Patents Examined by Ellen C Tran
  • Patent number: 7251731
    Abstract: To set up a call coming from a user's mobile radio telephone terminal to a receiver terminal for example a home automation terminal, the result of a biometric authentication of the user in the mobile terminal and of a predetermined result are applied to algorithms for authenticating of the mobile terminal implemented in the mobile terminal and fixed storage arrangement in the radio telephone network. If the signature produced by the algorithm in the mobile terminal and transmitted by it and the signature result produced by the algorithm in the fixed storage arrangement are identical, an identifier of the mobile terminal is transmitted from the fixed storage arrangement to the called receiver terminal. The outgoing call is accepted by the receiver terminal only when the latter has recognized the transmitted identifier, or in a variant an identifier of removable supplementary card included in the mobile terminal.
    Type: Grant
    Filed: November 16, 2001
    Date of Patent: July 31, 2007
    Assignee: France Telecom
    Inventors: Sylvie Laniepce, Didier Guerin
  • Patent number: 7246243
    Abstract: In an identification system for electronic commerce, an end terminal transmits a transaction request message containing biometrics data of a user to a communications network, At least one electronic commerce service provider unit is provided which receives the transaction request message via the network and transmits an authentication request message containing the biometrics data to the network. An authentication server having a database for storing registered biometrics data receives the authentication request message and determines whether the received biometrics data has corresponding biometrics data in the database and returns a reply to the ECSP unit via the network indicating that the transaction request message is authenticated if the received biometrics data coincides with one of the registered biometrics data of the database.
    Type: Grant
    Filed: May 15, 2001
    Date of Patent: July 17, 2007
    Assignee: NEC Corporation
    Inventor: Kaoru Uchida
  • Patent number: 7246376
    Abstract: In a networked environment, where multiple Internet Service Providers and multi-vendor equipment are involved in e-Business services and applications offering, the risk of overloading the Internet devices are real and security management is a challenge. Internet device traffic overloads could result from spoof attacks, (Denial-of-Service (DoS) or Distributed DoS (DDoS) attacks), device failures, special events, or widespread loads above engineered levels. To solve the problem of Internet security management for integrated optical and wireless devices, a new apparatus and functions running on IP devices are defined in this invention. Each Internet device includes counters and thresholding feature to manage the security attacks and prevent failure of the device being attacked.
    Type: Grant
    Filed: April 3, 2002
    Date of Patent: July 17, 2007
    Assignee: Nortel Networks Limited
    Inventor: Omayma E. Moharram
  • Patent number: 7237113
    Abstract: Transmitting routing information includes sending first and second messages from a router. The first message includes a digest of the routing information using a first authentication key and a first sequence identifier. The second message, which is sent after the first message, includes a digest of the routing information using a second authentication key and a second sequence identifier that is earlier in a sequence than the first sequence identifier.
    Type: Grant
    Filed: December 11, 2000
    Date of Patent: June 26, 2007
    Assignee: Intel Corporation
    Inventor: Jacek Szyszko
  • Patent number: 7234166
    Abstract: The invention relates to event sequence detection suitable for an intrusion detection system (IDS), for example. An event sequence including two or more stages in order, each of the stages including one or more events, is defined. Also defined is a filtering function for each of the stages, each filtering function providing a TRUE indication, when one of the events belonging to the respective event is received, and a FALSE indication otherwise. Still further at least one binding function for each of the stages is defined such that a pair of binding functions in two successive stages links the events in these two successive stages. Received event data is continuously evaluated with the filtering functions. When the evaluation results in a TRUE indication from one of the filter functions, at least one key value is derived from the received event data by the corresponding at least one binding function.
    Type: Grant
    Filed: November 7, 2002
    Date of Patent: June 19, 2007
    Assignee: Stonesoft Corporation
    Inventor: Kari Nurmela
  • Patent number: 7231050
    Abstract: An encrypted file system that uses the encryption of files in a computer to restrict access to the files. Encrypted files are associated with a user. A decryption key is required in order to allow changes to be made to any of those files. Other files, such as those files which are less sensitive, may be unencrypted, and may be accessed even when the user is unavailable. These files may be read only files. A duplicate decryption technique may be allowed to allow access to the files, if the decryption key becomes unavailable. Certificates can verify access to the different files.
    Type: Grant
    Filed: January 5, 2001
    Date of Patent: June 12, 2007
    Inventor: Scott C. Harris
  • Patent number: 7225460
    Abstract: A method for privacy management includes providing a linked collection of interactive resources through which a user is able to exchange information with an enterprise that provides the resources, and assigning respective, non-uniform privacy policies to at least some of the resources regarding use of the information that is exchanged through the resources. The user, accessing a given one of the resources, is provided with the respective privacy policy for that resource. At least a portion of the information that is associated with the given one of the resources is exchanged with the user subject to the provided privacy policy.
