Processing

Please wait...

Settings

Settings

Goto Application

1. WO2011064844 - DIGITAL SIGNATURE SERVER AND USER TERMINAL

Publication Number WO/2011/064844
Publication Date 03.06.2011
International Application No. PCT/JP2009/069843
International Filing Date 25.11.2009
IPC
H04L 9/32 2006.01
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
9Arrangements for secret or secure communication
32including means for verifying the identity or authority of a user of the system
G09C 1/00 2006.01
GPHYSICS
09EDUCATING; CRYPTOGRAPHY; DISPLAY; ADVERTISING; SEALS
CCIPHERING OR DECIPHERING APPARATUS FOR CRYPTOGRAPHIC OR OTHER PURPOSES INVOLVING THE NEED FOR SECRECY
1Apparatus or methods whereby a given sequence of signs, e.g. an intelligible text, is transformed into an unintelligible sequence of signs by transposing the signs or groups of signs or by replacing them by others according to a predetermined system
CPC
H04L 63/0457
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
63Network architectures or network communication protocols for network security
04for providing a confidential data exchange among entities communicating through data packet networks
0428wherein the data content is protected, e.g. by encrypting or encapsulating the payload
0457wherein the sending and receiving network entities apply dynamic encryption, e.g. stream encryption
H04L 9/0825
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
9Cryptographic mechanisms or cryptographic; arrangements for secret or secure communication
08Key distribution ; or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
0816Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
0819Key transport or distribution, i.e. key establishment techniques where one party creates or otherwise obtains a secret value, and securely transfers it to the other(s)
0825using asymmetric-key encryption or public key infrastructure [PKI], e.g. key signature or public key certificates
H04L 9/14
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
9Cryptographic mechanisms or cryptographic; arrangements for secret or secure communication
14using a plurality of keys or algorithms
H04L 9/3247
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
9Cryptographic mechanisms or cryptographic; arrangements for secret or secure communication
32including means for verifying the identity or authority of a user of the system ; or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
3247involving digital signatures
Applicants
  • 株式会社 東芝 Kabushiki Kaisha Toshiba [JP]/[JP] (AllExceptUS)
  • 嵩 比呂志 SUU, Hiroshi [JP]/[JP] (UsOnly)
  • 三浦 顕彰 MIURA, Akira [JP]/[JP] (UsOnly)
  • 笠原 章裕 KASAHARA, Akihiro [JP]/[JP] (UsOnly)
  • 松川 伸一 MATSUKAWA, Shinichi [JP]/[JP] (UsOnly)
Inventors
  • 嵩 比呂志 SUU, Hiroshi
  • 三浦 顕彰 MIURA, Akira
  • 笠原 章裕 KASAHARA, Akihiro
  • 松川 伸一 MATSUKAWA, Shinichi
Agents
  • 伊丹 勝 ITAMI, Masaru
Priority Data
Publication Language Japanese (JA)
Filing Language Japanese (JA)
Designated States
Title
(EN) DIGITAL SIGNATURE SERVER AND USER TERMINAL
(FR) SERVEUR DE SIGNATURE NUMÉRIQUE ET TERMINAL UTILISATEUR
(JA) 署名データサーバ及びユーザ端末
Abstract
(EN)
Disclosed is a digital signature server that simultaneously reduces load on user terminals and server-side load resulting from verifying digital signatures. A signing key matrix (KM) arrays a plurality of signing keys (Ki-j) in a matrix of m rows by n columns, and is stored in a signing key matrix database (21). The relation between a signing key set (CK), which is a set of signing keys arbitrarily selected from each of the n columns thereof, and a user terminal (30), is stored in a relational information database (22). A digital signature generation unit (24) encrypts a content digest (D), which is generated on the basis of digital content (C), with each of n signing keys that are included in the signing key matrix (KM), and generates a digital signature in a matrix configuration thereupon.
(FR)
La présente invention concerne un serveur de signature numérique qui réduit simultanément la charge sur des terminaux utilisateur et la charge au niveau du serveur résultant de la vérification de signatures numériques. Une matrice de clés de signature (KM) dispose d'une pluralité de clés de signature (Ki-j) dans une matrice de m rangées et de n colonnes, et est stockée dans une base de données de matrices de clés de signature (21). La relation entre un ensemble de clés de signature (CK), qui est un ensemble de clés de signature arbitrairement sélectionné parmi chacune de ses n colonnes, et un terminal utilisateur (30), est stockée dans une base de données d'informations relationnelles (22). Une unité de génération de signatures numériques (24) chiffre un condensé de contenu (D), qui est généré sur la base du contenu numérique (C), avec chacune des n clés de signature qui sont comprises dans la matrice de clés de signatures (KM), et génère une signature numérique dans une configuration de matrice s'y rapportant.
(JA)
 ユーザ端末における署名データの検証の負荷を軽減すると共に、同時にサーバ側における負担も軽減する。署名鍵マトリクスKMは、複数の署名鍵Ki-jをm行n列の行からなるマトリクス状に配列してなり、署名鍵マトリクスデータベース21に記憶される。n列の各々から選ばれる任意の署名鍵の集合である署名鍵セットCKとユーザ端末30との対応関係が、対応関係情報データベース22に記憶される。 署名データ生成部24は、コンテンツデータCに基づいて生成されるコンテンツダイジェストDを署名鍵マトリクスKMに含まれるn個の署名鍵でそれぞれ暗号化してマトリクス状の署名データを生成する。
Latest bibliographic data on file with the International Bureau