Cryptography – Particular algorithmic function encoding – Nbs/des algorithm
Patent
1995-11-16
1997-09-09
Gregory, Bernarr E.
Cryptography
Particular algorithmic function encoding
Nbs/des algorithm
380 25, 380 30, 380 49, H04L 932, H04L 930, H04L 900
Patent
active
056664168
ABSTRACT:
A method of managing certificates in a communication system having a certifying authority and a directory. Preferably, the method begins by having the certifying authority generate certificates by digitally signing a given piece of data. At a later point time, the certifying authority may produce a string that proves whether a particular certificate is currently valid without also proving the validity of at least some other certificates. The technique obviates use of certification revocation lists communicated between the certifying authority and the directory.
REFERENCES:
patent: 4200770 (1980-04-01), Hellman et al.
patent: 4218582 (1980-08-01), Hellman et al.
patent: 4309569 (1982-01-01), Merkle
patent: 4326098 (1982-04-01), Bouricius et al.
patent: 4881264 (1989-11-01), Merkle
patent: 4926480 (1990-05-01), Chaum
patent: 5003597 (1991-03-01), Merkle
patent: 5016274 (1991-05-01), Micali
patent: 5157726 (1992-10-01), Merkle et al.
patent: 5231666 (1993-07-01), Matyas
patent: 5261002 (1993-11-01), Perlman et al.
patent: 5420927 (1995-05-01), Micali
patent: 5432852 (1995-07-01), Leighton et al.
patent: 5450493 (1995-09-01), Maher
patent: 5537475 (1996-07-01), Micali
patent: 5544322 (1996-08-01), Cheng et al.
Facsimile message from Chini Krishnan of Integris Security, Inc. to Professor Silvio Micali, dated Feb. 17, 1997, 7 pages including cover sheet, submitted in attached sealed envelope as PROPRIETARY MATERIAL NOT OPEN TO PUBLIC. TO BE OPENED ONLY BY EXAMINER OR OTHER AUTHORIZED PATENT AND TRADEMARK OFFICE EMPLOYEE.
Facsimile message from Chini Krishnan of Integris Security, Inc. to Professor Silvio Micali, dated Feb. 25, 1997, 12 pages including cover sheet, submitted in attached sealed envelope as PROPRIETARY MATERIAL NOT OPEN TO PUBLIC. TO BE OPENED ONLY BY EXAMINER OR OTHER AUTHORIZED PATENT AND TRADEMARK OFFICE EMPLOYEE.
International Search Report from PCT/US 96/17374, dated Feb. 19, 1997, 7 pages.
Toward a national public key infrastructure, IEEE Communications Magazine, Sep. 1994, vol. 32, No. 9, ISSN 0163-6804, pp. 70-74.
The Digital Distributed System Security Architecture, Proceedings of the 12 National Computer Security Conference, 1989, pp. 305-319.
CygnaCom Solutions, Inc., "Federal Public Key Infrastructure (PKI) Technical Specifications Part D--Interoperability Profiles", Published on the World Wide Web, Sep. 27, 1995, 91 pages.
Nazario, N., "Federal Public Key Infrastructure (PKI) Version 1 Technical Specifications: Part B--Technical Security Policy", Published on the World Wide Web, Mar. 13, 1996, 20 pages.
Polk, W., editor, "Federal Public Key Infrastructure (PKI) Technical Specifications (Version 1) Part A: Requirements", Published on the World Wide Web, Dec. 6, 1996, 18 pages.
Ford, Warwick, "A Public Key Infrastructure for U.S. Government Unclassified but Sensitive Operations," Published on the World Wide Web, Sep. 1, 1995, 93 pages.
Chokhani, Santosh, et al., "Certificate Policy and Certification Practice Statement Framework", Published on the World Wide Web, Nov. 3, 1996.
Burr, William E. et al., "A Proposed Federal PKI Using X.509 V3 Certificates," Published on the World Wide Web.
Burr W.E., "Public Key Infrastructure (PKI) Technical Specifications (Version 1 ): Part C--Concept of Operations," Published on the World Wide Web, Feb. 12, 1996, 30 pages.
Ford, Warwick, "Public-Key Infrastructure Standards," Published on the World Wide Web, Oct. 1996, 15 printed pages.
Polk, William T., "Minimum Interoperability Specifications for PKI Components," Published on the World Wide Web, Nov., 1996.
Chokhani, Santosh, "Security Considerations in Using X. 509 Certificates," Published on the World Wide Web.
Dodson, Donna F., "NIST PKI Implementation Projects," Published on the World Wide Web.
