公开(公告)号：US10089404B2

公开(公告)日：2018-10-02

申请号：US13399576

申请日：2012-02-17

Applicant: Phil Libin ,  Phil Constantinou ,  Dmitry Stavisky ,  Alex Pachikov ,  Pavel Skaldin ,  Andrew Sinkov ,  Jakob Bignert

Inventor： Phil Libin ,  Phil Constantinou ,  Dmitry Stavisky ,  Alex Pachikov ,  Pavel Skaldin ,  Andrew Sinkov ,  Jakob Bignert

IPC: G06F7/00 ,  G06F17/30

Abstract: A system is provided for presenting users with relevant personalized and/or customized information whenever a visitor visits a website or performs an Internet search. The described system described herein advantageously provides for the saving (clipping) of website information as an integrated part of a visitor's browsing experience. The user may be presented with either a suggested list of notebooks and/or a suggested list of tags for the website informationa. The content of the website information that is clipped may be advantageously controlled by a website owner/publisher. Using website clips, identified as “notes,” previously stored by a visitor, currently displayed website content may be accordingly modified in connection with identified relevant notes and/or a notification may be displayed on the current website for a particular visitor identifying stored relevant notes of the visitor.

公开(公告)号：US08327149B2

公开(公告)日：2012-12-04

申请号：US12657791

申请日：2010-01-27

Applicant: Silvio Micali ,  Phil Libin ,  Brandon Volbright

Inventor： Silvio Micali ,  Phil Libin ,  Brandon Volbright

IPC: H04L9/32

CPC classification number: H04L9/3247 ,  H04L9/3265 ,  H04L2209/56

Abstract: Indicating data currentness includes, on any date of a sequence of dates, issuing a proof indicating the currentness status of the data during a particular time interval. The proof may be a digital signature. The time interval may be in the form of a current date and an amount of time. The proof may include a digital signature of the time interval. The proof may include a digital signature of the time interval and the data. The proof may include a digital signature of the time interval and a compact form of the data, such as a hash. Indicating data currentness may also include distributing the proofs to a plurality of unsecure units that respond to requests by users for the proofs. Indicating data currentness may also include gathering a plurality of separate pieces of data and providing a single proof for the separate pieces of data. The data may be electronic documents.

Abstract translation: 指示数据电流包括在日期序列的任何日期，在特定时间间隔内发出指示数据的当前状态的证明。 证明可能是数字签名。 时间间隔可以是当前日期和时间量的形式。 证明可以包括时间间隔的数字签名。 该证明可以包括时间间隔和数据的数字签名。 证明可以包括时间间隔的数字签名和诸如散列的紧凑形式的数据。 指示数据电流还可以包括将证明分发到响应用户对证明的请求的多个不安全单元。 指示数据电流还可以包括收集多个单独的数据片段，并为单独的数据片提供单一证明。 数据可以是电子文件。

公开(公告)号：US20120274444A1

公开(公告)日：2012-11-01

申请号：US13399480

申请日：2012-02-17

Applicant: Silvio Micali ,  David Engberg ,  Phil Libin ,  Leo Reyzin ,  Alex Sinelnikov

Inventor： Silvio Micali ,  David Engberg ,  Phil Libin ,  Leo Reyzin ,  Alex Sinelnikov

IPC: G05B19/00

CPC classification number: G07C9/00031 ,  G07C9/00134

Abstract: A system and method are disclosed for controlling physical access through a digital certificate validation process that works with standard certificate formats and that enables a certifying authority (CA) to prove the validity status of each certificate C at any time interval (e.g., every day, hour, or minute) starting with C's issue date, D1. C's time granularity may be specified within the certificate itself, unless it is the same for all certificates. For example, all certificates may have a one-day granularity with each certificate expires 365 days after issuance. Given certain initial inputs provided by the CA, a one-way hash function is utilized to compute values of a specified byte size that are included on the digital certificate and to compute other values that are kept secret and used in the validation process.

Abstract translation: 公开了一种用于通过数字证书验证过程来控制物理访问的系统和方法，所述数字证书验证过程使用标准证书格式，并且使得认证机构（CA）可以在任何时间间隔（例如，每天， 小时或分钟），从C的发行日期开始，D1。 C的时间粒度可以在证书本身内指定，除非对所有证书是相同的。 例如，所有证书可能具有一天的粒度，每个证书在发布后365天到期。 给定由CA提供的某些初始输入，单向散列函数用于计算数字证书中包含的指定字节大小的值，并计算保密并在验证过程中使用的其他值。

公开(公告)号：US07966487B2

公开(公告)日：2011-06-21

申请号：US11032520

申请日：2005-01-10

Applicant: David Engberg ,  Phil Libin ,  Silvio Micali

Inventor： David Engberg ,  Phil Libin ,  Silvio Micali

IPC: H04L9/32 ,  G06F7/04 ,  G06F17/30

CPC classification number: H04L9/3268 ,  H04L9/3247 ,  H04L2209/56 ,  H04L2209/80

Abstract: Facilitating a transaction between a first party and a second party includes, prior to initiating the transaction, one of the parties obtaining an artificially pre-computed OCSP response about a specific digital certificate, where the artificially pre-computed OCSP response is generated by an entity other than the first party and the second party, one of the parties initiating the transaction, in connection with the transaction, the first party providing the specific digital certificate to the second party, and the second party verifying the specific digital certificate using the artificially pre-computed OCSP response. The second party may obtain the artificially pre-computed OCSP response prior to the transaction being initiated. The second party may cache the artificially pre-computed OCSP response for future transactions. The first party may obtain the artificially pre-computed OCSP response prior to the transaction being initiated. The first party may cache the artificially pre-computed OCSP response for future transactions.

