PREVENTION OF UNAUTHORIZED FORWARDING AND AUTHENTICATION OF SIGNATURES

US 20080229111A1
Filed: 03/16/2007
Published: 09/18/2008
Est. Priority Date: 03/16/2007
Status: Active Grant

First Claim

Patent Images

1. An authentication method comprising:

receiving a message and a modified signature, wherein;

the modified signature is indicative of a signed message, the signed message being signed utilizing a predetermined parameter; and

the signed message is indicative of the message, the message being signed utilizing a private key of a public/private key pair;

operating on the modified signature to generate a first value, wherein the modified signature is operated on utilizing a public key of the public/private key pair;

operating on the message to generate a second value, wherein the message is operated on utilizing the predetermined parameter;

comparing the first value and the second value; and

authenticating the message in accordance with a result of comparing the first value and the second value.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A forwarding signature comprises a modified digital signature, modified using a predetermined parameter between a sender and an intended recipient. An intended recipient of the forwarding signature can verify that the forwarding signature corresponds to the message, but, can neither derive the original digital signature nor generate a new forwarding signature for a different parameter. Generation and verification of the forwarding signature is accomplished with access to the public key of a public/private cryptographic key pair, the original signed message, and the predetermined parameter. Access to the private key is not needed.

16 Citations

View as Search Results

20 Claims

1. An authentication method comprising:
- receiving a message and a modified signature, wherein;
  
  the modified signature is indicative of a signed message, the signed message being signed utilizing a predetermined parameter; and
  
  the signed message is indicative of the message, the message being signed utilizing a private key of a public/private key pair;
  
  operating on the modified signature to generate a first value, wherein the modified signature is operated on utilizing a public key of the public/private key pair;
  
  operating on the message to generate a second value, wherein the message is operated on utilizing the predetermined parameter;
  
  comparing the first value and the second value; and
  
  authenticating the message in accordance with a result of comparing the first value and the second value.
- View Dependent Claims (2, 3, 4, 5, 6, 7)
- - 2. A method in accordance with claim 1 wherein the message comprises a cryptographic hash value indicative of the message.
  - 3. A method in accordance with claim 1, wherein the predetermined parameter comprises a cryptographic hash value indicative of a shared parameter.
  - 4. A method in accordance claim 1, wherein:
    - the public key comprises an exponent value, andoperating on the modified signature comprises raising the signature to a power equal to the exponent value.
  - 5. A method in accordance claim 1, wherein:
    - operating on the message comprises raising the message to a power equal to the predetermined parameter modulo an integer value.
  - 6. A method in accordance claim 1, wherein:
    - the message is signed in accordance with a formula;
      
      S=m ^dmod N, wherein;
      
      S represents the signed message;
      
      m represents the message;
      
      d represent a exponent value of the private key; and
      
      N represents an integer value; and
      
      the modified signature is modified in accordance with a formula;
      
      T=S ^pmod N, wherein;
      
      T represents the signature; and
      
      p represents the predetermined parameter.
  - 7. A method in accordance with claim 6, wherein:
    - the modified signature is operated on in accordance with a formula;
      
      T^emod N, wherein e represents an exponent parameter of the public key; and
      
      the message is operated on in accordance with a formula;
      
      m^pmod N.

8. A authentication system comprising:
- an input/output portion configured to receive a message and a modified signature, wherein;
  
  the modified signature is indicative of a signed message, the signed message being signed utilizing a predetermined parameter; and
  
  the signed message is indicative of the message, the message being signed utilizing a private key of a public/private key pair;
  
  a processing portion configured to;
  
  operate on the modified signature to generate a first value, wherein the modified signature is operated on utilizing a public key of the public/private key pair;
  
  operate on the message to generate a second value, wherein the message is operated on utilizing the predetermined parameter;
  
  compare the first value and the second value; and
  
  authenticate the message in accordance with a result of comparing the first value and the second value.
- View Dependent Claims (9, 10, 11, 12, 13, 14)
- - 9. A system in accordance with claim 8 wherein the message comprises a cryptographic hash value indicative of the message.
  - 10. A system in accordance with claim 8, wherein the predetermined parameter comprises a cryptographic hash value indicative of a shared parameter.
  - 11. A system in accordance claim 8, wherein:
    - the public key comprises an exponent value, andoperating on the modified signature comprises raising the signature to a power equal to the exponent value.
  - 12. A system in accordance claim 8, wherein:
    - operating on the message comprises raising the message to a power equal to the predetermined parameter modulo an integer value.
  - 13. A system in accordance claim 8, wherein:
    - the message is signed in accordance with a formula;
      
