-
公开(公告)号:US20190253444A1
公开(公告)日:2019-08-15
申请号:US16317493
申请日:2018-05-07
发明人: Haibin YU , Peng ZENG , Wenli SHANG , Jianming ZHAO , Xianda LIU , Long YIN , Chunyu CHEN
CPC分类号: H04L63/1425 , G05B19/05 , G06F21/44 , H04L29/06 , H04L63/0435 , H04L63/0823 , H04L63/102
摘要: The present invention relates to a dynamic security method and system based on multi-fusion linkage response. In the method, a site control device conducts active response and passive response through identity authentication and key management to give an alarm for abnormal behaviors. The system comprises an access authentication active response module, an access control active response module, an access control passive response module, an abnormal pretending passive response module, a key vulnerability passive response module and an abnormal state passive response mechanism module. On the basis of ensuring validity and feasibility for the security of a terminal device, the present invention can build a secure and trusted industrial control system operating environment.
-
公开(公告)号:US20190245839A1
公开(公告)日:2019-08-08
申请号:US16385204
申请日:2019-04-16
申请人: nadaPASS, Inc.
发明人: Jay Lawrence COX
IPC分类号: H04L29/06
CPC分类号: H04L63/08 , H04L63/0823 , H04L63/0853 , H04L63/0876 , H04L63/164 , H04L63/18
摘要: A processor-implemented method for authenticating a login without a password. The method includes: receiving a request to authenticate a login, the request including a user identifier and excluding a password; based on the user identifier, identifying a device to be used to authenticate the login; and in response to determining that a login confirmation message has been received from the identified device, authenticating the login.
-
公开(公告)号:US20190223254A1
公开(公告)日:2019-07-18
申请号:US16149048
申请日:2018-10-01
申请人: PAYPAL, INC.
CPC分类号: H04W84/18 , H04B5/04 , H04L29/08333 , H04L63/0442 , H04L63/062 , H04L63/0823 , H04L67/1046 , H04W4/80 , H04W12/0013 , H04W12/003 , H04W12/02 , H04W12/04 , H04W16/14 , H04W76/14 , H04W84/12
摘要: Systems and methods are provided for facilitating wireless connections using a Bluetooth® low energy (BLE) beacon installed at a location. In particular, the provided systems and methods may facilitate wireless connections by providing credentials for accessing a wireless network at the location when a user checks in to the location using a user device in communication with the BLE beacon. The provided systems and methods may further facilitate wireless connections by establishing a Wi-Fi Direct connection with the user device to quickly provide content to the user device while at the location.
-
公开(公告)号:US20190215313A1
公开(公告)日:2019-07-11
申请号:US15868586
申请日:2018-01-11
申请人: Robin Systems, Inc.
CPC分类号: H04L63/06 , G06F11/2094 , G06F2201/805 , H04L9/3226 , H04L63/0807 , H04L63/0823
摘要: A new snapshot of a storage volume is created by instructing computing nodes to suppress write requests. Once pending write requests from the computing nodes are completed, storage nodes create a new snapshot for the storage volume by allocating a new segment to the new snapshot and finalizes and performs garbage collection with respect to segments allocated to the previous snapshot. Subsequent write requests to the storage volume are then performed on the segments allocated to the new snapshot. An orchestration layer implements a multi-role application that is provisioned with virtualized storage and computation resources. A snapshot of the application may be created and used to rollback or clone the application. Containers may be loaded with data structures for encrypted and/or authenticated communication. Failed storage volumes maybe detected and repaired. Repopulating repaired volumes may be managed by an application or a storage manager implementing a virtualized storage system.
-
公开(公告)号:US20190207825A1
公开(公告)日:2019-07-04
申请号:US16298542
申请日:2019-03-11
申请人: SONOS, INC.
