Electrical computers and digital processing systems: support – Multiple computer communication using cryptography – Particular communication authentication technique
Patent
1999-04-22
2000-05-09
Barron, Jr., Gilberto
Electrical computers and digital processing systems: support
Multiple computer communication using cryptography
Particular communication authentication technique
380283, H04L 908
Patent
active
060617918
ABSTRACT:
An issuer offers any type of service secured with a secret cryptographic key assigned to an applicant according to the present invention, which includes a secret key registration process. Usually, the secret key will be loaded on a portable memory device or other secret key store of the applicant. As preliminary steps, the issuer sets up its public key for the Probabilistic Encryption Key Exchange (PEKE) cryptosystem, and the applicant obtains a copy of a secret key registration software, a copy of the issuer's public key, and an uninitialized portable memory device. Once initiated by the applicant, the registration software generates an internal PEKE secret key. The applicant chooses a registration pass query and pass reply that the registration software MACs and encrypts with a key derived from the PEKE secret key. The registration software derives the key assigned to the applicant from the PEKE secret key, and loads it into the secret key store. A message is sent to the issuer data processing center where the cryptographic processing (PEKE, MAC, encryption) is reversed. Using an alternate channel (e.g. telephone conversation) an issuer agent verifies the identity of the applicano: the agent asks the pass query, the applicant replies with the pass reply, and the issuer verifies the applicant's knowledge of some relevant personal data. The issuer agent can approve the applicant's registration in the issuer database. There is no need for the issuer to personalize either the software or the secret key store before delivery to the applicant, and there is a single personal contact between the applicant and the issuer agent.
REFERENCES:
patent: 4200770 (1980-04-01), Hellmann et al.
patent: 4405829 (1983-09-01), Rivest et al.
patent: 4771461 (1988-09-01), Matyas
patent: 5020105 (1991-05-01), Rosen et al.
patent: 5142578 (1992-08-01), Matyas et al.
patent: 5179591 (1993-01-01), Hardy et al.
patent: 5216715 (1993-06-01), Markwitz
patent: 5288978 (1994-02-01), Iijima
patent: 5375159 (1994-12-01), Scheidt et al.
patent: 5386468 (1995-01-01), Akiyama et al.
patent: 5535276 (1996-07-01), Ganesan
patent: 5539824 (1996-07-01), Bjorklund et al.
patent: 5557679 (1996-09-01), Julin et al.
patent: 5583939 (1996-12-01), Chang et al.
patent: 5680458 (1997-10-01), Spelman et al.
patent: 5745571 (1998-04-01), Zuk
patent: 5748739 (1998-05-01), Press
patent: 5768373 (1998-06-01), Lohstroh et al.
patent: 5784463 (1998-07-01), Chen et al.
patent: 5875394 (1999-02-01), Daly et al.
Telecommunications Industry Associations "Over-the-Air Service Provisioning of Mobile Stations in Wideband Spread Spectrum Systems"--TIA/EIA/IS-683, Feb. 1997, pp. 1-B2.
Telecommunications Industry Associations "Over-the-Air Service Provisioning", publication version Jun. 19, 1997, Source TIA TR-45.2 9Cheryl Blum (Lucent Technologies)pp. 1-14.
Anderson, Ross J.: Liability and Computer Security: Nine Principles, in Computer Security-Esorics 94, 3.sup.rd European Symposium on Research in Computer Sec. Nov. 1994, LNCS (Lecture Notes in Computer Sc.) 875, Springer Verlag, pp. 231-245.
Abadi, Martin, Needham, Roger, Prudent Engineering Practice for Cryptographic Protocole, in 1994, IEEE Symposium on Research in Security and Privacy, IEEE, 1994, pp. 122-136.
Anderson, Ross J, and Needham, Roger, Robutness Principles for Public Key Protocols, in Advances in Cryptology, Crypto'95, LNCS (Lecture Notes in Computer Sc)963, Springer Verlag, pp. 236-247.
Accredited Standards Committee X9-Financial Services (ANSI ASC X()Working Draft ANSI X9.30-199x Public Key Cryptography Usin Irreversible Algorithms for the Financial Services Industry: Part 3: Certificate Management for DSA, Americal Bankers Association, Washington, DC, Nov. 19, 1994, (document N24-94).
EFTA,Electronic Fund Transfer Act, Title IX of the Customer Credit Protection Act, 15 U.S.C. .sctn.1601 et seq.).
Regulation E: Electronic Fund Transfers, (12 C.F.R. .sctn.205).
Harn, Lein, Digital SIgnature for Diffie-Hellman Keys without using a one-way function, Electronics Letters, 16.sup.th Jan. 1997, vol. 33, No. 2, pp. 125-126.
Moreau, Thierry, Probabilistic Encryption Key Exchange, Electronics Letters, vol. 31, No. 25, 7.sup.th Dec., pp. 2166-2168.
Moreau, Thierry, Automated Data Protection for telecommunications, Electronic Transactions and Messaging using PEKE secret key exchange and Other Cryptographic Algorithms, Technology Licensing Opportunity, revision 1.1, Connotech Experts-Conseils Inc., Montreal, Canada 1996.
Blum, Manuel et al."An efficient Probabilistic Public-Key Encryption Scheme which Hides All Partial Information", in Advances in Cryptology: Proceedings of Crypto'84, Springer-Verlag, 1985, pp-289-299.
Montgomery, Peter L."Modular Multiplication Without Trial Division" Mathematics of Computations, vol. 44, No. 170, Apr. 1985, pp. 519-522.
Dusse,Stephen R. et al. "A Cryptographic Library for the Motorola DSP56000, Advances in Cryptology, Eurocrypt'90, Lecture Notes In Computer Science No. 473, pp. 230-233, Springer-Verlag, 1990.
Eldridge, S.W. et al, Hardware Implementation of Montgomery's Modular Multiplication Algorithm, IEEE Transactions on Computers, vol. 46, No. 6, Jun. 1993, pp. 693-699.
Anglehart James
Barron Jr. Gilberto
Connotech Experts-Conseils Inc.
DiLorenzo Anthony
LandOfFree
Initial secret key establishment including facilities for verifi does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Initial secret key establishment including facilities for verifi, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Initial secret key establishment including facilities for verifi will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-1075566