Electrical computers and digital processing systems: support – Data processing protection using cryptography
Reexamination Certificate
2007-11-20
2007-11-20
Smithers, Matthew (Department: 2137)
Electrical computers and digital processing systems: support
Data processing protection using cryptography
C713S168000, C713S185000, C713S190000, C713S193000, C726S009000, C726S020000, C340S005600, C379S211010
Reexamination Certificate
active
10608459
ABSTRACT:
Two embodiments of a method and system to maintain application data secure and authentication token for use therein are provided. The present invention uses transient authentication, in which a small hardware token continuously authenticates the user's presence over a short-range, wireless link. Four principles underlying transient authentication are described as well as the two embodiments for securing applications. In the first embodiment, applications are protected transparently by encrypting in-memory state when the user departs and decrypting this state when the user returns. This technique is effective, requiring just seconds to protect and restore an entire machine. In the second embodiment, applications utilize an API for transient authentication, protecting only sensitive state. Ports of three applications, PGP, SSH, and Mozilla are described with respect to this API.
REFERENCES:
patent: 5012514 (1991-04-01), Renton
patent: 5091939 (1992-02-01), Cole et al.
patent: 5226080 (1993-07-01), Cole et al.
patent: 5325430 (1994-06-01), Smyth et al.
patent: 5375243 (1994-12-01), Parzych et al.
patent: 5544321 (1996-08-01), Theimer et al.
patent: 5611050 (1997-03-01), Theimer et al.
patent: 5623637 (1997-04-01), Jones et al.
patent: 5657470 (1997-08-01), Fisherman et al.
patent: 5729608 (1998-03-01), Janson et al.
patent: 5757916 (1998-05-01), MacDoran et al.
patent: 5836010 (1998-11-01), Kim
patent: 5889866 (1999-03-01), Cyras et al.
patent: 6070240 (2000-05-01), Xydis
patent: 6088450 (2000-07-01), Davis et al.
patent: 6189099 (2001-02-01), Rallis et al.
patent: 6189105 (2001-02-01), Lopes
patent: 6317500 (2001-11-01), Murphy
patent: 6425084 (2002-07-01), Rallis et al.
patent: 6714649 (2004-03-01), Masuda et al.
patent: 6792536 (2004-09-01), Teppler
patent: 7096504 (2006-08-01), Tagawa et al.
patent: 2002/0138748 (2002-09-01), Hung
patent: 0 447 386 (1991-09-01), None
patent: 1 223 495 (2002-07-01), None
patent: WO 95/16238 (1995-06-01), None
patent: WO 01/20463 (2001-03-01), None
Zadok, Erez, et al., Cryptfs: A Stackable Vnode Level Encryption File System, http://cs.coleia.edu/tezk/research/crwtfs/crrtfs.html, Feb. 17, 1999, pp. 1-29.
Zadok, Erez, et al., Cryptfs: A Stackable Vnode Level Encryption File System, http://www.cs.columbia.edu/ {ezk/research/cryptfs/cryptfs.html, Feb. 17, 1999, pp. 1-29.
Prouds, N., Encrypting Virtual Memory , Proceedings of The Ninth USENIX Security Symposium, pp. 35-44, Denver, Colorado, Aug. 2000.
Stajano, F., et al., The Resurrecting Duckling: Security Issues For Ad-Hoc Wireless Networks, Securing Protocols, 7thInternational Workshop Proceedings, Lecture notes in Computer Science, 1999.
Corner Mark D.
Noble Brian D.
Brooks & Kushman P.C.
Gelagay Shewaye
Smithers Matthew
The Regents of the University of Michigan
LandOfFree
Method and system to maintain application data secure and... does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Method and system to maintain application data secure and..., we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Method and system to maintain application data secure and... will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-3820334