ATE358843T1 - System und verfahren zum sicheren austauschen des hauptschlüssels in einer persönlichen sicherheitsvorrichtung - Google Patents

System und verfahren zum sicheren austauschen des hauptschlüssels in einer persönlichen sicherheitsvorrichtung

Info

Publication number
ATE358843T1
ATE358843T1 AT02792856T AT02792856T ATE358843T1 AT E358843 T1 ATE358843 T1 AT E358843T1 AT 02792856 T AT02792856 T AT 02792856T AT 02792856 T AT02792856 T AT 02792856T AT E358843 T1 ATE358843 T1 AT E358843T1
Authority
AT
Austria
Prior art keywords
master key
security device
personal security
securely
replacing
Prior art date
Application number
AT02792856T
Other languages
English (en)
Inventor
Yves Audebert
Wu Wen
Original Assignee
Activcard Ireland Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Activcard Ireland Ltd filed Critical Activcard Ireland Ltd
Application granted granted Critical
Publication of ATE358843T1 publication Critical patent/ATE358843T1/de

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0891Revocation or update of secret information, e.g. encryption key update or rekeying
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0816Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
    • H04L9/0819Key transport or distribution, i.e. key establishment techniques where one party creates or otherwise obtains a secret value, and securely transfers it to the other(s)
    • H04L9/083Key transport or distribution, i.e. key establishment techniques where one party creates or otherwise obtains a secret value, and securely transfers it to the other(s) involving central third party, e.g. key distribution center [KDC] or trusted third party [TTP]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0861Generation of secret information including derivation or calculation of cryptographic keys or passwords
    • H04L9/0877Generation of secret information including derivation or calculation of cryptographic keys or passwords using additional device, e.g. trusted platform module [TPM], smartcard, USB or hardware security module [HSM]

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Storage Device Security (AREA)
  • Mobile Radio Communication Systems (AREA)
  • Input From Keyboards Or The Like (AREA)
  • Indicating And Signalling Devices For Elevators (AREA)
  • Lock And Its Accessories (AREA)
AT02792856T 2001-12-07 2002-12-02 System und verfahren zum sicheren austauschen des hauptschlüssels in einer persönlichen sicherheitsvorrichtung ATE358843T1 (de)

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
US10/004,836 US7085386B2 (en) 2001-12-07 2001-12-07 System and method for secure replacement of high level cryptographic keys in a personal security device

Publications (1)

Publication Number Publication Date
ATE358843T1 true ATE358843T1 (de) 2007-04-15

Family

ID=21712763

Family Applications (1)

Application Number Title Priority Date Filing Date
AT02792856T ATE358843T1 (de) 2001-12-07 2002-12-02 System und verfahren zum sicheren austauschen des hauptschlüssels in einer persönlichen sicherheitsvorrichtung

Country Status (6)

Country Link
US (1) US7085386B2 (de)
EP (1) EP1454210B1 (de)
AT (1) ATE358843T1 (de)
AU (1) AU2002358577A1 (de)
DE (1) DE60219350T2 (de)
WO (1) WO2003048906A2 (de)

