Method and apparatus for calculating message signatures in advance

US 5,633,931 A
Filed: 06/30/1995
Issued: 05/27/1997
Est. Priority Date: 06/30/1995
Status: Expired due to Term

First Claim

Patent Images

1. A method for authenticating a message transmitted from a sender to a receiver, comprising the steps of:

a) generating at the sender a message signature;

b) sending from the sender to the receiver the message signature and a message;

c) generating at the receiver, prior to receiving the message signature and message from the sender, a predicted message signature that is likely to be transmitted from the sender to the receiver;

d) receiving at the receiver the message signature and message transmitted by the sender;

e) comparing at the receiver the predicted message signature with the received message signature; and

f) authenticating the message received by the receiver if the predicted message signature and the received message signature match.

View all claims

3 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

The present invention provides an improved method and apparatus for authenticating message packets to prevent forgery thereof. A server processes a client request and generates a response message. A message signature, which is generated using the session key and the message itself, is appended to the message to create an appended message. The server sends the appended message to the client. At the same time that the server works on the client request, the client predicts the response message and calculates a predicted message signature based on the session key and the predicted message. After receiving the appended message, the client strips the message signature from the appended message and compares it to the predicted message signature. If the two signatures match, the received message packet is authenticated.

Citations

23 Claims

1. A method for authenticating a message transmitted from a sender to a receiver, comprising the steps of:
- a) generating at the sender a message signature;
  
  b) sending from the sender to the receiver the message signature and a message;
  
  c) generating at the receiver, prior to receiving the message signature and message from the sender, a predicted message signature that is likely to be transmitted from the sender to the receiver;
  
  d) receiving at the receiver the message signature and message transmitted by the sender;
  
  e) comparing at the receiver the predicted message signature with the received message signature; and
  
  f) authenticating the message received by the receiver if the predicted message signature and the received message signature match.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
- - 2. A method as recited in claim 1, wherein the sender and receiver are digital computers.
  - 3. A method as recited in claim 2, wherein the sender and receiver are a server and client, respectively, in a computer network.
  - 4. A method as recited in claim 1, wherein the message is a response to a prior communication from the receiver to the sender.
  - 5. A method as recited in claim 3, wherein the message is a completion code or connection status.
  - 6. A method as recited in claim 1, wherein the message signature generated by the sender is at least partially derived from the message.
  - 7. A method as recited in claim 1, wherein the message signature generated by the receiver is at least partially derived from an expected message.
  - 8. A method as recited in claim 1, wherein the message signature generated by the sender and the message signature generated by the receiver are at least partially derived from a code held by both the sender and receiver.
  - 9. A method as recited in claim 7, wherein the code is the session key.
  - 10. A method as recited in claim 1, wherein the message signatures generated by the sender and the receiver are derived from a digest algorithm.
  - 11. A method as recited in claim 1, wherein in step b) the sender appends the message signature to the message to form an appended message which is sent from the sender to the receiver.

12. A method for authenticating a message transmitted from a sender to a receiver, comprising the steps of:
- a) generating at the sender a message signature at least partially derived from a message and a code held by both the sender and receiver;
  
  b) sending from the sender to the receiver the message signature and a message;
  
  c) generating at the receiver, prior to receiving the message signature and message from the sender, a predicted message signature that is at least partially derived from an expected message from the sender to the receiver and a code held by both the sender and receiver;
  
  d) receiving at the receiver the message signature and message transmitted by the sender;
  
  e) comparing at the receiver the predicted message signature with the received message signature; and
  
  f) authenticating the message received by the receiver if the predicted message signature and the received message signature match.
- View Dependent Claims (13, 14, 15, 16, 17, 18, 19)
- - 13. A method as recited in claim 12, wherein the sender and receiver are digital computers.
  - 14. A method as recited in claim 13, wherein the sender and receiver are a server and client, respectively, in a computer network.
  - 15. A method as recited in claim 12, wherein the message is a response to a prior communication from the receiver to the sender.
  - 16. A method as recited in claim 12, wherein the message is a completion code or connection status.
  - 17. A method as recited in claim 12, wherein the code held by both the sender and receiver is the session key.
  - 18. A method as recited in claim 12, wherein the message signature generated by the sender and the predicted message signature generated by the receiver are derived from a digest algorithm.
  - 19. A method as recited in claim 12, wherein in step b) the sender appends the message signature to the message to form an appended message which is sent from the sender to the receiver.

20. A method for authenticating a message transmitted from a sender to a receiver, where the message is a response to a prior communication from the receiver to the sender, comprising the steps of:
- a) generating at the sender a message signature at least partially derived from a message and a code held by both the sender and receiver;
  
  b) creating at the sender an appended message by combining the message signature to the message;
  
  c) sending from the sender to the receiver the appended message;
  
  d) generating at the receiver, prior to receiving the message signature and message from the sender, a predicted message signature that is at least partially derived from an expected message from the sender to the receiver and a code held by both the sender and receiver;
  
  e) receiving at the receiver the appended message transmitted by the sender;
  
  f) comparing at the receiver the predicted message signature with the received message signature; and
  
  g) authenticating the message received by the receiver if the predicted message signature and the received message signature match.
- View Dependent Claims (21, 22, 23)
- - 21. A method as recited in claim 20, wherein the sender and receiver are digital computers.
  - 22. A method as recited in claim 21, wherein the sender and receiver are a server and client, respectively, in a computer network.
  - 23. A method as recited in claim 20, wherein the code held by both the sender and receiver is the session key.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
EMC Corporation (Dell Technologies Inc.)
Original Assignee
Novell Incorporated (Open Text Corporation)
Inventors
Wright, Jimmy J.
Primary Examiner(s)
CANGIALOSI, SALVATORE A

Application Number

US08/497,311
Time in Patent Office

697 Days
Field of Search

380/25, 380/29, 380/30, 342/13-15
US Class Current

713/161
CPC Class Codes

H04L 9/3247 involving digital signatures

Method and apparatus for calculating message signatures in advance

First Claim

3 Assignments

0 Petitions

Accused Products

Abstract

Citations

23 Claims

Specification

Solutions

Use Cases

Quick Links

Method and apparatus for calculating message signatures in advance

First Claim

3 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

23 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links