Cryptography – Key management – Key distribution
Patent
1996-12-05
2000-11-07
Cangialosi, Salvatore
Cryptography
Key management
Key distribution
380 30, 380282, 380273, 713156, 713158, H04L 900
Patent
active
RE0369462
ABSTRACT:
A method and apparatus is disclosed for providing a secure wireless communication link between a mobile nomadic device and a base computing unit. A mobile sends a host certificate (Cert.sub.-- Mobile) to the base along with a randomly chosen challenge value (CH1) and a list of supported shared key algorithms ("SKCS"). The base determines if the Cert.sub.-- Mobile is valid. If the Cert.sub.-- Mobile is not valid, then the base unit rejects the connection attempt. The base then sends a Cert.sub.-- Base, random number (RN1) encrypted in mobile's public key and an identifier for the chosen SKCS to the mobile. The base saves the RN1 value and adds the CH1 value and the chosen SKCS to messages sent to the base. The mobile unit then validates the Cert.sub.-- Base, and if the certificate is valid, the mobile verifies under the public key of the base (Pub.sub.-- Base) the signature on the message. The signature is verified by taking the base message and appending it to CH1 and the list of shared key algorithms that the mobile provided in the first message. If the base signature is not valid, then the communication attempt is aborted. In the event that the base signature is valid, the mobile determines the value of RN1 by decrypting Pub.sub.-- Mobile, RN1 under the private key of the mobile. The mobile then generates RN2 and the session key, and encrypts RN2 under the Pub.sub.-- Base. The mobile sends the encrypted RN2 and E(Pub.sub.-- Mobile, RN1) to the base. The base then verifies the mobile signature using the Pub.sub.-- Mobile obtained from the Cert.sub.-- Mobile. If the mobile signature is verified, the base decrypts E(Pub.sub.-- Base, RN2) using its private key. The base then determines the session key. The mobile and base may then enter a data transfer phase using encrypted data which is decrypted using the session key which is RN1 .sym.RN2.
REFERENCES:
patent: 4200770 (1980-04-01), Hellman et al.
patent: 4218582 (1980-08-01), Helman
patent: 4405829 (1983-09-01), Rivest et al.
patent: 4424414 (1984-01-01), Hellman et al.
patent: 4484025 (1984-11-01), Ostermann et al.
patent: 4562305 (1985-12-01), Gaffney
patent: 4650975 (1987-03-01), Kitchener
patent: 4759063 (1988-07-01), Chaum
patent: 4810862 (1989-03-01), Nakamo
patent: 4825050 (1989-04-01), Griffith et al.
patent: 4866270 (1989-09-01), Seth-Smith et al.
patent: 4876716 (1989-10-01), Okamoto
patent: 4910774 (1990-03-01), Barakat
patent: 4912762 (1990-03-01), Lee et al.
patent: 4965568 (1990-10-01), Atalla
patent: 4995082 (1991-02-01), Schnorr
patent: 5005200 (1991-04-01), Fischer
patent: 5016274 (1991-05-01), Micali
patent: 5068894 (1991-11-01), Hoppe
patent: 5109152 (1992-04-01), Takagi
patent: 5120939 (1992-06-01), Claus et al.
patent: 5142578 (1992-08-01), Matyas et al.
patent: 5204901 (1993-04-01), Hershey et al.
patent: 5228084 (1993-07-01), Johnson et al.
patent: 5230020 (1993-07-01), Hardy et al.
patent: 5247578 (1993-09-01), Pailles et al.
patent: 5261002 (1993-11-01), Perlman et al.
patent: 5277613 (1994-01-01), Takagi et al.
patent: 5297208 (1994-03-01), Schlafy et al.
patent: 5299262 (1994-03-01), Brickell et al.
patent: 5321751 (1994-06-01), Ray et al.
patent: 5371794 (1994-12-01), Piffie et al.
patent: 5436970 (1995-07-01), Ray et al.
patent: 5517614 (1996-05-01), Tajima et al.
"Authentication and Authenticated Key Exchanges" Diffie; Oorschot; & Weiner published by Designs, Codes & Cryptography 2, 107-125 Kluwer Academic Publishers, .COPYRGT.1992.
"The First Ten Years Of Public Key Cryptography", Whitfield Diffie, Reprinted from Proceedings of IEEE, vol. 76, No. 5, May 1988.
Overview of Cryptology: Summary Of Internet Cryptology Frequently Asked Questions, (Oct. 1992).
"The Keys To Privacy and Authentication", Publication by RSA Data Security Inc., 100 Marine Parkway, Redwood City, Calif. 94065, (Oct. 1993).
"Answers To Frequently Asked Questions About Today's Cryptography", Paul Fahn, RSA Laboratories, 100 Marine Parkway, Redwood City, Calif. 94065, (Sep. 1992).
Aziz Ashar
Diffie Whitfield
Cangialosi Salvatore
Sun Microsystems Inc.
Yang Joseph
LandOfFree
Method and apparatus for privacy and authentication in wireless does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Method and apparatus for privacy and authentication in wireless , we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Method and apparatus for privacy and authentication in wireless will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-1628946