专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

21. 发明授权

US5592553A Authentication system using one-time passwords 失效
公开(公告)号：US5592553A
公开(公告)日：1997-01-07
申请号：US597376
申请日：1996-02-08
申请人： Richard H. Guski , Raymond C. Larson , Stephen M. Matyas, Jr. , Donald B. Johnson , Don Coppersmith
发明人： Richard H. Guski , Raymond C. Larson , Stephen M. Matyas, Jr. , Donald B. Johnson , Don Coppersmith
IPC分类号： G09C1/00 , G06F1/00 , G06F21/00 , H04L9/32 , H04L12/22 , H04L29/06
CPC分类号： H04L63/0838 , G06F21/31 , H04L12/22 , H04L63/0846 , H04L9/0822 , H04L9/088 , H04L9/0894 , H04L9/3228 , H04L2209/20
摘要： A system for authenticating a user located at a requesting node to a resource such as a host application located at an authenticating node using one-time passwords that change pseudorandomly with each request for authentication. At the requesting node a non-time-dependent value is generated from nonsecret information identifying the user and the host application, using a secret encryption key shared with the authenticating node. The non-time-dependent value is combined with a time-dependent value to generate a composite value that is encrypted to produce an authentication parameter. The authentication parameter is reversibly transformed into an alphanumeric character string that is transmitted as a one-time password to the authenticating node. At the authenticating node the received password is transformed back into the corresponding authentication parameter, which is decrypted to regenerate the composite value. The non-time-dependent value is replicated at the authenticating node using the same nonsecret information and encryption key shared with the requesting node. The locally generated non-time-dependent value is combined with the regenerated composite value to regenerate the time-dependent value. The user is authenticated if the regenerated time-dependent value is within a predetermined range of a time-dependent value that is locally generated at the authenticating node.

22. 发明授权

US06301362B1 Method and apparatus for cryptographically transforming an input block into an output block 失效
标题翻译：用于将输入块加密地变换成输出块的方法和装置
公开(公告)号：US06301362B1
公开(公告)日：2001-10-09
申请号：US09096615
申请日：1998-06-12
申请人： Stephen M. Matyas, Jr. , Don Coppersmith , Donald B. Johnson
发明人： Stephen M. Matyas, Jr. , Don Coppersmith , Donald B. Johnson
IPC分类号： H04L906
CPC分类号： H04L9/002 , H04L9/0625 , H04L2209/24
摘要： A method and apparatus for cryptographically transforming an input block into an output block. The input block has a first block size and is partitionable into a plurality of input subblocks having a second block size that is a submultiple of the first block size. To encrypt or decrypt, the input subblocks are passed through respective first substitution functions controlled by one or more keys to generate a first plurality of modified subblocks. The first plurality of modified subblocks are then passed through a mixing function to generate a second plurality of modified subblocks, each of which depends on each of the first plurality of modified subblocks. Finally, the second plurality of modified subblocks are passed through respective second substitution functions controlled by one or more keys to generate a plurality of output subblocks that are combinable into an output block.
摘要翻译：一种用于将输入块密码变换为输出块的方法和装置。输入块具有第一块大小并且可分割成具有第二块大小的多个输入子块，该第二块大小是第一块大小的次数。为了加密或解密，输入子块通过由一个或多个键控制的相应的第一替换函数，以产生第一多个修改的子块。第一多个经修改的子块然后被传递通过混合功能以产生第二多个修改的子块，每个子块依赖于第一多个修改子块中的每一个。最后，第二多个经修改的子块通过由一个或多个密钥控制的相应的第二替换函数，以产生可组合成输出块的多个输出子块。

23. 发明授权

US08953787B2 Strengthened public key protocol 有权
公开(公告)号：US08953787B2
公开(公告)日：2015-02-10
申请号：US13527891
申请日：2012-06-20
申请人： Scott A. Vanstone , Alfred John Menezes , Minghua Qu , Donald B. Johnson
发明人： Scott A. Vanstone , Alfred John Menezes , Minghua Qu , Donald B. Johnson
IPC分类号： H04L9/30 , H04L9/08 , H04L9/32 , G06F7/72
CPC分类号： H04L9/0844 , G06F7/725 , H04L9/0841 , H04L9/3066 , H04L9/3252
摘要： A method of determining the integrity of a message exchanged between a pair of correspondents. The message is secured by embodying the message in a function of a public key derived from a private key selected by one of the correspondents. The method comprises first obtaining the public key. The public key is then subjected to at least one mathematical test to determine whether the public key satisfies predefined mathematical characteristics. Messages utilizing the public key are accepted if the public key satisfies the predefined mathematical characteristics.

