-
公开(公告)号:US07844082B2
公开(公告)日:2010-11-30
申请号:US11644573
申请日:2006-12-22
IPC分类号: G06K9/00
CPC分类号: G07C9/00087 , G06F21/32 , G06K9/00107
摘要: A method for authentication by biometric data, including receiving a biometric data set; evaluating if the received biometric data set is within a reference region, wherein the reference region represents a region associated with a reference biometric data set; evaluating if the received biometric data set is within a blackout region, wherein the blackout region represents a region associated with at least one previously received and positively authenticated biometric data set; and issuing a positive authentication if the received biometric data set is within the reference region, but outside the blackout region.
摘要翻译: 一种用于通过生物特征数据认证的方法,包括接收生物特征数据集; 评估所接收的生物统计数据集是否在参考区域内,其中所述参考区域表示与参考生物统计数据集相关联的区域; 评估所接收的生物统计数据集是否在中断区域内,其中所述中断区域表示与至少一个先前接收和正面认证的生物统计数据集相关联的区域; 以及如果所接收的生物统计数据集合在所述参考区域内,并且在所述停电区域之外,则发出正认证。
-
公开(公告)号:US20110173448A1
公开(公告)日:2011-07-14
申请号:US13063969
申请日:2009-09-17
申请人: Michael Baentsch , Peter Buhler , Thomas Eirich , Reto J. Hermann , Frank Hoering , Thorsten Kramp , Michael P. Kuyper-Hammond , Thomas D. Weigold
发明人: Michael Baentsch , Peter Buhler , Thomas Eirich , Reto J. Hermann , Frank Hoering , Thorsten Kramp , Michael P. Kuyper-Hammond , Thomas D. Weigold
IPC分类号: H04L9/00
CPC分类号: H04L63/0823 , G06F21/33 , G06F21/34
摘要: An authorization device for authorizing operations of a remote server requested from user computers via a data communications network includes a computer interface configured to connect to a local user computer for facilitating communication with the remote server via a data communications network, a user interface configured to present information to a user, and control logic. The control logic is adapted to use security data accessible to the control logic to establish, via the local user computer, a mutually-authenticated connection for encrypted end-to-end communications with the server; collect from the server, via the connection, information indicative of any operation requested via a different connection to the server and requiring authorization by the user; and present the information to the user via the user interface to prompt for authorization of the operation.
摘要翻译: 用于授权从用户计算机通过数据通信网络请求的远程服务器的操作的授权设备包括被配置为连接到本地用户计算机以便于经由数据通信网络与远程服务器通信的计算机接口,被配置为呈现 信息给用户和控制逻辑。 所述控制逻辑适于使用所述控制逻辑可访问的安全数据,以经由所述本地用户计算机建立用于与所述服务器的加密的端到端通信的相互认证的连接; 从服务器通过连接收集指示通过与服务器的不同连接请求的任何操作的信息,并且需要用户的授权; 并通过用户界面将信息呈现给用户,以提示操作的授权。
-
公开(公告)号:US07412480B2
公开(公告)日:2008-08-12
申请号:US09894035
申请日:2001-06-28
IPC分类号: G06F15/16
CPC分类号: G06F21/51 , G06F8/658 , G06F21/105 , G06F21/12 , G06F2221/033 , G06F2221/2107 , Y10S707/99953
摘要: The invention is directed to a method for a software provider to enable a software-acquiring entity to arrive from an existent first signed piece of code at a second signed piece of code. Both pieces of code were generated at the software provider by use of a first software archive generator under use of generation instructions. The software provider provides to the software-acquiring entity a difference code that comprises the steps necessary to arrive from the first signed piece of code at the second signed piece of code. The difference code is combinable at the software-acquiring entity with the first signed piece of code by a second software archive generator to generate the second signed piece of code. The second software archive generator is therefor to be fed with those generation instructions that were used by the first software archive generator for the generation of both pieces of code.
摘要翻译: 本发明涉及一种用于软件提供者使得软件获取实体能够以第二签名的代码片段从现有的第一签名代码片段到达的方法。 这两个代码是通过使用生成指令使用的第一个软件归档生成器在软件提供商生成的。 软件提供商向软件获取实体提供差分代码,该差分代码包括在第二签名代码片段从第一签名代码段到达的步骤。 差分代码在软件获取实体上可由第二软件归档发生器用第一签名代码组合,以生成第二签名代码片段。 为此,第二个软件归档发生器将被馈送由第一个软件归档发生器用于生成这两个代码的那些生成指令。
-
公开(公告)号:US20080168307A1
公开(公告)日:2008-07-10
申请号:US11962718
申请日:2007-12-21
申请人: Michael Baentsch , Peter Buhler , Frank Horing , Thorsten Kramp , Thomas Weigold
发明人: Michael Baentsch , Peter Buhler , Frank Horing , Thorsten Kramp , Thomas Weigold
IPC分类号: G06F11/14
CPC分类号: G06F11/1441 , G06F11/141
摘要: A method for transactional writing of data into a persistent memory comprising memory cells includes a transactional writing step and a transaction recovery step. The transactional writing step comprises one or more memory cell writing steps comprising the sub-steps of writing in a transaction buffer as transaction buffer entry the current data value and the corresponding address of the respective memory cell, writing a first valid marker for the memory cell in the transaction buffer, and writing a new data value to the memory cell. The transaction recovery step is performed in case of an abortion of the transactional writing step for restoring the current data values of the aborted transaction in the persistent memory, the transaction recovery step comprising the sub-step of writing a transaction recovery marker to the transaction buffer indicating the start of the transaction recovery.
