公开(公告)号：US20180270055A1

公开(公告)日：2018-09-20

申请号：US15761102

申请日：2016-09-19

Applicant: GEMALTO SA

Inventor： Milan J. KRIZENECKY ,  Michael WEBSTER ,  Michal BOTKA

IPC: H04L9/08 ,  H04L9/32

CPC classification number: H04L9/0844 ,  H04L9/32 ,  H04L2209/42 ,  H04L2209/463

Abstract: Electronic voting including a registration authority server, an election authority server, and a voter-host computer connected to an electronic identity card associated with a voter casting a vote. The registration authority server computer and the secure electronic identity card establish a first cross-domain unlinkable pseudonym for the secure electronic identification token, the first cross-domain unlinkable pseudonym being unique to the electronic identity card and the registration authority. The registration authority writes a vote-eligibility attribute on the electronic identity card. The election authority server computer retrieves a second cross-domain unlinkable pseudonym and the vote-eligibility attribute from the electronic identity card, the second cross-domain unlinkable pseudonym being associated with the election authority, and writes an attribute on the electronic identity card indicative of receipt of a vote cast by the voter.

公开(公告)号：US20180219679A1

公开(公告)日：2018-08-02

申请号：US15744402

申请日：2016-07-13

Applicant: GEMALTO SA

Inventor： Georges DEBOIS ,  Aline GOUGET ,  Michael WEBSTER

IPC: H04L9/32

CPC classification number: H04L9/3213 ,  H04L9/321 ,  H04L9/3234 ,  H04L9/3263 ,  H04L63/0435 ,  H04L63/0442

Abstract: The present invention relates to a security management system for performing a secure transmission of data from a token to a service provider server by means of an identity provider server, wherein said security management system comprises: —said identity provider server which is adapted to: —open with said token a secure messaging channel by means of a General Authentication Procedure using at least one certificate; —receive via said secure messaging channel from said token enciphered data; —transmit to said service provider server said enciphered data; —said service provider server which is adapted to: —receive from said identity provider server enciphered data of said token; —decipher said enciphered data to extract said data; —said token which is adapted to: —encipher data; and —transmit via said secure messaging channel to said identity provider server said enciphered data.

公开(公告)号：US20150318992A1

公开(公告)日：2015-11-05

申请号：US14650676

申请日：2013-11-28

Applicant: GEMALTO SA

Inventor： Michael WEBSTER ,  Seppo POHJA ,  Timo PALO

IPC: H04L9/32 ,  H04L9/08

CPC classification number: H04L9/0894 ,  H04L9/08 ,  H04L9/321 ,  H04L9/3226 ,  H04L9/3236

Abstract: The present invention relates to a method to access a data store previously locked using a passphrase from a device. The method includes the following steps, when the user requests access to the data store: requesting the user to enter the personal code; generating an access code by applying a first function to at least the entered personal code; sending out, to the server, at least an identifier of the device and the access code; for the server, comparing the access code with the preliminary received first function; for the server, if the access code is correct, returning the passphrase to the device; and for the device, unlocking the data store using the received passphrase in combination with the entered personal code.

Abstract translation: 本发明涉及一种使用来自设备的密码短语来先前锁定的数据存储器的方法。 该方法包括以下步骤：当用户请求访问数据存储器时：请求用户输入个人代码; 通过对至少输入的个人代码应用第一功能来生成访问代码; 向服务器发送至少一个设备的标识符和访问代码; 对于服务器，将访问代码与初步接收的第一功能进行比较; 对于服务器，如果访问代码正确，则将密码返回到设备; 并且对于该设备，使用接收到的密码短语与输入的个人代码组合来解锁数据存储。