Families Citing this family (70)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20030128843A1 (en) * 2002-01-04 2003-07-10 Andrew Brown Method and apparatus for preserving a strong random number across battery replacement in a security subsystem
US7930537B2 (en) * 2002-08-13 2011-04-19 Nokia Corporation Architecture for encrypted application installation
US7380125B2 (en) * 2003-05-22 2008-05-27 International Business Machines Corporation Smart card data transaction system and methods for providing high levels of storage and transmission security
US8015393B2 (en) * 2004-04-12 2011-09-06 Canon Kabushiki Kaisha Data processing device, encryption communication method, key generation method, and computer program
US20050238174A1 (en) * 2004-04-22 2005-10-27 Motorola, Inc. Method and system for secure communications over a public network
EP1847096B1 (de) * 2004-06-25 2020-05-06 Oracle America, Inc. Verfahren zur verwendung von java-servlets als zustandsmaschine auf stapel-basis
BRPI0517026A (pt) 2004-10-25 2008-09-30 Rick L Orsini método e sistema analisador de dados seguros
CA2511366A1 (en) * 2005-06-30 2005-10-16 Thierry Moreau Trust anchor key cryptogram and cryptoperiod management method
CN103384196A (zh) 2005-11-18 2013-11-06 安全第一公司 安全数据解析方法和系统
US7992203B2 (en) * 2006-05-24 2011-08-02 Red Hat, Inc. Methods and systems for secure shared smartcard access
US8332637B2 (en) * 2006-06-06 2012-12-11 Red Hat, Inc. Methods and systems for nonce generation in a token
US8364952B2 (en) 2006-06-06 2013-01-29 Red Hat, Inc. Methods and system for a key recovery plan
US8180741B2 (en) * 2006-06-06 2012-05-15 Red Hat, Inc. Methods and systems for providing data objects on a token
US8098829B2 (en) * 2006-06-06 2012-01-17 Red Hat, Inc. Methods and systems for secure key delivery
US7822209B2 (en) 2006-06-06 2010-10-26 Red Hat, Inc. Methods and systems for key recovery for a token
US8495380B2 (en) 2006-06-06 2013-07-23 Red Hat, Inc. Methods and systems for server-side key generation
US8412927B2 (en) * 2006-06-07 2013-04-02 Red Hat, Inc. Profile framework for token processing system
US8707024B2 (en) 2006-06-07 2014-04-22 Red Hat, Inc. Methods and systems for managing identity management security domains
US8589695B2 (en) 2006-06-07 2013-11-19 Red Hat, Inc. Methods and systems for entropy collection for server-side key generation
US8099765B2 (en) 2006-06-07 2012-01-17 Red Hat, Inc. Methods and systems for remote password reset using an authentication credential managed by a third party
US9769158B2 (en) 2006-06-07 2017-09-19 Red Hat, Inc. Guided enrollment and login for token users
JP2008058944A (ja) * 2006-07-31 2008-03-13 Hitachi Ltd 暗号通信方法、受信者側装置、鍵管理センタ側装置及びプログラム
US8806219B2 (en) 2006-08-23 2014-08-12 Red Hat, Inc. Time-based function back-off
US8787566B2 (en) 2006-08-23 2014-07-22 Red Hat, Inc. Strong encryption
US8977844B2 (en) 2006-08-31 2015-03-10 Red Hat, Inc. Smartcard formation with authentication keys
US8356342B2 (en) 2006-08-31 2013-01-15 Red Hat, Inc. Method and system for issuing a kill sequence for a token
US8074265B2 (en) 2006-08-31 2011-12-06 Red Hat, Inc. Methods and systems for verifying a location factor associated with a token
US9038154B2 (en) 2006-08-31 2015-05-19 Red Hat, Inc. Token Registration
US8693690B2 (en) 2006-12-04 2014-04-08 Red Hat, Inc. Organizing an extensible table for storing cryptographic objects
US8813243B2 (en) 2007-02-02 2014-08-19 Red Hat, Inc. Reducing a size of a security-related data object stored on a token
US8832453B2 (en) * 2007-02-28 2014-09-09 Red Hat, Inc. Token recycling
US8639940B2 (en) * 2007-02-28 2014-01-28 Red Hat, Inc. Methods and systems for assigning roles on a token
US9081948B2 (en) 2007-03-13 2015-07-14 Red Hat, Inc. Configurable smartcard
US20100303231A1 (en) * 2007-05-22 2010-12-02 Koninklijke Philips Electronics N.V. Updating cryptographic key data
US8149085B2 (en) * 2008-05-02 2012-04-03 Research In Motion Limited Coordinated security systems and methods for an electronic device
US7761635B1 (en) * 2008-06-20 2010-07-20 Tableau, Llc Bridge device access system
EP2141667A1 (de) * 2008-06-25 2010-01-06 Gemalto SA Identifikatorberechnungsverfahren für Webdienste
SG171730A1 (en) 2008-11-24 2011-07-28 Certicom Corp System and method for hardware based security
CA2767721C (en) 2009-07-10 2017-01-24 Certicom Corp. System and method for managing electronic assets using multithreaded interfaces for distributed manufacturing
SG177597A1 (en) 2009-07-10 2012-03-29 Certicom Corp System and method for performing serialization of devices
DE102009028064B4 (de) 2009-07-15 2019-12-05 Bundesdruckerei Gmbh Verfahren zur HSM Migration
WO2011006912A1 (de) 2009-07-15 2011-01-20 Bundesdruckerei Gmbh Verfahren zur hsm migration
DE102010030167A1 (de) 2010-06-16 2011-12-22 Bundesdruckerei Gmbh Verfahren zur HSM Migration
US9100171B1 (en) * 2009-12-17 2015-08-04 Secure Forward, LLC Computer-implemented forum for enabling secure exchange of information
WO2011101994A1 (ja) * 2010-02-22 2011-08-25 株式会社東芝 暗号化装置
US8788842B2 (en) 2010-04-07 2014-07-22 Apple Inc. System and method for content protection based on a combination of a user PIN and a device specific identifier
US8510552B2 (en) 2010-04-07 2013-08-13 Apple Inc. System and method for file-level data protection
KR101139630B1 (ko) 2010-12-09 2012-05-30 한양대학교 산학협력단 식별키 생성 장치 및 방법
KR101118826B1 (ko) 2011-02-15 2012-04-20 한양대학교 산학협력단 물리적 공격을 방어하는 암호화 장치 및 암호화 방법
GB201105765D0 (en) 2011-04-05 2011-05-18 Visa Europe Ltd Payment system
WO2014127147A1 (en) 2013-02-13 2014-08-21 Security First Corp. Systems and methods for a cryptographic file system layer
US9137016B2 (en) 2013-06-20 2015-09-15 Hewlett-Packard Development Company, L.P. Key pair updates based on digital signature states
BR112016014106A2 (pt) 2013-12-19 2017-08-08 Visa Int Service Ass Método para intensificar a segurança de um dispositivo de comunicação, e, dispositivo de comunicação
US9922322B2 (en) 2013-12-19 2018-03-20 Visa International Service Association Cloud-based transactions with magnetic secure transmission
KR102186475B1 (ko) 2013-12-31 2020-12-03 주식회사 아이씨티케이 홀딩스 랜덤한 디지털 값을 생성하는 장치 및 방법
US12469021B2 (en) 2014-02-18 2025-11-11 Visa International Service Association Limited-use keys and cryptograms
WO2015179637A1 (en) 2014-05-21 2015-11-26 Visa International Service Association Offline authentication
US9775029B2 (en) 2014-08-22 2017-09-26 Visa International Service Association Embedding cloud-based functionalities in a communication device
WO2016081942A2 (en) 2014-11-21 2016-05-26 Security First Corp. Gateway for cloud-based secure storage
US9767293B2 (en) * 2015-02-13 2017-09-19 International Business Machines Corporation Content based hardware security module assignment to virtual machines
US10003463B2 (en) * 2015-10-16 2018-06-19 Dell Products L.P. Systems and methods for revoking and replacing signing keys
CN116471105A (zh) 2016-07-11 2023-07-21 维萨国际服务协会 使用访问装置的加密密钥交换过程
CN106487506B (zh) * 2016-10-08 2020-07-28 西安电子科技大学 一种支持预加密和外包解密的多机构kp-abe方法
CN106953917B (zh) * 2017-03-22 2018-08-21 北京深思数盾科技股份有限公司 数据同步方法及系统
US10915463B2 (en) 2017-04-28 2021-02-09 International Business Machines Corporation Synchronizing requests to access computing resources
US10360393B2 (en) 2017-04-28 2019-07-23 International Business Machines Corporation Synchronizing write operations
CA3072795A1 (en) * 2017-05-31 2018-12-06 Entrust Datacard Corporation Cryptographic object management across multiple remote sites
US11726813B2 (en) * 2017-08-01 2023-08-15 Cable Television Laboratories, Inc. Systems and methods for establishing scalable credential creation and access
EP3871366B1 (de) 2018-10-23 2025-03-12 Visa International Service Association Validierungsdienst für kontoverifizierung
CA3137008A1 (en) * 2019-04-15 2020-10-22 Aclara Technologies Llc System and method for improved security in advanced metering infrastructure networks

