entity with remote management of devices by device management components and systems such as a home node-B management system or component. Example PVM operations bring devices into a secure target state before allowing connectivity and access to a core network.

摘要翻译： 公开了实现平台验证和管理（PVM）的方法，组件和设备。 PVM通过设备管理组件和系统（如家庭节点B管理系统或组件）提供对设备进行远程管理的平台验证实体的功能和操作。 示例PVM操作在允许连接和访问核心网络之前将设备置于安全目标状态。

公开(公告)号：US08949997B2

公开(公告)日：2015-02-03

申请号：US13582867

申请日：2011-03-04

申请人： Andreas Schmidt ,  Andreas Leicher ,  Inhyok Cha ,  Sudhir B. Pattar ,  Yogendra C. Shah

发明人： Andreas Schmidt ,  Andreas Leicher ,  Inhyok Cha ,  Sudhir B. Pattar ,  Yogendra C. Shah

IPC分类号： H04L29/06 ,  H04W12/10 ,  H04L9/32 ,  G06F21/57

CPC分类号： G06F21/57 ,  G06F17/30327 ,  G06F21/53 ,  G06F21/64 ,  G06F2221/034 ,  H04L9/3234 ,  H04L9/3265 ,  H04L63/02 ,  H04L63/123 ,  H04L63/126 ,  H04L2209/30 ,  H04L2209/805 ,  H04W4/70 ,  H04W12/08 ,  H04W12/10

摘要： Systems, methods, and apparatus are provided for generating verification data that may be used for validation of a wireless transmit-receive unit (WTRU). The verification data may be generated using a tree structure having protected registers, represented as root nodes, and component measurements, represented as leaf nodes. The verification data may be used to validate the WTRU. The validation may be performed using split-validation, which is a form of validation described that distributes validation tasks between two or more network entities. Subtree certification is also described, wherein a subtree of the tree structure may be certified by a third party.

摘要翻译： 提供了系统，方法和装置，用于产生可用于验证无线发射 - 接收单元（WTRU）的验证数据。 验证数据可以使用具有表示为叶节点的根节点和组件测量的受保护寄存器的树结构来生成。 验证数据可以用于验证WTRU。 可以使用拆分验证来执行验证，分裂验证是描述的验证形式，其在两个或多个网络实体之间分发验证任务。 还描述了子树认证，其中树结构的子树可以由第三方认证。

公开(公告)号：US20130198838A1

公开(公告)日：2013-08-01

申请号：US13582867

申请日：2011-03-04

申请人： Andreas Schmidt ,  Andreas Leicher ,  Inhyok Cha ,  Sudhir B. Pattar ,  Yogendra C. Shah

发明人： Andreas Schmidt ,  Andreas Leicher ,  Inhyok Cha ,  Sudhir B. Pattar ,  Yogendra C. Shah

IPC分类号： H04W12/10

CPC分类号： G06F21/57 ,  G06F17/30327 ,  G06F21/53 ,  G06F21/64 ,  G06F2221/034 ,  H04L9/3234 ,  H04L9/3265 ,  H04L63/02 ,  H04L63/123 ,  H04L63/126 ,  H04L2209/30 ,  H04L2209/805 ,  H04W4/70 ,  H04W12/08 ,  H04W12/10

摘要： Systems, methods, and apparatus are provided for generating verification data that may be used for validation of a wireless transmit-receive unit (WTRU). The verification data may be generated using a tree structure having protected registers, represented as root nodes, and component measurements, represented as leaf nodes. The verification data may be used to validate the WTRU. The validation may be performed using split-validation, which is a form of validation described that distributes validation tasks between two or more network entities. Subtree certification is also described, wherein a subtree of the tree structure may be certified by a third party.

摘要翻译： 提供了系统，方法和装置，用于产生可用于验证无线发射 - 接收单元（WTRU）的验证数据。 验证数据可以使用具有表示为叶节点的根节点和组件测量的受保护寄存器的树结构来生成。 验证数据可以用于验证WTRU。 可以使用拆分验证来执行验证，分裂验证是描述的验证形式，其在两个或多个网络实体之间分发验证任务。 还描述了子树认证，其中树结构的子树可以由第三方认证。

公开(公告)号：US20120047551A1

公开(公告)日：2012-02-23

申请号：US12979874

申请日：2010-12-28

申请人： Sudhir B. Pattar ,  Inhyok Cha ,  Andreas Schmidt ,  Andreas Leicher ,  Yogendra C. Shah ,  Prabhakar R. Chitrapu ,  Lawrence Case

发明人： Sudhir B. Pattar ,  Inhyok Cha ,  Andreas Schmidt ,  Andreas Leicher ,  Yogendra C. Shah ,  Prabhakar R. Chitrapu ,  Lawrence Case

IPC分类号： G06F21/00 ,  G06F15/16

CPC分类号： H04W12/06 ,  H04W4/00 ,  H04W4/70 ,  H04W12/04031 ,  H04W12/08 ,  H04W12/10

摘要： Systems, methods, and instrumentalities are disclosed that provide for a gateway outside of a network domain to provide services to a plurality of devices. For example, the gateway may act as a management entity or as a proxy for the network domain. As a management entity, the gateway may perform a security function relating to each of the plurality of devices. The gateway may perform the security function without the network domain participating or having knowledge of the particular devices. As a proxy for the network, the gateway may receive a command from the network domain to perform a security function relating to each of a plurality of devices. The network may know the identity of each of the plurality of devices. The gateway may perform the security function for each of the plurality of devices and aggregate related information before sending the information to the network domain.

摘要翻译： 公开了提供网络外部的网关以向多个设备提供服务的系统，方法和工具。 例如，网关可以充当管理实体或作为网络域的代理。 作为管理实体，网关可以执行与多个设备中的每一个相关的安全功能。 网关可以在没有参与网络域或具有特定设备的知识的情况下执行安全功能。 作为网络的代理，网关可以从网络域接收命令以执行与多个设备中的每一个相关的安全功能。 网络可以知道多个设备中的每一个的身份。 网关可以在向网络域发送信息之前对多个设备中的每一个执行安全功能并聚合相关信息。