-
公开(公告)号:US20070297608A1
公开(公告)日:2007-12-27
申请号:US11766192
申请日:2007-06-21
申请人: Per Jonas , Allen Roginsky , Nevenko Zunic
发明人: Per Jonas , Allen Roginsky , Nevenko Zunic
IPC分类号: H04L9/32
CPC分类号: H04L9/0822 , H04L9/0863
摘要: A method for protecting data for access by a plurality of users. A server encrypts data using a master key and a symmetric encryption algorithm. For each authorized user, a key encryption key (KEK) is derived from a passphrase, and the master key is encrypted using the KEK. The server posts the encrypted data and an ancillary file that includes, for each user, a user identifier and the master key encrypted according to the user's KEK. To access the data, a user enters the passphrase into a client, which re-derives the user's KEK, and finds, in the ancillary file, the master key encrypted using the user's KEK. The client decrypts the master key and then decrypts the data. A KEK may be derived from a natural language passphrase by hashing the passphrase, concatenating the result and a predetermined text, hashing the concatenation, and truncating.
摘要翻译: 一种用于保护数据以供多个用户访问的方法。 服务器使用主密钥和对称加密算法对数据进行加密。 对于每个授权用户,密钥加密密钥(KEK)是从密码短语导出的,并且使用KEK对主密钥进行加密。 服务器发布加密数据以及辅助文件,其中包括针对每个用户的根据用户的KEK加密的用户标识符和主密钥。 为了访问数据,用户将密码短语输入客户端,重新导出用户的KEK,并在辅助文件中发现使用用户的KEK加密的主密钥。 客户端解密主密钥,然后解密数据。 KEK可以从自然语言密码短语中衍生,通过散列密码,连接结果和预定文本,散列连接和截断。
-
公开(公告)号:US07487359B2
公开(公告)日:2009-02-03
申请号:US11846562
申请日:2007-08-29
CPC分类号: H04L9/3297 , H04L9/3242
摘要: A time stamping protocol has two stages referred to as the ticketing stage and the certification stage. During the ticketing stage, the document or other identifying data is sent to the TSA. The TSA generates a “ticket” based on the document or other identifying data and a time indication derived from a trusted clock. The ticket, which serves as an unsigned time stamp receipt, is transmitted back to the document originator. During the certification stage, the holder of the ticket requests a certified time stamp receipt by presenting the ticket to the TSA. The TSA verifies the ticket and generates a signed time stamp receipt, called the ticket stub, which is then transmitted back to the document originator. The ticket stub serves as a “universal time-stamp” that the holder of the ticket stub can use to prove the date of the document.
摘要翻译: 时间戳协议有两个阶段,称为票务阶段和认证阶段。 在票务阶段,文件或其他识别数据被发送到TSA。 TSA根据文档或其他标识数据和从可信时钟导出的时间指示生成“票证”。 作为未签名的时间戳收据的票据被传回给文件发起者。 在认证阶段,机票持有人通过向TSA提供机票来申请经过认证的时间戳收据。 TSA验证票据并生成一个称为票据存根的签名时间戳收据,然后将其传回给文档发起者。 票据桩作为票据存根的持有者可以用来证明文件的日期的“通用时间戳”。
-
公开(公告)号:US07315948B1
公开(公告)日:2008-01-01
申请号:US09458921
申请日:1999-12-10
CPC分类号: H04L9/3297 , H04L9/3242
摘要: A time stamping protocol has two stages referred to as the ticketing stage and the certification stage. During the ticketing stage, the document or other identifying data is sent to the TSA. The TSA generates a “ticket” based on the document or other identifying data and a time indication derived from a trusted clock. The ticket, which serves as an unsigned time stamp receipt, is transmitted back to the document originator. During the certification stage, the holder of the ticket requests a certified time stamp receipt by presenting the ticket to the TSA. The TSA verifies the ticket and generates a signed time stamp receipt, called the ticket stub, which is then transmitted back to the document originator. The ticket stub serves as a “universal time-stamp” that the holder of the ticket stub can use to prove the date of the document.
