Apparatus and method for establishing a secure session with a device without exposing privacy-sensitive information
US8924728B2 · kind B2 · utility
Assignee
Inventor
Key dates
| Filing date | Nov 30, 2004 |
| Grant date | Dec 30, 2014 |
| Priority date | — |
| Expiry date | Aug 5, 2031 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04L9/3271
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
A method and apparatus for establishing a secure session with a device without exposing privacy-sensitive information are described. In one embodiment, the method includes the authentication of a digitally signed message received from a hardware device. In one embodiment, a digital signature, created by a private signature key of the hardware device, is authenticated according to a public key of an issuer without disclosure of an identity of the hardware device. The digital signature is a signature of an ephemeral DH public key, which the verifier is now assured comes from a trusted device. An encrypted and authenticated session (“secure session”) is established with the authenticated hardware device according to a key exchange using this signed ephemeral DH public key. Other embodiments are described and claimed.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.