CA2399097A1 - Method, system and mobile terminal for checking the integrity of data - Google Patents
Method, system and mobile terminal for checking the integrity of dataInfo
- Publication number
- CA2399097A1 CA2399097A1 CA002399097A CA2399097A CA2399097A1 CA 2399097 A1 CA2399097 A1 CA 2399097A1 CA 002399097 A CA002399097 A CA 002399097A CA 2399097 A CA2399097 A CA 2399097A CA 2399097 A1 CA2399097 A1 CA 2399097A1
- Authority
- CA
- Canada
- Prior art keywords
- message
- random string
- authentication
- authentication value
- check
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/12—Applying verification of the received information
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/18—Network architectures or network communication protocols for network security using different networks or channels, e.g. using out of band channels
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/3215—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using a plurality of channels
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/10—Integrity
- H04W12/106—Packet or message integrity
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L2209/00—Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
- H04L2209/80—Wireless
Abstract
The invention relates to a method for checking the integrity of a message transmitted between a sender in a transmitting end and a recipient in a receiving end, in which method an authentication value is calculated for the first message and a random string is generated. According to a method in the transmitting end an authentication value is generated from a message to be sent and the random string. A check code is formed from the authentication value and the random string. The first message is transferred from a sender to a recipient through a first channel, and the check code is transferred through a second secure channel. In the receiving end a message is received through a first channel and the check code is received through a second secure channel.
In the receiving end an authentication check formed at least based of the received message. The integrity of the received message is checked by comparing the predetermined check values in the receiving end.
In the receiving end an authentication check formed at least based of the received message. The integrity of the received message is checked by comparing the predetermined check values in the receiving end.
Claims (14)
1. A method for checking the integrity of a first message transmitted between a sender in a transmitting end and a recipient in a receiving end, in which method an authentication value is calculated for the first message and a random string is generated, characterized in that - the first message is transmitted from the sender to the recipient through a first channel and - the authentication value and the random string are transmitted to the recipient through a second secure channel for checking the integrity of a received message in the receiving end.
2. A method according to claim 1, characterized in that the authentication value is generated from the first message and the random string in the transmitting end.
3. A method according to claim 1, characterized in that the authentication value and the random string are combined as a check code in the transmitting end.
4. A method according to claim 3, characterized in that the authentication value and the random string are separated from the check code in the receiving end.
5. A method according to claim 1, characterized in that in the receiving end an authentication check is generated from the received message and from either the random string or the authentication value.
6. A method according to claim 5, characterized in that in the receiving end the authentication check is compared with either the authentication value or the random string not used in the generation of the authentication check for checking the integrity of the received message compared to the transmitted message.
7. A method according to claim 1, characterized in that the second secure channel is out-of-band.
8. A method according to claim 1, characterized in that in the transmitting end - a first message is formed, - a random string is generated, - an authentication value is generated from said first message and said random string, - a check code is formed by combining said authentication value and said random string, - said first message is transferred from the sender to the recipient through the first channel, and - said check code is transferred from said sender to said recipient through the second secure channel.
9. A method according to claim 8, characterized in that in the receiving end - a message is received through a first channel, - the check code is received through a second secure channel, - the authentication value and the random string are separated from said check code, - an authentication check is generated from the received message and from either said random string or said authentication value, and said authentication check is compared with either said authentication value or said random string not used in the generation of said authentication check for checking the integrity of said received message compared to the first message.
10. A method according to claim 1, characterized in that the message contains bootstrap information.
11. A system for checking the integrity of a first message transmitted between a sender in a transmitting end and a recipient in a receiving end, in which the system comprises means for calculating an authentication value for the first message and means for generating a random string, characterized in that in the transmitting end the system comprises - means for forming a check code by combining the authentication value and the random string, - means for transferring the first message from the sender to the recipient through the first channel, and - means for transferring said check code from said sender to said recipient through the second secure channel, and in the receiving end the system comprises - means for separating said authentication value and said random string from said check code, - means for generating an authentication check from the received message and from either said random string or said authentication value, and - means for comparing said authentication check with either said authentication value or said random string not used in the generation of said authentication check for checking the integrity of said received message compared to the first message.
