-
公开(公告)号:WO2019145488A1
公开(公告)日:2019-08-01
申请号:PCT/EP2019/051877
申请日:2019-01-25
申请人: NAGRAVISION S.A
CPC分类号: H04L63/123 , G06F21/57 , H04L9/083 , H04L9/3247 , H04L9/3297 , H04L63/068 , H04L63/0823 , H04L67/12 , H04L2209/84 , H04W4/40
摘要: Aspects of the present disclosure address systems, methods, and devices for enabling secure communication between electronic control units (ECUs) in a vehicle. The system may include a first and second ECU from a plurality of ECUs in the vehicle. The first ECU is to enable secure communication between the plurality of ECUs by performing operations that include provisioning the second ECU with authentication data for authenticating messages exchanged with a third ECU and provisioning the third ECU with a set of security keys to enable the third ECU to securely exchange messages with the second ECU. The second ECU receives, from the third ECU, a secure message that is cryptographically signed using a security key from the set of security keys provisioned to the third ECU, and the second ECU authenticates the secure message by comparing the authentication data with an authentication signal.
-
公开(公告)号:WO2019050897A1
公开(公告)日:2019-03-14
申请号:PCT/US2018/049476
申请日:2018-09-05
申请人: RAYTHEON COMPANY
发明人: LAWRENCE, Nigel R.
IPC分类号: H04L29/06
CPC分类号: H04L43/0894 , H04L63/0209 , H04L63/0428 , H04L63/08 , H04L63/123 , H04L2012/5672
摘要: A data transfer system is configured to transfer data from a data transmitting site to a data receiving site. The data transfer system includes a low-side network, at least one high- side network, and a one-way data (OWD) link. The OWD link is configured to perform unidirectional data transfer from the low-side network to the at least one high-side network. The OWD link continuously synchronizes the low-side network with the at least one high- side network while continuously transferring data through the OWD link.
-
公开(公告)号:WO2018208136A1
公开(公告)日:2018-11-15
申请号:PCT/KR2018/005511
申请日:2018-05-14
发明人: CHEN, Geng , PENG, Pai
CPC分类号: G06Q20/4016 , G06F21/44 , G06Q20/102 , G06Q20/123 , G06Q20/322 , G06Q20/382 , H04L63/08 , H04L63/123 , H04L2463/102 , H04W12/06 , H04W12/10
摘要: A method for authenticating a counterparty to a digital transaction includes obtaining, at a mobile terminal from a unverified counterparty, characteristic content associated with the digital transaction to be displayed in a trusted user interface provided by the mobile terminal, sending, by the mobile terminal, data associated with the characteristic content to an authentication server; and obtaining, from the authentication server, a result of an authentication judgment by the authentication server, the authentication judgment based on the data associated with the characteristic content and an item of reference content.
-
公开(公告)号:WO2018045326A1
公开(公告)日:2018-03-08
申请号:PCT/US2017049924
申请日:2017-09-01
申请人: KELTS A DAVID , CANDELAS GUSTAVO
发明人: KELTS A DAVID , CANDELAS GUSTAVO
CPC分类号: G06Q30/018 , G06F21/36 , H04L63/123
摘要: A computer-implemented method is described. The method includes generating, for display on a computing device, an identification rendering viewable on a display of the device, the identification rendering including an authority indicator and a digital image of a person. The method further includes the device triggering an interactive effect associated with the identification rendering. The triggering occurs in response to the device receiving a trigger input and the trigger can be from any input or communications sensor of the computing device. The triggered interactive effect includes an authority indicator and a freshness indicator that enables an individual viewing the display to validate the identity of the person associated with the digital image. Validation can be based on at least one of a characteristic of the interactive effect and attributes of the person or the authority indicator.
摘要翻译: 描述了计算机实现的方法。 该方法包括生成用于在计算设备上显示的在设备的显示器上可见的标识呈现,该标识呈现包括人的权限指示符和数字图像。 该方法还包括设备触发与识别呈现相关联的交互式效果。 响应于设备接收触发输入而发生触发,并且触发可以来自计算设备的任何输入或通信传感器。 触发的交互式效果包括授权指示符和新鲜度指示符,其使观看显示器的个人能够验证与数字图像相关联的人的身份。 验证可以基于交互效果的特性和人员的属性或权限指示符中的至少一个。
-
公开(公告)号:WO2018033309A1
公开(公告)日:2018-02-22
申请号:PCT/EP2017/067762
申请日:2017-07-13
申请人: ALCATEL LUCENT
CPC分类号: H04L63/1425 , G06F21/55 , G06F21/552 , G06F21/577 , G06F21/602 , G09C1/00 , H04L63/123 , H04L63/1408 , H04L2209/38 , H04L2209/56
摘要: A method and system of detecting a security threat within a network of connected devices that share a ledger of transactions between them under the form of exchanged blockchain messages (50). Enhanced blockchain messages are built by adding all forked chains (51) to the blockchain messages (50). Forked chains in such enhanced blockchains are then inspected to detect any anomaly. When an anomaly is detected in a forked chain, all transactions of the ledger in the forked chain (51) and the blockchain message (50) leading up to the network attack entry point are reviewed to identify the source of the security threat.
