公开(公告)号：US20080089518A1

公开(公告)日：2008-04-17

申请号：US11871683

申请日：2007-10-12

申请人： Alexander Reznik ,  Alain Briancon ,  Yevgeniy Dodis ,  Yogendra Shah ,  Chunxuan Ye ,  Robert DiFazio ,  Inhyok Cha

发明人： Alexander Reznik ,  Alain Briancon ,  Yevgeniy Dodis ,  Yogendra Shah ,  Chunxuan Ye ,  Robert DiFazio ,  Inhyok Cha

IPC分类号： H04L9/20

CPC分类号： H04W12/04 ,  H04L9/065 ,  H04L9/0869 ,  H04L9/0875 ,  H04L63/0457 ,  H04L2209/08 ,  H04L2209/80 ,  H04W12/02

摘要： A secret stream of bits begins by receiving a public random stream contained in a wireless communication signal at a transmit/receive unit. The public random stream is sampled and specific bits are extracted according to a shared common secret. These extracted bits are used to create a longer secret stream. The shared common secret may be generated using JRNSO techniques, or provided to the transmit/receive units prior to the communication session. Alternatively, one of the transmit/receive unit is assumed to be more powerful than any potential eavesdropper. In this situation, the powerful transmit/receive unit may broadcast and store a public random stream. The weaker transmit/receive unit selects select random bits of the broadcast for creating a key. The weaker transmit/receive unit sends the powerful transmit/receive unit the selected bit numbers, and powerful transmit/receive unit uses the random numbers to produce the key created by the weaker transmit/receive unit.

摘要翻译： 秘密的比特流开始于在发送/接收单元处接收包含在无线通信信号中的公共随机流。 公共随机流被采样，并且根据共享的公共秘密提取特定位。 这些提取的比特用于创建更长的秘密流。 可以使用JRNSO技术生成共享公用秘密，或者在通信会话之前提供给发送/接收单元。 或者，假设发射/接收单元之一比任何潜在的窃听者更强大。 在这种情况下，强大的发送/接收单元可以广播和存储公共随机流。 较弱的发送/接收单元选择用于创建密钥的广播的选择随机比特。 较弱的发射/接收单元发送强大的发射/接收单元所选择的位号，强大的发射/接收单元使用随机数产生由较弱发射/接收单元产生的密钥。

公开(公告)号：US20080059804A1

公开(公告)日：2008-03-06

申请号：US11843517

申请日：2007-08-22

申请人： Yogendra Shah ,  Inhyok Cha ,  Alexander Reznik

发明人： Yogendra Shah ,  Inhyok Cha ,  Alexander Reznik

IPC分类号： H04L9/32 ,  G06F17/00 ,  G06F21/00

CPC分类号： H04L63/0442 ,  G06F21/41 ,  H04L63/0815 ,  H04L63/083 ,  H04L63/0884

摘要： A method and apparatus for password management and single sign-on (SSO) access based on trusted computing (TC) technology. The methods implement the Trusted Computing Group (TCG)'s trusted platform module (TPM), which interacts with both proxy SSO unit and web-accessing applications to provide a secure, trusted mechanism to generate, store, and retrieve passwords and SSO credentials. The various embodiments of the present invention allow a user to hop securely and transparently from one site to another that belong to a pre-identified group of sites, after signing on just once to a secured proxy residing at the user's device.

摘要翻译： 一种基于可信计算（TC）技术的密码管理和单点登录（SSO）访问的方法和装置。 该方法实施了可信计算组（TCG）的可信平台模块（TPM），该平台模块与代理SSO单元和Web访问应用程序进行交互，以提供安全可靠的机制来生成，存储和检索密码和SSO凭据。 本发明的各种实施例允许用户在仅驻留在用户设备上的安全代理器一次登录之后，从属于预先识别的站点组的一个站点到另一站点安全地和透明地跳转。

公开(公告)号：US20070036353A1

公开(公告)日：2007-02-15

申请号：US11444558

申请日：2006-05-31

申请人： Alexander Reznik ,  Debashish Purkayastha ,  Steven Goldberg ,  Robert Olesen ,  Marian Rudolf ,  Inhyok Cha ,  Alan Carlton ,  Yogendra Shah ,  Shamim Rahman ,  Rajat Mukherjee ,  Robert DiFazio ,  Gregory Sternberg ,  Leonid Kazakevich ,  Kazimierz Siwiak ,  Guodong Zhang ,  Tanbir Haque ,  Louis Guccione ,  Prabhakar Chitrapu ,  Akinlolu Kumoluyi ,  Alain Briancon

