Combination-based broadcast encryption method

US 8,897,445 B2
Filed: 04/30/2012
Issued: 11/25/2014
Est. Priority Date: 12/31/2004
Status: Active Grant

First Claim

Patent Images

1. A broadcast encryption method comprising:

generating, by a server, a base group through combinations of integers out of a plurality of different integers having values greater than 1, and assigning the base group of different combinations to each user of a plurality of users;

generating secret information for each user through calculations with key value information allocated to a corresponding user by using the base group allocated to each user as a base, and sending the secret information to each user;

generating an inverse-base parameter value through calculations with an integer used to produce the base group and key value information of at least one privileged user, and sending the produced inverse-base parameter value to each user, in order for only the at least one privileged user of the plurality of users to eliminate the base group from the secret information; and

deriving a group key based on the key value information of the privileged users, encrypting a session key with the derived group key and sending the encrypted session key to each user.

View all claims

0 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A combination-based broadcast encryption method includes: assigning by a server a base group of different combinations to each user; producing and sending secret information for each user by using as a base the base group allocated to each user; producing and sending an inverse-base parameter value through calculations with integers used to produce the base group and key value information of one or more privileged users; and deriving a group key by using the key value information of the privileged users, encrypting a session key by using the derived group key, and sending the encrypted session key to each user. Accordingly, each user is assigned a different base through a combination, thereby having security against collusion attacks.

Citations

48 Claims

1. A broadcast encryption method comprising:
- generating, by a server, a base group through combinations of integers out of a plurality of different integers having values greater than 1, and assigning the base group of different combinations to each user of a plurality of users;
  
  generating secret information for each user through calculations with key value information allocated to a corresponding user by using the base group allocated to each user as a base, and sending the secret information to each user;
  
  generating an inverse-base parameter value through calculations with an integer used to produce the base group and key value information of at least one privileged user, and sending the produced inverse-base parameter value to each user, in order for only the at least one privileged user of the plurality of users to eliminate the base group from the secret information; and
  
  deriving a group key based on the key value information of the privileged users, encrypting a session key with the derived group key and sending the encrypted session key to each user.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
- - 2. The method as claimed in claim 1, wherein the integers for the generating the base group are coprimes.
  - 3. The method as claimed in claim 1, wherein the inverse-base parameter value is generated with at least one random number.
  - 4. The method as claimed in claim 3, wherein the at least one random number is used for the deriving the group key.
  - 5. The method as claimed in claim 1, wherein the secret information for each user is generated with a random value.
  - 6. The method as claimed in claim 3, wherein the at least one random number is sent to each user.
  - 7. The method as claimed in claim 1, wherein the base of the secret information for each user contains the base group allocated to each user and a common integer commonly used for all users, and the group key is derived to have the base of the common integer.
  - 8. The method as claimed in claim 1, further comprising sending, to each user, information of combinations for generating a corresponding base group.
  - 9. The method as claimed in claim 1, further comprising sending information of a key value allocated to a user every time a broadcast message is sent.

10. A broadcast encryption method comprising:
- grouping, by a server, into a plurality of groups one upper group of a plurality of users receiving a broadcast message, and assigning a key value to corresponding users of each group;
  
  generating a base group for each group through combinations of integers of a plurality of different integers having values greater than 1, and assigning users of each group the base group produced through a different combination;
  
  generating secret information for each user through calculations with key value information allocated to a corresponding user of each group by using the base group allocated to each user as a base, and sending the secret information to each user;
  
  generating an inverse-base parameter value through calculations with integers used to produce the base group and key value information of at least one privileged user, and sending the inverse-base parameter value to users of a corresponding group, in order for only the at least one privileged user of the plurality of users to eliminate the base group from the secret information; and
  
