US Patent No: 7,165,181
Number of patents in Portfolio can not be more than 2000
System and method for establishing trust without revealing identity
Stats
-
Jan 16, 2007
Issued date -
Nov 27, 2002
filing date -
10/306,336
serial no -
In Force
status
Importance
Loading Importance Indicators...
Abstract
One aspect of an embodiment of the invention provides a method, system, and device to prove to a challenger that a prover device has a signature from a device manufacturer without revealing the signature to the challenger. According to one implementation, a challenger is provided with the result of a one-way function of a secret held by a prover device. An interactive proof is employed, between the prover device and the challenger, to prove to the challenger that the secret used in the one-way function has been signed by a device signature without revealing the secret or the device signature or the prover device's identity to the challenger.
Loading the Abstract Image...
First Claim
Related Publications
Loading Related Publications...
International Classification(s)
- [Classification Symbol]
- [Patents Count]
Cited Art
| Patent Info | (Count) | # Cites | Year |
|---|---|---|---|
|
|
|||
| 5,075,842 Disabling tag bit recognition and allowing privileged operations to occur in an object-oriented memory protection mechanism | 114 | 1989 | |
| 5,455,909 Microprocessor with operation capture facility | 90 | 1992 | |
| 5,386,552 Preservation of a computer system processing state in a mass storage device | 180 | 1994 | |
| 5,568,552 Method for providing a roving software license from one node to another node | 385 | 1995 | |
| 5,805,712 Apparatus and method for providing secured communications | 246 | 1995 | |
| 5,835,594 Methods and apparatus for preventing unauthorized write access to a protected non-volatile storage | 137 | 1996 | |
| 5,729,760 System for providing first type access to register if processor in first mode and second type access to register if processor not in first mode | 117 | 1996 | |
| 5,844,986 Secure BIOS | 247 | 1996 | |
| 5,937,063 Secure boot | 169 | 1996 | |
| 5,903,752 Method and apparatus for embedding a real-time multi-tasking kernel in a non-real-time operating system | 103 | 1996 | |
| 5,852,717 Performance optimizations for computer networks utilizing HTTP | 239 | 1996 | |
| 5,757,919 Cryptographically protected paging subsystem | 190 | 1996 | |
| 5,978,481 Modem compatible method and apparatus for encrypting data that is transparent to software applications | 93 | 1997 | |
| 6,058,478 Apparatus and method for a vetted field upgrade | 115 | 1997 | |
| 6,175,925 Tamper resistant player for scrambled contents | 116 | 1997 | |
| 6,178,509 Tamper resistant methods and apparatus | 125 | 1997 | |
| 6,205,550 Tamper resistant methods and apparatus | 123 | 1997 | |
| 5,970,147 System and method for configuring and registering a cryptographic device | 157 | 1997 | |
| 6,357,004 System and method for ensuring integrity throughout post-processing | 105 | 1997 | |
| 6,249,872 Method and apparatus for increasing security against unauthorized write access to a protected memory | 95 | 1998 | |
| 6,192,455 Apparatus and method for preventing access to SMRAM space through AGP addressing | 109 | 1998 | |
| 6,173,417 Initializing and restarting operating systems | 147 | 1998 | |
| 6,115,816 Optimized security functionality in an electronic system | 115 | 1998 | |
| 6,463,535 System and method for verifying the integrity and authorization of software before execution in a local platform | 172 | 1998 | |
| 6,282,650 Secure public digital watermark | 144 | 1999 | |
| 6,389,537 Platform and method for assuring integrity of trusted agent communications | 197 | 1999 | |
| 6,633,981 Electronic system and method for controlling access through user authentication | 107 | 1999 | |
| 6,535,988 System for detecting over-clocking uses a reference signal thereafter preventing over-clocking by reducing clock rate | 99 | 1999 | |