IPC分类号: H04L12/24 , G06F3/0482 , H04L29/06 , H04L29/08 , G06F3/0484 , H04W12/04 , H04W12/08 , H04L12/28 , G06F3/0481
CPC分类号: H04L41/22 , G06F3/0481 , G06F3/0482 , G06F3/04842 , G06F3/04847 , H04L12/28 , H04L12/2803 , H04L12/2807 , H04L12/2809 , H04L41/0803 , H04L41/0809 , H04L41/28 , H04L63/065 , H04L63/0823 , H04L63/10 , H04L63/20 , H04L65/60 , H04L67/02 , H04L67/10 , H04L67/141 , H04L2012/2841 , H04L2012/2849 , H04W12/003 , H04W12/04 , H04W12/08 , H04W84/12
摘要: An example computing device includes programming to perform functions including, while operating on a secure WLAN, (a) receiving user input indicating that a user wishes to set up a playback device to operate on the secure WLAN and (b) receiving a first message indicating that a given playback device is available for setup, then transmitting a response to the first message that facilitates establishing an initial communication path with the given playback device outside of the secure WLAN. The functions also include transmitting, to the given playback device via the initial communication path, a second message containing network configuration parameters including an identifier of, and a security key for, the secure WLAN, then detecting an indication that the given playback device has successfully received the network configuration parameters. The functions also include transitioning from communicating with the given playback device via the initial communication path to communicating with the given playback device via the secure WLAN.
-
公开(公告)号:US20190197815A1
公开(公告)日:2019-06-27
申请号:US15853643
申请日:2017-12-22
发明人: Ashfaq Kamal , Sumeet Bhatt , Robert D. Reany
IPC分类号: G07F7/10 , G07C9/00 , H04L29/06 , H04L9/32 , H04L9/08 , G06K9/00 , G06Q20/32 , G06Q20/34 , G06Q20/10 , H04W4/80
CPC分类号: G07F7/1008 , G06K9/00013 , G06K9/00255 , G06Q20/105 , G06Q20/3223 , G06Q20/341 , G07C9/00087 , G07C2009/00095 , H04L9/0861 , H04L9/3247 , H04L63/0823 , H04L63/0861 , H04W4/80 , H04W12/06
摘要: Systems and methods are provided for use in providing digital identities for users. One exemplary method includes receiving, at a card device, an authentication request and a captured first biometric of the user, from a communication device associated with the user, and comparing the first biometric and a first biometric reference at the card device, when the first biometric reference is stored in at the card device. The method also includes capturing, at the card device, a second biometric of the user and comparing the second biometric to a second biometric reference stored at the card device. The method further includes compiling a response to the authentication request including a first indicator associated with the comparison of the first biometric to the first biometric reference and a second indicator associated with the comparison of the second biometric to the second biometric reference, and transmitting the response to the communication device.
-
公开(公告)号:US20190188712A1
公开(公告)日:2019-06-20
申请号:US15916293
申请日:2018-03-09
发明人: Sergey Fedorov , Wenting Li , Ghassan Karame
CPC分类号: G06Q20/401 , G06F21/51 , G06F21/53 , H04L9/0637 , H04L9/3239 , H04L9/3247 , H04L9/3263 , H04L63/0823 , H04L63/12 , H04L67/104 , H04L2209/38
摘要: Systems and methods for validation of transaction policy compliance are provided. Code is implemented, including a transaction policy compliance check, in a form of a trusted application to be executed in a trusted execution environment (TEE). A secret is attested and provisioned to a trusted application instance in the TEE. The trusted application instance is executed on a client transaction request to generate a policy compliance result. A transaction object is generated, including the policy compliance result and a proof of the execution. The transaction object is proposed to a distributed ledger system. The policy compliance result and a proof of the execution during transaction validation in the distributed ledger system is verified.
