 |
|
|
|
|
|
 Title: |
US5737419:
Computer system for securing communications using split private key asymmetric cryptography
[ Derwent Title ]
|
| Country: |
US United States of America
|
| |
| Inventor: |
Ganesan, Ravi; Arlington, VA
|
| Assignee: |
Bell Atlantic Network Services, Inc., Arlington, VA
other patents from BELL ATLANTIC NETWORK SERVICES, INC. (58435) (approx. 303)
News, Profiles, Stocks and More about this company
|
| Published / Filed: |
1998-04-07
/ 1996-06-07
|
| Application Number: |
US1996000660403
|
| IPC Code: |
Advanced:
H04L 9/08;
H04L 9/32;
H04L 9/30;
Core:
H04L 9/28;
more...
IPC-7:
H04K 1/00;
|
| ECLA Code: |
H04L9/08B; H04L9/32T;
|
| U.S. Class: |
Current:
713/169;
380/030;
380/286;
713/155;
Original:
380/021;
380/030;
|
| Field of Search: |
380/021,30,49
|
| Priority Number: |
|
| Abstract: |
A programmed computer secures communications between users of a crypto-system in which each user has an associated asymmetric crypto-key with a public key portion accessible to all system users and a corresponding private key portion having a first private key portion known only to the associated user and a corresponding second private key portion. The computer includes a processor programmed to generate a temporary asymmetric crypto-key having a first temporary key portion and an associated second temporary key portion. The computer then encrypts the second temporary key portion with the first private key portion of a first user crypto-key associated with a first user to form a first encrypted message. The processor directs the issuance of the first encrypted message to a second user having access to the second private key portion of the first user crypto-key. The processor next applies the public key portion of the first user crypto-key to decrypt a second encrypted message generated by the second user, which includes the first encrypted message encrypted with the second private key portion of the first user crypto-key, to thereby authenticate the second user to the first user. The computer also includes a storage medium for storing the first temporary key portion, and the public key portion of the first user crypto-key.
|
| Attorney, Agent or Firm: |
Lowe, Price, LeBlanc & Becker ;
|
| Primary / Asst. Examiners: |
Cain, David C.;
|
| INPADOC Legal Status: |
Show legal status actions
Family Legal Status Report
|
|
|
|
|
|
|
| Parent Case: |
RELATED APPLICATIONS
This application is a continuation-in-part of application Ser. No. 08/338,128, filed Nov. 9, 1994, now U.S. Pat. No. 5,535,276.
|
| Family: |
Show 5 known family members
|
First Claim:
Show all 27 claims |
What is claimed:
1. An article of manufacture for securing communications between users of a crypto-system having a plurality of users, each of said plurality of users having an associated asymmetric crypto-key with a public key portion and a corresponding private key portion, each public key portion being accessible to the plurality of system users, each private key portion having a first private key portion known only to the associated user and a corresponding second private key portion, comprising:
- computer readable storage medium; and
- computer programming stored on said storage medium;
- wherein said stored computer programming is configured to be readable from said computer readable storage medium by a computer and thereby cause said computer to operate so as to:
- generate a temporary asymmetric crypto-key having a first temporary key portion and an associated second temporary key portion;
- encrypt said second temporary key portion with the first private key portion of a first user crypto-key associated with a first user to form a first encrypted message;
- direct issuance of said first encrypted message to a second user having access to the second private key portion of the first user crypto-key, wherein the second temporary key portion is obtainable by application of the second private key portion of the first user crypto-key to the first encrypted message to thereby authenticate the first user to the second user; and
- apply the public key portion of the first user crypto-key to decrypt a second encrypted message, which includes the first encrypted message encrypted with the second private key portion of the first user crypto-key, to thereby authenticate the second user to the first user.
|
| Background / Summary: |
Show background / summary
|
| Drawing Descriptions: |
Show drawing descriptions
|
| Description: |
Show description
|
| Forward References: |
Show 52 U.S. patent(s) that reference this one
|
|
|
|
|
|
|
| Foreign References: |
None
|
| Other Abstract Info: |
DERABS G96-333573
DERG98-239565
DERABS G98-239565
DERABS G98-286211
|
| Other References: |
C. Boyd, Cryptography and Coding: "Digital Multisignatures", 15-17 Dec. 1986, pp. 241-246.
Kohl, John et al., "The Kerberos.TM. Network Authentication Service (V5), Internet-Draft, Sep. 1, 1992, pp. 1-69.
Bellovin, Steven M. et al., "Encrypted Key Exchange: Passwork-Based Protocols Secure Against Dictionary Attacks", IEE, 1992, pp. 72-84.
Schneier, B., "Applied Cryptography, Protocols, Algorithms and Source Code in C", pp. 428-436, John Wiley & Sons, NY 1994 (re Kent, S., Privacy Enhancement for Internet Electronic Mail: Part II: Certificate Based Key Management, Internet RFC 1422, Feb. 1993).
Schneier, B., "Applied Cryptography, Protocols, Algorithms and Source Code In C", p. 424, John Wiley & Sons, NY 1994 (re Kohl, J.T., The Evolution of the Kerberos Authentication Service, EurOpen Conference Proceedings, May 1991).
Schneier, B., "Applied Cryptography", Wiley & Sons, 1994, Sections 3.4 and 16.3 and p. 576. Multiple Key Public Key.
R.L. Rivest, A. Shamir & L. Adleman, "A Method for Obtaining Digital Signatures and Public-key Cryptosystems, CACM, vol. 21, pp. 120-126, Feb. 1978.
(7 pages)
Cited by 198 patents
M.J. Wiener "Cryptoanalysis of Short RSA Secret Exponents", IEEE Transaction on Information Theory, vol. 36, No. 3, pp. 553-558.
|
|
 Nominate this for the Gallery...
|
|
