Cryptography – Particular algorithmic function encoding – Nbs/des algorithm
Patent
1993-12-30
1996-02-13
Cangialosi, Salvatore
Cryptography
Particular algorithmic function encoding
Nbs/des algorithm
380 25, H04L 908
Patent
active
054917506
ABSTRACT:
A method is provided for authenticating communication partners utilizing communication flows which are passed over an insecure communication channel. The method includes a number of method steps. A trusted intermediary is provided which is capable of communication with the communication partners over the insecure communication channel. A plurality of long-lived secret keys are provided, one for each communication partner. The plurality of long-lived secret keys are distributed to a particular one of the communication partners, and to the trusted intermediary. Therefore, the long-lived secret key is known only by the particular communication partner to which it is assigned, and the trusted intermediary. A request for communication between communication partners is provided to the trusted intermediary. The trusted intermediary is utilized to generate a short-lived secret key for utilization in a communication session between the communication partners. The short-lived secret key for each particular partner is masked in a manner which is dependent upon that particular partner's long-lived secret key. The masked short-lived secret keys are distributed in a plurality of communication flows to the communication partners. Finally, the trusted intermediary and communication partners exchange authentication proofs with one another in a plurality of communication flows. Preferably, the communication flows between the trusted intermediary and the communication partners accomplish substantially concurrently the tasks of authenticating the identity of the trusted intermediary and the communication partners, as well as distribute a short-lived secret key to the communication partners which can be utilized by them in a particular communication session.
REFERENCES:
patent: 4193131 (1980-03-01), Lennon et al.
patent: 4438824 (1984-03-01), Mueller-Schloer
patent: 4549075 (1985-10-01), Saada et al.
patent: 4588985 (1986-05-01), Carter et al.
patent: 4720859 (1988-01-01), Aaro et al.
patent: 4723284 (1988-02-01), Munck et al.
patent: 4799061 (1989-01-01), Abraham et al.
patent: 5148479 (1992-09-01), Bird et al.
patent: 5153919 (1992-10-01), Reeds, III et al.
patent: 5241599 (1993-08-01), Bellovin et al.
patent: 5299263 (1994-03-01), Beller et al.
patent: 5371794 (1994-12-01), Diffie et al.
R. R. Jueneman, S. M. Matyas, C. H. Meyer, "Message Authentication", Sep. 1985, vol. 23, No. 9. pp. 29-40.
R. Bird, et al., "Systematic Design of a Family of Attack-Resistant Authentication Protocols", Jun. 1993, pp. 1-28.
Steven M. Bellovin, Michael Merritt, "Encrypted Key Exchange: Password-Based Protocols Secure Against Dictionary Attacks", pp. 1-13.
T. Mark A. Lomas, et al. "Reducing Risks from Poorly Chosen Keys", pp. 14-18.
Li Gong, et al. "Protecting Poorly Chosen Secrets from Guessing Attacks", Sep. 25, 1992, pp. 1-18.
Refik Molva, et al., "Research Report, KryptoKnight Authentication and Key Distribution System", Apr. 1, 1992, pp. 1-17.
Bellare Mihir M.
Rogaway Phillip W.
Cangialosi Salvatore
Dillon Andrew J.
Hunn Melvin A.
International Business Machines - Corporation
LaBaw Jeffrey S.
LandOfFree
Method and apparatus for three-party entity authentication and k does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Method and apparatus for three-party entity authentication and k, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Method and apparatus for three-party entity authentication and k will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-245503