WO1998047258A3 - Bilateral authentication and encryption system - Google Patents

Bilateral authentication and encryption system Download PDF

Info

Publication number
WO1998047258A3
WO1998047258A3 PCT/US1998/004408 US9804408W WO9847258A3 WO 1998047258 A3 WO1998047258 A3 WO 1998047258A3 US 9804408 W US9804408 W US 9804408W WO 9847258 A3 WO9847258 A3 WO 9847258A3
Authority
WO
WIPO (PCT)
Prior art keywords
stations
station
unique
secret
communication link
Prior art date
Application number
PCT/US1998/004408
Other languages
French (fr)
Other versions
WO1998047258A2 (en
Inventor
Guy L Fielder
Paul N Alito
Original Assignee
Guy L Fielder
Paul N Alito
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Guy L Fielder, Paul N Alito filed Critical Guy L Fielder
Priority to EP98939048A priority Critical patent/EP0966813A2/en
Priority to CA002294170A priority patent/CA2294170A1/en
Priority to JP54388498A priority patent/JP2002508892A/en
Publication of WO1998047258A2 publication Critical patent/WO1998047258A2/en
Publication of WO1998047258A3 publication Critical patent/WO1998047258A3/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0816Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
    • H04L9/0819Key transport or distribution, i.e. key establishment techniques where one party creates or otherwise obtains a secret value, and securely transfers it to the other(s)
    • H04L9/0822Key transport or distribution, i.e. key establishment techniques where one party creates or otherwise obtains a secret value, and securely transfers it to the other(s) using key encryption key
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0891Revocation or update of secret information, e.g. encryption key update or rekeying
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3226Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using a predetermined code, e.g. password, passphrase or PIN
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L2209/00Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
    • H04L2209/34Encoding or coding, e.g. Huffman coding or error correction

Abstract

A bilateral system for authenticating remote transceiving stations through use of station identifiers (IDs), and through use of passwords which are used only one time, and thereafter exchanging messages through use of an encrytion key which is changed after each system connection. Upon authentication, each of the stations independently creates a secret session encryption key (27) in response to the other station's unique station identifier that is exchanged over a communication link in cleartext. The station identifiers are used as tags to look up a unique static secret (20) and a unique dynamic secret (21) which are known only by the two stations, but which are not exchanged over the communication link. The secrets are independently combined by a bit-shuffle algorithm (22), the result of which is applied to a secure hash function (23) to produce a message digest (24).
PCT/US1998/004408 1997-03-10 1998-03-09 Bilateral authentication and encryption system WO1998047258A2 (en)

Priority Applications (3)

Application Number Priority Date Filing Date Title
EP98939048A EP0966813A2 (en) 1997-03-10 1998-03-09 Bilateral authentication and encryption system
CA002294170A CA2294170A1 (en) 1997-03-10 1998-03-09 Bilateral authentication and encryption system
JP54388498A JP2002508892A (en) 1997-03-10 1998-03-09 Two-way authentication and encryption system

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
US81345797A 1997-03-10 1997-03-10
US08/813,457 1997-03-10

Publications (2)

Publication Number Publication Date
WO1998047258A2 WO1998047258A2 (en) 1998-10-22
WO1998047258A3 true WO1998047258A3 (en) 1999-01-21

Family

ID=25212423

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/US1998/004408 WO1998047258A2 (en) 1997-03-10 1998-03-09 Bilateral authentication and encryption system

Country Status (4)

Country Link
EP (1) EP0966813A2 (en)
JP (1) JP2002508892A (en)
CA (1) CA2294170A1 (en)
WO (1) WO1998047258A2 (en)

Families Citing this family (20)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CA2296967A1 (en) * 1999-02-02 2000-08-02 Gregory S. Caso Show-thru prevention and user authentication of uplink bursts without overhead
US7162452B1 (en) 1999-03-25 2007-01-09 Epstein Michael A Key distribution via a memory device
US6735310B1 (en) 1999-09-17 2004-05-11 International Business Machines Corporation Technique of password encryption and decryption for user authentication in a federated content management system
FI19992343A (en) 1999-10-29 2001-04-30 Nokia Mobile Phones Ltd A method and arrangement for reliably identifying a user on a computer system
US8077861B2 (en) 2004-08-12 2011-12-13 Cmla, Llc Permutation data transform to enhance security
US7577250B2 (en) 2004-08-12 2009-08-18 Cmla, Llc Key derivation functions to enhance security
KR20060053003A (en) * 2003-03-14 2006-05-19 톰슨 라이센싱 Wlan session management techniques with secure rekeying and logoff
KR101366185B1 (en) * 2004-08-12 2014-02-24 씨엠엘에이 엘엘씨 Permutation Data Transformation to Enhance Security
FR2902253B1 (en) 2006-06-13 2009-04-03 Ingenico Sa METHOD AND DEVICE FOR AUTHENTICATING A USER
US8719128B2 (en) * 2006-12-15 2014-05-06 Tcf Financial Corporation Computer-facilitated secure account-transaction
GB0625851D0 (en) 2006-12-22 2007-02-07 Isis Innovation Improvements in communications security
US9449319B1 (en) * 2008-06-30 2016-09-20 Amazon Technologies, Inc. Conducting transactions with dynamic passwords
JP4666240B2 (en) 2008-07-14 2011-04-06 ソニー株式会社 Information processing apparatus, information processing method, program, and information processing system
CN101631017B (en) * 2008-07-14 2012-11-28 索尼株式会社 Information processing device, and information processing system
US8934625B2 (en) 2009-03-25 2015-01-13 Pacid Technologies, Llc Method and system for securing communication
US8539241B2 (en) 2009-03-25 2013-09-17 Pacid Technologies, Llc Method and system for securing communication
TW201105083A (en) 2009-03-25 2011-02-01 Pacid Technologies Llc Token for securing communication
US8726032B2 (en) 2009-03-25 2014-05-13 Pacid Technologies, Llc System and method for protecting secrets file
US8782408B2 (en) 2009-03-25 2014-07-15 Pacid Technologies, Llc Method and system for securing communication
US8479021B2 (en) 2011-09-29 2013-07-02 Pacid Technologies, Llc Secure island computing system and method

