Methods, mediums, and systems for verifying devices in an encrypted messaging system
US-12278817-B1 · Apr 15, 2025 · US
Cryptography
US12526142B2 · US · B2
| Field | Value |
|---|---|
| Publication number | US-12526142-B2 |
| Application number | US-202218713457-A |
| Country | US |
| Kind code | B2 |
| Filing date | Dec 8, 2022 |
| Priority date | Dec 8, 2021 |
| Publication date | Jan 13, 2026 |
| Grant date | Jan 13, 2026 |
How to read this patent
A practical reading order for non-experts. Skip the full description unless you need deep technical detail.
- Title
What the patent document calls the invention.
- Abstract
A short plain-language summary of the technical disclosure.
- Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
- Key dates
Filing, priority, publication, and grant dates set the timeline.
- First independent claim
The legal scope of protection — read this for what is actually claimed.
- CPC / IPC classifications
Technology tags used to group this patent with similar filings.
- Citations and related patents
Prior art links and similar publications in this corpus.
Abstract
Official abstract text for this publication.
A pairing method between a user device (1) and an operator device (2), the user device (1) being intended to receive conditional access data from the operator device (2), the user device having a user device identifier (UID), the operator having an operator device identifier (OID). The method comprises receiving, by the user device, a user device key (KUID) derived from a first cryptographically secure function and receiving, by the operator device, an operator key (KOID) derived from a second cryptographically secure function. The user device comprises a user device bilinear mathematical function (e(KUID, OID)) and the operator device comprises an operator bilinear mathematical function (e(UID, KOID)) which each define a pairing over an elliptic curve. The method includes generating, by the operator device (2), a pairing key (KD=e(UID, KOID)) between the user device (1) and the operator device (2), using the operator key (KOID) and the device identifier (UID) as variables of the operator mathematical function (e(UID, KOID)). The user device (1) generates the same pairing key (KD=e(KUID, OID)) using the user device key (KUID) and the operator device identifier (UID) as variables of the user device mathematical function e(KUID, OID).
First claim
Opening claim text (preview).
The invention claimed is: 1 . A pairing method between a user device and an operator device, the user device being intended to receive conditional access data from the operator device, the user device having a user device identifier (UID), the operator device having an operator device identifier (OID), the method comprising: receiving, by the user device, a user device key (KUID) derived from a first cryptographically secure function; receiving, by the operator device, an operator device key (KOID) derived from a second cryptographically secure function, wherein the user device comprises a user device bilinear mathematical function (e (KUID, OID)) and the operator device comprises an operator bilinear mathematical function (e (UID, KOID)) which each define a pairing over an elliptic curve wherein the user device bilinear mathematical function and the operator bilinear mathematical function each define a bilinear mathematical function corresponding to the same cryptographic pairing over the same elliptic curve; generating, by the operator device, a pairing key (KD=e (UID, KOID)) between the user device and the operator device, using the operator device key (KOID) and the user device identifier (UID) as variables of the operator bilinear mathematical function (e (UID, KOID)); generating, by the user device, the same pairing key (KD=e (KUID, OID)) using the user device key (KUID) and the operator device identifier (OID) as variables of the user device bilinear mathematical function e (KUID, OID) based on the user device and the operator device being paired; and decrypting encrypted data to obtain the conditional access data. 2 . The pairing method of claim 1 , wherein the first cryptographically secure function and the second cryptographically secure function each comprise a scalar point multiplication operation over a respective group of points of the elliptic curve. 3 . The pairing method of claim 2 , wherein the user device identifier (UID) comprises an element of a first group of points on the elliptic curve, and the operator device identifier (OID) comprises an element of a second group of points on the elliptic curve. 4 . The pairing method of claim 3 , wherein the user device identifier (UID) is generated by applying hash-to-curve algorithm UID=H (device ID) to a device ID of the user device. 5 . The pairing method of claim 3 , wherein the operator device identifier (OID) is generated by applying hash-to-curve algorithm OID=H (operator ID) to an operator ID of the operator device. 6 . The pairing method of claim 2 , wherein the user device key (KUID) is derived from a first cryptographically secure function comprising the scalar point multiplication operation (KUID=N·UID) of a personalization key (N) which defines a point on the elliptic curve and the user device identifier (UID) which defines a point on the elliptic curve. 7 . The pairing method of claim 6 , wherein the personalization key (N) comprises an integer number. 8 . The pairing method of claim 2 , wherein the operator device key (KOID) is derived from a second cryptographically secure function comprising the scalar point multiplication operation (KOID=N·OID) of a personalization key (N) which defines a point on the elliptic curve and the operator device identifier (OID) which defines a point on the elliptic curve. 