公开(公告)号：US20060224892A1

公开(公告)日：2006-10-05

申请号：US11097144

申请日：2005-04-04

申请人： Michael Brown ,  Herb Little ,  Michael Brown ,  Neil Adams ,  Michael McCallum ,  Dinah Davis

发明人： Michael Brown ,  Herb Little ,  Michael Brown ,  Neil Adams ,  Michael McCallum ,  Dinah Davis

IPC分类号： H04L9/00

CPC分类号： H04L9/0844 ,  H04L2209/80

摘要： A cryptographic key is used to secure a communication link between a first device and a second device. Generating the cryptographic key is accomplished by a) generating a first cryptographic key, b) generating a second cryptographic key, c) applying a hash function to packets transmitted over the communication link to create a hash result, and d) applying the hash function to the first cryptographic key, the second cryptographic key and the hash result.

公开(公告)号：US20060218397A1

公开(公告)日：2006-09-28

申请号：US11085207

申请日：2005-03-22

申请人： Michael Brown ,  Michael Brown ,  Neil Adams ,  Herb Little ,  Dinah Davis

发明人： Michael Brown ,  Michael Brown ,  Neil Adams ,  Herb Little ,  Dinah Davis

IPC分类号： H04L9/00

CPC分类号： H04L63/0428 ,  H04L9/083 ,  H04L9/321 ,  H04L63/062 ,  H04L63/0853 ,  H04L2209/80 ,  H04L2463/062

摘要： A system includes a server, a first client device to communicate in an authenticated and secured manner with the server over a first communication link, and a second client device to communicate in an authenticated and secured manner with the first client device over a second communication link. The first client device is to cause the server and the second client device to share cryptography information. The cryptography information may then be used to secure a third communication link between the server and the second client device that does not include the first client device.

摘要翻译： 系统包括服务器，通过第一通信链路以经认证和安全的方式与服务器进行通信的第一客户端设备，以及通过第二通信链路以经认证和安全的方式与第一客户端设备进行通信的第二客户端设备 。 第一个客户端设备是使服务器和第二个客户端设备共享加密信息。 然后可以使用加密信息来保护服务器和不包括第一客户端设备的第二客户端设备之间的第三通信链路。

公开(公告)号：US20070006279A1

公开(公告)日：2007-01-04

申请号：US11171477

申请日：2005-07-01

申请人： Michael Brown ,  Michael Brown ,  Neil Adams ,  Herbert Little ,  Michael McCallum ,  Dinah Davis

发明人： Michael Brown ,  Michael Brown ,  Neil Adams ,  Herbert Little ,  Michael McCallum ,  Dinah Davis

IPC分类号： H04L9/00

CPC分类号： H04L63/083 ,  G06F21/31 ,  G06F21/35 ,  G06F2221/2131

摘要： An active new password entry dialog provides a compact visual indication of adherence to password policies. A visual indication of progress towards meeting all applicable password policies is included in the display and updated as new password characters are being entered. A visual hint associated with at least one applicable password policy that has not yet been satisfied is also included in the display. An ability to obtain more detailed comprehensive password policy information is also permitted upon user command (e.g., including an indication whether each password policy has yet been met or unmet). Preferably the displayed hint and associated applicable password policy not yet satisfied is randomly changed during entry of a new password (e.g., upon the entry of each new password character).

摘要翻译： 活动的新密码输入对话框提供了遵守密码策略的紧凑视觉指示。 在满足所有适用密码策略方面的进展的可视指示包含在显示中，并随着输入新密码字符而更新。 与至少一个尚未满足的适用密码策略相关联的视觉提示也包括在显示器中。 在用户命令（例如，包括每个密码策略是否还未满足的指示）中，还允许获得更详细的综合密码策略信息的能力。 优选地，在新密码的输入期间（例如，在每个新密码字符的输入时），所显示的提示和尚未满足的相关联的适用密码策略被随机地改变。

公开(公告)号：US09143323B2

公开(公告)日：2015-09-22

申请号：US11097144

申请日：2005-04-04

申请人： Michael K. Brown ,  Herb Little ,  Michael S. Brown ,  Neil Adams ,  Michael McCallum ,  Dinah Davis

发明人： Michael K. Brown ,  Herb Little ,  Michael S. Brown ,  Neil Adams ,  Michael McCallum ,  Dinah Davis

IPC分类号： H04L9/08

CPC分类号： H04L9/0844 ,  H04L2209/80

摘要： A cryptographic key is used to secure a communication link between a first device and a second device. Generating the cryptographic key is accomplished by a) generating a first cryptographic key, b) generating a second cryptographic key, c) applying a hash function to packets transmitted over the communication link to create a hash result, and d) applying the hash function to the first cryptographic key, the second cryptographic key and the hash result.

