Key conversion method for communication session encryption and authentication system

US 7,299,356 B2
Filed: 09/02/2003
Issued: 11/20/2007
Est. Priority Date: 09/02/2003
Status: Active Grant

First Claim

Patent Images

1. A method for mutual authentication of a first station and a second station, comprising:

providing a particular data random key at the first station, disassembling and veiling the particular data random key by forming a first conversion array seeded by a shared secret and then encrypting the first conversion array to produce a first encrypted data set, where access to the shared secret indicates authenticity of the first station;

sending a first message to the second station including the first encrypted data set key, where the second station decrypts first encrypted data set and unveils and reassembles said particular data random key using the shared secret, and where the second station disassembles and veils a version of the particular data random key by forming a second conversion array seeded by the shared secret and then encrypts the second conversion array to produce a second encrypted data set, and sends a second message to the first station carrying the second encrypted data set, where access to the shared secret indicates authenticity of the second station;

receiving the second message, and decrypting the second encrypted data set, and reassembling and unveiling the version of the particular data random key at the first station using the shared secret;

determining at the first station if the version of the particular data random key matches an expected version the particular data random key, and if so providing an additional particular data random key at the first station, disassembling and veiling the additional particular data random key by forming a third conversion array seeded by the shared secret and then encrypting the third conversion array to produce a third encrypted data set, where access to the shared secret indicates authenticity of the first station;

sending a third message to the second station including the third encrypted data set, where the second station decrypts the third encrypted data set and reassembles and unveils said additional particular data random key using the shared secret, and where the second station disassembles and veils a version of the additional particular data random key by forming a fourth conversion array seeded by the shared secret and then encrypts the fourth conversion array to produce a fourth encrypted data set, and sends a fourth message to the first station carrying the fourth encrypted data set, where access to the shared secret indicates authenticity of the second station;

receiving the fourth message, and decrypting the fourth encrypted data set and reassembling and unveiling the version of the additional particular data random key at the first station using the shared secret;

determining at the first station if the version of the additional data random key matches an expected version of the additional data random key, and if so disassembling and veiling the additional particular data random key by forming a fifth conversion array seeded by an additional shared secret and then encrypting the fifth conversion array to produce a fifth encrypted data set, where access to the additional shared secret indicates authenticity of the first station; and

sending a fifth message to the second station including the fifth encrypted data set, where the second station decrypts the fifth encrypted data set, reassembles and unveils said additional particular data random key using the additional shared secret, and determines at the second station if a version of the additional data random key matches an expected version of the additional data random key.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

An interactive mutual authentication protocol, which does not allow shared secrets to pass through untrusted communication media, integrates an encryption key management system into the authentication protocol. The server encrypts a particular data random key by first veiling the particular data random key using a first conversion array seeded by a shared secret, and then encrypting the veiled particular data random key. The client decrypts and unveils the particular data random key using the shared secret, and returns a similarly veiled version of the particular data random key using a second conversion array seeded by a shared secret. Access to the shared secret indicates authenticity of the stations. The procedure may be repeated for a second shared secret for strong authentication, without allowing shared secrets to pass via untrusted media.

Citations

22 Claims

1. A method for mutual authentication of a first station and a second station, comprising:
- providing a particular data random key at the first station, disassembling and veiling the particular data random key by forming a first conversion array seeded by a shared secret and then encrypting the first conversion array to produce a first encrypted data set, where access to the shared secret indicates authenticity of the first station;
  
  sending a first message to the second station including the first encrypted data set key, where the second station decrypts first encrypted data set and unveils and reassembles said particular data random key using the shared secret, and where the second station disassembles and veils a version of the particular data random key by forming a second conversion array seeded by the shared secret and then encrypts the second conversion array to produce a second encrypted data set, and sends a second message to the first station carrying the second encrypted data set, where access to the shared secret indicates authenticity of the second station;
  
  receiving the second message, and decrypting the second encrypted data set, and reassembling and unveiling the version of the particular data random key at the first station using the shared secret;
  
  determining at the first station if the version of the particular data random key matches an expected version the particular data random key, and if so providing an additional particular data random key at the first station, disassembling and veiling the additional particular data random key by forming a third conversion array seeded by the shared secret and then encrypting the third conversion array to produce a third encrypted data set, where access to the shared secret indicates authenticity of the first station;
  
