METHOD FOR AUTHENTICATING A PORTABLE DATA CARRIER
2 Assignments
0 Petitions
Accused Products
Abstract
A method for authenticating a portable data carrier (10) to a terminal device by the following steps: In the data carrier (10) a public session key (PKSession) is derived (S5) from a public key individual to the data carrier (PKi) which has in its turn been derived (TS32; S1) from a public group key (PK). Further, a secret session key (SKSession) is derived (S4) from a secret key individual to the data carrier (SKi) which has in turn been derived (TS31) from a secret group key (SK). Subsequently, a secret communication key (KK) is agreed on (S7) between the data carrier (10) and the terminal device. Finally, the terminal verifies (S8) the public session key (PKSession) of the data carrier (10).
16 Citations
30 Claims
-
1-15. -15. (canceled)
-
16. A method for authenticating a portable data carrier to a terminal device, the steps deriving (S5) a public session key (PKSession) from a public key (PKi) individual to the data carrier derived (TS32) from a public group key (PK), and deriving (S4) a secret session key (SKSession) from a secret key (SKi) individual to the data carrier derived (TS31) from a secret group key (SK), in the data carrier;
anonymously authenticating (S8) the data carrier to the terminal device, using the secret session key (SKSession) in either or both the data carrier and the public session key (PKSession) in the terminal device. - View Dependent Claims (17, 18, 19, 20, 21, 22, 23, 24, 25, 27, 28, 29, 30)
-
26. A portable data carrier, comprising a processor, a memory and a data communication interface providing data communication with a terminal device, as well as an authentication device, wherein the authentication device of the data carrier is configured to derive a public session key PKSession) from a public key (PKi) individual to the data carrier that is stored in the memory, to derive a secret session key (PKSession) from a secret key (SKi) individual to the data carrier that is stored in the memory, and to use the secret session key (SKSession) within the framework of an authentication to the terminal device.
Specification