公开(公告)号：US5724428A

公开(公告)日：1998-03-03

申请号：US548318

申请日：1995-11-01

申请人： Ronald L. Rivest

发明人： Ronald L. Rivest

IPC分类号： H04L9/06

CPC分类号： H04L9/0625 ,  H04L2209/08 ,  H04L2209/12 ,  H04L2209/24 ,  H04L2209/30

摘要： A simple encryption and decryption device has been developed. The underlying algorithm is a fast block cipher that may be implemented efficiently in hardware or software. The algorithm makes heavy use of data-dependent rotations. The amount of each rotation depends on the data being encrypted and intermediate encryption results. The variables for the algorithm include word size, rounds, and the length of a secret key.

公开(公告)号：US08983874B2

公开(公告)日：2015-03-17

申请号：US12579313

申请日：2009-10-14

申请人： Silvio Micali ,  Ronald L. Rivest

发明人： Silvio Micali ,  Ronald L. Rivest

IPC分类号： G06Q20/00 ,  G06Q20/06 ,  G06Q20/04 ,  G06Q20/22 ,  G06Q20/36 ,  G06Q20/38 ,  G06Q20/02

CPC分类号： G06Q20/06 ,  G06Q20/02 ,  G06Q20/027 ,  G06Q20/04 ,  G06Q20/0425 ,  G06Q20/29 ,  G06Q20/3674 ,  G06Q20/382 ,  G06Q20/3825

摘要： A micropayment system and method is presented for a payor U to establish payment to payee M for a transaction T, which typically has a very low value TV. The micropayment scheme minimizes the bank's processing costs, while at the same time eliminating the need for users and merchants to interact in order to determine whether a given micropayment should be selected for payment. In one embodiment, the micropayment scheme includes time constraints, which require that an electronic check C for the transaction T be presented to a bank B for payment within a predetermined time/date interval. In another embodiment, the micropayment scheme includes a selective deposit protocol, which guarantees that a user is never charged in excess of what he actually spends, even within a probabilistic framework. In another embodiment, the micropayment scheme includes a deferred selection protocol, which provides the bank with control and flexibility over the payment selection process.

摘要翻译： 提出了一种微支付系统和方法，用于付款人U为交易T建立支付给付款人M，该交易通常具有非常低的价值电视。 微支付方案最大限度地减少了银行的处理成本，同时消除了用户和商家进行交互的需要，以确定是否应选择给定的小额支付进行付款。 在一个实施例中，微支付方案包括时间限制，其要求在预定时间/日期间隔内向银行B呈现用于交易T的电子支票C.以用于支付。 在另一个实施例中，微支付方案包括选择性存款协议，其保证即使在概率框架内，用户也不会超出他实际花费的费用。 在另一个实施例中，微支付方案包括延迟选择协议，其为银行提供在支付选择过程上的控制和灵活性。

公开(公告)号：US07502467B2

公开(公告)日：2009-03-10

申请号：US11265510

申请日：2005-11-02

申请人： John G. Brainard ,  Burton S. Kaliski, Jr. ,  Magnus Nyström ,  Ronald L. Rivest

发明人： John G. Brainard ,  Burton S. Kaliski, Jr. ,  Magnus Nyström ,  Ronald L. Rivest

IPC分类号： H04L9/00 ,  H04L9/32

CPC分类号： H04L63/08 ,  G06F21/31 ,  G06F21/33 ,  H04L9/0844 ,  H04L9/0869 ,  H04L9/3234 ,  H04L63/0428

摘要： In one embodiment of a user authentication system and method according to the invention, a device shares a secret, referred to as a master seed, with a server. The device and the server both derive one or more secrets, referred to as verifier seeds, from the master seed, using a key derivation function. The server shares a verifier seed with one or more verifiers. The device, or an entity using the device, can authenticate with one of the verifiers using the appropriate verifier seed. In this way, the device and the verifier can share a secret, the verifier seed for that verifier, without that verifier knowing the master seed, or any other verifier seeds. Thus, the device need only store the one master seed, have access to the information necessary to correctly derive the appropriate seed, and have seed derivation capability. A verifier cannot compromise the master seed, because the verifier does not have access to the master seed.

