WO2009017198A1 - 検証装置及びプログラム - Google Patents

検証装置及びプログラム Download PDF

Info

Publication number
WO2009017198A1
WO2009017198A1 PCT/JP2008/063777 JP2008063777W WO2009017198A1 WO 2009017198 A1 WO2009017198 A1 WO 2009017198A1 JP 2008063777 W JP2008063777 W JP 2008063777W WO 2009017198 A1 WO2009017198 A1 WO 2009017198A1
Authority
WO
WIPO (PCT)
Prior art keywords
correctness
authentication
certificate
indicative
template
Prior art date
Application number
PCT/JP2008/063777
Other languages
English (en)
French (fr)
Inventor
Tomoaki Morijiri
Koji Okada
Tatsuro Ikeda
Minoru Nishizawa
Hidehisa Takamizawa
Yoshihiro Fujii
Asahiko Yamada
Original Assignee
Kabushiki Kaisha Toshiba
Toshiba Solutions Corporation
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Kabushiki Kaisha Toshiba, Toshiba Solutions Corporation filed Critical Kabushiki Kaisha Toshiba
Priority to EP08791992.4A priority Critical patent/EP2184888B1/en
Priority to KR1020097027472A priority patent/KR101099954B1/ko
Priority to CN2008800232641A priority patent/CN101689995B/zh
Publication of WO2009017198A1 publication Critical patent/WO2009017198A1/ja
Priority to US12/695,781 priority patent/US8332648B2/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/50Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
    • G06F21/57Certifying or maintaining trusted computer platforms, e.g. secure boots or power-downs, version controls, system software checks, secure updates or assessing vulnerabilities
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • G06F21/32User authentication using biometric data, e.g. fingerprints, iris scans or voiceprints
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3226Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using a predetermined code, e.g. password, passphrase or PIN
    • H04L9/3231Biological data, e.g. fingerprint, voice or retina
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3247Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving digital signatures
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3263Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving certificates, e.g. public key certificate [PKC] or attribute certificate [AC]; Public key infrastructure [PKI] arrangements
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L2209/00Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
    • H04L2209/80Wireless
    • H04L2209/805Lightweight hardware, e.g. radio-frequency identification [RFID] or sensor

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Software Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • General Physics & Mathematics (AREA)
  • Physics & Mathematics (AREA)
  • Health & Medical Sciences (AREA)
  • General Health & Medical Sciences (AREA)
  • Biomedical Technology (AREA)
  • Biodiversity & Conservation Biology (AREA)
  • Life Sciences & Earth Sciences (AREA)
  • Storage Device Security (AREA)
  • Management, Administration, Business Operations System, And Electronic Commerce (AREA)
  • Computer And Data Communications (AREA)

Abstract

 本発明の一実施形態においては、第1認証コンテキストAC1にテンプレートBTの正当性を示すテンプレート証明書CertBTと、第1装置評価情報の正当性を示す第1装置評価証明書Cert1とを含める一方、第2認証コンテキストAC2に第2装置評価情報の正当性を示す第2装置評価証明書Cert2を含めている。そして、第1及び第2認証コンテキストAC1,AC2を検証する際に、これらテンプレート証明書CertBT、第1及び第2評価証明書Cert1,Cert2を検証する。従って、認証に用いたテンプレートや認証コンテキストに含まれる装置評価情報の正当性を検証できる。
PCT/JP2008/063777 2007-08-01 2008-07-31 検証装置及びプログラム WO2009017198A1 (ja)

Priority Applications (4)

Application Number Priority Date Filing Date Title
EP08791992.4A EP2184888B1 (en) 2007-08-01 2008-07-31 Verifying device and program
KR1020097027472A KR101099954B1 (ko) 2007-08-01 2008-07-31 검증 장치 및 프로그램을 기록한 컴퓨터로 판독가능한 기록 매체
CN2008800232641A CN101689995B (zh) 2007-08-01 2008-07-31 验证装置以及方法
US12/695,781 US8332648B2 (en) 2007-08-01 2010-01-28 Verification apparatus and program

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
JP2007-201139 2007-08-01
JP2007201139A JP5038807B2 (ja) 2007-08-01 2007-08-01 検証装置及びプログラム

Related Child Applications (1)

Application Number Title Priority Date Filing Date
US12/695,781 Continuation US8332648B2 (en) 2007-08-01 2010-01-28 Verification apparatus and program

