-
公开(公告)号:US20150074421A1
公开(公告)日:2015-03-12
申请号:US13520092
申请日:2012-05-25
CPC分类号: H04L63/0823 , G06F21/10 , H04L9/0822 , H04L9/0866 , H04L9/0877 , H04L9/0897 , H04L9/3247 , H04L9/3271 , H04L63/061 , H04L63/0876 , H04L2209/56 , H04L2209/60
摘要: A security system includes a controller manufacturer, a key issuer, and a medium manufacturer. The controller manufacturer writes a controller key Kc and a controller unique ID (IDcu) in the controller at the time of manufacturing the controller, and transmits the controller key Kc to the key issuer. The key issuer generates a medium device key Kmd_i and a medium device key certificate Certmedia, and encrypts the medium device key Kmd_i using the controller key Kc to generate encrypted medium device key Enc(Kc, Kmd_i). The medium manufacturer decrypts the encrypted medium device key Enc(Kc, Kmd_i) received from the key issuer, using the controller key Kc in the controller, and encrypts the medium device key Kmd_i obtained by decryption using a controller unique key Kcu generated from the controller unique ID (IDcu) in the controller, and then store it in a memory.
摘要翻译: 安全系统包括控制器制造商,密钥发行商和媒体制造商。 控制器制造商在制造控制器时将控制器密钥Kc和控制器唯一ID(IDcu)写入控制器,并将控制器密钥Kc发送到密钥发行者。 密钥发行者生成中等设备密钥Kmd_i和中等设备密钥证书Certmedia,并使用控制器密钥Kc对介质设备密钥Kmd_i进行加密,生成加密的介质设备密钥Enc(Kc,Kmd_i)。 介质制造商使用控制器中的控制器密钥Kc来解密从密钥发行者接收到的加密的媒体设备密钥Enc(Kc,Kmd_i),并使用从控制器生成的控制器唯一密钥Kcu对通过解密获得的介质设备密钥Kmd_i进行加密 控制器中的唯一ID(IDcu),然后将其存储在内存中。
-
公开(公告)号:US08650393B2
公开(公告)日:2014-02-11
申请号:US13524417
申请日:2012-06-15
IPC分类号: H04L29/06
CPC分类号: H04L9/321 , G11B20/00115 , G11B20/00217 , G11B2220/60 , H04L9/0816 , H04L9/0822 , H04L9/0833 , H04L9/0869 , H04L9/0897 , H04L9/32 , H04L2209/601
摘要: According to one embodiment, a method for authenticating a device, wherein the device holds secret identification information, encrypted secret identification information, and key management information, and an authenticator holds an identification key, the method includes reading, by the authenticator, the encrypted secret identification information and the key management information from the device, and obtaining, by the authenticator, a family key by using the key management information, the family key being capable of being decrypted with the identification key. The method further includes obtaining, by the authenticator, the secret identification information by decrypting the encrypted secret identification information with the family key.
摘要翻译: 根据一个实施例,一种用于认证设备的方法,其中所述设备保存秘密识别信息,加密的秘密识别信息和密钥管理信息,并且认证器保存识别密钥,所述方法包括由认证者读取加密的秘密 识别信息和密钥管理信息,并且由认证者通过使用密钥管理信息获得家庭密钥,家庭密钥能够用识别密钥解密。 该方法还包括通过用家庭密钥解密加密的秘密识别信息,由认证者获得秘密识别信息。
-
公开(公告)号:US20130124854A1
公开(公告)日:2013-05-16
申请号:US13524417
申请日:2012-06-15
IPC分类号: H04L9/32
CPC分类号: H04L9/321 , G11B20/00115 , G11B20/00217 , G11B2220/60 , H04L9/0816 , H04L9/0822 , H04L9/0833 , H04L9/0869 , H04L9/0897 , H04L9/32 , H04L2209/601
摘要: According to one embodiment, a method for authenticating a device, wherein the device holds secret identification information, encrypted secret identification information, and key management information, and an authenticator holds an identification key, the method includes reading, by the authenticator, the encrypted secret identification information and the key management information from the device, and obtaining, by the authenticator, a family key by using the key management information, the family key being capable of being decrypted with the identification key. The method further includes obtaining, by the authenticator, the secret identification information by decrypting the encrypted secret identification information with the family key.
摘要翻译: 根据一个实施例,一种用于认证设备的方法,其中所述设备保存秘密识别信息,加密的秘密识别信息和密钥管理信息,并且认证器保存识别密钥,所述方法包括由认证者读取加密的秘密 识别信息和密钥管理信息,并且由认证者通过使用密钥管理信息获得家庭密钥,家庭密钥能够用识别密钥解密。 该方法还包括通过用家庭密钥解密加密的秘密识别信息,由认证者获得秘密识别信息。
-
公开(公告)号:US20150074406A1
公开(公告)日:2015-03-12
申请号:US13520051
申请日:2012-05-25
CPC分类号: G06F21/44 , G06F2221/2129 , H04L9/0869 , H04L9/0877 , H04L9/32 , H04L9/3234
摘要: For authentication of the host device, the memory device is configured to output the encrypted second key information (FKB) to the host device, output the encrypted identification information (E-SecretID) to the host device, generate third third key information (Hkey) using information (HC) received from the host device and the first key information, generate a session key (Skey) using a random number (RN) received from the host device, and the third key information, generate authentication information (Oneway-ID) by performing a one-way conversion process on the identification information, using the session key, and output the authentication information (Oneway-ID) to the host device.