摘要翻译： 在根据本发明的用户认证系统和方法的一个实施例中，设备与服务器共享被称为主种子的秘密。 设备和服务器都使用密钥导出函数从主种子中导出一个或多个称为验证者种子的秘密。 服务器与一个或多个验证者共享一个验证者种子。 设备或使用该设备的实体可以使用适当的验证者种子与验证者之一进行身份验证。 以这种方式，设备和验证者可以共享秘密，该验证者的验证者种子，而没有知道主种子的验证者或任何其他验证者种子。 因此，设备只需要存储一个主播种子，可以访问正确导出适当种子所需的信息，并具有种子推导能力。 验证者不能损害主粒子，因为验证者无法访问主粒子。

公开(公告)号：US20080232590A1

公开(公告)日：2008-09-25

申请号：US10553611

申请日：2004-01-23

申请人： Ronald L. Rivest ,  Silvio Micali ,  Perry Solomon ,  Robert Nix ,  Robert Carney ,  Prasad Jonnalagadda ,  Joseph Bergeron III ,  Mark Bates

发明人： Ronald L. Rivest ,  Silvio Micali ,  Perry Solomon ,  Robert Nix ,  Robert Carney ,  Prasad Jonnalagadda ,  Joseph Bergeron III ,  Mark Bates

IPC分类号： H04L9/14 ,  H04L9/00 ,  G06Q20/00

CPC分类号： G06Q30/02 ,  G06Q20/401

摘要： A method of producing an offer package includes defining, within the offer package, a description of an offered product. The cost of the offered product and the merchant making the offer are also defined within the offer package, which includes an encrypted version of the offered product.

摘要翻译： 生产报价包的方法包括在报价包中定义所提供产品的描述。 提供的产品和提供报价的商家的成本也在提供包中定义，包括提供的产品的加密版本。

公开(公告)号：US06985583B1

公开(公告)日：2006-01-10

申请号：US09304775

申请日：1999-05-04

申请人： John G. Brainard ,  Burton S. Kaliski, Jr. ,  Magnus Nyström ,  Ronald L. Rivest

发明人： John G. Brainard ,  Burton S. Kaliski, Jr. ,  Magnus Nyström ,  Ronald L. Rivest

IPC分类号： H04L9/00 ,  H04L9/32

CPC分类号： H04L63/08 ,  G06F21/31 ,  G06F21/33 ,  H04L9/0844 ,  H04L9/0869 ,  H04L9/3234 ,  H04L63/0428

摘要： In one embodiment of a user authentication system and method according to the invention, a device shares a secret, referred to as a master seed, with a server. The device and the server both derive one or more secrets, referred to as verifier seeds, from the master seed, using a key derivation function. The server shares a verifier seed with one or more verifiers. The device, or an entity using the device, can authenticate with one of the verifiers using the appropriate verifier seed. In this way, the device and the verifier can share a secret, the verifier seed for that verifier, without that verifier knowing the master seed, or any other verifier seeds. Thus, the device need only store the one master seed, have access to the information necessary to correctly derive the appropriate seed, and have seed derivation capability. A verifier cannot compromise the master seed, because the verifier does not have access to the master seed.

公开(公告)号：US20090267747A1

公开(公告)日：2009-10-29

申请号：US12409282

申请日：2009-03-23

申请人： Ronald L. Rivest ,  Daniel W. Engels ,  Sanjay Sarma ,  Stephen A. Weis

发明人： Ronald L. Rivest ,  Daniel W. Engels ,  Sanjay Sarma ,  Stephen A. Weis

IPC分类号： H04Q5/22

CPC分类号： G06K7/0008 ,  G06K7/10019 ,  H04Q2213/13003 ,  H04Q2213/13095

摘要： In accordance with the present invention, a radio frequency identification (RFID) tag for use with an RFID system which includes one or more RFID tag readers, includes a tag communication device adapted to communicate with each of the one or more tag readers, a one-way hash function stored on the RFID tag, and a memory having stored therein a metaID. The tags may be locked and unlocked. The system includes a reader and a database. The system communicates with the tags via a forward channel and a backward channel. The present invention can singulate one tag from several responding tags and acquire the ID for the singulated tag.

