-
1.发明申请SYSTEM AND METHOD FOR PROVIDING SECURITY IN BROWSER-BASED ACCESS TO SMART CARDS 有权基于浏览器的智能卡访问安全的系统和方法公开(公告)号:US20110320818A1
公开(公告)日:2011-12-29
申请号:US13255106
申请日:2010-03-05
IPC分类号: H04L9/32
CPC分类号: H04L63/126 , G06F21/34 , H04L67/02 , H04L67/34 , H04W8/205
摘要: A method of operating a host computer having a web-browser with the capability of executing at least one web-browser add-on to provide a web application access to a smart card to protect the smart card from security threats associated with being connected to the Internet. Prior to establishing a connection between a web application executing in the web browser, verifying that the web application has been authorized to connect to a smart care using the web-browser add-on to provide a web application access to a smart card.
摘要翻译: 一种操作具有网络浏览器的主计算机的方法,所述主机具有执行至少一个网络浏览器附件的能力,以提供对智能卡的web应用访问,以保护智能卡免受与连接到智能卡相关联的安全威胁 互联网。 在建立在web浏览器中执行的web应用程序之间的连接之后,验证Web应用程序是否被授权使用web浏览器附件来连接到智能护理以提供web应用程序访问智能卡。
-
2.发明申请USER TO USER DELEGATION SERVICE IN A FEDERATED IDENTITY MANAGEMENT ENVIRONMENT 有权用户在联合身份管理环境中的用户代理服务公开(公告)号:US20140020051A1
公开(公告)日:2014-01-16
申请号:US14007328
申请日:2012-03-26
IPC分类号: H04L29/06
CPC分类号: H04L63/10 , G06F21/00 , G06F21/6218 , G06F2221/2137 , H04L9/32 , H04L29/06
摘要: Method for providing user-to-user delegation service in federated identity environment, characterized in that it comprises a delegation or assignment step wherein a delegator specifies said delegation at an identity provider for delegating a privilege or task to a delegatee to be performed at a service provider.
摘要翻译: 用于在联合身份环境中提供用户到用户委托服务的方法,其特征在于,其包括委托或分配步骤,其中委托者在身份提供者处指定所述委托以将特权或任务委托给在服务中执行的委托人 提供者
-
3.发明授权User to user delegation service in a federated identity management environment 有权联合身份管理环境中的用户到用户委派服务公开(公告)号:US09401918B2
公开(公告)日:2016-07-26
申请号:US14007328
申请日:2012-03-26
CPC分类号: H04L63/10 , G06F21/00 , G06F21/6218 , G06F2221/2137 , H04L9/32 , H04L29/06
摘要: Method for providing user-to-user delegation service in federated identity environment, characterized in that it comprises a delegation or assignment step wherein a delegator specifies said delegation at an identity provider for delegating a privilege or task to a delegatee to be performed at a service provider.
摘要翻译: 用于在联合身份环境中提供用户到用户委托服务的方法,其特征在于,其包括委托或分配步骤,其中委托者在身份提供者处指定所述委托以将特权或任务委托给在服务中执行的委托人 提供者
-
4.发明授权System and method for providing security in browser-based access to smart cards 有权用于在基于浏览器的智能卡访问中提供安全性的系统和方法公开(公告)号:US08713644B2
公开(公告)日:2014-04-29
申请号:US13255106
申请日:2010-03-05
CPC分类号: H04L63/126 , G06F21/34 , H04L67/02 , H04L67/34 , H04W8/205
摘要: A method of operating a host computer having a web-browser with the capability of executing at least one web-browser add-on to provide a web application access to a smart card to protect the smart card from security threats associated with being connected to the Internet. Prior to establishing a connection between a web application executing in the web browser, verifying that the web application has been authorized to connect to a smart care using the web-browser add-on to provide a web application access to a smart card.
摘要翻译: 一种操作具有网络浏览器的主计算机的方法,所述主机具有执行至少一个网络浏览器附件的能力,以提供对智能卡的web应用访问,以保护智能卡免受与连接到智能卡相关联的安全威胁 互联网。 在建立在web浏览器中执行的web应用程序之间的连接之后,验证Web应用程序是否被授权使用web浏览器附件来连接到智能护理以提供web应用程序访问智能卡。
-
公开(公告)号:US20090064301A1
公开(公告)日:2009-03-05
申请号:US11849117
申请日:2007-08-31
IPC分类号: G06F7/04
CPC分类号: G06F17/30896 , G06F9/468 , G06F21/33 , G06F21/34 , G06F2221/2119
摘要: A client-side application extension executable on a host computer from within a web-browser having the capability of executing at least one web-browser add-on to provide a user access to a smart card, connected to the host computer having a smart card resource manager, via the web-browser. The web-browser extension has instructions to direct the central processing unit to access data on the smart card via a web-browser and platform independent interface module and a web-browser and platform dependent wrapper module connected to the web-browser and platform independent interface module and to the smart card resource manager having a function processing module operable to receive a call to the at least one function for accessing data on the smart card and for transforming the function call into a corresponding call to the smart card resource manager.
