Security framework and protocol for universal pervasive transactions

US 7,353,382 B2
Filed: 06/11/2003
Issued: 04/01/2008
Est. Priority Date: 08/08/2002
Status: Active Grant

First Claim

Patent Images

1. A computer system securely transmitting and verifying a two-party agreement, said system comprising:

a first device, operated by the first party, developing and transmitting a first view of the two-party agreement based upon first device respective non-transmitted and transmitted transaction time dependent and device dependent parameters, the first view including an encrypted part based upon the first device non-transmitted time dependent and device dependent parameters and an unencrypted plaintext part including the first device transmitted transaction time dependent and device dependent parameters,wherein the first device encrypts the encrypted part of the first view using a first device encryption key according to a deterministic algorithm based on a non-stored Private Identification Entry (PIE) input to the first device and a deterministic algorithm based on the first device non-transmitted transaction time dependent and device dependent parameters;

a second device, operated by the second party, developing and transmitting a second view of the two-party agreement, the second view including an encrypted part encrypted by a second device encryption key and an unencrypted plaintext part including second device transmitted transaction time dependent and device dependent parameters; and

a third device comprising a verification partyreceiving the first view and the second view,generating the first device encryption key based upon the first device transmitted transaction time dependent and device dependent parameters and information known by the third device about the first device PIE and the first device non-transmitted time dependent and device dependent parameters,generating the second device encryption key based upon the second device transmitted transaction time dependent and device dependent parameters,decrypting the encrypted part of the first and second views, based upon the respective first and second device encryption keys,comparing the first view with the second view, andtransmitting a signal based on the comparing,wherein the first device PIE and the first and second device encryption keys are not communicated among the first, second and third devices.

View all claims

3 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A computer system, a method of a computer system and a computer-readable medium securely transmit and verify a multiparty agreement. The method, the computer system, and the computer readable medium include developing and transmitting views of the multi-party agreement by each party to a separate verification party. The verification party authenticates the participants and determines whether the views of the agreement are mutually consistent, and notifies the partys of the results of the comparison.

348 Citations

32 Claims

1. A computer system securely transmitting and verifying a two-party agreement, said system comprising:
- a first device, operated by the first party, developing and transmitting a first view of the two-party agreement based upon first device respective non-transmitted and transmitted transaction time dependent and device dependent parameters, the first view including an encrypted part based upon the first device non-transmitted time dependent and device dependent parameters and an unencrypted plaintext part including the first device transmitted transaction time dependent and device dependent parameters,wherein the first device encrypts the encrypted part of the first view using a first device encryption key according to a deterministic algorithm based on a non-stored Private Identification Entry (PIE) input to the first device and a deterministic algorithm based on the first device non-transmitted transaction time dependent and device dependent parameters;
  
  a second device, operated by the second party, developing and transmitting a second view of the two-party agreement, the second view including an encrypted part encrypted by a second device encryption key and an unencrypted plaintext part including second device transmitted transaction time dependent and device dependent parameters; and
  
  a third device comprising a verification partyreceiving the first view and the second view,generating the first device encryption key based upon the first device transmitted transaction time dependent and device dependent parameters and information known by the third device about the first device PIE and the first device non-transmitted time dependent and device dependent parameters,generating the second device encryption key based upon the second device transmitted transaction time dependent and device dependent parameters,decrypting the encrypted part of the first and second views, based upon the respective first and second device encryption keys,comparing the first view with the second view, andtransmitting a signal based on the comparing,wherein the first device PIE and the first and second device encryption keys are not communicated among the first, second and third devices.
- View Dependent Claims (16, 17, 18)
- - 16. The computer system of claim 1 in which each of the first device and the third device comprises a known pseudo-random number generator, a known hash function and a known transformation function to deterministically produce, by the first device, the first device encryption key and to deterministically produce, by the third device, the first device encryption key by:
    - the pseudo-random number generator receiving as input a seed and a base timestamp, as the information known by the first device and the third device about the first device non-transmitted time dependent and device dependent parameters and receiving as input the transmitted first device transaction timestamp and device dependent parameters, and producing as output a random number;
      
      the transformation function taking as input said random number and the information known by the third device about the first device PIE or the non-stored PIE input to the first device and producing as output a number; and
      