12. A system according to claim 11, characterized in that the system comprises the operations of the WAP (Wireless Application Protocol) system.
13. A mobile terminal for checking the integrity of a message received, into which mobile terminal a first message is sent, characterized in that the mobile terminal comprises - means for receiving a message, - input means for inputting a check code of the first message received through a secure channel into said mobile terminal, - means for separating an authentication value and a random string from said check code of said first message, - means for generating an authentication check from said received message and from either said authentication value or said random string, and - means for comparing said authentication check with either said authentication value or said random string not used in the generation of said authentication check for checking the integrity of said received message compared to the first message.
14. A mobile terminal according to claim 13, characterized in that it is WAP
(Wireless Application Protocol) terminal.
(Wireless Application Protocol) terminal.
Applications Claiming Priority (3)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| FI20000203 | 2000-02-01 | ||
| FI20000203A FI112418B (en) | 2000-02-01 | 2000-02-01 | Method for checking data integrity, system and mobile |
| PCT/FI2001/000093 WO2001058081A1 (en) | 2000-02-01 | 2001-02-01 | Method for checking the integrity of data, system and mobile terminal |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CA2399097A1 true CA2399097A1 (en) | 2001-08-09 |
| CA2399097C CA2399097C (en) | 2011-07-05 |
Family
ID=8557289
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CA2399097A Expired - Lifetime CA2399097C (en) | 2000-02-01 | 2001-02-01 | Method, system and mobile terminal for checking the integrity of data |
Country Status (14)
| Country | Link |
|---|---|
| US (2) | US7725714B2 (en) |
| EP (1) | EP1252739B1 (en) |
| JP (4) | JP4377100B2 (en) |
| KR (1) | KR100465443B1 (en) |
| CN (1) | CN100409612C (en) |
| AT (1) | ATE326091T1 (en) |
| AU (1) | AU3180901A (en) |
| BR (1) | BRPI0107925B1 (en) |
| CA (1) | CA2399097C (en) |
| DE (1) | DE60119489T2 (en) |
| ES (1) | ES2261376T3 (en) |
| FI (1) | FI112418B (en) |
| HK (1) | HK1049079B (en) |
| WO (1) | WO2001058081A1 (en) |
Families Citing this family (33)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| GB0004178D0 (en) | 2000-02-22 | 2000-04-12 | Nokia Networks Oy | Integrity check in a communication system |
| FI114062B (en) * | 2001-06-08 | 2004-07-30 | Nokia Corp | Method for ensuring the security of the communication, the communication system and the communication device |
| US7873163B2 (en) | 2001-11-05 | 2011-01-18 | Qualcomm Incorporated | Method and apparatus for message integrity in a CDMA communication system |
| FI114001B (en) * | 2001-11-09 | 2004-07-15 | Nokia Corp | Procedure for data communication and data transmission systems |
| US7299349B2 (en) * | 2002-01-31 | 2007-11-20 | Microsoft Corporation | Secure end-to-end notification |
| US7434051B1 (en) * | 2003-09-29 | 2008-10-07 | Sun Microsystems, Inc. | Method and apparatus for facilitating secure cocktail effect authentication |
| DE102004024648A1 (en) * | 2004-05-18 | 2005-12-22 | Siemens Ag | Method for authenticating a communication unit |
| GB2419785B (en) * | 2004-10-27 | 2007-10-17 | Roke Manor Research | A method of determining reliability of data |
| KR100621588B1 (en) * | 2004-11-03 | 2006-09-19 | 삼성전자주식회사 | Method for maintaining a secure communication channel based on platform integrity and communication apparatus using the same |
