利索-全球专利检索

  1. 登录
  2. 注册

搜索结果

11 条记录 (耗时 0.025 秒)

    Method to verify the integrity of components on a trusted platform using integrity database services
    1.
    发明授权
    Method to verify the integrity of components on a trusted platform using integrity database services 有权
    使用完整性数据库服务验证可信平台上组件的完整性的方法

    公开(公告)号:US08266676B2

    公开(公告)日:2012-09-11

    申请号:US11608742

    申请日:2006-12-08

    申请人: Thomas Parasu Hardjono David Maurits Bleckmann William Wyatt Starnes Bradley Douglas Andersen

    发明人: Thomas Parasu Hardjono David Maurits Bleckmann William Wyatt Starnes Bradley Douglas Andersen

    IPC分类号: H04L29/06

    CPC分类号: H04L63/1433 H04L63/0823 H04L63/0876

    摘要: A client platform can be verified prior to being granted access to a resource or service on a network by validating individual hardware and software components of the client platform. Digests are generated for the components of the client platform. The digests can be collected into an integrity report. An authenticator entity receives the integrity report and compares the digests with digests stored in either a local signature database, a global signature database in an integrity authority, or both. Alternatively, the digests can be collected and stored on a portable digest-collector dongle. Once digests are either validated or invalidated, an overall integrity/trust score can be generated. She overall integrity/trust score can be used to determine whether the client platform should be granted access to the resource on the network using a policy.

    摘要翻译: 客户端平台可以在通过验证客户端平台的各个硬件和软件组件被授予访问网络上的资源或服务之前进行验证。 为客户端平台的组件生成摘要。 摘要可以收集到完整性报告中。 验证器实体接收完整性报告,并将摘要与存储在本地签名数据库,完整性权限中的全局签名数据库或两者中的摘要进行比较。 或者,可以将消化集合收集并存储在便携式摘要收集器加密狗上。 一旦摘要被验证或无效,就可以生成总体完整性/信任分数。 她的整体完整性/信任度可用于确定客户端平台是否应授予使用策略访问网络上的资源。

    Method and system to issue trust score certificates for networked devices using a trust scoring service
    5.
    发明授权
    Method and system to issue trust score certificates for networked devices using a trust scoring service 有权
    使用信任评分服务为联网设备发布信任评分证书的方法和系统

    公开(公告)号:US08327131B1

    公开(公告)日:2012-12-04

    申请号:US11776498

    申请日:2007-07-11

    申请人: Thomas Parasu Hardjono David Maurits Bleckmann William Wyatt Starnes Bradley Douglas Andersen

    发明人: Thomas Parasu Hardjono David Maurits Bleckmann William Wyatt Starnes Bradley Douglas Andersen

    IPC分类号: H04L9/32

    CPC分类号: H04L63/1433 H04L63/0823 H04L63/0876 H04L63/126

    摘要: A target machine can be verified prior to being granted access to a resource on a network by interrogating and analyzing digests of various elements of the target machine. The digests can be collected into an integrity report and provided to a Trust Scoring Service. The Trust Scoring Service receives the integrity report and compares the digests with signatures stored in a signature database. A trust score certificate can then be issued to the target machine. The Trust Scoring Service can include a Score Evaluation Server which can interact with a Kerberos Authentication Server and a Ticket Granting Server to embed a trust score within a Kerberos Ticket to enforce a richer set of access policies. The integrity of a web server can be verified and a Trust Score Certificate Logo can be displayed on a corresponding home page of a merchant. By clicking on the Trust Score Certificate Logo, a user can verify the integrity of the merchant's web servers prior to completing a transaction with the merchant.

    摘要翻译: 在通过询问和分析目标机器的各种元素的摘要之前,可以验证目标机器被授权访问网络上的资源。 摘要可以收集到完整性报告中,并提供给信任评分服务。 信任评分服务接收完整性报告,并将消息与存储在签名数据库中的签名进行比较。 然后可以向目标机器发出信任分数证书。 信任评分服务可以包括评分评估服务器,它可以与Kerberos身份验证服务器和授权服务器进行交互,以将信任分数嵌入到Kerberos Ticket中,以执行更丰富的访问策略。 可以验证Web服务器的完整性,并可以在商家的相应主页上显示信任分数证书徽标。 通过点击信任评分证书徽标,用户可以在与商家完成交易之前验证商家的网络服务器的完整性。