中科微点-全球专利检索

  1. Login
  2. Sign Up

Search Results

4 records (took 0.014 seconds)

    MODULES TO SECURELY PROVISION AN ASSET TO A TARGET DEVICE
    1.
    发明申请
    MODULES TO SECURELY PROVISION AN ASSET TO A TARGET DEVICE 审中-公开
    向目标设备安全提供资产的模块

    公开(公告)号:WO2015171508A1

    公开(公告)日:2015-11-12

    申请号:PCT/US2015/029077

    申请日:2015-05-04

    Applicant: CRYPTOGRAPHY RESEARCH, INC.

    Inventor: HAMBURG, Michael JUN, Benjamin Che-Ming KOCHER, Paul C. O'LOUGHLIN, Daniel POCHUEV, Denis Alexandrovich

    IPC: G06F21/60 G06F21/62

    CPC classification number: H04L63/0853 G06F21/335 G06F21/602 G06F21/6209 G06F21/72 G06F21/73 G06F2221/2107 G06F2221/2135 G06F2221/2145 G06F2221/2149 G06F2221/2153 H04L63/0428 H04L63/062 H04L63/123 H04L67/32 H04W12/06

    Abstract: The embodiments described herein describe technologies for Module management, including Module creation and Module deployment to a target device in an operation phase of a manufacturing life cycle of the target device in a cryptographic manager (CM) environment. One implementation includes a Root Authority (RA) device that receives a command to create a Module and executes a Module Template to generate the Module in response to the command. The Module is deployed to an Appliance device. A set of instructions of the Module, when executed by the Appliance device, results in a secure construction of a sequence of operations to securely provision a data asset to the target device. The Appliance device is configured to distribute the data asset to a cryptographic manager (CM) core of the target device.

    Abstract translation: 本文描述的实施例描述了用于模块管理的技术,包括在密码管理器(CM)环境中的目标设备的制造生命周期的操作阶段中的模块创建和模块部署到目标设备。 一个实现包括根授权(RA)设备,其接收创建模块的命令并执行模块模板以响应于该命令生成模块。 模块部署到设备设备。 当由设备设备执行时,该模块的一组指令导致一系列操作的安全构造,以将数据资产安全地提供给目标设备。 设备设备被配置为将数据资产分发到目标设备的加密管理器(CM)核心。

    AUDITING AND PERMISSION PROVISIONING MECHANISMS IN A DISTRIBUTED SECURE ASSET-MANAGEMENT INFRASTRUCTURE
    2.
    发明申请
    AUDITING AND PERMISSION PROVISIONING MECHANISMS IN A DISTRIBUTED SECURE ASSET-MANAGEMENT INFRASTRUCTURE 审中-公开
    分布式安全资产管理基础设施的审计和许可提供机制

    公开(公告)号:WO2015171511A1

    公开(公告)日:2015-11-12

    申请号:PCT/US2015/029081

    申请日:2015-05-04

    Applicant: CRYPTOGRAPHY RESEARCH, INC.

    Inventor: HAMBURG, Michael JUN, Benjamin Che-Ming KOCHER, Paul C. O'LOUGHLIN, Daniel POCHUEV, Denis Alexandrovich KUMAR, Ambuj

    IPC: G06F21/73 G06F21/72

    CPC classification number: H04L63/0853 G06F21/335 G06F21/602 G06F21/6209 G06F21/72 G06F21/73 G06F2221/2107 G06F2221/2135 G06F2221/2145 G06F2221/2149 G06F2221/2153 H04L63/0428 H04L63/062 H04L63/123 H04L67/32 H04W12/06

    Abstract: Described herein are technologies for ticketing systems used in consumption and provisioning of data assets, such as a pre-computed (PCD) asset. A ticket may be a digital file or data that enables enforcement of usage count limits and uniqueness issuance or sequential issuance of target device parameters. One implementation includes an Appliance device of a cryptographic manager (CM) system that receives a Module and a ticket over a network from a Service device. The Module is an application that securely provisions a data asset to a target device in an operation phase of a manufacturing lifecycle of the target device. The ticket is digital data that grants permission to the Appliance device to execute the Module. The Appliance device verifies the ticket to execute the Module. The Module, when executed, results in a secure construction of a sequence of operations to securely provision the data asset to the target device.

    Abstract translation: 这里描述了用于消费和提供数据资产(例如预先计算(PCD))资产的票务系统的技术。 票可以是数字文件或数据,其能够实现使用计数限制和唯一性发布或连续发布目标设备参数。 一个实现包括加密管理器(CM)系统的设备设备,其从服务设备接收网络上的模块和故障单。 该模块是在目标设备的制造生命周期的操作阶段中将数据资产安全地提供给目标设备的应用程序。 该票是允许电器设备执行模块的数字数据。 电器设备验证机票以执行模块。 该模块在执行时会导致一系列操作的安全构造,以将数据资产安全地提供给目标设备。

    ESTABLISHING AN INITIAL ROOT OF TRUST FOR INDIVIDUAL COMPONENTS OF A DISTRIBUTED SECURITY INFRASTRUCTURE
    3.
    发明申请
    ESTABLISHING AN INITIAL ROOT OF TRUST FOR INDIVIDUAL COMPONENTS OF A DISTRIBUTED SECURITY INFRASTRUCTURE 审中-公开
    为分布式安全基础设施的个人组成部分设立信任基础

    公开(公告)号:WO2015171470A1

    公开(公告)日:2015-11-12

    申请号:PCT/US2015/028944

    申请日:2015-05-01

    Applicant: CRYPTOGRAPHY RESEARCH, INC.

    Inventor: POCHUEV, Denis Alexandrovich SWAMI, Yogesh O'LOUGHLIN, Daniel

    IPC: G06F21/57 H04L12/24 H04W12/04

    CPC classification number: H04L63/0442 G06F21/57 H04L9/14 H04L41/0806 H04L2209/24 H04W12/04

    Abstract: Described herein are technologies for a device definition process to establish a unique identity and a root of trust of a cryptographic manager (CM) device, the CM device to be deployed in a CM system. The device definition process can take place in a device definition phase of a manufacturing lifecycle of the CM device. One implementation of a CM device, an initialization application generates a device definition request to establish the unique identity and the root of trust. In response to the device definition request, the initialization application obtains device identity and device credentials of the CM device and stores the device definition request in storage space of a removable storage device. The initialization application imports a device definition response containing provisioning information generated by a provisioning device of a cryptographic manager system in response to the device definition request.

    Abstract translation: 这里描述的是用于建立密码管理器(CM)设备(CM部署在CM系统中的CM设备)的唯一身份和信任根的设备定义过程的技术。 设备定义过程可以在CM设备的制造生命周期的设备定义阶段中进行。 CM设备的一个实现,初始化应用程序生成设备定义请求,以建立唯一身份和信任根。 响应于设备定义请求,初始化应用获得CM设备的设备身份和设备凭证,并将设备定义请求存储在可移动存储设备的存储空间中。 初始化应用程序响应于设备定义请求导入包含由加密管理器系统的供应设备生成的供应信息的设备定义响应。

Patent Agency Ranking