-
1.发明授权Method and apparatus for preventing information leakage attacks on a microelectronic assembly 有权用于防止对微电子组件的信息泄漏攻击的方法和装置公开(公告)号:US06295606B1
公开(公告)日:2001-09-25
申请号:US09360585
申请日:1999-07-26
IPC分类号: G06F1214
CPC分类号: G07F7/1008 , G06F21/72 , G06F21/755 , G06F2207/7219 , G06Q20/341 , G07F7/082 , G07F7/084 , G07F7/1016 , G07F7/1083 , H04L9/003 , H04L9/0625 , H04L2209/046 , H04L2209/08
摘要: An apparatus and method for preventing information leakage attacks on a microelectronic assembly is described for performing a cryptographic algorithm by transforming a first function, used by the cryptographic algorithm, into a second function. The method includes receiving (1102) a masked input data having n number of bits that is masked with an input mask, wherein n is a first predetermined integer. The method also includes processing (1104) the masked input data using a second function based on a predetermined masking scheme, and producing (1106) a masked output data having m number of bits that is masked with an output mask, wherein m is a second predetermined integer.
摘要翻译: 描述了一种用于防止对微电子组件的信息泄漏攻击的装置和方法,用于通过将由密码算法使用的第一功能变换为第二功能来执行密码算法。 该方法包括:接收(1102)具有n个比特的被掩码的输入数据,该掩码的输入数据被用输入掩码掩码,其中n是第一预定整数。 该方法还包括使用基于预定屏蔽方案的第二函数来处理(1104)屏蔽的输入数据,并且产生(1106)具有m个位数的屏蔽输出数据,该数据被输出掩码掩蔽,其中m是第二个 预定整数。
-
2.发明授权公开(公告)号:US06298135B1
公开(公告)日:2001-10-02
申请号:US09302096
申请日:1999-04-29
IPC分类号: H04L900
CPC分类号: G06F7/723 , G06F7/725 , G06F2207/7252 , H04L9/003 , H04L9/3066 , H04L9/3252
摘要: Apparatus in form of a microelectronic assembly including an integrated circuit (IC) for execution of an embedded modular exponentiation program utilizing a square-and-multiply algorithm, wherein in the modular exponentiation program a secret exponent having a plurality of bits characterizes a private key, a method of providing a digital signature to prevent the detection of the secret exponent when monitoring power variations during the IC execution, the method comprising the steps of for a first operation in the modular exponentiation, selecting at least one predetermined bit, wherein the at least one predetermined bit is a bit other than a least significant bit (LSB) and the most significant bit (MSB); using the square-and-multiply algorithm, sequentially selecting bits to the left of the at least one predetermined bit for exponentiation until the MSB is selected; subsequent to selecting the MSB, sequentially selecting bits to the right of the at least one predetermined bit for exponentiation until the LSB is selected.
摘要翻译: 一种微电子组件的形式的装置,包括用于执行嵌入式模幂运算方法和乘法算法的集成电路(IC),其中在模幂运算程序中,具有多个位的秘密指数表征私钥, 一种在IC执行期间监视功率变化时提供数字签名以防止秘密指数的检测的方法,所述方法包括以下步骤:在模幂运算中进行第一操作,选择至少一个预定位,其中至少 一个预定位是除最低有效位(LSB)和最高有效位(MSB)以外的位; 使用所述平方和乘法算法,顺序地选择所述至少一个预定位的左侧的比特以进行求幂,直到选择所述MSB; 在选择MSB之后,顺序选择至少一个预定位的右侧的位进行求幂,直到选择LSB为止。
-
公开(公告)号:US5347548A
公开(公告)日:1994-09-13
申请号:US901047
申请日:1992-06-19
CPC分类号: H04J3/0602 , H04L7/042 , H04W28/06 , H04W84/12
摘要: Simultaneously detecting both frame and bit synchronization in a serial bit stream reduces the time required to have a receiver lock up to a transmitted serial data signal. A dual-phase correlator circuit is used to detect frame synchronization while a multiphase commutator circuit detects bit clock synchronization.
摘要翻译: 同时在串行比特流中检测帧和位同步减少了将接收机锁定到传输的串行数据信号所需的时间。 当多相换向器电路检测到位时钟同步时,使用双相位相关器电路来检测帧同步。
-
公开(公告)号:US20080141352A1
公开(公告)日:2008-06-12
申请号:US11608966
申请日:2006-12-11
IPC分类号: H04L9/32
CPC分类号: H04L63/083 , H04L63/166 , H04L63/168
摘要: A password is securely distributed to a client device of a network by sending a first encrypted message from the client device to a server of the network, the first message comprising a nonce created by the client device, a username of the client device, and a network address of the client device, then sending a second message from the server to the network address of the client device, the second message comprising the nonce created by the client device, and a password created by the server. If the client device verifies that the nonce received from the server matches the nonce sent to the server, the password and username may be used to enable to client device to access information on the server. The first encrypted message may be an HTTPS message and the second message may be an SMS message.
