CA2290170A1 - Improved digital signature - Google Patents

Improved digital signature Download PDF

Info

Publication number
CA2290170A1
CA2290170A1 CA002290170A CA2290170A CA2290170A1 CA 2290170 A1 CA2290170 A1 CA 2290170A1 CA 002290170 A CA002290170 A CA 002290170A CA 2290170 A CA2290170 A CA 2290170A CA 2290170 A1 CA2290170 A1 CA 2290170A1
Authority
CA
Canada
Prior art keywords
digital signature
improved digital
signature
digital
hash
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CA002290170A
Other languages
French (fr)
Other versions
CA2290170C (en
Inventor
Ernst-Michael Hamann
Jutta Kreyss
Narayanan Vasudevan
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
International Business Machines Corp
Original Assignee
International Business Machines Corp
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by International Business Machines Corp filed Critical International Business Machines Corp
Publication of CA2290170A1 publication Critical patent/CA2290170A1/en
Application granted granted Critical
Publication of CA2290170C publication Critical patent/CA2290170C/en
Anticipated expiration legal-status Critical
Expired - Fee Related legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3263Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving certificates, e.g. public key certificate [PKC] or attribute certificate [AC]; Public key infrastructure [PKI] arrangements
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/64Protecting data integrity, e.g. using checksums, certificates or signatures
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/34Payment architectures, schemes or protocols characterised by the use of specific devices or networks using cards, e.g. integrated circuit [IC] cards or magnetic cards
    • G06Q20/341Active cards, i.e. cards including their own processing means, e.g. including an IC or chip
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/40Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
    • G06Q20/409Device specific authentication in transaction processing
    • G06Q20/4097Device specific authentication in transaction processing using mutual authentication between devices and transaction partners
    • G06Q20/40975Device specific authentication in transaction processing using mutual authentication between devices and transaction partners using encryption therefor
    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07FCOIN-FREED OR LIKE APPARATUS
    • G07F7/00Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus
    • G07F7/08Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means
    • G07F7/10Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means together with a coded signal, e.g. in the form of personal identification information, like personal identification number [PIN] or biometric data
    • G07F7/1008Active credit-cards provided with means to personalise their use, e.g. with PIN-introduction/comparison system
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3247Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving digital signatures
    • H04L9/3249Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving digital signatures using RSA or related signature schemes, e.g. Rabin scheme
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2221/00Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/21Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/2153Using hardware token as a secondary aspect

Abstract

The invention relates to the generation of digital signatures by the use of which the legally binding nature of a digital signature is enhanced. For this, an expanded digital signature is created which, in addition to the hash, contains other information, in particular information identifying the hardware and software environment used in generating the signature.
CA002290170A 1999-01-29 1999-11-22 Improved digital signature Expired - Fee Related CA2290170C (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
EP99101913 1999-01-29
EP99101913.4 1999-01-29

Publications (2)

Publication Number Publication Date
CA2290170A1 true CA2290170A1 (en) 2000-07-29
CA2290170C CA2290170C (en) 2005-06-14

Family

ID=8237475

Family Applications (1)

Application Number Title Priority Date Filing Date
CA002290170A Expired - Fee Related CA2290170C (en) 1999-01-29 1999-11-22 Improved digital signature

Country Status (3)

Country Link
US (1) US7096365B1 (en)
CA (1) CA2290170C (en)
DE (1) DE19959764A1 (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2009079766A1 (en) * 2007-12-20 2009-07-02 Bce Inc Generation of communication device signatures for use in securing nomadic electronic transactions

Families Citing this family (21)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2002028005A2 (en) * 2000-09-27 2002-04-04 Siemens Ag Österreich Method and reader used to produce digital signatures
US8543511B2 (en) * 2002-04-29 2013-09-24 Contentguard Holdings, Inc. System and method for specifying and processing legality expressions
JP4036838B2 (en) * 2004-03-12 2008-01-23 インターナショナル・ビジネス・マシーンズ・コーポレーション Security device, information processing device, method executed by security device, method executed by information processing device, program executable for executing the method, and ticket system
EP1747529A1 (en) * 2004-05-18 2007-01-31 Silverbrook Research Pty. Ltd Method and apparatus for security document tracking
US20060004829A1 (en) * 2004-05-27 2006-01-05 Silverbrook Research Pty Ltd Rolling keys
US7549718B2 (en) * 2004-05-27 2009-06-23 Silverbrook Research Pty Ltd Printhead module having operation controllable on basis of thermal sensors
US7557941B2 (en) * 2004-05-27 2009-07-07 Silverbrook Research Pty Ltd Use of variant and base keys with three or more entities
US7757086B2 (en) * 2004-05-27 2010-07-13 Silverbrook Research Pty Ltd Key transportation
US7484831B2 (en) 2004-05-27 2009-02-03 Silverbrook Research Pty Ltd Printhead module having horizontally grouped firing order
US7448707B2 (en) * 2004-05-27 2008-11-11 Silverbrook Research Pty Ltd Method of expelling ink from nozzels in groups, starting at outside nozzels of each group
US7281330B2 (en) * 2004-05-27 2007-10-16 Silverbrook Research Pty Ltd Method of manufacturing left-handed and right-handed printhead modules
US7314261B2 (en) * 2004-05-27 2008-01-01 Silverbrook Research Pty Ltd Printhead module for expelling ink from nozzles in groups, alternately, starting at outside nozzles of each group
US7427117B2 (en) * 2004-05-27 2008-09-23 Silverbrook Research Pty Ltd Method of expelling ink from nozzles in groups, alternately, starting at outside nozzles of each group
JP2006050209A (en) * 2004-08-04 2006-02-16 Ricoh Co Ltd Electronic signature providing method, electronic signature providing apparatus, portable information processing device, electronic signature providing system, electronic signature providing program, signature data creating program and recording medium
US20060136731A1 (en) * 2004-12-21 2006-06-22 Signaturelink, Inc. System and method for providing an online electronic signature
US8588483B2 (en) * 2004-12-21 2013-11-19 Signaturelink, Inc. System and method for providing a real-time, online biometric signature
US8620818B2 (en) 2007-06-25 2013-12-31 Microsoft Corporation Activation system architecture
US9231928B2 (en) 2008-12-18 2016-01-05 Bce Inc. Validation method and system for use in securing nomadic electronic transactions
US20120102322A1 (en) 2008-12-18 2012-04-26 O'brien William G Processing of communication device signatures for use in securing nomadic electronic transactions
US20170063550A1 (en) * 2015-04-23 2017-03-02 Keith J Brodie Secure Digital Signature Apparatus and Methods
CN108292330B (en) 2015-12-04 2023-02-28 维萨国际服务协会 Secure token distribution

