CN110535628A - 通过证书签发进行多方安全计算的方法及装置 - Google Patents
通过证书签发进行多方安全计算的方法及装置 Download PDFInfo
- Publication number
- CN110535628A CN110535628A CN201910808822.5A CN201910808822A CN110535628A CN 110535628 A CN110535628 A CN 110535628A CN 201910808822 A CN201910808822 A CN 201910808822A CN 110535628 A CN110535628 A CN 110535628A
- Authority
- CN
- China
- Prior art keywords
- certificate
- task
- computing unit
- tls
- trusted
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/06—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols the encryption apparatus using shift registers or memories for block-wise or stream coding, e.g. DES systems or RC4; Hash functions; Pseudorandom sequence generators
- H04L9/0643—Hash functions, e.g. MD5, SHA, HMAC or f9 MAC
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/08—Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
- H04L9/0816—Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
- H04L9/0819—Key transport or distribution, i.e. key establishment techniques where one party creates or otherwise obtains a secret value, and securely transfers it to the other(s)
- H04L9/0825—Key transport or distribution, i.e. key establishment techniques where one party creates or otherwise obtains a secret value, and securely transfers it to the other(s) using asymmetric-key encryption or public key infrastructure [PKI], e.g. key signature or public key certificates
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/08—Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
- H04L9/0816—Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
- H04L9/0819—Key transport or distribution, i.e. key establishment techniques where one party creates or otherwise obtains a secret value, and securely transfers it to the other(s)
- H04L9/083—Key transport or distribution, i.e. key establishment techniques where one party creates or otherwise obtains a secret value, and securely transfers it to the other(s) involving central third party, e.g. key distribution center [KDC] or trusted third party [TTP]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/3263—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving certificates, e.g. public key certificate [PKC] or attribute certificate [AC]; Public key infrastructure [PKI] arrangements
- H04L9/3265—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving certificates, e.g. public key certificate [PKC] or attribute certificate [AC]; Public key infrastructure [PKI] arrangements using certificate chains, trees or paths; Hierarchical trust model
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Power Engineering (AREA)
- Management, Administration, Business Operations System, And Electronic Commerce (AREA)
- Storage Device Security (AREA)
Abstract
Description
Claims (36)
Priority Applications (4)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201910808822.5A CN110535628B (zh) | 2019-08-29 | 2019-08-29 | 通过证书签发进行多方安全计算的方法及装置 |
PCT/CN2020/072112 WO2021036183A1 (zh) | 2019-08-29 | 2020-01-15 | 通过证书签发进行多方安全计算的方法及装置 |
US16/813,524 US11038699B2 (en) | 2019-08-29 | 2020-03-09 | Method and apparatus for performing multi-party secure computing based-on issuing certificate |
US17/244,854 US11228450B2 (en) | 2019-08-29 | 2021-04-29 | Method and apparatus for performing multi-party secure computing based-on issuing certificate |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201910808822.5A CN110535628B (zh) | 2019-08-29 | 2019-08-29 | 通过证书签发进行多方安全计算的方法及装置 |
