WO1998048389A3 - Verfahren zur gegenseitigen authentifizierung zweier einheiten - Google Patents

Verfahren zur gegenseitigen authentifizierung zweier einheiten Download PDF

Info

Publication number
WO1998048389A3
WO1998048389A3 PCT/EP1998/002231 EP9802231W WO9848389A3 WO 1998048389 A3 WO1998048389 A3 WO 1998048389A3 EP 9802231 W EP9802231 W EP 9802231W WO 9848389 A3 WO9848389 A3 WO 9848389A3
Authority
WO
WIPO (PCT)
Prior art keywords
unit
units
mutual authentication
message
key
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Ceased
Application number
PCT/EP1998/002231
Other languages
English (en)
French (fr)
Other versions
WO1998048389A2 (de
Inventor
Hans-Hermann Froehlich
Winfried Gall
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Giesecke and Devrient GmbH
Original Assignee
Giesecke and Devrient GmbH
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Giesecke and Devrient GmbH filed Critical Giesecke and Devrient GmbH
Priority to JP54497298A priority Critical patent/JP2001523407A/ja
Priority to AU80135/98A priority patent/AU8013598A/en
Priority to IL13237498A priority patent/IL132374A0/xx
Priority to EP98928199A priority patent/EP1010146A2/de
Publication of WO1998048389A2 publication Critical patent/WO1998048389A2/de
Publication of WO1998048389A3 publication Critical patent/WO1998048389A3/de
Anticipated expiration legal-status Critical
Ceased legal-status Critical Current

Links

Classifications

    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07FCOIN-FREED OR LIKE APPARATUS
    • G07F7/00Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus
    • G07F7/08Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means
    • G07F7/10Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means together with a coded signal, e.g. in the form of personal identification information, like personal identification number [PIN] or biometric data
    • G07F7/1008Active credit-cards provided with means to personalise their use, e.g. with PIN-introduction/comparison system
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/34Payment architectures, schemes or protocols characterised by the use of specific devices or networks using cards, e.g. integrated circuit [IC] cards or magnetic cards
    • G06Q20/341Active cards, i.e. cards including their own processing means, e.g. including an IC or chip
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/40Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
    • G06Q20/409Device specific authentication in transaction processing
    • G06Q20/4097Device specific authentication in transaction processing using mutual authentication between devices and transaction partners
    • G06Q20/40975Device specific authentication in transaction processing using mutual authentication between devices and transaction partners using encryption therefor
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/14Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols using a plurality of keys or algorithms
    • H04L9/16Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols using a plurality of keys or algorithms the keys or algorithms being changed during operation
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3271Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using challenge-response
    • H04L9/3273Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using challenge-response for mutual authentication
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0869Network architectures or network communication protocols for network security for authentication of entities for achieving mutual authentication

Landscapes

  • Engineering & Computer Science (AREA)
  • Business, Economics & Management (AREA)
  • Computer Security & Cryptography (AREA)
  • General Physics & Mathematics (AREA)
  • Physics & Mathematics (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Accounting & Taxation (AREA)
  • Signal Processing (AREA)
  • Strategic Management (AREA)
  • General Business, Economics & Management (AREA)
  • Theoretical Computer Science (AREA)
  • Microelectronics & Electronic Packaging (AREA)
  • Finance (AREA)
  • Storage Device Security (AREA)
  • Control Of Vending Devices And Auxiliary Devices For Vending Devices (AREA)
  • Mobile Radio Communication Systems (AREA)
  • Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)

Abstract

Die Erfindung betrifft ein Vefahren zur gegenseitigen Authentifizierung zweier miteinander kommunizierender Einheiten, wobei in der von einer Einheit A an eine Einheit B in chiffrierter Form übermittelten Nachricht ein Schlüssel mitübertragen wird, der von dem zur Verschlüsselung der Nachricht von der Einheit A verwendeten Schlüssel verschieden ist. Die Einheit B verschlüsselt dann mit Hilfe des von der Einheit A empfangenen Schlüssels die für die Einheit A bestimmte Nachricht, anhand der die Enheit B von der Einheit A authentifiziert wird.
PCT/EP1998/002231 1997-04-17 1998-04-16 Verfahren zur gegenseitigen authentifizierung zweier einheiten Ceased WO1998048389A2 (de)

