Method for certifying the origin of at least one item of information stored in the memory of a first electronic device and transmitted to a second electronic device, and system for carrying out the method
First Claim
1. A method for certifying the origin of at least one item of information IA stored in the memory of a first electronic device CA controlled by an individual A, said information IA, being specific to individual AM and being transmitted for certification to a second electronic device CB controlled by an individual B, said individual B being assigned at least one specific item of information IB which was previously stored into the memory MB of the second electronic device CB ;
- comprising the steps of;
(a) causing to be calculated within each device CA, CB a result R calculated by the same predetermined secret algorithm f and taking account of the same predetermined secret set S and the same random number EB supplied by the second electronic device CB ; and
(b) comparing within the second device CB, the two results R, the agreement between said two results R certifying to individual B that the first device CA belongs to the same group as his device CB owing to the fact that the two devices contain the same secret set S and the same algorithm f;
(c) information retrieval service individual certifying the origin of the information IA, causing the algorithm f to take account of a supplementary parameter J which, in turn, takes account of both items of information IA, IB, combined in accordance with the same predetermined secret algorithm p and exchanged between two devices CA, CB ; and
(d) causing the first device CA to calculate a result R=f (EB, S, J) with J=p (IA, IB) and the second device to calculate a result R=f (EB, S, J) with J=p (IB, IA), the algorithm p being symmetrical so that J=p (IA, IB)=p (IB, IA) and thus certifying to (information retrieval service) individual B, in case of an agreement between said two results R, that the information IA has not been altered during its transfer from the first electronic device CA, and that it comes solely from said first device CA.
1 Assignment
0 Petitions
Accused Products
Abstract
The object of the invention is a process for certifying the origin of at least one item of information stored in the memory of a first electronic device such as a portable card and transmitted to a second electronic device such as a portable card, and a system for implementing said process. An individual A controls a card CA which has a memory MA that contains an item of information IA specific to the individual A. An individual B controls a card CB which has a memory MB that contains an item of information IB specific to individual B. In order for individual B, who receives the information IA, to be certain of the origin of this information IA, each of the two cards CA and CB calculates a result R related to the information IA, to a secret set (S) shared by the two cards, to a random number (EB) supplied by individual B, and to a parameter J which, in turn, is related to the two items of information (IA, I.sub. B) which are combined in accordance with a predetermined symmetrical algorithm p. The invention applies in particular to mutual identification and certification between two individuals of the same group who have been issued individual cards. Each individual of the group is issued his own personal card.
-
Citations
7 Claims
-
1. A method for certifying the origin of at least one item of information IA stored in the memory of a first electronic device CA controlled by an individual A, said information IA, being specific to individual AM and being transmitted for certification to a second electronic device CB controlled by an individual B, said individual B being assigned at least one specific item of information IB which was previously stored into the memory MB of the second electronic device CB ;
- comprising the steps of;
(a) causing to be calculated within each device CA, CB a result R calculated by the same predetermined secret algorithm f and taking account of the same predetermined secret set S and the same random number EB supplied by the second electronic device CB ; and (b) comparing within the second device CB, the two results R, the agreement between said two results R certifying to individual B that the first device CA belongs to the same group as his device CB owing to the fact that the two devices contain the same secret set S and the same algorithm f; (c) information retrieval service individual certifying the origin of the information IA, causing the algorithm f to take account of a supplementary parameter J which, in turn, takes account of both items of information IA, IB, combined in accordance with the same predetermined secret algorithm p and exchanged between two devices CA, CB ; and (d) causing the first device CA to calculate a result R=f (EB, S, J) with J=p (IA, IB) and the second device to calculate a result R=f (EB, S, J) with J=p (IB, IA), the algorithm p being symmetrical so that J=p (IA, IB)=p (IB, IA) and thus certifying to (information retrieval service) individual B, in case of an agreement between said two results R, that the information IA has not been altered during its transfer from the first electronic device CA, and that it comes solely from said first device CA. - View Dependent Claims (3, 4)
- comprising the steps of;
-
2. A method for the mutual identification of two individuals (A, B) belonging to the same organization, the individual A holding a first electronic device CA in the memory of which there is stored at least one item of information IA specific to individual A, individual B holding a second electronic device CB in the memory of which there is stored at least one item of information IB specific to individual B, comprising:
-
(a) causing to be calculated within each device CA, CB a first result R calculated by the same predetermined secret algorithm f and taking account of the same predetermined secret set S and the same random number EB supplied by the second electronic device CB, and (b) comparing within the second device CB the two results R, the agreement between said two results R certifying to individual B that the first device CA belongs to the same group as his device CB owing to the fact that both devices contain the same secret set S and the same algorithm f, (c) causing to be calculated within each device CA, CB a second result R calculated by the same predetermined secret algorithm f and taking account of the same predetermined secret set S and the same random number EA supplied by the first electronic device CA ; and (d) comparing, within the first device CA, the first and the second results R, the agreement between said two results R certifying to individual A that the second device CA belongs to the same group as his device CA owing to the fact that both devices contain the same secret set S and the same algorithm f; and (e) in order to enable individual B to be certain of the origin of the information IA causing the algorithm f to take account of a supplementary parameter J which, in turn, takes account of the two items of information IA, IB combined according to the same predetermined secret algorithm p exchanged between the two devices CA, CB ; and (f) causing the first device CA to calculate a result R=f (EB, S, J) with J=p (IA, IB) and causing the second device to calculate a result R=f (EB, S, J) with J=p(IB, IA), the algorithm p being symmetrical so that J=p(IA, IB)=p (IB, IA), and thus certifying to individual B, in case of an agreement between said two results R, that the information IA has not been altered during its transfer from the first device CA, and that it comes solely from said device CB ; and
that, in order to enable individual A to be certain of the origin of the information IB,(g) causing the algorithm f to take account of a supplementary parameter J which, in turn, takes account of both items of information IA, IB combined according to the same predetermined secret algorithm and exchanged between both devices CA, CB ; and
thuscausing the second device CB to calculate a result R=f (EA, S, J) with J=p (IA, IB) and causing the first device CA to calculate a result R=f (EA, S, J) with J=p (IA, IB)=p (IB, IA) and thus certifying to individual A, in case of an agreement between said two results R, that the information IB has not altered during its transfer from the second device CB, and that it comes solely from said second device CB.
-
-
5. A system for certifying the origin of at least one item of information IA stored in the memory of a first electronic device CA controlled by an individual A, said information IA, being specific to individual AM and being transmitted for certification to a second electronic device CB controlled by an individual B, said individual B being assigned at least one specific item of information IB which was previously stored into the memory MB of the second electronic device CB wherein said electronic devices (CA, CB) each include a portable, electronic card (CA, CB) each comprising at least:
one memory (MA, MB) having stored therein at least one item of information (IA, IB) which is to be identified, a secret set (S) and a predetermined secret algorithm f;
control circuits (TA, TB) for operating on the algorithm f to provide a result (R);
said cards (CA, CB) being respectively adapted for connection to two linkup automatons (AA, AB), which are adopted to be connected by a transmission channel (L), each automaton comprising at least one random number generator (GNA;
GNB) and a comparator circuit (CCA, CCB) for comparing the results (R) calculated by the two cards (CA, CB).- View Dependent Claims (6, 7)
Specification