US2019052622A1PendingUtilityA1

Device and method certificate generation

54
Assignee: THOMSON LICENSINGPriority: Feb 5, 2014Filed: Oct 8, 2018Published: Feb 14, 2019
Est. expiryFeb 5, 2034(~7.6 yrs left)· nominal 20-yr term from priority
G06F 21/31H04L 9/3226G06F 21/445H04L 9/3247H04L 9/3263H04L 63/083G06F 21/33H04L 9/0825H04L 63/0823
54
PatentIndex Score
0
Cited by
0
References
0
Claims

Abstract

A device receives a password from a user, obtains a public key for a cryptographic algorithm for the device, obtains a password verifier by applying a one-way function to a combination of a unique identifier, the password and the public key, generates the certificate comprising the unique identifier, the public key and the password verifier, signs the certificate using a private key corresponding to the public key thereby obtaining a self-signed certificate, and outputs the self-signed certificate. Also provided is the device.

Claims

exact text as granted — not AI-modified
1 . A device for generating a certificate, the device comprising:
 an interface circuit configured to receive user data; and   at least one hardware processor configured to:
 generate a verifier by applying a one-way function or an encryption function to a combination of a public key for a cryptographic algorithm for the device and a value based on the user data; 
 generate the certificate comprising the public key and the verifier; 
 sign the certificate thereby obtaining a signed certificate; and 
 output the signed certificate, 
   
       wherein the user data is any of a password, a pass phrase or biometric data of a user. 
     
     
         2 . The device of  claim 1 , wherein the at least one hardware processor is further configured to:
 generate the verifier by applying the function to a combination of a unique identifier, the value based on the user data and the public key, and   include the unique identifier in the certificate.   
     
     
         3 . The device of  claim 2 , wherein the unique identifier is a unique identifier for at least one device or for at least one resource. 
     
     
         4 . The device of  claim 1 , wherein the value based on the user data is identical to the user data. 
     
     
         5 . The device of  claim 1 , wherein the cryptographic algorithm is Rivest, Shamir, Adelman (RSA) and the public key comprises a modulus. 
     
     
         6 . The device of  claim 1 , wherein the cryptographic algorithm is an elliptic curve cryptography algorithm and the public key comprises a generator and a first modulus. 
     
     
         7 . The device of  claim 1 , wherein the hardware processor is configured to sign the certificate using a private key corresponding to the public key. 
     
     
         8 . A method for generating a certificate comprising, in at least one hardware processor of a device:
 receiving, by an interface circuit, user data;   generating, by at least one hardware processor, a verifier by applying a one-way function or an encryption function to a combination of a public key for a cryptographic algorithm for the device and a value based on the user data;   generating, by the at least one hardware processor, the certificate comprising the public key and the verifier;   signing, by the at least one hardware processor, the certificate thereby obtaining a signed certificate; and   outputting, by the at least one hardware processor, the signed certificate, wherein the user data is any of a password, a pass phrase or biometric data of a user.   
     
     
         9 . The method of  claim 8 , wherein the combination further includes a unique identifier, and wherein the at least one hardware processor further includes the unique identifier in the certificate. 
     
     
         10 . The method of  claim 9 , wherein the unique identifier is a unique identifier for at least one device or for at least one resource. 
     
     
         11 . The method of  claim 8 , wherein the value based on the user data is identical to the user data. 
     
     
         12 . The method of  claim 8 , wherein the cryptographic algorithm is Rivest, Shamir, Adelman (RSA) and the public key comprises a modulus. 
     
     
         13 . The method of  claim 8 , wherein the cryptographic algorithm is an elliptic curve cryptography algorithm and the public key comprises a generator and a first modulus. 
     
     
         14 . The method of  claim 8 , wherein the hardware processor signs the certificate using a private key corresponding to the public key.

Cited by (0)

No later patents cite this yet.

References (0)

No backward citations on record.