Publications (2)
Publication Number | Publication Date |
---|---|
CN110535628A true CN110535628A (zh) | 2019-12-03 |
CN110535628B CN110535628B (zh) | 2020-07-17 |
Family
ID=68665426
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201910808822.5A Active CN110535628B (zh) | 2019-08-29 | 2019-08-29 | 通过证书签发进行多方安全计算的方法及装置 |
Country Status (2)
Country | Link |
---|---|
CN (1) | CN110535628B (zh) |
WO (1) | WO2021036183A1 (zh) |
Cited By (16)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN111131336A (zh) * | 2020-03-30 | 2020-05-08 | 腾讯科技(深圳)有限公司 | 多方授权场景下的资源访问方法、装置、设备及存储介质 |
CN111291369A (zh) * | 2020-01-20 | 2020-06-16 | 北京无限光场科技有限公司 | 一种信息检测方法和电子设备 |
US10790979B1 (en) | 2019-08-29 | 2020-09-29 | Alibaba Group Holding Limited | Providing high availability computing service by issuing a certificate |
CN111726782A (zh) * | 2020-05-22 | 2020-09-29 | 浙江吉利汽车研究院有限公司 | 一种安全认证方法及*** |
WO2021036183A1 (zh) * | 2019-08-29 | 2021-03-04 | 创新先进技术有限公司 | 通过证书签发进行多方安全计算的方法及装置 |
WO2021036186A1 (zh) * | 2019-08-29 | 2021-03-04 | 创新先进技术有限公司 | 通过证书签发提供高可用计算服务的方法及装置 |
CN112491847A (zh) * | 2020-07-08 | 2021-03-12 | 支付宝(杭州)信息技术有限公司 | 区块链一体机及其自动建链方法、装置 |
US11038699B2 (en) | 2019-08-29 | 2021-06-15 | Advanced New Technologies Co., Ltd. | Method and apparatus for performing multi-party secure computing based-on issuing certificate |
CN113810382A (zh) * | 2021-08-24 | 2021-12-17 | 东北大学秦皇岛分校 | 一种用于抵御sgx侧信道攻击的密文加载方法 |
CN114143034A (zh) * | 2021-11-01 | 2022-03-04 | 清华大学 | 一种网络访问安全性检测方法及装置 |
CN114168924A (zh) * | 2022-02-10 | 2022-03-11 | 亿次网联(杭州)科技有限公司 | 一种基于数字证书的群成员相互认证的方法和*** |
CN114282237A (zh) * | 2021-12-21 | 2022-04-05 | 北京百度网讯科技有限公司 | 一种通信方法、装置、设备及存储介质 |
CN114762288A (zh) * | 2019-12-05 | 2022-07-15 | 华为技术有限公司 | 用于在分布式***中建立信任关系的***和方法 |
US11424942B2 (en) | 2020-07-08 | 2022-08-23 | Alipay (Hangzhou) Information Technology Co., Ltd. | Blockchain integrated stations and automatic node adding methods and apparatuses |
US11451404B2 (en) | 2020-07-08 | 2022-09-20 | Alipay (Hangzhou) Information Technology Co., Ltd. | Blockchain integrated stations and automatic node adding methods and apparatuses |
CN117097487A (zh) * | 2023-10-19 | 2023-11-21 | 翼方健数(北京)信息科技有限公司 | 一种利用数字证书认证简化可信执行环境远程认证方法、***和介质 |
Citations (10)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN104378374A (zh) * | 2014-11-14 | 2015-02-25 | 国家超级计算深圳中心(深圳云计算中心) | 一种基于安全套接层建立通信的方法及*** |
CN107959656A (zh) * | 2016-10-14 | 2018-04-24 | 阿里巴巴集团控股有限公司 | 数据安全保障***及方法、装置 |
CN108282466A (zh) * | 2017-12-29 | 2018-07-13 | 北京握奇智能科技有限公司 | 用于在tee中提供数字证书功能的方法、*** |
CN109074449A (zh) * | 2016-06-03 | 2018-12-21 | 英特尔公司 | 在安全飞地中灵活地供应证明密钥 |
US20190065406A1 (en) * | 2017-11-17 | 2019-02-28 | Intel Corporation | Technology For Establishing Trust During A Transport Layer Security Handshake |
CN109861980A (zh) * | 2018-12-29 | 2019-06-07 | 阿里巴巴集团控股有限公司 | 一种建立可信计算集群的方法和装置 |
CN109873801A (zh) * | 2018-12-12 | 2019-06-11 | 阿里巴巴集团控股有限公司 | 在用户和可信计算集群之间建立可信通道的方法及装置 |
CN110011988A (zh) * | 2019-03-21 | 2019-07-12 | 平安科技(深圳)有限公司 | 基于区块链的证书验证方法及装置、存储介质、电子装置 |
CN110034925A (zh) * | 2019-01-07 | 2019-07-19 | 阿里巴巴集团控股有限公司 | 跨机房可信计算集群形成及通信方法和装置 |
CN110120869A (zh) * | 2019-03-27 | 2019-08-13 | 上海隔镜信息科技有限公司 | 密钥管理***及密钥服务节点 |
Family Cites Families (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
JP4504099B2 (ja) * | 2003-06-25 | 2010-07-14 | 株式会社リコー | デジタル証明書管理システム、デジタル証明書管理装置、デジタル証明書管理方法、更新手順決定方法およびプログラム |
CN110493273B (zh) * | 2018-06-28 | 2021-03-16 | 腾讯科技(深圳)有限公司 | 身份认证数据处理方法、装置、计算机设备和存储介质 |
