利索-全球专利检索

  1. 登录
  2. 注册

搜索结果

11 条记录 (耗时 0.024 秒)

    Using a trusted-platform-based shared-secret derivation and WWAN infrastructure-based enrollment to establish a secure local channel
    4.
    发明申请
    Using a trusted-platform-based shared-secret derivation and WWAN infrastructure-based enrollment to establish a secure local channel 有权
    使用基于可信赖平台的共享秘密派生和基于WWAN基础架构的注册来建立安全的本地渠道

    公开(公告)号:US20070154014A1

    公开(公告)日:2007-07-05

    申请号:US11322941

    申请日:2005-12-30

    申请人: Selim Aissi Sundeep Bajikar Sameer Abhinkar Scott Blum Jane Dashevsky Abhay Dharmadhikari Benjamin Matasar Mrudula Yelamanchi

    发明人: Selim Aissi Sundeep Bajikar Sameer Abhinkar Scott Blum Jane Dashevsky Abhay Dharmadhikari Benjamin Matasar Mrudula Yelamanchi

    IPC分类号: H04L9/00 H04K1/00

    CPC分类号: H04L63/061 G06F21/445 H04L9/0844 H04L9/3234 H04L63/0853 H04L2209/127 H04L2209/80

    摘要: A system and method for establishing a trusted connection on a mobile computing device. A shared secret is generated on a trusted platform of the mobile computing device. The shared secret is transported to a secure channel application. The secure channel application establishes a secure local communication channel between the trusted platform and a SIM (subscriber identity module)/Smartcard on the mobile computing device. The shared secret is received by the SlM/Smartcard. In one embodiment, the mobile computing device includes a GSM (Global Systems for Mobile Communications) 03.48 application that sends the shared secret to a GSM 03.48 network infrastructure for storage, management, and verification by the GSM 03.48 network infrastructure, and in turn sends the shared secret to the SIM/Smartcard on the mobile computing device. In an alternative embodiment, a Diffie-Hellman key exchange is performed by the trusted platform to send the shared secret to the SIM/Smartcard. The shared secret, after being received by the SlM/Smartcard, is provided to a secure channel applet on the SIM/Smartcard. The secure channel applet establishes the local communication channel between the SlM/Smartcard and the trusted platform. Once the secure channel application on the trusted platform and the secure channel applet on the SIM/Smartcard both have the shared secret, a transport layer security (TLS)-based handshake can take place to establish the secure local communication channel.

    摘要翻译: 一种用于在移动计算设备上建立可信连接的系统和方法。 在移动计算设备的可信平台上生成共享秘密。 共享密钥被传送到安全通道应用程序。 安全信道应用在可信平台与移动计算设备上的SIM(用户识别模块)/智能卡之间建立安全的本地通信信道。 共享密钥由SlM /智能卡接收。 在一个实施例中,移动计算设备包括GSM(全球移动通信系统)03.48应用,其将共享秘密发送到GSM 03.48网络基础设施,用于由GSM 03.48网络基础设施进行存储,管理和验证,并且进而发送 在移动计算设备上的SIM /智能卡共享秘密。 在替代实施例中,由可信平台执行Diffie-Hellman密钥交换以将共享秘密发送到SIM /智能卡。 在SlM /智能卡接收到之后,共享密钥被提供给SIM /智能卡上的安全通道小程序。 安全通道小程序在SlM /智能卡和可信平台之间建立本地通信通道。 一旦信任平台上的安全通道应用程序和SIM /智能卡上的安全通道小应用程序都具有共享密钥,就可以进行基于传输层安全(TLS)的握手来建立安全的本地通信通道。

    Apparatus and method for platform-independent identity manageability
    5.
    发明申请
    Apparatus and method for platform-independent identity manageability 有权
    平台独立身份可管理性的装置和方法

    公开(公告)号:US20070006281A1

    公开(公告)日:2007-01-04

    申请号:US11171080

    申请日:2005-06-30

    申请人: Sameer Abhinkar Selim Aissi Jane Dashevsky Abhay Dharmadhikari Benjamin Matasar Mrudula Yelamanchi Scott Blum Shelagh Callahan

    发明人: Sameer Abhinkar Selim Aissi Jane Dashevsky Abhay Dharmadhikari Benjamin Matasar Mrudula Yelamanchi Scott Blum Shelagh Callahan

    IPC分类号: H04L9/32

    CPC分类号: G06F21/335 G06F21/6236

    摘要: An apparatus and method for platform and device independent identity manageability. In one embodiment, the method includes validation of a manageable identity (MID) held within trusted storage of a user platform according to a user request to move the MID to a target platform. Once the MID is validated, available resources of the target platform are verified according to resource requirements of the MID. Once verified, the MID may be moved from the user platform to trusted storage provided by the target platform. In one embodiment, a platform-independent MID may be established that may be moved from a user platform to a non-compatible target platform, such that the platform-independent MID is not constrained to just one single platform. Other embodiments are described and claimed.

