Method and apparatus for encryption key creation
First Claim
Patent Images
1. An electronic data module, comprising:
- a housing;
a substrate disposed in said housing; and
a monolithic semiconductor chip affixed to said substrate,wherein said monolithic semiconductor chip includes circuitry for tracking a random event and for providing a random sample of data based upon the occurrence of said random event and a structure for operating a cryptographic algorithm using said random sample of data.
2 Assignments
0 Petitions
Accused Products
Abstract
A portable electronic data module for secure transactions, the electronic data module having a random number generator and an optimized co-processor for producing unbreakable key sets for a two-key cryptosystem. A real-time clock is sampled depending upon an external random event series such as power-ups of the data module by a host apparatus, and based upon the contents of the sample thus obtained, the entropy of a previously-loaded accumulator is further enhanced to achieve a pool of true random numbers. By repeatedly requesting random bytes of information from said pool of random numbers, large random numbers are created which are then rendered prime and used for key set creation.
-
Citations
10 Claims
-
1. An electronic data module, comprising:
-
a housing; a substrate disposed in said housing; and a monolithic semiconductor chip affixed to said substrate, wherein said monolithic semiconductor chip includes circuitry for tracking a random event and for providing a random sample of data based upon the occurrence of said random event and a structure for operating a cryptographic algorithm using said random sample of data. - View Dependent Claims (2, 3, 4)
-
-
5. A method of generating a two-key encryption key set comprising a private component and a public component, the method comprising the steps of:
-
generating a first random prime number; generating a second random prime number; producing a modulus by multiplying said first random number by said second random prime number; generating a first exponent by solving a first modular arithmetic equation; generating a second exponent, said second exponent being a modular inverse to said first exponent, by solving a second modular arithmetic equation; and securely storing at least one of said first exponent, said second exponent, and said modulus in at least one memory location, wherein each of said first and second random prime numbers is obtained by concatenating a first and second plurality of random bytes, respectively, and further wherein the contents of said random bytes are associated with a random event. - View Dependent Claims (6, 7)
-
-
8. A method of generating a two-key encryption key set using an encryption circuit disposed in a portable electronic data module, the method comprising the steps of:
-
creating randomized contents in a data storage structure having a select length, said contents based in part upon a random power-up event associated with said portable electronic data module; enhancing entropy of said data storage structure by manipulating the contents of said data storage structure; producing a first and second prime number by repeatedly generating a first and second plurality of random bytes of data on demand, respectively, wherein the contents of said random bytes are determined at least in part by the contents of said data storage structure; and generating a first and second key based on said first and second prime numbers. - View Dependent Claims (9, 10)
-
Specification