-
公开(公告)号:US20190166160A1
公开(公告)日:2019-05-30
申请号:US15824214
申请日:2017-11-28
申请人: Forcepoint LLC
IPC分类号: H04L29/06
CPC分类号: H04L63/166 , H04L63/0227 , H04L63/0281 , H04L63/0823 , H04L63/1408 , H04L63/20
摘要: A method, system, and computer-usable medium are disclosed for (a) responsive to communication of a client handshake from a client to a server for establishing encrypted communications between the client and the server: (i) holding open, by an intermediate verification system interfaced between the server and the client, the client handshake; and (ii) opening a connection between the intermediate verification system and the server via which the intermediate verification system issues a server verification handshake to the server; (b) responsive to issuance of the server verification handshake to the server, receiving a server certificate associated with the server by the intermediate verification system; (c) responsive to receipt of the server certificate, processing, by the intermediate verification system, the server certificate to determine an identity of the server; and (d) rendering, by the intermediate verification system, a security policy decision regarding traffic between the server and client based on the identity.
-
公开(公告)号:US20190166117A1
公开(公告)日:2019-05-30
申请号:US16047507
申请日:2018-07-27
申请人: MOCANA CORPORATION
发明人: Srinivas KUMAR , Atul GUPTA , Ruslan ULANOV , Shreya UCHIL
IPC分类号: H04L29/06 , G06F21/57 , H04L9/32 , G06F9/4401
CPC分类号: H04L63/0823 , G06F8/65 , G06F8/71 , G06F9/4401 , G06F21/57 , G06F21/575 , H04L9/0637 , H04L9/0825 , H04L9/0891 , H04L9/30 , H04L9/321 , H04L9/3247 , H04L9/3263 , H04L9/3268 , H04L63/0428 , H04L63/12 , H04L63/20 , H04L67/104 , H04W8/005 , H04W12/06
摘要: A method of securing data transport between an endpoint device, without an IP address and connected to a gateway device, and a connected service using a discovery agent, a discovery service, and an enrollment service. The method includes: sending to the discovery service on the gateway device, an authenticated identity beacon with a device profile of the endpoint device; verifying authentication of the endpoint device and the device profile and generating a certificate request for the endpoint device; processing, by the enrollment service, the certificate request for the endpoint device to translate the certificate request for a certificate authority and receiving a certificate for the endpoint device issued by the certificate authority; processing the received certificate for the endpoint device to translate the received certificate for the endpoint device to represent a privacy certificate authority; and performing cryptographic operations on data using the certificate for the endpoint device.
-
10.
公开(公告)号:US20190140843A1
公开(公告)日:2019-05-09
申请号:US16019109
申请日:2018-06-26
申请人: CLOUDFLARE, INC.
发明人: Sébastien Andreas Henry Pahl , Matthieu Philippe François Tourne , Piotr Sikora , Ray Raymond Bejjani , Dane Orion Knecht , Matthew Browning Prince , John Graham-Cumming , Lee Hahn Holloway , Nicholas Thomas Sullivan , Albertus Strasheim
CPC分类号: H04L9/3263 , G06F21/33 , H04L9/083 , H04L9/0841 , H04L9/0844 , H04L9/14 , H04L9/3013 , H04L9/3247 , H04L63/0428 , H04L63/0485 , H04L63/061 , H04L63/0823 , H04L63/0869 , H04L63/164 , H04L63/166 , H04L63/205 , H04L67/141 , H04L67/42
摘要: A server establishes a secure session with a client device where a private key used in the handshake when establishing the secure session is stored in a different server. During the handshake procedure, the server receives a premaster secret that has been encrypted using a public key bound with a domain for which the client device is attempting to establish a secure session with. The server transmits the encrypted premaster secret to the different server for decryption along with other information necessary to compute a master secret. The different server decrypts the encrypted premaster secret, generates the master secret, and transmits the master secret to the server. The server receives the master secret and continues with the handshake procedure including generating one or more session keys that are used in the secure session for encrypting and decrypting communication between the client device and the server.
-
-
-
-
-
-
-
-
-