  deriving a group key for each group with the key value information of the at least one privileged user, encrypting a session key with the group key, and sending the encrypted session key to each user.
- View Dependent Claims (11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24)
- - 11. The method as claimed in claim 10, wherein a random number is assigned to each group, and the random number is used in calculating the secret information of each user to be sent to the users of each group.
  - 12. The method as claimed in claim 11, wherein a random number assigned to a corresponding group is used in the generating the inverse-base parameter value.
  - 13. The method as claimed in claim 11, wherein the group key for each group is generated with a random number assigned to a corresponding group.
  - 14. The method as claimed in claim 10, wherein integers used for the generating the base group are coprimes.
  - 15. The method as claimed in claim 10, wherein the inverse-base parameter value is generated with at least one random number.
  - 16. The method as claimed in claim 15, wherein at least one random number is used for the deriving of the group key.
  - 17. The method as claimed in claim 10, wherein the server produces it'"'"'s own random number which is used for the generating the secret information for each user.
  - 18. The method as claimed in claim 15, wherein the at least one random number is generated with the server'"'"'s own random number, and sent to each user.
  - 19. The method as claimed in claim 10, wherein the base of the secret information for each user contains a base group assigned to each user and a common integer commonly used for all users, and the group key is derived based on the common integer.
  - 20. The method as claimed in claim 10, wherein the server sends, to each user, the information of combinations for producing a corresponding base group.
  - 21. The method as claimed in claim 10, wherein the server separately calculates an exponent part and a base part in the generating the inverse-base parameter value, and separately sends the exponent part and base part of the inverse-base parameter value.
  - 22. The method as claimed in claim 10, wherein each group is grouped to a plurality of sub-groups, a key value is assigned to users of each sub-group, and secret information for each user is generated through calculations with key value information assigned to users of each sub-group.
  - 23. The method as claimed in claim 10, wherein, if there are no unauthorized users in a specific group of the groups, a separate key value assigned to each group is established as a group key for the corresponding group.
  - 24. The method as claimed in claim 10, wherein the server sends the key value information assigned to the users every time the server sends the broadcast message.

25. A broadcast encryption method comprising:
- generating a base group through combinations of integers of a plurality of different integers having values greater than 1, and allocating the base group generated through different combinations to each user of a plurality of users;
  
  generating secret information for each user through calculations with a key value information allocated to a corresponding user based on the base group allocated to each user, and receiving by each user from a server the secret information;
  
  generating an inverse-base parameter value through calculations with integers used to produce the base group and the key value information of one or more privileged users, and receiving by each of the users the produced inverse-base parameter value, in order for only the privileged users of the plurality of users to eliminate the base group from the secret information;
  
  generating a group key by using the secret information for each user received from the server and the inverse-base parameter value; and
  
  decrypting, by a processor of each user, a session key received from the server by using the group key.
- View Dependent Claims (26, 27, 28, 29, 30, 31, 32, 33)
- - 26. The method as claimed in claim 25, wherein the integers for the generating the base group are coprimes.
  - 27. The method as claimed in claim 26, wherein the inverse-base parameter value is calculated with at least one random number.
  - 28. The method as claimed in claim 27, wherein the at least one random number is used for the deriving the group key.
  - 29. The method as claimed in claim 25, wherein the server produces it'"'"'s own random number which is used in the generating the secret information.
  - 30. The method as claimed in claim 29, wherein at least one random number is calculated with the server'"'"'s own random number, and then received from the server.
  - 31. The method as claimed in claim 25, wherein a base of the produced secret information for each user contains the base group assigned to each user and a common integer commonly used for all users, and the group key is derived by using the common integer as a base.
  - 32. The method as claimed in claim 25, wherein each user receives, from the server, information of a combination for generating the corresponding base group.
  - 33. The method as claimed in claim 25, wherein the information of the key value assigned to each user is received from the server every time the broadcast message is sent.

