-
公开(公告)号:US09882727B1
公开(公告)日:2018-01-30
申请号:US14874310
申请日:2015-10-02
申请人: DigiCert, Inc.
发明人: Hari Veladanda , Hoa Ly , Ning Chai
CPC分类号: H04L9/3268 , H04L9/3263 , H04L29/06775 , H04L63/0823
摘要: Certificates issued by a CA are distributed across multiple CRLs. Each certificate issued by the CA is assigned to a specific CRL, and the address of that CRL is written to the appropriate field of the certificate, such that an authenticating application can subsequently determine if the certificate is revoked. When the CA revokes a specific one of the issued certificates, it determines to which CRL the revoked certificate is assigned, and updates the specific CRL accordingly. In some embodiments, a single one of the multiple CRLs is active for assignment of certificates at any given time, and each certificate issued by the CA is assigned to the currently active CRL. In other embodiments, assignments of issued certificates are distributed between different ones of a pre-determined number of multiple CRLs by applying a statistical distribution formula to each issued certificate to determine a corresponding target CRL.
-
公开(公告)号:US08788811B2
公开(公告)日:2014-07-22
申请号:US12790354
申请日:2010-05-28
申请人: Christina Fu , Andrew Wnuk
发明人: Christina Fu , Andrew Wnuk
CPC分类号: H04L9/3268 , H04L9/0822 , H04L9/0825 , H04L9/0894 , H04L9/3226 , H04L9/3263 , H04L29/06047 , H04L29/06775 , H04L63/062 , H04L63/0823 , H04L2463/062
摘要: A method and system for server-side key generation for non-token clients is described.
摘要翻译: 描述了用于非令牌客户端的用于服务器端密钥生成的方法和系统。
-
公开(公告)号:US20180270222A1
公开(公告)日:2018-09-20
申请号:US15980504
申请日:2018-05-15
CPC分类号: H04L63/0823 , H04L9/006 , H04L9/321 , H04L9/3263 , H04L29/06775 , H04L63/126 , H04W4/14 , H04W12/001 , H04W12/02 , H04W12/06
摘要: A mobile secure agent on a wireless device executes one or more authenticated data collection profiles provisioned by a private profile producer. Each data package can only be transmitted to a collector certificated by the same private profile producer. Update profiles are signed and provisioned through a tunnel initiated from the mobile secure agent. A Certificate Authority provides libraries, anchors, and certificates in a key management message module to each mobile secure agent which enables revocation and replacement of certificates. Data stored in this way on a wireless device may only be transmitted in encrypted form to an authenticated destination.
-
公开(公告)号:US09654463B2
公开(公告)日:2017-05-16
申请号:US14282034
申请日:2014-05-20
申请人: AirWatch LLC
CPC分类号: H04L9/0822 , G06F15/16 , G06F21/33 , H04L9/006 , H04L9/0825 , H04L9/3268 , H04L29/06775 , H04L63/0823
摘要: Application specific certificate deployment may be provided. An application may generate a security certificate comprising a public key and a first private key. The public key may be stored in a shared segment of a memory store, from where it may be retrieved and signed. The signed public key may be re-deployed and/or used to transmit securely encrypted resources.
-
公开(公告)号:US08667270B2
公开(公告)日:2014-03-04
申请号:US13371195
申请日:2012-02-10
申请人: Tasneem Brutch , Onur Aciicmez
发明人: Tasneem Brutch , Onur Aciicmez
CPC分类号: H04L63/0823 , G06F8/65 , H04L9/083 , H04L9/321 , H04L9/3247 , H04L9/3263 , H04L29/06775 , H04L29/06816
摘要: A method for securely altering a platform component is provided, comprising: assigning certificates for public encryption and signature verification keys for the device; assigning certificates for public encryption and signature verification keys for an upgrade server; mutually authenticating a device containing the platform component and the upgrade server; causing the device and the upgrade server to exchange a session key; and providing an alteration to be made to the platform component from the upgrade server to the device using the session key.
摘要翻译: 提供一种用于安全地改变平台组件的方法,包括:为所述设备分配用于公共加密的证书和签名验证密钥; 为升级服务器分配公共加密证书和签名验证密钥; 相互验证包含平台组件和升级服务器的设备; 使设备和升级服务器交换会话密钥; 并且使用会话密钥向平台组件提供从升级服务器到设备的改变。
-
6.发明授权Authentication of computing devices using augmented credentials to enable actions-per-group 有权使用增强凭证来验证计算设备以启用每组动作公开(公告)号:US09253175B1
公开(公告)日:2016-02-02
申请号:US13874201
申请日:2013-04-30
发明人: Michael Orr
IPC分类号: H04L29/06
CPC分类号: H04L63/08 , G06F15/16 , H04L29/06 , H04L29/06775 , H04L63/0823 , H04L63/0876 , H04L63/0892 , H04L2209/043 , H04W12/06 , H04W84/12
摘要: In one or more embodiments, attributes other than a supplicant's MAC address can be used for the user name in the authentication process in a network computing environment. In at least some embodiments, doing so utilizes an association structure, such as a table, that is already resident at the authentication server. By using attributes other than a supplicant's MAC address, various matching scenarios can be provided by the authentication server in which authentication or authorization takes place responsive to satisfying conditions defined in the authentication server's association or database. Furthermore, a variety of non-authentication scenarios can be supported using the authentication server's association.
