-
1.发明授权公开(公告)号:US07035410B1
公开(公告)日:2006-04-25
申请号:US09516236
申请日:2000-03-01
申请人: William A. Aiello , Steven Michael Bellovin , Charles Robert Kalmanek, Jr. , William Todd Marshall , Aviel D. Rubin
发明人: William A. Aiello , Steven Michael Bellovin , Charles Robert Kalmanek, Jr. , William Todd Marshall , Aviel D. Rubin
IPC分类号: G06F17/00
CPC分类号: H04L9/0822 , H04L9/3263
摘要: The broadband telephony interface is provisioned by receiving information authenticating a provisioning server, establishing a communication channel between the user and the provisioning server over which is transmitted authorization information from the user to the provisioning server, and encrypting and transmitting a cryptographic key associated with the user to the provisioning server. The cryptographic key can be a symmetric key or a public key corresponding to a private key stored in the broadband telephony interface. The cryptographic key can be utilized to generate other keys which are utilized to secure communication channels for the telephony service. The broadband telephony interface advantageously can be implemented as untrusted hardware or software that is installed by a customer.
摘要翻译: 通过接收认证供应服务器的信息来提供宽带电话接口,在用户和供应服务器之间建立通信信道,通过该通信信道从用户向供应服务器发送授权信息,以及加密和发送与用户相关联的密码密钥 到配置服务器。 加密密钥可以是与存储在宽带电话接口中的专用密钥相对应的对称密钥或公钥。 密码密钥可用于生成用于保护电话服务的通信信道的其他密钥。 宽带电话接口有利地可以被实现为由客户安装的不可信硬件或软件。
-
2.发明授权公开(公告)号:US07536359B1
公开(公告)日:2009-05-19
申请号:US11006360
申请日:2004-12-06
IPC分类号: G06F17/60
CPC分类号: G07F7/0866 , G06Q20/3672 , G06Q20/3674
摘要: The present invention permits a user to conduct remote transactions without a network while using an untrusted computing device, such as a hand-held personal digital assistant or a laptop computer. The computing device is augmented with a smartcard reader, and the user obtains a smartcard and connects it to the device. This design can be used by an untrusted user to perform financial transactions, such as placing bets on the outcome of a probabilistic computation. Protocols are presented for adding (purchasing) or removing (selling) value on the smartcard, again without requiring a network connection. Using the instant protocols, neither the user nor the entity issuing the smartcards can benefit from cheating.
摘要翻译: 本发明允许用户在使用诸如手持式个人数字助理或膝上型计算机之类的不受信任的计算设备的情况下进行远程交易而无需网络。 计算设备用智能卡读卡器增强,用户获得智能卡并将其连接到设备。 这种设计可以由不受信任的用户使用来执行金融交易,例如将下注放在概率计算的结果上。 提出了在智能卡上添加(购买)或删除(销售)价值的协议,而不需要网络连接。 使用即时协议,用户和发行智能卡的实体都不能受益于作弊。
-
公开(公告)号:US08453227B2
公开(公告)日:2013-05-28
申请号:US11616325
申请日:2006-12-27
申请人: William A. Aiello , Charles Robert Kalmanek, Jr. , William J. Leighton, III , Patrick McDaniel , Subhabrata Sen , Oliver Spatscheck , Jacobus E. Van Der Merwe
发明人: William A. Aiello , Charles Robert Kalmanek, Jr. , William J. Leighton, III , Patrick McDaniel , Subhabrata Sen , Oliver Spatscheck , Jacobus E. Van Der Merwe
IPC分类号: H04L29/06
CPC分类号: H04W28/00 , H04L43/16 , H04L63/0236 , H04L63/0254 , H04L63/0263 , H04L63/029
摘要: An application provisioning device may be used to manage a profile of a host and provide data corresponding to a selected application for installation at a host. A reverse firewall may use the profile of the host to determine whether to allow or block particular network communication from an application running on the host. An indication of a selected application may be received at the application provisioning device. Configuration information may also be received at the application provisioning device. The application provisioning server may request an update to the profile of a host and transmit such a request. The profile may be updated to reflect the configuration information and/or information of the selected application. Data corresponding to the selected application may be updated and transmitted to a host computer, where it may be installed. Therefore, the installed application running on the host may operate without being prematurely blocked by the reverse firewall.
