DE102011015967B4 - Method for decrypting digital data - Google Patents

Abstract

Method for decrypting encrypted digital data with a cryptographic key, whereby previously the encrypted digital data in a data memory (3) of a first terminal (1) and the cryptographic key are stored in a data memory (6) of at least one second terminal (2), with the steps of: a) transmitting a key request message from the first terminal (1) to the at least second terminal (2) by means of communication units (9, 5) arranged on the terminals (1, 2), b) encrypting the cryptographic key on the at least one second terminal (2) by a on the at least second terminal (2) arranged arithmetic unit (7) after receiving the key request message, c) transmitting the encrypted cryptographic key from the at least second terminal (2) to the first terminal (1) by means of the communication units (9, 5), d) decrypting the cryptographic key by means of a computing unit (4) arranged on the first terminal (1) and decrypting the encrypted digital data on the first terminal (1) by means of the decrypted cryptographic key by the arithmetic unit (4), characterized by Storing the cryptographic key in such a way that the cryptographic key is stored in encrypted form in the data memory of the at least second terminal by means of an alphanumeric code and decrypting the encrypted cryptographic key by means of an alphanumeric code entered at the at least second terminal before encryption of the cryptographic key in Step b).

Description

The invention relates to a method for decrypting encrypted with a cryptographic key digital data that has been deposited on a first terminal. The invention also relates to a computer program and a computer system for this purpose.

Mobility both in the private sector and in the business environment is becoming increasingly important. Due to the advancing development in the field of computer technology, it has been possible to construct computers or computing machines in such a way that they are suitable for mobile use. Examples of such mobile devices are netbooks, notebooks, tablet PCs and not least also smartphones.

Such mobile terminals usually have a, in particular touch-sensitive, screen on which corresponding data can be displayed. In addition, the mobile terminals have corresponding computing units and communication units in order to establish a communication link with other devices or terminals for the purpose of data exchange. By expanding a wireless Internet infrastructure (keyword UMTS), it is also possible, regardless of the power supply and an in-house network infrastructure to connect to the Internet and upload or download corresponding data.

In addition to the progressing mobility, the question of safety is becoming increasingly important. Because especially in the field of mobile devices is an increased risk to recognize that stored on the mobile devices data can get into the wrong hands. Because unlike fixed computing systems, such as desktop PCs, mobile devices tend to run the risk of these devices being lost or lost, so that unauthorized third parties can easily gain access to the data stored in the mobile device.

Thus, today safety-critical and sensitive data, such as business data or business documents that are stored on mobile devices, with the help of appropriate programs encrypted deposited on the respective mobile device. With the help of a cryptographic key, the encrypted data can then be decrypted again in order to be able to view and / or edit the content of the security-critical data. It is of great importance that the cryptographic key, with which the digital data can be decrypted and also encrypted, is only available to the actual authorized user. Unauthorized third parties should be denied access to this secret cryptographic key.

The problem here is to safely deposit the key in an appropriate manner. So it goes without saying that the secret key with which the data has been encrypted, not deposited on the same mobile device on which finally the encrypted digital data are stored. It is known, for example, that such cryptographic keys are stored on a smart card. Before the mobile terminal is used or for decrypting the encrypted digital data, the smartcard is then inserted into a device provided for this purpose, so that the data stored on the smartcard, in particular the cryptographic key, can be temporarily read out and used for encryption and / or decryption of the digital data can be used.

However, such smart cards have the problem that the respective terminal must have a corresponding device so that the data can be read from the smart card. However, such a device for reading the smart card data, however, do not have all the terminals, in particular not such mobile terminals, which have to do without such devices for reasons of space or design reasons.

From the DE 10 2008 063 864 A1 For example, a method for authenticating a person to an electronic data processing system by means of an electronic key is known. The electronic key is in this case replaced by a mobile phone, with the help of a classic challenge-response authentication method, the person is authenticated by the target system sends a challenge message to the terminal and the terminal with a private key stored on the terminal signs this message sends back.

From "BlueID: Login for Windows; As of 01.01.2011 (Internet: URL: http://www.blueid.de/images/stories/downloads/de/blueid-login-for-windows/Bedienungsanleitung_BluelD-Login-for-Windows_web-en.pdf) is a procedure discloses, with a computer by means of a mobile phone can be unlocked and unlocked.

task

It is therefore an object of the present invention to provide an improved method, with encrypted digital data can also be decrypted without special devices.

solution

The object is achieved with the method according to claim 1, a computer program according to claim 7 and the devices according to claims 8, 9 and 10.