CN110677240B (zh) * | 2019-08-29 | 2020-07-10 | 阿里巴巴集团控股有限公司 | 通过证书签发提供高可用计算服务的方法、装置及介质 |
CN110535628B (zh) * | 2019-08-29 | 2020-07-17 | 阿里巴巴集团控股有限公司 | 通过证书签发进行多方安全计算的方法及装置 |
-
2019
- 2019-08-29 CN CN201910808822.5A patent/CN110535628B/zh active Active
-
2020
- 2020-01-15 WO PCT/CN2020/072112 patent/WO2021036183A1/zh active Application Filing
Patent Citations (10)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN104378374A (zh) * | 2014-11-14 | 2015-02-25 | 国家超级计算深圳中心(深圳云计算中心) | 一种基于安全套接层建立通信的方法及*** |
CN109074449A (zh) * | 2016-06-03 | 2018-12-21 | 英特尔公司 | 在安全飞地中灵活地供应证明密钥 |
CN107959656A (zh) * | 2016-10-14 | 2018-04-24 | 阿里巴巴集团控股有限公司 | 数据安全保障***及方法、装置 |
US20190065406A1 (en) * | 2017-11-17 | 2019-02-28 | Intel Corporation | Technology For Establishing Trust During A Transport Layer Security Handshake |
CN108282466A (zh) * | 2017-12-29 | 2018-07-13 | 北京握奇智能科技有限公司 | 用于在tee中提供数字证书功能的方法、*** |
CN109873801A (zh) * | 2018-12-12 | 2019-06-11 | 阿里巴巴集团控股有限公司 | 在用户和可信计算集群之间建立可信通道的方法及装置 |
CN109861980A (zh) * | 2018-12-29 | 2019-06-07 | 阿里巴巴集团控股有限公司 | 一种建立可信计算集群的方法和装置 |
CN110034925A (zh) * | 2019-01-07 | 2019-07-19 | 阿里巴巴集团控股有限公司 | 跨机房可信计算集群形成及通信方法和装置 |
CN110011988A (zh) * | 2019-03-21 | 2019-07-12 | 平安科技(深圳)有限公司 | 基于区块链的证书验证方法及装置、存储介质、电子装置 |
CN110120869A (zh) * | 2019-03-27 | 2019-08-13 | 上海隔镜信息科技有限公司 | 密钥管理***及密钥服务节点 |
Cited By (26)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US11228450B2 (en) | 2019-08-29 | 2022-01-18 | Advanced New Technologies Co., Ltd. | Method and apparatus for performing multi-party secure computing based-on issuing certificate |
US10972272B2 (en) | 2019-08-29 | 2021-04-06 | Advanced New Technologies Co., Ltd. | Providing high availability computing service by issuing a certificate |
US11206137B2 (en) | 2019-08-29 | 2021-12-21 | Advanced New Technologies Co., Ltd. | Providing high availability computing service by issuing a certificate |
US11038699B2 (en) | 2019-08-29 | 2021-06-15 | Advanced New Technologies Co., Ltd. | Method and apparatus for performing multi-party secure computing based-on issuing certificate |
WO2021036183A1 (zh) * | 2019-08-29 | 2021-03-04 | 创新先进技术有限公司 | 通过证书签发进行多方安全计算的方法及装置 |
WO2021036186A1 (zh) * | 2019-08-29 | 2021-03-04 | 创新先进技术有限公司 | 通过证书签发提供高可用计算服务的方法及装置 |
US10790979B1 (en) | 2019-08-29 | 2020-09-29 | Alibaba Group Holding Limited | Providing high availability computing service by issuing a certificate |
CN114762288A (zh) * | 2019-12-05 | 2022-07-15 | 华为技术有限公司 | 用于在分布式***中建立信任关系的***和方法 |
CN111291369A (zh) * | 2020-01-20 | 2020-06-16 | 北京无限光场科技有限公司 | 一种信息检测方法和电子设备 |
CN111291369B (zh) * | 2020-01-20 | 2022-05-20 | 北京无限光场科技有限公司 | 一种信息检测方法和电子设备 |
CN111131336A (zh) * | 2020-03-30 | 2020-05-08 | 腾讯科技(深圳)有限公司 | 多方授权场景下的资源访问方法、装置、设备及存储介质 |
CN111131336B (zh) * | 2020-03-30 | 2020-07-17 | 腾讯科技(深圳)有限公司 | 多方授权场景下的资源访问方法、装置、设备及存储介质 |
CN111726782A (zh) * | 2020-05-22 | 2020-09-29 | 浙江吉利汽车研究院有限公司 | 一种安全认证方法及*** |
CN111726782B (zh) * | 2020-05-22 | 2023-12-29 | 浙江吉利汽车研究院有限公司 | 一种安全认证方法及*** |
CN112491847A (zh) * | 2020-07-08 | 2021-03-12 | 支付宝(杭州)信息技术有限公司 | 区块链一体机及其自动建链方法、装置 |
US11424942B2 (en) | 2020-07-08 | 2022-08-23 | Alipay (Hangzhou) Information Technology Co., Ltd. | Blockchain integrated stations and automatic node adding methods and apparatuses |
US11451404B2 (en) | 2020-07-08 | 2022-09-20 | Alipay (Hangzhou) Information Technology Co., Ltd. | Blockchain integrated stations and automatic node adding methods and apparatuses |
