-
公开(公告)号:US07814538B2
公开(公告)日:2010-10-12
申请号:US11300631
申请日:2005-12-13
申请人: Thomas W. Kuehnel , Shannon J. Chan
发明人: Thomas W. Kuehnel , Shannon J. Chan
CPC分类号: H04L63/0869 , H04L9/3236 , H04L9/3263 , H04L63/0823 , H04L63/083 , H04L63/0853 , H04L63/1466 , H04L63/18 , H04L2209/805
摘要: An authentication process using a combined code as a shared secret between a client and target service is provided. The combined code is provided out-of-band and includes data to perform two-way authentication for both the client and the target service. The target service may provide the client with a certificate to establish a secure channel. The client may use the data in the combined code to validate the target service. When the target service is validated, the client may provide credentials in the combined code to the target service for authentication. In one example implementation, the combined code includes a hash of a public key. The client may compute another hash of another public key in the certificate provided by the target service and validate the service by comparing the hash in the combined code and the computed hash.
摘要翻译: 提供了使用组合代码作为客户机和目标服务之间的共享秘密的认证过程。 组合代码是带外提供的,包括为客户端和目标服务执行双向认证的数据。 目标服务可以向客户端提供建立安全通道的证书。 客户端可以使用组合代码中的数据来验证目标服务。 当目标服务被验证时,客户端可以将组合代码中的凭证提供给目标服务以进行认证。 在一个示例实现中,组合代码包括公共密钥的散列。 客户端可以计算由目标服务提供的证书中的另一个公钥的另一个散列,并通过比较组合代码中的哈希和所计算的散列来验证服务。
-
公开(公告)号:US20100333186A1
公开(公告)日:2010-12-30
申请号:US12871802
申请日:2010-08-30
申请人: Shannon J. Chan , Thomas W. Kuehnel
发明人: Shannon J. Chan , Thomas W. Kuehnel
CPC分类号: H04L63/0869 , H04L9/3236 , H04L9/3263 , H04L63/0823 , H04L63/083 , H04L63/0853 , H04L63/1466 , H04L63/18 , H04L2209/805
摘要: An authentication process for a client and a target service to perform mutual authentication. A combined code is received that comprises a combined code hash of at least two sets of data from which an encoding scheme of the at least two sets of data can be determined. The two sets of data comprise a first set of data that includes a first hash of a public key associated with a certificate used to establish a secure channel with a target service, and a second set of data that includes a credential for authentication. The certificate can be validated with the first set of data included in the combined code. In response to a successful validation of the certificate, the credential from the second set of data can be provided to the target service for authentication.
摘要翻译: 用于客户端和目标服务执行相互认证的认证过程。 接收包括至少两组数据的组合代码散列的组合代码,从该组合代码散列可以确定至少两组数据的编码方案。 两组数据包括第一组数据,其包括与用于与目标服务建立安全通道的证书相关联的公钥的第一散列,以及包括用于认证的凭证的第二组数据。 可以使用组合代码中包含的第一组数据验证证书。 响应证书的成功验证,来自第二组数据的凭证可以被提供给目标服务以进行认证。
-
公开(公告)号:US08171534B2
公开(公告)日:2012-05-01
申请号:US12871802
申请日:2010-08-30
申请人: Shannon J. Chan , Thomas W. Kuehnel
发明人: Shannon J. Chan , Thomas W. Kuehnel
CPC分类号: H04L63/0869 , H04L9/3236 , H04L9/3263 , H04L63/0823 , H04L63/083 , H04L63/0853 , H04L63/1466 , H04L63/18 , H04L2209/805
摘要: An authentication process for a client and a target service to perform mutual authentication. A combined code is received that comprises a combined code hash of at least two sets of data from which an encoding scheme of the at least two sets of data can be determined. The two sets of data comprise a first set of data that includes a first hash of a public key associated with a certificate used to establish a secure channel with a target service, and a second set of data that includes a credential for authentication. The certificate can be validated with the first set of data included in the combined code. In response to a successful validation of the certificate, the credential from the second set of data can be provided to the target service for authentication.
