Method and apparatus for secure transmission of data and applications

US 20010034839A1
Filed: 12/26/2000
Published: 10/25/2001
Est. Priority Date: 12/24/1999
Status: Abandoned Application

First Claim

Patent Images

1. A method for downloading, updating and/or incrementing applications and/or data from a provider (AP) via a transmission channel of limited bandwidth onto a device (SC), in particular a portable device with limited processing power and/or memory, characterized by at the provider (AP), generating code blocks Bi of the application or data to be transmitted, defining an authentication function comprising a one-way function, computing an authentication value H(Bi) for each block Bi to be transmitted, selecting an authentication tree for said authentication values H(Bi), computing authentication values Hi of the branches and the root authentication value HT of said tree, signing said root authentication value HT, thereby generating Sign(HT), generating messages Mi comprising said blocks Bi and, partly, selected ones of said authentication values H(Bi), transmitting said signed root authentication value Sign(HT) and said messages Mi from said provider (AP) to said device (SC), in said device (SC), upon receiving any one of said messages Mi, extracting said block Bi, computing the corresponding authentication value H(Bi) and cashing it, computing selected intermediate authentication values Hi along said tree until a previously verified authentication value <

<

has this value a name??>

>

is reached, comparing said computed intermediate authentication value Hi with said previously verified authentication value and, if the values are equal, accepting said received block Bi or, if otherwise, indicating an error.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Authenticated transmissions are usually time-consuming and often provide delayed error recognition and correction. This is a problem particularly with hand-held computing devices like personal digital assistants (PDAs), smart phones or smartcards, since these usually possess limited memory, processing power and communications bandwidth. Because of these limitations and generally low transfer rates between the device and a provider or central computer base, such transmissions are time-consuming and delay applications. The late detection of unavoidable transmission errors is especially cumbersome. By applying an optimally taylored authentication scheme to a block-wise transmission and in particular by applying a tree structure for the authentication process during such transfers, the present invention minimes the unavoidable delays and thus provides a solution for these problems.

183 Citations

10 Claims

1. A method for downloading, updating and/or incrementing applications and/or data from a provider (AP) via a transmission channel of limited bandwidth onto a device (SC), in particular a portable device with limited processing power and/or memory, characterized by at the provider (AP), generating code blocks Bi of the application or data to be transmitted, defining an authentication function comprising a one-way function, computing an authentication value H(Bi) for each block Bi to be transmitted, selecting an authentication tree for said authentication values H(Bi), computing authentication values Hi of the branches and the root authentication value HT of said tree, signing said root authentication value HT, thereby generating Sign(HT), generating messages Mi comprising said blocks Bi and, partly, selected ones of said authentication values H(Bi), transmitting said signed root authentication value Sign(HT) and said messages Mi from said provider (AP) to said device (SC), in said device (SC), upon receiving any one of said messages Mi, extracting said block Bi, computing the corresponding authentication value H(Bi) and cashing it, computing selected intermediate authentication values Hi along said tree until a previously verified authentication value <
- <
  
  has this value a name??>
  
  >
  
  is reached, comparing said computed intermediate authentication value Hi with said previously verified authentication value and, if the values are equal, accepting said received block Bi or, if otherwise, indicating an error.
- View Dependent Claims (2, 3, 4, 5, 6, 7)
- - 2. The method according to claim 1, wherein the generated code blocks Bi of the application or data to be transmitted are sequentially transmitted, the computing and comparing in the device (SC) is sequentially executed until all blocks Bi are verified, and the application or data is considered correctly received, when no error was indicated.
  - 3. The method according to claim 1 or 2, wherein the one-way function of the authentication function is a hashing function, the authentication tree is a hash tree HT, in particular a binary and/or symmetrical tree, of the code blocks Bi generated in the provider (AP).
  - 4. The method according to any of the preceding claims, wherein a SendBlocks process is defined in the provider (AP), consisting of a several loops which iteratively construct an i-th message Mi consisting either of a block Bi alone or of a block Bi plus one or more authentication values Hi and/or H(Bi).
  - 5. The method according to claim 4, wherein each 2j-th message Mi consists of the corresponding block Bi alone, whereas each (2j+1)-th message Mi includes the full or part of the authentication or hash path from the corresponding block Bi towards the root of the authentication tree.
  - 6. The method according to any of the preceding claims, wherein a ReceiveBlocks process is defined in the device (SC), consisting of several loops, said process iteratively evaluating an i-th message Mi by extracting from a received messages Mi the corresponding block Bi and, if the received message Mi includes one or more authentication values Hi and/or H(Bi), extracting these values and caching them for later verification.
  - 7. The method according to claim 6, wherein storing in the device (SC) only those authentication values H(Bi) and/or Hi and/or HT needed to authenticate subsequently transmitted blocks Bi and clearing all authentication values H(Bi) and/or Hi not needed in the further process.

8. A method for transmitting applications and/or data from a sender to a receiver, characterized by in said sender, partitioning said applications and/or data into blocks, defining an authentication function comprising a one-way function, computing an authentication value for each of said blocks, selecting an authentication tree for said authentication values of said blocks and computing authentication values of the branches and a root authentication value of said tree, sequentially sending said blocks with selected ones of said block and/or branch authentication values and/or said root authentication value to said receiver, extracting in said receiver said application or data block, computing in said receiver those authentication values that are available along the branch towards the root, storing in said receiver authentication values needed to authenticate subsequently transmitted data blocks, and verifying in said receiver each subsequently received block with computed and/or stored authentication values.

9. Provider apparatus (AP) for downloading, updating and/or incrementing applications and/or data partioned into blocks onto a device (SC), in particular a portable device with limited processing power and/or memory, in which apparatus an authentication function comprising a one-way function is defined and an authentication tree is selected for authenticating said blocks, said apparatus including means (3) for computing an authentication value for each of said blocks and of the branches of said tree, means (4) for computing a root authentication value, means (5) for building messages from said blocks and selected ones of said authentication values, and transport means (11) for sequentially sending said messages to said receiver.

10. Device (SC), in particular a portable device with limited processing power and/or memory, for evaluating messages received from a provider (AP) for downloading, updating and/or incrementing applications and/or data partioned into blocks on said device, in which the provider has defined an authentication function comprising a one-way function and selected an authentication tree is for authenticating said blocks, said device including transport means (11) connected to said provider (AP) for receiving messages from said provider, means (15) for extracting said application or data block and for computing and storing authentication values are available along the branches towards the root of said authentication tree, means (14) for verifying signatures extracted from said blocks and for verifying each subsequently received block with computed and/or stored authentication values, and storage means (19) for authentication values needed to authenticate subsequently transmitted blocks.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
International Business Machines Corporation
Original Assignee
International Business Machines Corporation
Inventors
Karjoth, Guenter, OʼConnor, Luke J.

Application Number

US09/748,446
Publication Number

US 20010034839A1
Time in Patent Office

Days
Field of Search
US Class Current

713/190
CPC Class Codes

H04L 2209/30   Compression, e.g. Merkle-Da...

H04L 2209/56   Financial cryptography, e.g...

H04L 9/3236   using cryptographic hash fu...

H04L 9/50   using hash chains, e.g. blo...

Method and apparatus for secure transmission of data and applications

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

183 Citations

10 Claims

Specification

Solutions

Use Cases

Quick Links

Method and apparatus for secure transmission of data and applications

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

183 Citations

10 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links