Process for cryptographic key generation and safekeeping

US 5,675,649 A
Filed: 11/30/1995
Issued: 10/07/1997
Est. Priority Date: 11/30/1995
Status: Expired due to Term

First Claim

Patent Images

1. A process for cryptographic key generation and safekeeping, comprising:

selecting a plurality of key agents each having a copy of source code;

loading one copy of the source code onto a secure computer system;

comparing the loaded copy of the source code with each other copy of the source code to validate the loaded copy of the source code;

generating master key information and locking key information by executing compiled source code;

separating the master key information into a plurality of master key shares;

distributing the plurality of master key shares to key agents designated to be master key agents such that each master key agent possesses one master key share;

separating the locking key information into a plurality of locking key shares;

distributing the plurality of locking key shares to key agents designated to be locking key agents such that each locking key agent possesses one locking key share;

validating the plurality of locking key shares and the plurality of master key shares; and

shutting down the secure computer system such that the master key information and locking key information can not be reconstructed from the secure computer system.

View all claims

5 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A process for cryptographic key generation and safekeeping is provided. A plurality of key agents are selected, each having a copy of the source code. One copy of the source code is loaded onto a secure computer system and is compared with at least one other copy of the source code to validate the loaded copy of the source code. Master key information and locking key information are generated by executing compiled source code. The master key information is then separated into a plurality of master key shares which are distributed to master key agents such that each master key agent possesses one master key share. The locking key information is separated into a plurality of locking key shares which are distributed to locking key agents such that each locking key agent possesses one locking key share. Then, the plurality of locking key shares and the plurality of master key shares are validated, and the secure computer system is securely shut down.

Citations

19 Claims

1. A process for cryptographic key generation and safekeeping, comprising:
- selecting a plurality of key agents each having a copy of source code;
  
  loading one copy of the source code onto a secure computer system;
  
  comparing the loaded copy of the source code with each other copy of the source code to validate the loaded copy of the source code;
  
  generating master key information and locking key information by executing compiled source code;
  
  separating the master key information into a plurality of master key shares;
  
  distributing the plurality of master key shares to key agents designated to be master key agents such that each master key agent possesses one master key share;
  
  separating the locking key information into a plurality of locking key shares;
  
  distributing the plurality of locking key shares to key agents designated to be locking key agents such that each locking key agent possesses one locking key share;
  
  validating the plurality of locking key shares and the plurality of master key shares; and
  
  shutting down the secure computer system such that the master key information and locking key information can not be reconstructed from the secure computer system.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
- - 2. The process of claim 1, further comprising:
    - selecting parameters with respect to a cryptographic key including a minimum number of master key agents, a total number of master key agents, a minimum number of locking key agents, and a total number of locking key agents.
  - 3. The process of claim 1, wherein generating, separating, distributing, and validating comprises:
    - sampling environmental noise for a random collection of bits;
      
      testing the collection of bits for randomness;
      
      repeating the Sampling if the collection of bits are not sufficiently random;
      
      initializing a secure random number generator using the collection of bits;
      
      building the master key information;
      
      issuing a self signed certificate for the master key information;
      
      generating the locking key information;
      
      generating master key shares and encrypting the master key shares using the locking key information;
      
      generating locking key shares;
      
      writing the master key shares and the locking key shares to portable storage devices;
      
      reading the master key shares and the locking key shares from the portable storage devices;
      
      validating the master key information and the locking key information.
  - 4. The process of claim 1, further comprising:
    - rebuilding the locking key information and the master key information; and
      
      reissuing master key shares and locking key shares.
  - 5. The process of claim 4, wherein rebuilding and reissuing comprises:
    - gathering a minimum number of master key shares and a minimum number of locking key shares;
      
      reconstructing master key information from master key shares and locking key shares;
      
      sampling environmental noise for random collection of bits;
      
      testing the collection of bits for randomness;
      
      repeating the sampling if the collection of bits are not sufficiently random;
      
      initializing a secure random number generator using the collection of bits;
      
      generating locking key information;
      
      generating master key shares and encrypting the master key shares using the locking key information;
      
      writing the master key shares and the locking key shares to portable storage devices;
      
      reading the master key shares and the locking key shares from the portable storage devices;
      
      validating the master key information and the locking key informationdestroying old portable storage devices storing master key shares and storing locking key shares.
  - 6. The process of claim 1, wherein the key generation source code implements an RSA-based public key encryption system.
  - 7. The process of claim 3, wherein sampling comprises sampling input received from a microphone connected to an audio port of a computer.
  - 8. The process of claim 3, wherein generating comprises using a Blum-Blum-Shub random number generator.