| US7562284B2 (en) * | 2005-08-26 | 2009-07-14 | International Business Machines Corporation | Apparatus, system, and method for mandatory end to end integrity checking in a storage system |
| BRPI0621674B1 (en) * | 2006-05-15 | 2019-05-28 | Telecom Italia S.P.A | METHOD AND SYSTEM FOR OUT-OF-BROAD AUTHENTICATION OF DATA FLOWS TRANSMITTED THROUGH A COMMUNICATION NETWORK |
| DE102006033820A1 (en) * | 2006-07-19 | 2008-01-31 | Secunet Security Networks Ag | Method for the graphic display of digital data and apparatus for carrying out the method |
| US8838953B2 (en) * | 2007-06-05 | 2014-09-16 | Stmicroelectronics, Inc. | System and method for using an out-of-band device to program security keys |
| CN101453478B (en) * | 2007-11-28 | 2013-07-03 | 新奥特(北京)视频技术有限公司 | Integrity checking method in document transmission |
| EP2106191B1 (en) * | 2008-03-28 | 2012-12-26 | Vodafone Holding GmbH | A method for updating a smartcard and a smartcard having update capability |
| GB0811210D0 (en) * | 2008-06-18 | 2008-07-23 | Isis Innovation | Improvements related to the authentication of messages |
| DE102010026433A1 (en) * | 2010-07-08 | 2012-01-12 | Siemens Aktiengesellschaft | Control network for a rail vehicle |
| DE102010033229A1 (en) * | 2010-08-03 | 2012-02-09 | Siemens Aktiengesellschaft | Method and system for tamper-proof transmission of control data |
| US8880886B2 (en) | 2011-05-26 | 2014-11-04 | First Data Corporation | Systems and methods for authenticating mobile devices |
| US9256714B2 (en) * | 2011-11-09 | 2016-02-09 | International Business Machines Corporation | Preserving integrity of messages in a messaging oriented middleware system |
| EP2600274B1 (en) * | 2011-12-02 | 2019-04-24 | BlackBerry Limited | Method Of Sending A Self-Signed Certificate From A Communication Device |
| IL217478A0 (en) * | 2012-01-10 | 2012-03-29 | Nds Ltd | Anonymous authentication |
| JP5626603B2 (en) * | 2012-07-30 | 2014-11-19 | 株式会社タツノ | Lubrication device |
| GB2513494B (en) * | 2012-08-23 | 2015-07-29 | Vzinternet Ltd | Data verification |
| UA109180C2 (en) * | 2013-09-02 | 2015-07-27 | METHOD FOR TRANSMITTING VOICE AND OTHER INFORMATION FROM ONE AUTONOMOUS MOBILE TERMINAL TO ANOTHER | |
| CN103580956A (en) * | 2013-11-05 | 2014-02-12 | 北京锐安科技有限公司 | Method and device for detecting data integrity |
| FR3016099B1 (en) * | 2013-12-26 | 2017-05-05 | Grdf | RECEPTION METHOD USING INTEGRITY CONTROL CODING |
| JP6219237B2 (en) * | 2014-06-18 | 2017-10-25 | 株式会社トクヤマ | Ca (OH) 2 aqueous slurry |
| CN104835046B (en) * | 2015-04-20 | 2018-03-16 | 信码互通(北京)科技有限公司 | A kind of data false distinguishing method for two-dimension code safe verification |
| CN105306548A (en) * | 2015-09-25 | 2016-02-03 | 广东欧珀移动通信有限公司 | Data synchronization method and system |
| CN105426189A (en) * | 2015-11-13 | 2016-03-23 | 科大讯飞股份有限公司 | Notification bar combining method and system |
| CN109302368A (en) * | 2017-06-19 | 2019-02-01 | 中兴通讯股份有限公司 | A kind of document handling method and server |
| KR102223741B1 (en) * | 2019-05-13 | 2021-03-05 | 네이버웹툰 유한회사 | Method, apparatus and computer program for determining random generation of string |
Family Cites Families (20)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US5319710A (en) * | 1986-08-22 | 1994-06-07 | Tandem Computers Incorporated | Method and means for combining and managing personal verification and message authentication encrytions for network transmission |
| GB2204975B (en) | 1987-05-19 | 1990-11-21 | Gen Electric Co Plc | Authenticator |
| GB2283349A (en) | 1993-10-29 | 1995-05-03 | Ibm | Transaction processing system |
| US5539826A (en) | 1993-12-29 | 1996-07-23 | International Business Machines Corporation | Method for message authentication from non-malleable crypto systems |