    Type: Grant
    Filed: December 1, 2000
    Date of Patent: May 29, 2007
    Assignee: International Business Machine Corporation
    Inventors: Zeev Barzilai, Sergei Shmulyian, Stuart Feldman
  • Patent number: 7222235
    Abstract: An image processing system comprises an image providing apparatus which provides an image file, from which a digital watermark information can be extracted by using a watermark key that includes an authentication information which authenticates the image file provided by an valid provider, and the watermark key of the image file; and an image utilizing apparatus which extracts the digital watermark information from the image file provided by the image providing apparatus using the watermark key provided by the image providing apparatus, verifies whether the watermark key has been tampered or not using the authentication information in the watermark key, verifies whether the image file has been tampered or not using the verified watermark key, and displays the verified image file.
    Type: Grant
    Filed: March 30, 2000
    Date of Patent: May 22, 2007
    Assignee: Oki Electric Industry Co., Ltd.
    Inventor: Yasuhiro Mitsui
  • Patent number: 7210167
    Abstract: Described herein is an implementation of a technology for managing credentials. With an implementation, a credential manager is domain-authentication aware and concurrent authentications with multiple independent networks (e.g., domains) may be established and maintained. Moreover, a credential manager provides a credential model retrofit for legacy applications that only understand the password model. The manager provides a mechanism where the application is only a “blind courier” of credentials between the trusted part of the OS to the network and/or network resource. The manager fully insulates the application from “read” access to the credentials. This abstract itself is not intended to limit the scope of this patent. The scope of the present invention is pointed out in the appending claims.
    Type: Grant
    Filed: January 8, 2001
    Date of Patent: April 24, 2007
    Assignee: Microsoft Corporation
    Inventors: John E. Brezak, Clifford P. Van Dyke, John M. Hawkins, Klaus U. Schutz
  • Patent number: 7210036
    Abstract: A method for increasing the privacy of an e-mail message, comprises the steps of: a) providing a central Server (PS) which stores concordance tables between decryption key data and the different identification given to them by different users; b) at the Sender's terminal (ST), encrypting a message using an encryption key, and sending by e-mail the encrypted message to the Recipient (RIT); c) providing the RT with a Partial encryptionldecryption Key, which is the decryption key modified by a given Operator (OP); d) sending by the ST to said PS an Operator Identification (OI); belonging to ST, which identifies OP employed by ST to generate the encryption/decryption key, and which is obtained from the Operator Table stored at ST; e) at PS, obtaining OP from the Sender Operators Table stored at PS, using the OI; of ST sent to PS by ST; f) at PS, obtaining OI; of the RT, from the Recipient Operators Table stored at PS, using OP; g) sending to RT its OI, together with any additional data; b) at RT, receiving the en
    Type: Grant
    Filed: January 15, 2001
    Date of Patent: April 24, 2007
    Assignee: ELUV Holdings, Ltd
    Inventor: Kfir Luzzatto
  • Patent number: 7206410
    Abstract: A circuit for computing the inner of scalar product of two vectors in a finite Galois field defined by a generator polynomial, wherein each vector includes at least two elements belonging to said finite field, comprises one or more look-up tables storing digital words indicative of said possible combinations and said possible reductions. The digital words in question are defined as a function of the second elements of said vectors and the generator polynomial of the field. The input register(s) and the look-up table(s) are configured to co-operate in a plurality of subsequent steps to generate at each step a partial product result identified by at least one of digital word addressed in a corresponding look-up table as a function of the digital signals stored in the input register(s). The circuit also includes an accumulator unit for adding up the partial results generated at each step to give a final product result deriving from accumulation of said partial results.
    Type: Grant
    Filed: October 10, 2001
    Date of Patent: April 17, 2007
    Assignee: STMicroelectronics S.r.l.
    Inventors: Guido Bertoni, Luca Breveglieri, Pasqualina Fragneto
  • Patent number: 7203314
    Abstract: A method and apparatus for storing and retrieving program material for subsequent replay is disclosed.
    Type: Grant
    Filed: July 21, 2000
    Date of Patent: April 10, 2007
    Assignee: The DirecTV Group, Inc.
    Inventors: Raynold M. Kahn, Gregory J. Gagnon, David D. Ha, Peter M. Klauss, Christopher P. Curren, Thomas H. James
  • Patent number: 7203957
    Abstract: A method and system for implementing secure communications between a plurality of devices are provided. The method and system generally include the provision of at least one common encryption parameter to each of the plurality of devices, as well as an identification of the plurality of devices to one another. This information can be maintained and shared by interaction of the plurality of devices with a designated server device. In this way, a secure, point-to-point connection between at least two of the plurality of devices can be established.
    Type: Grant
    Filed: April 4, 2002
    Date of Patent: April 10, 2007
    Assignee: AT&T Corp.
    Inventors: Joel Balissat, Claude Galand, Jean-Francois Le Pennec, Jean-Marie Sommerlatt
  • Patent number: 7200232
    Abstract: A symmetric-key cryptographic technique capable of realizing both high-speed cryptographic processing having a high degree of parallelism, and alteration detection. The invention includes dividing plaintext composed of redundancy data and a message to generate plaintext blocks each having a predetermined length, generating a random number sequence based on a secret key, generating a random number block corresponding to one of the plaintext blocks from the random number sequence, outputting a feedback value obtained as a result of operation on the one plaintext block and the random number block, the feedback value being fed back for using in the operation on another plaintext block, and performing an encryption operation using the one plaintext block, random number block, and feedback value.
