Method and device for qualitative saving of digitized data

US 5,097,504 A
Filed: 11/18/1987
Issued: 03/17/1992
Est. Priority Date: 03/19/1986
Status: Expired due to Fees

First Claim

Patent Images

1. A method for the qualitative protection of digital information recorded on a medium that can be erased or modified, said method comprising the steps of generating an encrypted computed signature representative of the information and of the identity of a signer holder of said information by means of of a computation algorithm according to computing parameters, and recording the signature on the same medium as said information, wherein said method further comprises the steps of recording said parameters for computing said signature on at least one inviolable medium, said computer algorithm being an algorithm for encryption and compression of the information to be protected on the basis of at least one secret key associated with said signer holder of the information, said algorithm comprising the steps of:

initializing the creation of a sequence of random or pseudo-random numbers on several digits from said at least one secret key, said sequence of numbers comprising the same number Ci of terms as the number Ii of characters in the information to be protected,establishing term by term the scalar product P of the sequence of random numbers Ci and the information Ii to be protected, as defined by the equation;

##EQU3## applying modular reduction to the scalar product modulo p so as to define a number A=P modulo p in which p is a prime number comprising the same number of digits as there are characters in said at least one secret key or the signature, andapplying modular exponentiation to the number A so as to define a number S=A * e^d modulo q in which q is another prime number comprising the same number of digits as there are characters in the at least one secret key or the signature and d is at least one of the digits of the at least one secret key, the number S constituting the encrypted signature.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

An encrypted signature S representative of the information and of the identity of the holder of the information is established by means of a calculation algorithm for the encryption and the compression of the information to be saved. The signature S is recorded on the medium carrying the information forming the message M. The parameters for the calculation of the signature S, one or several secret keys, are recorded on at least one inviolable carrying medium. The application is to qualitative safeguarding and protection of data, on-line or not, in data bases.

140 Citations

27 Claims

1. A method for the qualitative protection of digital information recorded on a medium that can be erased or modified, said method comprising the steps of generating an encrypted computed signature representative of the information and of the identity of a signer holder of said information by means of of a computation algorithm according to computing parameters, and recording the signature on the same medium as said information, wherein said method further comprises the steps of recording said parameters for computing said signature on at least one inviolable medium, said computer algorithm being an algorithm for encryption and compression of the information to be protected on the basis of at least one secret key associated with said signer holder of the information, said algorithm comprising the steps of:
- initializing the creation of a sequence of random or pseudo-random numbers on several digits from said at least one secret key, said sequence of numbers comprising the same number Ci of terms as the number Ii of characters in the information to be protected,establishing term by term the scalar product P of the sequence of random numbers Ci and the information Ii to be protected, as defined by the equation;
  
  ##EQU3## applying modular reduction to the scalar product modulo p so as to define a number A=P modulo p in which p is a prime number comprising the same number of digits as there are characters in said at least one secret key or the signature, andapplying modular exponentiation to the number A so as to define a number S=A * e^d modulo q in which q is another prime number comprising the same number of digits as there are characters in the at least one secret key or the signature and d is at least one of the digits of the at least one secret key, the number S constituting the encrypted signature.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14)
- - 2. Method according to claim 1, wherein the inviolable medium is a protected memory card.
  - 3. Method according to claim 1, wherein for transmitting said protected information to an addressee, said method comprises the steps of:
    - sending said inviolable medium on which the parameters for computing the encrypted signature are recorded to said addressee, andtransmitting said protected information and the encrypted signature to said addressee.
  - 4. Method according to claim 3 wherein for the purpose of checking the content of the data transmitted and received by the addressee said method further comprises the steps of, on the basis of the parameters for computing said encrypted signature contained on the inviolable medium:
    - establishing an encrypted control signal S'"'"' on the basis of the protected information received after transmission, and,comparing said encrypted signature received after transmission and said encrypted control signature, identity of the protected information and of the information received by the addressee and the authenticated source of this information being obtained when the encrypted signature is identical to the encrypted control signature.
  - 5. Method according to claim 1, wherein the secret key constituting at least part of the parameters for computing said signature is recorded in the protected area of an inviolable medium, said inviolable medium being available to at least one of the holder of the information to be protected and the addressee of the information to be protected.
  - 6. Method according to claim 1, wherein said secret key and the signature are each constituted by a word comprising the same number of characters.
  - 7. Method according to claim 1, 2, 3, 4, 5 or 6, wherein the signature and the key is a word comprising alphanumeric characters.
  - 8. Method according to claim 1, wherein there is added to the scalar product (P) a random value which is the product of additional random or pseudo-random numbers CN+k and arbitrary numeric values consisting of the date, the time, an identification number of the information holder or a random number.
  - 9. Method according to claim 1, wherein there are added by concatentation to the characters of the information to be protected character strings representative of predetermined arbitrary meaningful numeric value including the date, the time, an identification number of the information holder or a random number.
  - 10. Method according to claim 1, wherein said information to be protected Ii and the random numbers Ci are subdivided into blocks containing a specific number Q of characters, the scalar product P being computed for each of the blocks in such a way as to define partial scalar products as follows:
    - ##EQU4##
  - 11. Method according to claim 10, wherein a partial signature is computed for each of the blocks, the sequence of signatures constituting the signature representative of all of the information to be protected.
  - 12. Method according to claim 1, wherein the random or pseudo-random numbers are numbers comprising a number of digits or characters equal to the number of characters of the key, the characters of the information to be protected being grouped in such a way that the number of digits of each term of the sequence is greater than the number of characters constituting a group.
  - 13. Method according to claim 1, wherein for the same quantity of information to be protected said method comprises the further steps of computing iteratively a plurality of successive signatures, said signatures being successively integrated into the information to be protected to compute the higher order signature S_k.
  - 14. Method according to claim 1, wherein before it is written onto the same medium as the information or onto the inviolable medium, said signature is further subjected to encryption processing on the basis of a secret encryption key in such a way as to obtain an encrypted signature having the same number of characters as the signature.

