MY166563A - A system and method of mutual trusted authentication and identity encryption - Google Patents
A system and method of mutual trusted authentication and identity encryptionInfo
- Publication number
- MY166563A MY166563A MYPI2012003999A MYPI2012003999A MY166563A MY 166563 A MY166563 A MY 166563A MY PI2012003999 A MYPI2012003999 A MY PI2012003999A MY PI2012003999 A MYPI2012003999 A MY PI2012003999A MY 166563 A MY166563 A MY 166563A
- Authority
- MY
- Malaysia
- Prior art keywords
- platform
- module
- server platform
- trusted
- server
- Prior art date
Links
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/50—Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
- G06F21/57—Certifying or maintaining trusted computer platforms, e.g. secure boots or power-downs, version controls, system software checks, secure updates or assessing vulnerabilities
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/30—Public key, i.e. encryption algorithm being computationally infeasible to invert or user's encryption keys not requiring secrecy
- H04L9/3066—Public key, i.e. encryption algorithm being computationally infeasible to invert or user's encryption keys not requiring secrecy involving algebraic varieties, e.g. elliptic or hyper-elliptic curves
- H04L9/3073—Public key, i.e. encryption algorithm being computationally infeasible to invert or user's encryption keys not requiring secrecy involving algebraic varieties, e.g. elliptic or hyper-elliptic curves involving pairings, e.g. identity based encryption [IBE], bilinear mappings or bilinear pairings, e.g. Weil or Tate pairing
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/3234—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving additional secure or trusted devices, e.g. TPM, smartcard, USB or software token
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Theoretical Computer Science (AREA)
- Signal Processing (AREA)
- Computer Networks & Wireless Communication (AREA)
- Software Systems (AREA)
- General Engineering & Computer Science (AREA)
- Computer Hardware Design (AREA)
- General Physics & Mathematics (AREA)
- Physics & Mathematics (AREA)
- Pure & Applied Mathematics (AREA)
- Algebra (AREA)
- Computing Systems (AREA)
- Mathematical Analysis (AREA)
- Mathematical Physics (AREA)
- Mathematical Optimization (AREA)
- Management, Administration, Business Operations System, And Electronic Commerce (AREA)
- Mobile Radio Communication Systems (AREA)
Abstract
MUTUAL TRUSTED AUTHENTICATION AND IDENTITY ENCRYPTION IS PROVIDED BY UTILIZING TRANSPORT LAYER SECURITY EXTENSION WITH PROPERTIES BASED ATTESTATION MECHANISM. THE SYSTEM OF THE PRESENT INVENTION COMPRISING A SERVER PLATFORM (104) INSTALLED WITH AN INTEGRITY MEASUREMENT ARCHITECTURE (IMA) MODULE (104B); A TRUSTED AUTHORITY MODULE (TA) (104D) ASSOCIATED WITH A SERVER PLATFORM)104); AN INTEGRITY PROPERTIES COLLECTION MODULE (IPCM) (104E) IN COMMUNICATION WITH THE TRUSTED AUTHORITY MODULE (TA) (104D); A CLIENT PLATFORM (102) THAT IS IN COMMUNICATION WITH AND REGISTRABLE TO THE SERVER PLATFORM (104); A TRANSPORT LAYER SECURITY EXTENSION MODULE (TLS EXTENSION MODULE) (104A, 102C) ASSOCIATED WITH THE SERVER PLATFORM (104) AND THE CLIENT PLATFORM (102); AND A TRUSTED PLATFORM MODULE (TPM) (102B, 104C) ASSOCIATED WITH THE SERVER PLATFORM (104) AND SAID CLIENT PLATFORM (102). THE GENERAL PROCESS OF THE PRESENT INVENTION COMPRISES THREE MAIN COMPONENTS, WHEREIN THE FIRST STAGE (402) ESTABLISHES THE SECURITY AND INTEGRITY OF THE SERVER PLATFORM. AFTER THE ESTABLISHMENT OF PROCESS (402), THE NEXT STEP IS TO ESTABLISH IDENTITY ENCRYPTION IN THE SSL/TLS EXTENSION AND ESTABLISH PROPERTY-BASED ATTESTATION INTEGRATED WITH THE TRUSTED AUTHORITY (TA) IN THE SERVER PLATFORM (404). UPON COMPLETION OF THE PROCESSES OF ESTABLISHMENT, COMMUNICATION IS PERFORMED WITH SECURE DATA TRANSMISSION USING MUTUAL TRUSTED IDENTITY ENCRYPTION BETWEEN CLIENT AND SERVER (406) WHEREIN A HANDSHAKE PROTOCOL IS ESTABLISHED TO PRIORITISE EXCHANGE OF THE CERTIFICATES AND KEYS TO ENSURE THE AUTHENTICATION AND ENCRYPTION OF DATA (704). THE MOST ILLUSTRATIVE DRAWING IS
Priority Applications (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
MYPI2012003999A MY166563A (en) | 2012-09-07 | 2012-09-07 | A system and method of mutual trusted authentication and identity encryption |
PCT/MY2013/000161 WO2014038926A1 (en) | 2012-09-07 | 2013-09-06 | A system and method of mutual trusted authentication and identity encryption |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
MYPI2012003999A MY166563A (en) | 2012-09-07 | 2012-09-07 | A system and method of mutual trusted authentication and identity encryption |
Publications (1)