摘要翻译: 一种用于将数据事务写入包括存储器单元的持久存储器中的方法包括事务写入步骤和事务恢复步骤。 事务写入步骤包括一个或多个存储器单元写入步骤,包括在事务缓冲器中写入事务缓冲器条目当前数据值和相应存储器单元的对应地址的子步骤,为存储器单元写入第一有效标记 在事务缓冲器中,并将新的数据值写入存储单元。 在用于恢复持久存储器中的中止的事务的当前数据值的事务写入步骤的流失的情况下执行事务恢复步骤,该事务恢复步骤包括将事务恢复标记写入事务缓冲器的子步骤 指示事务恢复的开始。
-
公开(公告)号:US20070165911A1
公开(公告)日:2007-07-19
申请号:US11644573
申请日:2006-12-22
IPC分类号: G06K9/00
CPC分类号: G07C9/00087 , G06F21/32 , G06K9/00107
摘要: A method for authentication by biometric data, including receiving a biometric data set; evaluating if the received biometric data set is within a reference region, wherein the reference region represents a region associated with a reference biometric data set; evaluating if the received biometric data set is within a blackout region, wherein the blackout region represents a region associated with at least one previously received and positively authenticated biometric data set; and issuing a positive authentication if the received biometric data set is within the reference region, but outside the blackout region.
摘要翻译: 一种用于通过生物特征数据认证的方法,包括接收生物特征数据集; 评估所接收的生物统计数据集是否在参考区域内,其中所述参考区域表示与参考生物统计数据集相关联的区域; 评估所接收的生物统计数据集是否在中断区域内,其中所述中断区域表示与至少一个先前接收和正面认证的生物统计数据集相关联的区域; 以及如果所接收的生物统计数据集合在所述参考区域内,并且在所述停电区域之外,则发出正认证。
-
6.发明授权Method and apparatus for distinguishing reachable objects and non-reachable objects in an object-based application 失效用于在基于对象的应用程序中区分可达对象和不可达对象的方法和装置公开(公告)号:US06889303B2
公开(公告)日:2005-05-03
申请号:US10240840
申请日:2001-03-09
IPC分类号: G06F12/02
CPC分类号: G06F12/0253 , Y10S707/99953 , Y10S707/99957
摘要: The invention is directed to a method for distinguishing reachable objects and non-reachable objects in an object-based application in a system with a volatile memory and a non-volatile memory. The object-based application operates in the non-volatile memory on the objects, whereof at least one is a root object. Each root object is processed by writing for each object that is reachable from the root object, a positive reachability information into the volatile memory and marking those objects in the non-volatile memory as reusable memory, for which no positive reachability information is present in the volatile memory.
摘要翻译: 本发明涉及一种用于在具有易失性存储器和非易失性存储器的系统中的基于对象的应用中区分可到达对象和不可达对象的方法。 基于对象的应用程序在对象上的非易失性存储器中运行,其中至少一个是根对象。 每个根对象通过写入从根对象可达到的每个对象来处理,将可达性信息传递到易失性存储器中,并将非易失性存储器中的这些对象标记为可重用存储器,在该存储器中不存在正面的可达性信息 易失性存储器
-
7.发明授权Method and device for carrying out a function assigned to an instruction code 有权用于执行分配给指令代码的功能的方法和设备公开(公告)号:US06339820B1
公开(公告)日:2002-01-15
申请号:US09302153
申请日:1999-04-29
IPC分类号: G06F930
CPC分类号: G06F9/3017 , G06F9/30181 , G06F9/45504
摘要: A space-efficient and flexible mechanism for implementing a virtual machine in a resource-constrained environment such as a smartcard is proposed. The virtual machine is designed for interpreting or carrying out instructions which are identified by an instruction code, also called opcode. Both, the addresses, respectively identifiers, of the functions implementing the instruction codes, respectively opcodes, which the virtual machine interprets, as well as parameters to those functions are kept within lookup tables.
