PROVIDING DIGITAL SIGNATURE AND PUBLIC KEY BASED ON SHARED KNOWLEDGE

US 20060153365A1
Filed: 08/08/2005
Published: 07/13/2006
Est. Priority Date: 01/07/2005
Status: Active Grant

First Claim

Patent Images

1. A method of providing a digital signature of a first party using a private key of a public-private key pair in the elliptic curve digital signature algorithm (ECDSA), the method comprising the steps of:

(a) identifying domain parameters of an elliptic curve for use in elliptic curve cryptography, the domain parameters including an initial generating point;

(b) transforming the initial generating point into a new generating point as a deterministic function; and

(c) generating within a computer system a digital signature as a function of a private key and the domain parameters, in which the new generating point is substituted for the initial generating point.

View all claims

8 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A public key and digital signature is provided using a private key of a public-private key pair in an elliptic curve digital signature algorithm (ECDSA) by: identifying domain parameters of an elliptic curve for use in elliptic curve cryptography, the domain parameters including an initial generating point; transforming the generating point into a new generating point as a deterministic function; generating the public key as a deterministic function of the private key and the domain parameters, in which the new generating point is substituted for the initial generating point; and generating the digital signature as a function of the private key and the domain parameters, in which the new generating point is substituted for the initial generating point.

Citations

30 Claims

1. A method of providing a digital signature of a first party using a private key of a public-private key pair in the elliptic curve digital signature algorithm (ECDSA), the method comprising the steps of:
- (a) identifying domain parameters of an elliptic curve for use in elliptic curve cryptography, the domain parameters including an initial generating point;
  
  (b) transforming the initial generating point into a new generating point as a deterministic function; and
  
  (c) generating within a computer system a digital signature as a function of a private key and the domain parameters, in which the new generating point is substituted for the initial generating point.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21)
- - 2. The method of claim 1, further comprising the step of clearing from the computer system the new generating point following said step of generating the digital signature so that the generating point is no longer available within the computer system for regenerating the digital signature.
  - 3. The method of claim 1, wherein said step of transforming the initial generating point into a new generating point includes the step of generating a transformer as a deterministic function of shared knowledge, wherein the shared knowledge is known to the first party and a second party different from the first party, wherein the second party receives the generated digital signature.
  - 4. The method of claim 3, wherein the deterministic function of the shared knowledge outputs a large integer value.
  - 5. The method of claim 3, wherein said step of transforming the initial generating point into a new generating point further includes the step of multiplying the initial generating point by the transformer to arrive at the new generating point.
  - 6. The method of claim 3, wherein the shared knowledge comprises an account number for an account of the first party that is maintained with the second party.
  - 7. The method of claim 3, further comprising the step of receiving user input into the computer system from the first party, the user input comprising the shared knowledge.
  - 8. The method of claim 3, wherein the shared knowledge comprises information that is communicated between the first party and the second party.
  - 9. The method of claim 3, wherein the shared knowledge comprises information that is communicated by a third party both to the first party and the second party.
  - 10. The method of claim 3, wherein the shared knowledge comprises a unique identifier of the first party to the second party.
  - 11. The method of claim 3, wherein the shared knowledge comprises a deterministic function of one or more predefined arguments, wherein the deterministic function and predefined arguments are known both to the first party and the second party, whereby both the first party and the second party may independently calculate the shared knowledge for use in generating the transformer.
  - 12. The method of claim 3, further comprising the step of exporting said generated digital signature from the computer system for communicating to the second party.
  - 13. The method of claim 3, wherein said step of identifying the domain parameters of an elliptic curve comprises receiving an identification of the domain parameters from the second party.
  - 14. The method of claim 3, wherein said step of identifying the domain parameters of an elliptic curve comprises selecting the domain parameters by the first party, and wherein the method further comprises the step of communicating by the first party said selected domain parameters to the second party.
  - 15. The method of claim 1, further comprising the step of determining the private key.
  - 16. The method of claim 15, wherein said step of determining the private key comprises generating the private key as a deterministic function of user input data that is received within the computer system from the first party.
  - 17. The method of claim 16, wherein the user input data represents a passphrase, password, or PIN.
  - 18. The method of claim 16, wherein the user input data represents a biometric characteristic.
  - 19. The method of claim 16, further comprising the step of clearing the private key from the computer system following said step of generating the digital signature so that the private key must be regenerated within the computer system in order to generate a digital signature within the computer system using the function of said step (c).
  - 20. The method of claim 16, further comprising the step of clearing the user input data from the computer system following said step of generating the private key so that the user input data must be received again within the computer system in order to regenerate the private key within the computer system.
  - 21. The method of claim 15, wherein said step of determining the private key comprises retrieving the private key from a secure store of the computer system.

22. A computer-readable medium having computer-executable instructions for performing the steps comprising:
- (a) identifying domain parameters of an elliptic curve for use in elliptic curve cryptography, the domain parameters including an initial generating point;
  
  (b) transforming the initial generating point into a new generating point as a deterministic function; and
  
  (c) generating within a computer system a digital signature as a function of a private key and the domain parameters, in which the new generating point is substituted for the initial generating point.

