System method and apparatus for authenticating an encrypted signal

US 5,351,293 A
Filed: 02/01/1993
Issued: 09/27/1994
Est. Priority Date: 02/01/1993
Status: Expired due to Term

First Claim

Patent Images

1. In a cryptographic communication system including first and second terminals, said first and second terminals being connected via a telecommunications link, a method for authenticating encrypted signals between said first and second terminals, wherein said first terminal stores a user secret key and wherein said second terminal includes a keyset library memory for storing said user secret key, said method comprising:

sending a first cryptographic challenge block including a first variable, from said second terminal to said first terminal;

receiving said first cryptographic challenge block at said first terminal;

responding to said first cryptographic challenge block by sending from said first terminal a first cryptographic challenge block response based on said first variable received in said first cryptographic challenge block and said user secret key stored in said first terminal;

receiving said first cryptographic challenge block response at said second terminal;

computing at said second terminal an expected first cryptographic challenge block response;

comparing said received first cryptographic challenge block response to said expected first cryptographic challenge block response in said second terminal; and

disconnecting said telecommunications link between said first and second terminals if said received first cryptographic challenge block response is not substantially equal to said expected first cryptographic challenge block response;

whereby said first terminal authenticates to said second terminal responsive to said cryptographic challenge block that said first terminal stores the same secret key as said second terminal;

sending a second cryptographic challenge block including a second variable, from said first terminal to said second terminal;

receiving said second cryptographic challenge block including said second variable, at said second terminal;

responding to said second cryptographic challenge block by sending from said second terminal a second cryptographic challenge block response based on said first variable in said first cryptographic challenge block, said received second variable in said second cryptographic challenge block and said user secret key stored in said keyset library of said second terminal;

receiving said second cryptographic challenge block response at said first terminal;

computing at said first terminal an expected second cryptographic challenge block response using said first variable received in said first cryptographic challenge block, said second variable in said second cryptographic challenge block and said user secret key stored in said first terminal;

comparing said received second cryptographic challenge block response to said expected second cryptographic challenge block response in said first terminal; and

disconnecting said telecommunications link between said second and first terminals if said received second cryptographic challenge block response is not substantially equal to said expected second cryptographic challenge block response;

whereby said second terminal authenticates to said first terminal responsive to said second cryptographic challenge block that said second terminal stores the same user secret key as said first terminal.

View all claims

3 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A cryptographic communications system includes a method and apparatus for exchanging messages between a user terminal, containing a secret key, and an operations center wherein each party authenticates signals received from the other party before any other information is exchanged. An initial identification message from the user terminal to the operations center contains an encrypted value of current time. The operations center checks the received message against local time to verify real time concurrent operation of the user terminal. Subsequently, the operations center and the user terminal mutually exchange encrypted challenge blocks, and each provide respective encrypted responses to the encrypted challenge blocks. The challenge and response exchanges demonstrate that each knows the secret key stored in the user terminal before other information, such as downloaded credit or uploaded data usage, is exchanged. In particular, the challenge and response messages exchange a first random number generated in the user terminal and a second random number generated in the operations center, which are variables used in conjunction with the user secret key to generate a new session key for encrypting the remainder of the messages exchanging data in the communication session.

329 Citations

14 Claims

1. In a cryptographic communication system including first and second terminals, said first and second terminals being connected via a telecommunications link, a method for authenticating encrypted signals between said first and second terminals, wherein said first terminal stores a user secret key and wherein said second terminal includes a keyset library memory for storing said user secret key, said method comprising:
- sending a first cryptographic challenge block including a first variable, from said second terminal to said first terminal;
  
  receiving said first cryptographic challenge block at said first terminal;
  
  responding to said first cryptographic challenge block by sending from said first terminal a first cryptographic challenge block response based on said first variable received in said first cryptographic challenge block and said user secret key stored in said first terminal;
  
  receiving said first cryptographic challenge block response at said second terminal;
  
  computing at said second terminal an expected first cryptographic challenge block response;
  
  comparing said received first cryptographic challenge block response to said expected first cryptographic challenge block response in said second terminal; and
  
  disconnecting said telecommunications link between said first and second terminals if said received first cryptographic challenge block response is not substantially equal to said expected first cryptographic challenge block response;
  
  whereby said first terminal authenticates to said second terminal responsive to said cryptographic challenge block that said first terminal stores the same secret key as said second terminal;
  
  sending a second cryptographic challenge block including a second variable, from said first terminal to said second terminal;
  
  receiving said second cryptographic challenge block including said second variable, at said second terminal;
  
  responding to said second cryptographic challenge block by sending from said second terminal a second cryptographic challenge block response based on said first variable in said first cryptographic challenge block, said received second variable in said second cryptographic challenge block and said user secret key stored in said keyset library of said second terminal;
  
  receiving said second cryptographic challenge block response at said first terminal;
  
  computing at said first terminal an expected second cryptographic challenge block response using said first variable received in said first cryptographic challenge block, said second variable in said second cryptographic challenge block and said user secret key stored in said first terminal;
  