      the hash function taking as input said number and producing as output the first device encryption key.
  - 17. The computer system of claim 1 in which the second encryption key used by the second device to encrypt the view is generated according to a deterministic algorithm based on a non-stored Private Identification Entry (PIE) input to the second device and second device non-transmitted transaction time dependent and device dependent parameters, wherein the second device PIE is known only to the user of the second device and is not stored on the second device and is also known to the third device that receives the encrypted view developed by the second device.
  - 18. The computer system of claim 17 in which each of the second device and the third device comprises a known pseudo-random number generator, a known hash function and a known transformation function and deterministically produce the second device encryption key by:
    - the pseudo-random number generator receiving as input a seed and a base timestamp, as information known by the second device and the third device about the second device non-transmitted time dependent and device dependent parameters and receiving as input the transmitted second device transaction timestamp and device dependent parameters and producing as output a random number;
      
      the transformation function taking as input said random number and information known by the third device about the second device PIE or the non-stored second device PIE and producing as output a number; and
      
      the hash function taking as input said number and producing as output the second device encryption key.

2. The computer system as in 1, wherein either the first device transmits the first view to the third device and the second device independently transmits the second view to the third device, or the first device transmits the first view to the second device and the second device concatenates the first view and the second view and transmits the concatenated view to the third device.
- View Dependent Claims (3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15)
- - 3. The computer system as in claim 2, wherein the third device transmits a response to the first device and the second device either if the third device determines that the decrypted part of the first view matches the decrypted part of the second view for the agreement or if the third device determines that the decrypted part of the first view does not match the decrypted part of the second view for the agreement.
  - 4. The computer system as in claim 3, wherein the plaintext part of the view of the first device includes a device identification of the first device and a transaction timestamp at the first device as the first device transmitted transaction time dependent and device dependent parameters, and the encrypted part includes data corresponding to an agreement and a device identification of the second device as the second device transmitted device dependent parameter.
  - 5. The computer system as in claim 4, wherein the plaintext portion optionally includes a transaction ID and the encrypted portion optionally includes one or more of the transaction ID, a message digest, the transaction timestamp, a user ID of a user of the first device and padding data.
  - 6. The computer system as in claim 3, wherein the response from the third device to the first device comprises a plaintext part and an encrypted part, wherein the plaintext part of the response includes the first device transmitted device dependent parameter and a third device transaction timestamp and optionally includes a transaction ID, and the encrypted part includes data corresponding to a response to the agreement and optionally includes one or more of the first device transmitted device dependent parameter, the second device transmitted device dependent parameter, the transaction ID, a message digest, the transaction timestamp, a user ID of a user of the first device and padding data.
  - 7. The computer system of claim 6, in which the encrypted part of the response of the third device to the first device is encrypted using a third device encryption key and a cryptographic algorithm in which the third device encryption key is not communicated either between the first device and the second device or the first device and the third device.
  - 8. The computer system of claim 7 in which the third device encryption key used by the third device to encrypt the encrypted portion of the response to the first device is generated according to a deterministic algorithm based on the first device PIE and the third device non-transmitted transaction time dependent parameter.
  - 9. The computer system of claim 8 in which each of the third device and the first device comprises a known pseudo-random number generator, a known hash function and a known transformation function and deterministically produce the first device encryption key by:
    - the pseudo-random number generator receives as input a seed and a base timestamp, as the information known by the first device and the third device about the first device non-transmitted time dependent and device dependent parameters and receiving as input the transmitted first device transaction timestamp and device dependent parameters, and producing as output a random number;
      
      the transformation function taking as input said random number and the information known by the third device about the first device PIE or the non-stored PIE input to the first device and producing as output a number; and
      