摘要翻译: 应用配置设备可以用于管理主机的配置文件,并且提供与所选择的应用相对应的数据以在主机上安装。 反向防火墙可以使用主机的简档来确定是否允许或阻止来自在主机上运行的应用的特定网络通信。 可以在应用供应设备处接收所选择的应用的指示。 还可以在应用配置设备处接收配置信息。 应用供应服务器可以请求对主机的配置文件的更新并传送这样的请求。 可以更新配置文件以反映所选择的应用的配置信息和/或信息。 与所选择的应用相对应的数据可以被更新并发送到可以安装在其上的主计算机。 因此,主机上运行的已安装应用程序可能会运行,而不会被反向防火墙过早阻止。
-
4.发明授权公开(公告)号:US06850909B1
公开(公告)日:2005-02-01
申请号:US10316425
申请日:2002-12-11
CPC分类号: G07F7/0866 , G06Q20/3672 , G06Q20/3674
摘要: The present invention permits a user to conduct remote transactions without a network while using an untrusted computing device, such as a hand-held personal digital assistant or a laptop computer. The computing device is augmented with a smartcard reader, and the user obtains a smartcard and connects it to the device. This design can be used by an untrusted user to perform financial transactions, such as placing bets on the outcome of a probabilistic computation. Protocols are presented for adding (purchasing) or removing (selling) value on the smartcard, again without requiring a network connection. Using the instant protocols, neither the user nor the entity issuing the smartcards can benefit from cheating.
摘要翻译: 本发明允许用户在使用诸如手持式个人数字助理或膝上型计算机之类的不受信任的计算设备的情况下进行远程交易而无需网络。 计算设备用智能卡读卡器增强,用户获得智能卡并将其连接到设备。 这种设计可以由不受信任的用户使用来执行金融交易,例如将下注放在概率计算的结果上。 提出了在智能卡上添加(购买)或删除(销售)价值的协议,而不需要网络连接。 使用即时协议,用户和发行智能卡的实体都不能受益于作弊。
-
5.发明授权公开(公告)号:US06496808B1
公开(公告)日:2002-12-17
申请号:US09412354
申请日:1999-10-05
IPC分类号: G06F1700
CPC分类号: G07F7/0866 , G06Q20/3672 , G06Q20/3674
摘要: The present method permits a user to conduct remote transactions without a network while using an untrusted computing device, such as a hand-held personal digital assistant or a laptop computer. The computing device is augmented with a smartcard reader, and the user obtains a smartcard and connects it to the device. This design can be used by an untrusted user to perform financial transactions, such as placing bets on the outcome of a probabilistic computation. Protocols are presented for adding (purchasing) or removing (selling) value on the smartcard, again without requiring a network connection. Using the instant protocols, neither the user nor the entity issuing the smartcards can benefit from cheating.
摘要翻译: 本方法允许用户在使用诸如手持式个人数字助理或膝上型计算机的不可信计算设备的同时进行远程交易而无需网络。 计算设备用智能卡读卡器增强,用户获得智能卡并将其连接到设备。 这种设计可以由不受信任的用户使用来执行金融交易,例如将下注放在概率计算的结果上。 提出了在智能卡上添加(购买)或删除(销售)价值的协议,而不需要网络连接。 使用即时协议,用户和发行智能卡的实体都不能受益于作弊。
-
6.发明申请Using Smartcards to Enable Probabilistic Transactions on an Untrusted Device 有权使用智能卡启用不受信任的设备上的概率交易公开(公告)号:US20090319431A1
公开(公告)日:2009-12-24
申请号:US12468659
申请日:2009-05-19
CPC分类号: G07F7/0866 , G06Q20/3672 , G06Q20/3674
摘要: The present intention permits a user to conduct remote transactions without a network while using an untrusted computing device, such as a hand held personal digital assistant or a laptop computer. The computing device is augmented with a smartcard reader, and the user obtains a smartcard and connects it to the device. This design can be used by an untrusted user to perform financial transactions, such as placing bets on the outcome of a probabilistic computation. Protocols are presented for adding (purchasing) or removing (selling) value on the smartcard, again without requiring a network connection. Using the instant protocols, neither the user nor the entity issuing the smartcards can benefit from cheating.
摘要翻译: 目前的意图允许用户在不使用网络的情况下进行远程交易,同时使用诸如手持个人数字助理或膝上型计算机的不可信计算设备。 计算设备用智能卡读卡器增强,用户获得智能卡并将其连接到设备。 这种设计可以由不受信任的用户使用来执行金融交易,例如将下注放在概率计算的结果上。 提出了在智能卡上添加(购买)或删除(销售)价值的协议,而不需要网络连接。 使用即时协议,用户和发行智能卡的实体都不能受益于作弊。
-
7.发明授权Efficient cryptographic hash functions and methods for amplifying the security of hash functions and pseudo-random functions 失效有效的加密哈希函数和放大哈希函数和伪随机函数的安全性的方法
公开(公告)号:US5608801A
公开(公告)日:1997-03-04
申请号:US559213
申请日:1995-11-16
CPC分类号: H04L9/0662 , G06F7/582 , H04L9/0643 , H04L2209/12 , H04L2209/20 , H04L2209/38
摘要: Methods and circuitry for generating a cryptographic hash function using a strong pseudo-random generator along with the input data to create high quality pseudo-random keys as indices to pseudo-random functions, as well as a pseudo-random function from 2n bits to 2n bits given a pseudo-random function from n bits to n bits.
