Communication device which performs two-way encryption authentication in challenge response format

US 6,028,937 A
Filed: 10/09/1996
Issued: 02/22/2000
Est. Priority Date: 10/09/1995
Status: Expired due to Fees

First Claim

Patent Images

1. A communication apparatus for performing two-way authentication in challenge response format with another communication apparatus on a communication channel, the communication apparatus comprising:

first authentication key storage means for storing a first authentication key which is only provided to authorized communication apparatuses;

first data converting means for performing a data conversion determined by the first authentication key, the data conversion being based only on a single algorithm, wherein an inverse conversion for the data conversion exists and subjecting a plaintext to the data conversion and the inverse conversion in any order restores the plaintext to an original form;

authenticating means for authenticating the other communication apparatus using communication in the challenge response format and the data conversion performed by the first data converting means; and

proving means for proving an authorization of a present communication apparatus using communication in the challenge response format and the data conversion performed by the first data converting means.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A supplier device 70 which supplies title data is equipped with a encryption module 74 for performing an encryption which is substitutive in nature and the user device 90 which uses the title data is equipped with a decryption module 93 for performing a decryption which corresponds to the encryption. The supplier device 70 uses this encryption module 74 to prove its own authorization and authenticate other devices. Similarly, the user device 90 uses this decryption module 93 to prove its own authorization and authenticate other devices.

Citations

22 Claims

1. A communication apparatus for performing two-way authentication in challenge response format with another communication apparatus on a communication channel, the communication apparatus comprising:
- first authentication key storage means for storing a first authentication key which is only provided to authorized communication apparatuses;
  
  first data converting means for performing a data conversion determined by the first authentication key, the data conversion being based only on a single algorithm, wherein an inverse conversion for the data conversion exists and subjecting a plaintext to the data conversion and the inverse conversion in any order restores the plaintext to an original form;
  
  authenticating means for authenticating the other communication apparatus using communication in the challenge response format and the data conversion performed by the first data converting means; and
  
  proving means for proving an authorization of a present communication apparatus using communication in the challenge response format and the data conversion performed by the first data converting means.
- View Dependent Claims (2, 3, 4, 5, 6, 7)
- - 2. The communication apparatus of claim 1,wherein the authenticating means includes:
    - a challenge data transmitting unit for generating a random number and transmitting the random number to the other communication apparatus as challenge data; and
      
      a verifying unit for receiving response data from the other communication apparatus, for converting the response data using the first data converting means, for comparing the converted response data with the generated random number and for notifying the other communication apparatus of an authentication of the other communication apparatus if the converted response data coincides with the random number,wherein the proving means receives the challenge data from the other communication apparatus, converts the challenge data using the first data converting means and transmits the converted challenge data to the other communication apparatus as response data.
  - 3. The communication apparatus of claim 2 for performing data transfer after two-way authentication has been achieved, the communication apparatus further comprising;
    - shared key obtaining means for obtaining a shared key according to a certain procedure if both the present communication apparatus and the other communication apparatus have been authenticated by each other;
      
      second data converting means for performing a data conversion determined by the shared key; and
      
      data transferring means for performing the data transfer of the converted data using the second data converting means.
  - 4. The communication apparatus of claim 3, wherein the first authentication key storage means and the first data converting means are combined in one integrated circuit.
  - 5. The communication apparatus of claim 4, further comprising:
    - second authentication key storage means for storing a second authentication key which is only provided to authorized communication apparatuses;
      
      third data converting means for performing a date conversion determined by the second authentication key, whereinthe second authentication key storage means and the third data converting means are combined in one integrated circuit,wherein the authenticating means authenticates the other communication apparatus using the first data converting means and the third data converting means, and the proving means proves an authorization of a present communication apparatus using the first data converting means and the third data converting means.
  - 6. The communication apparatus of claim 4, wherein the communication apparatus includes two communication states called a command phase and a data transfer phase and the communication apparatus further comprises:
    - authentication controlling means for controlling the authenticating means, the proving means, and the shared key obtaining means during the command phase to have the authenticating means authenticate the other communication apparatus, to have the proving means prove the authorization of the present communication apparatus and to have the shared key obtaining means obtain the shared key;
      