摘要翻译: 在交换区块链消息(50)的形式下,检测共享它们之间的交易分类帐的连接装置的网络内的安全威胁的方法和系统。 通过将所有分叉链(51)添加到区块链消息(50)来构建增强型区块链消息。 然后检查这种增强型区块链中的分叉链以检测任何异常。 当在分叉链中检测到异常时,检查分叉链(51)中的账本和导致到网络攻击入口点的区块链消息(50)的所有交易以识别安全威胁的来源。 p>
-
6.发明申请
公开(公告)号:WO2018017602A1
公开(公告)日:2018-01-25
申请号:PCT/US2017/042654
申请日:2017-07-18
申请人: FUGUE, INC.
发明人: SCHOOF, Alexander E.
CPC分类号: H04L63/062 , G06F9/44505 , G06F16/2379 , H04L9/3242 , H04L63/061 , H04L63/123 , H04L67/10 , H04L67/1095 , H04L67/2842
摘要: A distributed key/value store system using asynchronous messaging systems is provided. A plurality of instances in a cloud computing environment each execute software that enables reading from and writing to a respective local cache, and that enables sending messages through a messaging queue to a cloud environment operating system. When a configuration value is updated locally at an instance, the instance sends a message to the cloud environment operating system, instructing it to update a database and broadcast the update to other instances through each instance's messaging queue. In some embodiments, each instance may read and write to the database directly, and may publish updates to the queues of other instances directly. In some embodiments, a managed encryption key service is used to encrypt sensitive information, securely distribute via distributed key/value store systems, and authenticate and decrypt it by instances of the distributed key/value store systems.
摘要翻译:
提供了一个使用异步消息传递系统的分布式密钥/值存储系统。 云计算环境中的多个实例各自执行使得能够读取和写入相应本地高速缓存的软件,并且使得能够通过消息队列将消息发送到云环境操作系统。 当在实例本地更新配置值时,实例会向云环境操作系统发送消息,指示其更新数据库并通过每个实例的消息队列将更新广播到其他实例。 在一些实施例中,每个实例可以直接读取和写入数据库,并且可以直接向其他实例的队列发布更新。 在一些实施例中,受管理的加密密钥服务用于加密敏感信息,通过分布式密钥/值存储系统安全地分配,并且通过分布式密钥/值存储系统的实例对其进行认证和解密。
-
公开(公告)号:WO2017147355A1
公开(公告)日:2017-08-31
申请号:PCT/US2017/019247
申请日:2017-02-24
申请人: ACS (US), INC.
发明人: ROSS, Nicholas , PIKE, Robert
IPC分类号: G06F15/177
CPC分类号: H04W12/08 , G06F21/604 , H04L41/0803 , H04L41/12 , H04L47/70 , H04L63/0892 , H04L63/101 , H04L63/123 , H04L63/1433 , H04W4/60 , H04W12/06 , H04W12/10 , H04W12/12 , H04W16/18
摘要: Disclosed is a platform for providing computational resources at and/or near a mobile network perimeter. The platform may be used to provide computational resources adjacent a small cell radio via at least one Mobile Edge Compute ("MEC") Appliance and at least one MEC Controller. The MEC Appliance can serve as the data plane to support data flow traffic. The MEC Controller can provide a micro-services architecture designed for resiliency, scalability, and extensibility. The platform can be used to de-centralize the mobile network operator's core network and/or associated macro-cell network topologies, generating a platform with enhanced flexibility, reliability, and performance. The platform can include a security architecture for effective privacy and access within a distributed topology of the network at and/or near the edge of the mobile network perimeter.