摘要翻译: 用于使用强伪随机生成器与输入数据一起生成加密散列函数的方法和电路,以产生作为伪随机函数的索引的高质量伪随机密钥,以及从2n位到2n的伪随机函数 给出了从n位到n位的伪随机函数的位。
-
8.发明授权公开(公告)号:US08527426B2
公开(公告)日:2013-09-03
申请号:US12468659
申请日:2009-05-19
IPC分类号: G06Q20/00
CPC分类号: G07F7/0866 , G06Q20/3672 , G06Q20/3674
摘要: The present intention permits a user to conduct remote transactions without a network while using an untrusted computing device, such as a hand held personal digital assistant or a laptop computer. The computing device is augmented with a smartcard reader, and the user obtains a smartcard and connects it to the device. This design can be used by an untrusted user to perform financial transactions, such as placing bets on the outcome of a probabilistic computation. Protocols are presented for adding (purchasing) or removing (selling) value on the smartcard, again without requiring a network connection. Using the instant protocols, neither the user nor the entity issuing the smartcards can benefit from cheating.
摘要翻译: 目前的意图允许用户在不使用网络的情况下进行远程交易,同时使用诸如手持个人数字助理或膝上型计算机之类的不受信任的计算设备。 计算设备用智能卡读卡器增强,用户获得智能卡并将其连接到设备。 这种设计可以由不受信任的用户使用来执行金融交易,例如将下注放在概率计算的结果上。 提出了在智能卡上添加(购买)或删除(销售)价值的协议,而不需要网络连接。 使用即时协议,用户和发行智能卡的实体都不能受益于作弊。
-
公开(公告)号:US5420928A
公开(公告)日:1995-05-30
申请号:US186208
申请日:1994-01-25
CPC分类号: H04L9/0662 , H04L2209/125
摘要: Methodology and concomitant circuitry to generate cryptographically strong pseudo-random bit streams utilize secure block cypher encoders. Typically, each block cypher encoder has a first seed and a random key as an input. In the most basic realization of the methodology and circuitry, the output of each encoder is fed back to connect to its input. The first seed serves as the initial input, and each subsequent input is the immediate output. Each bit in the cryptographically strong pseudo-random bit stream is related to an inner product between each input to the encoder and a second seed.
摘要翻译: 用于生成加密强伪随机位流的方法和伴随电路利用安全块密码器编码器。 通常,每个块密码器编码器具有第一种子和随机密钥作为输入。 在方法和电路的最基本实现中,每个编码器的输出被反馈以连接到其输入。 第一个种子用作初始输入,每个后续输入都是即时输出。 加密强伪随机比特流中的每个比特与编码器的每个输入和第二种子之间的内积相关。
-
公开(公告)号:US5892829A
公开(公告)日:1999-04-06
申请号:US4191
申请日:1998-01-08
CPC分类号: H04L9/0625 , H04L9/0643 , H04L2209/30 , H04L2209/38
摘要: A secure hash function according to the present invention uses a stretch function 202 and a compression function 202 to provide a secure hash value. A stretch function is a function which increases an input string (pre-image). In one version of the invention, a stretch function .function. maps l-bit inputs into 2m bit, where 2m>l. Preferably, the stretch function .function. is one-way. The stretch function randomizes the input string. The output of the stretch function is fed into a compression function c, which compresses the stretch function output from 2m bits to 2n bits, where m>n. The compression function is preferably a cryptographic primitive selected from a family of compression functions. In a preferred embodiment, a standard key scheduling algorithm of the cryptographic compression function (such as DES) is replaced and an output of the stretch function is used as the key. The inventors find that using a stretch function output as the compression function key improves the security of the compression function. Moreover, because the stretch function output randomizes the input string, the security constraints on the compression function are less stringent. As a result, an efficient, simple, and secure hash function is provided.
摘要翻译: 根据本发明的安全散列函数使用拉伸函数202和压缩函数202来提供安全哈希值。 拉伸功能是增加输入字符串(预图像)的功能。 在本发明的一个版本中,拉伸函数f将1位输入映射到2m位,其中2m> 1。 优选地,拉伸函数f是单向的。 拉伸功能将输入字符串随机化。 拉伸函数的输出被馈送到压缩函数c中,压缩函数c将从2m位输出的拉伸函数压缩为2n位,其中m> n。 压缩函数优选地是从压缩函数族中选择的密码原语。 在优选实施例中,替换了密码压缩函数(例如DES)的标准密钥调度算法,并且使用拉伸函数的输出作为关键字。 发明人发现使用拉伸功能输出作为压缩功能键提高了压缩功能的安全性。 此外,由于拉伸功能输出使输入字符串随机化,对压缩函数的安全约束不太严格。 因此,提供了一种高效,简单和安全的散列函数。
-
-
-
-
-
-
-
-
-
搜索结果
11 条记录 (耗时 0.03 秒)