      the hash function taking as input said number and produces as output the first device encryption key.
  - 10. The computer system as in claim 3, wherein the plaintext part of the view of the second device includes a device identification of the second device and a transaction timestamp at the second device as the second device transmitted transaction time dependent and device dependent parameters, and the encrypted part includes data corresponding to an agreement, and a device identification of the first device as the first device transmitted device dependent parameter of the first device.
  - 11. The computer system as in claim 10, wherein the plaintext portion optionally includes a transaction ID and the encrypted portion optionally includes one or more of the transaction ID, a message digest, the transaction timestamp, a user ID of a user of the second device and padding data.
  - 12. The computer system as in claim 3, wherein the response from the third device to the second device comprises a plaintext part and an encrypted part, wherein the plaintext part of the response includes the second device transmitted device dependent parameter and a third device transaction timestamp and optionally includes a transaction ID, and the encrypted part includes data corresponding to a response to the agreement and optionally includes one or more of the second device transmitted device dependent parameter, the first device transmitted device dependent parameter, the transaction ID, a message digest, the transaction timestamp, a user ID of a user of the second device and padding data.
  - 13. The computer system of claim 12, in which the encrypted part of the response of the third device to the second device is encrypted using a third device encryption key and a cryptographic algorithm in which the third device encryption key is not communicated either between the first device and the second device or the second device and the third device.
  - 14. The computer system of claim 13 in which the third device encryption key used by the third device to encrypt the encrypted part of the response is generated according to a deterministic algorithm based on the second device PIE and the third device non-transmitted transaction time dependent parameter.
  - 15. The computer system of claim 14 in which each of the third device and the second device comprises a known pseudo-random number generator, a known hash function and a known transformation function and deterministically produce the second device encryption key by:
    - the pseudo-random number generator receiving as input a seed and a base timestamp, as information known by the second device and the third device about the second device non-transmitted time dependent and device dependent parameters and receiving as input the transmitted second device transaction timestamp and device dependent parameters and producing as output a random number;
      
      the transformation function taking as input said random number and information known by the third device about the second device PIE or the non-stored second device PIE and producing as output a number; and
      
      the hash function taking as input said number and producing as output the second device encryption key.

19. A computer system securely transmitting and verifying a multi-party agreement among N parties where N is larger than or equal to two, said computer system comprising:
- a collection of N devices, each device operated by a party to the agreement, developing and transmitting its view of the multi-party agreement based upon non-transmitted and transmitted transaction time dependent and device dependent parameters, each view including an encrypted part based upon the device non-transmitted time dependent and device dependent parameters and an unencrypted plaintext part including the device transmitted transaction time dependent and device dependent parameters,wherein each device encrypts the encrypted part of its view using a device encryption key according to a deterministic algorithm based on a respective non-stored Private Identification Entry (PIE) input to each device and the device non-transmitted transaction time dependent and device dependent parameters; and
  
  an N+1-st device comprising a verification party receiving the views from the N agreement parties,generating the device encryption keys of the N agreement parties based upon the device transmitted transaction time dependent and device dependent parameters and information known by the N+1-st device about the PIE and the device non-transmitted time dependent and device dependent parameters,decrypting the encrypted part of each view based upon the device encryption keys,comparing the views from the N agreement parties, andtransmitting a response signal based on the comparing,wherein the PIE and the device encryption keys are not communicated among the N agreement.
- View Dependent Claims (28)
- - 28. The computer system of claim 19, in which a device in the multi-party agreement and the N+1-st device comprises a known pseudo-random number generator, a known hash function and a known transformation function and deterministically produce the identical of the device encryption keys by:
    - the pseudo-random number generator receiving as input a seed and a base timestamp, as the information known by each device and the N+1-st device about the device non-transmitted time dependent and device dependent parameters and receiving as input the transmitted device transaction timestamp and device dependent parameters, and producing as output a random number;
      
      the transformation function taking as input said random number and the information known by the N+1-st device about the PIE or the non-stored PIE input to the device and producing as output a number; and
      
      the hash function taking as input said number and producing as output the device encryption key.

