公开(公告)号：GB2529633A

公开(公告)日：2016-03-02

申请号：GB201415070

申请日：2014-08-26

Applicant: IBM

Inventor： CAMENISCH JAN LEONHARD ,  ENDERLEIN ROBERT ,  KRENN STEPHAN ,  LEHMANN ANJA ,  NEVEN GREGORY

IPC: H04L9/08

Abstract: For password-based generation of a secret cryptographic key, a secret user value is provided at a user computer and a secret server value is provided at a server together with a check value (VC) based on the secret user value (S) and a user password (P). In response to input of a password (P) at the user computer, the user computer encodes the secret user value and the input password to produce a first value (V1) corresponding to the check value, and communicates this to the server via a network. In response, the server compares the first value and the check value to check whether the input password equals the user password. If so, the server encodes the first value and the secret server value (SK) to produce a second value (V2) and communicates this to the user computer. In response, the user computer generates the secret cryptographic key (K) by encoding the second value, the input password and the secret user value.