摘要翻译: 用于客户端和目标服务执行相互认证的认证过程。 接收包括至少两组数据的组合代码散列的组合代码,从该组合代码散列可以确定至少两组数据的编码方案。 两组数据包括第一组数据,其包括与用于与目标服务建立安全通道的证书相关联的公钥的第一散列,以及包括用于认证的凭证的第二组数据。 可以使用组合代码中包含的第一组数据验证证书。 响应证书的成功验证,来自第二组数据的凭证可以被提供给目标服务以进行认证。
-
公开(公告)号:US07735145B2
公开(公告)日:2010-06-08
申请号:US11062261
申请日:2005-02-18
IPC分类号: G06F13/00 , G06F13/372
CPC分类号: G06F21/79 , G06F2221/2143
摘要: A timed erasure mechanism can be used with portable computer-readable media to ensure automatic erasure of secure information, minimizing the security risks in using such media to store and transport passwords, codes, keys and similar private setup information. The portable computer-readable media can comprise volatile memory and a timed erasure mechanism in the form of a power supply and discharging circuitry that discharges the power supply after a predetermined amount of time. Alternatively, the portable computer-readable media can comprise nonvolatile memory and a timed erasure mechanism in the form of a digital time and erasure algorithms that are initiated after a predetermined amount of time. Furthermore, such portable computer-readable media can comprise a container that bears unique physical properties that can alert users to the volatile nature of the media.
摘要翻译: 定时擦除机制可以与便携式计算机可读介质一起使用,以确保安全信息的自动擦除,从而最小化使用这种媒体来存储和传输密码,代码,密钥和类似私有设置信息的安全风险。 便携式计算机可读介质可以包括易失性存储器和在预定时间量之后对电源进行放电的电源和放电电路形式的定时擦除机构。 或者,便携式计算机可读介质可以包括在预定时间量之后启动的数字时间和擦除算法形式的非易失性存储器和定时擦除机制。 此外,这种便携式计算机可读介质可以包括具有独特物理特性的容器,其可以向用户提醒媒体的挥发性质。
-
公开(公告)号:US08559350B2
公开(公告)日:2013-10-15
申请号:US11434394
申请日:2006-05-15
申请人: Thomas W. Kuehnel , Amer A. Hassan , Christian Huitema , David Jones , Savas Guven , Shannon J. Chan , Srinivas R. Gatta , Yi Lu
发明人: Thomas W. Kuehnel , Amer A. Hassan , Christian Huitema , David Jones , Savas Guven , Shannon J. Chan , Srinivas R. Gatta , Yi Lu
摘要: Discovery of services between devices is provided prior to establishing a connection between devices, including wireless-enabled devices or devices that are communicatively coupled to wireless access points or other wireless communication devices. Discovering services prior to establishing a connection may facilitate finding a desired service. The services that may be discovered may be, for example, print services, camera services, PDA services or any other suitable services. Services may be discovered using 802.11, Bluetooth, UWB or any other suitable wireless technology. An information element is used to wirelessly convey information related to a service and/or information related to service discovery.
摘要翻译: 在建立设备之间的连接之前提供设备之间的服务发现,包括无线功能设备或通信地耦合到无线接入点或其他无线通信设备的设备。 在建立连接之前发现服务可能有助于找到所需的服务。 可能发现的服务可以是例如打印服务,照相机服务,PDA服务或任何其它合适的服务。 可以使用802.11,蓝牙,UWB或任何其他合适的无线技术来发现服务。 信息元素用于无线地传送与服务有关的信息和/或与服务发现有关的信息。
-
公开(公告)号:US09105031B2
公开(公告)日:2015-08-11
申请号:US12035531
申请日:2008-02-22
申请人: Hui Shen , Amer A. Hassan , Yi Lu , Thomas W. Kuehnel , Andrew T. Baron , Deyun Wu
发明人: Hui Shen , Amer A. Hassan , Yi Lu , Thomas W. Kuehnel , Andrew T. Baron , Deyun Wu
CPC分类号: H04W12/06 , G06Q30/02 , G06Q30/0251 , G06Q30/0267 , G06Q30/0277 , H04L9/30 , H04L9/3263 , H04L9/3271 , H04L63/0442 , H04L63/0823 , H04L63/123 , H04L63/126 , H04L2209/56 , H04L2209/60 , H04L2209/805 , H04W4/00 , H04W4/02 , H04W4/80 , H04W12/04 , H04W12/08 , H04W12/10 , H04W12/12 , H04W48/08 , H04W48/16 , H04W84/12
摘要: Security techniques and security mechanisms for wireless networks that transmit content such as advertisements. According to exemplary techniques, control messages comprising unrequested content (e.g., advertisement data) may be transmitted in response to a request from a client device, while in other exemplary techniques the control messages may be transmitted without any request from a client device. In some exemplary implementations, security mechanisms such as public key cryptography algorithms may be used to secure transmissions. In some of these techniques which implement public key cryptography, a user may be required to retrieve a public key from a source other than the wireless access point transmitting encrypted advertisements (e.g., a sign or terminal in a commercial entity transmitting such advertisements, or from a web service), such that the user may confirm that the encrypted content is from a source matching the retrieved public key and thus confirm the authenticity of a wireless access point.