Publications (1)

Publication Number Publication Date
WO2009017198A1 true WO2009017198A1 (ja) 2009-02-05

Family

ID=40304426

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/JP2008/063777 WO2009017198A1 (ja) 2007-08-01 2008-07-31 検証装置及びプログラム

Country Status (6)

Country Link
US (1) US8332648B2 (ja)
EP (1) EP2184888B1 (ja)
JP (1) JP5038807B2 (ja)
KR (1) KR101099954B1 (ja)
CN (1) CN101689995B (ja)
WO (1) WO2009017198A1 (ja)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2018016160A1 (ja) * 2016-07-21 2018-01-25 株式会社日立製作所 署名検証システム、署名検証方法及び記憶媒体

Families Citing this family (10)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US8698594B2 (en) * 2008-07-22 2014-04-15 Synaptics Incorporated System, device and method for securing a user device component by authenticating the user of a biometric sensor by performance of a replication of a portion of an authentication process performed at a remote computing device
US20130151267A1 (en) * 2011-12-08 2013-06-13 PVM International, Inc. System to allow for a pharmacist to store a filled prescription in an electronic lockbox for subsequent retrieval by a customer after identity verification
JP2013161104A (ja) * 2012-02-01 2013-08-19 Hitachi Media Electoronics Co Ltd 生体認証システム、生体認証装置、および、生体認証方法
US20140208105A1 (en) * 2013-01-23 2014-07-24 GILBARCO, S.r.I. Automated Content Signing for Point-of-Sale Applications in Fuel Dispensing Environments
CN104767613B (zh) 2014-01-02 2018-02-13 腾讯科技(深圳)有限公司 签名验证方法、装置及系统
US10248429B2 (en) * 2014-04-25 2019-04-02 Hewlett Packard Enterprise Development Lp Configuration based on a blueprint
EP3872666A1 (fr) * 2015-01-30 2021-09-01 Enrico Maim Systèmes et procédés pour la gestion d'engagements en réseau d'entités sécurisées
US10218510B2 (en) 2015-06-01 2019-02-26 Branch Banking And Trust Company Network-based device authentication system
US10040574B1 (en) * 2016-04-26 2018-08-07 James William Laske, Jr. Airplane anti-hijacking system
US11082430B1 (en) * 2018-05-31 2021-08-03 Amazon Technologies, Inc. Device authorizations using certificates and service access policy templates

Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2006011768A (ja) 2004-06-25 2006-01-12 Toshiba Corp 認証システム及び装置
WO2007007690A1 (ja) * 2005-07-07 2007-01-18 Kabushiki Kaisha Toshiba 認証システム、装置及びプログラム

Family Cites Families (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7249093B1 (en) * 1999-09-07 2007-07-24 Rysix Holdings, Llc Method of and system for making purchases over a computer network
AU2001251701A1 (en) * 2000-02-25 2001-09-03 Identix Incorporated Secure transaction system
JP4654497B2 (ja) * 2000-08-31 2011-03-23 ソニー株式会社 個人認証システム、個人認証方法、および情報処理装置、並びにプログラム提供媒体
JP4581200B2 (ja) * 2000-08-31 2010-11-17 ソニー株式会社 個人認証システム、個人認証方法、および情報処理装置、並びにプログラム提供媒体
BR0202843A (pt) * 2002-07-23 2003-12-09 Taua Biomatica Ltda Equipamento chancelador digital para a assinatura de documentos eletrônicos interface de programação de aplicação segura para acesso a um eqiuipamento chancelador digital, métodos eletrônicos para cadastramento de impressão digital utilizando um equipamento chancelador digital e para assinar digitalmente documentos a partir da identificação positiva de um usuário
US20060293925A1 (en) * 2005-06-22 2006-12-28 Leonard Flom System for storing medical records accessed using patient biometrics

Patent Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2006011768A (ja) 2004-06-25 2006-01-12 Toshiba Corp 認証システム及び装置
WO2007007690A1 (ja) * 2005-07-07 2007-01-18 Kabushiki Kaisha Toshiba 認証システム、装置及びプログラム

Non-Patent Citations (2)