15. Device for qualitative protection of digital information stored on a medium that can be erased or modified, comprising:
- a) first storage means in which are stored at least one key of a signer holder or an addressee of the information,b) second storage means in which is stored a program for computing at least one signature representative of the information and the identity of said signer holder of the digital information,c) means for computing said at least one signature and means for writing the computed at least one signature onto the same medium as the information to be protected,d) means for comparing the at least one signature written onto the same medium as the information with the at least one computed signature,e) means for validating use of the protected information when the at least one computed signature and the at least one signature recorded on the medium on which the information is recorded are identical, andf) peripheral means for input of data and peripheral means for output of data.
- View Dependent Claims (16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27)
- - 16. Device according to claim 15, wherein the first and second storage means are inviolable storage media.
  - 17. Device according to claim 16, wherein the inviolable storage media are protected memory cards.
  - 18. Device according to claim 17, wherein said signature is further subjected to encryption processing on the basis of a secret encryption key in such a way as to obtain an encrypted signature having the same number of characters as the signature, an encryption program being stored in the protected areas of the inviolable storage medium, the encryption computation for the signature being effected within the memory card.
  - 19. Device according to claim 15, wherein said means for computing said at least one signature comprises a computer or microcomputer.
  - 20. Device according to claim 15, wherein the peripheral means comprises a visual display terminal and said device further comprises:
    - a protected memory card reader, anda plug-in cartridge comprising read only memories in which is stored the program for computing the signature.
  - 21. Device according to claim 15, wherein comprising in permanent memory a menu type management program providing for, at the initiative of the signer holder and by display of interactive dialogue screen pages:
    - a) input of personal code of the signatory of addressee user,b) input or arbitrary or random parameters such as the date, the time or random numbers, andc) input of the information to be protected.
  - 22. Device according to claim 21, wherein the menu type management program also enables a user:
    - a) to input the signature to be verified for comparison with the signature stored or transmitted, andb) to display the validation of this signature.
  - 23. Device according to claim 21 or 22, wherein said screen pages comprise a screen page warning of the risk of destruction of memory areas of the inviolable medium after a predetermined number of unsuccessful attempts to validate the signature.
  - 24. Device according to claim 23, wherein the signature and signature validation procedures are separate, the signature validation process being conditionally authorized for user identification codes for the user identifying himself separate from the signer user identification codes.
  - 25. Device according to claim 22, wherein the signature and signature validation procedures are separate, the signature validation process being conditionally authorized for user identification codes for the user identifying himself separate from the signer user identification codes.
  - 26. Device according to claim 15, wherein for a particular identification random number input by the user possessing the identification code, the input of dummy information to be protected comprising an identical repetition of characters over an arbitrary number of characters makes it possible to generate a temporary inviolable random access code representative of this user.
  - 27. Device according to claim 26, wherein on transmission of the identification code and of the identification random number to a receiving user, the procedure for validation of the temporary inviolable random access code is authorized.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Infoscript
Original Assignee
Infoscript
Inventors
Harari, Sami, Goutay, Jean, Camion, Paul
Primary Examiner(s)
Buczinski, Stephen C.
Assistant Examiner(s)
GREGORY, BERNARR E

Application Number

US07/130,534
Time in Patent Office

1,581 Days
Field of Search

380/3-5, 380/22-25, 380/49, 380/50, 380/52, 380/30, 340/825.31, 340/825.34
US Class Current

713/176
CPC Class Codes

G06F 21/6218   to a system of files or obj...

G06F 21/64   Protecting data integrity, ...

G06F 2221/2153   Using hardware token as a s...

G06Q 20/341   Active cards, i.e. cards in...

G06Q 20/347   Passive cards

G06Q 20/40975   using encryption therefor

G07F 7/10   together with a coded signa...

G07F 7/1008   Active credit-cards provide...

G07F 7/1066   PIN data being compared to ...

Method and device for qualitative saving of digitized data

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

140 Citations

27 Claims

Specification

Solutions

Use Cases

Quick Links

Method and device for qualitative saving of digitized data

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

140 Citations

27 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links