CN112491847B (zh) * | 2020-07-08 | 2022-02-22 | 支付宝(杭州)信息技术有限公司 | 区块链一体机及其自动建链方法、装置 |
CN113810382A (zh) * | 2021-08-24 | 2021-12-17 | 东北大学秦皇岛分校 | 一种用于抵御sgx侧信道攻击的密文加载方法 |
CN113810382B (zh) * | 2021-08-24 | 2023-07-11 | 东北大学秦皇岛分校 | 一种用于抵御sgx侧信道攻击的密文加载方法 |
CN114143034A (zh) * | 2021-11-01 | 2022-03-04 | 清华大学 | 一种网络访问安全性检测方法及装置 |
CN114282237A (zh) * | 2021-12-21 | 2022-04-05 | 北京百度网讯科技有限公司 | 一种通信方法、装置、设备及存储介质 |
CN114282237B (zh) * | 2021-12-21 | 2023-01-17 | 北京百度网讯科技有限公司 | 一种通信方法、装置、设备及存储介质 |
CN114168924A (zh) * | 2022-02-10 | 2022-03-11 | 亿次网联(杭州)科技有限公司 | 一种基于数字证书的群成员相互认证的方法和*** |
CN117097487B (zh) * | 2023-10-19 | 2024-01-26 | 翼方健数(北京)信息科技有限公司 | 一种利用数字证书认证简化可信执行环境远程认证方法、***和介质 |
CN117097487A (zh) * | 2023-10-19 | 2023-11-21 | 翼方健数(北京)信息科技有限公司 | 一种利用数字证书认证简化可信执行环境远程认证方法、***和介质 |
Also Published As
Publication number | Publication date |
---|---|
CN110535628B (zh) | 2020-07-17 |
WO2021036183A1 (zh) | 2021-03-04 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN110535628A (zh) | 通过证书签发进行多方安全计算的方法及装置 | |
US11900368B2 (en) | Method and system for zero-knowledge and identity based key management for decentralized applications | |
WO2021036186A1 (zh) | 通过证书签发提供高可用计算服务的方法及装置 | |
CN110581854B (zh) | 基于区块链的智能终端安全通信方法 | |
KR100872099B1 (ko) | 컴퓨터 그리드에 대한 싱글-사인-온 액세스를 위한 방법 및시스템 | |
Adams et al. | Understanding PKI: concepts, standards, and deployment considerations | |
JP4304362B2 (ja) | Pki対応の証明書確認処理方法及びその装置、並びにpki対応の証明書確認処理プログラム | |
US7366905B2 (en) | Method and system for user generated keys and certificates | |
US8806206B2 (en) | Cooperation method and system of hardware secure units, and application device | |
US11228450B2 (en) | Method and apparatus for performing multi-party secure computing based-on issuing certificate | |
CN112087428B (zh) | 一种基于数字证书的抗量子计算身份认证***及方法 | |
CN111756530B (zh) | 量子服务移动引擎***、网络架构及相关设备 | |
JP6571890B1 (ja) | 電子署名システム、証明書発行システム、証明書発行方法及びプログラム | |
CN105978906A (zh) | 一种基于身份的通信握手协议 | |
CN114884698B (zh) | 基于联盟链的Kerberos与IBC安全域间跨域认证方法 | |
CN111917543B (zh) | 用户接入云平台安全接入认证***及其应用方法 | |
CN110493272A (zh) | 使用多重密钥的通信方法和通信*** | |
JP6465426B1 (ja) | 電子署名システム、証明書発行システム、鍵管理システム及び電子証明書発行方法 | |
JP2010191801A (ja) | 認証システムおよび認証方法 | |
CN113626794A (zh) | 客户/服务器模式下的认证及密钥协商方法、***及应用 | |
CN111131160B (zh) | 一种用户、服务及数据认证*** | |
CN112235276A (zh) | 主从设备交互方法、装置、***、电子设备和计算机介质 | |
JP4499575B2 (ja) | ネットワークセキュリティ方法およびネットワークセキュリティシステム | |
JP2000261428A (ja) | 分散処理システムにおける認証装置 | |
Boeyen et al. | Liberty trust models guidelines |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
GR01 | Patent grant | ||
GR01 | Patent grant | ||
REG | Reference to a national code |
Ref country code: HK Ref legal event code: DE Ref document number: 40018246 Country of ref document: HK |
|
TR01 | Transfer of patent right | ||
TR01 | Transfer of patent right |
Effective date of registration: 20201012 Address after: Cayman Enterprise Centre, 27 Hospital Road, George Town, Grand Cayman Islands Patentee after: Innovative advanced technology Co.,Ltd. Address before: Cayman Enterprise Centre, 27 Hospital Road, George Town, Grand Cayman Islands Patentee before: Advanced innovation technology Co.,Ltd. Effective date of registration: 20201012 Address after: Cayman Enterprise Centre, 27 Hospital Road, George Town, Grand Cayman Islands Patentee after: Advanced innovation technology Co.,Ltd. Address before: A four-storey 847 mailbox in Grand Cayman Capital Building, British Cayman Islands Patentee before: Alibaba Group Holding Ltd. |