WO1999027676A3 - Methods and apparatus for the secure identification and validation of things and events - Google Patents

Methods and apparatus for the secure identification and validation of things and events Download PDF

Info

Publication number
WO1999027676A3
WO1999027676A3 PCT/IB1998/001834 IB9801834W WO9927676A3 WO 1999027676 A3 WO1999027676 A3 WO 1999027676A3 IB 9801834 W IB9801834 W IB 9801834W WO 9927676 A3 WO9927676 A3 WO 9927676A3
Authority
WO
WIPO (PCT)
Prior art keywords
identification
result
time
presumed
challenge
Prior art date
Application number
PCT/IB1998/001834
Other languages
French (fr)
Other versions
WO1999027676A2 (en
Inventor
Isaac J Labaton
Original Assignee
Enco Tone Ltd
Isaac J Labaton
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Enco Tone Ltd, Isaac J Labaton filed Critical Enco Tone Ltd
Priority to EP98951640A priority Critical patent/EP1031260A4/en
Priority to CA002308474A priority patent/CA2308474A1/en
Priority to AU97578/98A priority patent/AU9757898A/en
Publication of WO1999027676A2 publication Critical patent/WO1999027676A2/en
Publication of WO1999027676A3 publication Critical patent/WO1999027676A3/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3271Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using challenge-response
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/321Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving a third party or a trusted authority
    • H04L9/3213Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving a third party or a trusted authority using tickets or tokens, e.g. Kerberos

Abstract

Methods for non-repudiable, non-trackable, possibly one-way identification and validation of remote entities to identification devices, wherein the identification devices do not require access to databases of remote entity information. An arbitrator entity preferably characterizes and distributes a specific algorithm to each remote entity. An identification device (or system operating an identification device) preferably distributes one reversible algorithm to each remote entity. Each time a remote entity identifies itself to an identification device, it applies its arbitrator provided algorithm to either a time-based variable (one-way identification) or to a challenge provided by the identification device, computing a first result. The remote entity then applies the reversible algorithm to the challenge/time-based variable, to its identification data and to the first computed result, computing a second result which is transmitted to an identification device. The identification device then may apply the reverse algorithm to the second result, computing a presumed challenge/time-based variable, presumed identification data and presumed first result. The identification device then may compare the challenge/time-based variable to the presumed challenge/time-based variable. If they match (within some tolerance for a time-based variable), the identification device transmits the presumed first result, the presumed identification data and the challenge to the arbitrator. The arbitrator then may apply the particular algorithm distributed to that remote entity and apply it to the challenge/time-based variable, thereby computing a valid first result. The arbitrator then may compare the valid first result to the presumed first result. If they match (within a tolerance for time-based variables), the arbitrator may corroborate the authenticity of the identification to the identification device.
PCT/IB1998/001834 1997-11-04 1998-11-04 Methods and apparatus for the secure identification and validation of things and events WO1999027676A2 (en)

Priority Applications (3)

Application Number Priority Date Filing Date Title
EP98951640A EP1031260A4 (en) 1997-11-04 1998-11-04 Methods and apparatus for the secure identification and validation of things and events
CA002308474A CA2308474A1 (en) 1997-11-04 1998-11-04 Methods and apparatus for the secure identification and validation of things and events
AU97578/98A AU9757898A (en) 1997-11-04 1998-11-04 Methods and apparatus for the secure identification and validation of things andevents

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
IL122106 1997-11-04
IL122106A IL122106A (en) 1997-11-04 1997-11-04 Method and algorithms for identification and validation

Publications (2)

Publication Number Publication Date
WO1999027676A2 WO1999027676A2 (en) 1999-06-03
WO1999027676A3 true WO1999027676A3 (en) 1999-09-02

Family

ID=11070814

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/IB1998/001834 WO1999027676A2 (en) 1997-11-04 1998-11-04 Methods and apparatus for the secure identification and validation of things and events

Country Status (5)

Country Link
EP (1) EP1031260A4 (en)
AU (1) AU9757898A (en)
CA (1) CA2308474A1 (en)
IL (1) IL122106A (en)
WO (1) WO1999027676A2 (en)

