公开(公告)号：US20150124961A1

公开(公告)日：2015-05-07

申请号：US14073379

申请日：2013-11-06

Applicant: Certicom Corp. ,  BlackBerry Limited

Inventor： Robert John Lambert ,  Daniel Richard L. Brown ,  Atsushi Yamada

IPC: H04L9/08 ,  H04L9/30

CPC classification number: H04L63/0428 ,  H04L9/0637 ,  H04L9/0841 ,  H04L9/0861 ,  H04L9/14 ,  H04L9/3066 ,  H04L9/3242 ,  H04L63/06

Abstract: In some aspects, an encryption method comprises encrypting a first portion of a message using a first secret key. The first secret key is generated based on the public key of an entity. A one-way function is used to generate a second secret key from the first secret key, and the first secret key is subsequently discarded. A second portion of the message is encrypted using the second secret key. The encrypted first portion of the message and the encrypted second portion of the message are provided to the entity.

Abstract translation: 在一些方面，加密方法包括使用第一秘密密钥加密消息的第一部分。 第一个秘密密钥是根据实体的公钥生成的。 单向函数用于从第一秘密密钥生成第二秘密密钥，并且随后丢弃第一秘密密钥。 消息的第二部分使用第二秘密密钥进行加密。 将消息的加密的第一部分和消息的加密的第二部分提供给实体。

公开(公告)号：US20140230029A1

公开(公告)日：2014-08-14

申请号：US14252527

申请日：2014-04-14

Applicant: CERTICOM CORP.

Inventor： Matthew John Campagna ,  Robert John Lambert ,  James Robert Alfred

IPC: H04L29/06 ,  H04L9/32 ,  H04L9/08

CPC classification number: H04L63/08 ,  H04L9/083 ,  H04L9/0841 ,  H04L9/0844 ,  H04L9/0861 ,  H04L9/3066 ,  H04L9/3236 ,  H04L9/3263 ,  H04L29/06 ,  H04L63/062 ,  H04L63/0823 ,  H04W12/04

Abstract: A method and apparatus are disclosed for using a single credential request (e.g., registered public key or ECQV certificate) to obtain a plurality of credentials in a secure digital communication system having a plurality of trusted certificate authority CA entities and one or more subscriber entities A. In this way, entity A can be provisioned onto multiple PKI networks by leveraging a single registered public key or implicit certificate as a credential request to one or more CA entities to obtain additional credentials, where each additional credential can be used to derive additional public key-private key pairs for the entity A.

Abstract translation: 公开了一种用于使用单个凭证请求（例如，注册公钥或ECQV证书）在具有多个可信证书机构CA实体和一个或多个订户实体A的安全数字通信系统中获得多个凭证的方法和装置 以这种方式，可以通过利用单个注册公钥或隐式证书作为向一个或多个CA实体的凭证请求来获得附加证书来将实体A提供给多个PKI网络，其中每个附加证书可以用于导出附加公共 实体A的密钥 - 私钥对。