WO2010053319A3 - 보안 키 교환 장치 및 방법과 이에 관한 시스템 - Google Patents
보안 키 교환 장치 및 방법과 이에 관한 시스템 Download PDFInfo
- Publication number
- WO2010053319A3 WO2010053319A3 PCT/KR2009/006532 KR2009006532W WO2010053319A3 WO 2010053319 A3 WO2010053319 A3 WO 2010053319A3 KR 2009006532 W KR2009006532 W KR 2009006532W WO 2010053319 A3 WO2010053319 A3 WO 2010053319A3
- Authority
- WO
- WIPO (PCT)
- Prior art keywords
- key
- verified
- security key
- same
- public
- Prior art date
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/30—Public key, i.e. encryption algorithm being computationally infeasible to invert or user's encryption keys not requiring secrecy
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/06—Network architectures or network communication protocols for network security for supporting key management in a packet data network
- H04L63/061—Network architectures or network communication protocols for network security for supporting key management in a packet data network for key exchange, e.g. in peer-to-peer networks
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L12/00—Data switching networks
- H04L12/28—Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0823—Network architectures or network communication protocols for network security for authentication of entities using certificates
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0884—Network architectures or network communication protocols for network security for authentication of entities by delegation of authentication, e.g. a proxy authenticates an entity to be authenticated on behalf of this entity vis-à-vis an authentication entity
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/08—Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
- H04L9/0816—Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
- H04L9/0819—Key transport or distribution, i.e. key establishment techniques where one party creates or otherwise obtains a secret value, and securely transfers it to the other(s)
- H04L9/083—Key transport or distribution, i.e. key establishment techniques where one party creates or otherwise obtains a secret value, and securely transfers it to the other(s) involving central third party, e.g. key distribution center [KDC] or trusted third party [TTP]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/08—Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
- H04L9/0816—Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
- H04L9/0838—Key agreement, i.e. key establishment technique in which a shared key is derived by parties as a function of information contributed by, or associated with, each of these
- H04L9/0841—Key agreement, i.e. key establishment technique in which a shared key is derived by parties as a function of information contributed by, or associated with, each of these involving Diffie-Hellman or related key agreement protocols
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Security & Cryptography (AREA)
- Computing Systems (AREA)
- Computer Hardware Design (AREA)
- General Engineering & Computer Science (AREA)
- Theoretical Computer Science (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
- Lock And Its Accessories (AREA)
Abstract
본 발명은 양측 단말 간의 보안 키 교환을 통해 보안 키를 공유할 수 있도록 하는 장치 및 방법과 이를 지원하는 시스템에 관한 것이다. 이를 위해 자체적으로 생성한 공개키를 두 개로 분할하고, 상기 분할된 두 개의 공개키를 서로 다른 경로를 통해 상대 장치로 전달하며, 상대 장치로부터 전달되는 두 개의 공개키를 이용하여 상대 장치의 공개키를 예측한다. 그리고 상기 예측된 공개키에 대한 검증을 수행하고, 상기 검증이 이루어진 공개키를 이용하여 마스터 키를 생성한다. 그 후 상기 생성된 마스터 키에 대한 검증을 수행하며, 상기 검증이 이루어진 마스터 키를 사용하여 상대 장치와의 데이터 송신 및 수신을 수행하도록 한다.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
