公开(公告)号：MY186786A

公开(公告)日：2021-08-20

申请号：MYPI2015702118

申请日：2015-06-23

Applicant: MIMOS BERHAD

Inventor： POH GEONG SEN ,  MOESFA SOEHEILA MOHAMAD ,  ALWYN GOH ,  NG KANG SIONG

IPC: G06F21/00 ,  H04L9/00

Abstract: The present invention relates to a method and system for data privacy in a scenario where a data owner (100) wishes to outsource storage of data to multiple remote data storage providers (110) in a private manner, in such a way that every data storage provider (110) only stores partial data of a document. This means no one data storage provider (110) is able to learn the content of any one or more documents outsourced among the data storage providers (110). Existing solutions mainly considered the problem of a data owner submitting storage of data to one data storage provider, for both single-keyword and conjunctive keyword searches. Given today the availability of various data storage providers, the present invention provides solution utilizing different index information in the form of tables and index query mechanisms for the case of direct segmentation and outsourcing with minimal involvement of the data storage providers (110). (Figure 1)

公开(公告)号：MY186315A

公开(公告)日：2021-07-08

申请号：MYPI2014702934

申请日：2014-10-03

Applicant: MIMOS BERHAD ,  SUNWAY UNIV

Inventor： ALWYN GOH ,  NG KANG SIONG ,  LEE KAY WIN ,  LATIFAH MAT NEN ,  DAVID NGO CHEK LING

IPC: G06F21/32 ,  H04L9/32

Abstract: The present invention provides a method of ZK masking and encoding on biometric data in discretised vector representation. The method comprises encoding (150) of a biometric vector-stream, as comprises a sequence of biometric vector-frames, during an authentication interaction between a client sub-system (220) and a server sub-system (240), wherein encoding of any particular biometric vector-frame is different from any other biometric vector-frame in vector-stream of interest; secure transmission of such an encoded biometric vector-stream as originating from a particular user of interest (210) operating the client (220) to the server (240); and then decoding (160) at the server (240) of the encoded biometric vector-stream as received from the client (220); further comprising limitation in capability of server (240) to undertake such decoding by subject to correct demonstrationng of private PKC credential corresponding to public credential stipulated by the user (210) during the authentication interaction. The method further comprises masking (140) of the biometric vector-stream such as to have no effect on subsequent biometric distance measurement (170); and further comprising masking function that is identically applicable on test biometric vectors and reference biometric vectors; and is dependent on a valuation of masking key, such valuation as presumed secret and exclusive to user of interest, and as further arises from output of one-way function acting on inputs inclusive, without limitation, of public credentials of server, and private credentials of user.

公开(公告)号：MY184944A

公开(公告)日：2021-04-30

申请号：MYPI2014702046

申请日：2014-07-24

Applicant: MIMOS BERHAD

Inventor： ALWYN GOH ,  NG KANG SIONG ,  SEA CHONG SEAK ,  THILLAI RAJ T RAMANATHAN

IPC: H04L9/08 ,  H04L9/32

Abstract: The present invention discloses a method and system for computation and verification of authentication parameters between two entities, an originating entity and a receiving entity, which in the embodiment of interest comprises a server (100), a client interface thereof (110), a human user (120) and a trusted system (130) deemed as such by the human user. The method comprises the user (120) authenticating the server (100) by visual comparison of an authentication code in numeric, symbolic, graphical or visual-interactive form computed by the server (100) in comparison to a plurality of reference codes computed on the trusted system (130); and reciprocally the server (100) authenticating the user (120) subsequent to transcription or transfer of an authentication code, as computed and displayed on the trusted system (130), to the client interface (110) and thenceforth to the server (100),by means of comparison of the test code to a plurality of reference codes computed on the server (100). The method of computation and verification of the authentication codes as aforesaid are by means of zero knowledge (ZK) transformation of time, location or service-specific information; with measurement or determination of time or location information as independently undertaken on server (100) and trusted system (130). The most illustrative drawing: FIGURE 1

公开(公告)号：MY184704A

公开(公告)日：2021-04-18

申请号：MYPI2014702836

申请日：2014-09-26

Applicant: MIMOS BERHAD

Inventor： KHAIRUL AZMI BIN ABU BAKAR ,  NG KANG SIONG ,  ALWYN GOH ,  BONG CHIN WEI ,  DEREK WILLIAM HOLTBY

IPC: H04L9/32

Abstract: The present invention relates to a system and method for authenticating a user based on user behaviour and environmental factors. The system (100) allows the user to access to an application server by evaluating the trust value of environmental and user behaviour factors. The system (100) comprises a Client Platform (101), an Authentication Gateway (102), an Authentication Server (103), an Application Server (104), and a Trust Engine (105). (Figure 1)

公开(公告)号：WO2016048129A3

公开(公告)日：2016-05-19

申请号：PCT/MY2015050098

申请日：2015-09-04

Applicant: MIMOS BERHAD

Inventor： ABU BAKAR KHAIRUL AZMI ,  NG KANG SIONG ,  ALWYN GOH ,  BONG CHIN WEI ,  DEREK WILLIAM HOLTBY

IPC: H04L9/32

CPC classification number: H04L63/105 ,  H04L9/3226 ,  H04L9/3263 ,  H04L63/102

Abstract: The present invention relates to a system and method for authenticating a user based on user behaviour and environmental factors. The system (100) allows the user to access to an application server by evaluating the trust value of environmental and user behaviour factors. The system (100) comprises a Client Platform (101), an Authentication Gateway (102), an Authentication Server (103), an Application Server (104), and a Trust Engine (105).

Abstract translation: 本发明涉及基于用户行为和环境因素对用户进行认证的系统和方法。 系统（100）允许用户通过评估环境和用户行为因素的信任值来访问应用服务器。 系统（100）包括客户端平台（101），认证网关（102），认证服务器（103），应用服务器（104）和信任引擎（105）。