×

Certify and split system and method for replacing cryptographic keys

  • US 8,989,390 B2
  • Filed: 12/11/2006
  • Issued: 03/24/2015
  • Est. Priority Date: 12/12/2005
  • Status: Active Grant
First Claim
Patent Images

1. A method operational on a token device for replacing asymmetric cryptographic keys, comprising:

  • generating at the token device a pseudorandom first key pair that comprises a first private key and a corresponding first public key;

    storing the first private key in a storage device of the token device;

    generating at the token device a pseudorandom spare second key pair that comprises a second private key and a second public key,signing the second public key with the first private key stored in the storage device to obtain a signed certificate adapted to authenticate the second public key when the first public key is replaced with the second public key;

    dividing the second key pair and signed certificate into n shares, where n is an integer; and

    distributing the n shares to at least two shareholders for safekeeping.

View all claims
  • 1 Assignment
Timeline View
Assignment View
    ×
    ×