  sending a third message to the second station including the third encrypted data set, where the second station decrypts the third encrypted data set and reassembles and unveils said additional particular data random key using the shared secret, and where the second station disassembles and veils a version of the additional particular data random key by forming a fourth conversion array seeded by the shared secret and then encrypts the fourth conversion array to produce a fourth encrypted data set, and sends a fourth message to the first station carrying the fourth encrypted data set, where access to the shared secret indicates authenticity of the second station;
  
  receiving the fourth message, and decrypting the fourth encrypted data set and reassembling and unveiling the version of the additional particular data random key at the first station using the shared secret;
  
  determining at the first station if the version of the additional data random key matches an expected version of the additional data random key, and if so disassembling and veiling the additional particular data random key by forming a fifth conversion array seeded by an additional shared secret and then encrypting the fifth conversion array to produce a fifth encrypted data set, where access to the additional shared secret indicates authenticity of the first station; and
  
  sending a fifth message to the second station including the fifth encrypted data set, where the second station decrypts the fifth encrypted data set, reassembles and unveils said additional particular data random key using the additional shared secret, and determines at the second station if a version of the additional data random key matches an expected version of the additional data random key.
- View Dependent Claims (2, 3, 4, 5, 6, 7)
- - 2. The method of claim 1, where the one of the first and second conversion arrays comprises X sections, each of said X sections including Y byte positions in an order, and includinggenerating one of the first and second conversion arrays using a random number generator seeded by said shared secret to produce a pseudorandom number having X values corresponding with respective sections of said X sections, the X values each being between 1 and Y and identifying one of said Y byte positions, andplacing a byte of said random key in each of said X sections at the one of said Y byte positions identified by the corresponding one of said X values.
  - 3. The method of claim 1, where the one of the first and second conversion arrays comprises X sections, each of said X sections including Z bit positions in an order, and includinggenerating one of the first and second conversion arrays using a random number generator seeded by said shared secret to produce a pseudorandom number having X values corresponding with respective sections of said X sections, the X values each being between 1 and Z and identifying one of said Z bit positions, andplacing a bit of said random key in each of said X sections at the one of said Z bit positions identified by the corresponding one of said X values.
  - 4. The method of claim 1, where the one of the first and second conversion arrays comprises X sections, each of said X sections including Y byte positions in an order, each of said Y byte positions including B bit positions in an order, and includinggenerating one of the first and second conversion arrays using a random number generator seeded by said shared secret to produce a first pseudorandom number having X values corresponding with respective sections of said X sections, the X values each being between 1 and Y and identifying one of said Y byte positions,using a random number generator seeded by said shared secret to produce a second pseudorandom number having B values corresponding with respective bits in a byte of said random key, the B values each being between 1 and B and identifying one of said B bit positions,placing a byte, including B bits, of said random key in each of said X sections at the one of said Y byte positions identified by the corresponding one of said X values, andmapping the B bits of said byte of said random key to said B bit positions identified by the corresponding one of said B values.
  - 5. The method of claim 1, where the one of the first and second conversion arrays comprises X sections, each of said X sections including Y byte positions in an order, each of said Y byte positions including B bit positions in an order, and includinggenerating one of the first and second conversion arrays using a random number generator seeded by said shared secret to produce a first pseudorandom number having X values corresponding with respective sections of said X sections, the X values each being between 1 and Y and identifying one of said Y byte positions,using a random number generator to produce a second pseudorandom number having B values corresponding with respective bits in a byte of said random key, the B values each being between 1 and B and identifying one of said B bit positions,placing a byte, including B bits, of said random key in each of said X sections at the one of said Y byte positions identified by the corresponding one of said X values, andmapping the B bits of said byte of said random key to said B bit positions identified by the corresponding one of said B values.
  - 6. The method of claim 1, including presenting a use interface to the second station from the first station carrying parameters of said first and second conversion arrays.
  - 7. The method of claim 1, including executing an interactive exchange of messages to deliver the particular data random key from the first station to the second station.

8. A data processing apparatus, comprising:
- a processor, a communication interface adapted for connection to a communication medium, and memory storing instructions for execution by the data processor, the instructions includinglogic to provide a particular data random key at the first station and to disassemble and veil the particular data random key by forming a first conversion array seeded by a shared secret and then to encrypt the first conversion array to produce a first encrypted data set, where access to the shared secret indicates authenticity of the first station;
  
  logic to send a first message to the second station including the first encrypted data set, where the second station decrypts and unveils the first encrypted data set using the shared secret, and where the second station disassembles and veils a version of the particular data random key by forming a second conversion array seeded by the shared secret and then encrypts the second conversion array to produce a second encrypted data set, and sends a second message to the first station carrying the second encrypted data set, where access to the shared secret indicates authenticity of the second station;
  