| 6,374,317 Method and apparatus for initializing a computer interface | 107 | 1999 | |
| 6,507,904 Executing isolated mode instructions in a secure system running in privilege rings | 116 | 2000 | |
| 6,633,963 Controlling access to multiple memory zones in an isolated execution environment | 129 | 2000 | |
| 6,678,825 Controlling access to multiple isolated memories in an isolated execution environment | 87 | 2000 | |
| 2003/0126,453 Processor supporting execution of an authenticated code instruction | 79 | 2001 | |
|
|
|||
| 4,207,609 Method and means for path independent device reservation and reconnection in a multi-CPU and shared device access system | 227 | 1978 | |
| 4,366,537 Authorization mechanism for transfer of program control or data between different address spaces having different storage protect keys | 123 | 1980 | |
| 5,230,069 Apparatus and method for providing private and shared access to host address and data spaces by guest programs in a virtual machine computer system | 117 | 1990 | |
| 5,237,616 Secure computer system having privileged and unprivileged memories | 101 | 1992 | |
| 5,317,705 Apparatus and method for TLB purge reduction in a multi-level machine system | 124 | 1993 | |
| 5,555,385 Allocation of address spaces within virtual machine compute system | 134 | 1993 | |
| 5,564,040 Method and apparatus for providing a server function in a logically partitioned hardware machine | 161 | 1994 | |
| 5,560,013 Method of using a target processor to execute programs of a source architecture that uses multiple address spaces | 173 | 1994 | |
| 5,555,414 Multiprocessing system including gating of host I/O and external enablement to guest enablement at polling intervals | 114 | 1994 | |
| 5,764,969 Method and system for enhanced management operation utilizing intermixed user level and supervisory level instructions with partial concept synchronization | 93 | 1995 | |
| 5,809,546 Method for managing I/O buffers in shared storage by structuring buffer table having entries including storage keys for controlling accesses to the buffers | 90 | 1996 | |
| 5,854,913 Microprocessor with an architecture mode control capable of supporting extensions of two distinct instruction-set architectures | 147 | 1997 | |
| 6,175,924 Method and apparatus for protecting application data in secure storage areas | 129 | 1997 | |
| 5,956,408 Apparatus and method for secure distribution of data | 144 | 1998 | |
| 6,615,278 Cross-platform program, system, and method having a global registry object for mapping registry equivalent functions in an OS/2 operating system environment | 88 | 1999 | |
| 2002/0133,701 Method for tracing traitor receivers in a broadcast encryption system | 2001 | ||
|
|
|||
| 4,825,052 Method and apparatus for certifying services obtained using a portable carrier such as a memory card | 150 | 1986 | |
| 4,795,893 Security device prohibiting the function of an electronic data processing unit after a first cutoff of its electrical power | 88 | 1987 | |
| 4,907,270 Method for certifying the authenticity of a datum exchanged between two devices connected locally or remotely by a transmission line | 104 | 1988 | |
| 4,907,272 Method for authenticating an external authorizing datum by a portable object, such as a memory card | 87 | 1988 | |
| 5,293,424 Secure memory card | 217 | 1992 | |
| 5,434,999 Safeguarded remote loading of service programs by authorizing loading in protected memory zones in a terminal | 91 | 1993 | |
| 5,479,509 Method for signature of an information processing file, and apparatus for implementing it | 202 | 1994 | |
| 5,533,126 Key protection device for smart cards | 79 | 1994 | |
| 5,528,231 Method for the authentication of a portable object by an offline terminal, and apparatus for implementing the process | 90 | 1994 | |
| 5,442,645 Method for checking the integrity of a program or data, and apparatus for implementing this method | 169 | 1994 | |