摘要翻译： 加密密钥用于保护第一设备和第二设备之间的通信链路。 通过以下步骤来实现密码密钥的产生：a）生成第一加密密钥，b）产生第二加密密钥，c）将散列函数应用于通过通信链路发送的分组，以产生散列结果，以及d）将散列函数应用于 第一加密密钥，第二加密密钥和散列结果。

公开(公告)号：US20050251680A1

公开(公告)日：2005-11-10

申请号：US11118236

申请日：2005-04-29

申请人： Michael Brown ,  Herbert Little ,  David MacFarlane ,  Michael Brown ,  Dinah Davis

发明人： Michael Brown ,  Herbert Little ,  David MacFarlane ,  Michael Brown ,  Dinah Davis

IPC分类号： H04L9/00 ,  H04L9/30 ,  H04L29/06

CPC分类号： H04L9/08 ,  H04L9/002 ,  H04L9/0841 ,  H04L9/0844 ,  H04L9/3066 ,  H04L9/3215 ,  H04L9/3226 ,  H04L63/061 ,  H04L63/083 ,  H04L63/18 ,  H04L2209/80 ,  H04W12/04 ,  H04W12/06

摘要： A method for secure bidirectional communication between two systems is described. A first key pair and a second key pair are generated, the latter including a second public key that is generated based upon a shared secret. First and second public keys are sent to a second system, and third and fourth public keys are received from the second system. The fourth public key is generated based upon the shared secret. A master key for encrypting messages is calculated based upon a first private key, a second private key, the third public key and the fourth public key. For re-keying, a new second key pair having a new second public key and a new second private key is generated, and a new fourth public key is received. A new master key is calculated using elliptic curve calculations using the new second private key and the new fourth public key.

摘要翻译： 描述了两个系统之间的安全双向通信的方法。 产生第一密钥对和第二密钥对，后者包括基于共享秘密生成的第二公钥。 第一和第二公钥被发送到第二系统，并且从第二系统接收第三和第四公钥。 第四个公钥是基于共享的秘密生成的。 基于第一私钥，第二私钥，第三公钥和第四公钥来计算用于加密消息的主密钥。 为了重新键入，生成具有新的第二公钥和新的第二私钥的新的第二密钥对，并接收新的第四公钥。 使用新的第二私钥和新的第四公钥，使用椭圆曲线计算来计算新的主密钥。

公开(公告)号：US20110191585A2

公开(公告)日：2011-08-04

申请号：US12685475

申请日：2010-01-11

申请人： Michael Brown ,  Herbert Little ,  Dinah Davis

发明人： Michael Brown ,  Herbert Little ,  Dinah Davis

IPC分类号： H04L9/00 ,  H04L9/30 ,  H04K1/00

CPC分类号： G11C7/24

摘要： Authentication of two devices in communication with a third device is achieved where the first and second devices each possess a shared secret value. The authentication includes communication of authentication values from the first device to the second device using the third device. Similarly, there is communication of values from the second device to the first device using the third device. The third device retains the communicated values. The values are calculated to permit the third device to authenticate the first and second devices without the third device receiving the shared secret value. The authentication may be used to establish a communications channel between the first and the second devices.

摘要翻译： 实现与第三设备通信的两个设备的认证，其中第一和第二设备各自具有共享秘密值。 认证包括使用第三设备从第一设备到第二设备的认证值的通信。 类似地，存在使用第三设备从第二设备到第一设备的值的通信。 第三个设备保留所传达的值。 计算这些值以允许第三设备认证第一和第二设备，而第三设备不接收共享秘密值。 认证可以用于在第一和第二设备之间建立通信信道。

公开(公告)号：US20050243619A1

公开(公告)日：2005-11-03

申请号：US10836107

申请日：2004-04-30

申请人： Michael Brown ,  Herbert Little ,  Dinah Davis

发明人： Michael Brown ,  Herbert Little ,  Dinah Davis

IPC分类号： G11C7/00 ,  G11C7/24

CPC分类号： G11C7/24

摘要： Authentication of two devices in communication with a third device is achieved where the first and second devices each possess a shared secret value. The authentication includes communication of authentication values from the first device to the second device using the third device. Similarly, there is communication of values from the second device to the first device using the third device. The third device retains the communicated values. The values are calculated to permit the third device to authenticate the first and second devices without the third device receiving the shared secret value. The authentication may be used to establish a communications channel between the first and the second devices.