    摘要翻译: 一种用于平台和设备独立身份可管理性的设备和方法。 在一个实施例中,该方法包括根据用户将MID移动到目标平台的用户请求来确认在用户平台的可信存储内保持的可管理身份(MID)。 一旦MID被验证,目标平台的可用资源将根据MID的资源需求进行验证。 一旦验证,MID可以从用户平台移动到由目标平台提供的可信存储。 在一个实施例中,可以建立与平台无关的MID,其可以从用户平台移动到不兼容的目标平台,使得与平台无关的MID不仅限于仅一个单个平台。 描述和要求保护其他实施例。

    Securing local and intra-platform links
    7.
    发明申请
    Securing local and intra-platform links 审中-公开
    保护本地和平台内的链接

    公开(公告)号:US20060068758A1

    公开(公告)日:2006-03-30

    申请号:US10957273

    申请日:2004-09-30

    申请人: Abhay Dharmadhikari Mrudula Yelamanchi Jane Dashevsky Benjamin Matasar Selim Aissi Jose Puthenkulam Shelagh Callahan

    发明人: Abhay Dharmadhikari Mrudula Yelamanchi Jane Dashevsky Benjamin Matasar Selim Aissi Jose Puthenkulam Shelagh Callahan

    IPC分类号: H04M1/66

    CPC分类号: H04L63/0428 H04L63/061 H04L63/0869

    摘要: A method of securing a local link may involve exchange of initiation messages and negotiation of ciphersuites across a local link. The method then transmits a server authentication and receives a client authentication. Upon validation of the server and client authentication, information from the cipher is used to encrypt communications across the local link. In addition, there is a method of providing intra-platform security. The method performs authentication between two endpoints on a platform and then generates keys between the two endpoints to form a trusted tunnel. The keys are used to encrypt communications between the endpoints.

    摘要翻译: 保护本地链路的方法可能涉及交换发起消息,并通过本地链路协商密码。 该方法然后发送服务器认证并接收客户端认证。 在验证服务器和客户端认证后,来自密码的信息用于加密本地链路上的通信。 此外,还有一种提供平台内安全性的方法。 该方法在平台上的两个端点之间执行认证,然后在两个端点之间生成密钥以形成可信隧道。 密钥用于加密端点之间的通信。

    System and method for user certificate initiation, distribution, and provisioning in converged WLAN-WWAN interworking networks
    8.
    发明申请
    System and method for user certificate initiation, distribution, and provisioning in converged WLAN-WWAN interworking networks 有权
    融合WLAN-WWAN互通网络中的用户证书启动,分发和配置的系统和方法

    公开(公告)号:US20060075242A1

    公开(公告)日:2006-04-06

    申请号:US10956765

    申请日:2004-10-01

    申请人: Selim Aissi Mrudula Yelamanchi Abhay Dharmadhikari Benjamin Matasar Jane Dashevsky

    发明人: Selim Aissi Mrudula Yelamanchi Abhay Dharmadhikari Benjamin Matasar Jane Dashevsky

    IPC分类号: H04L9/00

    CPC分类号: H04W12/08 H04L63/062 H04L63/0823 H04W12/04 H04W12/06 H04W48/16 H04W84/12

    摘要: A system and method for user certificate initiation, distribution, and provisioning in converged WLAN-WWAN interworking networks. A computing device operable in a wireless local area network sends a public key to a mobile device operable in a wireless cellular wide area network. The mobile device performs a bootstrapping procedure with a cellular operator in the wireless cellular wide area network to obtain a user certificate based on the public key. The mobile device sends the user certificate to the computing device for installation on the computing device. The user certificate may be used for digital signature, verification, and encryption purposes. The user certificate is also used in both the wireless local area network and the wireless wide area network for authenticating a subscriber when accessing services from both networks.

    摘要翻译: 融合WLAN-WWAN互通网络中的用户证书启动,分发和配置的系统和方法。 可在无线局域网中操作的计算设备将公钥发送到在无线蜂窝广域网中可操作的移动设备。 移动设备在无线蜂窝广域网中与蜂窝运营商执行自举程序以基于公钥获得用户证书。 移动设备将用户证书发送到计算设备以在计算设备上安装。 用户证书可以用于数字签名,验证和加密目的。 用户证书也用于无线局域网和无线广域网,用于在从两个网络访问服务时认证用户。