  logic to receive the second message, and to decrypt and unveil the version of the particular data random key at the first station using the shared secret;
  
  logic to determine at the first station if the version of the particular data random key matches an expected version the particular data random key, and if so provide an additional particular data random key at the first station, disassemble and veil the additional particular data random key by forming a third conversion array seeded by the shared secret and then to encrypt the third conversion array to produce a third encrypted data set, where access to the shared secret indicates authenticity of the first station;
  
  logic to send a third message to the second station including the third encrypted data set, where the second station decrypts the third encrypted data set and reassembles and unveils the additional particular data random key using the shared secret, and where the second station disassembles and veils a version of the additional particular data random key by forming a fourth conversion array seeded by the shared secret and then encrypts the fourth conversion array to produce a fourth encrypted data set, and sends a fourth message to the first station carrying the fourth encrypted data set, where access to the shared secret indicates authenticity of the second station;
  
  logic to receive the fourth message, and decrypt the fourth encrypted data set and to reassemble and unveil the version of the additional particular data random key at the first station using the shared secret;
  
  logic to determine at the first station if the version of the additional data random key matches an expected version of the additional data random key, and if so to disassemble and veil the additional particular data random key by forming a fifth conversion array seeded by an additional shared secret and then encrypt the fifth conversion array to produce a fifth encrypted data set, where access to the additional shared secret indicates authenticity of the first station; and
  
  logic to send a fifth message to the second station including the fifth encrypted data set, where the second station can decrypt the fifth encrypted data set, and can reassemble and unveil said additional particular data random key using the additional shared secret, in order to determine at the second station if a version of the additional data random key matches an expected version of the additional data random key.
- View Dependent Claims (9, 10, 11, 12, 13, 14)
- - 9. The apparatus of claim 8, where the one of the first and second conversion arrays comprises X sections, each of said X sections including Y byte positions in an order, and including logic togenerate one of the first and second conversion arrays using a random number generator seeded by said shared secret to produce a pseudorandom number having X values corresponding with respective sections of said X sections, the X values each being between 1 and Y and identifying one of said Y byte positions, andto place a byte of said random key in each of said X sections at the one of said Y byte positions identified by the corresponding one of said X values.
  - 10. The apparatus of claim 8, where the one of the first and second conversion arrays comprises X sections, each of said X sections including Z bit positions in an order, and including logic togenerate one of the first and second conversion arrays using a random number generator seeded by said shared secret to produce a pseudorandom number having X values corresponding with respective sections of said X sections, the X values each being between 1 and Z and identifying one of said Z bit positions, andto place a bit of said random key in each of said X sections at the one of said Z bit positions identified by the corresponding one of said X values.
  - 11. The apparatus of claim 8, where the one of the first and second conversion arrays comprises X sections, each of said X sections including Y byte positions in an order, each of said Y byte positions including B bit positions in an order, and including logic togenerate one of the first and second conversion arrays using a random number generator seeded by said shared secret to produce a first pseudorandom number having X values corresponding with respective sections of said X sections, the X values each being between 1 and Y and identifying one of said Y byte positions,use a random number generator seeded by said shared secret to produce a second pseudorandom number having B values corresponding with respective bits in a byte of said random key, the B values each being between 1 and B and identifying one of said B bit positions,place a byte, including B bits, of said random key in each of said X sections at the one of said Y byte positions identified by the corresponding one of said X values, andmap the B bits of said byte of said random key to said B bit positions identified by the corresponding one of said B values.
  - 12. The apparatus of claim 8, where the one of the first and second conversion arrays comprises X sections, each of said X sections including Y byte positions in an order, each of said Y byte positions including B bit positions in an order, and including logic togenerate one of the first and second conversion arrays using a random number generator seeded by said shared secret to produce a first pseudorandom number having X values corresponding with respective sections of said X sections, the X values each being between 1 and Y and identifying one of said Y byte positions,use a random number generator to produce a second pseudorandom number having B values corresponding with respective bits in a byte of said random key, the B values each being between 1 and B and identifying one of said B bit positions,place a byte, including B bits, of said random key in each of said X sections at the one of said Y byte positions identified by the corresponding one of said X values, andmap the B bits of said byte of said random key to said B bit positions identified by the corresponding one of said B values.
  - 13. The apparatus of claim 8, including logic to present a user interface to the second station from the first station carrying parameters of said first and second conversion arrays.
  - 14. The apparatus of claim 8, including logic to execute an interactive exchange of messages to deliver the particular data random key from the first station to the second station.

