SIGNATURE VERIFICATION SYSTEM, COMMUNICATION DEVICE, VERIFICATION DEVICE, SIGNATURE GENERATION METHOD, AND SIGNATURE VERFICATION METHOD
First Claim
1. A signature verification system comprising:
- a communication device; and
a verification device,wherein the communication device and the verification device are connected to each other through a network,wherein the communication device includesa first random number generation unit that generates a first random number,a first unidirectional function processing unit that derives a first hash value from the first random number using a unidirectional function,a public key pair generation unit that generates a secret key and a public key of the communication device,a second unidirectional function processing unit that derives a second hash value from data including electronic data and a certificate of the communication device, which includes the first hash value and the public key of the communication device, using a unidirectional function,a signature generation unit that generates a signature using the secret key of the communication device with respect to the second hash value, anda first communication unit that transmits the electronic data, the certificate, and the signature to the verification device, andwherein the verification device includesa second communication unit that receives the electronic data, the certificate, and the signature from the communication device,an authentication processing unit that authenticates the communication device using the first hash value included in the certificate,a third unidirectional function processing unit that derives the second hash value from the data including the electronic data and the certificate, using a unidirectional function, anda signature verification unit that verifies the signature using the public key of the communication device and the derived second hash value which are included in the certificate.
1 Assignment
0 Petitions
Accused Products
Abstract
Provided is a signature verification system including a communication device and a verification device. The communication device and the verification device are connected to each other through a network. The communication device derives a first hash value from a first random number, derives a second hash value from data including electronic data and a certificate of the communication device which includes the first hash value and a public key of the communication device, using a unidirectional function, generates a signature using a secret key of the communication device with respect to the second hash value, and transmits the electronic data, the certificate, and the signature to the verification device. The verification device receives the electronic data, the certificate, and the signature, authenticates the communication device using the first hash value included in the certificate, derives the second hash value from the data including the electronic data and the certificate using a unidirectional function, and verifies the signature using the public key of the communication device and the derived second hash value which are included in the certificate.
19 Citations
8 Claims
-
1. A signature verification system comprising:
-
a communication device; and a verification device, wherein the communication device and the verification device are connected to each other through a network, wherein the communication device includes a first random number generation unit that generates a first random number, a first unidirectional function processing unit that derives a first hash value from the first random number using a unidirectional function, a public key pair generation unit that generates a secret key and a public key of the communication device, a second unidirectional function processing unit that derives a second hash value from data including electronic data and a certificate of the communication device, which includes the first hash value and the public key of the communication device, using a unidirectional function, a signature generation unit that generates a signature using the secret key of the communication device with respect to the second hash value, and a first communication unit that transmits the electronic data, the certificate, and the signature to the verification device, and wherein the verification device includes a second communication unit that receives the electronic data, the certificate, and the signature from the communication device, an authentication processing unit that authenticates the communication device using the first hash value included in the certificate, a third unidirectional function processing unit that derives the second hash value from the data including the electronic data and the certificate, using a unidirectional function, and a signature verification unit that verifies the signature using the public key of the communication device and the derived second hash value which are included in the certificate. - View Dependent Claims (2, 3, 4)
-
-
5. A communication device which is connected to a verification device through a network, the communication device comprising:
-
a random number generation unit that generates a first random number; a first unidirectional function processing unit that derives a first hash value from the first random number using a unidirectional function; a public key pair generation unit that generates a secret key and a public key of the communication device; a second unidirectional function processing unit that derives a second hash value from data including electronic data and a certificate of the communication device, which includes the first hash value and the public key of the communication device, using a unidirectional function; a signature generation unit that generates a signature using the secret key of the communication device with respect to the second hash value; and a communication unit that transmits the electronic data, the certificate, and the signature to the verification device.
-
-
6. A verification device which is connected to a communication device through a network, the verification device comprising:
-
a communication unit that receives, from the communication device, electronic data, a certificate of the communication device which includes a first hash value, derived from a random number generated by the communication device, and a public key of the communication device, and a signature generated using a secret key of the communication device with respect to a second hash value which is derived from data including the electronic data and the certificate using a unidirectional function; an authentication processing unit that authenticates the communication device using the first hash value included in the certificate; a unidirectional function processing unit that derives a second hash value from the data including the electronic data and the certificate using a unidirectional function; and a signature verification unit that verifies the signature using the public key of the communication device and the derived second hash value which are included in the certificate.
-
-
7. A signature generation method in a communication device which is connected to a verification device through a network, the signature generation method comprising:
-
a step of generating a first random number; a step of deriving a first hash value from the first random number using a unidirectional function; a step of generating a secret key and a public key of the communication device; a step of deriving a second hash value from data including electronic data and a certificate of the communication device which includes the first hash value and the public key of the communication device; and a step of generating a signature using the secret key of the communication device with respect to the second hash value.
-
-
8. A signature verification method in a verification device which is connected to a communication device through a network, the signature verification method comprising:
-
a step of authenticating the communication device using a first hash value, derived from a random number generated by the communication device, which is included in a certificate of the communication device which includes the first hash value and a public key of the communication device; a step of deriving a second hash value from data including electronic data and the certificate, using a unidirectional function; and a step of verifying a signature using the public key of the communication device and the derived second hash value which are included in the certificate, wherein the signature is a signature which is generated by the communication device using a secret key of the communication device with respect to the second hash value derived from the data including the electronic data and the certificate.
-
Specification