Priority Applications (4)

Application Number Priority Date Filing Date Title
JP54497298A JP2001523407A (ja) 1997-04-17 1998-04-16 二つのエンティティの相互認証方法
AU80135/98A AU8013598A (en) 1997-04-17 1998-04-16 Method for mutual authentication between two units
IL13237498A IL132374A0 (en) 1997-04-17 1998-04-16 Method for mutal authentication between two units
EP98928199A EP1010146A2 (de) 1997-04-17 1998-04-16 Verfahren zur gegenseitigen authentifizierung zweier einheiten

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
DE19716111A DE19716111A1 (de) 1997-04-17 1997-04-17 Verfahren zur gegenseitigen Authentifizierung zweier Einheiten
DE19716111.1 1997-04-17

Publications (2)

Publication Number Publication Date
WO1998048389A2 WO1998048389A2 (de) 1998-10-29
WO1998048389A3 true WO1998048389A3 (de) 1999-01-28

Family

ID=7826826

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/EP1998/002231 Ceased WO1998048389A2 (de) 1997-04-17 1998-04-16 Verfahren zur gegenseitigen authentifizierung zweier einheiten

Country Status (6)

Country Link
EP (1) EP1010146A2 (de)
JP (1) JP2001523407A (de)
AU (1) AU8013598A (de)
DE (1) DE19716111A1 (de)
IL (1) IL132374A0 (de)
WO (1) WO1998048389A2 (de)

Families Citing this family (18)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7249108B1 (en) 1997-07-15 2007-07-24 Silverbrook Research Pty Ltd Validation protocol and system
US7702926B2 (en) 1997-07-15 2010-04-20 Silverbrook Research Pty Ltd Decoy device in an integrated circuit
US6816968B1 (en) 1998-07-10 2004-11-09 Silverbrook Research Pty Ltd Consumable authentication protocol and system
FR2782431B1 (fr) * 1998-08-17 2000-09-29 Gemplus Sca Procede et dispositif d'authentification a algorithme symetrique
DE19953448A1 (de) 1999-11-06 2001-05-10 Volkswagen Ag Anschlagpuffer
SE518400C2 (sv) * 2000-02-04 2002-10-01 Telia Ab Förfarande och arrangemang för ömsesidig autentisering vid kommunikation mellan två personer i ett kommunikationssystem
AU2004205292B2 (en) * 2000-02-15 2004-12-09 Silverbrook Research Pty Ltd A system for authenticating an object
CA2400220C (en) 2000-02-15 2013-07-30 Silverbrook Research Pty Ltd Consumable authentication protocol and system
AU2004201742B2 (en) * 2000-02-15 2004-06-03 Silverbrook Research Pty Ltd Consumables validation chip
AU2005200945B2 (en) * 2000-02-15 2006-10-05 Silverbrook Research Pty Ltd Integrated Circuit For Authenticating an Object
AU2006252272B2 (en) * 2000-02-15 2007-03-22 Silverbrook Research Pty Ltd An apparatus for validating a device using first and second keys
EP1223565A1 (de) * 2001-01-12 2002-07-17 Motorola, Inc. Transaktionssystem, tragbares Gerät, Endgerät und Transaktionsverfahren
JP2002281027A (ja) * 2001-03-19 2002-09-27 Toshiba Corp 認証システムのエンティティ装置、鍵更新方法及び認証方式更新方法
US7865440B2 (en) 2001-10-11 2011-01-04 International Business Machines Corporation Method, system, and program for securely providing keys to encode and decode data in a storage cartridge
US7003111B2 (en) 2001-10-11 2006-02-21 International Business Machines Corporation Method, system, and program, for encoding and decoding input data
US7496397B2 (en) 2004-05-06 2009-02-24 Boston Scientific Scimed, Inc. Intravascular antenna
KR100601703B1 (ko) * 2004-10-04 2006-07-18 삼성전자주식회사 브로드캐스트 암호화를 이용한 기기의 인증 방법
GB2493138A (en) * 2011-07-15 2013-01-30 Flick Mobile Ltd A system for secure payment transactions