      S=m ^dmod N, wherein;
      
      S represents the signed message;
      
      m represents the message;
      
      d represent a exponent value of the private key;
      
      mod represents a modular reduction function; and
      
      N represents an integer value; and
      
      the modified signature is modified in accordance with a formula;
      
      T=S ^pmod N, wherein;
      
      T represents the signature; and
      
      p represents the predetermined parameter.
  - 14. A system in accordance with claim 13, wherein:
    - the modified signature is operated on in accordance with a formula;
      
      T ^emod N;
      
      wherein e represents an exponent parameter of the public key; and
      
      the message is operated on in accordance with a formula;
      
      m ^pmod N.

15. A computer-readable medium having stored thereon computer-executable instructions for performing authentication by performing the steps of:
- receiving a message and a modified signature, wherein;
  
  the modified signature is indicative of a signed message, the signed message being signed utilizing a predetermined parameter; and
  
  the signed message is indicative of the message, the message being signed utilizing a private key of a public/private key pair;
  
  operating on the modified signature to generate a first value, wherein the signature is operated on utilizing a public key of the public/private key pair;
  
  operating on the message to generate a second value, wherein the message is operated on utilizing the predetermined parameter;
  
  comparing the first value and the second value; and
  
  authenticating the message in accordance with a result of comparing the first value and the second value.
- View Dependent Claims (16, 17, 18, 19, 20)
- - 16. A computer-readable medium in accordance with claim 15 wherein the message comprises a cryptographic hash value indicative of the message.
  - 17. A computer-readable medium in accordance with claim 15, wherein the predetermined parameter comprises a cryptographic hash value indicative of a shared parameter.
  - 18. A computer-readable medium in accordance claim 15, wherein:
    - the public key comprises an exponent value, andoperating on the modified signature comprises raising the signature to a power of the exponent value.
  - 19. A computer-readable medium in accordance claim 15, wherein:
    - operating on the message comprises raising the message to a power equal to the predetermined parameter modulo an integer value.
  - 20. A computer-readable medium in accordance claim 15, wherein:
    - the message is signed in accordance with a formula;
      
      S=m ^dmod N, wherein;
      
      S represents the signed message;
      
      m represents the message;
      
      d represent a exponent value of the private key;
      
      mod represents a modular reduction function; and
      
      N represents an integer value; and
      
      the modified signature is modified in accordance with a formula;
      
      T=S ^pmod N, wherein;
      
      T represents the signature; and
      
      p represents the predetermined parameter; and
      
      the modified signature is operated on in accordance with a formula;
      
      T ^emod N;
      
      wherein e represents an exponent parameter of the public key; and
      
      the message is operated on in accordance with a formula;
      
      m ^pmod N.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Microsoft Technology Licensing LLC (Microsoft Corporation)
Original Assignee
Microsoft Corporation
Inventors
Benaloh, Josh, Paya, Cem

Granted Patent

US 8,090,954 B2
Time in Patent Office

Days
Field of Search
US Class Current

713/176
CPC Class Codes

H04L 2209/56   Financial cryptography, e.g...

H04L 2209/80   Wireless network architectu...

H04L 9/3247   involving digital signatures

PREVENTION OF UNAUTHORIZED FORWARDING AND AUTHENTICATION OF SIGNATURES

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

16 Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

PREVENTION OF UNAUTHORIZED FORWARDING AND AUTHENTICATION OF SIGNATURES

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

16 Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links