-
1.发明授权Method of provisioning devices with one-time pad data, device for use in such method, and service usage tracking based on one-time pad data 有权使用一次性填充数据提供设备的方法,用于这种方法的设备以及基于一次性填充数据的服务使用跟踪公开(公告)号:US08250363B2
公开(公告)日:2012-08-21
申请号:US11490852
申请日:2006-07-21
申请人: Christopher Tofts , Timothy Paul Spiller , William John Munro , Martin Sadler , Keith Alexander Harrison
发明人: Christopher Tofts , Timothy Paul Spiller , William John Munro , Martin Sadler , Keith Alexander Harrison
IPC分类号: H04L26/06
CPC分类号: H04L9/0852 , H04L9/0656 , H04L2209/56 , H04L2209/80
摘要: Secret random data is distributed to a plurality of devices to provision them with new one-time pad data for use in interacting with apparatus holding the same one-time pad data. This distribution is effected by provisioning a first device with a block of secret random data that is, or will become, available to the apparatus. Part of the secret random data is then distributed from the first device to one or more other devices in a hierarchical distribution pattern headed by the first device. Each device, other than those at the bottom of the distribution hierarchy, retains part of the secret random data it receives and passes on the remainder. Each device uses that part of the secret random data it has retained to provide the device with new one-time pad data. A method is also provided for tracking service usage based on the distributed one-time pad data.
摘要翻译: 秘密随机数据被分配给多个设备以向它们提供新的一次性填充数据,以用于与保持相同的一次性填充数据的设备进行交互。 这种分配是通过向设备提供具有或将成为可用于该设备的秘密随机数据块来实现的。 然后,秘密随机数据的一部分以由第一设备为首的分层分布模式从第一设备分发到一个或多个其他设备。 每个设备,除了分布层次底部的设备,保留了其接收的一部分秘密随机数据,并传递给其余部分。 每个设备使用其保留的秘密随机数据的该部分为设备提供新的一次性填充数据。 还提供了一种基于分布式一次性衬垫数据来跟踪服务使用的方法。
-
2.发明授权公开(公告)号:US08050411B2
公开(公告)日:2011-11-01
申请号:US11489750
申请日:2006-07-17
申请人: William John Munro , Timothy Paul Spiller , Martin Sadler , Christopher Tofts , Keith Alexander Harrison
发明人: William John Munro , Timothy Paul Spiller , Martin Sadler , Christopher Tofts , Keith Alexander Harrison
IPC分类号: H04L9/00
CPC分类号: H04L9/0656 , H04L9/0852 , H04L9/3226 , H04L2209/127 , H04L2209/56
摘要: A device stores one-time pad data for use in carrying out various tasks. In order to preserve the ability to carry out important tasks that require the use of one-time data, use of the one-time pad data held by the device is controlled such that an amount of this one-time pad data is only usable by a predetermined set of important tasks comprising at least a replenishment task for replenishing the device with one-time pad data.
摘要翻译: 设备存储用于执行各种任务的一次性填充数据。 为了保持执行需要使用一次数据的重要任务的能力,控制由设备保持的一次性焊盘数据的使用,使得该一次性焊盘数据的量仅可由 一组预定的重要任务,其至少包括用于用一次性填充数据补充设备的补充任务。
-
3.发明授权Method and apparatus for encrypting/decrypting data using timed-release keys 有权使用定时释放键加密/解密数据的方法和装置公开(公告)号:US07321660B2
公开(公告)日:2008-01-22
申请号:US10379455
申请日:2003-03-03
CPC分类号: H04L9/3073
摘要: A computer system comprises a first computer entity arranged to encrypt data using an encryption key comprising a time value, and a second computer entity arranged to generate, at intervals, a decryption key using a current time value. The encryption and decryption processes are such that the decryption key generated using a current time value corresponding to that used for the encryption key, is apt to decrypt the encrypted s data.
摘要翻译: 计算机系统包括被配置为使用包括时间值的加密密钥来加密数据的第一计算机实体,以及被布置为使用当前时间值以间隔生成解密密钥的第二计算机实体。 加密和解密处理使得使用与用于加密密钥的当前时间值相对应的解密密钥易于解密加密的s数据。
-
公开(公告)号:US07398393B2
公开(公告)日:2008-07-08
申请号:US10767868
申请日:2004-01-28
IPC分类号: H04L9/32
CPC分类号: H04L63/0435 , H04L9/083 , H04L9/3073 , H04L63/062 , H04L2209/56 , H04L2209/68 , H04L2209/76
摘要: When sending personal data to a recipient, the data owner encrypts the data using both a public data item provided by a trusted party and an encryption key string formed using at least policy data indicative of conditions to be satisfied before access is given to the personal data. The encryption key string is typically also provided to the recipient along with the encrypted personal data. To decrypt the personal data, the recipient sends the encryption key string to the trusted party with a request for the decryption key. The trusted party determines the required decryption key using the encryption key string and private data used in deriving its public data, and provides it to the requesting recipient. However, the decryption key is either not determined or not made available until the trusted party is satisfied that the associated policy conditions have been met by the recipient.