| US5606609A (en) | 1994-09-19 | 1997-02-25 | Scientific-Atlanta | Electronic document verification system and method |
| US5598459A (en) * | 1995-06-29 | 1997-01-28 | Ericsson Inc. | Authentication and handover methods and systems for radio personal communications |
| US5680458A (en) | 1995-11-14 | 1997-10-21 | Microsoft Corporation | Root key compromise recovery |
| JPH09311854A (en) | 1996-05-22 | 1997-12-02 | Mitsubishi Electric Corp | Signatured document communication device |
| US6367014B1 (en) | 1996-07-11 | 2002-04-02 | Gemplus S.C.A. | Enhanced short message and method for synchronizing and ensuring security of enhanced short messages exchanged in a cellular radio communication system |
| CA2228185C (en) * | 1997-01-31 | 2007-11-06 | Certicom Corp. | Verification protocol |
| US5771292A (en) * | 1997-04-25 | 1998-06-23 | Zunquan; Liu | Device and method for data integrity and authentication |
| DE19722424C5 (en) | 1997-05-28 | 2006-09-14 | Telefonaktiebolaget Lm Ericsson (Publ) | Method of securing access to a remote system |
| JPH10334164A (en) | 1997-06-04 | 1998-12-18 | Nippon Telegr & Teleph Corp <Ntt> | Electronic check method, and its device and its execution program recording medium |
| FR2771875B1 (en) | 1997-11-04 | 2000-04-14 | Gilles Jean Antoine Kremer | METHOD FOR TRANSMITTING INFORMATION AND COMPUTER SERVER IMPLEMENTING IT |
| EP0930795A1 (en) * | 1998-01-16 | 1999-07-21 | Nokia Telecommunications Oy | Method for authentication of a mobile subscriber in a telecommunication network |
| US6560706B1 (en) * | 1998-01-26 | 2003-05-06 | Intel Corporation | Interface for ensuring system boot image integrity and authenticity |
| JPH11355268A (en) | 1998-06-09 | 1999-12-24 | Sony Corp | Device and method for information processing, information processing system and providing medium |
| US6311276B1 (en) * | 1998-08-25 | 2001-10-30 | 3Com Corporation | Secure system for remote management and wake-up commands |
| US6463534B1 (en) * | 1999-03-26 | 2002-10-08 | Motorola, Inc. | Secure wireless electronic-commerce system with wireless network domain |
| FI112315B (en) | 1999-05-11 | 2003-11-14 | Nokia Corp | Integrity protection method for radio network signaling |
-
2000
- 2000-02-01 FI FI20000203A patent/FI112418B/en not_active IP Right Cessation
-
2001
- 2001-02-01 JP JP2001557221A patent/JP4377100B2/en not_active Expired - Lifetime
- 2001-02-01 DE DE60119489T patent/DE60119489T2/en not_active Expired - Lifetime
- 2001-02-01 CA CA2399097A patent/CA2399097C/en not_active Expired - Lifetime
- 2001-02-01 CN CNB018042961A patent/CN100409612C/en not_active Expired - Lifetime
- 2001-02-01 EP EP01903840A patent/EP1252739B1/en not_active Expired - Lifetime
- 2001-02-01 BR BRPI0107925A patent/BRPI0107925B1/en active IP Right Grant
- 2001-02-01 AT AT01903840T patent/ATE326091T1/en active
- 2001-02-01 KR KR10-2002-7009492A patent/KR100465443B1/en active IP Right Grant
- 2001-02-01 AU AU31809/01A patent/AU3180901A/en not_active Abandoned
- 2001-02-01 ES ES01903840T patent/ES2261376T3/en not_active Expired - Lifetime
- 2001-02-01 WO PCT/FI2001/000093 patent/WO2001058081A1/en active IP Right Grant
- 2001-02-01 US US10/182,940 patent/US7725714B2/en not_active Expired - Lifetime
-
2003
- 2003-02-19 HK HK03101262.6A patent/HK1049079B/en not_active IP Right Cessation
-
2005
- 2005-11-24 JP JP2005338199A patent/JP2006136003A/en not_active Withdrawn
-
2006
- 2006-07-25 JP JP2006202215A patent/JP2006352904A/en active Pending
-
2010
- 2010-03-29 US US12/798,111 patent/US8171291B2/en not_active Expired - Lifetime
- 2010-07-13 JP JP2010158841A patent/JP2011010313A/en active Pending
Also Published As
