-
公开(公告)号:US11985132B2
公开(公告)日:2024-05-14
申请号:US16399865
申请日:2019-04-30
发明人: Haining Chen , Xun Chen , Khaled ElWazeer , Ahmed M. Azab , David Thomson , Ruowen Wang , Wei Yang , Peng Ning
CPC分类号: H04L63/102 , H04L63/08
摘要: A method of providing continuous user authentication for resource access control includes launching a continuous authentication service at a boot time of a first device, wherein the first device includes a processor, a memory, and one or more sensors configured to collect authentication information. Additionally, the method includes receiving authentication information comprising one or more of explicit authentication information or implicit authentication information, and receiving a request for access to a resource of the first device. Further, the method includes the operations of determining, by the continuous authentication service, a current value of a security state, the current value of the security state based in part on a time interval between a receipt time of the authentication information and a current time and controlling access to the resource based on the current value of the security state.
-
公开(公告)号:US10402561B2
公开(公告)日:2019-09-03
申请号:US15048534
申请日:2016-02-19
发明人: Peng Ning , Stephen E. McLaughlin , Michael C Grace , Ahmed M Azab , Rohan Bhutkar , Wenbo Shen , Xun Chen , Yong Choi , Ken Chen
摘要: An apparatus and method of a hardware isolated secure element protecting a plurality of mission critical subsystems are provided. The method includes performing an actuation operation received across an unsecure path that modifies the state of a mission critical subsystem, performing a diagnostic operation received across the unsecure path that requests state information of the mission critical subsystem, storing information used to determine which of the diagnostic operation and the actuation operation received across the unsecure path are performed, and flashing an execution image of an electronic control unit when the execution image of the electronic control unit is received across the unsecure path.
-
3.发明申请公开(公告)号:US20180026963A1
公开(公告)日:2018-01-25
申请号:US15584892
申请日:2017-05-02
发明人: Peng Ning , Yueh-Hsun Lin , Stephen E. McLaughlin , Michael C. Grace , Ahmed M. Azab , Rohan Bhutkar , Yong Choi
IPC分类号: H04L29/06
摘要: A connected device includes an application processor, a secure element, and a control module. The application processor is configured to receive a control command from an electronic device. The secure element is connected between the application processor and a control module and is configured to authenticate the control command. The control module is configured to receive the control command when the control command is authenticated by the secure element, execute the control command to activate at least one function of the connected device, and transmit a response to the electronic device.
-
公开(公告)号:US20170055303A1
公开(公告)日:2017-02-23
申请号:US15239813
申请日:2016-08-17
发明人: Yifei Wang , Shyam Prasad , Rathinamoorthy Mylsamy , Bulent Kasman , Peng Ning
摘要: A method is provided for wireless data transfer. The method includes determining, at a mobile device, communication capability of another device for receiving data. The method also includes selecting an optimal communication protocol for communicating the data based on the determined communication capability. The method also includes communicating the data with the other device using the selected optimal communication protocol.
摘要翻译: 提供了一种用于无线数据传输的方法。 该方法包括在移动设备处确定用于接收数据的另一设备的通信能力。 该方法还包括基于确定的通信能力选择用于传送数据的最佳通信协议。 该方法还包括使用所选择的最佳通信协议与另一设备通信数据。
-
公开(公告)号:US20150052342A1
公开(公告)日:2015-02-19
申请号:US14459002
申请日:2014-08-13
IPC分类号: G06F21/57
CPC分类号: G06F21/575 , G06F21/53
摘要: An apparatus and a method for identifying security of an electronic device are provided. The method includes identifying a security state of a system binary loaded to a memory of the electronic device based on booting of the electronic device in a second operating system of the electronic device, and sending security state information to a first operating system in the second operating system based on a request from the first operating system of the electronic device.
摘要翻译: 提供了一种用于识别电子设备的安全性的装置和方法。 该方法包括基于电子设备的第二操作系统中的电子设备的引导来识别加载到电子设备的存储器的系统二进制程序的安全状态,以及在第二操作中向第一操作系统发送安全状态信息 系统基于来自电子设备的第一操作系统的请求。
-
公开(公告)号:US10181028B2
公开(公告)日:2019-01-15
申请号:US14555950
申请日:2014-11-28
发明人: Jinlin Xu , Haiqing Jiang , Dingbang Xu , Renuka Srinivasan , Xinwen Zhang , Peng Ning
摘要: An apparatus and method for generating an application container are provided. The method includes selecting a target application from among a plurality of applications included in an electronic device, acquiring a policy file corresponding to the target application, determining whether the policy file includes a category of the target application, and executing the application container which includes the target application.
