Join
today

Boliven PRO is more than just patent search

  • Build and save lists using the powerful Lists feature
  • Analyze and download your search results
  • Share patent search results with your clients

Patents »

US5432849: Secure cryptographic operations using control vectors generated inside a cryptographic facility

Share

Filing Information

Inventor(s) Donald B. Johnson · An V. Le · Stephen M. Matyas · Rostislaw Prymak · John D. Wilkins ·
Assignee(s) International Business Machines Corporation ·
Attorney/Agent(s) William A. Kinnaman ·
Primary Examiner Bernarr E. Gregory ·
Application Number US8103953
Filing date 08/10/1993
Issue date 07/11/1995
Predicted expiration date 08/22/2010
U.S. Classifications 380/21  · 380/4  ·
International Classifications H04L 900  ·
Kind CodeA
International Classifications 3804;9;21;23;25;30;43;49 ·
Related U.S. Application DataThis is a continuation of application Ser. No. 07/574,012, filed Aug. 22, 1990, now abandoned.
14 Claims, No Drawings


Abstract

The invention described herein suggests methods of cryptographic key management based on control vectors in which the control vectors are generated or derived internal to a cryptographic facility implementing a set of cryptographic operations. The methods of alternate control vector enforcement described in the present application provide a high-integrity facility to ensure that cryptographic keys are used in a manner consistent with the type and usage attributes assigned to the keys by the originator of those keys. Since the control vectors are generated or derived internal to the cryptographic facility on the basis of data contained in each cryptographic service request to the cryptographic facility, control vectors need not be stored or managed outside the cryptographic facility.

Independent Claims | See all claims (14)

  1. 1. In a data processing system executing a program which outputs cryptographic service requests to a cryptographic facility for operations with cryptographic keys which are associated with control vectors, each of said control vectors comprising one or more fields of predefined values which define the functions which the associated key is allowed by its originator to perform, apparatus for performing cryptographic operations within said cryptographic facility, comprising:control vector production means, having an input channel for receiving input information comprising a cryptographic service request, for generating a control vector internally within said cryptographic facility and for providing said control vector at an output channel thereof in response to said cryptographic service request, said control vector having an associated key value; andcryptographic transformation means, having a first input channel for receiving said input information and a second input channel for receiving said control vector from said output channel of said control vector production means, for transforming said input information into output information using said control vector and said associated key value.
  2. 13. In a system in which a cryptographic facility receives cryptographic service requests originating from outside of said facility for operations with cryptographic keys which are associated with control vectors, each of said control vectors comprising one or more fields of predefined values which define the functions which the associated key is allowed by its originator to perform, apparatus for performing cryptographic operations within said cryptographic facility, comprising:control vector production means for generating a control vector internally within said cryptographic facility as a function of input information comprising a cryptographic service request; andkey source means for generating an associated key value as a function of said input information; andcryptographic transformation means for cryptographically transforming said input information using said generated control vector and associated key value.
  3. 14.14. In a system in which a cryptographic facility receives cryptographic service requests originating from outside of said facility for operations with cryptographic keys which are associated with control vectors, each of said control vectors comprising one or more fields of predefined values which define the functions which the associated key is allowed by its originator to perform, a method of performing cryptographic operations within said cryptographic facility, comprising the steps of:generating a control vector internally within said cryptographic facility as a function of input information comprising a cryptographic service request;generating an associated key value as a function of said input information; andcryptographically transforming said input information using said generated control vector and associated key value.