Ford, Warwick, "Public-Key Infrastructure Standards," Published on the World Wide Web.
Burr, William, "A Proposed Federal PKI Using X. 509 V3 Certificates: The NISSC Presentation," Published on the World Wide Web.
Nazario, Noel et al., "Management Model for the Federal Public Key Infrastructure," Published on the World Wide Web, Oct. 24, 1996.
Nazario, Noel A., "Security Policies for the Federal Public Key Infrastructure," Published on the World Wide Web, Oct. 24, 1996.
Burr, William, et al., "MISPC: Minimum Interoperability Specifications for PKI Components," Published on the World Wide Web, Dec. 2, 1996.
Escrowed Encryption Standard (EES) FIPS Pub. 185, Feb. 9, 1994.
"Final Text of Draft Amendments DAM 4 to ISO/IEC 9594-2, DAM 2 to ISO/IEC 9594-6, DAM I to ISO/IEC 9594-7, and DAM 1 to ISO/IEC 9594-8 on Certificate Extensions," Jun. 30, 1996, 41 pages.
Chaum, D., "Untraceable Electronic Mail, Return Addresses, and Digital Pseudonyms," Communications of the ACM, vol. 24, No. 2, Feb. 1981, pp. 84-88.
Gennaro, Rosario et al., "Robust Threshold DSS Signatures," Abstract from EuroCrypt '96.
Harn, L., "Group Oriented (t,n) threshold digital signature scheme and digital multisignature," IEE Proc.-Comput. Digit. Tech., vol. 141, No. 5, Sep. 1994, pp. 307-313.
Micali, Silvio, "Enhanced Certificate Revocation System," Technical Report, Nov. 1995.
Rivest, Ronald et al., "SDSI--A Simple Distributed Security Infrastructure," Sep. 15, 1996, Published on the World Wide Web.
Bellare, M., et al., "Incremental Cryptography: The Case of Hashing and Signing" Proceedings of Crypto '95 216-233 (1995).
Micali, S., "Computationally-Sound Proofs", MIT Laboratory for Computer Science, 55 pages, Apr. 11, 1995.
Micali, S., Abstract entitled "An Efficient Zero-knowledge Method for Answering Is He In Or Out? Questions" presented by M. Rabin at the National Computer Science Institute in Berkeley, CA (Dec. 1995).
R.L. Rivest, A. Shamir, and L. Adleman, "A Method for Obtaining Digital Signatures and Public-Key Cryptosystems", Communications of the ACM, Feb. 1978, vol. 21, No. 2.
Leslie Lamport, "Password Authentication with Insecure Communication", Communications of the ACM, Nov. 1981, vol. 24, No. 11.
ISO/IEC 95944, "Information Technology--Open Systems Interconnection--The Directory: Authentication Framework" Second Edition, 1995-09-15.
Ronald L. Rivest and Adi Shamir, "PayWord and MicroMint: Two simple micropayment schemes", Extended Department, Rehovot, Israel.
R. Housley, W. Ford, and D. Solo, "Internet Public Key Infrastructure Part I: X.509 Certificate and CRL Profile", Working Draft, Jun. I996.
S. Farrell, C. Adams, and W. Ford, "Internet Public Key Infrastructure Part III: Certificate Management Protocols", Working Draft, Jun. 1996.
ISO/IEC 9594-8, "Final Text of Draft Amendments DAM 4 to ISO/IEC 9594-2, DAM 2 to ISO/IEC 9594-6, DAM 1 to ISO/IEC 9594-7, and DAM 1 to ISO/IEC 9594-8 on Certificate Extensions", Apr. 1996.
"Public Key Cryptography for the Financial Services Industry: Extensions to Public Key Certificates and Certificate Revocation Lists", Working Draft, American National Standard X9.55-1995.
"X9-Financial Services", Working Draft, American National Standard X9.57-I99x, Public Key Cryptography For the Financial Services Industry: Certificate Management, 1992 American Bankers Association.
Linn, J. "Privacy Enhancement for Internet Electronic Mail: Part I--Message Encipherment and Authentication Procedures" Aug. 1989, IAB Privacy Task Force, pp. 1-30.
Kent, S. and John Linn, "Privacy Enhancement for Internet Electronic Mail: Part II--Certificate-Based Key Management" Aug. 1989, IAB Privacy Task Force, pp. 1-22.
"Public Key Infrastructure Study", Final Report Apr. 1994, National Institute of Standards and Technology Gaithersburg, Maryland.
LandOfFree
Certificate revocation system does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Certificate revocation system, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Certificate revocation system will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-74894