Method and system for distributing attestation key and certificate in trusted computing
US-2018234255-A1 · Aug 16, 2018 · US
Method and apparatus for managing application identifier
US10439809B2 · US · B2
| Field | Value |
|---|---|
| Publication number | US-10439809-B2 |
| Application number | US-201715599027-A |
| Country | US |
| Kind code | B2 |
| Filing date | May 18, 2017 |
| Priority date | Apr 30, 2015 |
| Publication date | Oct 8, 2019 |
| Grant date | Oct 8, 2019 |
How to read this patent
A practical reading order for non-experts. Skip the full description unless you need deep technical detail.
- Title
What the patent document calls the invention.
- Abstract
A short plain-language summary of the technical disclosure.
- Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
- Key dates
Filing, priority, publication, and grant dates set the timeline.
- First independent claim
The legal scope of protection — read this for what is actually claimed.
- CPC / IPC classifications
Technology tags used to group this patent with similar filings.
- Citations and related patents
Prior art links and similar publications in this corpus.
Abstract
Official abstract text for this publication.
A method and an apparatus for managing an application identifier, where the application identifier management apparatus receives a request sent by a terminal to apply for a private key of an application identifier. The identifier management apparatus acquires a user identifier and an application identifier according to the request. The identifier management apparatus acquires a feature identifier of the user according to the user identifier, generates a private key of the application identifier according to the application identifier and the feature identifier of the user, and sends the private key of the application identifier to the terminal.
First claim
Opening claim text (preview).
What is claimed is: 1. A method for managing an application identifier, comprising: receiving, by an identifier management apparatus, a request from a terminal to apply for a private key of the application identifier, wherein the request comprises a type of the application identifier; acquiring, by the identifier management apparatus, a user identifier and the application identifier according to the request; acquiring, by the identifier management apparatus, a feature identifier of a user according to the user identifier; generating, by the identifier management apparatus, the private key of the application identifier according to the application identifier, the type of the application identifier, and the feature identifier of the user; and sending, by the identifier management apparatus, the private key of the application identifier to the terminal. 2. The method of claim 1 , wherein generating the private key of the application identifier comprises: performing, by the identifier management apparatus, hashing on the feature identifier of the user to obtain a first string; joining, by the identifier management apparatus, the application identifier and the first string to obtain a second string; and obtaining, by the identifier management apparatus, the private key of the application identifier according to a preset private key generation algorithm and the second string. 3. The method of claim 1 , wherein generating the private key of the application identifier comprises: obtaining, by the identifier management apparatus, a third string according to the type of the application identifier and the feature identifier of the user; performing, by the identifier management apparatus, hashing on the third string according to a preset hash function to obtain a fourth string; joining, by the identifier management apparatus, the application identifier and the fourth string to obtain a fifth string; and obtaining, by the identifier management apparatus, the private key of the application identifier according to a preset private key generation algorithm and the fifth string. 4. The method of claim 1 , wherein the request comprises a digital signature of the user, and wherein before generating the private key of the application identifier, the method further comprises: acquiring, by the identifier management apparatus, a public key of the user according to the user identifier; verifying, by the identifier management apparatus, the digital signature of the user according to the public key of the user; and generating, by the identifier management apparatus, the private key of the application identifier according to the application identifier and the feature identifier of the user when the digital signature of the user is successfully verified. 5. The method of claim 4 , wherein before sending the private key of the application identifier to the terminal, the method further comprises encrypting, by the identifier management apparatus, the private key of the application identifier according to the public key of the user, and wherein sending the private key of the application identifier to the terminal comprises sending, by the identifier management apparatus, the encrypted private key of the application identifier to the terminal. 6. The method of claim 1 , wherein before acquiring the feature identifier of the user according to the user identifier, the method further comprises: receiving, by the identifier management apparatus, the user identifier and a biometric feature from the terminal; generating, by the identifier management apparatus, the feature identifier of the user according to a first preset algorithm and the biometric feature; and saving, by the identifier management apparatus, a correspondence between the user identifier and the feature identifier of the user, and wherein acquiring the feature identifier of the user comprises acquiring, by the identifier management apparatus according to the correspondence, the feature identifier of the user corresponding to the user identifier. 