-
1.发明授权Trapdoor one-way functions on elliptic curves and their application to shorter signatures and asymmetric encryption 有权椭圆曲线上的Trapdoor单向函数及其对较短签名和非对称加密的应用公开(公告)号:US08213605B2
公开(公告)日:2012-07-03
申请号:US12945234
申请日:2010-11-12
IPC分类号: H04L9/30
CPC分类号: H04L63/0823 , G06F21/64 , H04L9/3066 , H04L9/3252
摘要: The present invention provides a new trapdoor one-way function. In a general sense, some quadratic algebraic integer z is used. One then finds a curve E and a rational map defining [z] on E. The rational map [z] is the trapdoor one-way function. A judicious selection of z will ensure that [z] can be efficiently computed, that it is difficult to invert, that determination of [z] from the rational functions defined by [z] is difficult, and knowledge of z allows one to invert [z] on a certain set of elliptic curve points. Every rational map is a composition of a translation and an endomorphism. The most secure part of the rational map is the endomorphism as the translation is easy to invert. If the problem of inverting the endomorphism and thus [z] is as hard as the discrete logarithm problem in E, then the size of the cryptographic group can be smaller than the group used for RSA trapdoor one-way functions.
摘要翻译: 本发明提供了一种新的陷门单向功能。 在一般意义上,使用一些二次代数整数z。 然后找到曲线E和在E上定义[z]的有理图。有理图[z]是陷门单向函数。 z的明智选择将确保可以有效地计算[z],难以反转,[z]定义的[z]的确定是困难的,而z的知识允许反转[ z]在一组椭圆曲线点上。 每一个合理的地图都是一个翻译和一个同化的组合。 理性地图中最安全的部分是翻译易翻译的同化。 如果反转内生的问题,因此[z]与E中的离散对数问题一样困难,则密码组的大小可以小于用于RSA陷门单向函数的组的大小。
-
公开(公告)号:US08462944B2
公开(公告)日:2013-06-11
申请号:US13181184
申请日:2011-07-12
申请人: Scott Alexander Vanstone , Ashok Vadekar , Robert John Lambert , Robert Philip Gallant , Daniel Richard L. Brown , Alfred John Menezes
发明人: Scott Alexander Vanstone , Ashok Vadekar , Robert John Lambert , Robert Philip Gallant , Daniel Richard L. Brown , Alfred John Menezes
IPC分类号: H04L9/30
CPC分类号: H04L9/0869 , H04L2209/26 , H04L2209/46
摘要: A potential bias in the generation of a private key is avoided by selecting the key and comparing it against the system parameters. If a predetermined condition is attained it is accepted. If not it is rejected and a new key is generated.
摘要翻译: 通过选择密钥并将其与系统参数进行比较来避免私钥生成中的潜在偏差。 如果达到预定条件,则被接受。 如果不是,则被拒绝并生成新的密钥。
-
公开(公告)号:US08000470B2
公开(公告)日:2011-08-16
申请号:US12119248
申请日:2008-05-12
申请人: Scott Alexander Vanstone , Ashok Vadekar , Robert John Lambert , Robert Philip Gallant , Daniel Richard L. Brown , Alfred John Menezes
发明人: Scott Alexander Vanstone , Ashok Vadekar , Robert John Lambert , Robert Philip Gallant , Daniel Richard L. Brown , Alfred John Menezes
CPC分类号: H04L9/0869 , H04L2209/26 , H04L2209/46
摘要: A potential bias in the generation of a private key is avoided by selecting the key and comparing it against the system parameters. If a predetermined condition is attained it is accepted. If not it is rejected and a new key is generated.
摘要翻译: 通过选择密钥并将其与系统参数进行比较来避免私钥生成中的潜在偏差。 如果达到预定条件,则被接受。 如果不是,则被拒绝并生成新的密钥。
-
公开(公告)号:US20090296939A1
公开(公告)日:2009-12-03
申请号:US12390030
申请日:2009-02-20
CPC分类号: H04L63/065 , H04L9/00 , H04L9/006 , H04L9/08 , H04L9/0833 , H04L9/0838 , H04L63/0428 , H04L63/0471 , H04L63/061 , H04L63/08 , H04L63/0876 , H04L63/104 , H04W12/04 , H04W12/06 , H04W84/18
摘要: A method and system for distributed security for a plurality of devices in a communication network, each of the devices being responsible for generating, distributing and controlling its own keys for access to the communication network and using the keys to establish a trusted network, each device's membership to the communication network being checked periodically by other devices by using a challenge response protocol to establish which devices are allowed access to the communication network and the trusted network.