摘要翻译: 当向收件人发送个人数据时,数据所有者使用由受信任方提供的公共数据项和至少指示要在个人数据访问之前要满足的条件的策略数据形成的加密密钥串来加密数据 。 加密密钥字符串通常也与加密的个人数据一起提供给接收者。 为了解密个人数据,接收方通过请求解密密钥将加密密钥字符串发送给信任方。 可信方使用加密密钥串和用于导出其公共数据的私有数据来确定所需的解密密钥,并将其提供给请求的接收者。 然而,解密密钥在被信任方满足接收者已经满足相关联的策略条件之前,未被确定或不被提供。
-
公开(公告)号:US07330969B2
公开(公告)日:2008-02-12
申请号:US10270037
申请日:2002-10-11
IPC分类号: H04L9/00
CPC分类号: H04L63/0428 , H04L9/30 , H04L9/321 , H04L63/062 , H04L63/068 , H04L63/104 , H04L2463/101
摘要: A method for encrypting data comprising deriving a public key using a first data set provided by a second party; encrypting a second data set with the public key; providing the encrypted third data set to the second party; providing the public key to a third party to allow validation of the first data set such that on validation of the first data set the third party provides an associated private key to the second party to allow decryption of the encrypted second data set.
摘要翻译: 一种用于加密数据的方法,包括:使用由第二方提供的第一数据集导出公开密钥; 用公钥加密第二数据集; 将加密的第三数据集提供给第二方; 向第三方提供公开密钥以允许第一数据集的验证,使得在对第一数据集的验证时,第三方向第二方提供相关联的私钥以允许解密加密的第二数据集。
-
公开(公告)号:US07086052B2
公开(公告)日:2006-08-01
申请号:US10336590
申请日:2003-01-03
IPC分类号: G06F9/445
CPC分类号: G06F8/61
摘要: A software system for installation on computing apparatus (and a method of installing such a software system on computing apparatus), wherein the software system is provided in the form of a software package including a plurality of software components, one or more of the software components being provided as a plurality of different implementations, the apparatus including an installation engine for installing the software system only a selected one implementation of the or each of the software components having multiple implementations, and a random selector module for selecting one of the plurality of implementations of a software component for installation. Thus, software package would still be distributed to its consumers as a single version but each installation of the package on a user's computing apparatus is potentially different, which reduce the risk of faults in and attacks against software components having one or more “bugs” therein because not all consumers will have the same implementation of any one software component.
摘要翻译: 一种用于在计算设备上安装的软件系统(以及在计算设备上安装这样的软件系统的方法),其中软件系统以包括多个软件组件的软件包的形式提供,一个或多个软件组件 被提供为多个不同的实施方式,该装置包括用于仅安装具有多个实施方式的软件组件或每个的所选择的一个实现的软件系统的安装引擎,以及用于选择多个实现中的一个的随机选择器模块 的软件组件进行安装。 因此,软件包仍将作为单一版本分发给其消费者,但是在用户的计算设备上的每个安装的包可能是不同的,这降低了在其中具有一个或多个“错误”的软件组件的故障和攻击的风险 因为不是所有的消费者都将具有相同的任何一个软件组件的实现。
-
公开(公告)号:US07574596B2
公开(公告)日:2009-08-11
申请号:US10831549
申请日:2004-04-22
IPC分类号: G06F9/00
CPC分类号: H04L9/3073 , H04L9/083 , H04L9/0847
摘要: First data to be sent by a first party to a second party is encrypted using an encryption key string formed using at least a hash value generated using second data and a secret, shared with a trusted party, that serves as identification of the first party. The second data comprises, for example, one or more conditions that serve as identifiers of the second party, and a hash-value element generated by hashing the first data. The encrypted first data and the encryption key string is made available to the second party which forwards the encryption key string to the trusted party with a request for the corresponding decryption key. The trusted party carries out at least one check on the basis of data contained in the encryption key string and, if this at least one check is satisfactory, provides a decryption key to the second party.
