phillipgriffin.com

Information Security Consulting


phil@phillipgriffin.com | Copyright © 2006-2016, Phillip H. Griffin. All rights reserved. | Privacy Policy


Products Software Capabilities Innovation

Patents Awarded:

  1. 8,242,892 - Communicating a Privacy Policy Associated With a Radio Frequency Identification Tag and Associated Object
    Issued 8-14-2012. A system, method and program product for communicating a privacy policy associated with a RFID tag.

  2. 8,289,135 - Associating a Biometric Reference Template With a Radio Frequency Identification Tag
    Issued 10-16-2012. A system, method and program product for associating a biometric reference template with a RFID tag embedded in or attached to a physical object.

  3. 8,301,902 - Communicating a Privacy Policy Associated With a Biometric Reference Template
    Issued 10-30-2012. A system, method and program product for communicating a privacy policy associated with a reference template.

  4. 8,327,134 - Checking the Revocation Status of a Biometric Reference Template
    Issued 12-04-2012. A system, method and program product for checking the revocation status of a biometric reference template.

  5. 8,359,475 - Generating a Cancelable Biometric Reference Template On Demand
    Issued 1-22-2013. A system, method and program product for generating a cancelable biometric reference template on demand.

  6. 8,508,339 - Associating a Biometric Reference Template With an Identification Tag
    Issued 8-13-2013. A method and system for associating a biometric reference template with an identification tag for a physical object.

  7. 8,700,909 - Revocation of a Biometric Reference Template
    Issued 4-15-2014. A system, method and program product for generating a biometric reference template revocation message on demand.

  8. 8,756,416 - Checking revocation status of a biometric reference template
    Issued 6-17-2014. A method and system for checking a revocation status of a biometric reference template previously generated for an individual.

  9. 8,782,397 - Compact Attribute for Cryptographically Protected Messages
    Issued 7-15-2014. A method for verifying a signature of a signed message comprises.

  10. 9,298,902 - Recording creation of a cancelable biometric reference template in an event journal
    Issued 3-29-2016. A method for logging cancelable templates in a biometric event journal.

  11. 10,025,941 - Data Element Tokenization Management
    Issued 7-17-2018. Distributed Ledger Technology (DLT) off-chain confidentiality protection of sensitive data of any type or format.

  12. 10,114,963 - Data Element Tokenization Management
    Issued 10-30-2018. Distributed Ledger Technology (DLT) off-chain confidentiality protection of sensitive data of any type or format.

  13. 10,142,333 - Biometric Reference Template Record
    Issued 11-27-2018. Tokenized biometric data for secure matching template storage in cloud and blockchain environments.

  14. 10,154,029 - Biometric knowledge extraction for mutual and multi-factor authentication and key exchange
    Issued 12-11-2018. BAKE protocol for mutual and multi-factor authentication

  15. 10,193,884 - Compliance and audit using biometric tokenization
    Issued 1-29-2019. Tokenized privacy protected biometric data for secure audit

  16. 10,277,400 - Biometric electronic signature tokens (BEST)
    Issued 4-29-2019. X9.84 BEST Electronic Signature (ESign) technique

  17. 10,404,471 - Secure ledger assurance tokenization
    Issued 9-3-2019. Blockchain audit anchor and pruing point

  18. 10,419,209 - Parallel Assurance Blockchain Signatures (PABS)
    Issued 9-17-2019. X.894/X9.73 Detached SignedData signature technique

  19. 10,432,402 - Biometric electronic signature tokens (BEST)
    Issued 10-1-2019. X9.84 BEST Electronic Signature (ESign) technique

  20. 10,438,198 - Derived unique token per transaction (DUTPT)
    Issued 10-8-2019. A method for using tokens between a client and server

Current Patent List: U.S. Patent Office

Publications:

White papers:

  • Corrections to the ISO/IEC 29150 Schema, June 2012.
    In this note, defects in the schema of the first edition of the ISO/IEC 29150 Signcryption standard are described, and a corrected ASN.1 module is proposed. An example signcryption algorithm identifier value is defined and binary and markup representations of this value are presented. Although the schema errors are small and do not affect the textual content of the standard, programming language code generation and other tools cannot process the schema unless it is correct.

    [ Corrected ISO/IEC 29150 Signcryption ASN.1 schema]

Course offerings:

Half day and full day training sessions are offered in the topics listed below. These courses can be held in Raleigh, North Carolina, USA, or on site at your business location. All course materials have been created by Phil Griffin, who also leads these sessions. Send contact information for scheduling and pricing information.

  • Course: C0001
    Title: S/MIME - Basic Cryptographic Message Syntax (CMS)

    Abstract: This course provides an introduction to Cryptographic Message Syntax (CMS) and XML CMS, and describes the history, application, message types, and notation used to provide data integrity, origin authentication, and data privacy services using digital signatures, message digests (hashes), and symmetric and asymmetric encryption of arbitrary content.
    [Outline]

  • Course: C0002
    Title: S/MIME - Advanced Cryptographic Message Syntax (CMS)

    Abstract: This course extends the introduction to Cryptographic Message Syntax (CMS) and XML CMS, presenting advanced information on key management techniques for key establishment. Topics include signed data signature and verification processing, application of the proposed SigncryptedData type, Diffie-Hellman and ECMQV key agreement techniques, and key control using a key commitment protocol. A brief review of introductory CMS concepts is also provided.
    [Outline]

  • Course: C0003
    Title: ASN.1 - Basic Abstract Syntax Notation One

    Abstract: This course provides a basic introduction to Abstract Syntax Notation One (ASN.1) and presents useful types. The student is introduced to the concept of modules, object identification and the specification of XML values based on an abstract schema.
    [Outline]

  • Course: C0004
    Title: ASN.1 - Advanced Abstract Syntax Notation One

    Abstract: This course extends the basic introduction to Abstract Syntax Notation One and presents concepts of information objects, classes and sets. Encoding rules commonly used in security protocols are described, including XML Encoding Rules (XER) and Distinguished Encoding Rules (DER).
    [Outline]

Information Object Identifier Registry:

A registry of information object idetifiers is maintained and all OID assignments are made available to the public in the file: oidreg.txt. Identified information object identifiers are provided here for client enterprizes, examples, products, and other named objects.

Unique OIDs can be provided for your business for $ 300.00 (US) . An information object registry based on your new OID can be designed and implemented for an additional $ 200.00.