METHOD AND SYSTEM FOR GENERATING SESSION KEY, AND COMMUNICATION DEVICE
First Claim
1. A method for generating a session key, wherein the method is based on a cryptosystem and comprises:
- selecting, by a first communication party, a first temporary private key;
operating at least the first temporary private key according to parameters of the cryptosystem to generate a first message;
sending the first message to a second communication party;
receiving, by the first communication party, a second message;
operating at least the second message and the first temporary private key according to the parameters of the cryptosystem to generate a first session key, wherein the second message is generated by the second communication party after at least a second temporary private key selected by the second communication party is operated according to the parameters of the cryptosystem.
1 Assignment
0 Petitions
Accused Products
Abstract
A method for generating a session key, a system, and a communication device are disclosed. The method includes: selecting, by a communication party, a temporary private key, and operating at least the temporary private key according to the parameters of the cryptosystem to generate a first message, and sending the first message to the opposite party; and after receiving the second message, operating, by the communication party, at least the second message and the temporary private key according to the parameters of the cryptosystem to generate a session key. The system includes a key management center and a communication device. The communication device includes: a temporary private key selecting unit, a message generating and sending unit, and a session key generating unit. In the disclosure, the session key generated after the communication party selects a temporary private key is variable, thus avoiding too much dependence on the key management center and improving the practicability and security of the key.
19 Citations
12 Claims
-
1. A method for generating a session key, wherein the method is based on a cryptosystem and comprises:
-
selecting, by a first communication party, a first temporary private key; operating at least the first temporary private key according to parameters of the cryptosystem to generate a first message; sending the first message to a second communication party; receiving, by the first communication party, a second message; operating at least the second message and the first temporary private key according to the parameters of the cryptosystem to generate a first session key, wherein the second message is generated by the second communication party after at least a second temporary private key selected by the second communication party is operated according to the parameters of the cryptosystem. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A system for generating a session key, wherein the system is a cryptosystem and comprises:
-
a key management center adapted to generate a long-term public key and a long-term private key according to parameters of the cryptosystem, and send the long-term private key to a first communication device; and the first communication device adapted to select a temporary private key, operate at least the temporary private key according to the parameters of the cryptosystem to generate a first message, send the first message to a second communication device, and operate at least a received second message and the temporary private key according to the parameters of the cryptosystem to generate the session key, wherein the second message is generated by the second communication device after at least the temporary private key selected by the second communication device is operated according to the parameters of the cryptosystem. - View Dependent Claims (10)
-
-
11. A communication device based on a cryptosystem, the device comprising:
-
a temporary private key selecting unit adapted to select a temporary private key; a message generating and sending unit adapted to operate at least the temporary private key selected by the temporary private key selecting unit according to parameters of the cryptosystem to generate a local message, and send the local message to an opposite communication device; and a session key generating unit adapted to operate at least a received opposite message and the temporary private key selected by the temporary private key selecting unit according to the parameters of the cryptosystem to generate a session key, wherein the opposite message is generated by the opposite communication device after at least the temporary private key selected by the opposite communication device is operated according to the parameters of the cryptosystem. - View Dependent Claims (12)
-
Specification