摘要翻译: 要由第一方发送给第二方的第一数据使用至少使用第二数据生成的散列值形成的加密密钥串进行加密,以及用作第一方的标识的信任方共享的秘密。 第二数据包括例如用作第二方的标识符的一个或多个条件以及通过对第一数据进行散列而产生的散列值元素。 加密的第一数据和加密密钥串对第二方可用,该第二方通过对相应的解密密钥的请求将加密密钥串转发到信任方。 可信方基于加密密钥串中包含的数据执行至少一个检查,并且如果该至少一个检查令人满意,则向第二方提供解密密钥。
-
8.发明申请Method of provisioning devices with one-time pad data, device for use in such method, and service usage tracking based on one-time pad data 有权使用一次性填充数据提供设备的方法,用于这种方法的设备以及基于一次性填充数据的服务使用跟踪公开(公告)号:US20070074277A1
公开(公告)日:2007-03-29
申请号:US11490852
申请日:2006-07-21
IPC分类号: H04L9/32
CPC分类号: H04L9/0852 , H04L9/0656 , H04L2209/56 , H04L2209/80
摘要: Secret random data is distributed to a plurality of devices to provision them with new one-time pad data for use in interacting with apparatus holding the same one-time pad data. This distribution is effected by provisioning a first device with a block of secret random data that is, or will become, available to the apparatus. Part of the secret random data is then distributed from the first device to one or more other devices in a hierarchical distribution pattern headed by the first device. Each device, other than those at the bottom of the distribution hierarchy, retains part of the secret random data it receives and passes on the remainder. Each device uses that part of the secret random data it has retained to provide the device with new one-time pad data. A method is also provided for tracking service usage based on the. distributed one-time pad data.
摘要翻译: 秘密随机数据被分配给多个设备以向它们提供新的一次性填充数据,以用于与保持相同的一次性填充数据的设备进行交互。 这种分配是通过向设备提供具有或将成为可用于该设备的秘密随机数据块来实现的。 然后,秘密随机数据的一部分以由第一设备为首的分层分布模式从第一设备分发到一个或多个其他设备。 每个设备,除了分布层次底部的设备,保留了其接收的一部分秘密随机数据,并传递给其余部分。 每个设备使用其保留的秘密随机数据的该部分为设备提供新的一次性填充数据。 还提供了一种基于该方法跟踪服务使用的方法。 分布式一次性pad数据。
-
9.发明申请公开(公告)号:US20070172054A1
公开(公告)日:2007-07-26
申请号:US11489750
申请日:2006-07-17
IPC分类号: H04L9/28
CPC分类号: H04L9/0656 , H04L9/0852 , H04L9/3226 , H04L2209/127 , H04L2209/56
摘要: A device stores one-time pad data for use in carrying out various tasks. In order to preserve the ability to carry out important tasks that require the use of one-time data, use of the one-time pad data held by the device is controlled such that an amount of this one-time pad data is only usable by a predetermined set of important tasks comprising at least a replenishment task for replenishing the device with one-time pad data.
摘要翻译: 设备存储用于执行各种任务的一次性填充数据。 为了保持执行需要使用一次数据的重要任务的能力,控制由设备保持的一次性焊盘数据的使用,使得该一次性焊盘数据的量仅可由 一组预定的重要任务,其至少包括用于用一次性填充数据补充设备的补充任务。
-
10.发明申请Method of operating a one-time pad system and a system for implementing this method 审中-公开操作一次性垫系统的方法和实现该方法的系统公开(公告)号:US20070074276A1
公开(公告)日:2007-03-29
申请号:US11490478
申请日:2006-07-19
IPC分类号: H04L9/32
CPC分类号: H04L9/0656 , H04L9/0852 , H04L9/3226 , H04L2209/127 , H04L2209/56
摘要: A system is disclosed in which a plurality of devices are arranged to use one-time pad data to interact with apparatus holding the same one-time pad data. Each of the devices and the apparatus has its own one-time pad and the pads are all provisioned with the same new one-time pad data. Upon any one of the devices wishing to effect an interaction with the apparatus using one-time pad data, an alignment operation is carried out between a set of entities comprising at least the apparatus and the device wishing to carry out the interaction. The alignment operation serves to reduce the level of the one-time pad of at least the device wishing to carry out the interaction, to the level of the lowest one-time pad of the set of entities involved in the alignment operation.
摘要翻译: 公开了一种系统,其中多个设备被布置为使用一次性焊盘数据与保持相同的一次性焊盘数据的设备进行交互。 每个设备和设备具有其自己的一次性焊盘,并且焊盘都具有相同的新的一次性焊盘数据。 在希望使用一次性衬垫数据实现与装置的交互的任何一个设备中,在至少包括希望执行交互的设备和设备的一组实体之间执行对准操作。 对准操作用于将至少希望执行交互的设备的一次性焊盘的级别降低到对齐操作中涉及的一组实体中的最低一次性焊盘的级别。
-
-
-
-
-
-
-
-
-
搜索结果
19 条记录 (耗时 0.027 秒)