| Publication number | Publication date |
|---|---|
| AU3180901A (en) | 2001-08-14 |
| CA2399097C (en) | 2011-07-05 |
| FI112418B (en) | 2003-11-28 |
| EP1252739A1 (en) | 2002-10-30 |
| ES2261376T3 (en) | 2006-11-16 |
| US8171291B2 (en) | 2012-05-01 |
| BR0107925A (en) | 2002-12-10 |
| EP1252739B1 (en) | 2006-05-10 |
| CN100409612C (en) | 2008-08-06 |
| US20100191966A1 (en) | 2010-07-29 |
| CN1397124A (en) | 2003-02-12 |
| FI20000203A (en) | 2001-08-02 |
| JP2006136003A (en) | 2006-05-25 |
| JP2006352904A (en) | 2006-12-28 |
| US7725714B2 (en) | 2010-05-25 |
| FI20000203A0 (en) | 2000-02-01 |
| HK1049079B (en) | 2006-10-20 |
| DE60119489D1 (en) | 2006-06-14 |
| DE60119489T2 (en) | 2006-09-28 |
| US20030120924A1 (en) | 2003-06-26 |
| JP2003522475A (en) | 2003-07-22 |
| HK1049079A1 (en) | 2003-04-25 |
| BRPI0107925B1 (en) | 2015-09-08 |
| ATE326091T1 (en) | 2006-06-15 |
| WO2001058081A1 (en) | 2001-08-09 |
| KR100465443B1 (en) | 2005-01-13 |
| JP2011010313A (en) | 2011-01-13 |
| JP4377100B2 (en) | 2009-12-02 |
| KR20030009342A (en) | 2003-01-29 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CA2399097A1 (en) | Method, system and mobile terminal for checking the integrity of data | |
| KR100884488B1 (en) | Message authentication system and method | |
| CN103841118B (en) | Method for constructing reliable two-way covert channel based on TCP effective loads | |
| WO2002101974A8 (en) | Secure ephemeral decryptability | |
| US20090164783A1 (en) | Methods, apparatuses, and computer program products for authentication of fragments using hash trees | |
| ATE521155T1 (en) | METHOD OF SERVER-INITIATED SYNCHRONIZATION IN A SYNCHRONIZATION SYSTEM WHERE THE REQUEST MESSAGE FROM THE SERVER HAS A MAXIMUM SIZE | |
| EP1261224A3 (en) | System and protocol for extending functionality of wireless communication messaging | |
| US20010054146A1 (en) | Method and system of reversibly marking a text document with a pattern of extra blanks for authentication | |
| EP1650671A4 (en) | Information processing device and method, recording medium, and program | |
| WO2005008941A9 (en) | Messaging system | |
| WO2005043326A3 (en) | Encryption and signature schemes using message mappings to reduce the message size | |
| EP1109373A3 (en) | Method and apparatus for forwarding packet fragments | |
| EP1124401A3 (en) | Method and apparatus for performing a key update using update key | |
| WO2010145162A1 (en) | File transfer method and system | |
| CN105430640A (en) | Short message encryption and authentication method, terminal and system | |
| WO2016116999A1 (en) | Packet transmission device, packet-receiving device, packet transmission program, and packet-receiving program | |
| CN109005535A (en) | A kind of method that multiple virtual Beidou cards realize Beidou communication function | |
| CN104869174A (en) | File transmission method based on third party message-oriented middle-ware | |
| CN104980899A (en) | Communication method and system for mobile terminal, mobile terminal and server | |
| DE60101843D1 (en) | PROCEDURE FOR SECURE DATA TRANSFER | |
| CA2384792A1 (en) | Packet authentication | |
| WO2005024553A3 (en) | A device, system, method and computer readable medium for indentifying and authenticating a cellular device using a short-range radio address | |
| CN102724133A (en) | Method and device for transmitting internet protocol (IP) message | |
| JP2005167942A (en) | Communication system and packet structure | |
| CN110912680A (en) | Data transmission method for improving safety of vehicle condition data and storage medium |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| EEER | Examination request | ||
| MKEX | Expiry |
Effective date: 20210201 |