| 5,566,323 Data processing system including programming voltage inhibitor for an electrically erasable reprogrammable nonvolatile memory | 82 | 1994 | |
| 5,867,577 Method and apparatus for authenticating a data carrier intended to enable a transaction or access to a service or a location, and corresponding carrier | 94 | 1995 | |
| 5,825,875 Process for loading a protected storage zone of an information processing device, and associated device | 112 | 1995 | |
| 5,796,835 Method and system for writing information in a data carrier making it possible to later certify the originality of this information | 68 | 1997 | |
|
|
|||
| 5,319,760 Translation buffer for virtual machines with address space match | 143 | 1991 | |
| 5,522,075 Protection ring extension for computers having distinct virtual machine monitor and virtual machine address spaces | 126 | 1994 | |
| 5,421,006 Method and apparatus for assessing integrity of computer system software | 415 | 1994 | |
| 5,668,971 Posted disk read operations performed by signalling a disk read complete to the system prior to completion of data transfer | 107 | 1996 | |
| 6,055,637 System and method for accessing enterprise-wide resources by presenting to the resource a temporary credential | 293 | 1996 | |
| 5,737,604 Method and apparatus for independently resetting processors and cache controllers in multiple processor systems | 105 | 1996 | |
| 6,061,794 System and method for performing secure device communications in a peer-to-peer bus architecture | 221 | 1997 | |
| 6,378,072 Cryptographic system | 200 | 1998 | |
| 6,125,430 Virtual memory allocation in a virtual address space having an inaccessible gap | 130 | 1998 | |
| 6,275,933 Security system for a computerized apparatus | 89 | 1999 | |
| 6,988,250 Trusted computing platform using a trusted device assembly | 44 | 2000 | |
|
|
|||
| 4,975,836 Virtual computer system | 102 | 1985 | |
| 4,802,084 Address translator | 97 | 1986 | |
| 5,187,802 Virtual machine system with vitual machine resetting store indicating that virtual machine processed interrupt without virtual machine control program intervention | 92 | 1989 | |
| 5,295,251 Method of accessing multiple virtual address spaces and computer system | 85 | 1990 | |
| 5,437,033 System for recovery from a virtual machine monitor failure with a continuous guest dispatched to a nonguest mode | 130 | 1991 | |
| 5,511,217 Computer system of virtual machines sharing a vector processor | 109 | 1993 | |
| 5,506,975 Virtual machine I/O interrupt control method compares number of pending I/O interrupt conditions for non-running virtual machines with predetermined number | 108 | 1993 | |
| 5,628,022 Microcomputer with programmable ROM | 91 | 1994 | |
| 5,504,922 Virtual machine with hardware display controllers for base and target machines | 97 | 1994 | |
|
|
|||
| 5,815,665 System and method for providing trusted brokering services over a distributed network | 545 | 1996 | |
| 6,473,800 Declarative permission requests in a computer system | 177 | 1998 | |
| 6,327,652 Loading and identifying a digital rights management operating system | 382 | 1999 | |
| 6,330,670 Digital rights management operating system | 389 | 1999 | |
| 6,609,199 Method and apparatus for authenticating an open system application to a portable IC device | 163 | 1999 | |
| 6,651,171 Secure execution of program code | 135 | 1999 | |
|
|
|||
| 5,255,379 Method for automatically transitioning from V86 mode to protected mode in a computer system using an Intel 80386 or 80486 processor | 141 | 1990 | |
| 5,935,242 Method and apparatus for initializing a device | 124 | 1996 | |
| 5,987,557 Method and apparatus for implementing hardware protection domains in a system with no memory management unit (MMU) | 135 | 1997 | |
| 6,035,374 Method of executing coded instructions in a multiprocessor having shared execution resources including active, nap, and sleep states in accordance with cache miss latency | 90 | 1997 | |