  comparing said received second cryptographic challenge block response to said expected second cryptographic challenge block response in said first terminal; and
  
  disconnecting said telecommunications link between said second and first terminals if said received second cryptographic challenge block response is not substantially equal to said expected second cryptographic challenge block response;
  
  whereby said second terminal authenticates to said first terminal responsive to said second cryptographic challenge block that said second terminal stores the same user secret key as said first terminal.
- View Dependent Claims (2, 3)
- - 2. A method in accordance with claim 1, wherein said step of responding to said first cryptographic challenge block by sending from said first terminal a first cryptographic challenge block response based on said first variable received in said first cryptographic challenge block and said user secret key stored in said first terminal, further comprises:
    - decrypting said received first cryptographic challenge block to obtain said first variable;
      
      generating a current time record;
      
      computing the exclusive OR function of said current time record and said first variable; and
      
      encrypting said exclusive OR function of said current time record and said first variable under a key derived from said user secret key stored in said first terminal.
  - 3. A method in accordance with claim 2, wherein said step of responding to said second cryptographic challenge block by sending from said second terminal a second cryptographic challenge block response based on said first variable from said first cryptographic challenge block, said second variable received in said second cryptographic challenge block and said user secret key stored in said second terminal;
    - decrypting said received second cryptographic challenge block to obtain said second variable;
      
      encrypting said second variable under a key derived from said first variable, and under a key derived from said user secret key stored in said second terminal.

4. In a cryptographic communication system including first and second terminals, said first and second terminals being connected via a telecommunications link, an apparatus for authenticating encrypted signals between said first and second terminals, wherein said first terminal stores a user secret key and wherein said second terminal includes a keyset library memory for storing said user secret key, said method comprising:
- means for sending a first cryptographic challenge block including a first variable, from said second terminal to said first terminal;
  
  means for receiving said first cryptographic challenge block at said first terminal;
  
  means for responding to said first cryptographic challenge block by sending from said first terminal a first cryptographic challenge block response based on said first variable received in said first cryptographic challenge block and said user secret key stored in said first terminal;
  
  means for receiving said first cryptographic challenge block response at said second terminal;
  
  means for computing at said second terminal an expected first cryptographic challenge block response;
  
  means for comparing said received first cryptographic challenge block response to said expected first cryptographic challenge block response in said second terminal; and
  
  means for disconnecting said telecommunications link between said first and second terminals if said received first cryptographic challenge block response is not substantially equal to said expected first cryptographic challenge block response;
  
  whereby said first terminal authenticates to said second terminal responsive to said cryptographic challenge block that said first terminal stores the same secret key as said second terminal;
  
  means for sending a second cryptographic challenge block including a second variable, from said first terminal to said second terminal;
  
  means for receiving said second cryptographic challenge block including said second variable, at said second terminal;
  
  means for responding to said second cryptographic challenge block by sending from said second terminal a second cryptographic challenge block response based on said first variable in said first cryptographic challenge block, said received second variable in said second cryptographic challenge block and said user secret key stored in said keyset library of said second terminal;
  
  means for receiving said second cryptographic challenge block response at said first terminal;
  
  means for computing at said first terminal an expected second cryptographic challenge block response using said first variable received in said first cryptographic challenge block, said second variable in said second cryptographic challenge block and said user secret key stored in said first terminal;
  
  means for comparing said received second cryptographic challenge block response to said expected second cryptographic challenge block response in said first terminal; and
  
  means for disconnecting said telecommunications link between said second and first terminals if said received second cryptographic challenge block response is not substantially equal to said expected second cryptographic challenge block response;
  
  whereby said second terminal authenticates to said first terminal responsive to said second cryptographic challenge block that said second terminal stores the same user secret key as said first terminal.
- View Dependent Claims (5, 6)
- - 5. An apparatus in accordance with claim 4, wherein said means for responding to said first cryptographic challenge block by sending from said first terminal a first cryptographic challenge block response based on said first variable received in said first cryptographic challenge block and said user secret key stored in said first terminal, further comprises:
    - means for decrypting said received first cryptographic challenge block to obtain said first variable;
      
      means for generating a current time record;
      
      means for computing the exclusive OR function of said current time record and said first variable; and
      
      means for encrypting said exclusive OR function of said current time record and said first variable under a key derived from said user secret key stored in said first terminal.
  - 6. An apparatus in accordance with claim 5, wherein said means for responding to said second cryptographic challenge block by sending from said second terminal a second cryptographic challenge block response based on said first variable from said first cryptographic challenge block, said second variable received in said second cryptographic challenge block and said user secret key stored in said second terminal;
    - means for decrypting said received second cryptographic challenge block to obtain said second variable;
      
      means for encrypting said second variable under a key derived from said first variable, and under a key derived from said user secret key stored in said second terminal.

