Patent application number | Description | Published |
20090024352 | Method, Device and System For Verifying Points Determined on an Elliptic Curve - Conventional cryptographic methods that are based on elliptic curves are prone to side-channel attacks. Previously known methods for preventing side-channel attacks have the disadvantage of requiring high arithmetic capacity and a large amount of available memory space. The proposed method overcomes said disadvantage by using a process for verifying points on elliptic curves which saves arithmetic capacity and memory space. | 01-22-2009 |
20090235073 | Authentication method and communications system used for authentication - An authentication method authenticates between subscribers of a communications system using an asymmetric elliptic curve encryption algorithm. The method involves providing a first and at least one second subscriber having a first or second secret key known only to the respective subscriber and a public key; authenticating an inquiry transmitted by the first subscriber with respect to the validity of the first certificate contained therein and associated with the first subscriber; calculating the response of the second subscriber associated with the inquiry; randomized encryption of the calculated response and a second certificate associated with the second subscriber using the public key; decryption and authentication of the response transmitted by the second subscriber with respect to the validity of the second certificate contained therein. | 09-17-2009 |
20090292921 | METHOD FOR THE ENCRYPTED DATA EXCHANGE AND COMMUNICATION SYSTEM - The embodiments relate to a method for the encrypted data exchange between subscribers of a communication system using cryptography based on elliptical curves, wherein upon a query by a first subscriber a scalar multiplication is calculated by the second subscriber, wherein merely part of the result of the scalar multiplication is returned to the first subscriber as a response. The invention relates to a communication system. | 11-26-2009 |
20100172490 | METHOD FOR THE SECURE DETERMINATION OF DATA - The aim of the embodiments is to provide a method for the secure processing of data, in which security is increased in relation to side channel attacks. To achieve this, operation codes for commanding co-processors are determined, for example for the bit-dependent transposition of register contents. The solution exploits the fact that as a result of the technical configuration for the co-processor, a shift of register contents, for example from register A to register B cannot be differentiated from the exterior from a shift from register A to register C. | 07-08-2010 |
20110068894 | METHOD FOR AUTHENTICATING AN RFID TAG - To ensure data protection in an authentication method for use in an RFID system in accordance with the challenge-response protocol, the data communication between RFID reader and RFID tag is usually encrypted in addition. Such an authentication can be designed to an arbitrary degree of complexity and therefore inevitably requires a high level of investment in hardware and software resources. An RFID tag has a display, wherein the response is displayed on the display of the RFID tag and is read in by the RFID reader by an optical scanner. The response of the RFID tag can therefore be read out only when there is direct visual contact. | 03-24-2011 |
20110107097 | METHOD FOR ENCODED DATA EXCHANGE AND COMMUNICATION SYSTEM - In a system and method for encrypted data exchange between entities (users) of a communication system using cryptography based on elliptic curves, in response to a challenge of a first user a scalar multiplication is calculated by the second user, wherein only part of the result of the scalar multiplication is sent back as response to the first user. | 05-05-2011 |
20120128157 | AUTHENTICATION OF AN RFID TAG USING AN ASYMMETRIC CRYPTOGRAPHY METHOD - A method for the authentication of an RFID tag uses an asymmetric cryptography method which ensures protection against the recycling of authentication RFID tags and needs no deactivation of the corresponding RFID tag for this purpose. To this end, the certificate of an RFID tag to be checked is not stored on the RFID tag but is stored physically separately from the RFID tag. Firstly, the RFID reader reads the certificate of the RFID tag to be checked before the challenge-response protocol is carried out successfully with the RFID tag to be checked. Consequently, an RFID tag can be reused for authentication only when the certificate relating to this RFID tag is known. | 05-24-2012 |
20120144190 | DEVICES AND METHODS FOR ESTABLISHING AND VALIDATING A DIGITAL CERTIFICATE - A digital certificate is configured to confirm the association of a public key assigned to a device as the owner of the public key to the device. The digital certificate further has an additional digital certificate, the additional digital certificate being a certificate of an additional device configured to digitally sign the digital certificate of the device. The certification process can be improved, wherein particularly the verification of digital certificates is improved. The various embodiments are particularly useful for applications where a secure communication of information or data is desired and/or should be made possible. | 06-07-2012 |
20120321088 | Method And System For The Accelerated Decryption Of Cryptographically Protected User Data Units - A method and system for accelerated decryption of a cryptographically protected user data unit, wherein a transmitter initially generates a cryptographic key that is provided with a related key identification. The transmitter then performs asymmetrical encryption of the generated cryptographic key using a public cryptographic key and encryption of at least one user data unit using the generated cryptographic key. The encrypted user data unit, the asymmetrically encrypted cryptographic key and the related key identification of the cryptographic key are transported to a receiver that decrypts the received asymmetrically encrypted key using a private key, if verification of the received related key identification of the cryptographic key indicates the cryptographic key is not present in a decrypted state in the receiver. The receiver then decrypts the received cryptographically encrypted user data unit using the cryptographic key in the receiver or with the cryptographic key decrypted using the private key. | 12-20-2012 |
20120321089 | Method and System for Confidentially Providing Software Components - A method and system for confidentially providing a software component which is encrypted using a secret cryptographic key of a software component manufacturer, and the key is then encrypted using a first cryptographic system key, wherein the encrypted software component and the encrypted key are transported by the software component manufacturer to a destination system device. After decrypting the transported encrypted key using a second cryptographic system key, the transported encrypted software component is decrypted using the decrypted key, wherein the decrypted software component is provided for execution on the destination system device. The method can be used to protect source codes or object codes of a developed software component from access by a third party and still allows for processing using standard tools. | 12-20-2012 |
20120324219 | Method and System for Resolving a Naming Conflict - A method and a system for naming-conflict-free integration of software components originating from software component manufacturers (OEM), comprising software development devices from different software component manufacturers (OEM) that manufacture and encrypt software components with the respective cryptographic key, wherein when a naming conflict occurs during the integration of encrypted software components, at least one of the encrypted software components in which the naming conflict occurred is expanded by a naming conflict resolution rule to thereby allows for the resolution of naming conflicts in encrypted software components that can originate from different software component manufacturers without the source code of the software components becoming visible to third parties. | 12-20-2012 |
20130326639 | VIRTUAL MACHINE FOR PROCESSING MEDICAL DATA - The present invention relates to a virtual machine (VM) for processing digital data, in particular medical data, by executing a digital data processing application program, in particular a medical data processing application program (MeDPAP), the virtual machine (VM) being a simulation of a computer, a) the virtual machine (VM) comprising a volatile memory (ViMStor) configured to comprise a storage space for temporary data (TEMP) for temporarily storing the digital data; b) the virtual machine (VM) being configured to be accessed by any virtual machine user activated on a virtual machine user list, wherein any activated maintenance virtual machine user is denied any permission regarding the storage space for temporary data (TEMP), wherein denying any permissions is performed by logging into the virtual machine (VM) as an administrator and setting corresponding options; c) wherein any administrator has been deactivated on the virtual machine user list, wherein deactivating any administrator has been performed by logging into the virtual machine (VM) as an administrator and setting corresponding options for each administrator in the virtual machine user list; d) wherein the virtual machine (VM) is in a state in which the administrator has been logged off after deactivating the administrator on the virtual machine user list. | 12-05-2013 |