34. A broadcast encryption method comprising:
- grouping into a plurality of groups one upper group having a plurality of users receiving a broadcast message, and assigning a key value to users of each group;
  
  generating a base group for each group through combinations of integers of a plurality of different integers having values greater than 1, and assigning each user of each group the base group produced through a different combination;
  
  generating secret information for each user through calculations with key value information assigned to users of each group by using as a base the base group assigned to each user, and receiving by each user from a server the produced secret information for each user;
  
  generating an inverse-base parameter value through calculations with the integers used to produce the base group and the key value information of at least one privileged user of the plurality of users, and receiving from the server the inverse-base parameter value by users of each corresponding group, in order for only the at least one privileged user to eliminate the base group from the secret information;
  
  generating a group key for each group based on the secret information for each user received from the server and the inverse-base parameter value; and
  
  decrypting, by a processor of each user, a session key received from the server based on the group key for each group.
- View Dependent Claims (35, 36, 37, 38, 39, 40, 41, 42, 43, 44, 45, 46, 47, 48)
- - 35. The method as claimed in claim 34, wherein a random number is assigned to each group, and the random number is used in the generating the secret information of each user to be sent to the users of each group.
  - 36. The method as claimed in claim 34, wherein a random number assigned to a corresponding group is used in the generating the inverse-base parameter value.
  - 37. The method as claimed in claim 35, wherein the group key for each group is generated with a random number assigned to the corresponding group.
  - 38. The method as claimed in claim 34, wherein integers for of the generating the base group are coprimes.
  - 39. The method as claimed in claim 34, wherein the inverse-base parameter value is calculated with at least one random number.
  - 40. The method as claimed in claim 39, wherein the at least one random number is used the deriving the group key.
  - 41. The method as claimed in claim 35, wherein the server produces it'"'"'s own random number which is used in the generating the secret information for each user.
  - 42. The method as claimed in claim 41, wherein at least one random number is calculated with the server'"'"'s own random number, and received by each user from the server.
  - 43. The method as claimed in claim 35, wherein a base of the secret information of each user contains a base group assigned to each user and a common integer commonly used for all users, and the group key is derived based on the common integer.
  - 44. The method as claimed in claim 35, wherein users of each group receive from the server the information of combinations for producing the corresponding base group.
  - 45. The method as claimed in claim 35, wherein an exponent part and a base part are separately calculated in the generating the inverse-base parameter value, and the exponent part and base part of the inverse-base parameter value are received from the server.
  - 46. The method as claimed in claim 35, wherein each group is grouped to a plurality of sub-groups, a key value is assigned to corresponding users of each subgroup, and secret information for each user is generated through calculations with key value information assigned to the corresponding users of each sub-group.
  - 47. The method as claimed in claim 35, wherein, if there are no unauthorized users in a specific group of the groups, a separate key value assigned to each group is established as a group key to the corresponding group.
  - 48. The method as claimed in claim 35, wherein the key value information assigned to the users is received from the server every time the server sends the broadcast message.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Samsung Electronics Co. Ltd.
Original Assignee
Samsung Electronics Co. Ltd.
Inventors
Jin, Weon-il, Kim, Dae-youb, Kim, Hwan-joon, Park, Sung-joon
Primary Examiner(s)
Homayounmehr, Farid
Assistant Examiner(s)
Torres-Diaz, Lizbeth

Application Number

US13/460,098
Publication Number

US 20120213364A1
Time in Patent Office

939 Days
Field of Search

726 2- 3, 726 26- 27, 713/150, 713/155, 713162-163, 713/168, 380/28, 380/30, 380/44, 380/46, 380/59, 380/200, 380/201, 380/205, 380/210, 380/255, 380/259, 380/262, 380277-279, 380281-286
US Class Current

380/255
CPC Class Codes

G06F 21/10   Protecting distributed prog...

H04L 2209/601   Broadcast encryption

H04L 9/0822   using key encryption key

H04L 9/0833   involving conference or gro...

Combination-based broadcast encryption method

First Claim

0 Assignments

0 Petitions

Accused Products

Abstract

Citations

48 Claims

Specification

Solutions

Use Cases

Quick Links

Combination-based broadcast encryption method

First Claim

0 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

48 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links