Hybrid symmetric/asymmetric cryptography with user authentication

US 20070014408A1
Filed: 07/15/2005
Published: 01/18/2007
Est. Priority Date: 07/15/2005
Status: Active Grant

First Claim

Patent Images

1. A method for encrypting data comprising:

receiving at least one user authentication factor;

generating an asymmetric decryption key from the at least one user authentication factor;

generating an asymmetric encryption key from a one-way function of the asymmetric decryption key; and

encrypting a symmetric key using the asymmetric encryption key.

View all claims

3 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A device uses a user authentication factor to generate an asymmetric decryption key for use in cryptography. An asymmetric encryption key is generated from the asymmetric decryption key using a one-way function, and the asymmetric encryption key is used to encrypt a symmetric key.

Citations

41 Claims

1. A method for encrypting data comprising:
- receiving at least one user authentication factor;
  
  generating an asymmetric decryption key from the at least one user authentication factor;
  
  generating an asymmetric encryption key from a one-way function of the asymmetric decryption key; and
  
  encrypting a symmetric key using the asymmetric encryption key.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
- - 2. The method of claim 1 wherein the at least one user authentication factor includes a unique ID for a hardware device.
  - 3. The method of claim 2 wherein the hardware device comprises a hardware device physically separate from an apparatus performing the method.
  - 4. The method of claim 2 wherein the hardware device comprises a hardware device physically separable from an apparatus performing the method.
  - 5. The method of claim 1 wherein the at least one user authentication factor includes a biometric factor.
  - 6. The method of claim 1 wherein the at least one user authentication factor includes a unique ID for a hardware device and a biometric factor.
  - 7. The method of claim 1 wherein generating an asymmetric decryption key comprises setting the asymmetric decryption key equal to the at least one user authentication factor.
  - 8. The method of claim 1 further comprising encrypting the at least one user authentication factor using the asymmetric encryption key to produce an encrypted at least one user authentication factor.
  - 9. The method of claim 8 further comprising:
    - storing the encrypted symmetric key;
      
      storing the asymmetric encryption key; and
      
      storing the encrypted at least one user authentication factor.

10. A method for decrypting data comprising:
- receiving at least one user authentication factor;
  
  generating an asymmetric decryption key from the at least one user authentication factor; and
  
  decrypting a stored symmetric key using the asymmetric decryption key.
- View Dependent Claims (11, 12, 13, 14, 15, 16)
- - 11. The method of claim 10 further comprising encrypting the at least one user authentication factor using a stored asymmetric encryption key to produce a result, and comparing the result with a stored encrypted user authentication factor.
  - 12. The method of claim 10 wherein the at least one user authentication factor includes a unique ID for a hardware device.
  - 13. The method of claim 12 wherein the hardware device comprises a hardware device physically separate from an apparatus performing the method.
  - 14. The method of claim 12 wherein the hardware device comprises a hardware device physically separable from an apparatus performing the method.
  - 15. The method of claim 10 wherein the at least one user authentication factor includes a biometric factor.
  - 16. The method of claim 10 wherein the at least one user authentication factor includes a unique ID for a hardware device and a biometric factor.

17. An apparatus with a machine accessible medium having instructions stored thereon that when accessed result in a machine performing:
- receiving at least one user authentication factor;
  
  generating an asymmetric decryption key from the at least one user authentication factor;
  
  generating an asymmetric encryption key from a one-way function of the asymmetric decryption key; and
  
  encrypting a symmetric key using the asymmetric encryption key.
- View Dependent Claims (18, 19, 20, 21, 22)
- - 18. The apparatus of claim 17 wherein the at least one user authentication factor includes a unique ID for a hardware device.
  - 19. The apparatus of claim 18 wherein the hardware device comprises a hardware device physically separate from the machine performing the method.
  - 20. The apparatus of claim 18 wherein the hardware device comprises a hardware device physically separable from the machine performing the method.
  - 21. The apparatus of claim 17 wherein the at least one user authentication factor includes a biometric factor.
  - 22. The apparatus of claim 17 wherein the at least one user authentication factor includes a unique ID for a hardware device and a biometric factor.