Families Citing this family (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7013393B1 (en) 1999-12-21 2006-03-14 Pierre Stevens Universal intelligent card for secure access to system functions
WO2005029746A2 (en) 2003-09-12 2005-03-31 Rsa Security Inc. System and method providing disconnected authentication
GB0514492D0 (en) 2005-07-14 2005-08-17 Ntnu Technology Transfer As Secure media streaming
US10075452B2 (en) 2016-02-18 2018-09-11 Comcast Cable Communications, Llc Distributed content uploading and validation

Citations (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US4326098A (en) * 1980-07-02 1982-04-20 International Business Machines Corporation High security system for electronic signature verification
US4747050A (en) * 1983-09-17 1988-05-24 International Business Machines Corporation Transaction security system using time variant parameter
US5010571A (en) * 1986-09-10 1991-04-23 Titan Linkabit Corporation Metering retrieval of encrypted data stored in customer data retrieval terminal
US5349643A (en) * 1993-05-10 1994-09-20 International Business Machines Corporation System and method for secure initial program load for diskless workstations
US5491750A (en) * 1993-12-30 1996-02-13 International Business Machines Corporation Method and apparatus for three-party entity authentication and key distribution using message authentication codes
US5600722A (en) * 1993-10-06 1997-02-04 Nippon Telegraph & Telephone Corp. System and scheme of cipher communication
US5754656A (en) * 1995-08-04 1998-05-19 Hitachi, Ltd. Electronic shopping method, electronic shopping system and document authenticating method relating thereto
US5778065A (en) * 1993-09-20 1998-07-07 International Business Machines Corporation Method and system for changing an authorization password or key in a distributed communication network
US5790667A (en) * 1995-01-20 1998-08-04 Matsushita Electric Industrial Co., Ltd. Personal authentication method

Family Cites Families (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2671649B2 (en) * 1991-07-08 1997-10-29 三菱電機株式会社 Authentication method
US5422953A (en) * 1993-05-05 1995-06-06 Fischer; Addison M. Personal date/time notary device

Patent Citations (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US4326098A (en) * 1980-07-02 1982-04-20 International Business Machines Corporation High security system for electronic signature verification
US4747050A (en) * 1983-09-17 1988-05-24 International Business Machines Corporation Transaction security system using time variant parameter
US5010571A (en) * 1986-09-10 1991-04-23 Titan Linkabit Corporation Metering retrieval of encrypted data stored in customer data retrieval terminal
US5349643A (en) * 1993-05-10 1994-09-20 International Business Machines Corporation System and method for secure initial program load for diskless workstations
US5778065A (en) * 1993-09-20 1998-07-07 International Business Machines Corporation Method and system for changing an authorization password or key in a distributed communication network
US5600722A (en) * 1993-10-06 1997-02-04 Nippon Telegraph & Telephone Corp. System and scheme of cipher communication
US5491750A (en) * 1993-12-30 1996-02-13 International Business Machines Corporation Method and apparatus for three-party entity authentication and key distribution using message authentication codes
US5790667A (en) * 1995-01-20 1998-08-04 Matsushita Electric Industrial Co., Ltd. Personal authentication method
US5754656A (en) * 1995-08-04 1998-05-19 Hitachi, Ltd. Electronic shopping method, electronic shopping system and document authenticating method relating thereto

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
O'MAHONY D., PEIRCE M., TEWARI HITESH.: "ELECTRONIC PAYMENT SYSTEMS.", 1 January 1997, BOSTON, MA : ARTECH HOUSE., US, ISBN: 978-0-89006-925-7, article O'MAHONY D, PEIRCE M, TEWARI H: "ELECTRONIC PAYMENT SYSTEMS", pages: 101 - 123, XP002920817, 023662 *

Also Published As

Publication number Publication date
CA2308474A1 (en) 1999-06-03
IL122106A (en) 2010-11-30
WO1999027676A2 (en) 1999-06-03
EP1031260A2 (en) 2000-08-30
AU9757898A (en) 1999-06-15
EP1031260A4 (en) 2001-03-28
IL122106A0 (en) 1998-12-06