摘要翻译: 通过从客户端设备发送第一加密消息到网络的服务器,将密码安全地分发到网络的客户端设备,该第一消息包括客户端设备创建的随机数,客户端设备的用户名,以及 客户端设备的网络地址,然后从服务器发送第二消息到客户端设备的网络地址,第二个消息包括由客户端设备创建的随机数,以及由服务器创建的密码。 如果客户端设备验证从服务器接收的随机数匹配发送到服务器的随机数,则可以使用密码和用户名来启用客户端设备来访问服务器上的信息。 第一加密消息可以是HTTPS消息,第二消息可以是SMS消息。
-
5.发明申请User-configurable priority list for mobile device electronic payment applications 有权用户可配置的移动设备电子支付应用优先级列表公开(公告)号:US20070278290A1
公开(公告)日:2007-12-06
申请号:US11448241
申请日:2006-06-06
IPC分类号: G06K5/00
CPC分类号: G06Q20/3278 , G06Q20/10 , G06Q20/105 , G06Q20/227 , G06Q20/32 , G06Q20/40
摘要: A mobile device as disclosed herein can support a plurality of electronic payment applications such as credit and/or debit applications. During a payment transaction, the mobile device communicates a priority list of the electronic payment applications to a point of sale terminal, which then selects one of the applications for completion of the payment transaction, where the selection is governed by the priority list. The data structure corresponding to the priority list is configured such that the end user of the mobile device has management access rights to at least some of the electronic payment applications. Such end user management access rights can be used to modify the relative priority of the electronic payment applications.
摘要翻译: 本文公开的移动设备可以支持多个电子支付应用,例如信用和/或借记应用。 在支付交易期间,移动设备将电子支付应用的优先级列表传送到销售点终端,该销售终端然后选择用于完成支付交易的应用中的一个,其中所述选择由优先级列表控制。 对应于优先级列表的数据结构被配置为使得移动设备的最终用户对至少一些电子支付应用具有管理访问权限。 这样的最终用户管理访问权限可以用于修改电子支付应用的相对优先级。
-
公开(公告)号:US08605907B2
公开(公告)日:2013-12-10
申请号:US12961992
申请日:2010-12-07
申请人: Thomas S. Messerges , Adam C. Lewis
发明人: Thomas S. Messerges , Adam C. Lewis
IPC分类号: H04L29/06
CPC分类号: H04L63/06
摘要: A method and apparatus for modifying the Multimedia Internet KEYing (MIKEY) protocol to support an extended key-management message (KMM), wherein the apparatus programs a computer to perform the method, which includes: determining that a KMM is directed to a target device; determining that the KMM is an extended KMM related to a key-management operation that is not supported by the standard MIKEY protocol; signaling the extended KMM in at least one field of a MIKEY message; and sending the MIKEY message to the target device.
摘要翻译: 一种用于修改多媒体互联网密钥(MIKEY)协议以支持扩展密钥管理消息(KMM)的方法和装置,其中所述装置对计算机进行编程以执行该方法,其包括:确定KMM被定向到目标设备 ; 确定KMM是与标准MIKEY协议不支持的密钥管理操作相关的扩展KMM; 在MIKEY消息的至少一个字段中发送扩展的KMM; 并将MIKEY消息发送到目标设备。
-
7.发明申请公开(公告)号:US20130054964A1
公开(公告)日:2013-02-28
申请号:US13216487
申请日:2011-08-24
申请人: Thomas S. Messerges , Adam C. Lewis
发明人: Thomas S. Messerges , Adam C. Lewis
IPC分类号: H04L9/32
CPC分类号: H04L9/0833
摘要: Methods, systems and apparatus are provided for source authentication. In accordance with the disclosed embodiments, a key-management server generates a key-delivery message that includes a key data transport payload secured with a group key, and a source authentication payload. Upon receiving the key-delivery message at a communication device, the communication device may verify whether the source authentication payload of the key-delivery message is valid. When the source authentication payload is determined to be valid, the communication device thereby authenticates that the key-delivery message was transmitted by the key-management server.