摘要翻译: 时间戳协议有两个阶段,称为票务阶段和认证阶段。 在票务阶段,文件或其他识别数据被发送到TSA。 TSA根据文档或其他标识数据和从可信时钟导出的时间指示生成“票证”。 作为未签名的时间戳收据的票据被传回给文件发起者。 在认证阶段,机票持有人通过向TSA提交机票来申请经过认证的时间戳收据。 TSA验证票据并生成一个称为票据存根的签名时间戳收据,然后将其传回给文档发起者。 票据桩作为票据存根的持有者可以用来证明文件的日期的“通用时间戳”。
-
公开(公告)号:US20070294537A1
公开(公告)日:2007-12-20
申请号:US11846562
申请日:2007-08-29
IPC分类号: H04L9/00
CPC分类号: H04L9/3297 , H04L9/3242
摘要: A time stamping protocol has two stages referred to as the ticketing stage and the certification stage. During the ticketing stage, the document or other identifying data is sent to the TSA. The TSA generates a “ticket” based on the document or other identifying data and a time indication derived from a trusted clock. The ticket, which serves as an unsigned time stamp receipt, is transmitted back to the document originator. During the certification stage, the holder of the ticket requests a certified time stamp receipt by presenting the ticket to the TSA. The TSA verifies the ticket and generates a signed time stamp receipt, called the ticket stub, which is then transmitted back to the document originator. The ticket stub serves as a “universal time-stamp” that the holder of the ticket stub can use to prove the date of the document
摘要翻译: 时间戳协议有两个阶段,称为票务阶段和认证阶段。 在票务阶段,文件或其他识别数据被发送到TSA。 TSA根据文档或其他标识数据和从可信时钟导出的时间指示生成“票证”。 作为未签名的时间戳收据的票据被传回给文件发起者。 在认证阶段,机票持有人通过向TSA提交机票来申请经过认证的时间戳收据。 TSA验证票据并生成一个称为票据存根的签名时间戳收据,然后将其传回给文档发起者。 票据存根是票据存根持有人可以用来证明文件的日期的“通用时间戳”
-
公开(公告)号:US06965998B1
公开(公告)日:2005-11-15
申请号:US09459187
申请日:1999-12-10
CPC分类号: H04L9/3297 , H04L2209/60
摘要: A time-stamping protocol for time-stamping digital documents uses a time-based signature key. A document or other identifying data is sent to a time stamping authority TSA. The TSA has a time-based signature key that the TSA uses to sign time stamp receipts. The signature key is associated with a fixed time reference that is stored in a public key certificate also containing the public verification key. Upon receiving the document, the TSA creates a time stamp receipt by computing a time difference between the time reference associated with the signature key and the time the document was received. The time difference is appended to the document to create a time stamp receipt and the receipt is then signed by the TSA and transmitted to the requestor.
摘要翻译: 时间戳数字文档的时间戳协议使用基于时间的签名密钥。 文件或其他识别数据被发送到时间戳机构TSA。 TSA具有TSA用于签署时间戳收据的基于时间的签名密钥。 签名密钥与存储在还包含公共验证密钥的公开密钥证书中的固定时间基准相关联。 在接收到文档时,TSA通过计算与签名密钥相关联的时间参考与文档被接收的时间之间的时间差来创建时间戳接收。 时间差附加到文档以创建时间戳收据,然后TSA签收收据并传送给请求者。
-
公开(公告)号:US06742119B1
公开(公告)日:2004-05-25
申请号:US09458937
申请日:1999-12-10
IPC分类号: H04L900
CPC分类号: H04L9/3297 , H04L2209/60
摘要: A method for time stamping a digital document is disclosed. The document originator creates a time stamp receipt by combining the document and a digital time indication. The time stamp receipt is submitted to a time stamping agent having a trusted clock. The time stamping agent optionally validates the time stamp receipt and then computes the age of the time stamp receipt. If valid, the time stamping agent certifies the time stamp receipt by signing the time stamp receipt with a private signature key. The private signature key is selected from a group of signature keys by the time stamping agent based on the computed age of the time stamp receipt.
摘要翻译: 公开了一种用于时间戳数字文档的方法。 文档创建者通过组合文档和数字时间指示来创建时间戳收据。 时间戳收据提交给具有可信时钟的时间戳代理。 时间戳代理可选地验证时间戳收据,然后计算时间戳收据的年龄。 如果有效,则时间戳代理人通过使用私人签名密钥签署时间戳接收来证明时间戳接收。 基于所计算的时间戳收据的年龄,由时间戳代理从一组签名密钥中选择私人签名密钥。
-
公开(公告)号:US07519824B1
公开(公告)日:2009-04-14
申请号:US09458410
申请日:1999-12-10
CPC分类号: H04L9/3297 , H04L2209/60
摘要: A method for time stamping a digital document employs a two-part time stamp receipt. The first part of the time stamp receipt includes identifying data associated with a document and a nonce. The second part of the time stamp receipt includes a time indication and the nonce. The nonce serves as a link between the first and second parts.
