Michael F Reiter

US Patent:

7003110, Feb 21, 2006

Filed:

Nov 14, 2000

Appl. No.:

09/712335

Inventors:

Bjorn Markus Jakobsson - Hoboken NJ, US
Michael Kendrick Reiter - Raritan NJ, US

Assignee:

Lucent Technologies Inc. - Murray Hill NJ

International Classification:

H04L 9/00
H04L 9/32
G06F 11/30
G06F 12/14

US Classification:

380 45, 726 26

Abstract:

A software program is configured in accordance with a software aging process such that one or more files generated by the program are at least partially encrypted using a cryptographic key associated with a current time interval for which the files are generated. The cryptographic key may be a symmetric key used for both encryption and decryption operations, such that cryptographic key used for encryption in a given interval is also required to decrypt files encrypted during that interval. Periodic updates of the software program are provided to a legitimate user of the software program, with a given one of the updates including a different cryptographic key associated with a subsequent time interval. The cryptographic key associated with a particular one of the time intervals may be common to each of a set of legitimate copies of the software program that have received the corresponding version of the periodic update. The variation of the cryptographic keys from one interval to another discourages unauthorized use of the software program by deliberately requiring both legitimate and illegitimate users to request unusually frequent updates, thereby substantially increasing the tracing and prosecution risks borne by software pirates.

US Patent:

7107269, Sep 12, 2006

Filed:

Jun 12, 2001

Appl. No.:

10/031773

Inventors:

Robert M. Arlein - Maplewood NJ, US
Ben Jai - Scotch Plains NJ, US
Bjorn Markus Jakobsson - Hoboken NJ, US
Fabian Monrose - New York NY, US
Michael Kendrick Reiter - Raritan NJ, US

Assignee:

Lucent Technologies Inc. - Murray Hill NJ

International Classification:

G06F 17/30

US Classification:

707 9, 707 10, 709203, 709219, 705 26

Abstract:

Techniques and infrastructure are provided for supporting global customization. The invention enables persona profiles of user information to be maintained, and such persona profiles to be accessed by merchants. Via the persona abstraction, users control what information is grouped into a persona profile, and can selectively enable a merchant to read one of these profiles. The infrastructure of the invention employs a persona server that assists users in managing their personae. The infrastructure of the invention separates this from the profile databases at which persona profile information is stored, to eliminate any single point at which different persona profiles can be tied to the same user. Since merchants also have privacy concerns, the infrastructure of the invention provides a data protection model based on tainting, by which merchants can limit how the information they contribute can be exposed.

US Patent:

7149311, Dec 12, 2006

Filed:

Feb 7, 2002

Appl. No.:

10/072331

Inventors:

Philip D. MacKenzie - Maplewood NJ, US
Michael Kendrick Reiter - Raritan NJ, US

Assignee:

Lucent Technologies Inc. - Murray Hill NJ

International Classification:

H04L 9/00

US Classification:

380286, 380277, 713168, 713171, 713180, 726 18, 726 19, 726 26, 726 30

Abstract:

Techniques are provided by which a device that performs private key operations (e. g. , signatures or decryptions) in networked applications, and whose local private key is activated with, for example, a password or PIN, can be immunized to offline dictionary attacks in case the device is captured. The techniques do not assume tamper resistance of the device, but rather exploit the networked nature of the device, in that the device's private key operations are performed using a simple interaction with a remote server. This server, however, is untrusted, i. e. , its compromise does not reduce the security of the device's private key unless the device is also captured, and need not have a prior relationship with the device. Techniques are also provided for supporting key disabling, by which the rightful owner of a stolen device can disable the device's private key even if the attacker already knows the user's password.

US Patent:

7373499, May 13, 2008

Filed:

Jun 26, 2002

Appl. No.:

10/183901

Inventors:

Philip D. MacKenzie - Maplewood NJ, US
Michael Kendrick Reiter - Pittsburgh PA, US

Assignee:

Lucent Technologies Inc. - Murray Hill NJ

International Classification:

H04L 9/00

US Classification:

713150

Abstract:

Improved cryptographic techniques are provided by which a device that performs private key operations (e. g. , signatures and/or decryptions), and whose private key operations are protected by a password, is immunized against offline dictionary attacks in case of capture by forcing the device to confirm a password guess with a designated entity or party in order to perform a private key operation, and by which the initiating device may dynamically delegate the password-checking function (i. e. , confirmation of the password guess) from the originally designated entity or party to another designated entity or party.

US Patent:

20030059041, Mar 27, 2003

Filed:

Jun 26, 2002

Appl. No.:

10/183900

Inventors:

Philip MacKenzie - Maplewood NJ, US
Michael Reiter - Pittsburgh PA, US

International Classification:

H04L009/00

US Classification:

380/028000, 713/180000

Abstract:

Techniques are provided for sharing the DSA signature function, so that two parties can efficiently generate a DSA signature with respect to a given public key but neither can alone. In an illustrative embodiment, the invention provides a DSA signature protocol that allows a proof of security for concurrent execution in the random oracle model. The invention also allows a proof of security for sequential execution without random oracles.

US Patent:

62634364, Jul 17, 2001

Filed:

Dec 17, 1996

Appl. No.:

8/768380

Inventors:

Matthew Keith Franklin - New York NY
Michael Kendrick Reiter - Raritan NJ

Assignee:

AT&T Corp. - New York NY

International Classification:

H04L 900

US Classification:

713167

Abstract:

A method and apparatus for fairly exchanging documents. A first document is shared between principal Y and third party Z. A second document is shared between principal X and third party Z. Z verifies that the sharing of the first and second documents has been performed correctly without Z understanding either document. If verified, Z sends its shares of the first and second documents to Y and X, respectively. X and Y verify that Z's shares are authentic.

US Patent:

60555181, Apr 25, 2000

Filed:

Nov 12, 1996

Appl. No.:

8/745717

Inventors:

Matthew K. Franklin - New York NY
Michael K. Reiter - Raritan NJ

Assignee:

AT&T Corporation - New York NY

International Classification:

G06F 1900
H04L 900

US Classification:

705 37

Abstract:

The apparatus and method of the present invention provide secure auction service for use in a network having servers and bidding terminals. The auction service makes transactions among servers and bidding terminals subject to a distributed protocol. The distributed protocol distributes submitted bids among the multiple servers, closes a bidding period, verifies validity of monetary value of each submitted bid by utilizing said distributed protocol and determines a winning bidder.