The core idea of the present invention consists in the fact that the secret cryptographic key used for encryption is stored on a second terminal, which if necessary is transmitted to the first terminal on which the encrypted digital data is stored. However, before the transmission, the cryptographic key is encrypted, so that the transmission of the key itself is secure.

Both in the business world as well as in the private sector is often the constellation to be found that a user in addition to a notebook or netbook (first mobile device), are stored on the security-critical digital data encrypted, even via a smartphone (second digital terminal), such as For example, an iPhone, has, in addition to a memory for storing data and a computing unit for performing complex algorithms. According to the invention, the encrypted digital data is stored on the first terminal, while the secret cryptographic key, which must be used to decrypt the digital data, is deposited on the second terminal. If the digital data is to be decrypted on the first terminal, the first terminal sends a corresponding key request message to the second terminal to request that the secret cryptographic key be transmitted to the first terminal. However, in order to make the transmission secure, which is extremely important, in particular in the case of simple transmission methods such as Bluetooth or unsecured WLAN, the cryptographic key is encrypted on the second terminal and only then transmitted via the communication connection existing between the first and second terminals.

Despite the dangers of simple transmission techniques such as Bluetooth, the secret key can be transmitted over such a communication link.

If the encrypted cryptographic key was received on the first terminal, then it is decrypted there with the aid of a corresponding arithmetic unit so that the encrypted digital data can then be decrypted using the just decrypted cryptographic key. After completing the session and re-encrypting the digital data, the cryptographic key is deleted on the first terminal so that it must be transferred again from the second terminal at a new session.

So that the cryptographic key is also securely stored on the second terminal, it is proposed according to the invention that the cryptographic key is stored in encrypted form in the memory of the second terminal by means of an alphanumeric code.

This secures the cryptographic key against direct and immediate unauthorized access. Upon receipt of the key request message, the user at the second terminal is prompted to enter an alphanumeric code. On the basis of this input of the alphanumeric code, the cryptographic key is then decrypted, so that the further method steps b) to e) can be carried out.

Thus, it becomes possible for a cryptographic key stored on a smartphone or netbook to be transmitted by means of simple and unsafe or unsecured communication connections to a terminal on which the digital data encrypted with this cryptographic key are stored. Because many mobile devices in particular have for communication with other devices communication links that are considered safe by today's standards. The present inventive method is therefore particularly suitable for terminals that can exchange data using wireless, in particular point-to-point connections. The transmission of the key request message and the encrypted cryptographic key is carried out by means of an existing between both devices wireless point-to-point communication link.

It is particularly advantageous here if a cryptographic key pair is generated on the first terminal, from which a first subkey with the key request message is transmitted to the second terminal. The cryptographic key is then encrypted in step b) with the aid of the transmitted first subkey of the cryptographic key pair and sent back to the first terminal. With the help of a second subkey of the previously generated cryptographic key pair can then decrypt the previously encrypted with the first subkey cryptographic key so as to bring the digital data in plain text.

To further increase security, it is particularly advantageous if the secret, cryptographic key is previously broken down into a plurality of key parts. These various key parts are now each deposited on one of a plurality of second terminals, so that the entire cryptographic key is not only stored on a single second terminal. The first terminal now sets up a communication link to each of the second terminals and transmits to each of the second terminals a key request message, each of the second terminals encrypting the respective key part and transmitting it to the first terminal. The first terminal receives the individual encrypted key parts and decrypts them, after which the cryptographic key is reassembled from the individual key parts. Thereafter, the cryptographic key can be used to decrypt the encrypted digital data.

This method is particularly advantageous when the encrypted data is highly sensitive data. For if the cryptographic key was deposited only on a second terminal, there would be the danger that theft of the second terminal could potentially give unauthorized third parties access to the data. By distributing the cryptographic key to several second terminals in the form of key parts, an eventual attacker needs all second terminals to assemble the cryptographic key from the individual key parts.

Especially with simple communication connections and communication technologies such as Bluetooth, it is important that the communication connection is secured against unauthorized access. Therefore, it is particularly advantageous if, during the establishment of a communication connection between the first and the second terminal on one of the terminals, a random alphanumeric code is generated, which is then displayed on one of the terminals to a user. Then the user is prompted to also enter an alphanumeric string on the other terminal. Subsequently, the two strings, i. the input character string is compared with the generated character string and, if it matches, the communication connection is established. This can ensure that the user has the authorization for both terminals and one of the terminals does not falsely establish a communication connection to a foreign terminal.

