公开(公告)号：BR112012018094A2

公开(公告)日：2016-05-03

申请号：BR112012018094

申请日：2011-01-24

Applicant: QUALCOMM INC

Inventor： ESCOTT ADRIAN ,  PALANIGOUNDER ANAND ,  ROSENBERG BRIAN M ,  ULUPINAR FATIH

IPC: H04B7/26 ,  H04W12/06 ,  H04W16/26

公开(公告)号：AU2011207450A1

公开(公告)日：2012-08-16

申请号：AU2011207450

申请日：2011-01-24

Applicant: QUALCOMM INC

Inventor： ESCOTT ADRIAN ,  PALANIGOUNDER ANAND ,  ULUPINAR FATIH ,  ROSENBERG BRIAN M

IPC: H04B7/26 ,  H04W12/06 ,  H04W16/26

Abstract: In order to mitigate the security risk posed by the insertion of a relay node within a communication network, both device authentication and subscriber authentication are performed on the relay node. Device and subscriber authentication may be bound together so that a relay node is granted access to operate within the network only if both device and subscriber authentication are successful. Additionally, a communication network (or authentication node) may further verify that a subscriber identifier (received as part of subscriber authentication) is associated with the corresponding device type (identified by the device identifier in the corresponding device authentication) as part of the subscriber authentication process.

公开(公告)号：WO2011133912A2

公开(公告)日：2011-10-27

申请号：PCT/US2011033642

申请日：2011-04-22

Applicant: QUALCOMM INC ,  ESCOTT ADRIAN EDWARD ,  PALANIGOUNDER ANAND ,  ROSENBERG BRIAN M

Inventor： ESCOTT ADRIAN EDWARD ,  PALANIGOUNDER ANAND ,  ROSENBERG BRIAN M

IPC: H04L29/06

CPC classification number: H04W12/06 ,  H04L63/0823 ,  H04L63/0869 ,  H04W48/02 ,  H04W76/02 ,  H04W88/02

Abstract: A method and apparatus are provided for a subsidizing service provider entity to personalize a subscriber device to ensure the subscriber device cannot be used in a network of a different service provider entity. As the service provider entity subsidizes the subscriber device, it desires to ensure that subscriber device is personalized such that the subscriber device may operate only in its network and not a network of a different service provider entity. The subscriber device is pre-configured with a plurality of provider-specific and/or unassociated root certificates by the manufacturer of the subscriber device. A communication service is established between the service provider entity and the subscriber device allowing for the mutual authentication of the subscriber device and the service provider entity. After mutual authentication, the service provider entity sends a command to the subscriber device to disable/delete some/all root certificates that are unassociated with the service provider entity.

Abstract translation: 提供了一种用于补贴服务提供商实体个性化用户设备以确保订户设备不能在不同服务提供商实体的网络中使用的方法和装置。 当服务提供商实体补贴订户设备时，它希望确保用户设备被个性化，使得用户设备可以仅在其网络而不是不同服务提供商实体的网络中操作。 订户设备由用户设备的制造商预先配置有多个提供商特定的和/或未相关的根证书。 在服务提供商实体和订户设备之间建立通信服务，允许用户设备和服务提供商实体的相互认证。 在相互认证之后，服务提供商实体向订户设备发送命令以禁用/删除与服务提供商实体不相关的一些/所有根证书。

公开(公告)号：WO2013070773A3

公开(公告)日：2013-12-12

申请号：PCT/US2012063953

申请日：2012-11-07

Applicant: QUALCOMM INC

Inventor： KOMAROMY DANIEL ,  GANTMAN ALEX ,  ROSENBERG BRIAN M ,  BALAKRISHNAN ARUN ,  GE RENWEI ,  ROSE GREGORY G ,  PALANIGOUNDER ANAND

IPC: G06F21/52

CPC classification number: G06F21/52 ,  G06F11/3037 ,  G06F11/3466 ,  G06F12/0811 ,  G06F12/0848 ,  G06F12/0875 ,  G06F12/14 ,  G06F21/554 ,  G06F21/566 ,  G06F2212/452

Abstract: Methods, devices, and systems for detecting return-oriented programming (ROP) exploits are disclosed. A system includes a processor, a main memory, and a cache memory. A cache monitor develops an instruction loading profile by monitoring accesses to cached instructions found in the cache memory and misses to instructions not currently in the cache memory. A remedial action unit terminates execution of one or more of the valid code sequences if the instruction loading profile is indicative of execution of an ROP exploit involving one or more valid code sequences. The instruction loading profile may be a hit/miss ratio derived from monitoring cache hits relative to cache misses. The ROP exploits may include code snippets that each include an executable instruction and a return instruction from valid code sequences.

Abstract translation: 公开了用于检测返回式编程（ROP）漏洞的方法，设备和系统。 系统包括处理器，主存储器和高速缓冲存储器。 高速缓存监视器通过监视对高速缓冲存储器中发现的高速缓存指令的访问来开发指令加载简档，并且错过当前不在缓存存储器中的指令。 如果指令加载简档指示涉及一个或多个有效代码序列的ROP利用的执行，补救动作单元终止一个或多个有效代码序列的执行。 指令加载简档可以是相对于高速缓存未命中从监视高速缓存命中得到的命中/未命中比率。 ROP利用可能包括代码段，每个代码片段都包含可执行指令和来自有效代码序列的返回指令。