Patents by Inventor Min-Chih Kao

Min-Chih Kao has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).

  • Patent number: 8694772
    Abstract: A method and a system for managing network identity are provided. The method and the system realize a management mechanism of temporary identification (ID) and real ID, which simultaneously achieves functionalities such as anonymity, accounting, and authorization. A short-term certificate and a corresponding public/private key pair are used to protect a temporary ID usable for accounting. This protection prevents the temporary ID from theft. The user generates a digital signature in the reply to a charge schedule statement from the visited network. This procedure is incorporated into an existing authentication framework based on Transport Layer Security (TLS) in order to provide an undeniable payment mechanism. The payment mechanism is applicable in an environment of multiple network operators and reduces the difficulty of integrating network operators. The method and the system do not have to consult a certificate revocation list (CRL) for authentication and thus are able to shorten authentication time.
    Type: Grant
    Filed: October 20, 2008
    Date of Patent: April 8, 2014
    Assignee: Industrial Technology Research Institute
    Inventors: Min-Chih Kao, Ya-Wen Lee
  • Patent number: 7849314
    Abstract: A method and a system for secure authentication in a wireless network are provided. The method comprises the following steps. First, a network device and a client device of a wireless network authenticate each other with EAP-TLS. Wherein, the network device mentioned above is a gateway or an access point. Then, the network device and the client device generate a TLS master secret jointly. In addition, the method uses a distributed mechanism to prevent the consequences of the failure of a single AAA server, and to alleviate the consequences resulting from a violated network device. Furthermore, the method includes a multiple time digital signature mechanism achieved by performing multiple times of one-way hash operation to enable verification and revocation of certificate.
    Type: Grant
    Filed: April 24, 2006
    Date of Patent: December 7, 2010
    Assignee: Industrial Technology Research Institute
    Inventors: Min-Chih Kao, Ya-Wen Lee, Yi-Shiung Yeh, Chen-Hwa Song
  • Publication number: 20100031030
    Abstract: A method and a system for managing network identity are provided. The method and the system realize a management mechanism of temporary identification (ID) and real ID, which simultaneously achieves functionalities such as anonymity, accounting, and authorization. A short-term certificate and a corresponding public/private key pair are used to protect a temporary ID usable for accounting. This protection prevents the temporary ID from theft. The user generates a digital signature in the reply to a charge schedule statement from the visited network. This procedure is incorporated into an existing authentication framework based on Transport Layer Security (TLS) in order to provide an undeniable payment mechanism. The payment mechanism is applicable in an environment of multiple network operators and reduces the difficulty of integrating network operators. The method and the system do not have to consult a certificate revocation list (CRL) for authentication and thus are able to shorten authentication time.
    Type: Application
    Filed: October 20, 2008
    Publication date: February 4, 2010
    Applicant: INDUSTRIAL TECHNOLOGY RESEARCH INSTITUTE
    Inventors: Min-Chih Kao, Y a-Wen Lee
  • Publication number: 20070162958
    Abstract: A method and a system for secure authentication in a wireless network are provided. The method comprises the following steps. First, a network device and a client device of a wireless network authenticate each other with EAP-TLS. Wherein, the network device mentioned above is a gateway or an access point. Then, the network device and the client device generate a TLS master secret jointly. In addition, the method uses a distributed mechanism to prevent the consequences of the failure of a single AAA server, and to alleviate the consequences resulting from a violated network device. Furthermore, the method includes a multiple time digital signature mechanism achieved by performing multiple times of one-way hash operation to enable verification and revocation of certificate.
    Type: Application
    Filed: April 24, 2006
    Publication date: July 12, 2007
    Inventors: Min-Chih Kao, Ya-Wen Lee, Yi-Shiung Yeh, Chen-Hwa Song