公开(公告)号：US08670567B2

公开(公告)日：2014-03-11

申请号：US12096426

申请日：2006-12-05

申请人： Julie Loc'H ,  David Arditi ,  Sylvie Camus

发明人： Julie Loc'H ,  David Arditi ,  Sylvie Camus

IPC分类号： H04L9/00

CPC分类号： H04L9/0894

摘要： At least one expired decryption key intended to be used for asymmetrical decryption of encrypted data is recovered in a terminal after generation of a cryptographic encryption key/decryption key pair stored in a cryptographic medium such as a microchip card. The expired decryption key is stored in a database accessible to a user of the terminal and encrypted beforehand as a function of the new generated encryption key. In the terminal connected to the cryptographic medium, the encrypted expired encryption key is decrypted as a function of the decryption key stored in the cryptographic medium so that the encrypted data is decrypted as a function of the thus decrypted expired decryption key.

摘要翻译： 在生成存储在诸如微芯片卡的密码介质中的密码加密密钥/解密密钥对之后，在终端中恢复旨在用于加密数据的非对称解密的至少一个到期的解密密钥。 过期的解密密钥存储在可由终端的用户访问的数据库中，作为新生成的加密密钥的函数预先加密。 在连接到密码介质的终端中，根据存储在密码介质中的解密密钥的函数对加密的过期加密密钥进行解密，使得加密的数据作为这样解密的过期解密密钥的函数被解密。

公开(公告)号：US07398396B2

公开(公告)日：2008-07-08

申请号：US10659796

申请日：2003-09-11

申请人： David Arditi ,  Laurent Frisch ,  Dimitri Mouton

发明人： David Arditi ,  Laurent Frisch ,  Dimitri Mouton

IPC分类号： H04L9/00

CPC分类号： H04L9/3247 ,  H04L9/3263 ,  H04L9/3271 ,  H04L9/3297 ,  H04L2209/68 ,  H04L2209/80

摘要： In order to apply an electronic signature from a client station having authentication resources at a server, the following steps are carried out: the client station is authenticated at the server, thus establishing an authenticated communication channel; a private key/public key pair is generated at the client station; a signature certificate request generated by means of at least the public key is transmitted from the client station to the server via the authenticated channel; a signature certificate obtained in response to the request is returned via the authenticated channel; this certificate is verified at the client station; an electronic signature is calculated at the client station by means of the private key, after which this private key is destroyed; and the calculated signature is formatted with the aid of the signature certificate received via the authenticated channel.

摘要翻译： 为了从具有服务器认证资源的客户站应用电子签名，执行以下步骤：在服务器处认证客户端站，从而建立认证通信信道; 在客户端生成私钥/公钥对; 至少通过公钥生成的签名证书请求经由认证信道从客户端发送到服务器; 通过认证通道返回响应请求而获得的签名证书; 该证书在客户站进行验证; 在客户端通过私钥计算电子签名，之后该私钥被销毁; 并借助于通过认证信道接收的签名证书格式化计算出的签名。