CN101411117B - 断言消息签名 - Google Patents

断言消息签名 Download PDF

Info

Publication number
CN101411117B
CN101411117B CN2007800114496A CN200780011449A CN101411117B CN 101411117 B CN101411117 B CN 101411117B CN 2007800114496 A CN2007800114496 A CN 2007800114496A CN 200780011449 A CN200780011449 A CN 200780011449A CN 101411117 B CN101411117 B CN 101411117B
Authority
CN
China
Prior art keywords
proof
assertion
message
assertion message
key
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Expired - Fee Related
Application number
CN2007800114496A
Other languages
English (en)
Chinese (zh)
Other versions
CN101411117A (zh
Inventor
T·R·格洛斯
D·M·索默
J·卡默尼施
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
International Business Machines Corp
Original Assignee
International Business Machines Corp
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by International Business Machines Corp filed Critical International Business Machines Corp
Publication of CN101411117A publication Critical patent/CN101411117A/zh
Application granted granted Critical
Publication of CN101411117B publication Critical patent/CN101411117B/zh
Expired - Fee Related legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3218Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using proof of knowledge, e.g. Fiat-Shamir, GQ, Schnorr, ornon-interactive zero-knowledge proofs
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3247Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving digital signatures
    • H04L9/3252Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving digital signatures using DSA or related signature schemes, e.g. elliptic based signatures, ElGamal or Schnorr schemes
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L2209/00Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
    • H04L2209/42Anonymization, e.g. involving pseudonyms
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L2209/00Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
    • H04L2209/56Financial cryptography, e.g. electronic payment or e-cash
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L2209/00Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
    • H04L2209/68Special signature format, e.g. XML format

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Storage Device Security (AREA)
  • Management, Administration, Business Operations System, And Electronic Commerce (AREA)
  • Information Transfer Between Computers (AREA)
CN2007800114496A 2006-05-21 2007-04-26 断言消息签名 Expired - Fee Related CN101411117B (zh)

Applications Claiming Priority (3)

Application Number Priority Date Filing Date Title
EP06010468.4 2006-05-21
EP06010468 2006-05-21
PCT/IB2007/051546 WO2007135580A2 (en) 2006-05-21 2007-04-26 Assertion message signatures

Publications (2)

Publication Number Publication Date
CN101411117A CN101411117A (zh) 2009-04-15
CN101411117B true CN101411117B (zh) 2011-12-14

Family

ID=38606884

Family Applications (1)

Application Number Title Priority Date Filing Date
CN2007800114496A Expired - Fee Related CN101411117B (zh) 2006-05-21 2007-04-26 断言消息签名

Country Status (7)

Country Link
US (1) US8341416B2 (https=)
EP (1) EP2030364B1 (https=)
JP (1) JP4731624B2 (https=)
KR (1) KR101071790B1 (https=)
CN (1) CN101411117B (https=)
TW (1) TWI497972B (https=)
WO (1) WO2007135580A2 (https=)