发明人： Alexander Reznik ,  Debashish Purkayastha ,  Steven Goldberg ,  Robert Olesen ,  Marian Rudolf ,  Inhyok Cha ,  Alan Carlton ,  Yogendra Shah ,  Shamim Rahman ,  Rajat Mukherjee ,  Robert DiFazio ,  Gregory Sternberg ,  Leonid Kazakevich ,  Kazimierz Siwiak ,  Guodong Zhang ,  Tanbir Haque ,  Louis Guccione ,  Prabhakar Chitrapu ,  Akinlolu Kumoluyi ,  Alain Briancon

IPC分类号： H04L9/30

CPC分类号： H04B7/0434 ,  H04B7/0695 ,  H04L9/0631 ,  H04L9/0656 ,  H04L9/0875 ,  H04L9/3271 ,  H04L63/0428 ,  H04L63/061 ,  H04L63/08 ,  H04L63/1441 ,  H04L63/1466 ,  H04L63/18 ,  H04L2209/34 ,  H04L2209/80 ,  H04W12/00503 ,  H04W12/00508 ,  H04W12/02 ,  H04W12/04 ,  H04W12/06 ,  H04W92/10

摘要： The present invention relates to secret key generation and authentication methods that are based on joint randomness not shared by others (JRNSO), in which unique channel response between two communication terminals generates a secret key. Multiple network access points use a unique physical location of a receiving station to increase user data security. High data rate communication data is encrypted by generating a random key and a pseudo-random bit stream. A configurable interleaving is achieved by introduction of JRNSO bits to an encoder used for error-correction codes. Databases of user data are also protected by JRNSO-based key mechanisms. Additional random qualities are induced on the joint channel using MIMO eigen-beamforming, antenna array deflection, polarization selection, pattern deformation, and path selection by beamforming or time correlation. Gesturing induces randomness according to uniquely random patterns of a human user's arm movements inflected to the user device.

摘要翻译： 本发明涉及基于其他人不共享的联合随机性（JRNSO）的秘密密钥生成和认证方法，其中两个通信终端之间的唯一信道响应产生密钥。 多个网络接入点使用接收站的唯一物理位置来增加用户数据的安全性。 通过生成随机密钥和伪随机比特流来加密高数据速率通信数据。 通过将JRNSO位引入用于纠错码的编码器来实现可配置的交错。 用户数据的数据库也受到基于JRNSO的关键机制的保护。 使用MIMO本征波束形成，天线阵列偏转，偏振选择，图案变形以及通过波束形成或时间相关的路径选择在联合信道上引起附加随机质量。 手势根据用户装置的人体手臂运动的唯一随机模式引起随机性。

公开(公告)号：US20120079559A1

公开(公告)日：2012-03-29

申请号：US13078716

申请日：2011-04-01

申请人： Alexander Reznik ,  Oscar Lopez-Torres ,  Inhyok Cha ,  Lawrence Case ,  Yogendra Shah

发明人： Alexander Reznik ,  Oscar Lopez-Torres ,  Inhyok Cha ,  Lawrence Case ,  Yogendra Shah

IPC分类号： G06F17/00

CPC分类号： H04L63/20 ,  H04L12/5692 ,  H04L41/5019 ,  H04L63/105 ,  H04W12/08

摘要： Systems, methods, and apparatus are disclosed for coordinating enforcement of policies on a network and/or a wireless transmit/receive unit. The policies may include stakeholder-specific policies of one or more stakeholders that provide services on a user equipment. Enforcement of the stakeholder-specific policies may be securely coordinated using a policy coordination function. Systems, methods, and apparatus are also disclosed that include a network policy coordination function (NPCF) that coordinates service control policies and access control policies. The NPCF may coordinate enforcement of the service control policies for one or more service control entities and the access control policies for one or more access control entities.

