公开(公告)号：US20190190711A1

公开(公告)日：2019-06-20

申请号：US16277017

申请日：2019-02-15

申请人： Certicom Corp.

发明人： Daniel Richard L. BROWN ,  Scott Alexander VANSTONE

IPC分类号： H04L9/08 ,  H04L9/06 ,  G06F7/58 ,  H04L9/30

CPC分类号： H04L9/0869 ,  G06F7/582 ,  G06F7/588 ,  G06F7/725 ,  H04L9/0662 ,  H04L9/0816 ,  H04L9/0894 ,  H04L9/3066 ,  H04L2209/20 ,  H04L2209/24 ,  H04L2209/26

摘要： An elliptic curve random number generator avoids escrow keys by choosing a point on the elliptic curve as verifiably random. An arbitrary string is chosen and a hash of that string computed. The hash is then converted to a field element of the desired field, the field element regarded as the x-coordinate of a point on the elliptic curve and the x-coordinate is tested for validity on the desired elliptic curve. If valid, the x-coordinate is decompressed to the point , wherein the choice of which is the two points is also derived from the hash value. Intentional use of escrow keys can provide for back up functionality. The relationship between P and is used as an escrow key and stored by for a security domain. The administrator logs the output of the generator to reconstruct the random number with the escrow key.

公开(公告)号：US20190124110A1

公开(公告)日：2019-04-25

申请号：US16230901

申请日：2018-12-21

申请人： Amazon Technologies, Inc.

发明人： Nima Sharifi Mehr ,  Christopher Dunn ,  Alexis Floyd ,  David James Kane-Parry ,  Volker Helmut Mosthaf ,  Christopher Gordon Williams

IPC分类号： H04L29/06 ,  H04L29/08 ,  G06Q10/08 ,  G06Q20/40 ,  H04L9/32 ,  H04L12/46

CPC分类号： H04L63/1433 ,  G06Q10/083 ,  G06Q20/405 ,  H04L9/3268 ,  H04L12/4625 ,  H04L63/0428 ,  H04L63/08 ,  H04L63/101 ,  H04L63/1441 ,  H04L63/1483 ,  H04L67/10 ,  H04L2209/26 ,  H04L2209/56

摘要： A first computer is selected for testing. Information sent from a second computer system to the first computer is intercepted. The information is modified to be noncompliant with a communication protocol, thereby producing noncompliant information. A determination is made whether the first computer device has failed to provide a particular response to receipt of the noncompliant information, and an operation is performed based at least in part on the determination.

公开(公告)号：US10079673B2

公开(公告)日：2018-09-18

申请号：US14318005

申请日：2014-06-27

申请人： Certicom Corp.

发明人： Daniel Richard L. Brown

IPC分类号： H04L9/00 ,  H04L9/08

CPC分类号： H04L9/001 ,  H04L9/0869 ,  H04L2209/26

摘要： Systems, methods, software, and combinations thereof for evaluating entropy in a cryptography system are described. In some aspects, sample values are produced by an entropy source system. A typicality can be determined for each of the sample values. A grading is determined for preselected distributions based on the typicalities of the sample values. A subset of the preselected distributions are selected based on the gradings. An entropy of the entropy source system is calculated based on the subset of the plurality of distributions.

公开(公告)号：US20170124354A1

公开(公告)日：2017-05-04

申请号：US14930194

申请日：2015-11-02

申请人： Freescale Semiconductor, Inc.

发明人： Michael Rohleder ,  Stefan Doll ,  Clemens Alfred Roettgermann

IPC分类号： G06F21/70 ,  G06F21/62

CPC分类号： G06F21/70 ,  G06F21/6218 ,  G09C1/00 ,  H04L2209/26

摘要： An integrated circuit includes a security module with multiple stages arranged in a pipeline, with each stage executing a different operation for accessing stored lifecycle (LC) information. For each portion of LC being accessed, each stage performs N iterations of its corresponding operation, whereby N is an integer greater than two, and crosschecks the results of successive iterations to ensure that the results of the operation are consistent. In addition, the stages of the security module are overlapping, such that different stages can perform different iterations concurrently. These concurrent operations at different stages are organized such that they may also be crosschecked and thereby confirm “offset” results between the stages.