摘要翻译： 实现与第三设备通信的两个设备的认证，其中第一和第二设备各自具有共享秘密值。 认证包括使用第三设备从第一设备到第二设备的认证值的通信。 类似地，存在使用第三设备从第二设备到第一设备的值的通信。 第三个设备保留所传达的值。 计算这些值以允许第三设备认证第一和第二设备，而第三设备不接收共享秘密值。 认证可以用于在第一和第二设备之间建立通信信道。

公开(公告)号：US20130214908A9

公开(公告)日：2013-08-22

申请号：US13469274

申请日：2012-05-11

申请人： Ravi Singh ,  Dinah Davis ,  Neil Adams

发明人： Ravi Singh ,  Dinah Davis ,  Neil Adams

IPC分类号： G06K7/01

CPC分类号： G06F9/4411

摘要： A command destined for a smart card is received. If the command is of a state-altering type that places the smart card in a known state, it is relayed to a smart card reader unless the smart card is currently in the known state. If the command is a POWER OFF command, it is relayed to the smart card reader unless (i) the smart card is currently in the known state and (ii) within a predetermined time from receiving the command, a subsequent command of the state-altering type that places the smart card in the known state is received. If the command is not a POWER OFF command and is not of the state-altering type that places the smart card in the known state, it is relayed to the smart card reader. The command is discarded if not relayed to the smart card reader.

摘要翻译： 接收到发往智能卡的命令。 如果该命令是将智能卡置于已知状态的状态改变类型，则将其转发到智能卡读卡器，除非智能卡当前处于已知状态。 如果命令是POWER OFF命令，则将其中继到智能卡读卡器，除非（i）智能卡当前处于已知状态，并且（ii）在接收到该命令的预定时间内， 收到将智能卡置于已知状态的更改类型。 如果命令不是POWER OFF命令，并且不是将智能卡置于已知状态的状态改变类型，则将其中继到智能卡读卡器。 如果不传送到智能卡读卡器，则该命令被丢弃。

公开(公告)号：US07945704B2

公开(公告)日：2011-05-17

申请号：US11777680

申请日：2007-07-13

申请人： Ravi Singh ,  Neil Adams ,  Dinah Davis

发明人： Ravi Singh ,  Neil Adams ,  Dinah Davis

IPC分类号： G06F15/16 ,  G06F3/00 ,  G06F13/00 ,  H04N7/16 ,  H04L9/32 ,  G06F21/00 ,  G06F7/04

CPC分类号： G06K7/0008 ,  G06K7/10297 ,  H04W92/08

摘要： A method of facilitating communications between a computer device and a smart card reader having an associated smart card, the computer device including a smart card resource manager and a smart card reader service, the smart card reader service acting as a relay for commands between the smart card resource manager and the smart card reader, the method comprising: receiving from the smart card resource manager a first command for setting a protocol for communications with the smart card; and responding, prior to receiving a reply from the smart card to the first command, to the smart card resource manager with a message indicating that the smart card has successfully received the first command.

摘要翻译： 一种促进计算机设备和具有相关智能卡的智能卡阅读器之间的通信的方法，所述计算机设备包括智能卡资源管理器和智能卡读取器服务，所述智能卡读取器服务充当智能卡之间的命令的中继器 卡资源管理器和智能卡读卡器，该方法包括：从智能卡资源管理器接收用于设置与智能卡进行通信的协议的第一命令; 以及在从所述智能卡接收到所述第一命令的答复之前，向所述智能卡资源管理器发送指示所述智能卡已成功接收到所述第一命令的消息。

公开(公告)号：US20130008946A1

公开(公告)日：2013-01-10

申请号：US13617363

申请日：2012-09-14

申请人： Dinah Davis ,  Neil Adams ,  Ravi Singh

发明人： Dinah Davis ,  Neil Adams ,  Ravi Singh

IPC分类号： G06K7/01

CPC分类号： H04W76/19 ,  H04W48/08

摘要： Upon recognizing a loss of a first connection to a computing apparatus, such as a personal computer, a smart card reader may maintain an open session with a smart card and may associate an identity of the computing apparatus of the first connection with the open session. Some time later, the smart card reader may establish a second connection with a computing apparatus. The smart card reader may compare an identity of the computing apparatus of the second connection with the identity of the computing apparatus of the first connection. Responsive to determining that the identities do not match, the smart card reader may close the open session with the smart card. Responsive to determining that the identities do match, the smart card reader may maintain the open session with the smart card.

摘要翻译： 在识别到诸如个人计算机的计算设备的第一连接的丢失时，智能卡读卡器可以维护与智能卡的开放会话，并且可以将第一连接的计算装置的身份与打开的会话相关联。 稍后，智能卡读卡器可以与计算设备建立第二连接。 智能卡读取器可将第二连接的计算装置的身份与第一连接的计算装置的身份进行比较。 响应于确定身份不匹配，智能卡读卡器可以关闭与智能卡的开放会话。 响应于确定身份确实匹配，智能卡读卡器可以保持与智能卡的开放会话。