METHOD OF AND APPARATUS FOR SHARING SECRET INFORMATION BETWEEN DEVICE IN HOME NETWORK

US 20090055648A1
Filed: 08/19/2008
Published: 02/26/2009
Est. Priority Date: 08/20/2007
Status: Active Grant

First Claim

Patent Images

1. A method of a first device communicating with a second device in a home network, the method comprising:

transmitting predetermined seed information to the second device;

receiving a message including secret information encrypted with a predetermined public key from the second device;

generating a secret key corresponding to the public key based on the seed information and personal information input to the first device by a user according to a predetermined IBE (identity-based encryption) scheme; and

decrypting the secret information included in the message by using the secret key,wherein the public key is generated based on the seed information and the personal information input to the second device by the user according to the IBE scheme by the second device.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method and apparatus for sharing secret information between devices in a home network are provided. In the method and apparatus, home network devices receive a password (credential) input by a user and encrypt secret information based on the credential by using keys generated according to a predetermined identity-based encryption (IBE) scheme. Accordingly, it is possible to securely share the secret information between home network devices without any certificate authority or certificate.

174 Citations

28 Claims

1. A method of a first device communicating with a second device in a home network, the method comprising:
- transmitting predetermined seed information to the second device;
  
  receiving a message including secret information encrypted with a predetermined public key from the second device;
  
  generating a secret key corresponding to the public key based on the seed information and personal information input to the first device by a user according to a predetermined IBE (identity-based encryption) scheme; and
  
  decrypting the secret information included in the message by using the secret key,wherein the public key is generated based on the seed information and the personal information input to the second device by the user according to the IBE scheme by the second device.
- View Dependent Claims (2, 3, 4, 5, 6, 7)
- - 2. The method of claim 1,wherein the first device is an RUI (remote user interface) server, and the second device is an RUI client, andwherein the seed information includes an UI object that the RUI server provides to the RUI client.
  - 3. The method of claim 1,wherein the seed information includes device identification information of the first device, andwherein the message is obtained by encrypting the secret information and the device identification information of the first device with the public key.
  - 4. The method of claim 1, wherein the seed information includes a master public key of the first device and IBE parameters used in the IBE scheme.
  - 5. The method of claim 1,wherein the first device and the second device are UPnP (universal plug and play) devices, andwherein, in the transmitting of the seed information, the seed information is transmitted to the second device through a device description of the first device.
  - 6. The method of claim 1, wherein the secret information is a session key to be used for communication between the first and second devices.
  - 7. A computer-readable medium having embodied thereon a computer program for executing the method of claim 1.

8. An apparatus for enabling a first device to securely communicate with a second device in a home network, the apparatus comprising:
- a transmitter which transmits a predetermined seed information to the second device;
  
  a receiver which receives a message including secret information encrypted with a predetermined public key from the second device;
  
  a secret key generator which generates a secret key corresponding to the public key based on the seed information and personal information input to the first device by a user according to a predetermined IBE (identity-based encryption) scheme; and
  
  a decrypter which decrypts the secret information included in the message by using the secret key,wherein the public key is generated based on the seed information and the personal information input to the second device by the user according to the IBE scheme by the second device.
- View Dependent Claims (9, 10, 11, 12, 13)
- - 9. The apparatus of claim 8,wherein the first device is an RUI (remote user interface) server, and the second device is an RUI client, andwherein the seed information includes an UI object that the RUI server provides to the RUI client.
  - 10. The apparatus of claim 8,wherein the seed information includes device identification information of the first device, andwherein the message is obtained by encrypting the secret information and the device identification information of the first device with the public key.
  - 11. The apparatus of claim 8, wherein the seed information includes a master public key of the first device and IBE parameters used in the IBE scheme.
  - 12. The apparatus of claim 8,wherein the first device and the second device are UPnP (universal plug and play) devices, andwherein, the transmitter transmits the seed information to the second device through a device description of the first device.
  - 13. The apparatus of claim 8, wherein the secret information is a session key to be used for communication between the first and second devices.