15. An article, comprising:
- machine readable data storage medium having computer program instructions stored therein for establishing a communication session on a communication medium between a first data processing station and a second data processing station having access to the communication medium, said instructions comprisinglogic to provide a particular data random key at the first station and to disassemble and veil the particular data random key by forming a first conversion array seeded by a shared secret and then to encrypt the first conversion array to produce a first encrypted data set, where access to the shared secret indicates authenticity of the first station;
  
  logic to send a first message to the second station including the first encrypted data set, where the second station decrypts and unveils the first encrypted data set using the shared secret, and where the second station disassembles and veils a version of the particular data random key by forming a second conversion array seeded by the shared secret and then to encrypt the second conversion array to produce a second encrypted data set, and sends a second message to the first station carrying the second encrypted data set, where access to the shared secret indicates authenticity of the second station;
  
  logic to receive the second message, and to decrypt and unveil the version of the particular data random key at the first station using the shared secret;
  
  logic to determine at the first station if the version of the particular data random key matches an expected version the particular data random key, and if so provide an additional particular data random key at the first station, disassemble and veil the additional particular data random key by forming a third conversion array seeded by the shared secret and then to encrypt the third conversion array to produce a third encrypted data set, where access to the shared secret indicates authenticity of the first station;
  
  logic to send a third message to the second station including the third encrypted data set, where the second station decrypts the third encrypted data set and reassembles and unveils the additional particular data random key using the shared secret, and where the second station disassembles and veils a version of the additional particular data random key by forming a fourth conversion array seeded by the shared secret and then encrypts the fourth conversion array to produce a fourth encrypted data set, and sends a fourth message to the first station carrying the fourth encrypted data set, where access to the shared secret indicates authenticity of the second station;
  
  logic to receive the fourth message, and decrypt the fourth encrypted data set and to reassemble and unveil the version of the additional particular data random key at the first station using the shared secret;
  
  logic to determine at the first station if the version of the additional data random key matches an expected version of the additional data random key, and if so to disassemble and veil the additional particular data random key by forming a fifth conversion array seeded by an additional shared secret and then encrypt the fifth conversion array to produce a fifth encrypted data set, where access to the additional shared secret indicates authenticity of the first station; and
  
  logic to send a fifth message to the second station including the fifth encrypted data set, where the second station can decrypt the fifth encrypted data set, and can reassemble and unveil said additional particular data random key using the additional shared secret, in order to determine at the second station if a version of the additional data random key matches an expected version of the additional data random key.
- View Dependent Claims (16, 17, 18, 19, 20, 21)
- - 16. The article of claim 15, where the one of the first and second conversion arrays comprises X sections, each of said X sections including Y byte positions in an order, and the instructions include logic togenerate one of the first and second conversion arrays using a random number generator seeded by said shared secret to produce a pseudorandom number having X values corresponding with respective sections of said X sections, the X values each being between 1 and Y and identifying one of said Y byte positions, andto place a byte of said random key in each of said X sections at the one of said Y byte positions identified by the corresponding one of said X values.
  - 17. The article of claim 15, where the one of the first and second conversion arrays comprises X sections, each of said X sections including Z bit positions in an order, and the instructions include logic togenerate one of the first and second conversion arrays using a random number generator seeded by said shared secret to produce a pseudorandom number having X values corresponding with respective sections of said X sections, the X values each being between 1 and Z and identifying one of said Z bit positions, andto place a bit of said random key in each of said X sections at the one of said Z bit positions identified by the corresponding one of said X values.
  - 18. The article of claim 15, where the one of the first and second conversion arrays comprises X sections, each of said X sections including Y byte positions in an order, each of said Y byte positions including B bit positions in an order, and the instructions include logic togenerate one of the first and second conversion arrays using a random number generator seeded by said shared secret to produce a first pseudorandom number having X values corresponding with respective sections of said X sections, the X values each being between 1 and Y and identifying one of said Y byte positions,use a random number generator seeded by said shared secret to produce a second pseudorandom number having B values corresponding with respective bits in a byte of said random key, the B values each being between 1 and B and identifying one of said B bit positions,place a byte, including B bits, of said random key in each of said X sections at the one of said Y byte positions identified by the corresponding one of said X values, andmap the B bits of said byte of said random key to said B bit positions identified by the corresponding one of said B values.
  - 19. The article of claim 15, where the one of the first and second conversion arrays comprises X sections, each of said X sections including Y byte positions in an order, each of said Y byte positions including B bit positions in an order, and the instructions include logic togenerate one of the first and second conversion arrays using a random number generator seeded by said shared secret to produce a first pseudorandom number having X values corresponding with respective sections of said X sections, the X values each being between 1 and Y and identifying one of said Y byte positions,use a random number generator to produce a second pseudorandom number having B values corresponding with respective bits in a byte of said random key, the B values each being between 1 and B and identifying one of said B bit positions,place a byte, including B bits, of said random key in each of said X sections at the one of said Y byte positions identified by the corresponding one of said X values, andmap the B bits of said byte of said random key to said B bit positions identified by the corresponding one of said B values.
  - 20. The article of claim 15, wherein the instructions include logic to present a user interface to the second station from the first station carrying parameters of said first and second conversion arrays.
  - 21. The article of claim 15, wherein the instructions include logic to execute an interactive exchange of messages to deliver the particular data random key from the first station to the second station.