Similar Documents

Publication Publication Date Title
CA2491049A1 (en) Method of preventing unauthorized distribution and use of electronic keys using a key seed
WO2004001656A3 (en) Systems and methods for secure biometric authentication
TW377411B (en) Authentication system based on periodic challenge/response protocol
WO2001086376A3 (en) Biometric authorization and registration systems and methods
CA2287871A1 (en) Secure document management system
WO2004021114A3 (en) Enterprise-wide security system for computer devices
WO1999021094A3 (en) Reconfigurable secure hardware apparatus and method of operation
AU4262297A (en) Speech recognition and verification system enabling authorized data transmission over networked computer systems
WO1999044115A3 (en) Per-method designation of security requirements
EP1500206A4 (en) System and method for managing wireless devices in an enterprise
EP0998091A3 (en) System and method for web server user authentication
WO1998058473A3 (en) Network security and integration method and system
CA2242031A1 (en) Biometric time and attendance system with epidermal topographical updating capability
WO2001052024A3 (en) Method and apparatus for an improved security system mechanism in a business applications management system platform
WO2004053618A3 (en) System and method of owner control of electronic devices
CA2214900A1 (en) Data transmission and reception device and system, data transmission method and parameter setting method for data reception device
EP0844551A3 (en) Computer security system
WO2001072107A3 (en) Rfid tag for authentication and identification
WO2003048906A3 (en) System and method for secure replacement of the master key in a personal security device
EP0862293A3 (en) Information devices whitch select and use one out of a plurality of encryption utilization protocols for protecting copyrights of digital productions
DE50015839D1 (en)
WO2003065172A3 (en) Framework for maintaining information security in computer networks
WO2004061589A3 (en) System, method and computer program product for providing profile information
AU2729000A (en) Database system
WO2004066129A3 (en) System for communicating program data between a first device and a second device

Legal Events

Date Code Title Description
AK Designated states

Kind code of ref document: A2

Designated state(s): AL AM AT AU AZ BA BB BG BR BY CA CH CN CU CZ DE DK EE ES FI GB GE GH GM HR HU ID IL IS JP KE KG KP KR KZ LC LK LR LS LT LU LV MD MG MK MN MW MX NO NZ PL PT RO RU SD SE SG SI SK SL TJ TM TR TT UA UG US UZ VN YU ZW

AL Designated countries for regional patents

Kind code of ref document: A2

Designated state(s): GH GM KE LS MW SD SZ UG ZW AM AZ BY KG KZ MD RU TJ TM AT BE CH CY DE DK ES FI FR GB GR IE IT LU MC NL PT SE BF BJ CF CG CI CM GA GN GW ML MR NE SN TD TG

121 Ep: the epo has been informed by wipo that ep was designated in this application
AK Designated states

Kind code of ref document: A3

Designated state(s): AL AM AT AU AZ BA BB BG BR BY CA CH CN CU CZ DE DK EE ES FI GB GE GH GM HR HU ID IL IS JP KE KG KP KR KZ LC LK LR LS LT LU LV MD MG MK MN MW MX NO NZ PL PT RO RU SD SE SG SI SK SL TJ TM TR TT UA UG US UZ VN YU ZW

AL Designated countries for regional patents

Kind code of ref document: A3

Designated state(s): GH GM KE LS MW SD SZ UG ZW AM AZ BY KG KZ MD RU TJ TM AT BE CH CY DE DK ES FI FR GB GR IE IT LU MC NL PT SE BF BJ CF CG CI CM GA GN GW ML MR NE SN TD TG

DFPE Request for preliminary examination filed prior to expiration of 19th month from priority date (pct application filed before 20040101)
ENP Entry into the national phase

Ref document number: 2308474

Country of ref document: CA

Ref country code: CA

Ref document number: 2308474

Kind code of ref document: A

Format of ref document f/p: F

NENP Non-entry into the national phase

Ref country code: KR

WWE Wipo information: entry into national phase

Ref document number: 1998951640

Country of ref document: EP

WWE Wipo information: entry into national phase

Ref document number: 09530671

Country of ref document: US

WWP Wipo information: published in national office

Ref document number: 1998951640

Country of ref document: EP

REG Reference to national code

Ref country code: DE

Ref legal event code: 8642

WWW Wipo information: withdrawn in national office

Ref document number: 1998951640

Country of ref document: EP