9. A process for cryptographic key generation and safekeeping, comprising:
- selecting a plurality of key agents each having a copy of source code;
  
  loading one copy of the source code onto a secure computer system;
  
  comparing the loaded copy of the source code with each other copy of the source code to validate the loaded copy of the source code;
  
  generating master key information by executing compiled source code including;
  
  sampling environmental noise for random collection of bits;
  
  testing the collection of bits for randomness;
  
  repeating the sampling if the collection of bits are not sufficiently random;
  
  initializing a secure random number generator using the collection of bits;
  
  building the master key information using a random number produced by the random number generator;
  
  separating the master key information into a plurality of master key shares;
  
  distributing the plurality of master key shares to key agents designated to be master key agents such that each master key agent possesses one master key share;
  
  validating the plurality of master key shares; and
  
  shutting down the secure computer system such that the master key information can not be reconstructed from the secure computer system.
- View Dependent Claims (10, 11, 12, 13)
- - 10. The process of claim 9, further comprising:
    - selecting parameters with respect to a cryptographic key including a minimum number of master key shares and a total number of master key shares.
  - 11. The process of claim 9, wherein sampling environmental noise comprises sampling input received from a microphone connected to an audio port of a computer.
  - 12. The process of claim 9, wherein initializing comprises initializing a Blum-Blum-Shub random number generator.
  - 13. The process of claim 9, wherein the key generation source code implements an RSA-based public key encryption system.

14. A process for generating and providing a plurality of random collections of bits for use as a source of randomness, comprising:
- sampling an unpredictable source to create a collection of bits;
  
  testing the collection of bits using a plurality of statistical tests of randomness;
  
  rejecting the collection of bits if the collection of bits fails any of the plurality of statistical tests of randomness in order to avoid providing the collection of bits when the unpredictable source experiences a failure;
  
  providing the collection of bits for use as a source of randomness if the collection of bits passes the plurality of statistical tests of randomness; and
  
  repeating sampling, testing, rejecting, and providing such that a plurality of collections of bits are provided for use as a source of randomness.
- View Dependent Claims (15)
- - 15. The process of claim 14, wherein sampling an unpredictable source comprises sampling input received from a microphone connected to an audio port of a computer.

16. A process for locking master key shares, comprising:
- generating master key information wherein the master key information can be used in a selected encryption process to encrypt and decipher information;
  
  generating locking key information wherein the locking key information can be used in the selected encryption process to encrypt and decipher information;
  
  separating the master key information into a plurality of master key shares; and
  
  encrypting each master key shares using the locking key information in the selected encryption method such that each master key share is encrypted using an encryption method selected for use with the master key information.
- View Dependent Claims (17)
- - 17. The process of claim 16, wherein the selected encryption process comprises an RSA-based public key encryption process.

18. A process for cryptographic key generation and safekeeping using a key sharing scheme, comprising:
- selecting initial values for a minimum number of master key agents, a total number of master key agents, a minimum number of locking key agents, and a total number of locking key agents;
  
  determining a risk of loss and a risk of compromise of a master key based upon the initial values;
  
  selecting new values for the minimum number of master key agents, the total number of master key agents, the minimum number of locking key agents, and the total number of locking key agents;
  
  determining a risk of loss and a risk of compromise of a master key based upon the new values;
  
  repeating selecting new values and determining risk to adjust the risk of loss and the risk of compromise;
  
  identifying final values for the minimum number of master key agents, the total number of master key agents, the minimum number of locking key agents, and the total number of locking key agents based upon the risk of loss and the risk of compromise such that a desired risk of compromise and loss is set; and
  
  generating master key shares equal in number to the final value for the total number of master key agents and locking key shares equal in number to the final value for the total number of locking key agents.
- View Dependent Claims (19)
- - 19. The process of claim 18, wherein identifying final values comprises setting a desired risk of compromise and loss such that the risk of loss is greater than the risk of compromise.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Hewlett Packard Enterprise Development LP (Hewlett-Packard Enterprise Company)
Original Assignee
Electronic Data Systems Corporation (Perspecta, Inc.)
Inventors
Geist, Bruce K., Van Eeuwen, Jeffrey A., Brennan, J. J.
Primary Examiner(s)
Cain, David C.

Application Number

US08/565,525
Time in Patent Office

677 Days
Field of Search

380/21, 380/30, 380/23, 380/25, 380/44, 380/45, 380/49, 364/717
US Class Current

380/286
CPC Class Codes

H04L 9/085 Secret sharing or secret sp...

H04L 9/0894 Escrow, recovery or storing...

Process for cryptographic key generation and safekeeping

First Claim

5 Assignments

0 Petitions

Accused Products

Abstract

Citations

19 Claims

Specification

Solutions

Use Cases

Quick Links

Process for cryptographic key generation and safekeeping

First Claim

5 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

19 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links