22. A method for mutual authentication of a first station and a second station, comprising:
- providing a particular data random key at the first station, disassembling and veiling the particular data random key by forming a first conversion array seeded by a shared secret and then encrypting the first conversion array to produce a first encrypted data set, where access to the shared secret indicates authenticity of the first station;
  
  sending a first message to the second station including the first encrypted data set, where the second station decrypts first encrypted data set and unveils and reassembles said particular data random key using the shared secret;
  
  receiving the first message at the second station and decrypting the first encrypted data set, and reassembling and unveiling the particular data random key at the second station; and
  
  determining at the second station if the particular data random key matches an expected version the particular data random key, and if so and disassembling and veiling a version of the particular data random key by forming a second conversion array seeded by the shared secret and then encrypting the second conversion array to produce a second encrypted data set, and sending a second message to the first station carrying the second encrypted data set, where access to the shared secret indicates authenticity of the second station;
  
  receiving the second message at the first station, and decrypting the second encrypted data set, and reassembling and unveiling the version of the particular data random key at the first station using the shared secret;
  
  determining at the first station if the version of the particular data random key matches an expected version the particular data random key, and if so providing an additional particular data random key at the first station, disassembling and veiling the additional particular data random key by forming a third conversion array seeded by the shared secret and then encrypting the third conversion array to produce a third encrypted data set, where access to the shared secret indicates authenticity of the first station;
  
  sending a third message to the second station including the third encrypted data set;
  
  receiving the third message at the second station and decrypting the third encrypted data set and unveiling and reassembling the additional particular data random key using the shared secret, and determining at the second station if the additional particular data random key matches an expected version the additional particular data random key, and if so disassembling and veiling a version of the additional particular data random key by forming a fourth conversion array seeded by the shared secret and then encrypting the fourth conversion array to produce a fourth encrypted data set;
  
  sending a fourth message to the first station carrying the fourth encrypted data set, where access to the shared secret indicates authenticity of the second station;
  
  receiving the fourth message, and decrypting the fourth encrypted data set and unveiling and reassembling the version of the additional particular data random key at the first station using the shared secret;
  
  determining at the first station if the version of the additional data random key matches an expected version the additional data random key, and if so disassembling and veiling the additional particular data random key by forming a fifth conversion array seeded by an additional shared secret and then encrypting the fifth conversion array to produce a fifth encrypted data set, where access to the additional shared secret indicates authenticity of the first station;
  
  sending a fifth message to the second station including the fifth encrypted data set;
  
  receiving the fifth message at the second station, and decrypting the fifth encrypted data set, and unveiling and reassembling said additional particular data random key using the additional shared secret; and
  
  determining at the second station if a version of the additional data random key matches an expected version of the additional data random key.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Authernative
Original Assignee
Authernative
Inventors
Mizrah, Len L.
Primary Examiner(s)
Barron, Jr.; Gilberto
Assistant Examiner(s)
Dinh; Minh

Application Number

US10/653,500
Publication Number

US 20050050322A1
Time in Patent Office

1,540 Days
Field of Search

None
US Class Current

713/169
CPC Class Codes

H04L 63/061   for key exchange, e.g. in p...

H04L 63/08   for authentication of entit...

H04L 63/0869   for achieving mutual authen...

H04L 9/0822   using key encryption key

H04L 9/0844   with user authentication or...

Key conversion method for communication session encryption and authentication system

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

Citations

22 Claims

Specification

Solutions

Use Cases

Quick Links

Key conversion method for communication session encryption and authentication system

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

22 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links