US13/128,106 US8380992B2 (en) | 2008-11-06 | 2009-11-06 | Device and method for security key exchange and system pertaining to same |
Applications Claiming Priority (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
KR1020080109944A KR20100050846A (ko) | 2008-11-06 | 2008-11-06 | 키 교환 시스템 및 방법 |
KR10-2008-0109944 | 2008-11-06 |
Publications (2)
Publication Number | Publication Date |
---|---|
WO2010053319A2 WO2010053319A2 (ko) | 2010-05-14 |
WO2010053319A3 true WO2010053319A3 (ko) | 2010-07-29 |
Family
ID=42153406
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
PCT/KR2009/006532 WO2010053319A2 (ko) | 2008-11-06 | 2009-11-06 | 보안 키 교환 장치 및 방법과 이에 관한 시스템 |
Country Status (3)
Country | Link |
---|---|
US (1) | US8380992B2 (ko) |
KR (1) | KR20100050846A (ko) |
WO (1) | WO2010053319A2 (ko) |
Families Citing this family (15)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
WO2012084484A1 (en) * | 2010-12-21 | 2012-06-28 | Koninklijke Kpn N.V. | Operator-assisted key establishment |
EP2697786B1 (en) * | 2011-04-13 | 2017-10-04 | Nokia Technologies Oy | Method and apparatus for identity based ticketing |
US8601144B1 (en) * | 2012-11-27 | 2013-12-03 | Sansay, Inc. | Systems and methods for automatic ICE relay candidate creation |
US10212597B2 (en) * | 2013-10-30 | 2019-02-19 | Nec Corporation | Apparatus, system and method for secure direct communication in proximity based services |
US9240982B2 (en) | 2013-12-27 | 2016-01-19 | Canon Information And Imaging Solutions, Inc. | Method for associating an image-forming device, a mobile device, and a user |
KR102125562B1 (ko) * | 2014-06-18 | 2020-06-22 | 삼성전자주식회사 | 키 공유 방법 및 장치 |
CN104102714A (zh) * | 2014-07-16 | 2014-10-15 | 上海交通大学 | 基于累加器和布隆过滤器的外包数据查询验证方法及系统 |
EP3248359A4 (en) * | 2015-01-22 | 2018-09-05 | Visa International Service Association | Method and system for establishing a secure communication tunnel |
KR102399665B1 (ko) | 2015-09-11 | 2022-05-19 | 삼성전자주식회사 | 전자 장치의 근접 인증 방법 및 그 장치 |
KR20170035665A (ko) | 2015-09-23 | 2017-03-31 | 삼성에스디에스 주식회사 | 키 교환 장치 및 방법 |
DE102016220734A1 (de) * | 2016-10-21 | 2018-04-26 | Robert Bosch Gmbh | Verfahren und Vorrichtung zum Erzeugen eines kryptographischen Schlüssels |
CN106941487B (zh) | 2017-02-24 | 2021-01-05 | 创新先进技术有限公司 | 一种数据发送方法及装置 |
CN111342955B (zh) * | 2018-12-19 | 2023-04-18 | 北京沃东天骏信息技术有限公司 | 一种通信方法及其设备、计算机存储介质 |
US11683380B2 (en) * | 2021-02-09 | 2023-06-20 | Cisco Technology, Inc. | Methods for seamless session transfer without re-keying |
KR102648499B1 (ko) * | 2021-03-11 | 2024-03-19 | 한국전자통신연구원 | 기계 학습 기반 키 생성 장치 및 방법 |
Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
KR100720726B1 (ko) * | 2003-10-09 | 2007-05-22 | 삼성전자주식회사 | Rsa 알고리즘을 이용한 보안유지시스템 및 그 방법 |
KR20080051947A (ko) * | 2006-12-07 | 2008-06-11 | 인하대학교 산학협력단 | 변형 디피 헬만 기반 키교환 방법 |
US20080229104A1 (en) * | 2007-03-16 | 2008-09-18 | Samsung Electronics Co., Ltd. | Mutual authentication method between devices using mediation module and system therefor |
Family Cites Families (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CA2369304A1 (en) * | 2002-01-30 | 2003-07-30 | Cloakware Corporation | A protocol to hide cryptographic private keys |
US7660419B1 (en) * | 2004-08-13 | 2010-02-09 | Texas Instruments Incorporated | System and method for security association between communication devices within a wireless personal and local area network |
US7596697B2 (en) * | 2005-02-14 | 2009-09-29 | Tricipher, Inc. | Technique for providing multiple levels of security |
-
2008
- 2008-11-06 KR KR1020080109944A patent/KR20100050846A/ko not_active Application Discontinuation
-
2009
- 2009-11-06 US US13/128,106 patent/US8380992B2/en active Active
- 2009-11-06 WO PCT/KR2009/006532 patent/WO2010053319A2/ko active Application Filing
