Personal device security using elliptic curve cryptography for secret sharing

US 10,715,336 B2
Filed: 02/14/2017
Issued: 07/14/2020
Est. Priority Date: 02/23/2016
Status: Active Grant

First Claim

Patent Images

1. A computer implemented method of encrypting data at an electronic device (S), the electronic device being associated with a key device (C), wherein the electronic device is further associated with a first asymmetric cryptography pair having a first electronic device private key (V_1S) and a first electronic device public key (P_1S), and the key device is associated with a second asymmetric cryptography pair having a first key device private key (V_1C) and a first key device public key (P_1C);

the method comprising;

determining, at the electronic device, a deterministic key (DK);

receiving, at the electronic device, the first key device public key (P_1C) from the key device;

determining, at the electronic device, a second electronic device private key (V_2S) based on at least the first electronic device private key (V_1S) and the deterministic key (DK), anddetermining, at the electronic device, a second key device public key (P_2C) based on at least the first key device public key (P_1C) and the deterministic key (DK);

determining a secret based on at least the second electronic device private key (V_2S) and the second key device public key (P_2C);

encrypting the data at the electronic device using the determined secret or an encryption key that is based on the determined secret; and

sending information indicative of the deterministic key (DK) to the key device where the information can be stored.

View all claims

4 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method (400) of encrypting data at an electronic device (3) where the electronic device is associated with a key device (5). Each device is associated with an asymmetric cryptography pair, each pair including a first private key and a first public key. Respective second private and public keys may be determined based on the first private key, first public key and a deterministic key. A secret may be determined based on the second private and public keys. The data at the electronic device (3) may be encrypted using the determined secret or an encryption key that is based on the secret. Information indicative of the deterministic key may be sent to the key device (5) where the information may be stored.

98 Citations

View as Search Results

27 Claims

1. A computer implemented method of encrypting data at an electronic device (S), the electronic device being associated with a key device (C), wherein the electronic device is further associated with a first asymmetric cryptography pair having a first electronic device private key (V_1S) and a first electronic device public key (P_1S), and the key device is associated with a second asymmetric cryptography pair having a first key device private key (V_1C) and a first key device public key (P_1C);
- the method comprising;
  
  determining, at the electronic device, a deterministic key (DK);
  
  receiving, at the electronic device, the first key device public key (P_1C) from the key device;
  
  determining, at the electronic device, a second electronic device private key (V_2S) based on at least the first electronic device private key (V_1S) and the deterministic key (DK), anddetermining, at the electronic device, a second key device public key (P_2C) based on at least the first key device public key (P_1C) and the deterministic key (DK);
  
  determining a secret based on at least the second electronic device private key (V_2S) and the second key device public key (P_2C);
  
  encrypting the data at the electronic device using the determined secret or an encryption key that is based on the determined secret; and
  
  sending information indicative of the deterministic key (DK) to the key device where the information can be stored.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24)
- - 2. The method of claim 1, further comprising:
    - storing, at the key device, the information indicative of the deterministic key (DK).
  - 3. The method of claim 1, wherein the deterministic key (DK) is based on a message (M).
  - 4. The method of claim 3, comprising a step of generating the message (M) at the electronic device, and determining the deterministic key (DK) based on determining a hash of the message (M).
  - 5. The method of claim 1, comprising a step of determining a second electronic device public key (P_2S) based on at least the first electronic device public key (P_1S) and the deterministic key (DK).
  - 6. The method of claim 1, comprising:
    - sending from the electronic device to the key device, a notice indicative of using a common elliptic curve cryptography (ECC) system with a common generator (G).
  - 7. The method of claim 6, comprising a step of generating the first electronic device private key (V_1S) based on a random integer in an allowable range specified in the common ECC system;
    - and generating the first electronic device public key (P_1S) based on elliptic curve point multiplication of the first electronic device private key (V_1C) and the common generator (G) according to the following formula;
      
      P_1S=V_1S×
      
      G.
  - 8. The method of claim 6, comprising a step of generating the second electronic device private key (V_2S) based on a scalar addition of the first electronic device private key (V_1S) and the deterministic key (DK) according to the following formula:
    - V_2S=V_1S+DK.
  - 9. The method of claim 6, comprising a step of generating the second electronic device public key (P_2S) based on at least the first electronic device public key (P_1S) with elliptic curve point addition to the deterministic key (DK).
  - 10. The method of claim 9, wherein the second electronic device public key (P_2S) is based on the first electronic device public key (P_1S) with elliptic curve point addition to the elliptic curve point multiplication of the deterministic key (DK) and the common generator (G) according to the following formula:
    - P_2S=P_1S+DK×
      
      G.
  - 11. The method of claim 6, comprising a step of generating the second key device public key (P_2C) based on at least the first key device public key (P_1C) with elliptic curve point addition to the deterministic key (DK).
  - 12. The method of claim 11, wherein the second key device public key (P_2C) is based on the first key device public key (P_1C) with elliptic curve point addition to the elliptic curve point multiplication of the deterministic key (DK) and the common generator (G) according to the following formula:
    - P_2C=P_1C+DK×
      
