53 results about "Trusted path" patented technology

The invention relates to an indoor autonomous navigation method for a micro unmanned aerial vehicle, belonging to the technical field of autonomous navigation of micro unmanned aerial vehicles. The method comprises the following steps: estimating the motion state of the micro unmanned aerial vehicle based on an RGB-D camera and an MEMS inertial sensor; performing real-time three-dimensional environment modeling based on fusion of the RGB-D camera and the MEMS inertial sensor; and performing real-time trusted path planning and path tracking control, implementing position control and attitude control through the three steps, and guiding the unmanned aerial vehicle to track the preset path to fly. According to the method, the unmanned aerial vehicle positioning accuracy and the motion state estimation accuracy are improved; the indoor autonomous environmental perception capability of the micro unmanned aerial vehicle is improved; according to the generated path, the positioning accuracy can be effectively guaranteed on the basis that the path feasibility is met; and the autonomy capability of the micro unmanned aerial vehicle is effectively improved.

A method for executing trusted commands, in which a trusted command is first received from a user at a user terminal and parsed by untrusted code; then passed to a trusted computing base for execution. The trusted computing base displays some indication of what is to be done back to the user for confirmation. Confirmation of the commands prevents unauthorized modification of the commands and increases system confidence. A randomly (or pseudo-randomly) generated process identifier is employed to verify the existence of a trusted path.

An apparatus and method for establishing a trusted path between a user interface and a trusted executable, wherein the trusted path includes a hypervisor and a driver shim. The method includes measuring an identity of the hypervisor; comparing the measurement of the identity of the hypervisor with a policy for the hypervisor; measuring an identity of the driver shim; comparing the measurement of the identity of the driver shim with a policy for the driver shim; measuring an identity of the user interface; comparing the measurement of the identity of the user interface with a policy for the user interface; and providing a human-perceptible indication of whether the identity of the hypervisor, the identity of the driver shim, and the identity of the user interface correspond with the policy for the hypervisor, the policy for the driver shim, and the policy for the user interface, respectively.

Disclosed are a method and system for evaluating the trustworthiness of a target person by a user. The method and system include providing a network comprising a plurality of nodes connected by a plurality of directed links, wherein each node in the plurality of nodes is associated with a person and each link in the plurality of links connects from a first node to a second node. The link is associated with a trusting relationship from a first person associated with the first node to a second person associated with the second node, and wherein the user is associated with at least one node in the plurality of nodes. A continuous path from the user to the target person is identified, wherein the continuous path begins at a node in the network that is associated with the user and ends at a node in the network that is associated with the target person, the continuous path traversing links from their first node to their second node, the continuous path termed a trust path, thereby providing an indication of the trustworthiness of the target person.

The invention discloses a layered PCE based multi-domain optical network secure light path establishment protocol. Aiming at the problems of security problem and comprehensive efficiency existing in a multi-domain optical network light path establishment process, a new GO-PCE (Global Optimizing secure light-path protocol based PCE in multi-domain optical network) is designed by combining with a trust model and a key management scheme, adopting a globally optimized multi-domain trusted path selection, usable wavelength calculation and wavelength distribution strategy, and utilizing a TLS based bidirectional identity authentication, TCP-AO based source authentication, identity cryptography based encryption and digital signature technology and a Path-Key based privacy protection mechanism. The secure service requirements such as confidentiality, completeness, authenticity, non-repudiation, freshness and privacy can be met; compared with an SD-PCE and pH-PCE light path establishment protocols, the layered PCE based multi-domain optical network secure light path establishment protocol has relatively low blocking rate and relatively short light path establishment time delay.

Disclosed is a method of improving electronic security by establishing a path between a user and a secure transaction appliance. The secure transaction appliance receiving information destined for the user which includes a tagged portion, said tagged portion triggering the secure transaction appliance to forward the information to the computer from which the request was issued, and to seeking an electronic signature to verify the content or transaction by transmitting a watermark, tagged portion of the content, or similar electronic content. The secure trusted path providing the user with the tagged portion incorporating additional elements such as a watermark, or in some embodiments only the additional elements, upon a personalized security device associated with the user making interception or manipulation more complex and difficult.

A method of improving electronic security establishes a secure trusted path between a user and an institution seeking an electronic signature to verify a transaction before any request for signature and completing electronic transaction activities occurs. The secure trusted path providing the user with a first predetermined portion of a branded watermark, for instance an advertisement, provided from the institution in conjunction with the request, and a second predetermined portion of the branded watermark being provided upon a personalized device that cannot be intercepted or manipulated by malware, allowing the user to verify that the request as displayed upon the user's primary computing device is valid.

The invention relates to a mobile trusted data collection method based on trust value utility in a sensor network, which comprises the following steps of: designing a node trust evaluation algorithm (such as a direct trust value and an indirect trust value) according to the relationship between nodes in the application of wireless sensor data collection, and obtaining a quantized trust value of anode by an existing algorithm; and according to the obtained trust value, generating a trusted cluster head node in the subsequent cluster head node election; finally, calculating the next cluster head node with the maximum trust utility value according to the Euclidean distance between the cluster head nodes and the trust value of the related next hop cluster head node, thereby generating a trusted path with the maximum trust utility value.

The invention discloses a collaborative filtering recommendation method based on an optimal trust path, which is improved by aiming at a traditional collaborative filtering algorithm and a trust fusion collaborative filtering algorithm, and comprises the following steps of: firstly, constructing a trust network of users, calculating trust degrees among the users, and calculating interest similarity among the users; calculating the comprehensive similarity among the users by combining the trust degree among the users and the interest similarity among the users; obtaining a nearest neighbor setaccording to the comprehensive similarity among the users; and finally predicting the score of the target user to the project to obtain a project recommendation result. According to the method, a global user is considered during calculation; a multi-path trust degree algorithm is provided on the basis of the fused trust recommendation algorithm; the optimal path is selected from multiple trust paths to represent the path trust degree between two users, the trust weight relationship contained in the path is considered, the recommendation accuracy and the operation efficiency of the algorithm are improved, and the operation time of the algorithm is about 1 / 4 of the operation time of the existing fusion trust recommendation algorithm.

A method and apparatus are provided for providing authentication of an e-commerce server to a user engaging in e-commerce transactions. When the user begins an e-commerce session, the e-commerce server requests an authentication token from an authentication proxy with which it has registered. If the authentication proxy recognizes the e-commerce server, the authentication proxy generates an authentication token in the form of a simple image, and sends the authentication token to the e-commerce server over a trusted path. The e-commerce server sends the authentication token to the user. The authentication proxy also sends a copy of the authentication token to the user over a second trusted path to a second device or application accessible by the user. The user can then see that the authentication token presented by the e-commerce server matches the authentication token presented by the authentication proxy. Since the user has received the two authentication proxies over separate channels, one of which is typically secure, the user can be assured that the e-commerce server has been authenticated by the authentication proxy, and that the e-commerce server is therefore legitimate.

Electronic transactions employing prior art approaches of digital certificates and authentification are subject to attacks resulting in fraudulent transactions and abuse of identity information. Disclosed is a method of improving electronic security by establishing a secure trusted path between a user and an institution seeking an electronic signature to verify a transaction before any request for signature and completing electronic transaction activities occurs. The secure trusted path providing the user with a predetermined portion of the request from the institution for a signature upon a personalized device that cannot be intercepted or manipulated by malware to verify that the request as displayed upon the user's primary computing device is valid.