Electrical computers and digital processing systems: support – Multiple computer communication using cryptography – Particular communication authentication technique
Reexamination Certificate
2011-06-07
2011-06-07
Zia, Syed A. (Department: 2431)
Electrical computers and digital processing systems: support
Multiple computer communication using cryptography
Particular communication authentication technique
C713S150000, C713S162000, C713S163000, C713S168000, C713S181000, C713S182000, C380S229000, C380S028000, C380S030000, C380S227000, C380S278000, C380S282000
Reexamination Certificate
active
07958356
ABSTRACT:
A system and method securely establishes a shared secret among nodes of a security appliance. The shared secret is established by distributing private keys among the nodes in accordance with a node ring protocol that uses a predetermined encryption algorithm to generate messages containing the keys. Briefly, each node is initially notified as to the number of nodes participating in the shared secret establishment. Each node generates a public-private key-pair, as well as a first message that includes the generated public key and an indication of the source of the generated public key (hereinafter “source generated public key”). The node then sends the first message to an adjacent node of the appliance. Upon receiving the first message, each node extracts the source generated public key from the message and stores the extracted information into a data structure of “partner” public keys. The protocol then continues with each node generating additional messages equal to the number of participating nodes minus one. At that point, each node combines its private key with its partner public keys stored in the data structure to generate a value that is common among all of the participating nodes. This common value is then used to derive the shared secret.
REFERENCES:
patent: 7139917 (2006-11-01), Jablon
patent: 7409545 (2008-08-01), Perlman
patent: 7545932 (2009-06-01), Durand et al.
patent: 7580521 (2009-08-01), Spies et al.
patent: 7761910 (2010-07-01), Ransom et al.
patent: 7779259 (2010-08-01), Vanstone et al.
patent: 2002/0136410 (2002-09-01), Hanna
patent: 2002/0191797 (2002-12-01), Perlman
patent: 2003/0217258 (2003-11-01), Bade
patent: 2004/0153642 (2004-08-01), Plotkin et al.
patent: 2005/0100166 (2005-05-01), Smetters et al.
patent: 2008/0195866 (2008-08-01), Roth et al.
patent: 2009/0063863 (2009-03-01), Durand et al.
patent: 2009/0144557 (2009-06-01), Sutton
Charlie Kaufman et al; Network Security: Private Communication in a Public World; pp. 147-152; Prentice Hall PTR, Upper Saddle River, New Jersey 07458; 1995.
Chang Lawrence Wen-Hao
Subramanian Ananthan
Sussland Robert Jan
Cesari and McKenna LLP
NetApp, Inc.
Zia Syed A.
LandOfFree
System and method for establishing a shared secret among... does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with System and method for establishing a shared secret among..., we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and System and method for establishing a shared secret among... will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-2677020