TWI759445B - 相互認證系統 - Google Patents

相互認證系統 Download PDF

Info

Publication number
TWI759445B
TWI759445B TW107109228A TW107109228A TWI759445B TW I759445 B TWI759445 B TW I759445B TW 107109228 A TW107109228 A TW 107109228A TW 107109228 A TW107109228 A TW 107109228A TW I759445 B TWI759445 B TW I759445B
Authority
TW
Taiwan
Prior art keywords
responder
authentication
initiator
mutual
state
Prior art date
Application number
TW107109228A
Other languages
English (en)
Chinese (zh)
Other versions
TW201902177A (zh
Inventor
喬哈奈斯 亞諾杜斯 寇尼利 彼恩森
德 拉爾 法蘭西斯克斯 安東尼爾斯 瑪麗亞 凡
羅納德 飛力克斯 艾爾伯特斯 林德斯
Original Assignee
荷蘭商皇家飛利浦有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 荷蘭商皇家飛利浦有限公司 filed Critical 荷蘭商皇家飛利浦有限公司
Publication of TW201902177A publication Critical patent/TW201902177A/zh
Application granted granted Critical
Publication of TWI759445B publication Critical patent/TWI759445B/zh

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0869Network architectures or network communication protocols for network security for authentication of entities for achieving mutual authentication
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/18Network architectures or network communication protocols for network security using different networks or channels, e.g. using out of band channels
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0816Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
    • H04L9/0838Key agreement, i.e. key establishment technique in which a shared key is derived by parties as a function of information contributed by, or associated with, each of these
    • H04L9/0841Key agreement, i.e. key establishment technique in which a shared key is derived by parties as a function of information contributed by, or associated with, each of these involving Diffie-Hellman or related key agreement protocols
    • H04L9/0844Key agreement, i.e. key establishment technique in which a shared key is derived by parties as a function of information contributed by, or associated with, each of these involving Diffie-Hellman or related key agreement protocols with user authentication or key authentication, e.g. ElGamal, MTI, MQV-Menezes-Qu-Vanstone protocol or Diffie-Hellman protocols using implicitly-certified keys
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3215Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using a plurality of channels
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3234Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving additional secure or trusted devices, e.g. TPM, smartcard, USB or software token
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3271Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using challenge-response
    • H04L9/3273Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using challenge-response for mutual authentication
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/06Authentication
    • H04W12/069Authentication using certificates or pre-shared keys
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/50Secure pairing of devices
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L2209/00Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
    • H04L2209/80Wireless
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0816Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
    • H04L9/0838Key agreement, i.e. key establishment technique in which a shared key is derived by parties as a function of information contributed by, or associated with, each of these
    • H04L9/0841Key agreement, i.e. key establishment technique in which a shared key is derived by parties as a function of information contributed by, or associated with, each of these involving Diffie-Hellman or related key agreement protocols
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W4/00Services specially adapted for wireless communication networks; Facilities therefor
    • H04W4/80Services using short range communication, e.g. near-field communication [NFC], radio-frequency identification [RFID] or low energy communication
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W84/00Network topologies
    • H04W84/02Hierarchically pre-organised networks, e.g. paging networks, cellular networks, WLAN [Wireless Local Area Network] or WLL [Wireless Local Loop]
    • H04W84/10Small scale networks; Flat hierarchical networks

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Mobile Radio Communication Systems (AREA)
  • Telephonic Communication Services (AREA)
TW107109228A 2017-03-20 2018-03-19 相互認證系統 TWI759445B (zh)

Applications Claiming Priority (3)

Application Number Priority Date Filing Date Title
??17161856.4 2017-03-20
EP17161856.4A EP3379789A1 (en) 2017-03-20 2017-03-20 Mutual authentication system
EP17161856.4 2017-03-20

Publications (2)

Publication Number Publication Date
TW201902177A TW201902177A (zh) 2019-01-01
TWI759445B true TWI759445B (zh) 2022-04-01

Family

ID=58387749

Family Applications (1)

Application Number Title Priority Date Filing Date
TW107109228A TWI759445B (zh) 2017-03-20 2018-03-19 相互認證系統

Country Status (9)

Country Link
US (3) US11190506B2 (enExample)
EP (2) EP3379789A1 (enExample)
JP (1) JP7041162B6 (enExample)
CN (1) CN110476399B (enExample)
BR (1) BR112019019327A2 (enExample)
MX (1) MX2019011050A (enExample)
RU (1) RU2766440C2 (enExample)
TW (1) TWI759445B (enExample)
WO (1) WO2018172171A1 (enExample)