摘要翻译: 客户端应用扩展在主机计算机上可在网络浏览器内执行,该网络浏览器具有执行至少一个网络浏览器附件的功能,以向用户提供连接到具有智能卡的主计算机的智能卡的用户访问 资源管理器,通过网络浏览器。 网络浏览器扩展具有指示中央处理单元通过网络浏览器和独立于平台的接口模块访问智能卡上的数据,以及连接到网络浏览器和平台独立接口的网络浏览器和平台依赖的包装器模块 模块和具有功能处理模块的智能卡资源管理器,所述功能处理模块可操作以接收对所述至少一个功能的呼叫以访问所述智能卡上的数据,并用于将所述功能呼叫转换为对所述智能卡资源管理器的对应呼叫。
-
公开(公告)号:US20070101145A1
公开(公告)日:2007-05-03
申请号:US11263324
申请日:2005-10-31
IPC分类号: H04L9/00
CPC分类号: H04L9/3271 , H04L9/3247 , H04L63/0815 , H04L63/12 , H04L2209/68
摘要: A consent service on a host computer providing cryptographically signed consent for user attributes by a user on a host computer to a web service provider. The consent service is operable to provide decryption of the user attributes acquired by the web service provider from an identity provider. The consent service displaying and acquiring user consent to one or more user attributes displayed in a browser web page to the user on the host computer. The consent service is operable to provide encryption of the user consented attributes and to generate cryptographically signed consent of the user. The consent service conveying and transmitting the user consented attribute and cryptographically signed user consent to the web service provider. The web service provider is operable to provide decryption of the user consented attributes and storing the user consented attributes and signed user consent. The web service provider sharing user consented attributes and user signed consent with other web service providers so the user on the host computer can access resources on the other web service providers without multiple authentication or any further interaction with the identity provider.
摘要翻译: 主机上的同意服务,由主机上的用户向Web服务提供商提供加密签名的用户属性同意。 同意服务可操作以从身份提供者提供由web服务提供商获取的用户属性的解密。 同意服务向主机上的用户显示并获取在浏览器网页中显示的一个或多个用户属性的用户同意。 同意服务可操作地提供用户同意的属性的加密并且生成用户的加密签名的同意。 同意服务传达和传送用户同意的属性,并加密地签署用户同意Web服务提供商。 网络服务提供者可操作地提供用户同意属性的解密并存储用户同意的属性和签名的用户同意。 Web服务提供商与其他Web服务提供商共享用户同意的属性和用户签名的同意,因此主计算机上的用户可以访问其他Web服务提供商上的资源,而无需多次身份验证或与身份提供者的任何进一步交互。
-
公开(公告)号:US07748609B2
公开(公告)日:2010-07-06
申请号:US11849117
申请日:2007-08-31
IPC分类号: G06F7/00
CPC分类号: G06F17/30896 , G06F9/468 , G06F21/33 , G06F21/34 , G06F2221/2119
摘要: A client-side application extension executable on a host computer from within a web-browser having the capability of executing at least one web-browser add-on to provide a user access to a smart card, connected to the host computer having a smart card resource manager, via the web-browser. The web-browser extension has instructions to direct the central processing unit to access data on the smart card via a web-browser and platform independent interface module and a web-browser and platform dependent wrapper module connected to the web-browser and platform independent interface module and to the smart card resource manager having a function processing module operable to receive a call to the at least one function for accessing data on the smart card and for transforming the function call into a corresponding call to the smart card resource manager.
摘要翻译: 客户端应用扩展在主机计算机上可在网络浏览器内执行,该网络浏览器具有执行至少一个网络浏览器附件的功能,以向用户提供连接到具有智能卡的主计算机的智能卡的用户访问 资源管理器,通过网络浏览器。 网络浏览器扩展具有指示中央处理单元通过网络浏览器和独立于平台的接口模块访问智能卡上的数据,以及连接到网络浏览器和平台独立接口的网络浏览器和平台依赖的包装器模块 模块和具有功能处理模块的智能卡资源管理器,所述功能处理模块可操作以接收对所述至少一个功能的呼叫以访问所述智能卡上的数据,并用于将所述功能呼叫转换为对所述智能卡资源管理器的对应呼叫。
-
公开(公告)号:US09111045B2
公开(公告)日:2015-08-18
申请号:US13448172
申请日:2012-04-16
CPC分类号: G06F21/44 , G06F13/387 , G06F21/34 , G06F21/77 , G06F21/79 , G06K19/0715 , G06K19/073
摘要: A storage device contains a smart-card device and a memory device, both of which are accessed though a controller. The storage device may be used in the same manner as a conventional smart-card device, or it may be used to store a relatively large amount of data in various partitions corresponding to the protection level of the data stored therein. The smart-card device stores critical security parameters that are provided to the controller to protect access to some or all of the partitions of the memory device. A host connected to the controller issues commands, and the controller analyzes the commands and responds to them in various ways depending upon the nature of the command. In particular, depending upon the nature of the command, the controller may either pass the command to the smart-card device, or ignore the command either indefinitely or until a predetermined event has occurred.