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5434918A (en) * 1993-12-14 1995-07-18 Hughes Aircraft Company Method for providing mutual authentication of a user and a server on a network
US5544245A (en) * 1993-06-10 1996-08-06 Kokusai Denshin Denwa Kabushiki Kaisha Mutual authentication/cipher key delivery system
US5661807A (en) * 1993-07-30 1997-08-26 International Business Machines Corporation Authentication system using one-time passwords
US5666415A (en) * 1995-07-28 1997-09-09 Digital Equipment Corporation Method and apparatus for cryptographic authentication
US5708710A (en) * 1995-06-23 1998-01-13 Motorola, Inc. Method and apparatus for authentication in a communication system

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5544245A (en) * 1993-06-10 1996-08-06 Kokusai Denshin Denwa Kabushiki Kaisha Mutual authentication/cipher key delivery system
US5661807A (en) * 1993-07-30 1997-08-26 International Business Machines Corporation Authentication system using one-time passwords
US5434918A (en) * 1993-12-14 1995-07-18 Hughes Aircraft Company Method for providing mutual authentication of a user and a server on a network
US5708710A (en) * 1995-06-23 1998-01-13 Motorola, Inc. Method and apparatus for authentication in a communication system
US5666415A (en) * 1995-07-28 1997-09-09 Digital Equipment Corporation Method and apparatus for cryptographic authentication

Also Published As

Publication number Publication date
JP2002508892A (en) 2002-03-19
CA2294170A1 (en) 1998-10-22
WO1998047258A2 (en) 1998-10-22
EP0966813A2 (en) 1999-12-29

Similar Documents

Publication Publication Date Title
WO1998047258A3 (en) Bilateral authentication and encryption system
NZ333220A (en) Providing anonymous data transfer in GSM mobile phone system by authenticating mobile station without using unique identifier
GB2296413B (en) A method of messaging in a communciation system
WO2002068418A3 (en) Authentication and distribution of keys in mobile ip network
WO1999025093A3 (en) Secure handshake protocol
EP0840476A3 (en) Encrypted communication system that limits the damage caused when a secret key has been leaked
CA2371329A1 (en) Method and apparatus for initializing secure communications among, and for exclusively pairing wireless devices
PL319786A1 (en) Method of and apparatus for safety identyfying a mobile user roaming within a communication network
EP0792042A3 (en) Method of effecting communications using common cryptokey
WO1999027678A3 (en) Security of data connections
EP1135887A4 (en) Message identification with confidentiality, integrity, and source authentication
CA2169746A1 (en) Method for Key Distribution Using Quantum Cryptography
CA2546553A1 (en) System and method for provisioning and authenticating via a network
WO1998049856A3 (en) Method for user identity protection
WO2001003365A8 (en) Distributed group key management scheme for secure many-to-many communication
CA2130396A1 (en) Method and System for Key Distribution and Authentication in a Data Communication Network
WO2001026322A3 (en) Key exchange for a network architecture
CA2141318A1 (en) Method and Apparatus for Efficient Real-Time Authentication and Encryption in a Communication System
CA2165874A1 (en) Method for Secure Session Key Generation
CA2282942A1 (en) Efficient authentication with key update
TW431106B (en) Method for transferring sensitive information using initially unsecured communication
CA2264809A1 (en) Method and apparatus for encrypting radio traffic in a telecommunications network
CA2305264A1 (en) Method and apparatus for generating a stream cipher
DE602005011639D1 (en) BOOTSTRAPPING AUTHENTICATION USING DISTINGUISHED RANDOM QUESTIONS
MY130611A (en) Methods and arrangements for secure linking of entity authentication and ciphering key generation

Legal Events

Date Code Title Description
AK Designated states

Kind code of ref document: A2

Designated state(s): CA JP

AL Designated countries for regional patents

Kind code of ref document: A2

Designated state(s): AT BE CH DE DK ES FI FR GB GR IE IT LU MC NL PT SE

DFPE Request for preliminary examination filed prior to expiration of 19th month from priority date (pct application filed before 20040101)
AK Designated states

Kind code of ref document: A3

Designated state(s): CA JP

AL Designated countries for regional patents

Kind code of ref document: A3

Designated state(s): AT BE CH DE DK ES FI FR GB GR IE IT LU MC NL PT SE

121 Ep: the epo has been informed by wipo that ep was designated in this application
ENP Entry into the national phase

Ref document number: 2294170

Country of ref document: CA

Ref country code: CA

Ref document number: 2294170

Kind code of ref document: A

Format of ref document f/p: F

WWE Wipo information: entry into national phase

Ref document number: 1998939048

Country of ref document: EP

NENP Non-entry into the national phase

Ref country code: CA

WWP Wipo information: published in national office

Ref document number: 1998939048

Country of ref document: EP

NENP Non-entry into the national phase

Ref country code: JP

Ref document number: 1998543884

Format of ref document f/p: F

WWW Wipo information: withdrawn in national office

Ref document number: 1998939048

Country of ref document: EP