23. An apparatus with a machine accessible medium having instructions stored thereon that when accessed result in a machine performing:
- receiving at least one user authentication factor;
  
  generating an asymmetric decryption key from the at least one user authentication factor; and
  
  decrypting a stored symmetric key using the asymmetric decryption key.
- View Dependent Claims (24, 25, 26, 27, 28, 29)
- - 24. The apparatus of claim 23 wherein the instructions, when accessed, further result in the machine performing:
    - encrypting the at least one user authentication factor using a stored asymmetric encryption key to produce a result, and comparing the result with a stored encrypted user authentication factor.
  - 25. The apparatus of claim 23 wherein the at least one user authentication factor includes a unique ID for a hardware device.
  - 26. The apparatus of claim 25 wherein the hardware device comprises a hardware device physically separate from the machine performing the method.
  - 27. The apparatus of claim 25 wherein the hardware device comprises a hardware device physically separable from the machine performing the method.
  - 28. The apparatus of claim 23 wherein the at least one user authentication factor includes a biometric factor.
  - 29. The apparatus of claim 23 wherein the at least one user authentication factor includes a unique ID for a hardware device and a biometric factor.

30. A computer system for storing and accessing encrypted data, comprising:
- a user authentication factor collection component to receive at least one user authentication factor;
  
  an asymmetric decryption key generation component to generate an asymmetric decryption key from the at least one user authentication factor;
  
  an asymmetric encryption key generation component to generate an asymmetric encryption key from the asymmetric decryption key using a one-way function;
  
  a symmetric encryption/decryption process component to encrypt data using a symmetric encryption key; and
  
  an asymmetric encryption/decryption process component to encrypt the symmetric key using the asymmetric encryption key.
- View Dependent Claims (31, 32, 33, 34, 35)
- - 31. The computer system of claim 30 further comprising a storage component to store the asymmetric encryption key and the encrypted symmetric key.
  - 32. The computer system of claim 30 wherein the user authentication factor collection component is configured to receive a unique ID for a hardware device as a user authentication factor.
  - 33. The computer system of claim 32 wherein the hardware device comprises a hardware device physically separable from the computer system.
  - 34. The computer system of claim 30 wherein the user authentication factor collection component is configured to receive a biometric factor as a user authentication factor.
  - 35. The computer system of claim 30 wherein the user authentication factor collection component is configured to receive a unique ID for a hardware device and a biometric factor as user authentication factors.

36. An apparatus comprising:
- means for collecting at least one user authentication factor;
  
  means for generating an asymmetric decryption key from the at least one user authentication factor;
  
  means for generating an asymmetric encryption key from the asymmetric decryption key using a one-way function;
  
  means for encrypting a symmetric key using the asymmetric encryption key; and
  
  means for encrypting data using the symmetric key.

37. A handheld device to store encrypted data, comprising:
- a biometric collection device to collect a biometric user authentication factor; and
  
  a hybrid symmetric/asymmetric cryptography engine to generate an asymmetric decryption key from the biometric user authentication factor, to generate an asymmetric encryption key from the asymmetric decryption key, and to encrypt a symmetric key using the asymmetric encryption key.
- View Dependent Claims (38, 39, 40, 41)
- - 38. The handheld device of claim 37 wherein the biometric collection device comprises a fingerprint collection device.
  - 39. The handheld device of claim 37 wherein the biometric collection device comprises a retinal scanner.
  - 40. The handheld device of claim 37 further comprising a wireless interface to receive a unique ID from a wireless device.
  - 41. The handheld device of claim 40 wherein the hybrid symmetric/asymmetric cryptography engine is configured to generate the asymmetric decryption key from the unique ID and the biometric user authentication factor.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Tyfone Incorporated
Original Assignee
Tyfone Incorporated
Inventors
Tadepalli, Prabhakar, Spitzer, Thomas, Narendra, Siva

Granted Patent

US 8,189,788 B2
Time in Patent Office

Days
Field of Search
US Class Current

380/270
CPC Class Codes

H04L 2209/80   Wireless

H04L 9/0844   with user authentication or...

H04L 9/0866   involving user or device id...

Hybrid symmetric/asymmetric cryptography with user authentication

First Claim

3 Assignments

0 Petitions

Accused Products

Abstract

Citations

41 Claims

Specification

Solutions

Use Cases

Quick Links

Hybrid symmetric/asymmetric cryptography with user authentication

First Claim

3 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

41 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links