20. The computer system as in 19, wherein either each of the N devices independently transmits its view to the N+1-st device comprising the verification party, or, each of the N devices concatenates its view to a list of views until all N views are collected so that each view appears once in the list and the list is then transmitted to the N+1-st device.
- View Dependent Claims (21, 22, 23, 24, 25, 26, 27)
- - 21. The computer system as in claim 20, wherein the N+1-st device transmits a response to each of the N devices in the multi-party agreement either if it decides that the decrypted part of all N views from the N devices in the multi-party agreement match each other for the purposes of the agreement or if it decides that the decrypted part of all N views from the N devices in the multi-party agreement do not match each other for the purposes of the agreement.
  - 22. The computer system as in claim 21, wherein the plaintext part of the view of a device includes a device identification and a transaction timestamp at each device as the device transmitted transaction time dependent and device dependent parameters, and the encrypted part includes data corresponding to a multi-party agreement and a device identification for each of other devices in the multi-party agreement as the device transmitted device dependent parameter of the other devices.
  - 23. The computer system as in claim 22, wherein the plaintext portion of a view from a device optionally includes a transaction ID, a number of parties in the agreement and the encrypted portion optionally includes one or more of the transaction ID, the number of parties in the agreement, a message digest, the transaction timestamp, a user ID of a user of the device and padding data.
  - 24. The computer system as in claim 20, wherein the response from the N+1-st device to a device in the multi-party agreement comprises of a plaintext part and an encrypted part, wherein the plaintext part of the response includes the device identification of the device as the device transmitted device dependent parameter and a N+1-st device transaction timestamp and optionally includes a transaction ID, and the encrypted part includes data corresponding to a response to the agreement and optionally includes one or more of a device identification of the and/or device identification of the other devices of the parties in the agreement as the device transmitted device dependent parameters, the transaction ID, the number of parties in the agreement, a message digest, the transaction timestamp, the user ID of the user of the device and padding data.
  - 25. The computer system of claim 24, in which the encrypted part of the response of the N+1-st device to a device in the multi-party agreement is encrypted using a N+1-st device encryption key and a cryptographic algorithm in which the N+1-st device encryption key is not communicated among the devices and the N+1-st device.
  - 26. The computer system of claim 25 in which the encryption key used by the N+1-st device to encrypt the response to a device in the multi-party agreement is generated according to a deterministic algorithm based on the PIE and the device non-transmitted transaction time dependent parameter.
  - 27. The computer system of claim 26 in which a device in the multi-party agreement and the N+1-st device comprises a known pseudo-random number generator, a known hash function and a known transformation function and deterministically produce the identical of the N+1-st device encryption keys by:
    - the pseudo-random number generator receiving as input a seed and a base timestamp, as the information known by each device and the N+1-st device about the device non-transmitted time dependent and device dependent parameters and receiving as input the transmitted device transaction timestamp and device dependent parameters, and producing as output a random number;
      
      the transformation function taking as input said random number and the information known by the N+1-st device about the PIE or the non-stored PIE input to the device and producing as output a number; and
      
      the hash function taking as input said number and producing as output the N+1-st device encryption key.

29. A method of securely transmitting and verifying a two-party agreement in a computer system, said method comprising:
- developing and transmitting, by a first device operated by a first party, a first view of the two-part agreement based upon first device respective non-transmitted and transmitted transaction time dependent and device dependent parameters, the first view including an encrypted part based upon the first device non-transmitted time dependent and device dependent parameters and an unencrypted plaintext part including the first device transmitted transaction time dependent and device dependent parameters,wherein the encrypted part is encrypted using a first device encryption key according to a deterministic algorithm based on a non-stored Private Identification Entry (PIE) input to the first device and the first device non-transmitted transaction time dependent and device dependent parameters;
  
  developing and transmitting, by a second device operated by a second party, a second view of the two-party agreement, the second view including an encrypted part encrypted by a second device encryption key and an unencrypted plaintext part including second device transmitted transaction time dependent and device dependent parameters; and
  
  receiving, by a third device comprising a verification party, the first view and the second view, generating the first device encryption key based upon the first device transmitted transaction time dependent and device dependent parameters and information known by the third device about the PIE and the first device non-transmitted time dependent and device dependent parameters, generating the second device encryption key based upon the second device transmitted transaction time dependent and device dependent parameters, decrypting the encrypted part of the first and second views, based upon the respective first and second device encryption keys, comparing the first view with the second view transmitting a signal based on the comparing,wherein the PIE and the first and second device encryption keys are not communicated among the first, second and third devices.

30. A method securely transmitting and verifying a multi-party agreement among N parties where N is larger than or equal to two, in a computer system, said method comprising:
- developing and transmitting, by a collection of N devices each device operated by a party to the agreement, its view of the multi-party agreement based upon non-transmitted and transmitted transaction time dependent and device dependent parameters, each view including an encrypted part based upon the device non-transmitted time dependent and device dependent parameters and an unencrypted plaintext part including the device transmitted transaction time dependent and device dependent parameters,wherein the encrypted part is encrypted using a device encryption key according to a deterministic algorithm based upon a respective non-stored Private Identification Entry (PIE) input to each device and the device non-transmitted transaction time dependent and device dependent parameters; and
  
  receiving, by an N+1-st device comprising a verification party, the views from the N agreement parties, generating the respective device encryption keys of the N agreement parties based upon the device transmitted transaction time dependent and device dependent parameters and information known by the N+1-st device about the PIE and the device non-transmitted time dependent and device dependent parameters, decrypting the encrypted part of each view based upon the device encryption keys, comparing the views from the N agreement parties and transmitting a response signal based on the comparing,wherein the PIE and the device encryption keys are not communicated among the N agreement parties.

