Electrical computers and digital processing systems: support – Multiple computer communication using cryptography – Particular communication authentication technique
Patent
1997-10-20
2000-09-12
Swann, Tod R.
Electrical computers and digital processing systems: support
Multiple computer communication using cryptography
Particular communication authentication technique
380283, 380278, 713200, 713202, H04L 900
Patent
active
061192279
DESCRIPTION:
BRIEF SUMMARY
TECHNICAL FIELD
This invention relates to methods and apparatus for authenticating an originator of a message, and which in particular enable the originator of a message to be authenticated without the need for specialized authentication organizations, and without decryption of encrypted information.
BACKGROUND ART
Modern computing and telecommunication systems have enabled a rapid and continuing increase in exchange of information between individuals and organizations, e.g. via the system commonly known as the Internet. However, the full potential of such systems is currently restricted by the difficulty of providing secure transfer of valuable information over the system. Many organizations would like to use publically-accessible networks for conducting various transactions, such as the sale of goods and services. In principle payment for such transactions could be obtained from a customer by transfer over the network of relevant information such as credit card details. However it is clearly possible for a dishonest third party to intercept such information during transmission, and then mis-use it to the third party's financial advantage. Various other fraudulent activities are possible, such as false repudiation of orders. Accordingly most transactions which may be initiated over a network still have to be completed using conventional methods such as exchange of paper invoices and payments or voice messages, using more trusted systems such as mail or voice telephone networks.
It is essential for an effective electronic transaction mechanism to have several properties: transaction; ability to prove if a message has been corrupted; in a transaction;
Various proposals have been made for electronic message authentication. Although they tend to satisfy the primarily technical requirements, they also tend to be either costly and/or contrary to national security interests. Thus many proposals involve reliance on a specialized third-party security service, for example for authentication of messages in each transaction or to supply and certify public encryption keys. In addition many of these proposals involve the use of reversible encryption algorithms, i.e. algorithms in which information is concealed by encryption by a sender and retrieved again by decryption by the recipient. Such algorithms can also be used for transfer of other information which is contrary to national security interests, so the distribution and in particular export from some countries of products which incorporate reversible encryption algorithms is often controlled or prohibited. Any proposal which involves decryption, and thus requires a reversible encryption algorithm, is unlikely to be suitable to be made available for use on a widespread basis.
It is an object of this invention to provide a method and apparatus for authenticating messages which avoids the problems entailed in prior proposals, and in particular does not require any specialist security service nor involve the use of a reversible encryption technique.
Disclosure of Invention
According to one aspect of this invention there is provided a method for enabling authentication of an originator of a message, using a composite one-way function which enables a protected version of an input value to be derived by applying successively in either order two component one-way functions using two respective values, but which does not enable the input value to be readily determined from the protected version in combination with either of said values individually, comprising the steps of: being derived from a first of said component one-way functions using said password as said respective value; of said component one-way functions; value; to said protected password to derive a ticket key; signature and said protected session key to the source of said protected password; and key.
According to one aspect of this invention there is provided apparatus for enabling authentication of an originator of a message, using a composite one-way function which enables a protected version of an i
REFERENCES:
patent: 4200770 (1980-04-01), Hellman et al.
patent: 4947430 (1990-08-01), Chaum
patent: 4949380 (1990-08-01), Chaum
patent: 4991210 (1991-02-01), Chaum
patent: 4993069 (1991-02-01), Matyas et al.
patent: 4996711 (1991-02-01), Chaum
patent: 5241599 (1993-08-01), Bellovin et al.
patent: 5301247 (1994-04-01), Rasmussen et al.
patent: 5323146 (1994-06-01), Glaschick
patent: 5373558 (1994-12-01), Chaum
patent: 5491749 (1996-02-01), Rogaway
patent: 5491752 (1996-02-01), Kaufman et al.
patent: 5706349 (1998-01-01), Aditham et al.
patent: 5706427 (1998-01-01), Tabuki
patent: 5720034 (1998-02-01), Case
patent: 5737422 (1998-04-01), Billings
patent: 5864667 (1999-01-01), Barkan
patent: 5892828 (1999-04-01), Perlman
patent: 5987130 (1999-11-01), Chang
patent: 5995624 (1999-11-01), Fielder et al.
patent: 6023689 (2000-02-01), Herlin et al.
patent: 6052469 (2000-04-01), Johnson et al.
Mao, Wenbo, "A Secure, Cheap, Scalable and Exportable/Importable Method for Internet Electronic Payments," http://www.cs.nccu.edu.tw/.about.jong/agent/PP/pptr.html [internet], May 1995.
Mao, "Financial Transaction Models in the Electronic World," http://www.hpl.hp.co.uk/projects/vishnu/main.html [internet], Jun. 1995.
"Financial Transaction Models in the Electronic World," Electronic-Business Project, Hewlett-Packard Laboratories, Bristol, http://www.hpl.hp.co.uk/projects/vishnu/main.html [internet], Apr. 2000.
Operating Systems Review, Jan. 1987, USA, vol. 21, No. 1, ISSN 0163-5980, pp. 8-10, XP002008756 Otway D et al: "Efficient and timely mutual authentication".
Hewlett--Packard Company
Kabakoff Steve
Swann Tod R.
LandOfFree
Methods and apparatus for authenticating an originator of a mess does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Methods and apparatus for authenticating an originator of a mess, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Methods and apparatus for authenticating an originator of a mess will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-105999