Abstract translation: 促进第一方和第二方之间的交易包括在发起交易之前，其中一方获得关于特定数字证书的人为预先计算的OCSP响应，其中人为地预先计算出的OCSP响应由实体产生 除了第一方和第二方之外，与交易相关的当事方之一发起交易，向第二方提供特定数字证书的第一方，以及使用人为预先验证特定数字证书的第二方 计算OCSP响应。 第二方可以在事务开始之前获得人为预先计算的OCSP响应。 第二方可以缓存人为预先计算的OCSP响应以供将来的交易使用。 第一方可以在交易开始之前获得人为预先计算的OCSP响应。 第一方可以缓存人为预先计算的OCSP响应以用于将来的交易。

公开(公告)号：US20100268956A1

公开(公告)日：2010-10-21

申请号：US12657791

申请日：2010-01-27

Applicant: Silvio Micali ,  Phil Libin ,  Brandon Volbright

Inventor： Silvio Micali ,  Phil Libin ,  Brandon Volbright

IPC: H04L9/32

CPC classification number: H04L9/3247 ,  H04L9/3265 ,  H04L2209/56

Abstract: Indicating data currentness includes, on any date of a sequence of dates, issuing a proof indicating the currentness status of the data during a particular time interval. The proof may be a digital signature. The time interval may be in the form of a current date and an amount of time. The proof may include a digital signature of the time interval. The proof may include a digital signature of the time interval and the data. The proof may include a digital signature of the time interval and a compact form of the data, such as a hash. Indicating data currentness may also include distributing the proofs to a plurality of unsecure units that respond to requests by users for the proofs. Indicating data currentness may also include gathering a plurality of separate pieces of data and providing a single proof for the separate pieces of data. The data may be electronic documents.

公开(公告)号：US07660994B2

公开(公告)日：2010-02-09

申请号：US10876275

申请日：2004-06-24

Applicant: Phil Libin ,  Silvio Micali

Inventor： Phil Libin ,  Silvio Micali

IPC: H04K1/00

CPC classification number: G06F21/33 ,  G06Q10/00 ,  G06Q90/00

Abstract: An administration entity controls access to an electronic device by generating credentials and a plurality of corresponding proofs, wherein no valid proofs are determinable given only the credentials and values for expired proofs. The electronic device receives the credentials and, if access is authorized at a particular time, the electronic device receives a proof corresponding to the particular time and confirms the proof using the credentials. A single administration entity may generate the credentials and generate the proofs and/or there may be a first administration entity that generates the credentials and other administration entities that generate proofs. The credentials may be a digital certificate that includes a final value that is a result of applying a one way function to a first one of the proofs.

Abstract translation: 管理实体通过生成凭证和多个对应的证明来控制对电子设备的访问，其中仅给出证明和过期证明的值，才能确定有效的证明。 电子设备接收凭证，并且如果在特定时间授权访问，则电子设备接收与特定时间相对应的证明，并且使用凭证来确认证明。 单个管理实体可以生成证书并生成证明和/或可以存在生成凭证的第一管理实体和产生证明的其他管理实体。 凭证可以是数字证书，其包括作为将单向函数应用于第一个证明的结果的最终值。

公开(公告)号：US20080211624A1

公开(公告)日：2008-09-04

申请号：US12069227

申请日：2008-02-08

Applicant: Silvio Micali ,  David Engberg ,  Phil Libin ,  Leo Reyzin ,  Alex Sinelnikov

Inventor： Silvio Micali ,  David Engberg ,  Phil Libin ,  Leo Reyzin ,  Alex Sinelnikov

IPC: H04L9/32

CPC classification number: H04L9/3236 ,  H04L9/007 ,  H04L9/3247 ,  H04L9/3263 ,  H04L2209/56 ,  H04L2209/805

Abstract: A system and method are disclosed for controlling physical access through a digital certificate validation process that works with standard certificate formats and that enables a certifying authority (CA) to prove the validity status of each certificate C at any time interval (e.g., every day, hour, or minute) starting with C's issue date, D1. C's time granularity may be specified within the certificate itself, unless it is the same for all certificates. For example, all certificates may have a one-day granularity with each certificate expires 365 days after issuance. Given certain initial inputs provided by the CA, a one-way hash function is utilized to compute values of a specified byte size that are included on the digital certificate and to compute other values that are kept secret and used in the validation process.