      G.
  - 13. The method of claim 1, wherein the first electronic device public key (P_1S) and the first key device public key (P_1C) are based on elliptic curve point multiplication of the respective first electronic device private key (V_1S) and first key device private key (V_1C) and the common generator (G).
  - 14. The method of claim 1, comprising a step of determining the encryption key based on the determined secret and identification information of the electronic device.
  - 15. The method of claim 1, comprising a step of storing, at a data storage associated with the electronic device, the first key device public key (P_1C).
  - 16. A computer implemented method of decrypting data at an electronic device, the data being encrypted in accordance with claim 1, the method of decrypted the data comprising:
    - receiving, at the electronic device, the information indicative of the deterministic key (DK), from the key device;
      
      determining the secret based on the received information indicative of the deterministic key (DK); and
      
      decrypting, at the electronic device, the encrypted data using the secret or the encryption key that is based on the secret.
  - 17. The method of claim 16, comprising a step of generating, at the electronic device, an authentication message (M_A) and sending the authentication message (M_A) to the key device.
  - 18. The method of claim 17, comprising a step of determining the deterministic authentication key (DK_A) by determining a hash of the message (M_A).
  - 19. The method of claim 18, wherein the second key device private key (V_2C) is based on the deterministic authentication key (DK_A) and the first key device private key (V_1C), and the second key device public key (P_2C) is based on the deterministic authentication key (DK_A) and the first key device public key (P_1C).
  - 20. The method of claim 19, comprising:
    - generating, at the key device, a signed authentication message (SM_A) based on the deterministic authentication key (DK_A) and the second key device private key (V_2C);
      
      receiving, at the electronic device, the signed authentication message (SM_A) from the key device;
      
      validating the signed message (SM_A) with the second key device public key (P_2C); and
      
      authenticating the key device based on the result of validating the signed authentication message (SM_A).
  - 21. The method of claim 16, comprising a step of generating, at the key device, a second asymmetric cryptography pair having a second key device private key (V_2C) and a second key device public key (P_2C).
  - 22. The method of claim 16, comprising:
    - requesting, at the electronic device, the information indicative of the deterministic key (DK) from the key device;
      
      generating, at the key device, a signed message (SM) based on the message (M);
      
      sending the signed message (SM) to the electronic device;
      
      validating, at the electronic device, the signed message (SM); and
      
      retrieving the message (M) such that the secret can be determined, at the electronic device, for decrypting the data.
  - 23. A memory device storing thereon a computer program comprising machine-readable instructions to cause a processing device of an electronic device to implement the method of claim 16.
  - 24. A memory device storing thereon a computer program comprising machine-readable instructions to cause a processing device of an electronic device to implement the method of claim 1.

25. A computer system for encrypting data at an electronic device, the computer system comprising:
- the electronic device being associated with a first asymmetric cryptography pair having a first electronic device private key (V_1S) and a first electronic device public key (P_1S); and
  
  a key device being associated with a second asymmetric cryptography pair having a first key device private key (V_1C) and a first key device public key (P_1C),wherein the electronic device comprises a processor configured to;
  
  determine a deterministic key (DK);
  
  receive the first key device public key (P_1C) from the key device;
  
  determine a second electronic device private key (V_2S) based on at least the first electronic device private key (V_1S) and the deterministic key (DK);
  
  determine a second key device public key (P_2C) based on at least the first key device public key (P_1C) and the deterministic key (DK);
  
  determine a secret based on at least the second electronic device private key (V_2S) and the second key device public key (P_2C); and
  
  encrypt the data on the electronic device using the determined secret or an encryption key that is based on the determined secret; and
  
  wherein information indicative of the deterministic key (DK) is stored on the key device.
- View Dependent Claims (26)
- - 26. The computer system of claim 25, further configured to decrypt data, the processor of the electronic device being configured to:
    - receive the information indicative of the deterministic key (DK), from the key device;
      
      determine the secret based on the information indicative of the deterministic key (DK); and
      
      decrypt the data using the determined secret or the encryption key that is based on the determined secret.

27. An electronic device for encrypting data, the electronic device being associated with a key device, wherein the electronic device is associated with a first asymmetric cryptography pair having a first electronic device private key (V_1S) and a first electronic device public key (P_1S), and the key device is associated with a second asymmetric cryptography pair having a first key device private key (V_1C) and a first key device public key (P_1C);
- the electronic device comprising a processing device configured to;
  
  determine a deterministic key (DK);
  
  receive the first key device public key (P_1C) from the associated key device;
  
  determine a second electronic device private key (V_2S) based on at least the first electronic device private key (V_1S) and the deterministic key (DK);
  
  determine a second key device public key (P_2C) based on at least the first key device public key (P_1C) and the deterministic key (DK);
  
  determine a secret based on at least the second electronic device private key (V_2S) and the second key device public key (P_2C); and
  
  encrypt the data on the electronic device using the determined secret or an encryption key that is based on the determined secret;
  
  wherein information indicative of the deterministic key (DK) is sent to the key device where it can be stored.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Nchain Licensing AG (Nchain Holdings Limited)
Original Assignee
Nchain Holdings Limited
Inventors
Wright, Craig Steven, Savanah, Stephane
Primary Examiner(s)
Gergiso, Techane

Application Number

US16/079,082
Publication Number

US 20190058600A1
Time in Patent Office

1,246 Days
Field of Search
US Class Current
CPC Class Codes

H04L 2209/56   Financial cryptography, e.g...

H04L 9/0825   using asymmetric-key encryp...

H04L 9/0841   involving Diffie-Hellman or...

H04L 9/085   Secret sharing or secret sp...

H04L 9/0891   Revocation or update of sec...

H04L 9/3066   involving algebraic varieti...

H04L 9/3252   using DSA or related signat...

H04W 12/02   Protecting privacy or anony...

H04W 12/03   Protecting confidentiality,...

H04W 84/18   Self-organising networks, e...

Personal device security using elliptic curve cryptography for secret sharing

First Claim

4 Assignments

0 Petitions

Accused Products

Abstract

98 Citations

27 Claims

Specification

Solutions

Use Cases

Quick Links

Personal device security using elliptic curve cryptography for secret sharing

First Claim

4 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

98 Citations

27 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links