WO2021025403A3 - Security key management method and security key management server - Google Patents
Security key management method and security key management server Download PDFInfo
- Publication number
- WO2021025403A3 WO2021025403A3 PCT/KR2020/010188 KR2020010188W WO2021025403A3 WO 2021025403 A3 WO2021025403 A3 WO 2021025403A3 KR 2020010188 W KR2020010188 W KR 2020010188W WO 2021025403 A3 WO2021025403 A3 WO 2021025403A3
- Authority
- WO
- WIPO (PCT)
- Prior art keywords
- key
- security key
- key management
- security
- management method
- Prior art date
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/08—Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
- H04L9/0816—Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
- H04L9/0838—Key agreement, i.e. key establishment technique in which a shared key is derived by parties as a function of information contributed by, or associated with, each of these
- H04L9/0841—Key agreement, i.e. key establishment technique in which a shared key is derived by parties as a function of information contributed by, or associated with, each of these involving Diffie-Hellman or related key agreement protocols
- H04L9/0844—Key agreement, i.e. key establishment technique in which a shared key is derived by parties as a function of information contributed by, or associated with, each of these involving Diffie-Hellman or related key agreement protocols with user authentication or key authentication, e.g. ElGamal, MTI, MQV-Menezes-Qu-Vanstone protocol or Diffie-Hellman protocols using implicitly-certified keys
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/30—Authentication, i.e. establishing the identity or authorisation of security principals
- G06F21/31—User authentication
- G06F21/33—User authentication using certificates
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/08—Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/08—Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
- H04L9/0861—Generation of secret information including derivation or calculation of cryptographic keys or passwords
- H04L9/0877—Generation of secret information including derivation or calculation of cryptographic keys or passwords using additional device, e.g. trusted platform module [TPM], smartcard, USB or hardware security module [HSM]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/08—Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
- H04L9/0894—Escrow, recovery or storing of secret information, e.g. secret key escrow or cryptographic key storage
Abstract
A security key management method and a security key management server including same are provided. The security key management method comprises: receiving, from a hardware security module, a key blob and an authentication value corresponding to a security key, when a key generation request signal including information of an owner that owns the security key is received from an external device; generating a key store file including the key blob and the authentication value; generating the name of the key store file on the basis of the owner information; and storing the key store file and the name of the key store file in another device that is not the hardware security module.
Applications Claiming Priority (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
KR1020190094543A KR102289478B1 (en) | 2019-08-02 | 2019-08-02 | System and method for providing electronic signature service |
KR10-2019-0094543 | 2019-08-02 |
Publications (2)
Publication Number | Publication Date |
---|---|
WO2021025403A2 WO2021025403A2 (en) | 2021-02-11 |
WO2021025403A3 true WO2021025403A3 (en) | 2021-04-01 |
Family
ID=74503451
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
PCT/KR2020/010188 WO2021025403A2 (en) | 2019-08-02 | 2020-08-03 | Security key management method and security key management server |
Country Status (2)
Country | Link |
---|---|
KR (1) | KR102289478B1 (en) |
WO (1) | WO2021025403A2 (en) |
Families Citing this family (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
EP4161280A1 (en) | 2020-06-07 | 2023-04-12 | Comestaag LLC | Selectively treating plant items |
Citations (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
KR20080068757A (en) * | 2005-11-18 | 2008-07-23 | 샌디스크 코포레이션 | Method and system for managing keys and/or rights objects |
KR20090049888A (en) * | 2007-11-14 | 2009-05-19 | 브레인즈스퀘어(주) | Method of processing data using raw area of removable storage device and apparatus for performing the same |
