Processing

Please wait...

Settings

Settings

Goto Application

1. WO2016027111 - METHODS FOR DIGITALLY SIGNING AN ELECTRONIC FILE, AND AUTHENTICATING METHOD

Publication Number WO/2016/027111
Publication Date 25.02.2016
International Application No. PCT/HU2015/000055
International Filing Date 15.06.2015
Chapter 2 Demand Filed 28.12.2015
IPC
G06F 21/32 2013.1
GPHYSICS
06COMPUTING; CALCULATING OR COUNTING
FELECTRIC DIGITAL DATA PROCESSING
21Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
30Authentication, i.e. establishing the identity or authorisation of security principals
31User authentication
32using biometric data, e.g. fingerprints, iris scans or voiceprints
G06F 21/62 2013.1
GPHYSICS
06COMPUTING; CALCULATING OR COUNTING
FELECTRIC DIGITAL DATA PROCESSING
21Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
60Protecting data
62Protecting access to data via a platform, e.g. using keys or access control rules
G06F 21/64 2013.1
GPHYSICS
06COMPUTING; CALCULATING OR COUNTING
FELECTRIC DIGITAL DATA PROCESSING
21Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
60Protecting data
64Protecting data integrity, e.g. using checksums, certificates or signatures
CPC
G06F 21/32
GPHYSICS
06COMPUTING; CALCULATING; COUNTING
FELECTRIC DIGITAL DATA PROCESSING
21Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
30Authentication, i.e. establishing the identity or authorisation of security principals
31User authentication
32using biometric data, e.g. fingerprints, iris scans or voiceprints
G06F 21/6272
GPHYSICS
06COMPUTING; CALCULATING; COUNTING
FELECTRIC DIGITAL DATA PROCESSING
21Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
60Protecting data
62Protecting access to data via a platform, e.g. using keys or access control rules
6218to a system of files or objects, e.g. local or distributed file system or database
6272by registering files or documents with a third party
G06F 21/64
GPHYSICS
06COMPUTING; CALCULATING; COUNTING
FELECTRIC DIGITAL DATA PROCESSING
21Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
60Protecting data
64Protecting data integrity, e.g. using checksums, certificates or signatures
H04L 63/0861
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
63Network architectures or network communication protocols for network security
08for supporting authentication of entities communicating through a packet data network
0861using biometrical features, e.g. fingerprint, retina-scan
H04L 9/0643
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
9Cryptographic mechanisms or cryptographic; arrangements for secret or secure communication
06the encryption apparatus using shift registers or memories for block-wise ; or stream; coding, e.g. DES systems ; or RC4; Hash functions; Pseudorandom sequence generators
0643Hash functions, e.g. MD5, SHA, HMAC or f9 MAC
H04L 9/3247
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
9Cryptographic mechanisms or cryptographic; arrangements for secret or secure communication
32including means for verifying the identity or authority of a user of the system ; or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
3247involving digital signatures
Applicants
  • CSÍK, Balázs [HU]/[HU]
  • LENGYEL, Csaba [HU]/[HU]
  • ROGÁN, Antal [HU]/[HU]
Inventors
  • CSÍK, Balázs
  • LENGYEL, Csaba
  • ROGÁN, Antal
Agents
  • GÖDÖLLE, KÉKES, MÉSZÁROS & SZABÓ
Priority Data
P 14 0039218.08.2014HU
P 15 0025929.05.2015HU
Publication Language English (en)
Filing Language Hungarian (HU)
Designated States
Title
(EN) METHODS FOR DIGITALLY SIGNING AN ELECTRONIC FILE, AND AUTHENTICATING METHOD
(FR) PROCÉDÉS POUR SIGNER NUMÉRIQUEMENT UN FICHIER ÉLECTRONIQUE, ET PROCÉDÉ D'AUTHENTIFICATION
Abstract
(EN) The invention is a method for digitally signing an electronic file (48), comprising the steps carried out by a server: - generating a challenge value (50) comprising a projection parameter (52), - transferring the challenge value (50) to a client device through a communications channel, - receiving, through a communications channel, an evidence record (70), the electronic file (48) to be signed, and a user's biometric data (54) from the client device, - generating reduced biometric verification data by applying a projection utilising the projection parameter (52), - generating a verification evidence record and comparing it against the evidence record (70) sent by the client device, - generating a server certificate, - signing the server certificate applying the server's private signing key, thereby generating a signed server certificate, - generating a digital signature by associating at least the signed server certificate and the hash (49) of the electronic file (48), and - associating the digital signature with the electronic file (48), thereby generating a digitally signed electronic file. The invention is further an authentication method.
(FR) L'invention concerne un procédé pour signer numériquement un fichier électronique (48), comprenant les étapes, réalisées par un serveur, consistant à : - générer une valeur d'interrogation (50) comprenant un paramètre de projection (52), - transférer la valeur d'interrogation (50) à un dispositif de client par l'intermédiaire d'un canal de communication, - recevoir, par l'intermédiaire d'un canal de communication, un enregistrement de preuve (70), le fichier électronique (48) à signer et des données biométriques (54) d'un utilisateur à partir du dispositif de client, - générer des données de vérification biométriques réduites par application d'une projection à l'aide du paramètre de projection (52), - générer un enregistrement de preuve de vérification et le comparer à l'enregistrement de preuve (70) envoyé par le dispositif de client, - générer un certificat de serveur, - signer le certificat de serveur en appliquant une clé de signature privée du serveur, ce qui permet de générer un certificat de serveur signé, - générer une signature numérique par association au moins du certificat de serveur signé et de l'algorithme de hachage (49) du fichier électronique (48), et – associer la signature numérique au fichier électronique (48), ce qui permet de générer un fichier électronique signé numériquement. L'invention est en outre un procédé d'authentification.
Latest bibliographic data on file with the International Bureau