WO2021025403A3 - Security key management method and security key management server - Google Patents

Security key management method and security key management server Download PDF

Info

Publication number
WO2021025403A3
WO2021025403A3 PCT/KR2020/010188 KR2020010188W WO2021025403A3 WO 2021025403 A3 WO2021025403 A3 WO 2021025403A3 KR 2020010188 W KR2020010188 W KR 2020010188W WO 2021025403 A3 WO2021025403 A3 WO 2021025403A3
Authority
WO
WIPO (PCT)
Prior art keywords
key
security key
key management
security
management method
Prior art date
Application number
PCT/KR2020/010188
Other languages
French (fr)
Korean (ko)
Other versions
WO2021025403A2 (en
Inventor
박진우
김진근
이문혁
이강희
Original Assignee
주식회사 티모넷
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 주식회사 티모넷 filed Critical 주식회사 티모넷
Publication of WO2021025403A2 publication Critical patent/WO2021025403A2/en
Publication of WO2021025403A3 publication Critical patent/WO2021025403A3/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0816Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
    • H04L9/0838Key agreement, i.e. key establishment technique in which a shared key is derived by parties as a function of information contributed by, or associated with, each of these
    • H04L9/0841Key agreement, i.e. key establishment technique in which a shared key is derived by parties as a function of information contributed by, or associated with, each of these involving Diffie-Hellman or related key agreement protocols
    • H04L9/0844Key agreement, i.e. key establishment technique in which a shared key is derived by parties as a function of information contributed by, or associated with, each of these involving Diffie-Hellman or related key agreement protocols with user authentication or key authentication, e.g. ElGamal, MTI, MQV-Menezes-Qu-Vanstone protocol or Diffie-Hellman protocols using implicitly-certified keys
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • G06F21/33User authentication using certificates
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0861Generation of secret information including derivation or calculation of cryptographic keys or passwords
    • H04L9/0877Generation of secret information including derivation or calculation of cryptographic keys or passwords using additional device, e.g. trusted platform module [TPM], smartcard, USB or hardware security module [HSM]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0894Escrow, recovery or storing of secret information, e.g. secret key escrow or cryptographic key storage

Abstract

A security key management method and a security key management server including same are provided. The security key management method comprises: receiving, from a hardware security module, a key blob and an authentication value corresponding to a security key, when a key generation request signal including information of an owner that owns the security key is received from an external device; generating a key store file including the key blob and the authentication value; generating the name of the key store file on the basis of the owner information; and storing the key store file and the name of the key store file in another device that is not the hardware security module.
PCT/KR2020/010188 2019-08-02 2020-08-03 Security key management method and security key management server WO2021025403A2 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
KR1020190094543A KR102289478B1 (en) 2019-08-02 2019-08-02 System and method for providing electronic signature service
KR10-2019-0094543 2019-08-02

Publications (2)

Publication Number Publication Date
WO2021025403A2 WO2021025403A2 (en) 2021-02-11
WO2021025403A3 true WO2021025403A3 (en) 2021-04-01

Family

ID=74503451

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/KR2020/010188 WO2021025403A2 (en) 2019-08-02 2020-08-03 Security key management method and security key management server

Country Status (2)

Country Link
KR (1) KR102289478B1 (en)
WO (1) WO2021025403A2 (en)

Families Citing this family (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP4161280A1 (en) 2020-06-07 2023-04-12 Comestaag LLC Selectively treating plant items

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR20080068757A (en) * 2005-11-18 2008-07-23 샌디스크 코포레이션 Method and system for managing keys and/or rights objects
KR20090049888A (en) * 2007-11-14 2009-05-19 브레인즈스퀘어(주) Method of processing data using raw area of removable storage device and apparatus for performing the same
KR20100068046A (en) * 2008-12-12 2010-06-22 한국전자통신연구원 Apparatus for managing identity data and method thereof
KR20150080061A (en) * 2013-12-30 2015-07-09 삼성에스디에스 주식회사 System and method for identity based key management
US20190156043A1 (en) * 2017-11-17 2019-05-23 Intel Corporation Support for increased number of concurrent keys within multi-key cryptographic engine

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR20080068757A (en) * 2005-11-18 2008-07-23 샌디스크 코포레이션 Method and system for managing keys and/or rights objects
KR20090049888A (en) * 2007-11-14 2009-05-19 브레인즈스퀘어(주) Method of processing data using raw area of removable storage device and apparatus for performing the same
KR20100068046A (en) * 2008-12-12 2010-06-22 한국전자통신연구원 Apparatus for managing identity data and method thereof
KR20150080061A (en) * 2013-12-30 2015-07-09 삼성에스디에스 주식회사 System and method for identity based key management
US20190156043A1 (en) * 2017-11-17 2019-05-23 Intel Corporation Support for increased number of concurrent keys within multi-key cryptographic engine

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
정혜라 등. 패스워드 매니저의 패스워드 저장소 보안 취약점 분석. 정보보호학회논문지 28(5). pp. 1047-1057, October 2018 (JEONG, Hyera et al. Security of Password Vaults of Password Managers. Journal of Korea Institute of Information Security & Cryptology 28(5)). See sections 3.2.2-3.2.3. Y 1-4,8-11 *

Also Published As

Publication number Publication date
KR102289478B1 (en) 2021-08-13
KR20210015534A (en) 2021-02-10
WO2021025403A2 (en) 2021-02-11

Similar Documents

Publication Publication Date Title
CN105471826B (en) Ciphertext data query method, apparatus and cryptogram search server
PH12020550735A1 (en) Blockchain-Based Smart Contract Invocation Method And Apparatus, And Electronic Device
SG10201810910YA (en) Data sharing method based on plurality of blockchains
WO2002073378A3 (en) Receiving device for securely storing a content item, and playback device
US20090296926A1 (en) Key management using derived keys
US20190251282A1 (en) Cyber Security System and Method for Transferring Data Between Servers Without a Continuous Connection
WO2007149787A3 (en) Terminal data encryption
CN110351239A (en) It is a kind of based on the electronic contract storage method and device of block chain, electronic equipment
WO2019120321A3 (en) Cryptographic key management based on identity information
WO2009142851A3 (en) Security architecture for peer-to-peer storage system
CN103581378A (en) Smart phone high in safety performance
CN102143159A (en) Database key management method in DAS (database-as-a-service) model
CN103152324B (en) The user authen method of Behavior-based control feature
WO2020198226A8 (en) Secure communication in a traffic control network
EP4235475A3 (en) Systems and methods of database encryption in a multitenant database management system
CN107257349A (en) Cipher encrypting method and system based on unidirectional and public key encryption algorithm
CN103716164A (en) Ultra-lightweight RFID mutual authentication method
WO2002005475A3 (en) Generation and use of digital signatures
WO2021025403A3 (en) Security key management method and security key management server
CN105608397A (en) Anti-theft USB (Universal Serial Bus) flash disk
Chen et al. Enhancement of the RFID security method with ownership transfer
CN107770195B (en) Cross-domain identity authentication system based on cloud environment and application method thereof
WO2007053822A3 (en) Security enabler device and method for securing data communications
EP4040720B1 (en) Secure identity card using unclonable functions
KR102355918B1 (en) Method for providing electoric data using block-chain and system thereof

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 20850457

Country of ref document: EP

Kind code of ref document: A2

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 20850457

Country of ref document: EP

Kind code of ref document: A2