      data transfer controlling means for controlling the data transferring means during the data transfer phase to have the data transferring means transfer the converted data.
  - 7. The communication apparatus of claim 6, wherein the communication apparatus includes a disconnect function which is used for temporarily closing an established connection to make the communication channel available and a reconnect function which is used for reopening the temporarily closed connection, the communication apparatus further comprising:
    - deciding means for exchanging information with the other communication apparatus and storing a common procedure before a disconnect is performed for an established connection,wherein the common procedure includes information as to whether to re-execute an authentication by the authenticating means, whether to re-execute proving by the proving means, whether to re-execute an obtaining of the shared key by the shared key obtaining means, and whether to re-execute a data transfer by the data transferring means.

8. A communication system which is made up of a supplier apparatus that supplies information and a user apparatus that uses the information and which performs two-way authentication in challenge response format on a communication channel, wherein the supplier apparatus comprises:
- first authentication key storage means for storing a first authentication key which is only provided to authorized supplier apparatuses;
  
  first encrypting means for performing an encryption determined by the first authentication key, wherein the encryption is based only on a single algorithm, wherein an inverse conversion for the data conversion exists and subjecting a plaintext to the data conversion and the inverse conversion in any order restores the plaintext to an original form and wherein the first encrypting means is combined with the first authentication key storage means in one integrated circuit;
  
  authenticating means for authenticating the user apparatus; and
  
  proving means for proving an authorization of the supplier apparatus using the communication in the challenge response format and the encryption performed by the first encrypting means,and the user apparatus comprising;
  
  user first authentication key storage means for storing the same first authentication key as the first authentication key storage means in the supplier apparatus;
  
  first decrypting means for performing a decryption determined by the first authentication key, wherein the decryption is a reverse conversion of the encryption performed by the first encrypting means in the supplier apparatus and wherein the user first authentication key storage means and the first decrypting means are combined in one integrated circuit;
  
  user authenticating means for authenticating the supplier apparatus using communication in challenge response format and the decryption performed by the first decrypting means; and
  
  user proving means for proving an authorization of the user apparatus using the communication in challenge response format and the decryption performed by the first decrypting means.
- View Dependent Claims (9, 10, 11)
- - 9. The communication system of claim 8, wherein the supplier apparatus further comprises:
    - shared key obtaining means for generating a random number as a shared key, for encrypting the shared key using the first encrypting means, and for transmitting a cryptogram obtained from the encryption to the user apparatus;
      
      second encrypting means for performing an encryption determined by the shared key; and
      
      information transmitting means for encrypting information using the second encrypting means and transmitting the encrypted information to the user apparatus, only after receiving a notification of authentication from the user apparatus,wherein the user apparatus further comprises;
      
      user shared key obtaining means for decrypting the cryptogram sent from the supplier apparatus using the first decrypting means if the authenticating means has authenticated the supplier apparatus and for storing a plaintext obtained from the decryption as the shared key;
      
      second decrypting means for performing a decryption determined by the shared key, wherein the decryption is a reverse conversion of the encryption performed by the second encrypting means in the supplier apparatus; and
      
      information receiving means for receiving the encrypted information transmitted by the information transmitting means of the supplier apparatus and decrypting the encrypted information using the second decrypting means.
  - 10. The communication system of claim 9,wherein the supplier apparatus further comprises:
    - second authentication key storage means for storing a second authentication key which is only provided to supplier apparatuses which have been authorized; and
      
      third encrypting means for performing an encryption determined by the second authentication key, wherein the third encrypting means and the second authentication key storage means are combined in one integrated circuit,wherein the authenticating means authenticates the user apparatus using the first encrypting means and the third encrypting means, and the proving means proves an authorization of the supplier apparatus using the first encrypting means and the third encrypting means,and the user apparatus further comprises;
      
