公开(公告)号：US07216232B1

公开(公告)日：2007-05-08

申请号：US09294956

申请日：1999-04-20

申请人： Ingemar J. Cox ,  Matthew L. Miller ,  Douglas F. Rayner

发明人： Ingemar J. Cox ,  Matthew L. Miller ,  Douglas F. Rayner

IPC分类号： H04L9/00

CPC分类号： H04N1/32208 ,  G06T1/0021 ,  H04L9/3236 ,  H04L9/3247 ,  H04L2209/30 ,  H04L2209/608 ,  H04L2209/80 ,  H04N1/32128 ,  H04N1/32144 ,  H04N1/32229 ,  H04N1/32283 ,  H04N2101/00 ,  H04N2201/3233 ,  H04N2201/3269

摘要： A method for inserting a digital signature into digital data is provided. The digital data has bits and the method includes the steps of: assigning predetermined bits of the digital data for receiving the digital signature; signing the digital data excluding the predetermined bits resulting in the digital signature; and inserting the digital signature into the predetermined bits of the digital data for subsequent authentication of the digital data. Also provided is a method for authenticating digital data having the embedded digital signature in the predetermined bits of the digital data including the steps of: extracting the digital signature from the predetermined bits; decrypting the digital signature from the digital data resulting in a first hash; applying a known one-way hashing function used by an encoder of the digital data to the digital data excluding the predetermined bits resulting in a second hash; and comparing the first hash to the second hash wherein if the first hash matches the second hash the digital data is authentic. In a preferred version of the methods of the present invention, the method further includes the step of inserting associated data into the digital data prior to the signing step such that the digital signature authenticates both the associated data as well as the digital data. Preferably, the associated data is inserted into the bits of the digital data excluding the predetermined bits.

摘要翻译： 提供了一种将数字签名插入数字数据的方法。 数字数据具有比特，并且该方法包括以下步骤：分配用于接收数字签名的数字数据的预定比特; 签署不包括导致数字签名的预定位的数字数据; 并将数字签名插入到数字数据的预定位中，以便后续的数字数据认证。 还提供了一种用于在数字数据的预定位中验证具有嵌入数字签名的数字数据的方法，包括以下步骤：从预定位提取数字签名; 从数字数据解密数字签名，得到第一个散列; 将由数字数据的编码器使用的已知单向散列函数应用于除了预定位之外的数字数据，导致第二散列; 以及将所述第一散列与所述第二散列进行比较，其中如果所述第一散列与所述第二散列匹配，则所述数字数据是可信的。 在本发明的方法的优选版本中，该方法还包括在签名步骤之前将相关联的数据插入到数字数据中的步骤，使得数字签名认证相关数据以及数字数据。 优选地，相关联的数据被插入除了预定比特之外的数字数据的比特中。