Incidentally, the object is also achieved with a computer program with program code means set up to carry out the method according to the invention when the computer program is executed on a terminal.

In addition, the object is also achieved with a computer system comprising a first and a second terminal, set up for carrying out the method according to the invention.

• 1 - schematische Darstellung eines Rechnersystems mit einem ersten und einem zweiten Endgerät;
• 2 - Ablaufschema des vorliegenden erfindungsgemäßen Verfahrens;
• 3 - schematische Darstellung eines Rechnersystems mit mehreren zweiten Endgeräten.

The invention will be described by way of example with reference to the accompanying drawings. Show it:

• 1 schematic representation of a computer system with a first and a second terminal;
• 2 - Flow chart of the present inventive method;
• 3 - Schematic representation of a computer system with several second terminals.

1 shows a computer system consisting of a first mobile terminal 1 and a second mobile terminal 2 , The first mobile device 1 For example, a notebook, netbook or tablet PC Such as an iPad, on the security-critical and therefore encrypted stored digital data are included. The mobile device 2 is in this embodiment, a smartphone, such as an iPhone.

A terminal in the sense of the present invention is thus a computing machine, which in particular has a corresponding man-machine interface for the use of the terminal.

The mobile device 1 has a communication unit 2 as well as a data memory 3 , each with a computing unit, such as a processor 4 stay in contact. Also the mobile terminal 2 has a communication unit 5 and a data store 6 on, which also with a computing unit, such as a processor 7 stay in contact.

Before the procedure begins, as shown schematically in 2 is shown is on both the first terminal and on the second terminal 2 by the user an appropriate program 11 and 12 started, that of the respective arithmetic unit 4 and 7 of the respective terminal 1 and 2 is performed. Subsequently, a communication connection 8th via the communication units 2 and 5 of the terminals 1 and 2 made, so that the two terminals 1 and 2 Can exchange data with each other. Such a communication connection 8th may be, for example, a Bluetooth communication connection. This is a non-secure communication connection, ie devices in the environment can receive and evaluate the signals emitted by a terminal. For a secure and encrypted connection such a communication protocol or such a communication connection is not suitable because the necessary transmission bandwidth is missing.

After the application 11 on the terminal 1 and the application 12 on the terminal 2 started and the communication connection 8th between the two terminals 1 and 2 is made, then the actual process is carried out, as it is in 2 is shown schematically. Now that the application 11 on the first terminal 1 and the application 12 on the second terminal 2 started and the communication connection between two terminals 1 and 2 is made by the program 11 on the first terminal 1 a cryptographic key pair consisting of a private and a public key generated, resulting in block 13 is shown. In block 14 will now be over the communication link 8th a key request message to the second terminal 2 sent, wherein the key request message contains the public subkey of the cryptographic key pair.

Upon receipt of the key request message and the public subkey in block 15 , in a further step (block 16 ) the user on the second terminal 2 prompted to enter a pin code. Using the input pin code in block 16 then becomes the one in the memory of the second terminal 2 stored cryptographic keys decrypted.

In the block 17 will then be in block 16 decrypted cryptographic keys using the public subkey, as in block 15 was received, encrypted. The so in block 17 encrypted cryptographic keys can now be decrypted only with the secret second subkey of the cryptographic key pair.

Then, in block 18 , the encrypted cryptographic key is over the communication link 8th to the first terminal 1 transferred and from this in block 19 receive.

With the help of the secret subkey of the cryptographic key pair, the encrypted cryptographic key contained in the message is now in block 20 decrypts and is now on the first terminal 1 in unencrypted form. The cryptographic key thus present can now be used to decrypt the encrypted digital data in block 21 be used so that the user of the first terminal 1 Access to the encrypted digital data.

Is the application or the computer program 11 terminated on the first terminal, so the previously transmitted cryptographic key is deleted. Only when restarting the application 11 the key is requested with a newly generated cryptographic key pair.

Thus, a cryptographic key can be securely transmitted even if there is no connection encryption between two terminals.

3 shows a computer system consisting of a first terminal 1 on which the encrypted digital data are stored and a plurality of second terminals 2a - 2d , The cryptographic key S, with which the digital data on the terminal 1 can be decrypted, is in a majority of key parts S ₁ - S ₄ disassembled and on the respective terminals 2a - 2d deposited. That's the key part S ₁ on the second terminal 2a , the key part S ₂ on the terminal 2 B , the key part S ₃ on the second terminal 2c and the key part S ₄ on the second terminal 2d deposited. In this case, each of the individual key parts taken for decryption of the digital data is useless because only in the entirety of the key parts of the cryptographic key can be assembled and the data can be decrypted.