      user second authentication key storage means for storing the same second authentication key as the second authentication key storage means in the supplier apparatus;
      
      user third encrypting means for performing the same encryption as the third encrypting means in the supplier apparatus, wherein the user third encrypting means and the user second authentication key storage means are combined in one integrated circuit,wherein the user authenticating means authenticates the supplier apparatus using the first decrypting means and the user third encrypting means, and the user proving means proves an authorization of the user apparatus using the first decrypting means and the user third encrypting means.
  - 11. The communication system of claim 9, whereinthe supplier apparatus includes two communication states called a command phase and a data transfer phase, and further includes a disconnect function which is used for temporarily closing an established connection to make the communication channel available and a reconnect function which is used for reopening the temporarily closed connection,wherein the supplier apparatus further comprises:
    - authentication controlling means for controlling the authenticating means, the proving means, and the shared key obtaining means during the command phase to have the authenticating means authenticate the user apparatus, to have the proving means prove the authorization of the supplier communication apparatus and to have the shared key obtaining means obtain the shared key;
      
      data transfer controlling means for controlling the information transmitting means during the data transfer phase to have the information transmitting means perform information transmission;
      
      deciding means for exchanging information with the user apparatus and storing a common procedure before a disconnect is performed for an established connection,wherein the common procedure includes information as to whether to re-execute an authentication by the authenticating means, whether to re-execute proving by the proving means, whether to re-execute an obtaining of the shared key by the shared key obtaining means, and whether to re-execute the information transmission by the information transmitting means,wherein the user apparatus includes two communication states called a command phase and a data transfer phase, and further includes the same disconnect function and reconnect function as the supplier apparatus,wherein the user apparatus further comprises;
      
      authentication controlling means for controlling the authenticating means, the proving means, and the shared key obtaining means during the command phase to have the authenticating means authenticate the supplier apparatus, to have the proving means prove the authorization of the user communication apparatus and to have the shared key obtaining means obtain the shared key;
      
      data transfer controlling means for controlling the information receiving means during the data transfer phase to have the information receiving means perform information reception;
      
      deciding means for exchanging information with the user apparatus and storing a common procedure before a disconnect is performed for an established connection,wherein the common procedure includes information as to whether to re-execute an authentication by the authenticating means, whether to re-execute proving by the proving means, whether to re-execute an obtaining of the shared key by the shared key obtaining means, and whether to re-execute the information reception by the information transmitting means.

12. A method of performing two-way authentication and distribution of a secret key in a communication system which is made up of a supplier apparatus that supplies information and a user apparatus that uses the information, the method comprising:
- a first step in which the supplier apparatus generates a first random number and transmits the first random number to the user apparatus;
  
  a second step in which the user apparatus receives the first random number, generates a second random number, combines the first random number and the second random number into a first cryptogram, decrypts the first cryptogram, and transmits a first plaintext obtained from the decryption to the supplier apparatus;
  
  a third step in which the supplier apparatus receives the first plaintext, encrypts the first plaintext, wherein an inverse conversion for the encryption exists and subjecting a plaintext to the encryption and the inversion conversion in any order restores the plaintext to original form, divides a second cryptogram obtained from the encryption into first data and second data, the first data corresponding to the first random number and the second data corresponding to the second random number, compares the first random number with the first data, generates a third random number as the secret key if the first data coincides with the first random number, combines the third random number and the second data, encrypts a second plaintext which is obtained from combination using a same encryption method as when encrypting the first plaintext, and transmits to the user apparatus a third cryptogram obtained by encrypting the second plaintext; and
  
  a fourth step in which the user apparatus receives the third cryptogram, decrypts the third cryptogram using the same decryption method as when decrypting the first cryptogram, divides a third plaintext obtained by decrypting the third cryptogram into third data and fourth data, the third data corresponding to the second data and the fourth data corresponding to the third random number, compares the third data with the second random number, and, if the third data coincides with the second random number, notifies the supplier apparatus of a coincidence of the third data and the second random number and holds the fourth data as the secret key.

