Apparatus and method for generating digital images
First Claim
1. An apparatus for generating a digital image, wherein the apparatus comprises:
- an image generation unit for generating the digital image having a first security module which is adapted for cryptographically linking a first secret unambiguously identifying the first security module, and securely deposited therein, with the digital image such that the integrity of the digital image can be ascertained using the result of this first cryptographic linkage, the image generation unit comprising a processor unit that has implemented therein a normal runtime environment and a secure, trustworthy runtime environment, wherein the secure runtime environment is isolated from the normal runtime environment and serves for executing security-critical applications; and
a portable data carrier which can be introduced into the apparatus, wherein the portable data carrier is furnished with a second security module which is adapted for cryptographically linking a second, different secret unambiguously identifying the portable data carrier, and securely deposited therein, with the digital image such that the identity of the portable data carrier can be ascertained using the result of this second cryptographic linkage, the digital image being signed using both the first and second cryptographic linkages to form a doubly signed digital image, wherein the integrity of the digital image and the identity of the portable data carrier are both identifiable using the doubly signed digital image.
2 Assignments
0 Petitions
Accused Products
Abstract
An apparatus and a method are arranged for generating a digital image. The apparatus comprises an image generation unit for generating the digital image having a first security module adapted for cryptographically linking a first secret unambiguously identifying the first security module, and securely deposited therein, with the digital image such that the integrity of the digital image can be ascertained using the result of this cryptographic linkage. Further, the apparatus comprises a portable data carrier which can be introduced into the apparatus. The portable data carrier is furnished with a second security module which is adapted for cryptographically linking a second secret unambiguously identifying the portable data carrier, and securely deposited therein, with the digital image such that the identity of the portable data carrier can be ascertained using the result of this cryptographic linkage.
15 Citations
9 Claims
-
1. An apparatus for generating a digital image, wherein the apparatus comprises:
-
an image generation unit for generating the digital image having a first security module which is adapted for cryptographically linking a first secret unambiguously identifying the first security module, and securely deposited therein, with the digital image such that the integrity of the digital image can be ascertained using the result of this first cryptographic linkage, the image generation unit comprising a processor unit that has implemented therein a normal runtime environment and a secure, trustworthy runtime environment, wherein the secure runtime environment is isolated from the normal runtime environment and serves for executing security-critical applications; and a portable data carrier which can be introduced into the apparatus, wherein the portable data carrier is furnished with a second security module which is adapted for cryptographically linking a second, different secret unambiguously identifying the portable data carrier, and securely deposited therein, with the digital image such that the identity of the portable data carrier can be ascertained using the result of this second cryptographic linkage, the digital image being signed using both the first and second cryptographic linkages to form a doubly signed digital image, wherein the integrity of the digital image and the identity of the portable data carrier are both identifiable using the doubly signed digital image. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A method for generating a digital image, wherein the method comprises the following steps:
-
generating a digital image by means of an image generation unit of an apparatus for generating a digital image, the image generation unit comprising a processor unit that has implemented therein a normal runtime environment and a secure, trustworthy runtime environment, wherein the secure runtime environment is isolated from the normal runtime environment and serves for executing security-critical applications; cryptographically linking the digital image with a first secret which is securely deposited in a first security module which is part of the image generation unit, and unambiguously identifies the first security module, wherein the integrity of the digital image can be ascertained using the result of this first cryptographic linkage; and cryptographically linking the digital image with a second, different secret which is securely deposited in a second security module which is part of a portable data carrier which can be introduced into the apparatus for generating a digital image, and unambiguously identifies the second security module, wherein the identity of the portable data carrier can be ascertained using the result of this second cryptographic linkage, the digital image being signed using both the first and second cryptographic linkages to form a doubly signed digital image, wherein the integrity of the digital image and the identity of the portable data carrier are both identifiable using the doubly signed digital image.
-
Specification