Family Cites Families (13)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5214702A (en) * 1988-02-12 1993-05-25 Fischer Addison M Public key/signature cryptosystem with enhanced digital signature certification
US5005200A (en) * 1988-02-12 1991-04-02 Fischer Addison M Public key/signature cryptosystem with enhanced digital signature certification
IL101623A (en) * 1992-04-16 1997-06-10 Fortress U & T 2000 Ltd Digital signature device
NL9301348A (en) * 1993-08-02 1995-03-01 Stefanus Alfonsus Brands Electronic payment system
US5539828A (en) * 1994-05-31 1996-07-23 Intel Corporation Apparatus and method for providing secured communications
JPH08305662A (en) * 1995-05-02 1996-11-22 Fujitsu Ltd Method and system for client authentication
US6021491A (en) * 1996-11-27 2000-02-01 Sun Microsystems, Inc. Digital signatures for data streams and data archives
GB9626241D0 (en) * 1996-12-18 1997-02-05 Ncr Int Inc Secure data processing method and system
DE19702049C1 (en) * 1997-01-22 1998-05-14 Ibm Chipcard cryptographic key certification method
DE19718547C2 (en) * 1997-05-02 2002-06-20 Deutsche Telekom Ag System for secure reading and changing of data on intelligent data carriers
US6119228A (en) * 1997-08-22 2000-09-12 Compaq Computer Corporation Method for securely communicating remote control commands in a computer network
US6085321A (en) * 1998-08-14 2000-07-04 Omnipoint Corporation Unique digital signature
US6516414B1 (en) * 1999-02-26 2003-02-04 Intel Corporation Secure communication over a link

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2009079766A1 (en) * 2007-12-20 2009-07-02 Bce Inc Generation of communication device signatures for use in securing nomadic electronic transactions
US10726385B2 (en) 2007-12-20 2020-07-28 Bce Inc. Contact-less tag with signature, and applications thereof

Also Published As

Publication number Publication date
US7096365B1 (en) 2006-08-22
CA2290170C (en) 2005-06-14
DE19959764A1 (en) 2000-08-17

Similar Documents

Publication Publication Date Title
CA2290170A1 (en) Improved digital signature
EP2306670A3 (en) Hybrid digital signature scheme
AU7043096A (en) Generation of cryptographic signatures using hash keys
WO1999035785A3 (en) Transmitting revisions with digital signatures
EP1548580A3 (en) Non-platforn-specific unique identifier generation
WO2002045378A3 (en) Secure file transfer method and system
EP1469369A3 (en) Verbose hardware identification for binding a software package to a computer system having tolerance for hardware changes
EP1498799A3 (en) Electronic document authenticity assurance method and electronic document disclosure system
AU2003233666A1 (en) Distributed signature verification with dynamic database of reference signatures
EP1094424A3 (en) Digital signing method
WO2007106567A3 (en) Protecting the integrity of electronically derivative works
EP1505475A3 (en) Projection of trustworthiness from a trusted environment to an untrusted environment
EP1130491A3 (en) Digital certificate including authorization data
EP1001601A3 (en) Recording device
EP1202150A3 (en) Microprocessor with program and data protection function under multi-task environment
WO2002103484A3 (en) Enhanced encoder for synchronizing multimedia files into an audio bit stream
WO2002011425A3 (en) Indigenous authentication for sensor-recorders and other information capture devices
WO2006035227A3 (en) Source code protection
FR2845377B1 (en) SOLID HYDROGEN-GENERATING COMBUSTION COMPOSITIONS COMPRISING ALKALINE OR ALKALINE-EARTH BOROHYDRIDE AND OXIDIZING SALT BASED ON AMMONIUM, ALKALINE OR ALKALINE-EARTH PERCHLORATE
WO2002099558A3 (en) Digital data distribution system
WO2000013368A8 (en) Method of authenticating or 'digitally signing' digital data objects
WO1999052241A3 (en) Generating rsa moduli including a predetermined portion
WO2002005475A3 (en) Generation and use of digital signatures
HK1021422A1 (en) Marking of electronic documents in order to expose unauthorized publication
AU2001278767A1 (en) Musical sound generator, portable terminal, musical sound generating method, andstorage medium

Legal Events

Date Code Title Description
EEER Examination request
MKLA Lapsed
MKLA Lapsed

Effective date: 20101122