-
公开(公告)号:US20070150740A1
公开(公告)日:2007-06-28
申请号:US11483176
申请日:2006-07-10
申请人: Walter Davis , Douglas Ayerst , Scott Vanstone
发明人: Walter Davis , Douglas Ayerst , Scott Vanstone
IPC分类号: H04L9/00
CPC分类号: H04L9/3247 , H04L9/321 , H04L9/3263 , H04L2209/56 , H04L2209/80 , H04W12/06 , H04W12/10
摘要: A wireless communication system includes a pager or similar device that communicates to a home terminal. The home terminal confirms the identify of the pager and attaches a certificate to the message for ongoing transmission. Where the recipient is also a pager, an associated home terminal verifies the transmission and forwards it in a trusted manner without the certificate to the recipient.
摘要翻译: 无线通信系统包括与家庭终端通信的寻呼机或类似设备。 家庭终端确认寻呼机的标识,并将证书附加到消息中用于正在进行的传输。 在接收者也是寻呼机的情况下,相关联的家庭终端验证传输并以可信赖的方式转发它,而没有证书给接收者。
-
公开(公告)号:US20120079274A1
公开(公告)日:2012-03-29
申请号:US13310227
申请日:2011-12-02
申请人: Scott Vanstone , Alfred John Menezes , Minghua Qu
发明人: Scott Vanstone , Alfred John Menezes , Minghua Qu
IPC分类号: H04L9/30
CPC分类号: H04L9/0841 , G06F7/725 , H04L9/3247
摘要: A key establishment protocol between a pair of correspondents includes the generation by each correspondent of respective signatures. The signatures are derived from information that is private to the correspondent and information that is public. After exchange of signatures, the integrity of exchange messages can be verified by extracting the public information contained in the signature and comparing it with information used to generate the signature. A common session key may then be generated from the public and private information of respective ones of the correspondents.
摘要翻译: 一对记者之间的密钥建立协议包括每个记者生成各个签名。 签名来自对记者的私人信息和公开的信息。 在签名交换之后,可以通过提取签名中包含的公开信息并将其与用于生成签名的信息进行比较来验证交换消息的完整性。 然后可以从相应记者的公共和私人信息生成公共会话密钥。
-
公开(公告)号:US20070189527A1
公开(公告)日:2007-08-16
申请号:US11336814
申请日:2006-01-23
申请人: Daniel Brown , Scott Vanstone
发明人: Daniel Brown , Scott Vanstone
IPC分类号: H04L9/00
CPC分类号: H04L9/0869 , G06F7/582 , G06F7/588 , G06F7/725 , H04L9/0662 , H04L9/0816 , H04L9/0894 , H04L9/3066 , H04L2209/20 , H04L2209/24 , H04L2209/26
摘要: An elliptic curve random number generator avoids escrow keys by choosing a point Q on the elliptic curve as verifiably random. An arbitrary string is chosen and a hash of that string computed. The hash is then converted to a field element of the desired field, the field element regarded as the x-coordinate of a point Q on the elliptic curve and the x-coordinate is tested for validity on the desired elliptic curve. If valid, the x-coordinate is decompressed to the point Q, wherein the choice of which is the two points is also derived from the hash value. Intentional use of escrow keys can provide for back up functionality. The relationship between P and Q is used as an escrow key and stored by for a security domain. The administrator logs the output of the generator to reconstruct the random number with the escrow key.
摘要翻译: 椭圆曲线随机数发生器通过选择椭圆曲线上的点Q可以无限次地避免代管钥匙。 选择一个任意的字符串,并计算该字符串的散列。 然后将散列转换为所需场的场元素,将该场元素视为椭圆曲线上的点Q的x坐标,并且在期望的椭圆曲线上测试x坐标的有效性。 如果有效,则将x坐标解压缩到点Q,其中,从哈希值导出哪个是两点的选择。 意向使用代管键可以提供备份功能。 P和Q之间的关系用作托管密钥,并由安全域存储。 管理员记录生成器的输出,用代管密钥重构随机数。
-
公开(公告)号:US20070177726A1
公开(公告)日:2007-08-02
申请号:US11563017
申请日:2006-11-23
申请人: Scott Vanstone , Alfred Menezes
发明人: Scott Vanstone , Alfred Menezes
IPC分类号: H04L9/30
CPC分类号: G07F7/1008 , G06F7/725 , G06Q20/341 , G06Q20/40975 , G07F7/082 , H04L9/3066 , H04L9/3247 , H04L2209/56
摘要: A digital signature scheme for a “smart” card utilizes a set of prestored signing elements and combines pairs of the elements to produce a new session pair. The combination of the elements is performed partly on the card and partly on the associated transaction device so that the exchange of information between card and device does not disclose the identity of the signing elements. The signing elements are selected in a deterministic but unpredictable manner so that each pair of elements is used once. Further signing pairs are generated by implementing the signing over an anomalous elliptic curve encryption scheme and applying a Frobenius Operator to the normal basis representation of one of the elements.
