WO2004102918A3 - Key agreement and transport protocol - Google Patents

Key agreement and transport protocol Download PDF

Info

Publication number
WO2004102918A3
WO2004102918A3 PCT/CA2004/000727 CA2004000727W WO2004102918A3 WO 2004102918 A3 WO2004102918 A3 WO 2004102918A3 CA 2004000727 W CA2004000727 W CA 2004000727W WO 2004102918 A3 WO2004102918 A3 WO 2004102918A3
Authority
WO
WIPO (PCT)
Prior art keywords
value
session key
transport protocol
key agreement
cryptographic function
Prior art date
Application number
PCT/CA2004/000727
Other languages
French (fr)
Other versions
WO2004102918A2 (en
Inventor
Marinus Struik
Original Assignee
Certicom Corp
Marinus Struik
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Family has litigation
First worldwide family litigation filed litigation Critical https://patents.darts-ip.com/?family=33449796&utm_source=google_patent&utm_medium=platform_link&utm_campaign=public_patent_search&patent=WO2004102918(A3) "Global patent litigation dataset” by Darts-ip is licensed under a Creative Commons Attribution 4.0 International License.
Application filed by Certicom Corp, Marinus Struik filed Critical Certicom Corp
Priority to EP04733283A priority Critical patent/EP1642437B1/en
Priority to JP2006529491A priority patent/JP4781269B2/en
Priority to CA2525894A priority patent/CA2525894C/en
Priority to AT04733283T priority patent/ATE523017T1/en
Publication of WO2004102918A2 publication Critical patent/WO2004102918A2/en
Publication of WO2004102918A3 publication Critical patent/WO2004102918A3/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/12Applying verification of the received information
    • H04L63/126Applying verification of the received information the source of the received data
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0816Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
    • H04L9/0838Key agreement, i.e. key establishment technique in which a shared key is derived by parties as a function of information contributed by, or associated with, each of these
    • H04L9/0841Key agreement, i.e. key establishment technique in which a shared key is derived by parties as a function of information contributed by, or associated with, each of these involving Diffie-Hellman or related key agreement protocols
    • H04L9/0844Key agreement, i.e. key establishment technique in which a shared key is derived by parties as a function of information contributed by, or associated with, each of these involving Diffie-Hellman or related key agreement protocols with user authentication or key authentication, e.g. ElGamal, MTI, MQV-Menezes-Qu-Vanstone protocol or Diffie-Hellman protocols using implicitly-certified keys
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3236Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using cryptographic hash functions
    • H04L9/3242Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using cryptographic hash functions involving keyed hash functions, e.g. message authentication codes [MACs], CBC-MAC or HMAC
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F7/00Methods or arrangements for processing data by operating upon the order or content of the data handled
    • G06F7/60Methods or arrangements for performing computations using a digital non-denominational number representation, i.e. number representation without radix; Computing devices using combinations of denominational and non-denominational quantity representations, e.g. using difunction pulse trains, STEELE computers, phase computers
    • G06F7/72Methods or arrangements for performing computations using a digital non-denominational number representation, i.e. number representation without radix; Computing devices using combinations of denominational and non-denominational quantity representations, e.g. using difunction pulse trains, STEELE computers, phase computers using residue arithmetic
    • G06F7/724Finite field arithmetic
    • G06F7/725Finite field arithmetic over elliptic curves

Abstract

A key establishment protocol includes the generation of a value of cryptographic function, typically a hash, of a session key and public information. This value is transferred between correspondents together with the information necessary to generate the session key. Provided the session key has not been compromised, the value of the cryptographic function will be the same at each of the correspondents. The value of the cryptographic function cannot be compromised or modified without access to the session key.
PCT/CA2004/000727 2003-05-16 2004-05-17 Key agreement and transport protocol WO2004102918A2 (en)

Priority Applications (4)

Application Number Priority Date Filing Date Title
EP04733283A EP1642437B1 (en) 2003-05-16 2004-05-17 Key agreement and transport protocol
JP2006529491A JP4781269B2 (en) 2003-05-16 2004-05-17 Key agreement and transport protocol
CA2525894A CA2525894C (en) 2003-05-16 2004-05-17 Key agreement and transport protocol
AT04733283T ATE523017T1 (en) 2003-05-16 2004-05-17 KEY AGREEMENT AND TRANSPORT PROTOCOL