| 6,131,166 System and method for cross-platform application level power management | 140 | 1999 | |
|
|
|||
| 6,093,213 Flexible implementation of a system management mode (SMM) in a processor | 94 | 1996 | |
| 6,044,478 Cache with finely granular locked-down regions | 135 | 1997 | |
| 2002/0147,916 Method and apparatus for securing portions of memory | 79 | 2001 | |
|
|
|||
| 6,421,702 Interrupt driven isochronous task scheduler system | 91 | 1998 | |
| 6,499,123 Method and apparatus for debugging an integrated circuit | 128 | 2000 | |
|
|
|||
| 6,321,314 Method and apparatus for restricting memory access | 138 | 1999 | |
| 6,397,379 Recording in a program execution profile references to a memory-mapped active device | 160 | 1999 | |
|
|
|||
| 6,463,537 Modified computer motherboard security and identification system | 144 | 1999 | |
| 2003/0018,892 Computer with a modified north bridge, security engine and smart card having a secure boot capability and method for secure booting a computer | 108 | 2001 | |
|
|
|||
| 4,347,565 Address control system for software simulation | 114 | 1979 | |
| 5,361,375 Virtual computer system having input/output interrupt control of virtual machines | 114 | 1993 | |
|
|
|||
| 6,339,815 Microcontroller system having allocation circuitry to selectively allocate and/or hide portions of a program memory address space | 131 | 1998 | |
| 6,505,279 Microcontroller system having security circuitry to selectively lock portions of a program memory address space | 90 | 1998 | |
|
|
|||
| 5,022,077 Apparatus and method for preventing unauthorized access to BIOS in a personal computer system | 184 | 1989 | |
| 6,684,326 Method and system for authenticated boot operations in a computer system of a networked computing environment | 108 | 1999 | |
|
|
|||
| 5,615,263 Dual purpose security architecture with protected internal operating system | 166 | 1995 | |
| 6,188,257 Power-on-reset logic with secure power down capability | 89 | 1999 | |
|
|
|||
| 5,706,469 Data processing system controlling bus access to an arbitrary sized memory area | 85 | 1995 | |
| 6,101,584 Computer system and semiconductor device on one chip including a memory and central processing unit for making interlock access to the memory | 92 | 1997 | |
|
|
|||
| 4,276,594 Digital computer with multi-processor capability utilizing intelligent composite memory and input/output modules and method for performing the same | 175 | 1978 | |
| 4,307,447 Programmable controller | 142 | 1979 | |
|
|
|||
| 6,148,379 System, method and computer program product for page sharing between fault-isolated cells in a distributed shared memory system | 99 | 1997 | |
| 6,182,089 Method, system and computer program product for dynamically allocating large memory pages of different sizes | 108 | 1997 | |
|
|
|||
| 6,269,392 Method and apparatus to monitor and locate an electronic device using a secured intelligent agent | 140 | 1997 | |
|
|
|||
| 6,529,909 Method for translating an object attribute converter in an information services patterns environment | 344 | 1999 | |
|
|
|||
| 5,574,936 Access control mechanism controlling access to and logical purging of access register translation lookaside buffer (ALB) in a computer system | 93 | 1995 | |
|
|
|||
| 5,752,046 Power management system for computer device interconnection bus | 116 | 1996 | |
|
|
|||
| 5,459,867 Kernels, description tables, and device drivers | 188 | 1993 | |
|
|
|||
| 5,978,475 Event auditing system | 174 | 1997 | |
|
|
|||
| 5,825,880 Multi-step digital signature method and system | 189 | 1997 | |
|
|
|||
| 6,282,651 Security system protecting data with an encryption key | 94 | 1999 | |
|
|
|||
| 6,560,627 Mutual exclusion at the record level with priority inheritance for embedded systems using one semaphore | 86 | 1999 | |
|
|
|||
| 4,278,837 Crypto microprocessor for executing enciphered programs | 427 | 1979 | |
|
|