9 . The pairing method of claim 8 , wherein the personalization key (N) comprises an integer number. 10 . The pairing method of claim 1 , wherein a merged operator key, KO new , comprises a sum of respective operator keys KO i for a plurality of operators: KO new = ∑ i = 1 n KO ID ( i ) where KO ID (i) =N·O ID (i) where O ID (i) , is the operator device identifier of an ith operator of n (i) ID operators. 11 . The pairing method of claim 1 , further comprising: providing a personalization key, providing an identifier of the user device to be paired, providing an identifier of the operator device to be paired, providing the first cryptographically secure function and the second cryptographically secure function; calculating a user device key by applying the first cryptographically secure function to the personalization key and to the user device identifier; and calculating an operator device key by applying the second cryptographically secure function to the personalization key and to the operator device identifier. 12 . A system comprising: an operator device comprising a memory and at least one processor, the operator device having an operator device identifier (OID); and a user device comprising a memory and at least one processor, the user device having a user device identifier (UID), wherein the user device comprises a user device bilinear mathematical function (e (KUID, OID)) and the operator device comprises an operator bilinear mathematical function (e (UID, KOID)) which each define a pairing over an elliptic curve, wherein the user device bilinear mathematical function and the operator bilinear mathematical function each define a bilinear mathematical function corresponding to the same cryptographic pairing over the same elliptic curve; the user device configured to: receive conditional access data from an operator device; and receive a user device key (KUID) derived from a first cryptographically secure function; and the operator device configured to: receive an operator device key (KOID) derived from a second cryptographically secure function; and generate a pairing key (KD=e (UID, KOID)) between the user device and the operator device, using the operator device key (KOID) and the user device identifier (UID) as variables of the operator bilinear mathematical function (e (UID, KOID)); the user device further configured to generate the same pairing key (KD=e (KUID, OID)) using the user device key (KUID) and the operator device identifier (OID) as variables of the user device bilinear mathematical function e (KUID, OID) based on the user device and the operator device being paired; and decrypt encrypted data to obtain the conditional access data. 13 . The system of claim 12 , wherein the first cryptographically secure function and the second cryptographically secure function each comprise a scalar point multiplication operation over a respective group of points of the elliptic curve. 14 . The system of claim 13 , wherein the user device identifier (UID) comprises an element of a first group of points on the elliptic curve, and the operator device identifier (OID) comprises an element of a second group of points on the elliptic curve. 15 . The system of claim 14 , wherein the user device identifier (UID) is generated by applying hash-to-curve algorithm UID=H (device ID) to a device ID of the user device. 16 . The system of claim 14 , wherein the operator device identifier (OID) is generated by applying hash-to-curve algorithm OID=H (operator ID) to an operator ID of the operator device. 17 . The system of claim 13 , wherein the user device key (KUID) is deriv
Assignees
Inventors
Classifications
involving user or device identifiers, e.g. serial number, physical or biometrical information, DNA, hand-signature or measurable physical characteristics · CPC title
Digital right managament [DRM] · CPC title
- H04L9/3073Primary
involving pairings, e.g. identity based encryption [IBE], bilinear mappings or bilinear pairings, e.g. Weil or Tate pairing · CPC title
- H04L9/0838Primary
Key agreement, i.e. key establishment technique in which a shared key is derived by parties as a function of information contributed by, or associated with, each of these (network architectures or network communication protocols for key exchange in a packet data network H04L63/061) · CPC title
Patent family
Related publications grouped by family.
External sources
Frequently asked questions
Answers are generated from the same data shown on this page.
- What does patent US12526142B2 cover?
- A pairing method between a user device (1) and an operator device (2), the user device (1) being intended to receive conditional access data from the operator device (2), the user device having a user device identifier (UID), the operator having an operator device identifier (OID). The method comprises receiving, by the user device, a user device key (KUID) derived from a first cryptographicall…
- Who is the assignee on this patent?
- Nagravision Sarl
- What technology area does this patent fall under?
- Primary CPC classification H04L9/3073. Mapped technology areas include Electricity.
- When was this patent published?
- Publication date Tue Jan 13 2026 00:00:00 GMT+0000 (Coordinated Universal Time) (B2). Legal status and post-grant events are not shown on this page.
- What related patents are in patentsdb?
- We list 9 related publications on this page (citations in our corpus or others sharing the same primary CPC).