公开(公告)号：US07205882B2

公开(公告)日：2007-04-17

申请号：US10985348

申请日：2004-11-10

Applicant: Phil Libin

Inventor： Phil Libin

IPC: G05B19/00 ,  G06F7/00 ,  G08B29/00 ,  H04B1/00 ,  H04Q1/00

CPC classification number: H04W12/08 ,  G07C9/00103 ,  G07C9/00309 ,  G07C9/00817 ,  G07C2009/00825 ,  G07C2209/08 ,  G08C17/02 ,  G08C2201/21 ,  G08C2201/93 ,  G08C2201/94 ,  H04L63/0846

Abstract: Actuating a security system includes providing a first set of access codes to a wireless device and causing the wireless device to transmit the first set of access codes to a first controller that actuates the security system. The first set of access codes provided to the wireless device may expire. Actuating a security system may also include providing expiration dates for each of the first set of access codes provided to the wireless device. Actuating a security system may also include examining each of the expiration dates and, in response to a particular expiration date being prior to a current date, erasing from the wireless device a particular one of the first set of access codes that corresponds to the particular expiration date.

Abstract translation: 启动安全系统包括向无线设备提供第一组访问代码，并且使无线设备将第一组访问代码发送到致动安全系统的第一控制器。 提供给无线设备的第一组接入码可能会过期。 启动安全系统还可以包括为提供给无线设备的第一组访问代码中的每一个提供到期日期。 启动安全系统还可以包括检查每个到期日期，并且响应于在当前日期之前的特定有效期，从无线设备擦除与特定到期日期对应的第一组访问代码中的特定一个 日期。

公开(公告)号：US20150236861A1

公开(公告)日：2015-08-20

申请号：US14703176

申请日：2015-05-04

Applicant: David Engberg ,  Phil Libin ,  Silvio Micali

Inventor： David Engberg ,  Phil Libin ,  Silvio Micali

IPC: H04L9/32

CPC classification number: H04L9/3268 ,  H04L63/0823 ,  H04L2209/56

Abstract: Providing information about digital certificate validity includes ascertaining digital certificate validity status for each of a plurality of digital certificates in a set of digital certificates, generating a plurality of artificially pre-computed messages about the validity status of at least a subset of the set of digital certificate of the plurality of digital certificates, where at least one of the messages indicates validity status of more than one digital certificate and digitally signing the artificially pre-computed messages to provide OCSP format responses that respond to OCSP queries about specific digital certificates in the set of digital certificates, where at least one digital signature is used in connection with an OCSP format response for more than one digital certificate. Generating and digitally signing may occur prior to any OCSP queries that are answered by any of the OCSP format responses. Ascertaining digital certificate validity status may include obtaining authenticated information about digital certificates.

Abstract translation: 提供关于数字证书有效性的信息包括确定一组数字证书中的多个数字证书中的每一个的数字证书有效性状态，生成关于数字集合的至少一个子集的有效状态的多个人为预先计算的消息 多个数字证书的证书，其中至少一个消息指示多于一个数字证书的有效性状态，并对人为预先计算的消息进行数字签名，以提供响应于集合中的特定数字证书的OCSP查询的OCSP格式响应 数字证书，其中至少一个数字签名与多于一个数字证书的OCSP格式响应结合使用。 生成和数字签名可能发生在任何OCSP格式响应应答的任何OCSP查询之前。 确定数字证书的有效性状态可能包括获取关于数字证书的认证信息。

公开(公告)号：US08261319B2

公开(公告)日：2012-09-04

申请号：US10893174

申请日：2004-07-16

Applicant: Phil Libin ,  Silvio Micali ,  David Engberg

Inventor： Phil Libin ,  Silvio Micali ,  David Engberg

IPC: G06F7/04

CPC classification number: G05B1/00 ,  G07C9/00039 ,  G07C9/00103 ,  G07C9/00158 ,  H04L63/08 ,  H04L63/102 ,  H04L63/1416 ,  H04W4/021

Abstract: Logging events associated with accessing an area includes recording an event associated with accessing the area to provide an event recording and authenticating at least the event recording to provide an authenticated recording. Recording an event may include recording a time of the event. Recording an event may include recording a type of event. The event may be an attempt to access the area. Recording an event may include recording credentials/proofs used in connection with the attempt to access the area. Recording an event may include recording a result of the attempt. Recording an event may include recording the existence of data other than the credentials/proofs indicating that access should be denied. Recording an event may include recording additional data related to the area. Authenticating the recording may include digitally signing the recording. Authenticating at least the event recording may include authenticating the event recording and authenticating other event recordings to provide a single authenticated recording.

Abstract translation: 与访问区域相关联的记录事件包括记录与访问该区域相关联的事件以提供事件记录和至少认证事件记录以提供经认证的记录。 记录事件可能包括记录事件的时间。 记录事件可能包括记录一种事件。 该事件可能是访问该地区的尝试。 记录事件可能包括与访问该区域的尝试相关联的记录凭证/证明。 记录事件可能包括记录尝试的结果。 记录事件可以包括记录除了表示应该拒绝访问的凭据/证明之外的数据的存在。 记录事件可能包括记录与该区域相关的附加数据。 记录录制可能包括对录音进行数字签名。 至少验证事件记录可以包括认证事件记录和认证其他事件记录以提供单一的认证记录。