摘要翻译: 用于传输诸如广告等内容的无线网络的安全技术和安全机制。 根据示例性技术,可以响应于来自客户端设备的请求来发送包括未请求的内容(例如,广告数据)的控制消息,而在其他示例性技术中,可以在没有来自客户端设备的请求的情况下发送控制消息。 在一些示例性实现中,可以使用诸如公钥密码学算法的安全机制来保护传输。 在实现公钥加密的这些技术中的一些技术中,可能需要用户从除了发送加密广告的无线接入点之外的源(例如,在发送这样的广告的商业实体中的标志或终端,或从 Web服务),使得用户可以确认加密的内容来自与所检索的公钥相匹配的源,从而确认无线接入点的真实性。
-
公开(公告)号:US08976795B2
公开(公告)日:2015-03-10
申请号:US12392728
申请日:2009-02-25
申请人: Thomas W. Kuehnel , Alok Manchanda , Taroon Mandhana , Amer A. Hassan , Mukesh Karki , Christian Huitema , Yusuf Atas
发明人: Thomas W. Kuehnel , Alok Manchanda , Taroon Mandhana , Amer A. Hassan , Mukesh Karki , Christian Huitema , Yusuf Atas
IPC分类号: H04L12/28 , H04L12/24 , H04W4/02 , H04W48/00 , H04L29/08 , H04L29/06 , H04L12/56 , H04W80/06 , H04W84/18
CPC分类号: H04W48/16 , H04L41/00 , H04L41/0806 , H04L41/0809 , H04L41/0816 , H04L67/16 , H04L69/16 , H04L69/161 , H04W4/02 , H04W4/08 , H04W8/18 , H04W48/17 , H04W80/06 , H04W84/18
摘要: A computing environment containing a mesh network that is adapted to provide a reliable transport mechanism over which services may be delivered. Nodes of the mesh can automatically select routable addresses without conflicts, which allows nodes of the mesh to be accessed, even as the mesh changes through the addition or deletion of nodes. Also, nodes communicate with a protocol that supports service advertisements. These advertisements can identify mesh nodes that supply services, such as file or print servers, for which devices that have not yet connected to the network may be searching. Advertisements can also identify services to be used by nodes in the network, allowing, for example, a node to select a gateway providing a reliable connection to an external network. The mesh network can be used as a transport for communication using protocols, such as TCP/IP, that generally exhibit poor performance when using unreliable transports.
摘要翻译: 一种包含网状网络的计算环境,其适于提供可传送服务的可靠传输机制。 网格的节点可以自动选择可路由的地址,而不会产生冲突,这允许网格的节点被访问,即使当网格通过添加或删除节点而改变时。 此外,节点与支持服务广告的协议进行通信。 这些广告可以识别提供诸如文件或打印服务器的服务的网状节点,对于尚未连接到网络的设备可能正在搜索的那些设备。 广告还可以识别要由网络中的节点使用的服务,例如,允许节点选择提供与外部网络的可靠连接的网关。 网状网络可以用作使用诸如TCP / IP的协议的通信的传输,当使用不可靠的传输时,通常表现出差的性能。
-
公开(公告)号:US08755739B2
公开(公告)日:2014-06-17
申请号:US13037247
申请日:2011-02-28
申请人: Amer A. Hassan , Vishesh M. Parikh , Thomas W. Kuehnel , Deyun Wu , Christian Huitema , David Jones , Andrew T. Baron
发明人: Amer A. Hassan , Vishesh M. Parikh , Thomas W. Kuehnel , Deyun Wu , Christian Huitema , David Jones , Andrew T. Baron
IPC分类号: H04H20/74
摘要: Capability checking to examine a computing device's capabilities to determine if the device supports a software defined radio to communicate according to a specific wireless protocol. Applicants have appreciated that as the reliance on software defined radio increases, numerous potential options may be available to a user for performing wireless communication. Applicants have appreciated the desirability of providing the ability to discover the capabilities of a user's computer to determine whether it is capable of supporting one or more wireless protocols.