Family Cites Families (15)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US4972472A (en) 1985-03-15 1990-11-20 Tandem Computers Incorporated Method and apparatus for changing the master key in a cryptographic system
US5081677A (en) * 1990-08-31 1992-01-14 International Business Machines Corp. Crypotographic key version control facility
US5144664A (en) 1990-11-16 1992-09-01 General Instrument Corporation Apparatus and method for upgrading terminals to maintain a secure communication network
US5825880A (en) * 1994-01-13 1998-10-20 Sudia; Frank W. Multi-step digital signature method and system
US5680458A (en) * 1995-11-14 1997-10-21 Microsoft Corporation Root key compromise recovery
US5761306A (en) * 1996-02-22 1998-06-02 Visa International Service Association Key replacement in a public key cryptosystem
US5937066A (en) 1996-10-02 1999-08-10 International Business Machines Corporation Two-phase cryptographic key recovery system
JPH10171717A (ja) 1996-12-05 1998-06-26 Matsushita Electric Ind Co Ltd Icカードおよびそれを用いた暗号通信システム
JP4268690B2 (ja) 1997-03-26 2009-05-27 ソニー株式会社 認証システムおよび方法、並びに認証方法
US6230267B1 (en) * 1997-05-15 2001-05-08 Mondex International Limited IC card transportation key set
DE69824437T2 (de) * 1997-10-14 2005-06-23 Visa International Service Association, Foster City Personalisieren von chipkarten
US6240512B1 (en) * 1998-04-30 2001-05-29 International Business Machines Corporation Single sign-on (SSO) mechanism having master key synchronization
US6243816B1 (en) * 1998-04-30 2001-06-05 International Business Machines Corporation Single sign-on (SSO) mechanism personal key manager
JP4505693B2 (ja) 1998-12-11 2010-07-21 ソニー株式会社 情報処理装置および情報処理方法、並びに記録媒体
US6973191B2 (en) * 2001-11-02 2005-12-06 Activcard System and method for generating symmetric keys within a personal security device having minimal trust relationships