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
US10/440,486 US7334127B2 (en) 1995-04-21 2003-05-16 Key agreement and transport protocol
US10/440,486 2003-05-16

Publications (2)

Publication Number Publication Date
WO2004102918A2 WO2004102918A2 (en) 2004-11-25
WO2004102918A3 true WO2004102918A3 (en) 2005-05-06

Family

ID=33449796

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CA2004/000727 WO2004102918A2 (en) 2003-05-16 2004-05-17 Key agreement and transport protocol

Country Status (6)

Country Link
US (1) US7334127B2 (en)
EP (1) EP1642437B1 (en)
JP (2) JP4781269B2 (en)
AT (1) ATE523017T1 (en)
CA (1) CA2525894C (en)
WO (1) WO2004102918A2 (en)

Families Citing this family (35)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR100571820B1 (en) * 2003-10-20 2006-04-17 삼성전자주식회사 Conference session key distribution method on ID-based cryptographic system
CA2543796C (en) * 2003-10-28 2015-12-08 Certicom Corp. Method and apparatus for verifiable generation of public keys
US7788480B2 (en) * 2003-11-05 2010-08-31 Cisco Technology, Inc. Protected dynamic provisioning of credentials
US7328956B2 (en) * 2004-05-27 2008-02-12 Silverbrook Research Pty Ltd Printer comprising a printhead and at least two printer controllers connected to a common input of the printhead
US20060294312A1 (en) * 2004-05-27 2006-12-28 Silverbrook Research Pty Ltd Generation sequences
US7735944B2 (en) 2004-05-27 2010-06-15 Silverbrook Research Pty Ltd Printer comprising two printhead modules and at least two printer controllers
US7757086B2 (en) * 2004-05-27 2010-07-13 Silverbrook Research Pty Ltd Key transportation
US7427117B2 (en) * 2004-05-27 2008-09-23 Silverbrook Research Pty Ltd Method of expelling ink from nozzles in groups, alternately, starting at outside nozzles of each group
US7549718B2 (en) * 2004-05-27 2009-06-23 Silverbrook Research Pty Ltd Printhead module having operation controllable on basis of thermal sensors
US7484831B2 (en) * 2004-05-27 2009-02-03 Silverbrook Research Pty Ltd Printhead module having horizontally grouped firing order
US7545932B2 (en) * 2004-10-29 2009-06-09 Thomson Licensing Secure authenticated channel
CN101048970B (en) 2004-10-29 2012-05-23 汤姆森许可贸易公司 Secure authenticated channel
EP1906587A3 (en) 2004-10-29 2008-04-16 Thomson Licensing, Inc. Secure authenticated channel
AU2008201456B2 (en) * 2004-10-29 2010-04-29 Thomson Licensing Secure authenticated channel
EP1813051B1 (en) * 2004-11-12 2017-09-13 Dublin City University Identity based encryption
JP2006155045A (en) * 2004-11-26 2006-06-15 Sony Corp Electronic value information transmission system, and electronic value information transmission method
KR100675836B1 (en) * 2004-12-10 2007-01-29 한국전자통신연구원 Authentication method for a link protection in EPON
US8099598B1 (en) * 2005-01-03 2012-01-17 Gary Gang Liu Secure messaging system with automatic recipient enrollment
DE102005026982A1 (en) * 2005-06-10 2006-12-14 Siemens Ag Method for agreeing a security key between at least one first and a second communication subscriber for securing a communication connection
US7627760B2 (en) * 2005-07-21 2009-12-01 Microsoft Corporation Extended authenticated key exchange
US7694141B2 (en) 2005-07-26 2010-04-06 Microsoft Corporation Extended authenticated key exchange with key confirmation
US8190895B2 (en) * 2005-08-18 2012-05-29 Microsoft Corporation Authenticated key exchange with derived ephemeral keys
US7908482B2 (en) * 2005-08-18 2011-03-15 Microsoft Corporation Key confirmed authenticated key exchange with derived ephemeral keys
US7783041B2 (en) 2005-10-03 2010-08-24 Nokia Corporation System, method and computer program product for authenticating a data agreement between network entities
US7664955B2 (en) 2006-03-07 2010-02-16 Atheros Communications, Inc. Establishing shared information in a network
JPWO2007125877A1 (en) * 2006-04-28 2009-09-10 パナソニック株式会社 Communication device and communication system
US7913085B2 (en) * 2007-06-15 2011-03-22 Koolspan, Inc. System and method of per-packet keying
CN101917270B (en) * 2010-08-03 2012-08-22 中国科学院软件研究所 Weak authentication and key agreement method based on symmetrical password
JP5238045B2 (en) * 2011-02-02 2013-07-17 トムソン ライセンシング Secure authentication channel
JP5306405B2 (en) 2011-03-31 2013-10-02 株式会社東芝 Information processing apparatus and program
EP2819057B1 (en) * 2013-06-24 2017-08-09 Nxp B.V. Data processing system, method of initializing a data processing system, and computer program product
CN104243493A (en) * 2014-10-11 2014-12-24 上海众人科技有限公司 Network identity authentication method and system
US9509679B2 (en) 2014-11-21 2016-11-29 Dropbox, Inc. System and method for non-replayable communication sessions
CN115150513A (en) * 2017-08-03 2022-10-04 IPCom两合公司 User equipment adapted for sending service authentication messages
CN111031365B (en) * 2020-01-13 2022-01-21 深圳市网安信科技有限公司 User authentication system suitable for cloud broadcast television network

Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP0739106A1 (en) * 1995-04-21 1996-10-23 Certicom Corp. Method for secure session key generation and authentication
EP1282260A1 (en) * 2001-07-30 2003-02-05 SCM Microsystems GmbH Key agreement method for secure communication system

Family Cites Families (13)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US4200770A (en) 1977-09-06 1980-04-29 Stanford University Cryptographic apparatus and method
DE3915262A1 (en) 1988-05-18 1989-11-30 Asea Brown Boveri Method for generating authenticated secret codes
US4956863A (en) 1989-04-17 1990-09-11 Trw Inc. Cryptographic method and apparatus for public key exchange with authentication
ATE187588T1 (en) * 1993-08-17 1999-12-15 R3 Security Engineering Ag PROCEDURE FOR DIGITAL SIGNATURE AND PROCEDURE FOR KEY AGREEMENT
US5491749A (en) 1993-12-30 1996-02-13 International Business Machines Corporation Method and apparatus for entity authentication and key distribution secure against off-line adversarial attacks
US5586186A (en) 1994-07-15 1996-12-17 Microsoft Corporation Method and system for controlling unauthorized access to information distributed to users
US5761305A (en) 1995-04-21 1998-06-02 Certicom Corporation Key agreement and transport protocol with implicit signatures
AU5266596A (en) 1995-04-21 1996-11-07 Certicom Corp. Method for signature and session key generation
CA2176972C (en) 1995-05-17 2008-11-25 Scott A. Vanstone Key agreement and transport protocol with implicit signatures
EP1075746B1 (en) 1998-05-01 2005-11-23 Certicom Corp. Authenticated key agreement protocol
US6192474B1 (en) 1998-07-31 2001-02-20 Lucent Technologies Inc. Method for establishing a key using over-the-air communication and password protocol and password protocol
US7047408B1 (en) * 2000-03-17 2006-05-16 Lucent Technologies Inc. Secure mutual network authentication and key exchange protocol
US7076656B2 (en) * 2001-04-05 2006-07-11 Lucent Technologies Inc. Methods and apparatus for providing efficient password-authenticated key exchange

Patent Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP0739106A1 (en) * 1995-04-21 1996-10-23 Certicom Corp. Method for secure session key generation and authentication
EP1282260A1 (en) * 2001-07-30 2003-02-05 SCM Microsystems GmbH Key agreement method for secure communication system

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
MENEZES A J ET AL: "Handbook of applied cryptography, PASSAGE", HANDBOOK OF APPLIED CRYPTOGRAPHY, CRC PRESS SERIES ON DISCRETE MATHEMATICES AND ITS APPLICATIONS, BOCA RATON, FL, CRC PRESS, US, 1997, pages 402,499, XP002247693, ISBN: 0-8493-8523-7 *

