Certification of cryptographic keys for chipcards
First Claim
Patent Images
1. Method for certification of a cryptographic key for a chipcard comprising the steps of:
- a) generating at a trusted authority, an asymmetrical algorithm cryptography key pair;
b) generating at the trusted authority, a hash of a public key of the key pair and administrative information related to the public key;
c) generating at the trusted authority, a digital signature by decoding the hash using a certified secret key of a certified key pair of the asymmetrical algorithm, a certified public key of the certified key pair having been previously transferred to the chipcard from the trusted authority;
d) transferring to the chipcard, a certificate having a first part including the administrative information and the public key and a second part including the digital signature of the first part of the certificate;
e) encoding the digital signature of the second part of the certificate in the chipcard using the certified public key of the certified key pair previously transferred to the chipcard;
f) generating in the chipcard, a hash of the first part of the certificate;
g) comparing the encoded digital signature with the hash of the first part of the certificate;
h) accepting the public key as a certified key for the chipcard when the hash of the first part of the certificate agrees with the encoded digital signature of the second part of the certificate.
1 Assignment
0 Petitions
Accused Products
Abstract
The invention relates to a procedure for the certification of cryptographic keys for use in chipcards. In this procedure, a certification key and a certificate are transferred to the chipcard. The first part of the certificate includes the cryptographic key and the second part of the certificate includes a digital signature of the first part of the certificate. The digital certificate is subsequently checked by means of the certification key on the chipcard.
-
Citations
16 Claims
-
1. Method for certification of a cryptographic key for a chipcard comprising the steps of:
-
a) generating at a trusted authority, an asymmetrical algorithm cryptography key pair; b) generating at the trusted authority, a hash of a public key of the key pair and administrative information related to the public key; c) generating at the trusted authority, a digital signature by decoding the hash using a certified secret key of a certified key pair of the asymmetrical algorithm, a certified public key of the certified key pair having been previously transferred to the chipcard from the trusted authority; d) transferring to the chipcard, a certificate having a first part including the administrative information and the public key and a second part including the digital signature of the first part of the certificate; e) encoding the digital signature of the second part of the certificate in the chipcard using the certified public key of the certified key pair previously transferred to the chipcard; f) generating in the chipcard, a hash of the first part of the certificate; g) comparing the encoded digital signature with the hash of the first part of the certificate; h) accepting the public key as a certified key for the chipcard when the hash of the first part of the certificate agrees with the encoded digital signature of the second part of the certificate. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. Method for certification of a cryptographic key for a chipcard comprising the steps of:
-
a) generating at a trusted authority, an asymmetrical algorithm cryptography key pair; b) generating at the trusted authority, a hash of a public key of the key pair and administrative information related to the public key; c) generating at the trusted authority, a digital signature by encoding the hash using a certified secret key of a certified key pair of the asymmetrical algorithm, a certified public key of the certified key pair having been previously transferred to the chipcard from the trusted authority; d) transferring to the chipcard, a certificate having a first part including the administrative information and the public key and a second part including the digital signature of the first part of the certificate; e) decoding the digital signature of the second part of the certificate in the chipcard using the certified public key of the certified key pair previously transferred to the chipcard; f) generating in the chipcard, a hash of the first part of the certificate; g) comparing the encoded digital signature with the hash of the first part of the certificate; h) accepting the public key as a certified key for the chipcard when the hash of the first part of the certificate agrees with the encoded digital signature of the second part of the certificate. - View Dependent Claims (9, 10, 11, 12, 13, 14)
-
-
15. A chipcard having a computer for certification of a cryptographic key to be used on the chipcard, the computer carrying out the steps of:
-
a) receiving at the chipcard from a trusted source, a certificate having a first part including administrative information and a public key of an asymmetrical algorithm cryptography key pair, and a second part including a digital signature of a hash of the first part of the certificate; b) encoding the digital signature of the second part of the certificate in the chipcard using a certified public key of a certified key pair previously transferred to the chipcard from the trusted source; c) generating in the chipcard, a hash of the first part of the certificate; d) comparing the encoded digital signature with the hash of the first part of the certificate; e) accepting the public key as a certified key for the chipcard when the hash of the first part of the certificate agrees with the encoded digital signature of the second part of the certificate. - View Dependent Claims (16)
-
Specification