Electrical computers and digital processing systems: support – Multiple computer communication using cryptography – Particular communication authentication technique
Patent
1997-04-21
2000-07-04
Cangialosi, Salvatore
Electrical computers and digital processing systems: support
Multiple computer communication using cryptography
Particular communication authentication technique
H04L 900
Patent
active
060853204
ABSTRACT:
A protocol for establishing the authenticity of a client to a server in an electronic transaction by encrypting a certificate with a key known only to the client and the server. The trust of the server, if necessary, can be established by a public key protocol. The client generates and sends over a communications channel a message containing at least a part of a certificate encrypted with the server's public key or a secret session key. The server receives and processes the message to recover at least part of the certificate, verifies and accepts it as proof of the client's authenticity.
REFERENCES:
patent: 4309569 (1982-01-01), Merkle
patent: 4885778 (1989-12-01), Weiss
patent: 5005200 (1991-04-01), Fischer
patent: 5224163 (1993-06-01), Gaser et al.
patent: 5261002 (1993-11-01), Perlman et al.
patent: 5367573 (1994-11-01), Quimby
patent: 5444780 (1995-08-01), Hartman, Jr.
patent: 5625693 (1997-04-01), Rohatgi et al.
patent: 5757914 (1998-05-01), McManis
patent: 5963649 (1999-10-01), Sako
patent: 5970145 (1999-10-01), McManis
"Information Technology--Security Techniques--Digital Signature Scheme Giving Message Recover," International Standard ISO/IEC 9796 : 1991, pp. i-12.
SET Secure Electronic Transaction Specification,Book 2: Programmer's Guide, Version 1.0, May 31, 1997, pp. 207-213.
PKCS #1: RSA Encryption Standard, An RSA Laboratories Technical Note, Version 1.5, Revised Nov. 1, 1993, pp. 1-17.
RSA Laboratories, PKCS #1 v2.0: RSA Cryptography Standard, Oct. 1, 1998, pp. 1-36.
Bellare, et al. "Optimal Asymmetric Encryption--How to Encrypt with RSA," Nov. 19, 1995, available from http://www-cse.usd.edu/users/mihir, based on an earlier paper published in Advances in Cryptology--Eurocrypt 94 Proceedings, Lecture Notes in Computer Science vol. 950, A. De Santis ed., Springer-Verlag, 1994.
"A Practical Zero-Knowledge Protocol Fitter to Security Microprocessor Minimizing Both Transmission and Memory", L.C. Guillou & J. Quisquater, pp. 123-128.
Fully-Fledged Two-Way Public Key Authentication and Key Agreement for Low-Cost Terminals, M.J. Beller & Y. Yacobi, pp. 999-1000.
"Secure Electronic Transaction (SET) specification", Box 2: Programmers Guide, pp. 57-58, MasterCard and Visa, Jun. 21, 1996.
Beller, M.J., et al. "Fully-Fledged Two-Way Public Key Authentication and Key Agreement for Low-Cost Terminals," Electronics Letters, vol. 29, No. 11, May 27, 1993, pp. 999-1000.
Guillou, Louis, et al. "A Practical Zero-Knowledge Protocol Fitted to Security Microprocessor Minimizing Both Transmission and Memory," pp. 123-128.
Cangialosi Salvatore
RSA Security Inc.
LandOfFree
Client/server protocol for proving authenticity does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Client/server protocol for proving authenticity, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Client/server protocol for proving authenticity will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-1496464