13. A digital communication system for transmitting titles such as movies and multi media works comprising:
- a supplier device for transmitting and receiving data over the digital communication system,a plurality of user devices for transmitting and receiving data over the digital communication system, each user device including a first encryption module for challenge and response, said module having a first encrypter containing a first data conversion algorithm, wherein an inverse conversion for the first data conversion algorithm exists and subjecting a plaintext to the first data conversion algorithm and the inverse conversion in any order restores the plaintext to an original form, said user device further comprising a third encrypter containing a third data conversion algorithm; and
  
  a transmission apparatus for transmitting data between the supplier and the user devices.
- View Dependent Claims (14, 15, 16, 17, 18, 19, 20, 21, 22)
- - 14. The digital communication system of claim 13 wherein the first encrypter containing the first data conversion algorithm is used by a first user device to authenticate the validity of a supplier device on the system, and wherein the first encrypter containing the first data conversion algorithm is also used by the first user device to prove its validity to the supplier device.
  - 15. The digital communication system of claim 13 wherein the first encryption module includes a first authentication key of roughly 64 bits stored in a first authentication key storage unit, wherein said first authentication key is utilized by the first encrypter to encrypt challenge and response data.
  - 16. The digital communication system of claim 13 wherein the third encrypter containing the third data conversion algorithm is used by the first user device to decrypt titles received from the supplier device through the transmission apparatus.
  - 17. The digital communication system of claim 13 wherein the first encrypter comprises a non volatile IC chip on which is stored the first data conversion algorithm.
  - 18. The digital communication system of claim 13 wherein the supplier device comprises a second encryption module for challenge and response, said second encryption module having a second encrypter containing a second data conversion algorithm that is substitutive in nature, the supplier device further comprising a fourth encrypter containing a fourth data conversion algorithm.
  - 19. The digital communication system of claim 18 wherein the second encrypter containing the second data conversion algorithm is used by the supplier device to authenticate the validity of the first user device, and wherein the second encrypter containing the second data conversion algorithm is also used by the supplier device to prove its validity to the first user device.
  - 20. The digital communication system of claim 18 wherein the second encryption module includes a second authentication key of roughly 64 bits stored in a second authentication key storage unit, wherein the second authentication key is utilized by the second encrypter to encrypt challenge and response data.
  - 21. The digital communication system of claim 18 wherein the fourth encrypter containing the fourth data conversion algorithm is used by the supplier device to encrypt titles transmitted to user devices through the transmission apparatus.
  - 22. The digital communication system of claim 18 wherein the second data conversion algorithm is stored in a non volatile IC chip.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Matsushita Electric Industrial Company Limited (Panasonic Holdings Corporation)
Original Assignee
Matsushita Electric Industrial Company Limited (Panasonic Holdings Corporation)
Inventors
Omori, Motoji, Yamauchi, Kazuhiko, Tatebayashi, Makoto, Matsuzaki, Natsume, Kozuka, Masayuki, Harada, Syunji
Primary Examiner(s)
CANGIALOSI, SALVATORE A

Application Number

US08/728,151
Time in Patent Office

1,231 Days
Field of Search

380/21, 380/23, 380/25
US Class Current

713/169
CPC Class Codes

G06Q 20/3674   involving authentication

H04L 2209/043   of tables, e.g. lookup, sub...

H04L 2209/12   Details relating to cryptog...

H04L 9/3273   for mutual authentication n...

Communication device which performs two-way encryption authentication in challenge response format

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

22 Claims

Specification

Solutions

Use Cases

Quick Links

Communication device which performs two-way encryption authentication in challenge response format

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

22 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links