24. 发明申请

US20110258455A1 MASKED DIGITAL SIGNATURES 有权
标题翻译：屏蔽数字签名
公开(公告)号：US20110258455A1
公开(公告)日：2011-10-20
申请号：US13172138
申请日：2011-06-29
申请人： Donald B. Johnson , Scott A. Vanstone , Minghua Qu
发明人： Donald B. Johnson , Scott A. Vanstone , Minghua Qu
IPC分类号： H04L9/32
CPC分类号： H04L9/3247 , G06Q20/341 , G06Q20/40975 , G07F7/1008 , H04L9/3066 , H04L9/3252 , H04L2209/04
摘要： The present invention relates to digital signature operations using public key schemes in a secure communications system and in particular for use with processors having limited computing power such as ‘smart cards’. This invention describes a method for creating and authenticating a digital signature comprising the steps of selecting a first session parameter k and generating a first short term public key derived from the session parameter k, computing a first signature component r derived from a first mathematical function using the short term public key, selecting a second session parameter t and computing a second signature component s derived from a second mathematical function using the second session parameter t and without using an inverse operation, computing a third signature component using the first and second session parameters and sending the signature components (s, r, c) as a masked digital signature to a receiver computer system. In the receiver computer system computing a recovered second signature component s′ by combining a third signature component with the second signature component to derive signature components (s′, r) as an unmasked digital signature. Verifying these signature components as in a usual EIGamal or ECDSA type signature verification.
摘要翻译：本发明涉及在安全通信系统中使用公共密钥方案的数字签名操作，特别是与具有计算能力有限的处理器（例如“智能卡”）一起使用。本发明描述了一种用于创建和认证数字签名的方法，包括以下步骤：选择第一会话参数k并生成从会话参数k导出的第一短期公钥，使用从第一数学函数导出的第一签名组件短期公钥，选择第二会话参数t并且使用第二会话参数t计算从第二数学函数导出的第二签名组件，并且不使用反向操作，使用第一和第二会话参数来计算第三签名组件并将签名组件（s，r，c）作为掩蔽的数字签名发送到接收机计算机系统。在接收机计算机系统中，通过将第三签名组件与第二签名组件组合来计算恢复的第二签名组件s'，以将签名组件（s'，r）导出为未屏蔽的数字签名。验证这些签名组件，如通常的EIGAMAL或ECDSA类型的签名验证。

25. 发明申请

US20100284540A1 RESILIENT CRYPTOGRAPHIC SCHEME 有权
标题翻译：灵活的CRYPTOGRAPHIC计划
公开(公告)号：US20100284540A1
公开(公告)日：2010-11-11
申请号：US12840008
申请日：2010-07-20
申请人： Donald B. Johnson , Scott Alexander Vanstone
发明人： Donald B. Johnson , Scott Alexander Vanstone
IPC分类号： H04L9/08
CPC分类号： H04L9/3242 , H04L9/3249
摘要： A system and method are provided for enabling a symmetric key to be derived, the method comprising: obtaining a plurality of key parts, wherein the plurality of key parts when combined equal the symmetric key; encrypting a first of the key parts using a first cryptographic algorithm to generate a first encrypted value; encrypting one or more remaining key parts of the plurality of key parts using respective cryptographic algorithms to generate one or more additional encrypted values, wherein each key part encrypted is encrypted using a different cryptographic algorithm; and providing the first encrypted value and the one or more additional encrypted values to an other entity to enable the other entity to derive the symmetric key.
摘要翻译：提供了一种用于使得能够导出对称密钥的系统和方法，所述方法包括：获得多个密钥部分，其中所述多个密钥部分在组合时等于所述对称密钥; 使用第一密码算法加密第一密钥部分以生成第一加密值; 使用相应的密码算法加密所述多个密钥部分中的一个或多个剩余的关键部分以生成一个或多个附加的加密值，其中使用不同的加密算法加密加密的每个密钥部分; 以及将第一加密值和所述一个或多个附加加密值提供给另一实体以使所述另一实体能够导出所述对称密钥。

