Client/server based secure timekeeping system
First Claim
1. A secure timekeeping facility for use in a computer system that includes a central processing unit and electronic storage located in a physically secure package, comprising:
- a public key register for holding a public key for use in identifying a private key for encrypting and decrypting at least time and date transmissions;
a private key register for holding the private key;
an input for receiving (a) time and date information and (b) clock accuracy-enhancing operation data, encrypted using the private key;
data decryption means for decrypting (a) the received time and date information and (b) said clock accuracy-enhancing operation data, using the private key;
a time-of-day (TOD) clock including a time clock and a date calendar, having an input for receiving decrypted time and date information and an output for providing unencrypted time and date information, which is subject to modification by said clock accuracy-enhancing operation data.
1 Assignment
0 Petitions
Accused Products
Abstract
A client/server-based secure timekeeping computer system is provided. A secure-time server which is located in a physically trusted environment, includes a highly accurate time-of-day (TOD) clock, along with a key storage area containing a table of public/private key pairs corresponding to clients in the client/server network. The server encrypts a current time value from its TOD clock using a private key corresponding to a selected client. The encrypted time value is then sent to the client over an open communications channel. Each client in the network is equipped with its own secure timekeeping facility housed within the secure boundaries of a single, tamper-proof VLSI chip. Upon receipt of a secure-time transmission, a client uses its own copy of its private key to decrypt the time value, then loads the decrypted time value into its TOD clock. The tamper-proof VLSI chip in each client also includes an authenticated-time indicator, which is set to TRUE to indicate that the TOD clock contains a trusted time. Programs that require secure time may clock the authenticated time indicator before executing and may cancel execution if a secure time is not available. Programs that do not require secure time are able to execute regardless. To maintain the ongoing accuracy of the client TOD clock once it is set with a trusted time value, the secure timekeeping facility in a client may further include calibration and clock stability adjustment mechanisms which receive client clock calibration adjustment values and accuracy duration values, and which apply these values at intervals to maintain the accuracy of the client TOD clock within acceptable limits and mark the clock as untrusted when it can no longer be maintained within acceptable limits.
118 Citations
19 Claims
-
1. A secure timekeeping facility for use in a computer system that includes a central processing unit and electronic storage located in a physically secure package, comprising:
-
a public key register for holding a public key for use in identifying a private key for encrypting and decrypting at least time and date transmissions; a private key register for holding the private key; an input for receiving (a) time and date information and (b) clock accuracy-enhancing operation data, encrypted using the private key; data decryption means for decrypting (a) the received time and date information and (b) said clock accuracy-enhancing operation data, using the private key; a time-of-day (TOD) clock including a time clock and a date calendar, having an input for receiving decrypted time and date information and an output for providing unencrypted time and date information, which is subject to modification by said clock accuracy-enhancing operation data. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. A secure time server for use in a computer network, comprising:
-
a server time-of-day (TOD) clock including a time clock and a date calendar; an input for receiving a secure time request including a public key; processor means for identifying a private key corresponding to the public key; data encryption means for encrypting time and date information from the TOD clock using the private key; an output for sending the encrypted time and date information to the secure time requestor; and means for passing clock operation data between said secure time server and said secure time requestor. - View Dependent Claims (11, 12, 13, 14)
-
-
15. A secure time server for use in a computer network, comprising:
-
a server time-of-day (TOD) clock including a time clock and a date calendar; processor means for identifying a public key and a private key for which to generate a secure time transmission; date encryption means for encrypting time and date information from the TOD clock using the private key; and an output for broadcasting the public key and the encrypted time, date information and clock operation data. - View Dependent Claims (16, 17, 18, 19)
-
Specification