摘要翻译: 为了对主机进行认证,存储装置被配置为将加密的第二密钥信息(FKB)输出到主机装置,将加密的识别信息(E-SecretID)输出到主机装置,生成第三密钥信息(Hkey) 使用从主机设备接收的信息(HC)和第一密钥信息,使用从主机设备接收的随机数(RN)和第三密钥信息生成会话密钥(Skey),生成认证信息(Oneway-ID) 通过使用会话密钥对识别信息进行单向转换处理,并将该认证信息(Oneway-ID)输出到主机装置。
-
公开(公告)号:US09124432B2
公开(公告)日:2015-09-01
申请号:US13520053
申请日:2012-05-25
CPC分类号: H04L9/3226 , H04L9/0838 , H04L9/0869 , H04L9/3242 , H04L9/3263 , H04L2209/605
摘要: A first data generation unit generates identification key information (FKey) that may be decrypted from the identification key information (IDKey) using key management information (FKB) read from an authenticatee. A decryption unit decrypts encrypted secret identification information (E-SecretID) using the identification key information (FKey) to generate secret identification information (SecretID). A second data generation unit generates a first session key (Skey) using the first key information (Hkey) and a random number. A one-way conversion unit performs a one-way conversion process on the secret identification information (SecretID) using the generated first session key (SKey) to generate first one-way conversion data (Oneway-ID).
摘要翻译: 第一数据生成单元使用从认证者读取的密钥管理信息(FKB),生成可以从识别密钥信息(IDKey)中解密的识别密钥信息(FKey)。 解密单元使用识别密钥信息(FKey)对加密的秘密识别信息(E-SecretID)进行解密,以生成秘密识别信息(SecretID)。 第二数据生成单元使用第一密钥信息(Hkey)和随机数生成第一会话密钥(Skey)。 单向转换单元使用生成的第一会话密钥(SKey)对秘密识别信息(SecretID)执行单向转换处理,以生成第一单向转换数据(Oneway-ID)。
-
公开(公告)号:US20150074394A1
公开(公告)日:2015-03-12
申请号:US13520053
申请日:2012-05-25
CPC分类号: H04L9/3226 , H04L9/0838 , H04L9/0869 , H04L9/3242 , H04L9/3263 , H04L2209/605
摘要: A first data generation unit generates identification key information (FKey) that may be decrypted from the identification key information (IDKey) using key management information (FKB) read from an authenticatee. A decryption unit decrypts encrypted secret identification information (E-SecretID) using the identification key information (FKey) to generate secret identification information (SecretID). A second data generation unit generates a first session key (Skey) using the first key information (Hkey) and a random number. A one-way conversion unit performs a one-way conversion process on the secret identification information (SecretID) using the generated first session key (SKey) to generate first one-way conversion data (Oneway-ID).
摘要翻译: 第一数据生成单元使用从认证者读取的密钥管理信息(FKB),生成可以从识别密钥信息(IDKey)中解密的识别密钥信息(FKey)。 解密单元使用识别密钥信息(FKey)对加密的秘密识别信息(E-SecretID)进行解密,以生成秘密识别信息(SecretID)。 第二数据生成单元使用第一密钥信息(Hkey)和随机数生成第一会话密钥(Skey)。 单向转换单元使用生成的第一会话密钥(SKey)对秘密识别信息(SecretID)执行单向转换处理,以生成第一单向转换数据(Oneway-ID)。
-
7.发明申请Recording medium, recording medium writing device, recording medium reading device, recording medium writing method, and recording medium reading method 审中-公开记录介质,记录介质写入装置,记录介质读取装置,记录介质写入方法和记录介质读取方法公开(公告)号:US20050154905A1
公开(公告)日:2005-07-14
申请号:US10867737
申请日:2004-06-16
申请人: Tadashi Kojima , Hisashi Yamada , Atsushi Ishihara , Taku Kato , Hiroshi Isozaki , Tatsuyuki Matsushita , Shinichi Matsukawa
发明人: Tadashi Kojima , Hisashi Yamada , Atsushi Ishihara , Taku Kato , Hiroshi Isozaki , Tatsuyuki Matsushita , Shinichi Matsukawa
CPC分类号: G11B20/0021 , G11B20/00086 , G11B20/00289 , G11B20/00362 , G11B20/1833
摘要: Embedded proprietary data, which is configured by embedding decoding key data for decoding encoded contents into proprietary data that is a subject of ownership, is recorded on a recording medium. Since the decoding key data is embedded into the proprietary data, it is difficult to separate and take out the decoding key data from the proprietary data. When copying or the like including the proprietary data is performed, it becomes possible to legally pursue a copy or the like of the proprietary data.