摘要翻译： 公开了用于协调网络和/或无线发射/接收单元上的策略的实施的系统，方法和装置。 这些策略可以包括在用户设备上提供服务的一个或多个利益相关者的利益相关者特定的策略。 可以使用政策协调功能来安全地协调利益相关者特定政策的执行。 还公开了包括协调服务控制策略和访问控制策略的网络策略协调功能（NPCF）的系统，方法和装置。 NPCF可以协调一个或多个服务控制实体的服务控制策略的执行和一个或多个访问控制实体的访问控制策略。

公开(公告)号：US08707409B2

公开(公告)日：2014-04-22

申请号：US11843517

申请日：2007-08-22

申请人： Yogendra C. Shah ,  Inhyok Cha ,  Alexander Reznik

发明人： Yogendra C. Shah ,  Inhyok Cha ,  Alexander Reznik

IPC分类号： G06F7/04

CPC分类号： H04L63/0442 ,  G06F21/41 ,  H04L63/0815 ,  H04L63/083 ,  H04L63/0884

摘要： A method and apparatus for password management and single sign-on (SSO) access based on trusted computing (TC) technology. The methods implement the Trusted Computing Group (TCG)'s trusted platform module (TPM), which interacts with both proxy SSO unit and web-accessing applications to provide a secure, trusted mechanism to generate, store, and retrieve passwords and SSO credentials. The various embodiments of the present invention allow a user to hop securely and transparently from one site to another that belong to a pre-identified group of sites, after signing on just once to a secured proxy residing at the user's device.

摘要翻译： 一种基于可信计算（TC）技术的密码管理和单点登录（SSO）访问的方法和装置。 该方法实施了可信计算组（TCG）的可信平台模块（TPM），该平台模块与代理SSO单元和Web访问应用程序进行交互，以提供安全可靠的机制来生成，存储和检索密码和SSO凭据。 本发明的各种实施例允许用户在仅驻留在用户设备上的安全代理器一次登录之后，从属于预先识别的站点组的一个站点到另一站点安全地和透明地跳转。

公开(公告)号：US20080123851A1

公开(公告)日：2008-05-29

申请号：US11736830

申请日：2007-04-18

申请人： Louis J. Guccione ,  Inhyok Cha ,  Alexander Reznik ,  Chunxuan Ye ,  Renuka Racha

发明人： Louis J. Guccione ,  Inhyok Cha ,  Alexander Reznik ,  Chunxuan Ye ,  Renuka Racha

IPC分类号： H04L9/00

CPC分类号： H04L63/061 ,  H04L9/0875 ,  H04L9/0891 ,  H04L63/083 ,  H04L2209/80 ,  H04W12/02 ,  H04W12/04 ,  H04W80/02

摘要： A wireless transmit/receive unit (WTRU) and a Node B, respectively, perform joint randomness not shared by others (JRNSO) measurement to generate JRNSO bits based on a channel estimate between the WTRU and the Node B. The WTRU and the Node B then perform a reconciliation procedure to generate a common JRNSO bits. The Node B sends the common JRNSO bits to a serving network. The WTRU and the SN secure a session key (such as an integrity key, a cipher key and an anonymity key), using the common JRNSO bits. The JRNSO measurements are performed on an on-going basis, and the session key is updated using a new set of common JRNSO bits. The JRNSO bits may be expanded by using a pseudorandom number generator (PNG) or a windowing technique. A handover may be intentionally induced to increase the JRNSO bits generation rate.

摘要翻译： 无线发送/接收单元（WTRU）和节点B分别基于WTRU和节点B之间的信道估计来执行其他人不共享的联合随机（JRNSO）测量以生成JRNSO比特。WTRU和节点B 然后执行协调过程以生成一个常见的JRNSO位。 节点B将公共JRNSO比特发送到服务网络。 WTRU和SN使用公共JRNSO比特来保护会话密钥（诸如完整性密钥，加密密钥和匿名密钥）。 JRNSO测量是在持续的基础上执行的，会话密钥使用一组常见的JRNSO位进行更新。 可以通过使用伪随机数生成器（PNG）或开窗技术来扩展JRNSO比特。 可以有意地引起切换以增加JRNSO比特生成速率。

公开(公告)号：US20120281831A1

公开(公告)日：2012-11-08

申请号：US13548803

申请日：2012-07-13

申请人： Alexander Reznik ,  Alain C. Briancon ,  Yevgeniy Dodis ,  Yogendra C. Shah ,  Chunxuan Ye ,  Robert A. DiFazio ,  Inhyok Cha

发明人： Alexander Reznik ,  Alain C. Briancon ,  Yevgeniy Dodis ,  Yogendra C. Shah ,  Chunxuan Ye ,  Robert A. DiFazio ,  Inhyok Cha

