-
公开(公告)号:US08693689B2
公开(公告)日:2014-04-08
申请号:US12917452
申请日:2010-11-01
IPC分类号: H04L29/06
CPC分类号: H04W12/08 , H04L9/0872 , H04L9/14 , H04L2209/80
摘要: Location brokering technique embodiments are presented that employ sensor data captured by a user's mobile device to determine the device's location, encrypt the location data and store it in a database. The location data is encrypted in such a way that it is possible to determine when a user's mobile device is currently in the same vicinity as another user's mobile device who is a member of the same group. However, the actual location and relative mobility or immobility of the users cannot be ascertained except by the users themselves via a decryption procedure or by trusted components. Services are provided can read the stored encrypted location data, processes it to determine if group members are in the same vicinity, and either respond to user queries about the location of other members of a group the user belongs to, or push this information to appropriate users.
摘要翻译: 提出了使用由用户的移动设备捕获的传感器数据来确定设备的位置,加密位置数据并将其存储在数据库中的位置代理技术实施例。 位置数据被加密,使得可以确定用户的移动设备何时与作为同一组的成员的另一个用户的移动设备相同的附近。 然而,用户本身经由解密程序或受信任的组件除外,无法确定用户的实际位置和相对移动性或不动性。 提供的服务可以读取存储的加密位置数据,处理它以确定组成员是否在相同的附近,并且响应用户关于用户所属的组的其他成员的位置的查询,或者将该信息推送到适当的位置 用户
-
公开(公告)号:US20120106738A1
公开(公告)日:2012-05-03
申请号:US12917452
申请日:2010-11-01
IPC分类号: H04L9/06
CPC分类号: H04W12/08 , H04L9/0872 , H04L9/14 , H04L2209/80
摘要: Location brokering technique embodiments are presented that employ sensor data captured by a user's mobile device to determine the device's location, encrypt the location data and store it in a database. The location data is encrypted in such a way that it is possible to determine when a user's mobile device is currently in the same vicinity as another user's mobile device who is a member of the same group as the first user. However, the actual location and relative mobility or immobility of the users cannot be ascertained except by the users themselves via a decryption procedure or by trusted components. Services are provided can read the stored encrypted location data, processes it to determine if group members are in the same vicinity, and either respond to user queries about the location of other members of a group the user belongs to, or push this information to appropriate users.
摘要翻译: 提出了使用由用户的移动设备捕获的传感器数据来确定设备的位置,加密位置数据并将其存储在数据库中的位置代理技术实施例。 位置数据被加密,使得可以确定用户的移动设备何时与作为与第一用户相同组的成员的另一个用户的移动设备在同一附近。 然而,用户本身经由解密程序或受信任的组件除外,无法确定用户的实际位置和相对移动性或不动性。 提供的服务可以读取存储的加密位置数据,处理它以确定组成员是否在相同的附近,并且响应用户关于用户所属的组的其他成员的位置的查询,或者将该信息推送到适当的位置 用户
-
公开(公告)号:US09015489B2
公开(公告)日:2015-04-21
申请号:US12755426
申请日:2010-04-07
CPC分类号: H04L63/0428 , H04L9/0841 , H04L9/3226 , H04L9/3271 , H04L63/06 , H04L63/083 , H04L63/0853
摘要: Described herein are various technologies pertaining to constructions of a password-based authentication protocol that are configured to allow a user to register with and authenticate to an online service without the online service receiving a password or a deterministic function of the password of the user. When registering with an online service, a client computing device establishes a cryptographically strong random secret and stores an encryption of such secret with a data storage device. The storage device also never receives the password or a deterministic function of the password. When the user wishes to authenticate to the online service, the user employs her password to retrieve the encrypted secret from the storage device, decrypts such secret, and utilizes the decrypted secret to answer a cryptographically strong challenge provided to the user by the online service upon the online service receiving a username pertaining to such user.
摘要翻译: 这里描述的是涉及基于密码的认证协议的构造的各种技术,其被配置为允许用户在没有在线服务接收密码或用户的密码的确定性功能的情况下向在线服务注册和认证。 当在线服务注册时,客户端计算设备建立密码强的随机秘密,并将这种秘密的加密存储在数据存储设备中。 存储设备也从不接收密码或密码的确定性功能。 当用户希望对在线服务进行身份验证时,用户使用她的密码从存储设备中取回加密的秘密,解密这样的秘密,并利用解密的秘密来回答由在线服务提供给用户的加密强大的挑战, 该在线服务接收与该用户有关的用户名。
-
公开(公告)号:US20110252229A1
公开(公告)日:2011-10-13
申请号:US12755426
申请日:2010-04-07
CPC分类号: H04L63/0428 , H04L9/0841 , H04L9/3226 , H04L9/3271 , H04L63/06 , H04L63/083 , H04L63/0853
摘要: Described herein are various technologies pertaining to constructions of a password-based authentication protocol that are configured to allow a user to register with and authenticate to an online service without the online service receiving a password or a deterministic function of the password of the user. When registering with an online service, a client computing device establishes a cryptographically strong random secret and stores an encryption of such secret with a data storage device. The storage device also never receives the password or a deterministic function of the password. When the user wishes to authenticate to the online service, the user employs her password to retrieve the encrypted secret from the storage device, decrypts such secret, and utilizes the decrypted secret to answer a cryptographically strong challenge provided to the user by the online service upon the online service receiving a username pertaining to such user.