-
公开(公告)号:US09772953B2
公开(公告)日:2017-09-26
申请号:US14610423
申请日:2015-01-30
发明人: Quan Chen , Ahmed Azab , Peng Ning , Guruprasad Ganesh
CPC分类号: G06F12/1408 , G06F12/1416 , G06F12/1466 , G06F12/1483 , G06F21/53 , G06F21/6281 , G06F21/64 , G06F2212/1052
摘要: An apparatus and method for protecting kernel data integrity in an electronic device are provided. The method includes mapping a specified type of data to a read-only memory area, detecting a write attempt to the specified type of data, determining whether a process attempting to write to the specified type of data is permitted according to a specified condition, and allowing the write attempt if the process attempting to write to the specified type of data satisfies the specified condition.
-
8.发明申请ADAPTIVE AND EFFICIENT DATABASE PROTECTION AND MIGRATION WITH DEVICE STATE CHANGES 审中-公开适应性和有效的数据库保护和移动与设备状态更改公开(公告)号:US20160255061A1
公开(公告)日:2016-09-01
申请号:US14855078
申请日:2015-09-15
发明人: Abdul Syed-Ebrahim , Peng Ning , SJ Oh , Hyunchul Woo , Sang-Hyup Cho , Roy Heeseung Yoo
IPC分类号: H04L29/06
摘要: A method and apparatus for data security incorporating device state. The method includes encrypting sensitive data written to an electronic device while the electronic device is in a locked state using a public key of an asymmetric master key pair. The method also includes, in response to detecting that the electronic device enters an unlocked state, converting asymmetric encryption of the sensitive data into symmetric encryption of the sensitive data using a symmetric master key. Encrypting of the sensitive data may include encrypting the sensitive data using a data encryption key (DEK) and encrypting the DEK using the public key. Converting of the asymmetric encryption of the sensitive data into the symmetric encryption may include decrypting the encrypted DEK using a private key of the asymmetric master key pair and re-encrypting the DEK using the symmetric master key without decrypting and re-encrypting the sensitive data.
摘要翻译: 一种用于数据安全并入设备状态的方法和装置。 该方法包括使用非对称主密钥对的公共密钥对电子设备处于锁定状态时对写入电子设备的敏感数据进行加密。 该方法还包括响应于检测到电子设备进入解锁状态,使用对称主密钥将敏感数据的非对称加密转换为敏感数据的对称加密。 敏感数据的加密可以包括使用数据加密密钥(DEK)对敏感数据进行加密,并使用公开密钥来加密DEK。 将敏感数据的非对称加密转换为对称加密可以包括使用非对称主密钥对的私钥对加密的DEK进行解密,并使用对称主密钥对DEK进行重新加密,而不对敏感数据进行解密和重新加密。
-
公开(公告)号:US11042398B2
公开(公告)日:2021-06-22
申请号:US16504075
申请日:2019-07-05
发明人: Guruprasad Ganesh , Sudhi Herle , Ahmed M. Azab , Rohan Bhutkar , Ivan Getta , Xun Chen , Wenbo Shen , Ruowen Wang , Haining Chen , Khaled Elwazeer , Mengmeng Li , Peng Ning , Hyungseok Yu , Myungsu Cha , Kyungsun Lee , Se Young Choi , Yurak Choe , Yong Shin , Kyoung-Joong Shin , Donguk Seo , Junyong Choi
摘要: A method for operating an electronic device, the method including spawning a name space tool (NST) as part of a boot process of a host OS, wherein the NST is a process with a plurality of root privileges of the host OS. The method further includes spawning, by the NST, a container for a guest OS, wherein the container for the guest OS is mapped to a dedicated domain in the host OS, and dropping, by the NST, a root privilege of the host OS in response to spawning the container for the guest OS.
-
公开(公告)号:US10686776B2
公开(公告)日:2020-06-16
申请号:US15584892
申请日:2017-05-02
发明人: Peng Ning , Yueh-Hsun Lin , Stephen E. McLaughlin , Michael C. Grace , Ahmed M. Azab , Rohan Bhutkar , Yong Choi
摘要: A connected device includes an application processor, a secure element, and a control module. The application processor is configured to receive a control command from an electronic device. The secure element is connected between the application processor and a control module and is configured to authenticate the control command. The control module is configured to receive the control command when the control command is authenticated by the secure element, execute the control command to activate at least one function of the connected device, and transmit a response to the electronic device.
-
-
-
-
-
-
-
-
-
搜索结果
27 条记录 (耗时 0.022 秒)
