Cryptography – Key management – Having particular key generator
Patent
1995-10-31
1999-12-07
Hayes, Gail O.
Cryptography
Key management
Having particular key generator
380 4, 380 21, 380 25, H04L 900, H04K 100
Patent
active
059996293
ABSTRACT:
We have recognized that there is a strong need to control and maintain the secrecy of the intelligence that may be used by computers to communicate with another, for example, by encrypting the messages that they exchange with one another. Thus, the encryption keys used to encrypt such messages need to be managed in a highly secure manner. Accordingly, we provide an encryption module, which, in accord with an aspect of the invention, generates a unique device encryption key (S.sub.local), a cryptographic key formed from a unique identification key (S.sub.id) and an associated public key (KP.sub.id), and at least one program encryption key, in which the public key is generated as a function of the unique identification key. The module then encrypts the unique identification key and program encryption key using said device encryption key and stores the encrypted result in memory internal to security module, thereby securing the keys against misappropriation. In addition, the module provides a mechanism for using the program encryption key to encrypt information that it receives from an external source and store the encrypted information in memory external to the security module, and responsive to receiving from a requester a request for the program encryption key, encrypting the program encryption key, in accord with an aspect of the invention, using a symmetrical encryption key generated as a function of a public key generated by a security module associated with the requester. The former security module then supplies the encrypted program encryption key to the requester.
REFERENCES:
patent: 4529870 (1985-07-01), Chaum
patent: 5124117 (1992-06-01), Tatebayashi et al.
patent: 5142578 (1992-08-01), Matyas et al.
patent: 5228084 (1993-07-01), Johnson et al.
patent: 5384850 (1995-01-01), Johnson et al.
patent: 5416842 (1995-05-01), Aziz
patent: 5448638 (1995-09-01), Johnson et al.
patent: 5588060 (1996-12-01), Aziz
patent: 5633933 (1997-05-01), Aziz
patent: 5668877 (1997-09-01), Aziz
Heer Daniel Nelson
Maher David P.
Hayes Gail O.
Lucent Technologies - Inc.
Luludis Frederick B.
Sayadian Hrayr A.
LandOfFree
Data encryption security module does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Data encryption security module, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Data encryption security module will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-833040