摘要翻译: 用于时间戳数字文档的方法采用两部分时间戳收据。 时间戳收据的第一部分包括与文档和随机数相关联的识别数据。 时间戳收据的第二部分包括时间指示和随机数。 该随机数作为第一和第二部分之间的链接。
-
公开(公告)号:US07490241B1
公开(公告)日:2009-02-10
申请号:US09458922
申请日:1999-12-10
IPC分类号: H04L9/00
CPC分类号: H04L9/3297 , H04L2209/60
摘要: A method for time stamping a digital document is disclosed. The document originator creates a time stamp receipt using the document and the current time. The time stamp receipt is submitted to a time stamping authority having a trusted clock. The time stamping authority validates the time stamp receipt by comparing the time value specified in the time stamp receipt to the current time. If the time value specified in the time stamp receipt is within a predetermined time window, the time stamping authority cryptographically binds the time value and document, or the time value and some representation of the document, e.g., by signing the time stamp receipt with its private signature key.
摘要翻译: 公开了一种用于时间戳数字文档的方法。 文档创建者使用文档和当前时间创建时间戳收据。 时间戳收据提交给具有可信时钟的时间戳机构。 时间戳权限通过将时间戳收据中指定的时间值与当前时间进行比较来验证时间戳收据。 如果时间戳收据中指定的时间值在预定的时间窗口内,则时间戳机构将时间值和文档加密地绑定,或者时间值和文档的某些表示,例如通过签署时间戳 私人签名密钥。
-
公开(公告)号:US06993656B1
公开(公告)日:2006-01-31
申请号:US09458928
申请日:1999-12-10
IPC分类号: H04L9/00
CPC分类号: H04L9/3297 , H04L63/123 , H04L2209/60 , H04L2463/121
摘要: A method for time stamping a digital document is disclosed. The document originator creates a time stamp receipt by combining the document or other identifying data and a digital time indication. The time stamp receipt is submitted to a time stamping authority having a trusted clock. The time stamping authority optionally validates the time stamp receipt and then computes the age of the time stamp receipt. The time stamping authority creates an aged time stamp receipt by combining the identifying data and time indication contained in the submitted time stamp receipt with the computed age of the time stamp receipt. The time stamping authority cryptographically binds the time information and identifying data in the aged time stamp receipt, e.g., by signing the combination of the identifying data, time indication, and computed age with a private signature generation key.
摘要翻译: 公开了一种用于时间戳数字文档的方法。 文档发起者通过组合文档或其他识别数据和数字时间指示来创建时间戳接收。 时间戳收据提交给具有可信时钟的时间戳机构。 时间戳权限可选地验证时间戳收据,然后计算时间戳收据的年龄。 时间戳权力通过将提交的时间戳收据中包含的识别数据和时间指示与计算的时间戳收据的年龄组合来创建老化的时间戳收据。 时间戳权限例如通过用私有签名生成密钥签名识别数据,时间指示和计算的年龄的组合来密码地绑定时间信息和识别老化时间戳收据中的数据。
-
公开(公告)号:US08695101B2
公开(公告)日:2014-04-08
申请号:US13442474
申请日:2012-04-09
申请人: Rima Bajaj , Hyman D. Chantz , David A. Chapin , Amy E. Creswick , Eduardo M. Da Silva , Alison L. Graham , Chee Yen Lim , Adam C. Nelson , Nicholas J. Norris , Gregory J. Riche , Varun Sharma , Nevenko Zunic
发明人: Rima Bajaj , Hyman D. Chantz , David A. Chapin , Amy E. Creswick , Eduardo M. Da Silva , Alison L. Graham , Chee Yen Lim , Adam C. Nelson , Nicholas J. Norris , Gregory J. Riche , Varun Sharma , Nevenko Zunic
IPC分类号: G06F7/04
CPC分类号: G06Q10/00
摘要: A computer hardware-implemented method, system, and/or computer program product determines an applicability of a data privacy regulation when transmitting data used with an enterprise project. A data privacy regulation describes regulatory restrictions on data being transmitted from a first geopolitical entity to a second geopolitical entity. A set of categorized data is used by an enterprise project, and the data privacy regulation establishes limitations on a transmission of at least one category of data, from the set of categorized data, from the first geopolitical entity to the second geopolitical entity. A first set of binary data and a second set of binary data are processed to determine if transmission of said at least one category of data from the first geopolitical entity to the second geopolitical entity is regulated by the data privacy regulation.
摘要翻译: 计算机硬件实现的方法,系统和/或计算机程序产品在传输与企业项目一起使用的数据时确定数据隐私规则的适用性。 数据隐私法规描述了从第一个地缘政治实体向第二个地缘政治实体传输的数据的监管限制。 企业项目使用一组分类数据,数据隐私法规规定了从一组分类数据,从第一个地缘政治实体到第二个地缘政治实体的至少一类数据的传输的限制。 第一组二进制数据和第二组二进制数据被处理以确定是否通过数据隐私调节来规定来自第一地缘政治实体的所述至少一类数据的数据传输到第二地缘政治实体。
-
-
-
-
-
-
-
-
-
搜索结果
89 条记录 (耗时 0.02 秒)