7. The method of claim 1 , wherein acquiring the feature identifier of the user comprises: acquiring, by the identifier management apparatus, a biometric feature of the user from the user identifier; and generating, by the identifier management apparatus, the feature identifier of the user according to a second preset algorithm and the biometric feature of the user. 8. An apparatus for managing an application identifier, comprising: a memory comprising instructions; a receiver configured to receive a request from a terminal to apply for a private key of the application identifier, wherein the request comprises a type of the application identifier; a processor coupled to the memory and the receiver, wherein the instructions cause the processor to be configured to: acquire a user identifier and the application identifier according to the request; acquire a feature identifier of the user according to the user identifier; and generate a private key of the application identifier according to the application identifier, the type of the application identifier, and the feature identifier of the user; and a transmitter coupled to the processor and configured to send the private key of the application identifier to the terminal. 9. The apparatus of claim 8 , wherein the instructions further cause the processor to be configured to: perform hashing on the feature identifier of the user to obtain a first string; join the application identifier and the first string to obtain a second string; and obtain the private key of the application identifier according to a preset private key generation algorithm and the second string. 10. The apparatus according of claim 8 , wherein the instructions further cause the processor to be configured to: obtain a third string according to the type of the application identifier and the feature identifier of the user; perform hashing on the third string according to a preset hash function to obtain a fourth string; join the application identifier and the fourth string to obtain a fifth string; and obtain the private key of the application identifier according to a preset private key generation algorithm and the fifth string. 11. The apparatus of claim 8 , wherein the request comprises a digital signature of the user, and wherein the instructions further cause the processor to be configured to: acquire a public key of the user according to the user identifier; verify the digital signature of the user according to the public key of the user; and generate the private key of the application identifier according to the application identifier and the feature identifier of the user when the digital signature of the user is successfully verified. 12. The apparatus of claim 11 , wherein the instructions further cause the processor to be configured to encrypt the private key of the application identifier according to the public key of the user, and wherein the instructions further cause the transmitter to be configured to send the encrypted private key of the application identifier to the terminal. 13. The apparatus of claim 8 , wherein the instructions further cause the receiver to be configured to receive the user identifier and a biometric feature sent by the terminal, and wherein the instructions further cause the processor to be configured to: generate the feature identifier of the user according to a first preset algorithm and the biometric feature; save a correspondence between the user identifier and the feature identifier of the user; and acquire, according to the correspondence, the feature identifier of the us
Assignees
Inventors
Classifications
including means for verifying the identity or authority of a user of the system {or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials} · CPC title
- H04L9/0866Primary
involving user or device identifiers, e.g. serial number, physical or biometrical information, DNA, hand-signature or measurable physical characteristics · CPC title
involving digital signatures · CPC title
using cryptographic hash functions · CPC title
involving pairings, e.g. identity based encryption [IBE], bilinear mappings or bilinear pairings, e.g. Weil or Tate pairing · CPC title
Patent family
Related publications grouped by family.
External sources
Frequently asked questions
Answers are generated from the same data shown on this page.
- What does patent US10439809B2 cover?
- A method and an apparatus for managing an application identifier, where the application identifier management apparatus receives a request sent by a terminal to apply for a private key of an application identifier. The identifier management apparatus acquires a user identifier and an application identifier according to the request. The identifier management apparatus acquires a feature identifi…
- Who is the assignee on this patent?
- Huawei Tech Co Ltd
- What technology area does this patent fall under?
- Primary CPC classification H04L9/0866. Mapped technology areas include Electricity.
- When was this patent published?
- Publication date Tue Oct 08 2019 00:00:00 GMT+0000 (Coordinated Universal Time) (B2). Legal status and post-grant events are not shown on this page.
- What related patents are in patentsdb?
- We list 7 related publications on this page (citations in our corpus or others sharing the same primary CPC).