* Cited by examiner, † Cited by third party
Title
HIDEHISA TAKAMIZAWA ET AL.: "Biometric Ninsho Context o Mochiita Online System", COMPUTER SECURITY SYMPOSIUM 2005 RONBUNSHU, vol. 2005, no. 13, 26 October 2005 (2005-10-26), pages 313 - 318, XP008128925 *
KOJI OKADA; TATSURO IKEDA; HIDEHISA TAKAMIZAWA; TOSHIAKI SAISHO: "Extensible Personal Authentication Framework using Biometrics and PKI", IWAP2004, pages 96 - 107

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2018016160A1 (ja) * 2016-07-21 2018-01-25 株式会社日立製作所 署名検証システム、署名検証方法及び記憶媒体
JP2018014622A (ja) * 2016-07-21 2018-01-25 株式会社日立製作所 署名検証システム、署名検証方法及びプログラム

Also Published As

Publication number Publication date
US8332648B2 (en) 2012-12-11
KR101099954B1 (ko) 2011-12-28
EP2184888B1 (en) 2019-03-27
CN101689995A (zh) 2010-03-31
EP2184888A1 (en) 2010-05-12
JP5038807B2 (ja) 2012-10-03
EP2184888A4 (en) 2015-11-18
US20100180124A1 (en) 2010-07-15
KR20100017972A (ko) 2010-02-16
JP2009037417A (ja) 2009-02-19
CN101689995B (zh) 2012-09-12

Similar Documents

Publication Publication Date Title
WO2009017198A1 (ja) 検証装置及びプログラム
FR2912578B1 (fr) Methode d'authentification d'un document electronique et methode de verification d'un document ainsi authentifie.
WO2008064013A3 (en) Adaptive authentication options
PH12020500435A1 (en) Document verification and identity verification method and device
JP2019519987A5 (ja)
WO2007079595A8 (en) Multi-mode credential authentication
EP2120392A4 (en) CERTIFICATE AUTHENTICATION METHOD, CERTIFICATE ISSUING DEVICE, AND AUTHENTICATION DEVICE
EP1848143A4 (en) MEMBER CERTIFICATE PURCHASING, MEMBER CERTIFICATE DISCHARGE, GROUP SIGNATURE DEVICE, AND GROUP SIGNATURE VERIFICATION DEVICE
EP2851856A3 (en) System, apparatus, program, and method for authentication
TW200620009A (en) Authentication method for authenticating a first party to a second party
WO2008051700A3 (en) Method and system for authentication bonding two devices and sending authenticated events
DE602008003704D1 (de) Verfahren zur Einstellung von Referenzinformationen für die biometrische Authentifizierung und Gerät
WO2007116355A3 (en) Challenge-response authentication of token by means physical uncloneable function
EP2252961A4 (en) STRONG AUTHENTICATION TOOKING UNIQUE PASSWORDS AND SIGNATURES AFTER SERVER ATTACK VERIFICATION
WO2009031159A3 (en) A method and system for secure authentication
GB2447399B (en) Centralized identity verification and/or password validation
TWI365387B (en) Methods of developing, generating and validating test program for semiconductor test system and semiconductor test system
EP2456119A4 (en) ANONYMOUS AUTHENTICATION SIGNATURE SYSTEM, USER DEVICE, VERIFICATION DEVICE, SIGNATURE PROCESS, VERIFICATION METHOD AND PROGRAM THEREFOR
WO2011143235A3 (en) Audible authentication for wireless network enrollment
DE602006011554D1 (de) System und Verfahren für biometrische Authentifizierung
JP2011523725A5 (ja)
DE602005026239D1 (de) Authentifizierungsverfahren und Verfahren, Einrichtung, System und Programm für Lieferung von geheimen Informationen zwischen Proximity-Geräten
WO2006074021A3 (en) Identity verification systems and methods
EP2037388A4 (en) CERTIFICATION DEVICE, VERIFICATION DEVICE, VERIFICATION SYSTEM, COMPUTER PROGRAM, AND INTEGRATED CIRCUIT
WO2008015458A3 (en) System and method for authenticating a workflow

Legal Events

Date Code Title Description
WWE Wipo information: entry into national phase

Ref document number: 200880023264.1

Country of ref document: CN

121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 08791992

Country of ref document: EP

Kind code of ref document: A1

ENP Entry into the national phase

Ref document number: 20097027472

Country of ref document: KR

Kind code of ref document: A

WWE Wipo information: entry into national phase

Ref document number: 2008791992

Country of ref document: EP

NENP Non-entry into the national phase

Ref country code: DE