31. A computer readable storage controlling a computer to securely transmit and verify a two-party agreement, by the functions comprising:
- developing and transmitting, by a first device operated by the first party, a first view of the two-party agreement based upon first device respective non-transmitted and transmitted transaction time dependent and device dependent parameters, the first view including an encrypted part based upon the first device non-transmitted time dependent and device dependent parameters and an unencrypted plaintext part including the first device transmitted transaction time dependent and device dependent parameters,wherein the encrypted part is encrypted using a first device encryption key according to a deterministic algorithm based on a non-stored Private Identification Entry (PIE) input to the first device and the first device non-transmitted transaction time dependent and device dependent parameters;
  
  developing and transmitting, by a second device operated by the second party, a second view of the two-party agreement, the second view including an encrypted part encrypted by a second device encryption key and an unencrypted plaintext part including second device transmitted transaction time dependent and device dependent parameters; and
  
  receiving, by a third device comprising a verification party, the first view and the second view, generating the first device encryption key based upon the first device transmitted transaction time dependent and device dependent parameters and information known by the third device about the PIE and the first device non-transmitted time dependent and device dependent parameters, generating the second device encryption key based upon the second device transmitted transaction time dependent and device dependent parameters, decrypting the encrypted part of the first and second views, based upon the respective first and second device encryption keys, comparing the first view with the second view and transmitting a signal based on the comparing,wherein the PIE and the first and second device encryption keys are not communicated among the first, second and third devices.

32. A computer readable storage controlling a computer to securely transmit and verify a multi-party agreement among N parties where N is larger than or equal to two, by the functions comprising:
- developing and transmitting, by a collection of N devices each device operated by a party to the agreement, its view of the multi-party agreement based upon non-transmitted and transmitted transaction time dependent and device dependent parameters, each view including an encrypted part based upon the device non-transmitted time dependent and device dependent parameters and an unencrypted plaintext part including the device transmitted transaction time dependent and device dependent parameters,wherein the encrypted part is encrypted using a first device encryption key according to a deterministic algorithm based on a respective non-stored Private Identification Entry (PIE) input to each device and the first device non-transmitted transaction time dependent and device dependent parameters; and
  
  receiving, by an N+1-st device comprising a verification party, the views from the N agreement parties, generating the respective device encryption keys of the N agreement parties based upon the transmitted device transaction time dependent and device dependent parameters and information known by the N+1-st device about the PIE and the device non-transmitted time dependent and device dependent parameters, decrypting the encrypted part of each view based upon the device encryption keys, comparing the views from the N agreement parties and transmitting a response signal based on the comparing,wherein the PIE and the device encryption keys are not communicated among the N agreement parties.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
InterDigital Patent Holdings, Inc. (InterDigital, Inc.)
Original Assignee
Fujitsu Limited
Inventors
Ji, Lusheng, Labrou, Yannis, Agre, Jonathan Russell
Primary Examiner(s)
Moise; Emmanuel L.
Assistant Examiner(s)
PYZOCHA, MICHAEL J

Application Number

US10/458,205
Publication Number

US 20040030894A1
Time in Patent Office

1,756 Days
Field of Search

713/155, 705/78, 380/277
US Class Current

713/155
CPC Class Codes

G06Q 20/02   involving a neutral party, ...

G06Q 20/04   Payment circuits

G06Q 20/0855   involving a third party

G06Q 20/12   specially adapted for elect...

H04L 63/0485   Networking architectures fo...

H04L 63/126   the source of the received ...

Security framework and protocol for universal pervasive transactions

First Claim

3 Assignments

0 Petitions

Accused Products

Abstract

348 Citations

32 Claims

Specification

Solutions

Use Cases

Quick Links

Security framework and protocol for universal pervasive transactions

First Claim

3 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

348 Citations

32 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links