摘要翻译: 为源认证提供了方法,系统和设备。 根据所公开的实施例,密钥管理服务器生成密钥传递消息,其包括用组密钥保护的密钥数据传输负载和源认证有效载荷。 在通信设备接收到密钥传送消息时,通信设备可以验证密钥传递消息的源认证有效负载是否有效。 当确定源认证有效负载是有效的时,通信设备因此认证密钥传送消息是由密钥管理服务器发送的。
-
公开(公告)号:US20090198619A1
公开(公告)日:2009-08-06
申请号:US12026694
申请日:2008-02-06
CPC分类号: G06Q20/02 , G06Q20/3829 , G06Q20/40 , G06Q20/401 , H04L9/3213 , H04L9/3236 , H04L2209/38 , H04L2209/56
摘要: Disclosed are a system and method for aggregating micropayment hash chains. An end user (the “payer”) cryptographically signs “commitments” and transmits then to a vendor. The commitments include an “accumulated count” field which tracks the total number of micropayments made thus far in the payment transaction between the payer and the vendor. The payer can also transmit payment tokens to the vendor. These payment tokens include micropayments verified by a hash chain. When the vendor seeks reimbursement from a broker, the vendor tells the broker the total number of micropayments in the payment transaction and sends verification information to the broker. The broker checks this information against a verification system established with the payer. If the information is verified to be correct, then the broker reimburses the vendor for the services provided and charges the payer. The verification information ensures that the payer and vendor cannot cheat each other.
摘要翻译: 公开了一种用于聚合微支付哈希链的系统和方法。 最终用户(“付款人”)密码地签署“承诺”,然后传送给供应商。 这些承诺包括“累计计数”字段,跟踪到付款人和供应商之间的付款交易中迄今为止所进行的小额支付总数。 付款人还可以向供应商传送付款令牌。 这些付款令牌包括通过哈希链验证的小额支付。 当供应商寻求经纪人的报销时,供应商告诉经纪人支付交易中的小额支付总额,并向经纪人发送验证信息。 经纪人根据与付款人建立的验证系统检查此信息。 如果信息被证实是正确的,那么经纪人向供应商报销所提供的服务,并向付款人收取费用。 验证信息确保付款人和供应商不能互相欺骗。
-
公开(公告)号:US08467536B2
公开(公告)日:2013-06-18
申请号:US12962906
申请日:2010-12-08
申请人: Adam C. Lewis , Thomas S. Messerges
发明人: Adam C. Lewis , Thomas S. Messerges
CPC分类号: H04L65/4061 , H04L63/06 , H04L65/607 , H04L2463/062 , H04W80/12
摘要: A key message can include a key-encryption-key (KEK) associated with a KeyDomainID and a KeyGroupID. A session description message can describe streaming media initialization parameters containing media stream information for one or more media streams. For each media stream, the media stream information can include an IP address and a data port. The session description message can further contain a linkage for binding the KEK to a corresponding one of the media streams. The linkage can include the KeyDomainID and KeyGroupID or can include an abstract representation of the KeyDomainID and KeyGroupID. During session initialization, the key-encryption-key (KEK) can be bound to the media streams using the linkage of the session description message. Each of the media streams can be secured using a traffic key conveyed to user equipment (UE) under protection of the key-encryption-key (KEK).
摘要翻译: 密钥消息可以包括与KeyDomainID和KeyGroupID相关联的密钥加密密钥(KEK)。 会话描述消息可以描述包含用于一个或多个媒体流的媒体流信息的流媒体初始化参数。 对于每个媒体流,媒体流信息可以包括IP地址和数据端口。 会话描述消息还可以包含用于将KEK绑定到相应的一个媒体流的链接。 该链接可以包括KeyDomainID和KeyGroupID,或者可以包括KeyDomainID和KeyGroupID的抽象表示。 在会话初始化期间,密钥加密密钥(KEK)可以使用会话描述消息的链接绑定到媒体流。 可以使用在密钥加密密钥(KEK)的保护下传送到用户设备(UE)的业务密钥来保护每个媒体流。
-
10.发明授权Method, system and a data frame for communication in a wireless communication system 有权用于无线通信系统中的通信的方法,系统和数据帧公开(公告)号:US08320350B2
公开(公告)日:2012-11-27
申请号:US11861358
申请日:2007-09-26
IPC分类号: H04W4/00
摘要: A means for determining a channel for communication in a wireless communication system is provided. A method includes receiving one or more sub-frames of a beacon signal on a beaconing channel until a legitimacy condition of the beacon signal is met. The beacon signal is transmitted by a beaconing device. The method further includes determining a suitability of the channel for communication in the wireless communication system based on the legitimacy condition.
摘要翻译: 提供了一种用于确定无线通信系统中的通信信道的装置。 一种方法包括在信标信道上接收信标信号的一个或多个子帧,直到满足信标信号的合法性条件。 信标信号由信标装置发送。 该方法还包括基于合法性条件来确定无线通信系统中用于通信的信道的适用性。
-
-
-
-
-
-
-
-
-
搜索结果
18 条记录 (耗时 0.024 秒)