7. In a secure cryptographic communication system including first and second terminals, said first and second terminals being connected via a telecommunications link, a method for providing encrypted signals between said first and second terminals using a first communication session key and a second communication session key, wherein said first and second terminal each store a user secret key for generating said first communication session key common to said first and second terminals, said first communication session key being used for authenticating an encrypted signal in said secure cryptographic communications system, said second communication key being used as an encryption key for secure communications between said first and second terminals, said method comprising:
- generating a first variable at said first terminal;
  
  generating a second variable at said second terminal;
  
  exchanging said first and second variables between said first and second terminals using said first communication session key;
  
  forming said second communication session key at each said first and second terminals from said first and second variables; and
  
  using said second communication session key as an encryption key for secure communications between said first and second terminals.
- View Dependent Claims (8, 9, 10)
- - 8. A method in accordance with claim 7, wherein said steps of generating said first variable and said second variable comprise generating a first random number and generating a second random number, respectively.
  - 9. A method in accordance with claim 7, wherein said step of exchanging said first and second variables using said first communication session key further comprises:
    - sending a first cryptographic challenge block from said first terminal to said second terminal by encrypting said first variable using said first communication session key;
      
      receiving said first cryptographic challenge block at said second terminal by decrypting said first variable using said first communication session key;
      
      sending a second cryptographic challenge block from said second terminal to said first terminal by encrypting said second variable using said first communication session key; and
      
      receiving said second cryptographic challenge block at said first terminal by decrypting said second variable using said first communication session key,whereby said first and second terminals exchange said first and second variables.
  - 10. A method in accordance with claim 9, further including:
    - generating at said first terminal a time record indication of current time;
      
      sending from said first terminal, an encrypted time identification message containing said indication of current time to said second terminal;
      
      responding to said first cryptographic challenge block by sending from said first terminal a first cryptographic challenge block response based on said first variable received in said first cryptographic challenge block and said indication of current time; and
      
      selecting said second communication session key at said first terminal based on said generated indication of current time,selecting said second communication session key at said second terminal based on said received indication of current time,whereby said second communication key is based said first and second variables which were exchanged between said first and second terminals in a message derived from the value of current time.

11. In a secure cryptographic communication system including first and second terminals, said first and second terminals being connected via a telecommunications link, an apparatus for providing encrypted signals between said first and second terminals using a first communication session key and a second communication session key, wherein said first and second terminal each store a user secret key for generating said first communication session key common to said first and second terminals, said first communication session key being used for authenticating an encrypted signal in said secure cryptographic communications system, said second communication key being used as an encryption key for secure communications between said first and second terminals said apparatus comprising:
- means for generating a first variable at said first terminal;
  
  means for generating a second variable at said second terminal;
  
  means for exchanging said first and second variables between said first and second terminals using said first communication session key;
  
  means for forming said second communication session key at each said first and second terminals from said first and second variables; and
  
  means for using said second communication session key as an encryption key for secure communications between said first and second terminals.
- View Dependent Claims (12, 13, 14)
- - 12. An apparatus in accordance with claim 11, wherein said means for generating said first variable and said second variable comprise means for generating a first random number and means for generating a second random number, respectively.
  - 13. An apparatus in accordance with claim 11, wherein said step of exchanging said first and second variables using said first communication session key further comprises:
    - means for sending a first cryptographic challenge block from said first terminal to said second terminal by encrypting said first variable using said first communication session key;
      
      means for receiving said first cryptographic challenge block at said second terminal by decrypting said first variable using said first communication session key;
      
      means for sending a second cryptographic challenge block from said second terminal to said first terminal by encrypting said second variable using said first communication session key; and
      
      means for receiving said second cryptographic challenge block at said first terminal by decrypting said second variable using said first communication session key,whereby said first and second terminals exchange said first and second variables.
  - 14. An apparatus in accordance with claim 13, further including:
    - means for generating at said first terminal a time record indication of current time;
      
      means for sending from said first terminal, an encrypted time identification message containing said indication of current time to said second terminal;
      
      means for responding to said first cryptographic challenge block by sending from said first terminal a first cryptographic challenge block response based on said first variable received in said first cryptographic challenge block and said indication of current time; and
      
      means for selecting said second communication session key at said first terminal based on said generated indication of current time,means for selecting said second communication session key at said second terminal based on said received indication of current time,whereby said second communication key is based said first and second variables which were exchanged between said first and second terminals in a message derived from the value of current time.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Cryptologics International Incorporated
Original Assignee
Wave Systems Corporation
Inventors
Michener, John R., Samit, Benjamin
Primary Examiner(s)
Buczinski, Stephen C.

Application Number

US08/011,883
Time in Patent Office

603 Days
Field of Search

380/21, 380/23, 380/24, 380/25, 380/45, 380/46, 380/47, 380/44, 380/4
US Class Current

713/171
CPC Class Codes

H04L 2209/56   Financial cryptography, e.g...

H04L 9/0822   using key encryption key

H04L 9/3271   using challenge-response

System method and apparatus for authenticating an encrypted signal

First Claim

3 Assignments

0 Petitions

Accused Products

Abstract

329 Citations

14 Claims

Specification

Solutions

Use Cases

Quick Links

System method and apparatus for authenticating an encrypted signal

First Claim

3 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

329 Citations

14 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links