KR20100068046A (en) * | 2008-12-12 | 2010-06-22 | 한국전자통신연구원 | Apparatus for managing identity data and method thereof |
KR20150080061A (en) * | 2013-12-30 | 2015-07-09 | 삼성에스디에스 주식회사 | System and method for identity based key management |
US20190156043A1 (en) * | 2017-11-17 | 2019-05-23 | Intel Corporation | Support for increased number of concurrent keys within multi-key cryptographic engine |
-
2019
- 2019-08-02 KR KR1020190094543A patent/KR102289478B1/en active IP Right Grant
-
2020
- 2020-08-03 WO PCT/KR2020/010188 patent/WO2021025403A2/en active Application Filing
Patent Citations (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
KR20080068757A (en) * | 2005-11-18 | 2008-07-23 | 샌디스크 코포레이션 | Method and system for managing keys and/or rights objects |
KR20090049888A (en) * | 2007-11-14 | 2009-05-19 | 브레인즈스퀘어(주) | Method of processing data using raw area of removable storage device and apparatus for performing the same |
KR20100068046A (en) * | 2008-12-12 | 2010-06-22 | 한국전자통신연구원 | Apparatus for managing identity data and method thereof |
KR20150080061A (en) * | 2013-12-30 | 2015-07-09 | 삼성에스디에스 주식회사 | System and method for identity based key management |
US20190156043A1 (en) * | 2017-11-17 | 2019-05-23 | Intel Corporation | Support for increased number of concurrent keys within multi-key cryptographic engine |
Non-Patent Citations (1)
Title |
---|
정혜라 등. 패스워드 매니저의 패스워드 저장소 보안 취약점 분석. 정보보호학회논문지 28(5). pp. 1047-1057, October 2018 (JEONG, Hyera et al. Security of Password Vaults of Password Managers. Journal of Korea Institute of Information Security & Cryptology 28(5)). See sections 3.2.2-3.2.3. Y 1-4,8-11 * |
Also Published As
Publication number | Publication date |
---|---|
KR102289478B1 (en) | 2021-08-13 |
KR20210015534A (en) | 2021-02-10 |
WO2021025403A2 (en) | 2021-02-11 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN105471826B (en) | Ciphertext data query method, apparatus and cryptogram search server | |
PH12020550735A1 (en) | Blockchain-Based Smart Contract Invocation Method And Apparatus, And Electronic Device | |
SG10201810910YA (en) | Data sharing method based on plurality of blockchains | |
WO2002073378A3 (en) | Receiving device for securely storing a content item, and playback device | |
US20090296926A1 (en) | Key management using derived keys | |
US20190251282A1 (en) | Cyber Security System and Method for Transferring Data Between Servers Without a Continuous Connection | |
WO2007149787A3 (en) | Terminal data encryption | |
CN110351239A (en) | It is a kind of based on the electronic contract storage method and device of block chain, electronic equipment | |
WO2019120321A3 (en) | Cryptographic key management based on identity information | |
WO2009142851A3 (en) | Security architecture for peer-to-peer storage system | |
CN103581378A (en) | Smart phone high in safety performance | |
CN102143159A (en) | Database key management method in DAS (database-as-a-service) model | |
CN103152324B (en) | The user authen method of Behavior-based control feature | |
WO2020198226A8 (en) | Secure communication in a traffic control network | |
EP4235475A3 (en) | Systems and methods of database encryption in a multitenant database management system | |
CN107257349A (en) | Cipher encrypting method and system based on unidirectional and public key encryption algorithm | |
CN103716164A (en) | Ultra-lightweight RFID mutual authentication method | |
WO2002005475A3 (en) | Generation and use of digital signatures | |
WO2021025403A3 (en) | Security key management method and security key management server | |
CN105608397A (en) | Anti-theft USB (Universal Serial Bus) flash disk | |
Chen et al. | Enhancement of the RFID security method with ownership transfer | |
CN107770195B (en) | Cross-domain identity authentication system based on cloud environment and application method thereof | |
WO2007053822A3 (en) | Security enabler device and method for securing data communications | |
EP4040720B1 (en) | Secure identity card using unclonable functions | |
KR102355918B1 (en) | Method for providing electoric data using block-chain and system thereof |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
121 | Ep: the epo has been informed by wipo that ep was designated in this application |
Ref document number: 20850457 Country of ref document: EP Kind code of ref document: A2 |
|
NENP | Non-entry into the national phase |
Ref country code: DE |
|
122 | Ep: pct application non-entry in european phase |
Ref document number: 20850457 Country of ref document: EP Kind code of ref document: A2 |