WO2016027111 METHODS FOR DIGITALLY SIGNING AN ELECTRONIC FILE, AND AUTHENTICATING METHOD

Settings

Stemming

Single Family Member

Include NPL

Feedback

Goto Application

Publication Number WO/2016/027111

Publication Date 25.02.2016

International Application No. PCT/HU2015/000055

International Filing Date 15.06.2015

Chapter 2 Demand Filed 28.12.2015

IPC

CPC

View more classifications

View less classifications

Applicants

CSÍK, Balázs [HU]/[HU]
LENGYEL, Csaba [HU]/[HU]
ROGÁN, Antal [HU]/[HU]

Inventors

CSÍK, Balázs
LENGYEL, Csaba
ROGÁN, Antal

Agents

GÖDÖLLE, KÉKES, MÉSZÁROS & SZABÓ

Priority Data

P 14 00392		18.08.2014		HU
P 15 00259		29.05.2015		HU

Publication Language English (en)

Filing Language Hungarian (HU)

Designated States

View all

Title

(EN) METHODS FOR DIGITALLY SIGNING AN ELECTRONIC FILE, AND AUTHENTICATING METHOD

(FR) PROCÉDÉS POUR SIGNER NUMÉRIQUEMENT UN FICHIER ÉLECTRONIQUE, ET PROCÉDÉ D'AUTHENTIFICATION

Abstract

(EN) The invention is a method for digitally signing an electronic file (48), comprising the steps carried out by a server: - generating a challenge value (50) comprising a projection parameter (52), - transferring the challenge value (50) to a client device through a communications channel, - receiving, through a communications channel, an evidence record (70), the electronic file (48) to be signed, and a user's biometric data (54) from the client device, - generating reduced biometric verification data by applying a projection utilising the projection parameter (52), - generating a verification evidence record and comparing it against the evidence record (70) sent by the client device, - generating a server certificate, - signing the server certificate applying the server's private signing key, thereby generating a signed server certificate, - generating a digital signature by associating at least the signed server certificate and the hash (49) of the electronic file (48), and - associating the digital signature with the electronic file (48), thereby generating a digitally signed electronic file. The invention is further an authentication method.

(FR) L'invention concerne un procédé pour signer numériquement un fichier électronique (48), comprenant les étapes, réalisées par un serveur, consistant à : - générer une valeur d'interrogation (50) comprenant un paramètre de projection (52), - transférer la valeur d'interrogation (50) à un dispositif de client par l'intermédiaire d'un canal de communication, - recevoir, par l'intermédiaire d'un canal de communication, un enregistrement de preuve (70), le fichier électronique (48) à signer et des données biométriques (54) d'un utilisateur à partir du dispositif de client, - générer des données de vérification biométriques réduites par application d'une projection à l'aide du paramètre de projection (52), - générer un enregistrement de preuve de vérification et le comparer à l'enregistrement de preuve (70) envoyé par le dispositif de client, - générer un certificat de serveur, - signer le certificat de serveur en appliquant une clé de signature privée du serveur, ce qui permet de générer un certificat de serveur signé, - générer une signature numérique par association au moins du certificat de serveur signé et de l'algorithme de hachage (49) du fichier électronique (48), et – associer la signature numérique au fichier électronique (48), ce qui permet de générer un fichier électronique signé numériquement. L'invention est en outre un procédé d'authentification.

G	PHYSICS
06	COMPUTING; CALCULATING OR COUNTING
F	ELECTRIC DIGITAL DATA PROCESSING
21	Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
30	Authentication, i.e. establishing the identity or authorisation of security principals
31	User authentication
32	using biometric data, e.g. fingerprints, iris scans or voiceprints

G	PHYSICS
06	COMPUTING; CALCULATING OR COUNTING
F	ELECTRIC DIGITAL DATA PROCESSING
21	Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
60	Protecting data
62	Protecting access to data via a platform, e.g. using keys or access control rules

G	PHYSICS
06	COMPUTING; CALCULATING OR COUNTING
F	ELECTRIC DIGITAL DATA PROCESSING
21	Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
60	Protecting data
64	Protecting data integrity, e.g. using checksums, certificates or signatures

G	PHYSICS
06	COMPUTING; CALCULATING OR COUNTING
F	ELECTRIC DIGITAL DATA PROCESSING
21	Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
30	Authentication, i.e. establishing the identity or authorisation of security principals
31	User authentication
32	using biometric data, e.g. fingerprints, iris scans or voiceprints

G	PHYSICS
06	COMPUTING; CALCULATING OR COUNTING
F	ELECTRIC DIGITAL DATA PROCESSING
21	Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
60	Protecting data
62	Protecting access to data via a platform, e.g. using keys or access control rules

Processing

National Phase Entries

Authority File

Settings

Feedback

Goto Application

1. WO2016027111 - METHODS FOR DIGITALLY SIGNING AN ELECTRONIC FILE, AND AUTHENTICATING METHOD

G	PHYSICS
06	COMPUTING; CALCULATING; COUNTING
F	ELECTRIC DIGITAL DATA PROCESSING
21	Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
30	Authentication, i.e. establishing the identity or authorisation of security principals
31	User authentication
32	using biometric data, e.g. fingerprints, iris scans or voiceprints

H	ELECTRICITY
04	ELECTRIC COMMUNICATION TECHNIQUE
L	TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
63	Network architectures or network communication protocols for network security
08	for supporting authentication of entities communicating through a packet data network
0861	using biometrical features, e.g. fingerprint, retina-scan

H	ELECTRICITY
04	ELECTRIC COMMUNICATION TECHNIQUE
L	TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
9	Cryptographic mechanisms or cryptographic; arrangements for secret or secure communication
06	the encryption apparatus using shift registers or memories for block-wise ; or stream; coding, e.g. DES systems ; or RC4; Hash functions; Pseudorandom sequence generators
0643	Hash functions, e.g. MD5, SHA, HMAC or f9 MAC

H	ELECTRICITY
04	ELECTRIC COMMUNICATION TECHNIQUE
L	TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
9	Cryptographic mechanisms or cryptographic; arrangements for secret or secure communication
06	the encryption apparatus using shift registers or memories for block-wise ; or stream; coding, e.g. DES systems ; or RC4; Hash functions; Pseudorandom sequence generators
0643	Hash functions, e.g. MD5, SHA, HMAC or f9 MAC

H	ELECTRICITY
04	ELECTRIC COMMUNICATION TECHNIQUE
L	TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
9	Cryptographic mechanisms or cryptographic; arrangements for secret or secure communication
32	including means for verifying the identity or authority of a user of the system ; or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
3263	involving certificates, e.g. public key certificate [PKC] or attribute certificate [AC]; Public key infrastructure [PKI] arrangements
3268	using certificate validation, registration, distribution or revocation, e.g. certificate revocation list [CRL]