|||
| 5,657,445 Apparatus and method for limiting access to mass storage devices in a computer system | 153 | 1996 | |
|
|
|||
| 6,222,923 Method for securing system protected by a key hierarchy | 106 | 1997 | |
|
|
|||
| 4,319,323 Communications device for data processing system | 113 | 1980 | |
|
|
|||
| 5,287,363 System for locating and anticipating data storage media failures | 121 | 1991 | |
|
|
|||
| 6,363,485 Multi-factor biometric authenticating device and method | 154 | 1998 | |
|
|
|||
| 5,737,760 Microcontroller with security logic circuit which prevents reading of internal memory by external program | 142 | 1995 | |
|
|
|||
| 6,339,816 Method for improving controllability in data processing system with address translation | 91 | 2000 | |
|
|
|||
| 5,900,606 Method of writing information securely in a portable medium | 73 | 1996 | |
|
|
|||
| 5,953,502 Method and apparatus for enhancing computer system security | 165 | 1997 | |
|
|
|||
| 4,571,672 Access control method for multiprocessor systems | 130 | 1983 | |
|
|
|||
| 2001/0027,527 Secure transaction system | 166 | 2001 | |
|
|
|||
| 6,199,152 Translated memory protection apparatus for an advanced microprocessor | 131 | 1996 | |
|
|
|||
| 5,890,189 Memory management and protection system for virtual memory in computer system | 132 | 1996 | |
|
|
|||
| 5,007,082 Computer software encryption apparatus | 151 | 1990 | |
|
|
|||
| 6,557,104 Method and apparatus for secure processing of cryptographic keys | 170 | 1997 | |
|
|
|||
| 4,319,233 Device for electrically detecting a liquid level | 82 | 1979 | |
|
|
|||
| 5,901,225 System and method for performing software patches in embedded systems | 121 | 1996 | |
|
|
|||
| 6,085,296 Sharing memory pages and page tables among computer processes | 143 | 1997 | |
|
|
|||
| 5,740,178 Software for controlling a reliable backup memory | 83 | 1996 | |
|
|
|||
| 5,796,845 Sound field and sound image control apparatus and method | 99 | 1997 | |
|
|
|||
| 6,272,637 Systems and methods for protecting access to encrypted information | 104 | 1997 | |
|
|
|||
| 5,459,869 Method for providing protected mode services for device drivers and other resident software | 120 | 1994 | |
|
|
|||
| 6,445,797 Method and system for performing secure electronic digital streaming | 116 | 1998 | |
|
|
|||
| 5,469,557 Code protection in microcontroller with EEPROM fuses | 103 | 1993 | |
|
|
|||
| 6,138,239 Method and system for authenticating and utilizing secure resources in a computer system | 72 | 1998 | |
|
|
|||
| 5,684,948 Memory management circuit which provides simulated privilege levels | 101 | 1995 | |
|
|
|||
| 4,403,283 Extended memory system and method | 122 | 1980 | |
|
|
|||
| 6,252,650 Exposure apparatus, output control method for energy source, laser device using the control method, and method of producing microdevice | 91 | 2000 | |
|
|
|||
| 5,919,257 Networked workstation intrusion detection system | 291 | 1997 | |
|
|
|||
| 6,212,635 Network security system allowing access and modification to a security subsystem after initial installation when a master token is in place | 200 | 1998 | |
|
|
|||
| 5,935,247 Computer system having a genetic code that cannot be directly accessed and a method of maintaining the same | 83 | 1997 | |
|
|
|||
| 5,473,692 Roving software license for a hardware agent | 492 | 1994 | |
|
|
|||
| 5,582,717 Water dispenser with side by side filling-stations | 123 | 1993 | |
|
|
|||
| 6,412,035 Apparatus and method for decreasing the response times of interrupt service routines | 103 | 1998 | |
|
|
|||
| 5,872,994 Flash memory incorporating microcomputer having on-board writing function | 157 | 1996 | |
|
|
|||
| 4,217,444 Method of degassing polymers prepared by mass polymerizing a monomeric composition based on vinyl chloride | 68 | 1978 | |
|
|
|||
| 4,430,709 Apparatus for safeguarding data entered into a microprocessor | 90 | 1981 | |
|
|
|||