IPC分类号： H04L9/00

CPC分类号： H04W12/04 ,  H04L9/065 ,  H04L9/0869 ,  H04L9/0875 ,  H04L63/0457 ,  H04L2209/08 ,  H04L2209/80 ,  H04W12/02

摘要： A secret stream of bits begins by receiving a public random stream contained in a wireless communication signal at a transmit/receive unit. The public random stream is sampled and specific bits are extracted according to a shared common secret. These extracted bits are used to create a longer secret stream. The shared common secret may be generated using JRNSO techniques, or provided to the transmit/receive units prior to the communication session. Alternatively, one of the transmit/receive unit is assumed to be more powerful than any potential eavesdropper. In this situation, the powerful transmit/receive unit may broadcast and store a public random stream. The weaker transmit/receive unit selects select random bits of the broadcast for creating a key. The weaker transmit/receive unit sends the powerful transmit/receive unit the selected bit numbers, and powerful transmit/receive unit uses the random numbers to produce the key created by the weaker transmit/receive unit.

摘要翻译： 秘密的比特流开始于在发送/接收单元处接收包含在无线通信信号中的公共随机流。 公共随机流被采样，并且根据共享的公共秘密提取特定位。 这些提取的比特用于创建更长的秘密流。 可以使用JRNSO技术生成共享公用秘密，或者在通信会话之前提供给发送/接收单元。 或者，假设发射/接收单元之一比任何潜在的窃听者更强大。 在这种情况下，强大的发送/接收单元可以广播和存储公共随机流。 较弱的发送/接收单元选择用于创建密钥的广播的选择随机比特。 较弱的发射/接收单元发送强大的发射/接收单元所选择的位号，强大的发射/接收单元使用随机数产生由较弱发射/接收单元产生的密钥。

公开(公告)号：US07991160B2

公开(公告)日：2011-08-02

申请号：US11736830

申请日：2007-04-18

申请人： Louis J. Guccione ,  Inhyok Cha ,  Alexander Reznik ,  Chunxuan Ye ,  Renuka Racha

发明人： Louis J. Guccione ,  Inhyok Cha ,  Alexander Reznik ,  Chunxuan Ye ,  Renuka Racha

IPC分类号： H04K1/00

CPC分类号： H04L63/061 ,  H04L9/0875 ,  H04L9/0891 ,  H04L63/083 ,  H04L2209/80 ,  H04W12/02 ,  H04W12/04 ,  H04W80/02

摘要： A wireless transmit/receive unit (WTRU) and a Node B, respectively, perform joint randomness not shared by others (JRNSO) measurement to generate JRNSO bits based on a channel estimate between the WTRU and the Node B. The WTRU and the Node B then perform a reconciliation procedure to generate a common JRNSO bits. The Node B sends the common JRNSO bits to a serving network. The WTRU and the SN secure a session key (such as an integrity key, a cipher key and an anonymity key), using the common JRNSO bits. The JRNSO measurements are performed on an on-going basis, and the session key is updated using a new set of common JRNSO bits. The JRNSO bits may be expanded by using a pseudorandom number generator (PNG) or a windowing technique. A handover may be intentionally induced to increase the JRNSO bits generation rate.

摘要翻译： 无线发送/接收单元（WTRU）和节点B分别基于WTRU和节点B之间的信道估计来执行其他人不共享的联合随机（JRNSO）测量以生成JRNSO比特。WTRU和节点B 然后执行协调过程以生成一个常见的JRNSO位。 节点B将公共JRNSO比特发送到服务网络。 WTRU和SN使用公共JRNSO比特来保护会话密钥（诸如完整性密钥，加密密钥和匿名密钥）。 JRNSO测量是在持续的基础上执行的，会话密钥使用一组常见的JRNSO位进行更新。 可以通过使用伪随机数生成器（PNG）或开窗技术来扩展JRNSO比特。 可以有意地引起切换以增加JRNSO比特生成速率。

公开(公告)号：US08634558B2

公开(公告)日：2014-01-21

申请号：US13548803

申请日：2012-07-13

申请人： Alexander Reznik ,  Alain C. Briancon ,  Yevgeniy Dodis ,  Yogendra C. Shah ,  Chunxuan Ye ,  Robert A. DiFazio ,  Inhyok Cha

