Public key authentication and key agreement for low-cost terminals
First Claim
1. A method for achieving identity verification and session key agreement between first and second parties communicating via a communication medium comprisingtransmitting a challenge in the form of message m from the second party to the first party,at the first party, computing a signature S(m) of message m using an asymmetric signature operation,encrypting at least a part of the signature by performing at the first party a trap door public key operation using a public key of the second party,transmitting the public key encrypted part of the signature and any remaining part of the signature from said first party to said second party,at said second party, decrypting the encrypted part of the signature using a secret key of the second party and verifying said signature,the public key encrypted and decrypted portion of said signature being used as a session key for encrypting messages communicated between said first and second parties.
9 Assignments
0 Petitions
Accused Products
Abstract
A method for achieving mutual authentication and session key agreement between a first party 12 which has minimal computational resources and a second party 18 which has substantial computational resources utilizes a modular square root operation for certificate authentication and key distribution and an ElGamal, NIST DSS, or other efficient signature operation for obtaining the signature of a message. Theses operations are highly advantageous in a system with asymmetric resources because the computation power required to perform these operations is far less than the computation power required to invert these operations. The entire mutual authentication and session key agreement method can be carried out using only between one and three modular multiplications on the weak computational side.
161 Citations
14 Claims
-
1. A method for achieving identity verification and session key agreement between first and second parties communicating via a communication medium comprising
transmitting a challenge in the form of message m from the second party to the first party, at the first party, computing a signature S(m) of message m using an asymmetric signature operation, encrypting at least a part of the signature by performing at the first party a trap door public key operation using a public key of the second party, transmitting the public key encrypted part of the signature and any remaining part of the signature from said first party to said second party, at said second party, decrypting the encrypted part of the signature using a secret key of the second party and verifying said signature, the public key encrypted and decrypted portion of said signature being used as a session key for encrypting messages communicated between said first and second parties.
Specification
-
- Resources
-
Current AssigneeTTI Inventions C LLC (Intellectual Ventures LLC)
-
Original AssigneeBell Communications Research, Inc. (Telefonaktiebolaget LM Ericsson)
-
InventorsBeller, Michael J., Yacobi, Yacov
-
Primary Examiner(s)Gregory, Bernarr E.
-
Application NumberUS08/101,437Time in Patent Office617 DaysField of Search380/9, 380/21, 380/23, 380/30, 380/43, 380/49, 380/25US Class Current380/30CPC Class CodesG06Q 20/3674 involving authenticationH04L 63/0869 for achieving mutual authen...H04L 9/0844 with user authentication or...H04L 9/3249 using RSA or related signat...