摘要翻译: 存储设备包含智能卡设备和存储设备,两者均通过控制器访问。 存储装置可以以与常规智能卡装置相同的方式使用,或者可以用于将相对大量的数据存储在与其中存储的数据的保护级别相对应的各个分区中。 智能卡设备存储提供给控制器的关键安全参数,以保护对存储设备的某些或所有分区的访问。 连接到控制器的主机发出命令,并且控制器根据命令的性质以各种方式分析命令并对其进行响应。 特别地,根据命令的性质,控制器可以将命令传递到智能卡设备,或者无限期地忽略该命令,或直到发生预定事件。
-
9.发明授权Critical security parameter generation and exchange system and method for smart-card memory modules 有权智能卡内存模块的关键安全参数生成与交换系统及方法公开(公告)号:US08930711B2
公开(公告)日:2015-01-06
申请号:US13437613
申请日:2012-04-02
IPC分类号: G06F21/00 , H04L29/06 , G06Q20/34 , G06F21/77 , G06F21/79 , H04W12/10 , G06F12/14 , G06F21/34
CPC分类号: H04L9/3234 , G06F21/34 , G06F21/77 , G06F21/79 , G06Q20/3563
摘要: A storage device contains a smart-card device and a memory device, which is connected to a controller. The storage device may be used in the same manner as a conventional smart-card device, or it may be used to store a relatively large amount of data. The memory device may also be used to store data or instructions for use by the smart-card device. The controller includes a security engine that uses critical security parameters stored in, and received from, the smart-card device. The critical security parameters may be sent to the controller in a manner that protects them from being discovered. The critical security parameters may be encryption and/or decryption keys that may encrypt data written to the memory device and/or decrypt data read from the memory device, respectively. Data and instructions used by the smart-card device may therefore stored in the memory device in encrypted form.
摘要翻译: 存储设备包含智能卡设备和连接到控制器的存储设备。 存储装置可以以与常规智能卡装置相同的方式使用,或者可以用于存储相对大量的数据。 存储器装置还可以用于存储由智能卡装置使用的数据或指令。 控制器包括使用存储在智能卡设备中并从智能卡设备接收的关键安全参数的安全引擎。 关键的安全参数可以以保护它们免受发现的方式发送到控制器。 关键的安全参数可以是加密和/或解密密钥,其可以分别加密写入存储器件的数据和/或解密从存储器件读取的数据。 因此,智能卡设备使用的数据和指令可以以加密形式存储在存储设备中。
-
10.发明申请SYSTEM AND METHOD FOR SUPPORTING MULTIPLE TOKENS HAVING A SMART CARD TO CONTROL PARAMETERS OF A FLASH MEMORY DEVICE 审中-公开用于支持具有智能卡以控制闪存存储器件的参数的多个功能的系统和方法公开(公告)号:US20090125645A1
公开(公告)日:2009-05-14
申请号:US11938777
申请日:2007-11-12
IPC分类号: G06F3/00
CPC分类号: G06F3/0644 , G06F3/0623 , G06F3/0632 , G06F3/0679 , G06F21/78 , G06F2221/2153
摘要: A system and method to control a device having at least one configurable parameter. Enumerating the device as a first peripheral device and as a second peripheral device wherein the first peripheral device corresponds to a first microcontroller connected to a storage medium and the second peripheral device corresponds to a second microcontroller. Controlling the at least one configurable parameter of the first microcontroller with respect to the storage medium by the second microcontroller. On initialization of the device, transmitting the at least one configurable parameter from the second microcontroller to the first microcontroller. Other systems and methods are disclosed.
摘要翻译: 一种用于控制具有至少一个可配置参数的设备的系统和方法。 将设备列举为第一外围设备和第二外围设备,其中第一外围设备对应于连接到存储介质的第一微控制器,而第二外围设备对应于第二微控制器。 通过第二微控制器控制第一微控制器相对于存储介质的至少一个可配置参数。 在初始化装置时,将至少一个可配置参数从第二微控制器发送到第一微控制器。 公开了其它系统和方法。
-
-
-
-
-
-
-
-
-
搜索结果
47 条记录 (耗时 0.021 秒)