Patent Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
KR100720726B1 (ko) * | 2003-10-09 | 2007-05-22 | 삼성전자주식회사 | Rsa 알고리즘을 이용한 보안유지시스템 및 그 방법 |
KR20080051947A (ko) * | 2006-12-07 | 2008-06-11 | 인하대학교 산학협력단 | 변형 디피 헬만 기반 키교환 방법 |
US20080229104A1 (en) * | 2007-03-16 | 2008-09-18 | Samsung Electronics Co., Ltd. | Mutual authentication method between devices using mediation module and system therefor |
Also Published As
Publication number | Publication date |
---|---|
WO2010053319A2 (ko) | 2010-05-14 |
US20110211700A1 (en) | 2011-09-01 |
KR20100050846A (ko) | 2010-05-14 |
US8380992B2 (en) | 2013-02-19 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
WO2010053319A3 (ko) | 보안 키 교환 장치 및 방법과 이에 관한 시스템 | |
IL209799A (en) | A method, device, and encryption key generation system | |
WO2014025687A3 (en) | Systems and methods for provisioning and using multiple trusted security zones on an electronic device | |
MX2011013511A (es) | Acceso a medidor seguro desde un lector movil. | |
EP2524334A4 (en) | System and methods for generating unclonable security keys in integrated circuits | |
WO2008042871A3 (en) | Methods and apparatus for securely signing on to a website via a security website | |
WO2015026839A3 (en) | Secure installation of encryption enabling software onto electronic devices | |
EP2086162A4 (en) | System, device, method and program for authenticating communication partner by means of electronic certificate including personal information | |
GB2472169A (en) | System and method for providing a system management command | |
EP2016701A4 (en) | DYNAMIC DISTRIBUTED KEY SYSTEM AND METHOD FOR MANAGING IDENTITY, AUTHENTICATION OF SERVERS, DATA SECURITY AND PREVENTING ATTACKS OF MIDDLE MAN | |
WO2013106094A3 (en) | System and method for device registration and authentication | |
WO2009075589A3 (en) | Methods and apparatus relating to a security system | |
WO2009034696A1 (ja) | 端末装置の認証方法、端末装置及びプログラム | |
GB2533727A (en) | Registry apparatus, agent device, application providing apparatus and corresponding methods | |
WO2009158086A3 (en) | Techniques for ensuring authentication and integrity of communications | |
EP2348447A3 (en) | A computer implemented method for generating a set of identifiers from a private key, computer implemented method and computing device | |
WO2008117550A1 (ja) | ソフトウェアicカードシステム、管理サーバ、端末、サービス提供サーバ、サービス提供方法及びプログラム | |
EP2124381A4 (en) | METHOD, SYSTEM AND DEVICE FOR GENERATING A GROUP KEY | |
AU2011355202B2 (en) | Device and method for protecting a security module from manipulation attempts in a field device | |
EP2410691A4 (en) | METHOD OF IDENTITY AUTHENTICATION AND SHARED KEY GENERATION | |
RS20120254A1 (en) | SYSTEM AND PROCEDURE FOR BIOMETRIC CONTROL OF HIGH SECURITY ACCESS | |
EP2195963A4 (en) | SAFETY MEASURES TO PREVENT UNAUTHORIZED DECISION | |
SG143127A1 (en) | Client credential based secure session authentication method and apparatus | |
MX2012004070A (es) | Sistema y metodo de seguridad de transaccion electronica. | |
GB2458426A (en) | Password protection system and method |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
121 | Ep: the epo has been informed by wipo that ep was designated in this application |
Ref document number: 09825002 Country of ref document: EP Kind code of ref document: A2 |
|
NENP | Non-entry into the national phase |
Ref country code: DE |
|
WWE | Wipo information: entry into national phase |
Ref document number: 13128106 Country of ref document: US |
|
122 | Ep: pct application non-entry in european phase |
Ref document number: 09825002 Country of ref document: EP Kind code of ref document: A2 |