26. 发明授权

US06337909B1 Generation of session keys for El Gamal-like protocols from low hamming weight integers 失效
标题翻译：从低汉明重量整数生成El Gamal样协议的会话密钥
公开(公告)号：US06337909B1
公开(公告)日：2002-01-08
申请号：US08948796
申请日：1997-10-10
申请人： Scott A. Vanstone , Donald B. Johnson , Robert J. Lambert , Ronald C. Mullin
发明人： Scott A. Vanstone , Donald B. Johnson , Robert J. Lambert , Ronald C. Mullin
IPC分类号： H04L928
CPC分类号： H04L9/3013 , G06F7/725 , H04L9/3066
摘要： The public key, either short term “session” key or long term key, is generated by combining a pair of components. A first component is obtained by utilizing an integer with a relatively low Hamming weight as an exponent to facilitate exponentiation. The second component is a precomputed secret value that is of the form resulting from the exponentiation of the generator of the group element by an integer that has the requisite Hamming weight. The two components are combined to provide the public key and the two exponents combined to provide the corresponding private key.
摘要翻译：通过组合一对组件来生成公钥，短期“会话”密钥或长期密钥。通过利用具有相对较低的汉明重量的整数作为指数来获得第一分量以促成取幂。第二个组件是预先计算的秘密值，其形式是由组元素的生成器乘以具有所需汉明权重的整数而产生的。组合两个组件以提供公钥和两个指数组合以提供相应的私钥。

27. 发明申请

US20100014663A1 Strengthened public key protocol 有权
标题翻译：加强公钥协议
公开(公告)号：US20100014663A1
公开(公告)日：2010-01-21
申请号：US12458468
申请日：2009-07-13
申请人： Scott A. Vanstone , Alfred John Menezes , Minghua Qu , Donald B. Johnson
发明人： Scott A. Vanstone , Alfred John Menezes , Minghua Qu , Donald B. Johnson
IPC分类号： H04L9/30 , H04L9/00
CPC分类号： H04L9/0844 , G06F7/725 , H04L9/0841 , H04L9/3066 , H04L9/3252
摘要： A method of determining the integrity of a message exchanged between a pair of correspondents. The message is secured by embodying the message in a function of a public key derived from a private key selected by one of the correspondents. The method comprises first obtaining the public key. The public key is then subjected to at least one mathematical test to determine whether the public key satisfies predefined mathematical characteristics. Messages utilizing the public key are accepted if the public key satisfies the predefined mathematical characteristics.
摘要翻译：一种确定在一对记者之间交换的消息的完整性的方法。通过将消息体现在由其中一个记者选择的私钥派生的公共密钥的功能中来保护消息。该方法包括首先获得公钥。然后对公钥进行至少一个数学测试，以确定公钥是否满足预定义的数学特性。如果公钥满足预定义的数学特征，则接受使用公钥的消息。

28. 发明申请

US20090319790A1 MASKED DIGITAL SIGNATURES 有权
标题翻译：屏蔽数字签名
公开(公告)号：US20090319790A1
公开(公告)日：2009-12-24
申请号：US12488652
申请日：2009-06-22
申请人： Donald B. Johnson , Scott A. Vanstone , Minghua Qu
发明人： Donald B. Johnson , Scott A. Vanstone , Minghua Qu
IPC分类号： H04L9/00
CPC分类号： H04L9/3247 , G06Q20/341 , G06Q20/40975 , G07F7/1008 , H04L9/3066 , H04L9/3252 , H04L2209/04
摘要： The present invention relates to digital signature operations using public key schemes in a secure communications system and in particular for use with processors having limited computing power such as ‘smart cards’. This invention describes a method for creating and authenticating a digital signature comprising the steps of selecting a first session parameter k and generating a first short term public key derived from the session parameter k, computing a first signature component r derived from a first mathematical function using the short term public key, selecting a second session parameter t and computing a second signature component s derived from a second mathematical function using the second session parameter t and without using an inverse operation, computing a third signature component using the first and second session parameters and sending the signature components (s, r, c) as a masked digital signature to a receiver computer system. In the receiver computer system computing a recovered second signature component s′ by combining a third signature component with the second signature component to derive signature components (s′, r) as an unmasked digital signature. Verifying these signature components as in a usual ElGamal or ECDSA type signature verification.
摘要翻译：本发明涉及在安全通信系统中使用公共密钥方案的数字签名操作，特别是与具有计算能力有限的处理器（例如“智能卡”）一起使用。本发明描述了一种用于创建和认证数字签名的方法，包括以下步骤：选择第一会话参数k并生成从会话参数k导出的第一短期公钥，使用从第一数学函数导出的第一签名组件短期公钥，选择第二会话参数t并且使用第二会话参数t计算从第二数学函数导出的第二签名组件，并且不使用反向操作，使用第一和第二会话参数来计算第三签名组件并将签名组件（s，r，c）作为掩蔽的数字签名发送到接收机计算机系统。在接收机计算机系统中，通过将第三签名组件与第二签名组件组合来计算恢复的第二签名组件s'，以将签名组件（s'，r）导出为未屏蔽的数字签名。验证这些签名组件，如通常的ElGamal或ECDSA类型签名验证。

