US2019052622A1PendingUtilityA1
Device and method certificate generation
Est. expiryFeb 5, 2034(~7.6 yrs left)· nominal 20-yr term from priority
G06F 21/31H04L 9/3226G06F 21/445H04L 9/3247H04L 9/3263H04L 63/083G06F 21/33H04L 9/0825H04L 63/0823
54
PatentIndex Score
0
Cited by
0
References
0
Claims
Abstract
A device receives a password from a user, obtains a public key for a cryptographic algorithm for the device, obtains a password verifier by applying a one-way function to a combination of a unique identifier, the password and the public key, generates the certificate comprising the unique identifier, the public key and the password verifier, signs the certificate using a private key corresponding to the public key thereby obtaining a self-signed certificate, and outputs the self-signed certificate. Also provided is the device.
Claims
exact text as granted — not AI-modified1 . A device for generating a certificate, the device comprising:
an interface circuit configured to receive user data; and at least one hardware processor configured to:
generate a verifier by applying a one-way function or an encryption function to a combination of a public key for a cryptographic algorithm for the device and a value based on the user data;
generate the certificate comprising the public key and the verifier;
sign the certificate thereby obtaining a signed certificate; and
output the signed certificate,
wherein the user data is any of a password, a pass phrase or biometric data of a user.
2 . The device of claim 1 , wherein the at least one hardware processor is further configured to:
generate the verifier by applying the function to a combination of a unique identifier, the value based on the user data and the public key, and include the unique identifier in the certificate.
3 . The device of claim 2 , wherein the unique identifier is a unique identifier for at least one device or for at least one resource.
4 . The device of claim 1 , wherein the value based on the user data is identical to the user data.
5 . The device of claim 1 , wherein the cryptographic algorithm is Rivest, Shamir, Adelman (RSA) and the public key comprises a modulus.
6 . The device of claim 1 , wherein the cryptographic algorithm is an elliptic curve cryptography algorithm and the public key comprises a generator and a first modulus.
7 . The device of claim 1 , wherein the hardware processor is configured to sign the certificate using a private key corresponding to the public key.
8 . A method for generating a certificate comprising, in at least one hardware processor of a device:
receiving, by an interface circuit, user data; generating, by at least one hardware processor, a verifier by applying a one-way function or an encryption function to a combination of a public key for a cryptographic algorithm for the device and a value based on the user data; generating, by the at least one hardware processor, the certificate comprising the public key and the verifier; signing, by the at least one hardware processor, the certificate thereby obtaining a signed certificate; and outputting, by the at least one hardware processor, the signed certificate, wherein the user data is any of a password, a pass phrase or biometric data of a user.
9 . The method of claim 8 , wherein the combination further includes a unique identifier, and wherein the at least one hardware processor further includes the unique identifier in the certificate.
10 . The method of claim 9 , wherein the unique identifier is a unique identifier for at least one device or for at least one resource.
11 . The method of claim 8 , wherein the value based on the user data is identical to the user data.
12 . The method of claim 8 , wherein the cryptographic algorithm is Rivest, Shamir, Adelman (RSA) and the public key comprises a modulus.
13 . The method of claim 8 , wherein the cryptographic algorithm is an elliptic curve cryptography algorithm and the public key comprises a generator and a first modulus.
14 . The method of claim 8 , wherein the hardware processor signs the certificate using a private key corresponding to the public key.Cited by (0)
No later patents cite this yet.
References (0)
No backward citations on record.