Referenced By

Document NumberAssigneeInventorsIssue/Pub Date
US6308266 Microsoft Corporation Trevor W. Freeman Oct 2001
US5933503 Novell, Inc Roger R. Schell et al. Aug 1999
US6333983 International Business Machines Corporation Margaret C. Enichen et al. Dec 2001
US6289450 Authentica, Inc. David A. Pensak et al. Sep 2001
US5629980 Xerox Corporation Mark J. Stefik et al. May 1997
US5933498 MRJ, Inc. Paul B. Schneck et al. Aug 1999
US6233684 Contenaguard Holdings, Inc. Mark J. Stefik et al. May 2001
US6019786 Schneider (USA) Inc Paul J. Thompson Feb 2000
US6314409 Veridian Information Solutions Paul B. Schneck et al. Nov 2001
US5583939 Chung N. Chang Chung N. Chang et al. Dec 1996
US5745572 International Computers Limited James Press Apr 1998
US5987130 Chung Nan Chang Nov 1999
US8271350 ContentGuard Holdings, Inc. Guillermo Lao et al. Sep 2012
US8356178 --
US8412644 --
US8442916 --
US8468098 --
US8489900 --
USRE44364 --
US8832852 --
US8738771 --
US8862517 --
US8869293 --
US6339825 Authentica, Inc. David A. Pensak et al. Jan 2002
US6931545 ContentGuard Holdings, Inc. Thanh Ta et al. Aug 2005
US6937726 ContentGuard Holdings, Inc. Xin Wang Aug 2005
US6910022 ContentGuard Holdings, Inc. Mark J. Stefik et al. Jun 2005
US6912294 ContentGuard Holdings, Inc. Xin Wang et al. Jun 2005
US6944600 ContentGuard Holdings, Inc. Mark J. Stefik et al. Sep 2005
US6963859 ContentGuard Holdings, Inc. Mark J. Stefik et al. Nov 2005
US7343324 Contentguard Holdings Inc. Guillermo Lao et al. Mar 2008
US7266529 ContentGuard Holdings, Inc. Mark J. Stefik et al. Sep 2007
US6957194 ContentGuard Holdings, Inc. Mark J. Stefik et al. Oct 2005
US7085741 ContentGuard Holdings, Inc. Guillermo Lao et al. Aug 2006
US6957193 ContentGuard Holdings, Inc. Mark J. Stefik et al. Oct 2005
US6934693 ContentGuard Holdings, Inc. Mark J. Stefik et al. Aug 2005
US7043453 ContentGuard Holdings, Inc. Mark J. Stefik et al. May 2006
US7206765 ContentGuard Holdings, Inc. Charles P. Gilliam et al. Apr 2007
US7412605 ContentGuard Holdings, Inc. Michael Raley et al. Aug 2008
US7383442 Novell, Inc. Roger R. Schell et al. Jun 2008
US6708157 ContentGuard Holdings Inc. Mark J. Stefik et al. Mar 2004
US6895392 ContentGuard Holdings, Inc. Mark J. Stefik et al. May 2005
US7068787 Contentguard Holdings, Inc. Thanh T. Ta et al. Jun 2006
US6865551 ContentGuard Holdings, Inc. Mark J. Stefik et al. Mar 2005
US7028009 ContentGuardiHoldings, Inc. Xin Wang et al. Apr 2006
US7523072 Contentguard Holdings, Inc. Mark J. Stefik et al. Apr 2009
US6885748 ContentGuard Holdings, Inc. Xin Wang Apr 2005
US6751735 Novell, Inc. Roger R. Schell et al. Jun 2004
US7113912 ContentGuard Holdings, Inc. Mark J. Stefik et al. Sep 2006
US7139736 ContentGuard Holdings, Inc. Mark J. Stefik et al. Nov 2006
US7237125 Contentguard Holdings, Inc. Michael Raley et al. Jun 2007
US7269577 ContentGuard Holdings, Inc. Mark J. Stefik et al. Sep 2007
US7260556 ContentGuard Holdings, Inc. Mark J. Stefik Aug 2007
US7609848 ContentGuard Holdings, Inc. Xin Wang et al. Oct 2009