Families Citing this family (41)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP2437427A4 (en) * 2009-05-29 2017-07-12 Nec Corporation Signature device, signature verification device, anonymous authentication system, signing method, signature authentication method, and programs therefor
US20110088090A1 (en) * 2009-09-08 2011-04-14 Avoco Secure Ltd. Enhancements to claims based digital identities
TWI399960B (zh) * 2009-12-24 2013-06-21 Univ Vanung The use of semi-anonymous voucher data group network reporting method
US8509431B2 (en) * 2010-09-20 2013-08-13 Interdigital Patent Holdings, Inc. Identity management on a wireless device
US8782397B2 (en) * 2011-01-06 2014-07-15 International Business Machines Corporation Compact attribute for cryptographically protected messages
JP5606344B2 (ja) * 2011-01-25 2014-10-15 三菱電機株式会社 署名処理システム、鍵生成装置、署名装置、検証装置、署名処理方法及び署名処理プログラム
EP2686978B1 (en) * 2011-03-18 2017-03-15 Certicom Corp. Keyed pv signatures
WO2012126086A1 (en) * 2011-03-18 2012-09-27 Certicom Corp. Secure financial transactions
US20120278487A1 (en) * 2011-04-27 2012-11-01 Woelfel John Harold System and method of handling requests in a multi-homed reverse proxy
JP5809362B2 (ja) 2011-08-30 2015-11-10 ヒューレット−パッカード デベロップメント カンパニー エル.ピー.Hewlett‐Packard Development Company, L.P. 仮想トラステッドランタイムbiosとの通信
US9054874B2 (en) * 2011-12-01 2015-06-09 Htc Corporation System and method for data authentication among processors
CN104160405B (zh) * 2011-12-31 2017-08-15 英特尔公司 用于信任配置的安全设备环境
EP2632097A1 (en) * 2012-02-21 2013-08-28 Lleidanetworks Serveis Telemàtics S.A. Method for certifying delivery of SMS/MMS data messages to mobile terminals
TWI456427B (zh) * 2012-12-12 2014-10-11 Inst Information Industry 進行授權管理之主要管理裝置、代理管理裝置、電子裝置及其授權管理方法
GB2517127A (en) 2013-05-29 2015-02-18 Ibm Method for deriving a verification token from a credential
US9276928B2 (en) * 2013-06-15 2016-03-01 Microsoft Corporation Sending session tokens through passive clients
US9215250B2 (en) * 2013-08-20 2015-12-15 Janus Technologies, Inc. System and method for remotely managing security and configuration of compute devices
US20150066867A1 (en) * 2013-08-27 2015-03-05 eweware, inc. Systems and methods for zero-knowledge attestation validation
IL231550A0 (en) * 2014-03-17 2014-08-31 Nuvoton Technology Corp Saving secure information in external memory
EP3131231B1 (en) * 2014-04-09 2019-10-16 ICTK Holdings Co., Ltd. Authentication apparatus and method
WO2015156621A1 (ko) * 2014-04-09 2015-10-15 (주) 아이씨티케이 인증 장치 및 방법
WO2015179849A2 (en) * 2014-05-22 2015-11-26 Sypris Electronics, Llc Network authentication system with dynamic key generation
CN105376192B (zh) * 2014-07-02 2019-09-17 阿里巴巴集团控股有限公司 登录账号的提示方法和提示装置
US10305886B1 (en) * 2015-05-27 2019-05-28 Ravi Ganesan Triple blind identity exchange
EP3179670A1 (en) * 2015-12-11 2017-06-14 Gemalto Sa Secure electronic device with mechanism to provide unlinkable attribute assertion verifiable by a service provider
EP3424176B1 (en) * 2016-02-29 2021-10-13 SecureKey Technologies Inc. Systems and methods for distributed data sharing with asynchronous third-party attestation
AU2017225932C1 (en) 2016-02-29 2021-06-24 2859824 Ontario Limited Systems and methods for distributed identity verification
US20170289197A1 (en) * 2016-03-31 2017-10-05 Qualcomm Incorporated Transport layer security token binding and trusted signing
TWI633444B (zh) * 2017-06-13 2018-08-21 中華電信股份有限公司 Encryption and decryption communication method and system based on voucher signature verification
US10700862B2 (en) * 2017-09-08 2020-06-30 Fujitsu Limited Reduced data set digest
US10972274B2 (en) * 2018-08-29 2021-04-06 International Business Machines Corporation Trusted identity solution using blockchain
US10949547B2 (en) * 2018-10-05 2021-03-16 Google Llc Enclave fork support
US11374771B2 (en) 2019-03-08 2022-06-28 Ares Technologies, Inc. Methods and systems for implementing mixed protocol certificates
WO2021195219A1 (en) * 2020-03-24 2021-09-30 Ares Technologies, Inc Methods and systems for implementing mixed protocol certificates
US11991292B2 (en) * 2020-04-03 2024-05-21 Mastercard International Incorporated Systems and methods for use in appending log entries to data structures
DE102020119569B3 (de) 2020-07-24 2021-12-09 Infineon Technologies Ag Bereitstellen einer kryptografischen Information
DE102020119574B4 (de) 2020-07-24 2022-02-17 Infineon Technologies Ag Bereitstellen einer kryptografischen Information
US12052232B2 (en) * 2021-08-04 2024-07-30 Dashlane SAS Multiple relying parties in a single-sign-on environment
CN113642007B (zh) * 2021-08-30 2023-12-26 京东方科技集团股份有限公司 代码验证方法、可联网的终端设备及可读存储介质
US12003655B1 (en) 2021-12-07 2024-06-04 Amazon Technologies, Inc. Cryptographic assertions for certificate issuance
CN117353934B (zh) * 2023-09-28 2025-02-14 云海链控股股份有限公司 基于可验证随机函数的出块节点选择方法、装置、设备

Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO1995030292A1 (en) * 1994-05-03 1995-11-09 David Chaum Private signature and proof systems
CN1700641A (zh) * 2004-03-18 2005-11-23 株式会社东芝 数字签名保证系统、方法和装置

Family Cites Families (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5231668A (en) * 1991-07-26 1993-07-27 The United States Of America, As Represented By The Secretary Of Commerce Digital signature algorithm
US20030059041A1 (en) * 2001-06-26 2003-03-27 Mackenzie Philip D. Methods and apparatus for two-party generation of DSA signatures
US7184985B2 (en) * 2002-05-30 2007-02-27 Microsoft Corporation Method, system, and apparatus for providing secure access to a digital work
US20040128542A1 (en) * 2002-12-31 2004-07-01 International Business Machines Corporation Method and system for native authentication protocols in a heterogeneous federated environment
US20060174350A1 (en) * 2005-02-03 2006-08-03 Navio Systems, Inc. Methods and apparatus for optimizing identity management

Patent Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO1995030292A1 (en) * 1994-05-03 1995-11-09 David Chaum Private signature and proof systems
CN1700641A (zh) * 2004-03-18 2005-11-23 株式会社东芝 数字签名保证系统、方法和装置

Non-Patent Citations (2)

* Cited by examiner, † Cited by third party
Title
Jam Camenisch.An Efficient System for Non-transferable Anonymous Credentials with Optional Anonymity Revocation.《Lecture Notes on Computer Science》.2001,第2045卷93-118. *
Jan Camenisch.A Signature Scheme with Efficient Protocols.《Lecture Notes on Computer Science》.2003,第2576卷268-289. *

Also Published As

Publication number Publication date
WO2007135580A3 (en) 2008-01-24
US20110013771A1 (en) 2011-01-20
EP2030364A2 (en) 2009-03-04
KR20090017538A (ko) 2009-02-18
KR101071790B1 (ko) 2011-10-11
TWI497972B (zh) 2015-08-21
EP2030364B1 (en) 2015-08-12
US8341416B2 (en) 2012-12-25
TW200810485A (en) 2008-02-16
CN101411117A (zh) 2009-04-15
WO2007135580A2 (en) 2007-11-29
JP2009538082A (ja) 2009-10-29
JP4731624B2 (ja) 2011-07-27

Similar Documents

Publication Publication Date Title
CN101411117B (zh) 断言消息签名
US8744077B2 (en) Cryptographic encoding and decoding of secret data
US8819439B2 (en) Attributes in cryptographic credentials
Li et al. BCSE: Blockchain-based trusted service evaluation model over big data
US8060914B2 (en) Anonymous selectable credential system and method therefor
US20050283608A1 (en) User controlled anonymity when evaluating into a role
Buccafurri et al. Integrating digital identity and blockchain
Camenisch et al. Concepts and languages for privacy-preserving attribute-based authentication
Bemmann et al. Fully-featured anonymous credentials with reputation system
Fang et al. Privacy-enhanced distributed revocable identity management scheme based self-sovereign identity
Yang et al. A minimal disclosure signature authentication scheme based on consortium blockchain
GB2391438A (en) Electronic sealing for electronic transactions
Hernandez-Ardieta et al. An optimistic fair exchange protocol based on signature policies
Persiano et al. A secure and private system for subscription-based remote services
Buccafurri et al. Implementing advanced electronic signature by public digital identity system (SPID)
Perera et al. Almost-fully secured fully dynamic group signatures with efficient verifier-local revocation and time-bound keys
Shin et al. AAnA: Anonymous authentication and authorization based on short traceable signatures
Xu et al. Timed‐release oblivious transfer
Graebnitz et al. A Specification of an Anonymous Credential System Using BBS+ Signatures with Privacy-Preserving Revocation and Device Binding
De Salve et al. Selective Disclosure Approaches in Self-Sovereign Identity: An Experimental Comparison
Camenisch et al. Enhancing privacy of federated identity management protocols: anonymous credentials in ws-security
Omar et al. A Multivariate Convertible Group Signature Scheme
More Trust and Privacy in a Heterogeneous World
Papastergiou et al. A Secure Mobile Framework for m-services
Maetouq et al. Public Key Cryptography, Digital Signatures, and PKI

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
C14 Grant of patent or utility model
GR01 Patent grant
CF01 Termination of patent right due to non-payment of annual fee
CF01 Termination of patent right due to non-payment of annual fee

Granted publication date: 20111214