23. In a method of providing a digital signature with a private key of a public-private key pair of a first party using the elliptic curve digital signature algorithm (ECDSA), the method including a step of generating a digital signature as a function of the private key and domain parameters of an elliptic curve, the domain parameters including a generating point, an improvement to the method comprising the steps of, (a) calculating a larger integer value as a deterministic function of shared knowledge that is known to the first party and a second party different from the first party, (b) multiplying the generating point of the domain parameters by said calculated integer value to obtain a new generating point, and (c) replacing the generating point of the domain parameters with the new generating point during said step of generating the digital signature as a function of the private key and the domain parameters.

24. A method of providing two digital signatures in accordance with the elliptic curve digital signature algorithm (ECDSA), and using the same private key of a first party, which digital signatures can be verified with different respective public keys, the method comprising the steps of, (a) with respect to the first digital signature, (i) identifying domain parameters of an elliptic curve for use in elliptic curve cryptography, the domain parameters including an initial generating point, (ii) transforming in a deterministic function the initial generating point into a first new generating point, and (iii) generating the first digital signature as a function of the private key and the domain parameters, in which the first new generating point is substituted for the initial generating point;
- and (b) with respect to the second digital signature, (i) transforming in a deterministic function the initial generating point of the domain parameters into a second new generating point, and (ii) generating the second digital signature as a function of the same private key and the domain parameters, in which the second new generating point is substituted for the initial generating point.
- View Dependent Claims (25, 26)
- - 25. The method of claim 24, wherein the different respective public keys are provided by, generating the first public key as a deterministic function of the private key and the domain parameters, in which the first new generating point of said step (a)(ii) is substituted for the initial generating point, said generated first public key thereby comprising, in conjunction with the private key, the first public-private key pair for use in elliptic curve cryptography;
    - and generating the second public key as a deterministic function of the private key and the domain parameters, in which the second new generating of said step (b)(i) point is substituted for the initial generating point, said generated second public key thereby comprising, in conjunction with the private key, the second public-private key pair for use in elliptic curve cryptography.
  - 26. The method of claim 24, wherein, said step (a)(ii) of transforming the initial generating point into a first new generating point includes the step of generating a transformer as a deterministic function of shared knowledge, wherein the shared knowledge is known to the first party and a second party different from the first party;
    - and said step (b)(ii) of transforming the initial generating point into a second new generating point includes the step of generating a transformer as a deterministic function of shared knowledge, wherein the shared knowledge is known to the first party and a third party different from the first party.

27. A method of providing by a first party a public key of a public-private key pair for use in elliptic curve cryptography, the method comprising the steps of:
- (a) identifying domain parameters of an elliptic curve for use in elliptic curve cryptography, the domain parameters including an initial generating point;
  
  (b) transforming the initial generating point into a new generating point as a deterministic function; and
  
  (c) generating within a computer system a public key as a deterministic function of a private key and the domain parameters, in which the new generating point is substituted for the initial generating point;
  
  (d) wherein said generated public key comprises, in conjunction with the private key, a public-private key pair for use in elliptic curve cryptography.
- View Dependent Claims (28)
- - 28. The method of claim 27, further comprising the step of clearing from the computer system the new generating point following said step of generating the public key so that the generating point is no longer available within the computer system for regenerating the public key.

29. A computer-readable medium having computer-executable instructions for performing the steps comprising:
- (a) identifying domain parameters of an elliptic curve for use in elliptic curve cryptography, the domain parameters including an initial generating point;
  
  (b) transforming the initial generating point into a new generating point as a deterministic function; and
  
  (c) generating within a computer system a public key as a deterministic function of a private key and the domain parameters, in which the new generating point is substituted for the initial generating point;
  
  (d) wherein said generated public key comprises, in conjunction with the private key, a public-private key pair for use in elliptic curve cryptography.

30. In a method of providing a public key of a public-private key pair of a first party for use in elliptic curve cryptography, the method including a step of generating a public key as a deterministic function of a private key and domain parameters of an elliptic curve for use in elliptic curve cryptography, the domain parameters including a generating point, wherein said generated public key comprises, in conjunction with the private key, a public-private key pair for use in elliptic curve cryptography, an improvement to the method comprising the steps of, (a) calculating a large integer value as a deterministic function of shared knowledge that is known to the first party and a second party different from the first party, (b) multiplying the generating point of the domain parameters by said calculated integer value to obtain a new generating point, and (c) replacing the generating point of the domain parameters with the new generating point during said step of generating the public key as a deterministic function of the private key and the domain parameters.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
First Data Corporation (Fiserv Incorporated)
Original Assignee
First Data Corporation (Fiserv Incorporated)
Inventors
Beeson, Curtis Linn

Granted Patent

US 7,593,527 B2
Time in Patent Office

Days
Field of Search
US Class Current

380/30
CPC Class Codes

H04L 2209/56   Financial cryptography, e.g...

H04L 9/3066   involving algebraic varieti...

H04L 9/3252   using DSA or related signat...

PROVIDING DIGITAL SIGNATURE AND PUBLIC KEY BASED ON SHARED KNOWLEDGE

First Claim

8 Assignments

0 Petitions

Accused Products

Abstract

Citations

30 Claims

Specification

Solutions

Use Cases

Quick Links

PROVIDING DIGITAL SIGNATURE AND PUBLIC KEY BASED ON SHARED KNOWLEDGE

First Claim

8 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

30 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links