Families Citing this family (12)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP3379789A1 (en) * 2017-03-20 2018-09-26 Koninklijke Philips N.V. Mutual authentication system
JP7257744B2 (ja) 2018-04-25 2023-04-14 キヤノン株式会社 通信装置、制御方法、及びプログラム
US10169587B1 (en) * 2018-04-27 2019-01-01 John A. Nix Hosted device provisioning protocol with servers and a networked initiator
US11133934B2 (en) 2018-08-24 2021-09-28 Powch, LLC Systems and methods for single-step out-of-band authentication
CN109309910A (zh) * 2018-10-30 2019-02-05 深圳市元征科技股份有限公司 通信数据传输方法、系统、设备及计算机可读存储介质
JP7121646B2 (ja) * 2018-11-29 2022-08-18 キヤノン株式会社 通信装置、通信装置の制御方法及びプログラム
US11963003B2 (en) * 2019-01-10 2024-04-16 Stefan Meyer Network-connectable sensing device
TWI827906B (zh) 2021-01-29 2024-01-01 銓安智慧科技股份有限公司 訊息傳輸系統以及應用其中之使用者裝置與資訊安全硬體模組
TWI828558B (zh) * 2021-01-29 2024-01-01 銓安智慧科技股份有限公司 訊息傳輸系統以及應用其中之使用者裝置與資訊安全硬體模組
GB2604857B (en) * 2021-03-09 2023-05-17 Garrison Tech Ltd Devices and methods for performing cryptographic handshaking
CN113452704B (zh) * 2021-06-28 2022-08-09 湖南天河国云科技有限公司 基于分布式身份标识的异构工业设备可信互联方法及装置
CN113595740B (zh) * 2021-07-30 2024-12-20 北京小米移动软件有限公司 数据传输方法及装置、电子设备及存储介质

Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20060120531A1 (en) * 2004-09-08 2006-06-08 Qualcomm Incorporated Bootstrapping authentication using distinguished random challenges
US7607012B2 (en) * 2003-10-01 2009-10-20 Nokia Corporation Method for securing a communication
US20100042838A1 (en) * 2008-08-12 2010-02-18 Texas Instruments Incorporated Public Key Out-of-Band Transfer for Mutual Authentication
CN102347870A (zh) * 2010-07-29 2012-02-08 中国电信股份有限公司 一种流量安全检测方法、设备和系统
JP2015507901A (ja) * 2012-01-17 2015-03-12 イパライヴ アクティエボラグ グローバルなリアルタイム電気通信のための装置、ソフトウェア・モジュール、システムまたはビジネス・モデル
EP3051744A1 (en) * 2013-10-28 2016-08-03 Huawei Device Co., Ltd. Key configuration method and apparatus

Family Cites Families (14)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP4707373B2 (ja) 2003-12-16 2011-06-22 株式会社リコー 電子装置、電子装置の制御方法、プログラム、記録媒体、管理システム、および交換部材
US8099598B1 (en) * 2005-01-03 2012-01-17 Gary Gang Liu Secure messaging system with automatic recipient enrollment
US8015409B2 (en) * 2006-09-29 2011-09-06 Rockwell Automation Technologies, Inc. Authentication for licensing in an embedded system
US20110035592A1 (en) * 2008-12-31 2011-02-10 Interdigital Patent Holdings, Inc. Authentication method selection using a home enhanced node b profile
US9385862B2 (en) * 2010-06-16 2016-07-05 Qualcomm Incorporated Method and apparatus for binding subscriber authentication and device authentication in communication systems
US9288228B2 (en) * 2011-08-05 2016-03-15 Nokia Technologies Oy Method, apparatus, and computer program product for connection setup in device-to-device communication
US9237448B2 (en) * 2012-08-15 2016-01-12 Interdigital Patent Holdings, Inc. Enhancements to enable fast security setup
KR20180086286A (ko) * 2013-05-22 2018-07-30 콘비다 와이어리스, 엘엘씨 액세스 네트워크 지원형 부트스트랩핑
US9774576B2 (en) * 2014-03-18 2017-09-26 Em Microelectronic-Marin S.A. Authentication by use of symmetric and asymmetric cryptography
US10555170B2 (en) 2015-09-04 2020-02-04 Huawei Technologies Co., Ltd. Method and apparatus for authentication of wireless devices
US11070380B2 (en) * 2015-10-02 2021-07-20 Samsung Electronics Co., Ltd. Authentication apparatus based on public key cryptosystem, mobile device having the same and authentication method
US10735467B2 (en) * 2016-01-11 2020-08-04 Lg Electronics Inc. Method and apparatus for controlling a device using bluetooth technology
WO2017168228A1 (en) * 2016-03-08 2017-10-05 Marvell World Trade Ltd. Methods and apparatus for secure device authentication
EP3379789A1 (en) * 2017-03-20 2018-09-26 Koninklijke Philips N.V. Mutual authentication system