摘要翻译: 公开了一种用于在移动网络周边处和/或附近提供计算资源的平台。 该平台可以用于经由至少一个移动边缘计算(“MEC”)设备和至少一个MEC控制器提供邻近小小区无线电的计算资源。 MEC设备可以作为数据平面来支持数据流量。 MEC控制器可以提供旨在提供弹性,可扩展性和可扩展性的微服务架构。 该平台可用于将移动网络运营商的核心网络和/或关联的宏小区网络拓扑结构分散,从而生成具有增强的灵活性,可靠性和性能的平台。 该平台可以包括用于在移动网络边界的边缘处和/或附近的网络的分布式拓扑内的有效隐私和访问的安全体系结构。
-
公开(公告)号:WO2017129290A1
公开(公告)日:2017-08-03
申请号:PCT/EP2016/078893
申请日:2016-11-25
发明人: WIFVESSON, Monica , WASS, Mikael , HUSSAIN, Yasir , TORVINEN, Vesa , JOHANSSON, Nicklas , SCHLIWA-BERTLING, Paul
CPC分类号: H04W12/06 , H04L63/123 , H04W4/70 , H04W12/10
摘要: An electronic communication device of a telecommunications system receives a message containing an integrity mode bit and an integrity protection bit from another electronic communication device, and determines whether the integrity protection bit indicates that a Frame Check Sequence, FCS, field of the message has been replaced by a Medium Access Control, MAC, field. Responsive to determining that the integrity protection bit indicates that the FCS field has been replaced by the MAC field, the device determines whether the MAC field is valid. Responsive to determining that the MAC field is not valid and the integrity mode bit having a first defined value, the message is discarded. Responsive to determining that the MAC field is not valid and the integrity mode bit having a second defined value, content of the message is provided to a higher network protocol layer for processing.
摘要翻译: 电信系统的电子通信设备从另一电子通信设备接收包含完整性模式位和完整性保护位的消息,并确定完整性保护位是否指示帧校验序列FCS 该消息的字段已被媒体访问控制MAC字段取代。 响应于确定完整性保护位指示FCS字段已被MAC字段替换,设备确定MAC字段是否有效。 响应于确定MAC字段无效并且完整性模式位具有第一定义值,丢弃该消息。 响应于确定MAC字段无效并且完整性模式比特具有第二定义值,将消息的内容提供给更高的网络协议层以进行处理。
-
公开(公告)号:WO2017112152A1
公开(公告)日:2017-06-29
申请号:PCT/US2016/062380
申请日:2016-11-17
申请人: MCAFEE, INC.
CPC分类号: H04L63/123 , G06F8/65 , H04L63/0435 , H04L63/08 , H04L63/1441 , H04L63/18 , H04L67/34 , H04L69/22 , H04W12/02 , H04W12/08 , H04W12/10
摘要: In an example, there is disclosed a computing apparatus having: a network interface to communicate with a second device; a contextual data interface to receive and store contextual data; and one or more logic elements comprising a contextual security agent, operable to: receive a contextual data packet via the network interface; compare the contextual data packet to stored contextual data; and act on the comparing. The contextual data packet may optionally be provided out of band, and may be used to authenticate a substantive data packet, such as a patch or update.
摘要翻译: 在一个示例中,公开了一种计算设备,其具有:网络接口,用于与第二设备进行通信; 上下文数据接口,用于接收和存储上下文数据; 以及包括上下文安全代理的一个或多个逻辑元件,可操作用于:经由所述网络接口接收上下文数据分组; 将上下文数据分组与存储的上下文数据进行比较; 并对比较行事。 上下文数据分组可以可选地在带外提供,并且可以用于认证实体数据分组,诸如补丁或更新。
-
公开(公告)号:WO2017109272A1
公开(公告)日:2017-06-29
申请号:PCT/FI2016/050236
申请日:2016-04-12
申请人: COMPTEL CORPORATION
发明人: LACEY, Stephen , JARVA, Mikko
CPC分类号: G06F9/50 , G06F21/316 , G06F21/44 , H04L41/0823 , H04L41/0896 , H04L43/16 , H04L63/0823 , H04L63/123
摘要: According to an example aspect of the present invention, there is provided an apparatus comprising memory configured to store information characterizing at least one run-time behavioural pattern, at least one processing core configured to perform a behavioural determination based at least partly on the stored information, concerning a network node, and to verify, as a response to a result of the behavioural determination, whether the network node is comprised on a list of valid network nodes.
摘要翻译: 根据本发明的示例方面,提供了一种设备,包括:存储器,被配置为存储表征至少一个运行时行为模式的信息;至少一个处理核心,被配置为执行行为确定 至少部分基于所存储的信息,关于网络节点,并且作为对行为确定的结果的响应,验证该网络节点是否包括在有效网络节点的列表中。
-
-
-
-
-
-
-
-
-
搜索结果
1344 条记录 (耗时 0.032 秒)