摘要翻译: 一种用于通信网络中的多个设备的分布式安全性的方法和系统,每个设备负责生成,分发和控制其自己的密钥以访问通信网络并使用密钥建立可信网络,每个设备的 由通过使用质询响应协议来确定哪些设备被允许访问通信网络和可信网络的其他设备周期性地检查通信网络的成员资格。
-
公开(公告)号:US08681993B2
公开(公告)日:2014-03-25
申请号:US12390030
申请日:2009-02-20
IPC分类号: H04L9/08
CPC分类号: H04L63/065 , H04L9/00 , H04L9/006 , H04L9/08 , H04L9/0833 , H04L9/0838 , H04L63/0428 , H04L63/0471 , H04L63/061 , H04L63/08 , H04L63/0876 , H04L63/104 , H04W12/04 , H04W12/06 , H04W84/18
摘要: A method and system for distributed security for a plurality of devices in a communication network, each of the devices being responsible for generating, distributing and controlling its own keys for access to the communication network and using the keys to establish a trusted network, each device's membership to the communication network being checked periodically by other devices by using a challenge response protocol to establish which devices are allowed access to the communication network and the trusted network.
摘要翻译: 一种用于通信网络中的多个设备的分布式安全性的方法和系统,每个设备负责生成,分发和控制其自己的密钥以访问通信网络并使用密钥建立可信网络,每个设备的 由通过使用质询响应协议来确定哪些设备被允许访问通信网络和可信网络的其他设备周期性地检查通信网络的成员资格。
-
公开(公告)号:US09864851B2
公开(公告)日:2018-01-09
申请号:US14235384
申请日:2011-07-28
申请人: Neil Patrick Adams , Scott Alexander Vanstone , Daniel Richard L. Brown , Dinah Lea Marie Davis , Christopher Labrador , Alfred John Menezes
发明人: Neil Patrick Adams , Scott Alexander Vanstone , Daniel Richard L. Brown , Dinah Lea Marie Davis , Christopher Labrador , Alfred John Menezes
CPC分类号: G06F21/31 , G06F21/33 , H04L9/0869 , H04L9/3226 , H04L63/06 , H04L63/083
摘要: A system, device and method for authenticating a user. The system, device and method may employ a computing device for providing credentials required for access to an on-line resource available over a network. The computing device may connect to the on-line resource to register a user. The computing device may receive from the on-line resource at least one request for a credential to identify the user. In response to the request, the computing device may generate a random credential, store the random credential in association with an on-line resource identifier and the request in a data store accessible to the computing device and, submit the random credential to the on-line resource to register the user.
-
7.发明授权公开(公告)号:US09003181B2
公开(公告)日:2015-04-07
申请号:US13070178
申请日:2011-03-23
申请人: Herbert Anthony Little , Matthew John Campagna , Scott Alexander Vanstone , Daniel Richard L. Brown
发明人: Herbert Anthony Little , Matthew John Campagna , Scott Alexander Vanstone , Daniel Richard L. Brown
CPC分类号: H04L9/0844 , H04L9/3066 , H04L9/3263
摘要: During generation of an implicit certificate for a requestor, a certificate authority incorporates information in the public-key reconstruction data, where the public-key reconstruction data is to be used to compute the public key of the requestor. The information may be related to one or more of the requestor, the certificate authority, and the implicit certificate. The certificate authority reversibly encodes the public-key reconstruction data in the implicit certificate and sends it to the requestor. After receiving the implicit certificate from the certificate authority, the requestor can extract the incorporated information from the public-key reconstruction data. The implicit certificate can be made available to a recipient, and the recipient can also extract the incorporated information.
