SYSTEM AND METHOD FOR ENCRYPTION

US 20180041333A1
Filed: 06/02/2017
Published: 02/08/2018
Est. Priority Date: 06/12/2013
Status: Active Grant

First Claim

Patent Images

1-37. -37. (canceled)

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method for validating a signature request for a first message M, comprising: receiving, a validation challenge (VC) from a signature creation device (SCD), the VC created by the SCD, in response to receiving the signature request and message M from a user, using a second message M′ which is based on message M and a secret shared between the SCD and user, the VC generated by encrypting message M′ using the secret; generating, the message M′ from the VC by decrypting the VC using the secret; displaying the message M′ to the user; receiving confirmation from the user that the displayed message M′ corresponds to the message M; generating, a validation code confirming the signature request to create a signature; and outputting the code to the SCD, to cause the SCD to generate the signature for the user for message M based on successfully verifying the code.

3 Citations

51 Claims

1-37. -37. (canceled)

38. A computer implemented method of validating a signature generation request for a first message M, the method comprising:
- receiving, via an input-output system of a validation device, a validation challenge from a signature creation device, the validation challenge having been created by the signature creation device, in response to receiving said signature generation request and said first message M from a user, using a second message M′
  
  which is based on the first message M and a first secret shared between said signature creation device and said user, wherein said validation challenge is generated by encrypting said second message M′
  
  using said first shared secret;
  
  generating, using a processor of the validation device, the second message M′
  
  from the validation challenge by decrypting said validation challenge using said first shared secret;
  
  displaying the second message M′
  
  to the user on a display of the validation device;
  
  receiving confirmation from the user via a user interface of the validation device that the second message M′
  
  as displayed corresponds to the first message M;
  
  generating, using the processor, a validation code confirming said signature generation request to create a digital signature; and
  
  outputting the validation code via said input-output system to the signature creation device, to cause the signature creation device to generate the digital signature for the user for the first message M based on a successful verification of the validation code.
- View Dependent Claims (39, 40, 41, 42, 43, 44)
- - 39. The method of claim 38, wherein said second message M′
    - is identical to said first message M.
  - 40. The method of claim 38, further comprising generating said validation code using a second secret shared with the signature creation device.
  - 41. The method of claim 40, further comprising generating said validation code using encryption with the second secret being a symmetric key.
  - 42. The method of claim 38, wherein the signature creation device comprises an authentication and validation device, and the method further comprises receiving the validation challenge from an authentication and validation device.
  - 43. The method of claim 42, further comprising outputting the validation code to the authentication and validation device.
  - 44. The method of claim 38, further comprising receiving the validation challenge from a signature creation device.

45. A validation device for a user to validate a signature generation request for a first message M, the validation device comprising a memory storing instructions that configure the validation device to:
- receive, via an input-output system of the validation device, a validation challenge from a signature creation device, the validation challenge having been created by the signature creation device, in response to receiving said signature generation request and said first message M from a user, using a second message M′
  
  which is based on the first message M and a first secret shared between said signature creation device and said validation device, wherein said validation challenge is generated by encrypting said second message M′
  
  using said first shared secret;
  
  generate, using a processor of the validation device, the second message M′
  
  from the validation challenge by decrypting said validation challenge using the first shared secret;
  
  display the second message M′
  
  to the user on a display of the validation device;
  
  receive confirmation from the user via a user interface of the validation device that the second message M′
  
  as displayed corresponds to the first message M;
  
  generate, using said processor, a validation code confirming said signature generation request to create a digital signature; and
  
  output the validation code via the input-output system to the signature creation device, to cause the signature creation device to generate the digital signature for the user for the first message M based on a successful verification of the validation code.
- View Dependent Claims (46, 47, 48, 49, 50, 51)
- - 46. The validation device of claim 45, wherein said second message M′
    - is identical to said first message M.
  - 47. The validation device of claim 45, wherein the validation device is further configured to generate said validation code using a second secret which is shared with the signature creation device and which is stored on the validation device.
  - 48. The validation device of claim 47, wherein the validation device is further configured to generate said validation code using cryptographic methods with the second secret being a symmetric key.
  - 49. The validation device of claim 45, wherein the signature creation device comprises an authentication and validation device, and the validation device is further configured to receive the validation challenge from the authentication and validation device.
  - 50. The validation device of claim 49, wherein the validation device is further configured to output the validation code to the authentication and validation device.
  - 51. The validation device of claim 45, wherein the validation device is further configured to receive the validation challenge from a signature creation device.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Cryptomathic Ltd
Original Assignee
Cryptomathic Ltd
Inventors
Forget, Guillaume, Pedersen, Torben Pryds, Landrock, Peter

Granted Patent

US 9,900,148 B1
Time in Patent Office

Days
Field of Search
US Class Current
CPC Class Codes

G06F 21/42   using separate channels for...

H04L 2209/56   Financial cryptography, e.g...

H04L 2209/80   Wireless network architectu...

H04L 63/08   for authentication of entit...

H04L 63/0823   using certificates cryptogr...

H04L 63/0853   using an additional device,...

H04L 63/123   received data contents, e.g...

H04L 63/18   using different networks or...

H04L 9/06   the encryption apparatus us...

H04L 9/3215   using a plurality of channe...

H04L 9/3234   involving additional secure...

H04L 9/3247   involving digital signatures

H04L 9/3271   using challenge-response

SYSTEM AND METHOD FOR ENCRYPTION

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

3 Citations

51 Claims

Specification

Solutions

Use Cases

Quick Links

SYSTEM AND METHOD FOR ENCRYPTION

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

3 Citations

51 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links