摘要翻译: 提出了一种在资源有限的环境(如智能卡)中实现虚拟机的节省空间的灵活机制。 虚拟机设计用于解释或执行由指令代码(也称为操作码)标识的指令。 执行指令代码的功能,虚拟机解释的各个操作码的地址,分别标识符以及这些功能的参数都保存在查找表中。
-
公开(公告)号:US09112680B2
公开(公告)日:2015-08-18
申请号:US13474184
申请日:2012-05-17
CPC分类号: H04L9/0827 , H04L9/088 , H04L63/0435 , H04L63/062 , H04L63/18 , H04L2209/08 , H04L2209/56 , H04L2209/80
摘要: The invention relates to a method for distribution of a set of credentials from a credential issuer to a credential user. The credential user is provided with a user device. A first channel and a second channel are provided for communication between the user device and the credential issuer. A shared key is distributed between the user device and the credential issuer by means of the second channel. A binary representation of the set of credentials with a predefined maximum level of deviation from a uniform distribution is generated. The binary representation of the set of credentials is encrypted by means of the shared key. The encrypted set of credentials is distributed via the first channel from the credential issuer to the user device. The encrypted set of credentials is decrypted by the user device by means of the shared key.
摘要翻译: 本发明涉及一种从凭证发行者向证书用户分发一组凭证的方法。 证书用户被提供有用户设备。 第一通道和第二通道被提供用于用户设备和凭证发行者之间的通信。 共享密钥通过第二信道在用户设备和证书颁发者之间分配。 生成具有预定的与均匀分布的最大偏差水平的凭证集合的二进制表示。 该凭证集的二进制表示通过共享密钥进行加密。 加密的证书集合经由第一信道从证书颁发者分发到用户设备。 加密的凭证集合由用户设备通过共享密钥解密。
-
公开(公告)号:US08799171B2
公开(公告)日:2014-08-05
申请号:US12060415
申请日:2008-04-01
申请人: Michael Baentsch , Peter Buhler , Thomas Eirich , Frank Hoering , Thorsten Kramp , Thomas Weigold
发明人: Michael Baentsch , Peter Buhler , Thomas Eirich , Frank Hoering , Thorsten Kramp , Thomas Weigold
IPC分类号: G06Q20/00
CPC分类号: G06Q20/3223 , G06F21/34 , G06Q20/10 , G06Q20/3226 , G06Q20/3674 , G06Q20/382 , G06Q20/3823 , G06Q40/02 , H04L63/0853 , H04L63/18
摘要: A secure online banking transaction apparatus to communicate with a server over a non-secure connection is provided and includes a selector configured to allow for a selection of a mode of the apparatus, a processing unit coupled to the selector and including a secure communication unit, which is configured to set up a secure connection, along which a secure transaction occurs, with the server via the non-secure connection in accordance with the mode, an input unit coupled to the processing unit and configured to allow for a input of data into the apparatus, which is at least partly related to the secure transaction, and an interface coupled to the processing unit and configured to convey at least a status of the secure transaction and the contents off the inputted data.
摘要翻译: 提供了一种用于通过非安全连接与服务器进行通信的安全的网上银行交易装置,并且包括被配置为允许选择所述装置的模式的选择器,耦合到所述选择器并包括安全通信单元的处理单元, 其被配置为根据该模式经由非安全连接与服务器建立安全事务发生的安全连接,输入单元耦合到处理单元并被配置为允许数据输入 所述装置至少部分地与安全事务相关,以及耦合到所述处理单元并被配置为至少传送所述安全事务的状态和所述内容的所述输入数据的接口。
-
公开(公告)号:US08640255B2
公开(公告)日:2014-01-28
申请号:US13063969
申请日:2009-09-17
申请人: Michael Baentsch , Peter Buhler , Thomas Eirich , Reto J. Hermann , Frank Hoering , Thorsten Kramp , Michael P. Kuyper-Hammond , Thomas D. Weigold
发明人: Michael Baentsch , Peter Buhler , Thomas Eirich , Reto J. Hermann , Frank Hoering , Thorsten Kramp , Michael P. Kuyper-Hammond , Thomas D. Weigold
CPC分类号: H04L63/0823 , G06F21/33 , G06F21/34
摘要: An authorization device for authorizing operations of a remote server requested from user computers via a data communications network includes a computer interface configured to connect to a local user computer for facilitating communication with the remote server via a data communications network, a user interface configured to present information to a user, and control logic. The control logic is adapted to use security data accessible to the control logic to establish, via the local user computer, a mutually-authenticated connection for encrypted end-to-end communications with the server; collect from the server, via the connection, information indicative of any operation requested via a different connection to the server and requiring authorization by the user; and present the information to the user via the user interface to prompt for authorization of the operation.
摘要翻译: 用于授权从用户计算机通过数据通信网络请求的远程服务器的操作的授权设备包括被配置为连接到本地用户计算机以便于经由数据通信网络与远程服务器通信的计算机接口,被配置为呈现 信息给用户和控制逻辑。 所述控制逻辑适于使用所述控制逻辑可访问的安全数据,以经由所述本地用户计算机建立用于与所述服务器的加密的端到端通信的相互认证的连接; 从服务器通过连接收集指示通过与服务器的不同连接请求的任何操作的信息,并且需要用户的授权; 并通过用户界面将信息呈现给用户,以提示操作的授权。
-
-
-
-
-
-
-
-
-
搜索结果
50 条记录 (耗时 0.038 秒)