US7073199 Contentguard Holdings, Inc. Michael Charles Raley Jul 2006
US7117180 ContentGuard Holdings, Inc. Mark J. Stefik et al. Oct 2006
US7356688 ContentGuard Holdings, Inc. Xin Wang Apr 2008
US7200574 ContentGuard Holdings, Inc. Mark J. Stefik et al. Apr 2007
US6615350 Novell, Inc. Roger R. Schell et al. Sep 2003
US7058606 ContentGuard Holdings, Inc. Mark J. Stefik et al. Jun 2006
US7209902 ContentGuard Holdings, Inc. Mark J. Stefik et al. Apr 2007
US7152046 ContentGuard Holdings, Inc. Xin Wang et al. Dec 2006
US7286665 ContentGuard Holdings, Inc. Xin Wang Oct 2007
US6714921 ContentGuard, Inc. Mark J. Stefik et al. Mar 2004
US7024392 ContentGuard Holdings, Inc. Mark J. Stefik et al. Apr 2006
US7222104 ContentGuard Holdings, Inc. Bijan Tadayon et al. May 2007
US7359881 Contentguard Holdings, Inc. Mark J Stefik et al. Apr 2008
US7362859 Sandia Corporation Robert J. Robertson et al. Apr 2008
US6581162 Compaq Information Technologies Group, L.P. Michael F. Angelo et al. Jun 2003
US6824051 ContentGuard Holdings, Inc. Karimireddy Hari Reddy et al. Nov 2004
US7162633 ContentGuard Holdings, Inc. Xin Wang et al. Jan 2007
US7352862 Nagano Fujitsu Component Limited Shigemi Kurashima et al. Apr 2008
US7458102 EMC Corporation Allen Rogers et al. Nov 2008
US6876984 ContentGuard Holdings, Inc. Bijan Tadayon et al. Apr 2005
US6859533 ContentGuard Holdings, Inc. Xin Wang et al. Feb 2005
US7269576 ContentGuard Holdings, Inc. Mark J. Stefik et al. Sep 2007
US7269735 ContentGaurd Holdings, Inc. Michael Raley et al. Sep 2007
US7206941 ContentGuard Holdings, Inc. Michael Raley et al. Apr 2007
US7389270 ContentGuard Holdings, Inc. Mark J. Stefik et al. Jun 2008
US6449721 Authentica Security Technologies, Inc. David A. Pensak et al. Sep 2002
US6754642 Contentguard Holdings, Inc. Bijan Tadayon et al. Jun 2004
US6973445 ContentGuard Holdings, Inc. Bijan Tadayon et al. Dec 2005
US6978376 Authentica, Inc. David Giroux et al. Dec 2005
US6976009 ContentGuard Holdings, Inc. Bijan Tadayon et al. Dec 2005
US7225160 ContentGuard Holdings, Inc. Mark J. Stefik et al. May 2007
US7184571 Contentgaurd Holdings, Inc. Xin Wang et al. Feb 2007
US7913095 ContentGuard Holdings, Inc. Michael Raley et al. Mar 2011
US7907749 ContentGuard Holdings, Inc. Xin Wang et al. Mar 2011
US7664708 ContentGuard Holdings, Inc. Mark J. Stefik et al. Feb 2010
USRE41186 EMC Corporation David A. Pensak et al. Mar 2010
US7725401 ContentGuard Holdings, Inc. Michael C. Raley et al. May 2010
US7743259 ContentGuard Holdings, Inc. Michael Raley et al. Jun 2010
US7765403 ContentGuard Holdings, Inc. Mark J. Stefik et al. Jul 2010
US7774279 Contentguard Holdings, Inc. Xin Wang et al. Aug 2010
US7774280 ContentGuard Holdings, Inc. Mai Nguyen et al. Aug 2010
US7788182 ContentGuard Holdings, Inc. Mark J. Stefik et al. Aug 2010
US7809644 ContentGuard Holdings, Inc. Mark J. Stefik et al. Oct 2010
US7853531 ContentGuard Holdings, Inc. Guillermo Lao et al. Dec 2010
US6701433 Novell, Inc. Roger R. Schell et al. Mar 2004
US6925448 ContentGuard Holdings, Inc. Mark J. Stefik et al. Aug 2005

Patent Family