Patent Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7607012B2 (en) * 2003-10-01 2009-10-20 Nokia Corporation Method for securing a communication
US20060120531A1 (en) * 2004-09-08 2006-06-08 Qualcomm Incorporated Bootstrapping authentication using distinguished random challenges
US20100042838A1 (en) * 2008-08-12 2010-02-18 Texas Instruments Incorporated Public Key Out-of-Band Transfer for Mutual Authentication
CN102347870A (zh) * 2010-07-29 2012-02-08 中国电信股份有限公司 一种流量安全检测方法、设备和系统
JP2015507901A (ja) * 2012-01-17 2015-03-12 イパライヴ アクティエボラグ グローバルなリアルタイム電気通信のための装置、ソフトウェア・モジュール、システムまたはビジネス・モデル
EP3051744A1 (en) * 2013-10-28 2016-08-03 Huawei Device Co., Ltd. Key configuration method and apparatus

Also Published As

Publication number Publication date
US12231427B2 (en) 2025-02-18
CN110476399A (zh) 2019-11-19
BR112019019327A2 (pt) 2020-04-14
US20200099539A1 (en) 2020-03-26
CN110476399B (zh) 2022-04-01
US11190506B2 (en) 2021-11-30
RU2019132954A (ru) 2021-04-21
US20220086146A1 (en) 2022-03-17
EP3602997A1 (en) 2020-02-05
JP2020516118A (ja) 2020-05-28
TW201902177A (zh) 2019-01-01
JP7041162B2 (ja) 2022-03-23
US11757874B2 (en) 2023-09-12
JP7041162B6 (ja) 2022-05-31
RU2766440C2 (ru) 2022-03-15
RU2019132954A3 (enExample) 2021-08-03
EP3379789A1 (en) 2018-09-26
EP3602997B1 (en) 2022-10-05
MX2019011050A (es) 2019-10-17
US20230379327A1 (en) 2023-11-23
WO2018172171A1 (en) 2018-09-27

Similar Documents

Publication Publication Date Title
TWI759445B (zh) 相互認證系統
US11765172B2 (en) Network system for secure communication
JP5524157B2 (ja) プローブを使用する2つの装置間のセキュアなワイヤレスリンク
EP3311321B1 (en) Method for enabling a secure provisioning of a credential, and related wireless devices and servers
CN105162772B (zh) 一种物联网设备认证与密钥协商方法和装置
CN105684344B (zh) 一种密钥配置方法和装置
JP4357480B2 (ja) 無線通信認証プログラムおよび無線通信プログラム
US20160269176A1 (en) Key Configuration Method, System, and Apparatus
CN111935712A (zh) 一种基于NB-IoT通信的数据传输方法、系统及介质
CN104661219B (zh) 一种无线设备的通讯方法、无线设备和服务器
KR100978052B1 (ko) 일반 부트스트래핑 아키텍처(gba)의 인증 환경 설정관련 모바일 노드 아이디 제공 장치, 방법 및 컴퓨터프로그램 생성물
US20230052917A1 (en) Pairing method applied to short-range communication system and wireless device
WO2015100675A1 (zh) 一种网络配置方法、相关装置及系统
WO2013026415A1 (zh) 家庭网络设备的管理方法、控制设备和家庭网络设备
CN111654481B (zh) 一种身份认证方法、装置和存储介质
WO2021109668A1 (zh) 一种安全认证方法、装置及电子设备
US20230300633A1 (en) Loop prevention when reconfiguring devices
Unger et al. Bridging the UI gap for authentication in smart environments
CN120857109A (zh) 应用于无线通信网络的通信方法、装置、系统、存储介质、程序产品
HK1205620B (zh) 蓝牙设备的通讯方法、移动设备、电子签名设备和服务器