29. 发明授权

US07260723B2 Masked digital signatures 有权
标题翻译：蒙面的数字签名
公开(公告)号：US07260723B2
公开(公告)日：2007-08-21
申请号：US09773665
申请日：2001-02-02
申请人： Donald B. Johnson , Scott A. Vanstone , Minghua Ou
发明人： Donald B. Johnson , Scott A. Vanstone , Minghua Ou
IPC分类号： H04L9/00
CPC分类号： H04L9/3247 , G06Q20/341 , G06Q20/40975 , G07F7/1008 , H04L9/3066 , H04L9/3252 , H04L2209/04
摘要： The present invention relates to digital signature operations using public key schemes in a secure communications system and in particular for use with processors having limited computing power such as ‘smart cards’. This invention describes a method for creating and authenticating a digital signature comprising the steps of selecting a first session parameter k and generating a first short term public key derived from the session parameter k, computing a first signature component r derived from a first mathematical function using the short term public key, selecting a second session parameter t and computing a second signature component s derived from a second mathematical function using the second session parameter t and without using an inverse operation, computing a third signature component using the first and second session parameters and sending the signature components (s, r, c) as a masked digital signature to a receiver computer system. In the receiver computer system computing a recovered second signature component s′ by combining a third signature component with the second signature component to derive signature components (s′, r) as an unmasked digital signature. Verifying these signature components as in a usual ElGamal or ECDSA type signature verification.
摘要翻译：本发明涉及在安全通信系统中使用公共密钥方案的数字签名操作，特别是与具有计算能力有限的处理器（例如“智能卡”）一起使用。本发明描述了一种用于创建和认证数字签名的方法，包括以下步骤：选择第一会话参数k并生成从会话参数k导出的第一短期公钥，使用从第一数学函数导出的第一签名组件短期公钥，选择第二会话参数t并且使用第二会话参数t计算从第二数学函数导出的第二签名组件，并且不使用反向操作，使用第一和第二会话参数来计算第三签名组件并将签名组件（s，r，c）作为掩蔽的数字签名发送到接收机计算机系统。在接收机计算机系统中，通过将第三签名组件与第二签名组件组合来计算恢复的第二签名组件s'，以将签名组件（s'，r）导出为未屏蔽的数字签名。验证这些签名组件，如通常的ElGamal或ECDSA类型签名验证。

30. 发明授权

US07215773B1 Key validation scheme 有权
标题翻译：关键验证方案
公开(公告)号：US07215773B1
公开(公告)日：2007-05-08
申请号：US10181356
申请日：1998-10-14
申请人： Donald B. Johnson
发明人： Donald B. Johnson
IPC分类号： H04L9/00
CPC分类号： H04L9/30 , H04L9/0816 , H04L9/3066 , H04L9/3252 , H04L9/3263 , H04L2209/24
摘要： A method of providing improved security in a communication system used to transfer information between at least a pair of correspondents. The communication between the correspondents generally comprises steps of generating key pairs in accordance with the arithmetic properties of a chosen algorithm, communicating one of the keys, being a public key, to the other party by way of a certificate, generation and transmission of a signature using a private key of the key pairs by one of the correspondents and transmitting the signature to the other correspondent and verification of the signature by the recipient. The invention provides for the additional step of verifying the public key conform to the arithmetic properties dictated by the requirements of the selected algorithm.
摘要翻译：一种在用于在至少一对记者之间传送信息的通信系统中提供改进的安全性的方法。记者之间的通信通常包括根据所选择的算法的算术特性生成密钥对的步骤，通过证书将密钥中的一个作为公钥传送给对方，生成和发送签名使用一个记者的密钥对的私钥，并将签名发送给另一个记者，并由接收者对签名的验证。本发明提供了验证符合由所选算法的要求所规定的算术特性的公共密钥的附加步骤。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式