摘要翻译： 根据本发明，一种与包括一个或多个RFID标签读取器的RFID系统一起使用的射频识别（RFID）标签包括适于与一个或多个标签读取器中的每一个通信的标签通信设备，一个 - 存储在RFID标签上的散列函数，以及存储有一个metaID的存储器。 标签可能被锁定和解锁。 该系统包括读取器和数据库。 系统通过前向信道和反向信道与标签进行通信。 本发明可以从多个响应标签中分离出一个标签，并获取单个标签的ID。

公开(公告)号：US07363494B2

公开(公告)日：2008-04-22

申请号：US10010769

申请日：2001-12-04

申请人： John G. Brainard ,  Burton S. Kaliski, Jr. ,  Ronald L. Rivest

发明人： John G. Brainard ,  Burton S. Kaliski, Jr. ,  Ronald L. Rivest

IPC分类号： H04L9/00 ,  H04K1/00 ,  G06F7/04 ,  G06F17/30

CPC分类号： G06Q20/32 ,  G06Q20/385 ,  G06Q20/40 ,  H04L9/3226 ,  H04L9/3297 ,  H04L2209/56 ,  H04L2209/80

摘要： A time-based method for generating an authentication code associated with an entity uses an authentication code generated from a secret, a dynamic, time-varying variable, and the number of previous authentication code generations within the particular time interval. Other information such as a personal identification number (PIN) and a verifier identifier can also be combined into the authentication code.

摘要翻译： 用于生成与实体相关联的认证码的基于时间的方法使用从秘密，动态，时变变量和特定时间间隔内的先前认证码生成次数生成的认证码。 诸如个人识别码（PIN）和验证者标识符的其他信息也可以组合成认证码。

公开(公告)号：US4405829A

公开(公告)日：1983-09-20

申请号：US860586

申请日：1977-12-14

申请人： Ronald L. Rivest ,  Adi Shamir ,  Leonard M. Adleman

发明人： Ronald L. Rivest ,  Adi Shamir ,  Leonard M. Adleman

IPC分类号： G06F1/00 ,  G11B20/00 ,  H04L9/30 ,  H04K1/00

CPC分类号： G11B20/0021 ,  G11B20/00086 ,  H04L9/302 ,  G06F2211/007

摘要： A cryptographic communications system and method. The system includes a communications channel coupled to at least one terminal having an encoding device and to at least one terminal having a decoding device. A message-to-be-transferred is enciphered to ciphertext at the encoding terminal by first encoding the message as a number M in a predetermined set, and then raising that number to a first predetermined power (associated with the intended receiver) and finally computing the remainder, or residue, C, when the exponentiated number is divided by the product of two predetermined prime numbers (associated with the intended receiver). The residue C is the ciphertext. The ciphertext is deciphered to the original message at the decoding terminal in a similar manner by raising the ciphertext to a second predetermined power (associated with the intended receiver), and then computing the residue, M', when the exponentiated ciphertext is divided by the product of the two predetermined prime numbers associated with the intended receiver. The residue M' corresponds to the original encoded message M.

摘要翻译： 密码通信系统和方法。 该系统包括耦合到具有编码装置的至少一个终端和至少一个具有解码装置的终端的通信信道。 通过首先将消息编码为预定集合中的数字M，然后将该数量提高到与预期接收机相关联的第一预定功率（最终计算），在编码终端将密码消息加密 剩余或残差C，当取幂数除以两个预定质数（与预期接收器相关联）的乘积时。 残基C是密文。 通过将密文升高到第二预定功率（与预期接收机相关联），密文在解码终端被解密为解码终端的原始消息，然后计算残差M'，当指数密文除以 与预期接收器相关联的两个预定素数的乘积。 残差M'对应于原始编码消息M.