发明人： Alexander Reznik ,  Alain C. Briancon ,  Yevgeniy Dodis ,  Yogendra C. Shah ,  Chunxuan Ye ,  Robert A. DiFazio ,  Inhyok Cha

IPC分类号： H04L29/06

CPC分类号： H04W12/04 ,  H04L9/065 ,  H04L9/0869 ,  H04L9/0875 ,  H04L63/0457 ,  H04L2209/08 ,  H04L2209/80 ,  H04W12/02

摘要： A secret stream of bits begins by receiving a public random stream contained in a wireless communication signal at a transmit/receive unit. The public random stream is sampled and specific bits are extracted according to a shared common secret. These extracted bits are used to create a longer secret stream. The shared common secret may be generated using JRNSO techniques, or provided to the transmit/receive units prior to the communication session. Alternatively, one of the transmit/receive unit is assumed to be more powerful than any potential eavesdropper. In this situation, the powerful transmit/receive unit may broadcast and store a public random stream. The weaker transmit/receive unit selects select random bits of the broadcast for creating a key. The weaker transmit/receive unit sends the powerful transmit/receive unit the selected bit numbers, and powerful transmit/receive unit uses the random numbers to produce the key created by the weaker transmit/receive unit.

摘要翻译： 秘密的比特流开始于在发送/接收单元处接收包含在无线通信信号中的公共随机流。 公共随机流被采样，并且根据共享的公共秘密提取特定位。 这些提取的比特用于创建更长的秘密流。 可以使用JRNSO技术生成共享公用秘密，或者在通信会话之前提供给发送/接收单元。 或者，假设发射/接收单元之一比任何潜在的窃听者更强大。 在这种情况下，强大的发送/接收单元可以广播和存储公共随机流。 较弱的发送/接收单元选择用于创建密钥的广播的选择随机比特。 较弱的发射/接收单元发送强大的发射/接收单元所选择的位号，强大的发射/接收单元使用随机数产生由较弱发射/接收单元产生的密钥。

公开(公告)号：US08254574B2

公开(公告)日：2012-08-28

申请号：US11871683

申请日：2007-10-12

申请人： Alexander Reznik ,  Alain C. Briancon ,  Yevgeniy Dodis ,  Yogendra C. Shah ,  Chunxuan Ye ,  Robert A. DiFazio ,  Inhyok Cha

发明人： Alexander Reznik ,  Alain C. Briancon ,  Yevgeniy Dodis ,  Yogendra C. Shah ,  Chunxuan Ye ,  Robert A. DiFazio ,  Inhyok Cha

IPC分类号： H04L29/06

CPC分类号： H04W12/04 ,  H04L9/065 ,  H04L9/0869 ,  H04L9/0875 ,  H04L63/0457 ,  H04L2209/08 ,  H04L2209/80 ,  H04W12/02

摘要： A secret stream of bits begins by receiving a public random stream contained in a wireless communication signal at a transmit/receive unit. The public random stream is sampled and specific bits are extracted according to a shared common secret. These extracted bits are used to create a longer secret stream. The shared common secret may be generated using JRNSO techniques, or provided to the transmit/receive units prior to the communication session. Alternatively, one of the transmit/receive unit is assumed to be more powerful than any potential eavesdropper. In this situation, the powerful transmit/receive unit may broadcast and store a public random stream. The weaker transmit/receive unit selects select random bits of the broadcast for creating a key. The weaker transmit/receive unit sends the powerful transmit/receive unit the selected bit numbers, and powerful transmit/receive unit uses the random numbers to produce the key created by the weaker transmit/receive unit.

摘要翻译： 秘密的比特流开始于在发送/接收单元处接收包含在无线通信信号中的公共随机流。 公共随机流被采样，并且根据共享的公共秘密提取特定位。 这些提取的比特用于创建更长的秘密流。 可以使用JRNSO技术生成共享公用秘密，或者在通信会话之前提供给发送/接收单元。 或者，假设发射/接收单元之一比任何潜在的窃听者更强大。 在这种情况下，强大的发送/接收单元可以广播和存储公共随机流。 较弱的发送/接收单元选择用于创建密钥的广播的选择随机比特。 较弱的发射/接收单元发送强大的发射/接收单元所选择的位号，强大的发射/接收单元使用随机数产生由较弱发射/接收单元产生的密钥。