Server-assisted secure exponentiation
US-2016352710-A1 · Dec 1, 2016 · US
Agreement of exchange keys on the basis of two static asymmetric key pairs
US11405190B2 · US · B2
| Field | Value |
|---|---|
| Publication number | US-11405190-B2 |
| Application number | US-201616062283-A |
| Country | US |
| Kind code | B2 |
| Filing date | Dec 14, 2016 |
| Priority date | Dec 15, 2015 |
| Publication date | Aug 2, 2022 |
| Grant date | Aug 2, 2022 |
How to read this patent
A practical reading order for non-experts. Skip the full description unless you need deep technical detail.
- Title
What the patent document calls the invention.
- Abstract
A short plain-language summary of the technical disclosure.
- Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
- Key dates
Filing, priority, publication, and grant dates set the timeline.
- First independent claim
The legal scope of protection — read this for what is actually claimed.
- CPC / IPC classifications
Technology tags used to group this patent with similar filings.
- Citations and related patents
Prior art links and similar publications in this corpus.
Abstract
Official abstract text for this publication.
A method for setting up a subscriber identity module for agreeing one or several exchange keys, between a subscriber identity module and a provisioning server includes generating one or several exchange keys from keys of the provisioning server and of the subscriber identity module on a production server and are transmitted into the subscriber identity module and stored, so that the subscriber identity module is put particularly into a state as though it had generated the exchange keys itself. In a method for agreeing one or several exchange keys, between a subscriber identity module and a provisioning server, the subscriber identity module sends its public key to the provisioning server, which subsequently generates the exchange keys.
First claim
Opening claim text (preview).
The invention claimed is: 1. A method for setting up a subscriber identity module foran agreement of one or several exchange keys, between the subscriber identity module and a provisioning server, proceeding from asymmetric key data, the asymmetric key data comprising an individual static asymmetric key pair of the subscriber identity module, comprising a private key and a public key of the subscriber identity module, and a static asymmetric key pair of the provisioning server, comprising a private key and a public key of the provisioning server, the method comprising: a) generating the asymmetric key pair for the subscriber identity module, comprising the public key and the private key of the subscriber identity module; b) generating the asymmetric key pair of the provisioning server, comprising the public key and the private key of the provisioning server; c) generating said one or several exchange keys employing the private key of the subscriber identity module and the public key of the provisioning server; wherein step a) and step c) are performed on a production server during a production of the subscriber identity module, and the method further comprises: d) transmitting and storing the public key of the subscriber identity module and the one or several exchange keys generated in step c) on the production server into the subscriber identity module and configuring the subscriber identity module to be programmed, at a time after the production and delivery of the subscriber identity module, with additional data, wherein the additional data includes authentication information which permits an authentication of the public key stored in the subscriber identity module, in a logging into a communication network by the subscriber identity module, gives the subscriber identity module an appearance of being set up for performing computations in accordance with an asymmetric crypto-algorithm and the subscriber identity module is put into a state as though the subscriber identity module had generated the exchange keys itself. 2. The method according to claim 1 , wherein step c) further comprises: c1) generating a secret employing the private key of the subscriber identity module and the public key of the provisioning server; c2) generating or supplying a random nonce; c3) generating the exchange keys proceeding from the secret and the nonce. 3. The method according to claim 1 , wherein step b) is performed on the production server, and wherein at least the private key generated in step b) is supplied to the provisioning server. 4. The method according to claim 1 , wherein step d) comprises: transmitting and storing the public key of the subscriber identity module by directly transmitting and storing the public key of the subscriber identity module. 5. The method according to claim 1 , further comprising: generating a certificate overthe public key of the subscriber identity module by signing the public key of the subscriber identity module; wherein step d) comprises: transmitting and storing the public key by transmitting and storing the certificate. 