The first terminal 1 now sends a key request message to each of the second terminals 2a - 2d , whereupon the second Edgeräte 2a - 2d respond and the respective key part deposited on them S ₁ - S ₄ encrypt and send to the first terminal 1 return. The first terminal 1 now receives every key part S ₁ - S ₄ from the individual second terminals and decrypted accordingly, the individual key parts. After the individual key parts S ₁ - S ₄ now in plain text on the first device 1 are present, the individual key parts S ₁ - S ₄ assembled with the aid of the arithmetic unit to the cryptographic key S.

Subsequently, the digital data on the first terminal 1 be decrypted using the composite cryptographic key S. With the help of such an arrangement, the security can be significantly increased, as for the decryption of the digital data now all four second terminals 2a - 2d necessary. If one of the terminals is missing, decryption is excluded.

Claims (10)

Method for decrypting encrypted with a cryptographic key digital data, wherein previously the encrypted digital data in a data memory (3) of a first terminal (1) and the cryptographic key in a data memory (6) at least one second terminal (2) are deposited, comprising the steps of: a) transmitting a key request message from the first terminal (1) to the at least second terminal (2) by means of communication units (9, 5) arranged on the terminals (1, 2), b) encrypting the cryptographic key on the at least second terminal (2) by one on the at least second terminal (2) arranged computing unit (7) after receiving the key request message, c) transmitting the encrypted cryptographic key from the at least second terminal (2) to the first terminal (1) by means of the communication units (9, 5), d) decrypt of the cryptographic key on the first terminal (1) by one on the first terminal (1) and (e) decrypting the encrypted digital data on the first terminal (1) by means of the decrypted cryptographic key by the computing unit (4), characterized by storing the cryptographic key such that the cryptographic key is encrypted by means of an alphanumeric code the data memory of the at least second terminal is deposited, and decrypting the encrypted cryptographic key by means of an alphanumeric code entered at the at least second terminal before encryption of the cryptographic key in step b). Method according to Claim 1 , characterized in that a wireless point-to-point communication connection between the terminals is previously established by means of the communication units (9, 5) and the data exchange between the terminals takes place via this communication connection. Method according to Claim 1 or 2 characterized by transmitting a first subkey of a cryptographic key pair generated on the first terminal (1) from the first terminal (1) to the at least second terminal (2) with the key request message in step a), encrypting the cryptographic key in step b) of the first subkey and decrypting the encrypted cryptographic key in step d) by means of a second subkey of the cryptographic key pair. Method according to one of the preceding claims, characterized in that the cryptographic key is previously broken down into a plurality of key parts and the key parts are each deposited on one of a plurality of second terminals, wherein after the transmission of the encrypted key parts from the second terminals to the first terminal the encrypted key parts are decrypted and reassembled into the cryptographic key. Method according to one of the preceding claims, characterized by establishing a communication connection between the first and the at least second terminal via the communication units with the steps: - generating a random alphanumeric string on one of the terminals by the computing unit of the terminal and displaying the generated character string, - comparing the randomly generated alphanumeric character string having an alphanumeric character string entered on a user device on at least one of the further terminals and transmitted to the terminal, and - establishing the communication connection in dependence on the comparison. Method according to one of the preceding claims, characterized in that the terminals are mobile terminals and the communication units are set up for establishing wireless communication links. Computer program with program code means stored in particular on a machine-readable carrier, set up for carrying out the method according to one of the preceding claims, when the computer program is executed on the terminals. First terminal (1) arranged to carry out the above method, comprising a data memory (3) for storing encrypted digital data, a communication unit (9) and a computing unit (4), wherein the first terminal (1) for transmitting a Key request message to a second terminal (2), configured to receive an encrypted cryptographic key, to decrypt the encrypted cryptographic key and to decrypt the encrypted digital data stored in the data memory by means of the decrypted cryptographic key. Second terminal (2), arranged for carrying out the above method, with a data memory (6) for storing at least one cryptographic key, a communication unit (5) and a computing unit (7), wherein the second terminal (2) for receiving a key request message for encrypting the cryptographic stored in the memory Key and for transmitting the encrypted cryptographic key is set up. Computer system comprising a first terminal and at least one second terminal, configured for carrying out the above method.

Images