摘要翻译: 在为请求者生成隐式证书期间,证书颁发机构将公钥重构数据中的信息合并在一起,其中公钥重构数据将用于计算请求者的公开密钥。 信息可能与请求者,证书颁发机构和隐含证书中的一个或多个有关。 证书颁发机构对隐含证书中的公钥重构数据进行可逆编码,并将其发送给请求者。 从认证机构收到隐含证书后,请求者可以从公钥重构数据中提取合并信息。 隐式证书可以提供给收件人,收件人还可以提取合并的信息。
-
8.发明申请SYSTEM, DEVICE, AND METHOD FOR AUTHENTICATION OF A USER ACCESSING AN ON-LINE RESOURCE 有权用于认证在线资源的用户的系统,设备和方法公开(公告)号:US20140173704A1
公开(公告)日:2014-06-19
申请号:US14235384
申请日:2011-07-28
申请人: Neil Patrick Adams , Scott Alexander Vanstone , Daniel Richard L. Brown , Dinah Lea Marie Davis , Christopher Labrador , Alfred John Menezes
发明人: Neil Patrick Adams , Scott Alexander Vanstone , Daniel Richard L. Brown , Dinah Lea Marie Davis , Christopher Labrador , Alfred John Menezes
IPC分类号: G06F21/31
CPC分类号: G06F21/31 , G06F21/33 , H04L9/0869 , H04L9/3226 , H04L63/06 , H04L63/083
摘要: A system, device and method for authenticating a user. The system, device and method may employ a computing device for providing credentials required for access to an on-line resource available over a network. The computing device may connect to the on-line resource to register a user. The computing device may receive from the on-line resource at least one request for a credential to identify the user. In response to the request, the computing device may generate a random credential, store the random credential in association with an on-line resource identifier and the request in a data store accessible to the computing device and, submit the random credential to the on-line resource to register the user.
摘要翻译: 用于认证用户的系统,设备和方法。 系统,设备和方法可以使用计算设备来提供访问通过网络可用的在线资源所需的证书。 计算设备可以连接到在线资源以注册用户。 计算设备可以从在线资源接收至少一个用于凭证的请求以识别该用户。 响应于该请求,计算设备可以生成随机凭证,将在线资源标识符和请求存储在计算设备可访问的数据存储器中的随机凭证,并将随机凭证提交给在线资源标识符, 线资源注册用户。
-
公开(公告)号:US08675869B2
公开(公告)日:2014-03-18
申请号:US13070226
申请日:2011-03-23
申请人: Herbert Anthony Little , Matthew John Campagna , Scott Alexander Vanstone , Daniel Richard L. Brown
发明人: Herbert Anthony Little , Matthew John Campagna , Scott Alexander Vanstone , Daniel Richard L. Brown
IPC分类号: H04K1/00
CPC分类号: H04L9/3066 , H04L9/3252 , H04L2209/38 , H04L2209/80
摘要: During generation of a signature on a message to create a signed message, a signer determines one of the signature components such that particular information can be extracted from the signature component. The particular information may be related to one or more of the signer and the message to be signed. After receiving a signed message purported to be signed by the signer, a verifier can extract the particular information from the signature component.
摘要翻译: 在生成消息的签名以产生签名消息时,签名者确定签名组件中的一个,从而可以从签名组件提取特定信息。 特定信息可以与签名者和要签名的消息中的一个或多个有关。 在收到签名者签名的签名信息后,验证者可以从签名组件中提取特定信息。
-
10.发明申请INCORPORATING DATA INTO CRYPTOGRAPHIC COMPONENTS OF AN ECQV CERTIFICATE 有权将数据纳入ECQV认证的CRYPTOGRAPHIC COMPONENTS公开(公告)号:US20120246465A1
公开(公告)日:2012-09-27
申请号:US13070178
申请日:2011-03-23
申请人: Herbert Anthony Little , Matthew John Campagna , Scott Alexander Vanstone , Daniel Richard L. Brown
发明人: Herbert Anthony Little , Matthew John Campagna , Scott Alexander Vanstone , Daniel Richard L. Brown
IPC分类号: H04L9/30
CPC分类号: H04L9/0844 , H04L9/3066 , H04L9/3263
摘要: During generation of an implicit certificate for a requestor, a certificate authority incorporates information in the public-key reconstruction data, where the public-key reconstruction data is to be used to compute the public key of the requestor. The information may be related to one or more of the requestor, the certificate authority, and the implicit certificate. The certificate authority reversibly encodes the public-key reconstruction data in the implicit certificate and sends it to the requestor. After receiving the implicit certificate from the certificate authority, the requestor can extract the incorporated information from the public-key reconstruction data. The implicit certificate can be made available to a recipient, and the recipient can also extract the incorporated information.
摘要翻译: 在为请求者生成隐式证书期间,证书颁发机构将公钥重构数据中的信息合并在一起,其中公钥重构数据将用于计算请求者的公开密钥。 信息可能与请求者,证书颁发机构和隐含证书中的一个或多个有关。 证书颁发机构对隐含证书中的公钥重构数据进行可逆编码,并将其发送给请求者。 从认证机构收到隐含证书后,请求者可以从公钥重构数据中提取合并信息。 隐式证书可以提供给收件人,收件人还可以提取合并的信息。
-
-
-
-
-
-
-
-
-
搜索结果
45 条记录 (耗时 0.027 秒)
