ACCESS TO AUTHORIZED DOMAINS
First Claim
1. In a domain comprising a plurality of devices, the devices in the domain sharing a common domain key, a method of enabling an entity that is not a member of the domain to create an object that can be authenticated and/or decrypted using the common domain key, the method comprisingproviding to the entity that is not a member of the domain a diversified key that is derived using a one-way function from at least the common domain key for creating authentication data related to said object and/or for encrypting at least part of said object, andauthenticating and/or decrypting said object using the diversified key.
1 Assignment
0 Petitions
Accused Products
Abstract
In a domain comprising a plurality of devices, the devices in the domain sharing a common domain key, a method of enabling a entity that is not a member of the domain to create an object that can be authenticated and/or decrypted using the common domain key, the method comprising providing to the entity that is not a member of the domain a diversified key that is derived using a one-way function from at least the common domain key for creating authentication data related to said object and/or for encrypting said object, the devices in the domain being configured to authenticate and/or decrypt said object using the diversified key.
57 Citations
12 Claims
-
1. In a domain comprising a plurality of devices, the devices in the domain sharing a common domain key, a method of enabling an entity that is not a member of the domain to create an object that can be authenticated and/or decrypted using the common domain key, the method comprising
providing to the entity that is not a member of the domain a diversified key that is derived using a one-way function from at least the common domain key for creating authentication data related to said object and/or for encrypting at least part of said object, and authenticating and/or decrypting said object using the diversified key.
-
9. A system comprising a domain comprising a plurality of devices, the devices in the domain sharing a common domain key, the system being configured for enabling an entity that is not a member of the domain to create an object that can be authenticated and/or decrypted using the common domain key by comprising providing to the entity that is not a member of the domain a diversified key that is derived using a one-way function from at least the common domain key for creating authentication data related to said object and/or encrypting said object, the devices in the domain being configured to authenticate and/or decrypt said object using the diversified key.
- 10. A device comprised in a domain, the devices in the domain sharing a common domain key, the device being configured for receiving an object from an entity that is not a member of the domain, for deriving a diversified key using a one-way function from at least the common domain key, and for authenticating and/or decrypting the object using the diversified key.
Specification