摘要翻译: 用于“智能”卡的数字签名方案利用一组预先存储的签名元素并且组合成对的元素以产生新的会话对。 元件的组合部分地在卡上部分地执行并且部分地在相关联的交易设备上执行,使得卡和设备之间的信息交换没有公开签名元件的身份。 以确定性但不可预测的方式选择签名元素,使得每对元素被使用一次。 通过实现异常椭圆曲线加密方案的签名并将Frobenius运算符应用于其中一个元素的正常基础表示来生成进一步的签名对。
-
公开(公告)号:US20060029222A1
公开(公告)日:2006-02-09
申请号:US11095542
申请日:2005-04-01
申请人: Robert Lambert , Robert Gallant , Scott Vanstone
发明人: Robert Lambert , Robert Gallant , Scott Vanstone
CPC分类号: G06F7/725 , H04L9/3073
摘要: This invention provides a method for accelerating multiplication of an elliptic curve point Q(x,y) by a scalar k, the method comprising the steps of selecting an elliptic curve over a finite field Fq where q is a prime power such that there exists an endomorphism ψ, where ψ(Q)=λ·Q for all points Q(x,y) on the elliptic curve; and using smaller representations ki of the scalar k in combination with the mapping y to compute the scalar multiple of the elliptic curve point Q.
摘要翻译: 本发明提供了一种用于加速椭圆曲线点Q(x,y)乘以标量k的方法,所述方法包括以下步骤:在有限域Fq上选择椭圆曲线,其中q是素数,使得存在 其中,对于椭圆曲线上的所有点Q(x,y),其中psi(Q)= lambda.Q; 并且与映射y结合使用标量k的较小表示k i i i来计算椭圆曲线点Q的标量倍数。
-
公开(公告)号:US07779259B2
公开(公告)日:2010-08-17
申请号:US11870901
申请日:2007-10-11
申请人: Scott Vanstone , Alfred John Menezes , Minghua Qu
发明人: Scott Vanstone , Alfred John Menezes , Minghua Qu
IPC分类号: H04L9/30
CPC分类号: H04L9/0841 , G06F7/725 , H04L9/3247
摘要: A key establishment protocol between a pair of correspondents includes the generation by each correspondent of respective signatures. The signatures are derived from information that is private to the correspondent and information that is public. After exchange of signatures, the integrity of exchange messages can be verified by extracting the public information contained in the signature and comparing it with information used to generate the signature. A common session key may then be generated from the public and private information of respective ones of the correspondents.
摘要翻译: 一对记者之间的密钥建立协议包括每个记者生成各个签名。 签名来自对记者的私人信息和公开的信息。 在签名交换之后,可以通过提取签名中包含的公开信息并将其与用于生成签名的信息进行比较来验证交换消息的完整性。 然后可以从相应记者的公共和私人信息生成公共会话密钥。
-
公开(公告)号:US20080028235A1
公开(公告)日:2008-01-31
申请号:US11779651
申请日:2007-07-18
申请人: Keelan Smith , Scott Vanstone , Daniel Brown , Darryl Parisien , Ashok Vadekar , Brian Neill
发明人: Keelan Smith , Scott Vanstone , Daniel Brown , Darryl Parisien , Ashok Vadekar , Brian Neill
IPC分类号: H04L9/14
CPC分类号: G06F21/575 , G06F21/73 , G06F2221/2109 , G07F17/32 , G07F17/323 , G07F17/3241 , H04L9/3247 , H04L63/0428 , H04L63/0823 , H04L2209/60 , H04L2463/101
摘要: A method and system are provided for authenticating and securing an embedded device using a secure boot procedure and a full non-volatile memory encryption process that implements Elliptic Curve Pinstov-Vanstone Signature (ECPV) scheme with message recovery on a personalized BIOS and master boot record. The signature includes code that is recovered in order to unlock a key that is in turn used to decrypt the non-volatile memory. The use of ECPVS provides an implicit verification that the hardware is bound to the BIOS since the encrypted memory is useless unless properly decrypted with the proper key.