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
FR2600188A1 (fr) * 1986-06-16 1987-12-18 Bull Cp8 Procede d'habilitation d'un milieu exterieur par un objet portatif relie a ce milieu
EP0253722A1 (de) * 1986-07-17 1988-01-20 Bull Cp8 Verfahren zum Wechseln eines Grundschlüssels und zum Beglaubigen eines aus einem vorherbestimmten Grundschlüssel hergestellten Schlüssels und System zu seiner Verwirklichung
EP0440800A1 (de) * 1989-06-05 1991-08-14 Ntt Data Communications Systems Corporation Ic-karte für sicherheitsbescheinigung und ic-kartendienstsystem, das diese verwendet
FR2681165A1 (fr) * 1991-09-05 1993-03-12 Gemplus Card Int Procede de transmission d'information confidentielle entre deux cartes a puces.
EP0548967A2 (de) * 1991-12-24 1993-06-30 GAO Gesellschaft für Automation und Organisation mbH Datenaustauschsystem mit Überprüfung der Vorrichtung auf Authentisierungsstatus

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
FR2600188A1 (fr) * 1986-06-16 1987-12-18 Bull Cp8 Procede d'habilitation d'un milieu exterieur par un objet portatif relie a ce milieu
EP0253722A1 (de) * 1986-07-17 1988-01-20 Bull Cp8 Verfahren zum Wechseln eines Grundschlüssels und zum Beglaubigen eines aus einem vorherbestimmten Grundschlüssel hergestellten Schlüssels und System zu seiner Verwirklichung
EP0440800A1 (de) * 1989-06-05 1991-08-14 Ntt Data Communications Systems Corporation Ic-karte für sicherheitsbescheinigung und ic-kartendienstsystem, das diese verwendet
FR2681165A1 (fr) * 1991-09-05 1993-03-12 Gemplus Card Int Procede de transmission d'information confidentielle entre deux cartes a puces.
EP0548967A2 (de) * 1991-12-24 1993-06-30 GAO Gesellschaft für Automation und Organisation mbH Datenaustauschsystem mit Überprüfung der Vorrichtung auf Authentisierungsstatus

Also Published As

Publication number Publication date
WO1998048389A2 (de) 1998-10-29
EP1010146A2 (de) 2000-06-21
JP2001523407A (ja) 2001-11-20
DE19716111A1 (de) 1998-10-22
AU8013598A (en) 1998-11-13
IL132374A0 (en) 2001-03-19