6. The method according to claim 1 , wherein for the agreement of one or several exchange keys, between the subscriber identity module and the provisioning server, proceeding from the asymmetric key data, the method further comprising: e) supplying a subscriber identity module set up and establishing a communication connection between the subscriber identity module and the provisioning server; f) transferring the public key of the subscriber identity module from the subscriber identity module to the provisioning server; g) in the provisioning server receiving the public key of the subscriber identity module and identifying the subscriber identity module by means of the received public key; h) in the provisioning server supplying the private key of the provisioning server; i) in the provisioning server generating the one or several exchange keys employing the public key of the subscriber identity module and the private key of the provisioning server. 7. The method according to claim 6 , wherein: step c) comprises: c1) generating a secret employing the private key of the subscriber identity module and the public key of the provisioning server; c2) generating or supplyinga random nonce; c3) generating the exchange keys proceedingfrom the secret and the nonce; wherein when a nonce is used, step f) further comprises: transferring said nonce from the subscriber identity module to the provisioning server; and step i) comprises: i1) generatingthe secret employing the public key of the subscriber identity module and the private key of the provisioning server; i2) generating the exchange key proceeding from the secret and the nonce. 8. The method according to claim 2 , wherein the secret is destroyed by being deleted after the one or several exchange keys are generated. 9. The method according to claim 1 , further comprising encrypting data with the one or several exchange keys, and transmitting the encrypted data between the subscriber identity module and the provisioning server. 10. The method according to claim 1 , wherein the asymmetric key pairs are provided as Diffie-Hellman key pairs, including a Diffie-Hellman key pair of the subscriber identity module and another Diffie-Hellman key pair of the provisioning server. 11. The method according to claim 1 , wherein step b) is performed on the provisioning server, and wherein at least the public key generated in step b) is supplied to the production server. 12. The method according to claim 1 , wherein no master key is employed. 13. The method according to claim 1 , wherein in step d), in transmission processes between the subscriber identity module and the production server or the provisioning server, no secret keys are transmitted. 14. The method according to claim 1 , wherein in step d), in transmission processes between the subscriber identity module and the production server or the provisioning server, no private asymmetric keys are transmitted. 15. The method according to claim 1 , wherein in step d), in transmission processes between the subscriber identity module and the production server or the provisioning server, only publicor non-critical data are transmitted. 16. The method according to claim 1 , wherein private asymmetric keys are kept available only in secure environments. 17. The method according to claim 1 , wherein private asymmetric keys are kept available only in a production environment of the production server or on the provisioning server. 18. The method according to claim 1 , wherein in the subscriber identity module no asymmetric cryptography is required or performed. 19. The method according to claim 1 , wherein the subscriber identity module does not have sufficient computing power or storage capacity for asymmetric cryptography or for deriving the one or several exchange keys.
Assignees
Inventors
Classifications
wherein the sending and receiving network entities apply asymmetric encryption, i.e. different keys for encryption and decryption (cryptographic mechanisms or cryptographic arrangements for public-key encryption H04L9/30) · CPC title
Wireless · CPC title
for key distribution, e.g. centrally by trusted party (cryptographic mechanisms or cryptographic arrangements for key distribution involving a central third party H04L9/0819) · CPC title
Key management, e.g. using generic bootstrapping architecture [GBA] · CPC title
Proxy, i.e. using intermediary entity to perform cryptographic operations · CPC title
Patent family
Related publications grouped by family.
External sources
Frequently asked questions
Answers are generated from the same data shown on this page.
- What does patent US11405190B2 cover?
- A method for setting up a subscriber identity module for agreeing one or several exchange keys, between a subscriber identity module and a provisioning server includes generating one or several exchange keys from keys of the provisioning server and of the subscriber identity module on a production server and are transmitted into the subscriber identity module and stored, so that the subscriber …
- Who is the assignee on this patent?
- Giesecke & Devrient Mobile Security Gmbh
- What technology area does this patent fall under?
- Primary CPC classification H04L9/0844. Mapped technology areas include Electricity.
- When was this patent published?
- Publication date Tue Aug 02 2022 00:00:00 GMT+0000 (Coordinated Universal Time) (B2). Legal status and post-grant events are not shown on this page.
- What related patents are in patentsdb?
- We list 4 related publications on this page (citations in our corpus or others sharing the same primary CPC).