摘要翻译: 提供了一种方法和系统,用于使用安全引导过程和完整的非易失性存储器加密处理来验证和保护嵌入式设备,所述完整非易失性存储器加密处理在个性化BIOS和主引导记录上实现具有消息恢复的椭圆曲线Pinstov-Vanstone签名(ECPV)方案 。 签名包括恢复的代码,以解锁一个依次用于解密非易失性存储器的密钥。 使用ECPVS提供了硬件绑定到BIOS的隐含验证,因为加密的内存是无用的,除非使用适当的密钥进行正确的解密。
-
公开(公告)号:US20070214362A1
公开(公告)日:2007-09-13
申请号:US11691638
申请日:2007-03-27
申请人: Scott Vanstone
发明人: Scott Vanstone
IPC分类号: H04L9/00
CPC分类号: H04L63/123 , G06Q20/105 , G06Q20/367 , G06Q20/3674 , G06Q20/40 , G06Q20/4012 , H04L9/3247 , H04L63/0428 , H04L2209/60 , H04L2209/80 , H04W12/10
摘要: A method of establishing a trusted path of data and a method of verifying the integrity of data presented for signing to a user of the personalized device in a public-key cryptographic scheme. The method comprises establishing a trusted path between the user and secure module residing on the personalized device. The secure module holds the user's private key, displays information about the data message directly to the user, and generates the signature only when instructed to do so. The decision whether or not to sign the data message is determined by the user.
摘要翻译: 一种建立数据可信路径的方法和一种验证在公开密钥密码方案中向个体化设备的用户签名的数据的完整性的方法。 该方法包括在用户和位于个性化设备上的安全模块之间建立可信路径。 安全模块保存用户的私有密钥,直接向用户显示关于数据消息的信息,并且只有在指示这样做时才生成签名。 决定是否对数据消息进行签名由用户确定。
-
公开(公告)号:US20070076866A1
公开(公告)日:2007-04-05
申请号:US11272151
申请日:2005-11-14
申请人: Scott Vanstone , Robert Gallant , Daniel Brown
发明人: Scott Vanstone , Robert Gallant , Daniel Brown
IPC分类号: H04L9/30
CPC分类号: G06F21/00 , H04L9/0841
摘要: Improper re-use of a static Diffie-Hellman (DH) private key may leak information about the key. The leakage is prevented by a key derivation function (KDF), but standards do not agree on key derivation functions. The module for performing a DH private key operation must somehow support multiple different KDF standards. The present invention provides an intermediate approach that neither attempts to implement all possible KDP operations, nor provide unprotected access to the raw DH private key operation. Instead, the module performs parts of the KDF operation, as indicated by the application using the module. This saves the module from implementing the entire KDF for each KDF needed. Instead, the module implements only re-usable parts that are common to most KDFs. Furthermore, when new KDFs are required, the module may be able to support them if they built on the parts that the module has implemented.
摘要翻译: 静态Diffie-Hellman(DH)私钥的不正确使用可能会泄漏关键字的信息。 通过密钥导出功能(KDF)来防止泄漏,但是标准对密钥导出函数并不一致。 用于执行DH私钥操作的模块必须以某种方式支持多种不同的KDF标准。 本发明提供了一种中间方法,既不试图实现所有可能的KDP操作,也不提供对原始DH私钥操作的不受保护的访问。 相反,模块将执行KDF操作的部分,如使用该模块的应用程序所示。 这样可以节省模块实现所需的每个KDF的整个KDF。 相反,该模块只能实现大多数KDF常用的可重复使用的部件。 此外,当需要新的KDF时,如果模块构建在模块实现的部件上,则模块可能能够支持它们。
-
公开(公告)号:US20100281259A1
公开(公告)日:2010-11-04
申请号:US12837104
申请日:2010-07-15
申请人: Scott Vanstone , Alfred John Menezes , Minghua Qu
发明人: Scott Vanstone , Alfred John Menezes , Minghua Qu
CPC分类号: H04L9/0841 , G06F7/725 , H04L9/3247
摘要: A key establishment protocol between a pair of correspondents includes the generation by each correspondent of respective signatures. The signatures are derived from information that is private to the correspondent and information that is public. After exchange of signatures, the integrity of exchange messages can be verified by extracting the public information contained in the signature and comparing it with information used to generate the signature. A common session key may then be generated from the public and private information of respective ones of the correspondents.
摘要翻译: 一对记者之间的密钥建立协议包括每个记者生成各个签名。 签名来自对记者的私人信息和公开的信息。 在签名交换之后,可以通过提取签名中包含的公开信息并将其与用于生成签名的信息进行比较来验证交换消息的完整性。 然后可以从相应记者的公共和私人信息生成公共会话密钥。
-
-
-
-
-
-
-
-
-
搜索结果
34 条记录 (耗时 0.022 秒)