14. A method of a second device communicating with a first device in a home network, the method comprising:
- receiving predetermined seed information from the first device;
  
  generating a public key based on the seed information and personal information input by a user according to a predetermined IBE (identity-based encryption) scheme;
  
  encrypting the secret information by using the public key; and
  
  transmitting a message including the encrypted public key to the first device.
- View Dependent Claims (15, 16, 18, 19, 20, 21)
- - 15. The method of claim 14,wherein the first device is an RUI (remote user interface) server, and the second device is an RUI client, andwherein the seed information includes a UI object that the RUI server provides.
  - 16. The method of claim 14,wherein the seed information includes device identification information of the first device, andwherein the message is obtained by encrypting the secret information and the device identification information of the first device with the public key.
  - 18. The method of claim 14, wherein the seed information includes a master public key of the first device and IBE parameters used in the IBE scheme.
  - 19. The method of claim 14,wherein the first device and the second device are UPnP (universal plug and play) devices, andwherein, in the receiving of the seed information, the seed information is received through a device description of the first device.
  - 20. The method of claim 14, wherein the secret information is a session key to be used for communication between the first and second devices.
  - 21. A computer-readable medium having embodied thereon a computer program for executing the method of claim 14.

17. A method of a second device communicating with a first device in a home network, the method comprising:
- receiving predetermined seed information from the first device;
  
  generating a public key based on the seed information and personal information input by a user according to a predetermined IBE (identity-based encryption) scheme;
  
  encrypting the secret information by using the public key;
  
  transmitting a message including the encrypted public key to the first device;
  
  wherein the seed information includes device identification information of the first device, andwherein the message is obtained by encrypting the secret information and the device identification information of the first device with the public key; and
  
  determining based on the device identification information and a predetermined list whether or not the first device is a valid device,wherein, as a result of the determination, only if the first device is valid, performing the generating of the public key, the encrypting of the secret information, and the transmitting of the message.

22. An apparatus for enabling a second device to securely communicate with a first device in a home network, the apparatus comprising:
- a receiver which receives predetermined seed information from the first device;
  
  a public key generator which generates a public key based on the seed information and personal information input by a user according to a predetermined IBE (identity-based encryption) scheme;
  
  an encrypter which encrypts the secret information by using the public key; and
  
  a transmitter which transmits a message including the encrypted public key to the first device.
- View Dependent Claims (23, 24, 26, 27, 28)
- - 23. The apparatus of claim 22,wherein the first device is an RUI (remote user interface) server, and the second device is an RUI client, andwherein the seed information includes a UI object that the RUI server provides.
  - 24. The apparatus of claim 22,wherein the seed information includes device identification information of the first device, andwherein the message is obtained by encrypting the secret information and the device identification information of the first device with the public key.
  - 26. The apparatus of claim 22, wherein the seed information includes a master public key of the first device and IBE parameters used in the IBE scheme.
  - 27. The apparatus of claim 22,wherein the first device and the second device are UPnP (universal plug and play) devices, andwherein the receiver receives the seed information through a device description of the first device.
  - 28. The apparatus of claim 22, wherein the secret information is a session key to be used for communication between the first and second devices.

25. An apparatus for enabling a second device to securely communicate with a first device in a home network, the apparatus comprising:
- a receiver which receives predetermined seed information from the first device;
  
  a public key generator which generates a public key based on the seed information and personal information input by a user according to a predetermined IBE (identity-based encryption) scheme;
  
  an encrypter which encrypts the secret information by using the public key;
  
  a transmitter which transmits a message including the encrypted public key to the first device;
  
  wherein the seed information includes device identification information of the first device, andwherein the message is obtained by encrypting the secret information and the device identification information of the first device with the public key; and
  
  a determination unit which determines based on the device identification information and a predetermined list whether or not the first device is a valid device,wherein, as a result of the determination, only if the first device is valid, performing the generating of the public key, the encrypting of the secret information, and the transmitting of the message.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Samsung Electronics Co. Ltd.
Original Assignee
Samsung Electronics Co. Ltd.
Inventors
KIM, Hyoung-shick, Oh, Seung-jae

Granted Patent

US 9,094,192 B2
Time in Patent Office

Days
Field of Search
US Class Current

713/171
CPC Class Codes

H04L 63/06   for supporting key manageme...

H04L 63/1441   Countermeasures against mal...

H04L 63/1466   Active attacks involving in...

H04L 9/0847   involving identity based en...

H04L 9/0863   involving passwords or one-...

METHOD OF AND APPARATUS FOR SHARING SECRET INFORMATION BETWEEN DEVICE IN HOME NETWORK

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

174 Citations

28 Claims

Specification

Solutions

Use Cases

Quick Links

METHOD OF AND APPARATUS FOR SHARING SECRET INFORMATION BETWEEN DEVICE IN HOME NETWORK

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

174 Citations

28 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links