Similar Documents

Publication Publication Date Title
WO1998048389A3 (de) Verfahren zur gegenseitigen authentifizierung zweier einheiten
AU2699501A (en) Authentication of data transmitted in a digital transmission system
EP1135887A4 (de) Nachrichtenidentifizierung mit vertraulichkeit, integrität und ursprungsauthentifizierung
EP0792042A3 (de) Kommunikationsverfahren unter Verwendung eines gemeinsamen Geheimschlüssels
MY118736A (en) Scheme for authentication of at least one prover by a verifier
AU2003276090A1 (en) Secure communications
WO2002044858A3 (en) System and method for securing a non-secure communication channel
WO2001043335A3 (en) Synchronization of session keys
AU2423601A (en) Methods and apparatus for selective encryption and decryption of point to multi-point messages
ZA972786B (en) Method for providing a secure communication between two devices and application of this method.
WO2000002340A3 (en) Cryptographic communication process and apparatus
WO2004102868A3 (en) A power line communication device and method of using the same
CU22758A3 (es) Sistema de control de trasmisión de información entre un receptor y un módulo de seguridad y método de control de esta transmisión
WO2002091662A8 (en) Use and generation of a session key in a secure socket layer connection
JP2003008565A5 (de)
SE0001044L (sv) Metod och system för kryptering och autentisiering
WO1998047258A3 (en) Bilateral authentication and encryption system
EP1079565A3 (de) Verfahren zum sicheren Aufbau einer sicheren Verbindung über ein unsicheres Kommunikationsnetzwerk
KR850700198A (ko) 암호 송수신기와 그 제어방법
WO1999003285A3 (de) Verfahren und vorrichtung zur gegenseitigen authentisierung von komponenten in einem netz mit dem challenge-response-verfahren
AU1207600A (en) System and method of authenticating a key and transmitting secure data
WO2003026183A3 (en) Fingerprint, control signal for new encryption key
EP1096720A3 (de) Vorrichtung zur Verwaltung eines Verschlüsselungsalgorithmus
WO2002045340A3 (en) Threshold cryptography scheme for message authentication systems
HK1040469A1 (en) A secure data transfer system

Legal Events

Date Code Title Description
WWE Wipo information: entry into national phase

Ref document number: 132374

Country of ref document: IL

AK Designated states

Kind code of ref document: A2

Designated state(s): AL AM AT AU AZ BA BB BG BR BY CA CH CN CU CZ DK EE ES FI GB GE GH GM GW HU ID IL IS JP KE KG KP KR KZ LC LK LR LS LT LU LV MD MG MK MN MW MX NO NZ PL PT RO RU SD SE SG SI SK SL TJ TM TR TT UA UG US UZ VN YU ZW

AL Designated countries for regional patents

Kind code of ref document: A2

Designated state(s): GH GM KE LS MW SD SZ UG ZW AM AZ BY KG KZ MD RU TJ TM AT BE CH CY DE DK ES FI FR GB GR IE IT LU MC NL PT SE BF BJ CF CG CI CM GA GN ML MR NE SN TD TG

DFPE Request for preliminary examination filed prior to expiration of 19th month from priority date (pct application filed before 20040101)
AK Designated states

Kind code of ref document: A3

Designated state(s): AL AM AT AU AZ BA BB BG BR BY CA CH CN CU CZ DK EE ES FI GB GE GH GM GW HU ID IL IS JP KE KG KP KR KZ LC LK LR LS LT LU LV MD MG MK MN MW MX NO NZ PL PT RO RU SD SE SG SI SK SL TJ TM TR TT UA UG US UZ VN YU ZW

AL Designated countries for regional patents

Kind code of ref document: A3

Designated state(s): GH GM KE LS MW SD SZ UG ZW AM AZ BY KG KZ MD RU TJ TM AT BE CH CY DE DK ES FI FR GB GR IE IT LU MC NL PT SE BF BJ CF CG CI CM GA GN ML MR NE SN TD TG

121 Ep: the epo has been informed by wipo that ep was designated in this application
ENP Entry into the national phase

Ref country code: JP

Ref document number: 1998 544972

Kind code of ref document: A

Format of ref document f/p: F

WWE Wipo information: entry into national phase

Ref document number: 1998928199

Country of ref document: EP

WWE Wipo information: entry into national phase

Ref document number: 09403087

Country of ref document: US

WWP Wipo information: published in national office

Ref document number: 1998928199

Country of ref document: EP

NENP Non-entry into the national phase

Ref country code: CA

WWR Wipo information: refused in national office

Ref document number: 1998928199

Country of ref document: EP

WWW Wipo information: withdrawn in national office

Ref document number: 1998928199

Country of ref document: EP