摘要翻译: 在一个或多个实施例中,除了请求者的MAC地址之外的属性可以用于网络计算环境中的认证过程中的用户名。 在至少一些实施例中,这样做利用已经驻留在认证服务器的关联结构,诸如表。 通过使用除了请求方的MAC地址以外的属性,可以根据认证服务器的关联或数据库中定义的满足条件,由验证服务器提供各种匹配场景,在认证服务器中进行认证或授权。 此外,可以使用认证服务器的关联来支持各种非验证场景。
-
7.发明授权Method, apparatus and system for platform identity binding in a network node 有权用于网络节点中的平台身份绑定的方法,装置和系统公开(公告)号:US08099495B2
公开(公告)日:2012-01-17
申请号:US11323333
申请日:2005-12-29
申请人: Kapil Sood , Jesse R. Walker
发明人: Kapil Sood , Jesse R. Walker
IPC分类号: G06F15/173 , G06F15/16 , G06F15/177 , G06F9/00 , G06F9/24 , G06F7/04 , G06F17/30 , H04L29/06
CPC分类号: H04L63/10 , H04L9/3234 , H04L9/3263 , H04L29/06775 , H04L63/0823 , H04L63/102
摘要: Embodiments of apparatuses, articles, methods, and systems for binding various platform identities for a policy negotiation are generally described herein. Other embodiments may be described and claimed.
摘要翻译: 这里通常描述用于绑定用于策略协商的各种平台身份的装置,文章,方法和系统的实施例。 可以描述和要求保护其他实施例。
-
公开(公告)号:US20110296172A1
公开(公告)日:2011-12-01
申请号:US12790354
申请日:2010-05-28
申请人: Christina Fu , Andrew Wnuk
发明人: Christina Fu , Andrew Wnuk
IPC分类号: H04L29/06
CPC分类号: H04L9/3268 , H04L9/0822 , H04L9/0825 , H04L9/0894 , H04L9/3226 , H04L9/3263 , H04L29/06047 , H04L29/06775 , H04L63/062 , H04L63/0823 , H04L2463/062
摘要: A method and system for server-side key generation for non-token clients is described.
摘要翻译: 描述了用于非令牌客户端的用于服务器端密钥生成的方法和系统。
-
公开(公告)号:US09973492B2
公开(公告)日:2018-05-15
申请号:US13726580
申请日:2012-12-25
CPC分类号: H04L63/0823 , H04L9/006 , H04L9/321 , H04L9/3263 , H04L29/06775 , H04L63/126 , H04W4/14 , H04W12/02 , H04W12/06
摘要: A mobile secure agent on a wireless device executes one or more authenticated data collection profiles provisioned by a private profile producer. Each data package can only be transmitted to a collector certificated by the same private profile producer. Update profiles are signed and provisioned through a tunnel initiated from the mobile secure agent. A Certificate Authority provides libraries, anchors, and certificates in a key management message module to each mobile secure agent which enables revocation and replacement of certificates. Data stored in this way on a wireless device may only be transmitted in encrypted form to an authenticated destination.
-
公开(公告)号:US20130212380A1
公开(公告)日:2013-08-15
申请号:US13371195
申请日:2012-02-10
申请人: Tasneem BRUTCH , Onur ACIICMEZ
发明人: Tasneem BRUTCH , Onur ACIICMEZ
IPC分类号: H04L9/32
CPC分类号: H04L63/0823 , G06F8/65 , H04L9/083 , H04L9/321 , H04L9/3247 , H04L9/3263 , H04L29/06775 , H04L29/06816
摘要: A method for securely altering a platform component is provided, comprising: assigning certificates for public encryption and signature verification keys for the device; assigning certificates for public encryption and signature verification keys for an upgrade server; mutually authenticating a device containing the platform component and the upgrade server; causing the device and the upgrade server to exchange a session key; and providing an alteration to be made to the platform component from the upgrade server to the device using the session key.
摘要翻译: 提供一种用于安全地改变平台组件的方法,包括:为所述设备分配用于公共加密的证书和签名验证密钥; 为升级服务器分配公共加密证书和签名验证密钥; 相互验证包含平台组件和升级服务器的设备; 使设备和升级服务器交换会话密钥; 并且使用会话密钥向平台组件提供从升级服务器到设备的改变。
-
-
-
-
-
-
-
-
-
搜索结果
21 条记录 (耗时 0.012 秒)
