System and method for establishing secure communication
First Claim
1. A method for obtaining a shared secret key, comprising the steps of:
- identifying a first shared random number;
identifying a second shared random number; and
obtaining the shared secret key from an output of a combining function having a first input including said first shared random number and having a second input including said second shared random number.
8 Assignments
0 Petitions
Accused Products
Abstract
A system and method is described in which two parties communicate a first shared random number and a second shared random number, and each independently use a combining function with inputs including the two shared random numbers to obtain a shared secret key. Secure communication of the shared random numbers is performed by using a password and an asymmetric key pair. The password and the private key are not communicated, thereby preventing eavesdroppers from obtaining information sufficient to determine the shared secret key. Direct attacks on the parties are foiled by preventing the password from being stored, not storing the private key, and using two shared random numbers in case one is compromised by an attack on one of the two parties. A party cannot be effectively impersonated without knowledge of the password, and a called party cannot be impersonated without additionally controlling the network.
-
Citations
152 Claims
-
1. A method for obtaining a shared secret key, comprising the steps of:
-
identifying a first shared random number;
identifying a second shared random number; and
obtaining the shared secret key from an output of a combining function having a first input including said first shared random number and having a second input including said second shared random number. - View Dependent Claims (2, 3)
-
-
4. A method for obtaining a shared secret key utilized in a network having at least a first computer and a second computer, said method comprising the steps of:
-
transmitting a first message from said first computer to said second computer, said first message including a first shared random number;
generating a second shared random number in said second computer; and
generating a shared secret key from an output of a combining function having a first input including said first shared random number and having a second input including said second shared random number. - View Dependent Claims (5, 6, 7, 8, 9, 10, 11, 12, 13, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 26, 27, 28, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40, 41, 42, 43, 44, 45, 46, 47, 48, 49, 50, 51, 52, 53, 54, 55, 56, 57, 59, 60, 61, 62, 63, 64, 65, 66, 67, 68, 69, 70, 71, 72, 74, 75, 76, 77, 78, 79, 80, 81, 83, 84, 85, 86, 87, 88, 89, 90, 92, 93, 94, 96, 97, 98, 99, 100, 101, 102, 104, 105, 106, 107, 108, 109, 110, 111, 112, 114, 115, 116, 117, 118, 119, 120, 121, 122, 123, 124, 125, 126, 127, 128, 129, 130, 131, 132, 133, 134, 135, 136, 137, 138, 139, 140, 141, 142, 143, 144, 145, 146, 147, 148, 149, 150, 151, 152)
-
-
14. An electronic data signal including information encoded using a shared secret key, wherein said shared secret key is obtained from an output of a combining function having a first input including said first shared random number and having a second input including said second shared random number.
-
25. A method for obtaining a shared secret key, comprising the steps of:
-
receiving a first message including a first shared random number;
identifying a second shared random number;
obtaining the shared secret key from an output of a combining function having a first input including said first shared random number and having a second input including said second shared random number.
-
-
58. A device including at least one processor, said at least one processor executing software instructions for obtaining a shared secret key, said software instructions comprising a software module identifying a first shared random number and a second shared random number and obtaining the shared secret keybased on said first shared random number and said second shared random number, wherein the device is capable of transforming messages using the shared secret key.
-
73. A device including at least one processor, said at least one processor executing software instructions for obtaining a shared secret key, said software instructions comprising a software module parsing a first message including a first shared random number to identify said first shared random number, identifying a second shared random number, and obtaining the shared secret key from an output of a combining function having a first input including said first shared random number and having a second input including said second shared random number, wherein the shared secret key is used by the device to transform messages.
-
82. A device including at least one processor, said at least one processor executing software instructions for obtaining a shared secret key, said software instructions comprising a first software module identifying a first shared random number, parsing a second message including a second shared random number to identify said second shared random number, and obtaining the shared secret key from an output of a combining function having a first input including said first shared random number and having a second input including said second shared random number, wherein the shared secret key is used by the device to transform messages.
-
91. A machine-readable storage medium containing instructions for a processor, said instructions being the steps for the processor, comprising:
-
encoded computer means for identifying a first shared random number;
encoded computer means for identifying a second shared random number; and
encoded computer means for obtaining the shared secret key from an output of a combining function having a first input including said first shared random number and having a second input including said second shared random number.
-
-
95. A machine-readable storage medium containing instructions for a processor, said instructions being the steps for the processor, comprising:
-
encoded computer means for parsing a first message including a first shared random number to obtain said first shared random number;
encoded computer means for identifying a second shared random number; and
encoded computer means for obtaining the shared secret key from an output of a combining function having a first input including said first shared random number and having a second input including said second shared random number.
-
-
103. A machine-readable storage medium containing instructions for a processor, said instructions being the steps for the processor, comprising:
-
encoded computer means for identifying a first shared random number;
encoded computer means for parsing a second message including a second shared random number to obtain said second shared random number; and
encoded computer means for obtaining the shared secret key from an output of a combining function having a first input including said first shared random number and having a second input including said second shared random number.
-
-
113. A method for obtaining a shared secret key, comprising the steps of:
-
identifying a first shared random number;
receiving a second message including a second shared random number; and
obtaining the shared secret key from an output of a combining function having a first input including said first shared random number and having a second input including said second shared random number.
-
Specification