    Type: Grant
    Filed: March 28, 2001
    Date of Patent: April 3, 2007
    Assignee: Hitachi, Ltd.
    Inventors: Soichi Furuya, Kazuo Takaragi, Hiroyuki Kurumatani, Masashi Takahashi, Kunihiko Miyazaki, Hisayoshi Sato, Dai Watanabe
  • Patent number: 7200863
    Abstract: A system and method is provided for using a DNS server operating on a wide area network to enable an authorized reception device to receive (or be provided with) restricted content data associated with a particular wide area network address and redefine the domain name associated with a particular wide area network address. In a preferred embodiment of the present invention, an authorization application is adapted to provide the reception device with user-verification data, receive from the reception device verification data, and provide the filtering application with authorization data. The filtering application, which operates similarly to prior art DNS server systems, is further adapted to receive filtered data (i.e., password-required data and/or pseudo-domain-name data) and authorization data in order to provide an IP address of the content server to the reception device via a wide area network, such as the Internet.
    Type: Grant
    Filed: May 16, 2001
    Date of Patent: April 3, 2007
    Assignee: Hoshiko LLC
    Inventor: Gary Stephen Shuster
  • Patent number: 7197767
    Abstract: An information distribution system includes a portable electronic device, and an information management apparatus for storing both right information and information which corresponds to the portable electronic device and which indicates to whom a right belongs. By using a code unique to the portable electronic device to encrypt concert information as the right information to be offline-providable form, and providing a ticket code generated by the encryption so that it passes through an offline channel at least once, the distribution to each user of the encrypted information can be simplified.
    Type: Grant
    Filed: December 4, 2000
    Date of Patent: March 27, 2007
    Assignee: Sony Corporation
    Inventors: Susumu Kusakabe, Motoki Nakade, Isao Yamada
  • Patent number: 7197641
    Abstract: Apparatus and method of transmitting an electronic data set between a provider server and a user computer retrieves the electronic data set from the provider server with the aid of a server means and is analyzed and processed electronically in the server means. The processed electronic data set is transmitted by the server means to the user computer. The electronic data set is requested by means of the user computer form the provider server, but transmission to the user computer always is effected with involvement of the server means. In this manner retrieval of the electronic data set with cost can be controlled and logged for accounting purposes with the assistance of the server means.
    Type: Grant
    Filed: December 8, 2000
    Date of Patent: March 27, 2007
    Assignee: Webpay International AG
    Inventor: Norbert Stangl
  • Patent number: 7188365
    Abstract: A method and system for implementing secure network communications between a first device and a second device, at least one of the devices communicating with the other device via a firewall device, are provided. The method and system may include obtaining an encryption parameter that is shared by the first device, second device and firewall device. A data packet sent by the first device may then be copied within the firewall device, so that decryption of the copy of the data packet within a portion of the firewall device may take place. In particular, the portion of the firewall device in which decryption takes place is defined such that contents of the portion are inaccessible to an operator of the firewall device. Thus, scanning of the decrypted copy of the data packet for compliance with a predetermined criterion may take place within the firewall device, without an operator of the firewall device having access to the contents of the data packet to be transmitted.
    Type: Grant
    Filed: April 4, 2002
    Date of Patent: March 6, 2007
    Assignee: AT&T Corp.
    Inventors: Joel Balissat, Claude Galand, Jean-Francois Le Pennec, Jean-Marie Sommerlatt
  • Patent number: 7184549
    Abstract: To encrypt another piece of data during encrypting process of a certain piece of data, a memory 55 is provided in parallel with a feedback line 65 which feeds back data from an encrypting module 51using an encryption key K to a selector 54. When an interrupt IT for processing plaintext block data N1 is generated while plaintext block data M1 is processed, ciphertext block data C1 at timing of generation of the interrupt IT is made to be stored in a register 56. The ciphertext block data C1 stored in the memory 55 is made to be selected by the selector 54 at timing of completion of processing the plaintext block data N1, and processing the plaintext block data M1+1 is started.
    Type: Grant
    Filed: December 22, 2000
    Date of Patent: February 27, 2007
    Assignee: Mitsubishi Denki Kabushiki Kaisha
    Inventors: Toru Sorimachi, Toshio Tokita
  • Patent number: 7181762
    Abstract: A computer program product for a client computing system including a processor includes code that directs the processor to request a challenge from a authentication server, code that directs the processor to receive the challenge from the authentication server via a first secure communications channel, the challenge comprising an identity code, code that directs the processor to receive user authentication data from a user, code that directs the processor to determine a private key and a digital certificate in response to the user authentication data, code that directs the processor to form a digital signature in response to the identity code and the private key, code that directs the processor to communicate the digital signature to the authentication server, code that directs the processor to communicate the digital certificate to the authentication server, the digital certificate comprising a public key in an encrypted form, and code that directs the processor to communicate network user authentication dat
    Type: Grant
    Filed: June 28, 2001
    Date of Patent: February 20, 2007
    Assignee: Arcot Systems, Inc.
    Inventor: Robert A. Jerdonek