公开(公告)号：US20170005791A1

公开(公告)日：2017-01-05

申请号：US14989662

申请日：2016-01-06

申请人： Absio Corporation

发明人： Mitchell J. Tanenbaum ,  Daniel L. Kruger

IPC分类号： H04L9/08 ,  H04L9/30 ,  H04L9/14 ,  G06F21/10 ,  H04L29/06

CPC分类号： H04L9/0822 ,  G06F21/10 ,  G06F2211/008 ,  G06F2221/0791 ,  G06Q2220/10 ,  H04L9/0825 ,  H04L9/0894 ,  H04L9/14 ,  H04L9/30 ,  H04L63/045 ,  H04L63/06 ,  H04L2209/26 ,  H04L2209/60

摘要： Methods and systems for enabling content to be securely and conveniently distributed to authorized users are provided. More particularly, content is maintained in encrypted form on sending and receiving devices, and during transport. In addition, policies related to the use of, access to, and distribution of content can be enforced. Features are also provided for controlling the release of information related to users. The distribution and control of contents can be performed in association with a client application that presents content and that manages keys.

摘要翻译： 提供了使内容能够安全方便地分发给授权用户的方法和系统。 更具体地，内容在发送和接收设备上以及在传输期间以加密的形式被保持。 此外，可以执行与内容的使用，访问和分发有关的政策。 还提供了用于控制与用户相关的信息的发布的特征。 可以与呈现内容并管理密钥的客户端应用程序相关联地执行内容的分发和控制。

公开(公告)号：US09438419B1

公开(公告)日：2016-09-06

申请号：US14319775

申请日：2014-06-30

申请人： The Florida State University Research Foundation, Inc.

发明人： Sudhir Aggarwal ,  Shiva Houshmand ,  Randy Flood

IPC分类号： H04L9/08 ,  G06N5/04

CPC分类号： H04L9/0863 ,  G06F21/46 ,  G06N5/048 ,  H04L2209/26

摘要： System and methodology that utilizes keyboard patterns and alpha string patterns for password cracking. Keyboard patterns can be used as components of passwords, and the relevant shapes can extracted from these keyboard patterns and passwords. This keyboard information can be used to extend a probabilistic context-free grammar that can then be used to generate guesses containing keyboard patterns. Further, patterns in alpha strings, such as repeated words and multi-words, can be systematically learned using a training dictionary. This information can be used to extend the probabilistic context-free grammars which leads to generation of guesses based on the distribution of these patterns in the alpha strings, Keyboard patterns and alpha string patterns, individually and in combination, are shown herein to be effective for password cracking.

摘要翻译： 利用键盘模式和Alpha字符串模式进行密码破解的系统和方法。 键盘模式可以用作密码的组件，并且可以从这些键盘模式和密码中提取相关的形状。 该键盘信息可以用于扩展概率上下文无关的语法，然后可以将其用于生成包含键盘模式的猜测。 此外，可以使用训练词典系统地学习阿尔法字符串中的模式，例如重复的单词和多个单词。 该信息可用于扩展概率上下文无关的语法，这些语法导致基于这些模式在阿尔法字符串中的分布，键盘模式和阿尔法字符串模式的单独和组合的分布，这些猜测在本文中显示为对 密码破解

公开(公告)号：US20160202314A1

公开(公告)日：2016-07-14

申请号：US14635784

申请日：2015-03-02

申请人： SK hynix Inc.

发明人： Ho Sung CHO

IPC分类号： G01R31/3177 ,  H04L9/08

CPC分类号： H04L9/0897 ,  G01R31/31719 ,  G01R31/318307 ,  H04L2209/26

摘要： A test method of a semiconductor device may include receiving a first encrypted test program externally from the semiconductor device, decrypting the first encrypted test program based on an encryption key, and generating a first test signal by driving the decrypted first test program.