Also Published As

Publication number Publication date
JP2006529064A (en) 2006-12-28
CA2525894A1 (en) 2004-11-25
EP1642437A2 (en) 2006-04-05
US20040081321A1 (en) 2004-04-29
JP4781269B2 (en) 2011-09-28
CA2525894C (en) 2013-04-16
US7334127B2 (en) 2008-02-19
JP5171991B2 (en) 2013-03-27
WO2004102918A2 (en) 2004-11-25
ATE523017T1 (en) 2011-09-15
EP1642437B1 (en) 2011-08-31
JP2011182454A (en) 2011-09-15

Similar Documents

Publication Publication Date Title
WO2004102918A3 (en) Key agreement and transport protocol
CA2174260A1 (en) Key agreement and transport protocol
WO2006119184A3 (en) Protecting one-time-passwords against man-in-the-middle attacks
DE60326092D1 (en) SAVING AND AUTHENTICATION OF DATA TRANSACTIONS
WO2008121157A3 (en) Cryptographic key management system facilitating secure access of data portions to corresponding groups of users
WO2006078572A3 (en) Asymmetric crypto-graphy with rolling key security
WO2006130616A3 (en) Augmented single factor split key asymmetric cryptography-key generation and distributor
WO2007011991A3 (en) Hybrid symmetric/asymmetric cryptography with user authentication
WO2006101685A3 (en) Method of integrating qkd with ipsec
WO2008066671A3 (en) Indentity-based-encryption extensions formed using multiple instances of an identity based encryption scheme
NO20044028L (en) Use of isogenies for the development of cryptosystems
AU2003262908A1 (en) Certificate-based encryption and public key infrastructure
HK1099863A1 (en) System and method for securing data
WO2004100496A3 (en) Ends - messaging protocol that recovers and has backward security
WO2008021855A3 (en) Ad-hoc network key management
TW200633462A (en) Stateless hardware security module
JP2003008565A5 (en)
WO2007075156A3 (en) Cryptography related to keys
WO2007011679A3 (en) Systems and methods of ambiguity envelope encryption scheme and applications
WO2008005789A3 (en) Secure escrow and recovery of media device content keys
WO2006023334A3 (en) Permutation data transform to enhance security
ATE490619T1 (en) ONE-SIDED AUTHENTICATION
WO2001084766A3 (en) System and method for encryption using transparent keys
AU2001249280A1 (en) Method and apparatus for secure transmission of data
GB0013356D0 (en) A method of validating an encrypted message

Legal Events

Date Code Title Description
AK Designated states

Kind code of ref document: A2

Designated state(s): AE AG AL AM AT AU AZ BA BB BG BR BW BY BZ CA CH CN CO CR CU CZ DE DK DM DZ EC EE EG ES FI GB GD GE GH GM HR HU ID IL IN IS JP KE KG KP KR KZ LC LK LR LS LT LU LV MA MD MG MK MN MW MX MZ NA NI NO NZ OM PG PH PL PT RO RU SC SD SE SG SK SL SY TJ TM TN TR TT TZ UA UG US UZ VC VN YU ZA ZM ZW

AL Designated countries for regional patents

Kind code of ref document: A2

Designated state(s): BW GH GM KE LS MW MZ NA SD SL SZ TZ UG ZM ZW AM AZ BY KG KZ MD RU TJ TM AT BE BG CH CY CZ DE DK EE ES FI FR GB GR HU IE IT LU MC NL PL PT RO SE SI SK TR BF BJ CF CG CI CM GA GN GQ GW ML MR NE SN TD TG

121 Ep: the epo has been informed by wipo that ep was designated in this application
WWE Wipo information: entry into national phase

Ref document number: 2525894

Country of ref document: CA

WWE Wipo information: entry into national phase

Ref document number: 2006529491

Country of ref document: JP

WWE Wipo information: entry into national phase

Ref document number: 2004733283

Country of ref document: EP

WWP Wipo information: published in national office

Ref document number: 2004733283

Country of ref document: EP