公开(公告)号：US4376299A

公开(公告)日：1983-03-08

申请号：US168931

申请日：1980-07-14

申请人： Ronald L. Rivest

发明人： Ronald L. Rivest

IPC分类号： G06F19/00 ,  G06Q50/00 ,  G07B17/00 ,  G07B17/04 ,  H04L9/00

CPC分类号： G07B17/0008 ,  G07B17/00733 ,  G07B2017/00161 ,  G07B2017/00306

摘要： A data center for remote postage meter recharging receives resetting signal information to reset a remotely located postage meter. The remotely located postage meter has signal information stored therein for use in recharging the meter with additional postage in conjunction with a signal information received from the data center and entered into the meter. The data center includes a sealed unit for processing received resetting signal information and encrypted signal information stored at the data center outside of the sealed unit. The stored encrypted signal information at the data center is equivalent to the signal information stored in the remotely located postage meter. The sealed unit includes a decrypter for decrypting the encrypted signal information so that it may be combined with the resetting signal information to generate a signal for use in resetting the remotely located postage meter. The sealed unit also includes an encrypter for encrypting information to provide updated encrypted signal information to be stored at the data center outside of the sealed unit for use when the remotely located postage meter is again to be reset with additional postage.

摘要翻译： 用于远程邮资计费器再充电的数据中心接收复位信号信息以复位远程邮资计费器。 位于远程的邮资计费器具有存储在其中的信号信息，用于结合从数据中心接收并输入到仪表中的信号信息用于对附加邮资进行再充电。 数据中心包括用于处理接收到的复位信号信息和存储在密封单元外的数据中心处的加密信号信息的密封单元。 在数据中心存储的加密信号信息等同于存储在远程邮资计费器中的信号信息。 密封单元包括用于解密加密信号信息的解密器，使得其可以与复位信号信息组合以产生用于重置远程位置的邮资计费器的信号。 密封单元还包括用于加密信息的加密器，以在密封单元外部的数据中心处存储更新的加密信号信息，以便当远程位置的邮资计费器再次以额外的邮资复位时使用。

公开(公告)号：US06269163B1

公开(公告)日：2001-07-31

申请号：US09094649

申请日：1998-06-15

申请人： Ronald L. Rivest ,  Matthew John Barton Robshaw ,  Raymond Mark Sidney ,  Yiqun Lisa Yin

发明人： Ronald L. Rivest ,  Matthew John Barton Robshaw ,  Raymond Mark Sidney ,  Yiqun Lisa Yin

IPC分类号： H04K100

CPC分类号： H04L9/0625 ,  H04L9/002 ,  H04L2209/125 ,  H04L2209/24

摘要： A plaintext message to be encrypted is segmented into a number of words, e.g., four words stored in registers A, B, C and D, and an integer multiplication function is applied to a subset of the words, e.g., to the two words in registers B and D. The integer multiplication function may be a quadratic function of the form ƒ(x)=x(ax+b) or other suitable function such as a higher-order polynomial. The results of the integer multiplication function are rotated by lg w bits, where lg denotes log base 2 and w is the number of bits in a given word, to generate a pair of intermediate results t and u. An exclusive-or of another word, e.g., the word in register A, and one of the intermediate results, e.g., t, is rotated by an amount determined by the other intermediate result u. Similarly, an exclusive-or of the remaining word in register D and the intermediate result u is rotated by an amount determined by the other intermediate result t. An element of a secret key array is applied to each of these rotation results, and the register contents are then transposed. This process is repeated for a designated number of rounds to generate a ciphertext message. Pre-whitening and post-whitening operations may be included to ensure that the input or output does not reveal any internal information about any encryption round. Corresponding decryption operations may be used to decrypt the ciphertext message.

摘要翻译： 要加密的明文消息被分割成多个字，例如，存储在寄存器A，B，C和D中的四个字，并且整数乘法函数被应用于字的子集，例如， 寄存器B和D.整数乘法函数可以是形式ƒ（x）= x（ax + b）或其他合适函数的二次函数，例如高阶多项式。 整数乘法函数的结果旋转lg w位，其中lg表示log base 2，w是给定单词中的位数，用于生成一对中间结果t和u。 另一个字，例如寄存器A中的单词和中间结果（例如t）中的一个被旋转由另一个中间结果u确定的量。 类似地，寄存器D中的剩余字和中间结果u的异或被旋转由另一个中间结果t确定的量。 秘密密钥阵列的元素被应用于这些旋转结果中的每一个，然后转移寄存器内容。 针对指定的轮次重复该过程以生成密文消息。 可以包括预白化和后白化操作，以确保输入或输出不显示关于任何加密轮的任何内部信息。 可以使用对应的解密操作来解密密文消息。