摘要翻译： 半导体器件的测试方法可以包括从半导体器件外部接收第一加密测试程序，基于加密密钥对第一加密测试程序进行解密，以及通过驱动解密的第一测试程序产生第一测试信号。

公开(公告)号：US20160188296A1

公开(公告)日：2016-06-30

申请号：US14907423

申请日：2014-08-28

申请人： STC. UNM

发明人： James Plusquellic

IPC分类号： G06F7/58

CPC分类号： G06F7/588 ,  G06F2207/58 ,  G09C1/00 ,  H04L9/002 ,  H04L9/0866 ,  H04L2209/12 ,  H04L2209/26 ,  Y04S40/24

摘要： This disclosure describes techniques for analyzing statistical quality of bitstrings produced by a physical unclonable function (PUF). The PUF leverages resistance variations in the power grid wires of an integrated circuit. Temperature and voltage stability of the bitstrings are analyzed. The disclosure also describes converting a voltage drop into a digital code, wherein the conversion is resilient to simple and differential side-channel attacks.

摘要翻译： 本公开描述了用于分析由物理不可克隆功能（PUF）产生的位串的统计质量的技术。 PUF利用集成电路的电网线的电阻变化。 分析了串串的温度和电压稳定性。 本公开还描述了将电压降转换成数字代码，其中转换对于简单和差异的侧向信道攻击具有弹性。

公开(公告)号：US20140282939A1

公开(公告)日：2014-09-18

申请号：US13842097

申请日：2013-03-15

申请人： INTERNATIONAL BUSINESS MACHINES CORPORATION

发明人： Olgierd Stanislaw Pieczul ,  Mary Ellen Zurko

IPC分类号： G06F21/46

CPC分类号： G06F21/46 ,  G06F2221/2117 ,  H04L9/3226 ,  H04L63/083 ,  H04L63/0846 ,  H04L63/20 ,  H04L2209/26

摘要： An approach is provided to increase password strength in a group of users. The approach detects a password event corresponding to one of the users. In response to the detected password event, the approach identifies a strength of the user's password and compares it to one or more password strength metrics that correspond to the group of users. The password strength comparison data is then transmitted as feedback back to the user.

摘要翻译： 提供了一种方法来增加一组用户的密码强度。 该方法检测与其中一个用户对应的密码事件。 响应于检测到的密码事件，该方法识别用户密码的强度，并将其与一组或多个对应于用户组的密码强度指标进行比较。 然后将密码强度比较数据作为反馈传送回用户。

公开(公告)号：US08812651B1

公开(公告)日：2014-08-19

申请号：US11675598

申请日：2007-02-15

申请人： Bjorn Marius Aamodt Eriksen ,  Jeffrey Glen Rennie ,  Othman Laraki

发明人： Bjorn Marius Aamodt Eriksen ,  Jeffrey Glen Rennie ,  Othman Laraki

IPC分类号： G06F15/173 ,  G06F15/16 ,  H04L12/56 ,  H04L29/12

CPC分类号： H04L63/08 ,  H04L29/12509 ,  H04L45/745 ,  H04L61/1511 ,  H04L61/6009 ,  H04L2209/08 ,  H04L2209/26

摘要： Before preloading a document to a client device, a server computer gets a client cache map associated with the client device. The client cache map has a matching entry for each document cached by the client device's cache. The server computer first checks if the document to be preloaded is already in the client device's cache by looking up the client cache map. If the document is cached, the server computer then checks whether the cached document's content is still fresh. As a result, the server computer preloads the document to the client device if the document is not cached or if the cached document's content is stale.

摘要翻译： 在将文档预加载到客户端设备之前，服务器计算机获取与客户端设备相关联的客户端缓存映射。 客户端缓存映射对于由客户端设备的高速缓存缓存的每个文档具有匹配的条目。 服务器计算机首先检查客户机缓存映射中是否已经在客户端设备的缓存中预先载入的文档。 如果文档被缓存，则服务器计算机然后检查缓存的文档的内容是否仍然是新鲜的。 因此，如果文档未被缓存或缓存的文档内容过时，服务器计算机会将文档预加载到客户端设备。