摘要翻译: 嵌入式专有数据被记录在记录介质上,该专有数据通过将用于将编码内容解码的解码密钥数据嵌入到作为所有权主体的专有数据中来配置。 由于解码密钥数据被嵌入到专有数据中,因此难以从专有数据分离和取出解码密钥数据。 当执行包括专有数据的复制等时,可以合法追求专有数据的副本等。
-
公开(公告)号:US08850207B2
公开(公告)日:2014-09-30
申请号:US13513406
申请日:2012-03-22
申请人: Taku Kato , Yuji Nagai , Tatsuyuki Matsushita
发明人: Taku Kato , Yuji Nagai , Tatsuyuki Matsushita
CPC分类号: H04L63/061 , G06F21/44 , G06F21/445 , G06F21/72 , G06F21/73 , G06F21/78 , G06F21/85 , H04L9/0844 , H04L9/0866 , H04L9/0869 , H04L9/3247 , H04L9/3263 , H04L2209/60
摘要: A controller is provided with a controller key and a first controller identification information unique to the controller. The controller generates a controller unique key unique to a respective controller based on the controller key and the first controller identification information, and a second controller identification information based on the first controller identification information. A decryptor decrypts the encrypted medium device key using the controller unique key to obtain a medium device key. An authentication/key exchange process unit performs authentication/key exchange process with the host device through an interface unit using the medium device key, the medium device key certificate and the second controller identification information to establish a secure channel.
摘要翻译: 控制器具有控制器键和控制器独有的第一控制器识别信息。 所述控制器基于所述控制器键和所述第一控制器识别信息生成对于相应控制器特有的控制器唯一密钥,以及基于所述第一控制器标识信息的第二控制器识别信息。 解密器使用控制器唯一密钥对加密的介质设备密钥进行解密以获得中等设备密钥。 认证/密钥交换处理单元通过使用介质设备密钥,介质设备密钥证书和第二控制器标识信息的接口单元与主机设备进行认证/密钥交换处理,以建立安全信道。
-
公开(公告)号:US08667286B2
公开(公告)日:2014-03-04
申请号:US13524532
申请日:2012-06-15
申请人: Taku Kato , Tatsuyuki Matsushita , Yuji Nagai
发明人: Taku Kato , Tatsuyuki Matsushita , Yuji Nagai
IPC分类号: H04L9/32
CPC分类号: H04L9/0861 , G06F12/1408 , G06F21/602 , G06F2212/1052 , H04L9/0816 , H04L9/0822 , H04L9/0833 , H04L9/0897 , H04L9/32 , H04L2209/601
摘要: According to one embodiment, encrypted secret identification information (E-SecretID) and the key management information (FKB) are read from a memory device. Encrypted management key (E-FKey) is obtained using the key management information (FKB) and index information (k). The index information (k) and the encrypted management key (E-FKey) are transmitted to the semiconductor memory device. An index key (INK) is generated using the first key information (NKey) and the received index information (k). The encrypted management key (E-FKey) is decrypted using the index key (INK) to obtain management key (FKey), which is transmitted to the host device.
摘要翻译: 根据一个实施例,从存储装置读取加密的秘密识别信息(E-SecretID)和密钥管理信息(FKB)。 使用密钥管理信息(FKB)和索引信息(k)获得加密管理密钥(E-FKey)。 索引信息(k)和加密管理密钥(E-FKey)被发送到半导体存储器件。 使用第一密钥信息(NKey)和接收的索引信息(k)生成索引密钥(INK)。 使用索引密钥(INK)对加密管理密钥(E-FKey)进行解密以获得被发送到主机设备的管理密钥(FKey)。
-
公开(公告)号:US08661527B2
公开(公告)日:2014-02-25
申请号:US13486684
申请日:2012-06-01
申请人: Taku Kato , Tatsuyuki Matsushita , Yuji Nagai , Fangming Zhao
发明人: Taku Kato , Tatsuyuki Matsushita , Yuji Nagai , Fangming Zhao
CPC分类号: H04L9/0869 , G06F21/31 , G06F21/34 , G06F21/6218 , H04L9/0816 , H04L9/14 , H04L9/3271 , H04L2209/16 , H04L2209/24
摘要: According to one embodiment, an authenticator which authenticates an authenticatee, which stores first key information (NKey) that is hidden, includes a memory configured to store second key information (HKey) which is hidden, a random number generation module configured to generate random number information, and a data generation module configured to generate a session key (SKey) by using the second key information (HKey) and the random number information. The authenticator is configured such that the second key information (HKey) is generated from the first key information (NKey) but the first key information (NKey) is not generated from the second key information (HKey).
摘要翻译: 根据一个实施例,认证存储隐藏的第一密钥信息(NKey)的认证者的认证器包括被配置为存储隐藏的第二密钥信息(HKey)的存储器,被配置为生成随机数的随机数生成模块 信息和数据生成模块,被配置为通过使用第二密钥信息(HKey)和随机数信息来生成会话密钥(SKey)。 认证器被配置为使得从第一密钥信息(NKey)生成第二密钥信息(HKey),但是不从第二密钥信息(HKey)生成第一密钥信息(NKey)。
-
-
-
-
-
-
-
-
-
搜索结果
174 条记录 (耗时 0.029 秒)