Publication Number | Publication Date |
---|---|
MY166563A true MY166563A (en) | 2018-07-16 |
Family
ID=49304264
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
MYPI2012003999A MY166563A (en) | 2012-09-07 | 2012-09-07 | A system and method of mutual trusted authentication and identity encryption |
Country Status (2)
Country | Link |
---|---|
MY (1) | MY166563A (en) |
WO (1) | WO2014038926A1 (en) |
Families Citing this family (12)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN104038478A (en) * | 2014-05-19 | 2014-09-10 | 瑞达信息安全产业股份有限公司 | Embedded platform identity authentication trusted network connection method and system |
US10320786B2 (en) | 2015-09-14 | 2019-06-11 | Samsung Electronics Co., Ltd. | Electronic apparatus and method for controlling the same |
KR102489918B1 (en) * | 2015-09-14 | 2023-01-20 | 삼성전자주식회사 | User terminal device and Method for controlling the user terminal device thereof |
WO2017131775A1 (en) | 2016-01-29 | 2017-08-03 | Hewlett Packard Enterprise Development Lp | Device attestation |
US20170289197A1 (en) * | 2016-03-31 | 2017-10-05 | Qualcomm Incorporated | Transport layer security token binding and trusted signing |
CN106060070B (en) * | 2016-07-01 | 2019-05-10 | 中国人民解放军国防科学技术大学 | The tls handshake protocol of ID-based cryptosystem system |
DE102017212474A1 (en) * | 2017-07-20 | 2019-01-24 | Siemens Aktiengesellschaft | Method and communication system for checking connection parameters of a cryptographically protected communication connection during connection establishment |
CN108563953B (en) * | 2018-03-26 | 2021-12-21 | 南京微可信信息技术有限公司 | Safe and extensible trusted application development method |
CN110688638B (en) * | 2018-07-04 | 2021-07-06 | ***通信有限公司研究院 | Service authentication method, device, medium and equipment |
US11321465B2 (en) * | 2019-04-04 | 2022-05-03 | Cisco Technology, Inc. | Network security by integrating mutual attestation |
CN111147233B (en) * | 2019-11-26 | 2023-04-07 | 北京八分量信息科技有限公司 | Reliable implementation method and node for ABE attribute encryption |
CN113810422A (en) * | 2021-09-18 | 2021-12-17 | 四川中电启明星信息技术有限公司 | Emqx browser architecture-based secure connection method for data of internet of things platform device |
-
2012
- 2012-09-07 MY MYPI2012003999A patent/MY166563A/en unknown
-
2013
- 2013-09-06 WO PCT/MY2013/000161 patent/WO2014038926A1/en active Application Filing
Also Published As
Publication number | Publication date |
---|---|
WO2014038926A1 (en) | 2014-03-13 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
MY166563A (en) | A system and method of mutual trusted authentication and identity encryption | |
WO2015065913A8 (en) | A set of servers for "machine-to-machine" communications using public key infrastructure | |
AU2018256568A1 (en) | Systems and methods for software based encryption | |
WO2010063091A3 (en) | System and methods for online authentication | |
WO2011123671A3 (en) | Mutual mobile authentication using a key management center | |
GB2528226A (en) | Method performed by at least one server for processing a data packet from a first computing device to a second computing device to permit end-to-end | |
JP2016527844A5 (en) | ||
SG10201806366TA (en) | Apparatus and method for managing digital certificates | |
WO2014116956A3 (en) | System and method for differential encryption | |
WO2009117638A3 (en) | System and method for storing client-side certificate credentials | |
WO2011146678A3 (en) | Method and device for conducting trusted remote payment transactions | |
WO2012021662A3 (en) | Device and method for cognizant transport layer security | |
WO2009082717A3 (en) | A method for authenticating a communication channel between a client and a server | |
WO2014047135A3 (en) | Method and device for a generalized cryptographic framework | |
WO2011158217A9 (en) | Device and method for providing secured access to services | |
WO2008103991A3 (en) | Method and apparatus to deploy dynamic credential infrastructure based on proximity | |
BR112017003018A2 (en) | secure provision of an authentication credential | |
WO2013120026A3 (en) | Enabling secure access to a discovered location server for a mobile device | |
MY171259A (en) | System and method for identity-based entity authentication for client-server communications | |
MX346828B (en) | A wireless communication system. | |
WO2012087692A3 (en) | System and method for secure communications in a communication system | |
WO2014105395A3 (en) | Secure cloud database platform | |
MX2010003403A (en) | Authentication method and framework. | |
WO2009158086A3 (en) | Techniques for ensuring authentication and integrity of communications | |
MX2014012002A (en) | Secure method for remote grant of operating rights. |