Device with multiple one-time pads and method of managing such a device
First Claim
1. A method of managing a device arranged to carry out security-related tasks using one-time pad data, the method comprising:
- holding a plurality of one-time pads, each pad having a different security rating and being intended for use by the device in executing a task to that security rating,obtaining new secret random data by a process with an associated security rating; and
using the new secret random data to provision a particular said one-time pad with one-time pad data;
the method further comprising matching one of said particular one-time pad and said process such that the security rating of said process is as least as good as that of said particular one-time pad.
2 Assignments
0 Petitions
Accused Products
Abstract
A device is arranged to carry out security-related tasks using one-time pad data. The device has a memory for holding multiple one-time pads, each pad having a different security rating and being intended for use by the device in executing a task to that security rating. Provisioning of the pads with one-time pad data involves carrying out a process for obtaining new secret random data. This process has a security rating with the value of this rating varying according to the nature and parameters of the process concerned. The security rating of the process used to obtain the new secret random data is matched to that of the pad to be provisioned with one-time data, or the other way around, such that the security rating of the process is as least as good as that of the pad to be provisioned.
-
Citations
20 Claims
-
1. A method of managing a device arranged to carry out security-related tasks using one-time pad data, the method comprising:
-
holding a plurality of one-time pads, each pad having a different security rating and being intended for use by the device in executing a task to that security rating, obtaining new secret random data by a process with an associated security rating; and using the new secret random data to provision a particular said one-time pad with one-time pad data; the method further comprising matching one of said particular one-time pad and said process such that the security rating of said process is as least as good as that of said particular one-time pad. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A device comprising:
-
a memory for holding multiple one-time pads each with a different security rating, a provisioning arrangement for carrying out a process to obtain new secret random data and for using this data to provision a particular said one-time pad with one-time pad data, the provisioning arrangement being arranged to match one of said particular one-time pad and said process such that the security rating of said process is as least as good as that of said particular one-time pad; and a consumption arrangement for carrying out a security-related task using a said one-time pad with a security rating suitable for said task. - View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19, 20)
-
Specification