Also Published As

Publication number Publication date
DE60219350T2 (de) 2007-12-13
US7085386B2 (en) 2006-08-01
WO2003048906A3 (en) 2003-08-28
AU2002358577A1 (en) 2003-06-17
AU2002358577A8 (en) 2003-06-17
EP1454210A2 (de) 2004-09-08
EP1454210B1 (de) 2007-04-04
WO2003048906A2 (en) 2003-06-12
US20030108204A1 (en) 2003-06-12
DE60219350D1 (de) 2007-05-16

Similar Documents

Publication Publication Date Title
ATE358843T1 (de) System und verfahren zum sicheren austauschen des hauptschlüssels in einer persönlichen sicherheitsvorrichtung
BR9600772A (pt) Processo de criptografaç~o segura de um bloco de texto claro em um bloco de dados de texto cifrado e sistema criptográfico
DE69706867D1 (de) Vorrichtung zur wiedergewinnung eines geheimschlüssels
DE69218335D1 (de) Verfahren zum Identifizieren und Austauschen von kryptographischen Schlüsseln
DE69837625D1 (de) Vorrichtung zur Entschlüsselung eines Schlüssels
ATE391951T1 (de) Verfahren und vorrichtung zum authentifizieren von benutzern und websites
DE60134842D1 (de) Vorrichtung zum sicheren speichern geheimer informationen
ATE216820T1 (de) Auf einer baumstruktur basierende einrichtung zum widerrufen von zertifikaten
DE60134940D1 (de) Systemen und Verfahren zum regelbasierenden Ausdrucken und Fälschungsberurteilung
DE60236498D1 (de) Verfahren und vorrichtung zum tarnen von daten, informationen und funktionstransformationen
DE69829742D1 (de) Verfahren und vorrichtung für ein robustes und schnelles kryptosystem
BR0001638B1 (pt) Processo e sistema para gerar dados de projeção em um sistema de tomografia computadorizada.
DE69928794D1 (de) Vorrichtung zum abschliessen sowie verst?rken eines aneurysmas
GB0315697D0 (en) Method and apparatus for generating a cryptographic key
DE69721439D1 (de) Kryptographisches verfahren und einrichtung zum nichtlinearen zusammenfugen eines datenblocks und eines schlussels
BR9601232A (pt) Processo de verificação de senhas em um sistema de gerenciamento por chave
DE10249427B4 (de) Verfahren zum Definieren des Sicherheitszustands eines Computersystems
GB0215590D0 (en) Method and apparatus for generating a cryptographic key
ATE521928T1 (de) Verfahren zum unsichtbaren einbetten der lizenzidentifikation der erzeugenden lizensierten software in ein textdokument
DE69804196D1 (de) Verfahren und vorrichtung zum sicherheitsdrucken
DE60301750D1 (de) Vorrichtung zur Erzeugung eines erweiterten Schlüssels, Verschlüsselungsvorrichtung und Verschlüsselungssystem
DE69605854D1 (de) Verfahren und Vorrichtung zum Authentifizieren von Dokumenten
DE59902371D1 (de) Verfahren zum etablieren eines gemeinsamen schlüssels zwischen einer zentrale und einer gruppe von teilnehmern
DE69606134D1 (de) Kryptographisches Verfahren zum Schutz gegen Betrug
BR0007298A (pt) Processo e dispositivo para o arredondamento de cantos

Legal Events

Date Code Title Description
RER Ceased as to paragraph 5 lit. 3 law introducing patent treaties