摘要翻译: 检查计算设备能力以确定设备是否支持根据特定无线协议进行通信的软件定义无线电的能力检查。 申请人已经意识到,随着对软件定义的无线电的依赖性的增加,许多潜在的选项可供用户进行无线通信。 申请人已经意识到提供发现用户计算机的功能以确定其是否能够支持一个或多个无线协议的能力的可取性。
-
公开(公告)号:US08625532B2
公开(公告)日:2014-01-07
申请号:US12832327
申请日:2010-07-08
申请人: Thomas W. Kuehnel
发明人: Thomas W. Kuehnel
摘要: Various embodiments enable a device to maintain a plurality of connections to a plurality of wireless networks simultaneously using one radio. For instance, a device can partition in time, or “time-slice”, when it transmits and receives data such that a device can maintain a plurality of connections with a plurality of networks concurrently. With the plurality of connections, the device can receive multiple copies of data. In some embodiments, a device can compare multiple copies of data and determine which copy of data is a best representation. Once a best representation has been determined, it can be selected for further usage.
摘要翻译: 各种实施例使得设备能够使用一个无线电同时维持到多个无线网络的多个连接。 例如,当设备发送和接收数据使得设备可以同时维持与多个网络的多个连接时,设备可以及时分割或“时间片”。 通过多个连接,设备可以接收多个数据副本。 在一些实施例中,设备可以比较多个数据副本并确定数据的哪个副本是最佳表示。 一旦确定了最佳表现,就可以选择进一步的使用。
-
公开(公告)号:US08385230B2
公开(公告)日:2013-02-26
申请号:US12392777
申请日:2009-02-25
申请人: Thomas W. Kuehnel , Alok Manchanda , Taroon Mandhana , Amer A. Hassan , Mukesh Karki , Christian Huitema , Yusuf Atas
发明人: Thomas W. Kuehnel , Alok Manchanda , Taroon Mandhana , Amer A. Hassan , Mukesh Karki , Christian Huitema , Yusuf Atas
IPC分类号: H04L12/28
CPC分类号: H04L29/12264 , H04L29/12028 , H04L29/12066 , H04L29/1232 , H04L61/103 , H04L61/1511 , H04L61/2046 , H04L61/2092 , H04W8/26
摘要: A computing environment containing a mesh network that is adapted to provide a reliable transport mechanism over which services may be delivered. Nodes of the mesh can automatically select routable addresses without conflicts, which allows nodes of the mesh to be accessed, even as the mesh changes through the addition or deletion of nodes. Also, nodes communicate with a protocol that supports service advertisements. These advertisements can identify mesh nodes that supply services, such as file or print servers, for which devices that have not yet connected to the network may be searching. Advertisements can also identify services to be used by nodes in the network, allowing, for example, a node to select a gateway providing a reliable connection to an external network. The mesh network can be used as a transport for communication using protocols, such as TCP/IP, that generally exhibit poor performance when using unreliable transports.
摘要翻译: 一种包含网状网络的计算环境,其适于提供可传送服务的可靠传输机制。 网格的节点可以自动选择可路由的地址,而不会产生冲突,这允许网格的节点被访问,即使当网格通过添加或删除节点而改变时。 此外,节点与支持服务广告的协议进行通信。 这些广告可以识别提供诸如文件或打印服务器的服务的网状节点,对于尚未连接到网络的设备可能正在搜索的那些设备。 广告还可以识别要由网络中的节点使用的服务,例如,允许节点选择提供与外部网络的可靠连接的网关。 网状网络可以用作使用诸如TCP / IP的协议的通信的传输,当使用不可靠的传输时,通常表现出差的性能。
-
-
-
-
-
-
-
-
-
搜索结果
86 条记录 (耗时 0.026 秒)