| 6,374,286 Real time processor capable of concurrently running multiple independent JAVA machines | 265 | 1998 | |
|
|
|||
| 6,282,657 Kernel mode protection | 115 | 1998 | |
|
|
|||
| 5,717,903 Method and appartus for emulating a peripheral device to allow device driver development before availability of the peripheral device | 111 | 1995 | |
|
|
|||
| 6,435,416 Method of authenticating a personal code of a user of an integrated circuit card | 71 | 2000 | |
|
|
|||
| 6,308,270 Validating and certifying execution of a software program with a smart card | 92 | 1998 | |
|
|
|||
| 4,910,774 Method and system for suthenticating electronic memory cards | 138 | 1988 | |
|
|
|||
| 6,301,646 Pointer verification system and method | 92 | 1999 | |
|
|
|||
| 6,088,262 Semiconductor device and electronic equipment having a non-volatile memory with a security function | 97 | 1998 | |
|
|
|||
| 4,247,905 Memory clear system | 89 | 1977 | |
|
|
|||
| 6,292,874 Memory management method and apparatus for partitioning homogeneous memory and restricting access of installed applications to predetermined memory ranges | 148 | 1999 | |
|
|
|||
| 6,014,745 Protection for customer programs (EPROM) | 100 | 1997 | |
|
|
|||
| 6,092,095 Real-time task manager for a personal computer | 131 | 1996 | |
|
|
|||
| 4,419,724 Main bus interface package | 92 | 1980 | |
|
|
|||
| 6,378,068 Suspend/resume capability for a protected mode microprocesser | 150 | 1995 | |
|
|
|||
| 5,721,222 Heterocyclic ketones | 68 | 1995 | |
|
|
|||
| 6,158,546 Straight through muffler with conically-ended output passage | 104 | 1999 | |
|
|
|||
| 4,521,852 Data processing device formed on a single semiconductor substrate having secure memory | 113 | 1982 | |
|
|
|||
| 6,075,938 Virtual machine monitors for scalable multiprocessors | 328 | 1998 | |
|
|
|||
| 6,108,644 System and method for electronic transactions | 148 | 1998 | |
|
|
|||
| 5,680,547 Method and apparatus for controlling network and workstation access prior to workstation boot | 139 | 1995 | |
|
|
|||
| 5,079,737 Memory management unit for the MIL-STD 1750 bus | 93 | 1988 | |
|
|
|||
| 4,759,064 Blind unanticipated signature systems | 220 | 1985 | |
|
|
|||
| 6,397,242 Virtualization system including a virtual machine monitor for a computer with a segmented architecture | 267 | 1998 | |
|
|
|||
| 5,606,617 Secret-key certificates | 193 | 1994 | |
|
|
|||
| 6,314,409 System for controlling access and distribution of digital property | 416 | 1998 | |
|
|
|||
| 5,720,609 Catalytic method | 70 | 1996 | |
| 6,272,533 Secure computer system and method of providing secure access to a computer system including a stand alone switch operable to inhibit data corruption on a storage device | 127 | 1999 | |
| 2001/0037,450 System and method for process protection | 155 | 2001 | |
| 2009/0132,648 CONTENT DELIVERY AND GLOBAL TRAFFIC MANAGEMENT NETWORK SYSTEM | 2009 | ||
| 2009/0132,648 CONTENT DELIVERY AND GLOBAL TRAFFIC MANAGEMENT NETWORK SYSTEM | 2009 | ||
| 2009/0132,648 CONTENT DELIVERY AND GLOBAL TRAFFIC MANAGEMENT NETWORK SYSTEM | 2009 | ||
| 2009/0132,648 CONTENT DELIVERY AND GLOBAL TRAFFIC MANAGEMENT NETWORK SYSTEM | 2009 | ||
| 2009/0132,648 CONTENT DELIVERY AND GLOBAL TRAFFIC MANAGEMENT NETWORK SYSTEM | 2009 | ||
Patent Citation Ranking
Maintenance Fees
| Fee | Large entity fee | small entity fee | micro entity fee | due date |
|---|---|---|---|---|
| 7.5 Year Payment | $3600.00 | $1800.00 | $900.00 | Jul 16, 2014 |
| 11.5 Year Payment | $7400.00 | $3700.00 | $1850.00 | Jul 16, 2018 |
| Fee | Large entity fee | small entity fee | micro entity fee |
|---|---|---|---|
| Surcharge - 7.5 year - Late payment within 6 months | $160.00 | $80.00 | $40.00 |
| Surcharge - 11.5 year - Late payment within 6 months | $160.00 | $80.00 | $40.00 |
| Surcharge after expiration - Late payment is unavoidable | $700.00 | $350.00 | $175.00 |
| Surcharge after expiration - Late payment is unintentional | $1,640.00 | $820.00 | $410.00 |