摘要翻译: 这里描述的是涉及基于密码的认证协议的构造的各种技术,其被配置为允许用户在没有在线服务接收密码或用户的密码的确定性功能的情况下向在线服务注册和认证。 当在线服务注册时,客户端计算设备建立密码强的随机秘密,并将这种秘密的加密存储在数据存储设备中。 存储设备也从不接收密码或密码的确定性功能。 当用户希望对在线服务进行身份验证时,用户使用她的密码从存储设备中取回加密的秘密,解密这样的秘密,并利用解密的秘密来回答由在线服务提供给用户的加密强大的挑战, 该在线服务接收与该用户有关的用户名。
-
公开(公告)号:US20100208898A1
公开(公告)日:2010-08-19
申请号:US12389217
申请日:2009-02-19
申请人: Tolga Acar , Josh Benaloh , Niels Thomas Ferguson , Carl M. Ellison , Mira Belenkiy , Duy Lan Nguyen
发明人: Tolga Acar , Josh Benaloh , Niels Thomas Ferguson , Carl M. Ellison , Mira Belenkiy , Duy Lan Nguyen
IPC分类号: H04L9/08
CPC分类号: H04L9/0891 , H04L9/0833
摘要: In an example, one or more cryptographic keys may be associated with a group. Any member of the group may use the key to encrypt and decrypt information, thereby allowing members of the group to share encrypted information. Domain controllers (DCs) maintain copies of the group's keys. The DCs may synchronize with each other, so that each DC may have a copy of the group's keys. Keys may have expiration dates, and any client connected to a DC may generate a new key when a key is nearing expiration. The various clients may create new keys at differing amounts of time before expiration on various DCs. DCs that store keys early thus may have time to propagate the newly-created keys through synchronization before other DCs are requested to store keys created by other clients. In this way, the creation of an excessive number of new keys may be avoided.
摘要翻译: 在一个示例中,一个或多个加密密钥可以与组相关联。 该组的任何成员可以使用密钥来加密和解密信息,从而允许该组的成员共享加密的信息。 域控制器(DC)维护组的密钥副本。 DC可以彼此同步,使得每个DC可以具有组的密钥的副本。 密钥可能有过期日期,连接到DC的任何客户端可能在密钥接近到期时生成新密钥。 各种客户端可以在不同的时间段之前以不同的时间量创建新的密钥。 因此,早期存储密钥的DC可能有时间通过同步传播新创建的密钥,而其他DC被请求存储由其他客户端创建的密钥。 以这种方式,可以避免创建过多的新密钥。
-
公开(公告)号:US08325924B2
公开(公告)日:2012-12-04
申请号:US12389217
申请日:2009-02-19
申请人: Tolga Acar , Josh Benaloh , Niels Thomas Ferguson , Carl M. Ellison , Mira Belenkiy , Duy Lan Nguyen
发明人: Tolga Acar , Josh Benaloh , Niels Thomas Ferguson , Carl M. Ellison , Mira Belenkiy , Duy Lan Nguyen
IPC分类号: H04L9/00
CPC分类号: H04L9/0891 , H04L9/0833
摘要: In an example, one or more cryptographic keys may be associated with a group. Any member of the group may use the key to encrypt and decrypt information, thereby allowing members of the group to share encrypted information. Domain controllers (DCs) maintain copies of the group's keys. The DCs may synchronize with each other, so that each DC may have a copy of the group's keys. Keys may have expiration dates, and any client connected to a DC may generate a new key when a key is nearing expiration. The various clients may create new keys at differing amounts of time before expiration on various DCs. DCs that store keys early thus may have time to propagate the newly-created keys through synchronization before other DCs are requested to store keys created by other clients. In this way, the creation of an excessive number of new keys may be avoided.
摘要翻译: 在一个示例中,一个或多个加密密钥可以与组相关联。 该组的任何成员可以使用密钥来加密和解密信息,从而允许该组的成员共享加密的信息。 域控制器(DC)维护组的密钥副本。 DC可以彼此同步,使得每个DC可以具有组的密钥的副本。 密钥可能有过期日期,连接到DC的任何客户端可能在密钥接近到期时生成新密钥。 各种客户端可以在不同的时间段之前以不同的时间量创建新的密钥。 因此,早期存储密钥的DC可能有时间通过同步传播新创建的密钥,而其他DC被请求存储由其他客户端创建的密钥。 以这种方式,可以避免创建过多的新密钥。
-
-
-
-
-
搜索结果
6 条记录 (耗时 0.023 秒)
