-
1.发明专利
公开(公告)号:DE2861905D1
公开(公告)日:1982-08-05
申请号:DE2861905
申请日:1978-12-05
Applicant: IBM
Inventor: LENNON RICHARD EDWARD , MATYAS STEPHEN MICHAEL , MEYER CARL HEINZ WILHELM , OSEAS JONATHAN , PRENTICE PAUL NORMAN , TUCHMAN WALTER LEONARD
Abstract: This invention concerns a process and apparatus for the verification of cryptographic operational keys used in data communication networks. In a data communication network providing communication security for communication sessions between a first station and a second station where each station has cryptographic apparatus provided with an operational key which should be common to both stations for cryptographic operations, an operational key verification arrangement is provided in which a first number provided at the first station is operated upon in accordance with the first station operational key to obtain cryptographic data for transmission to the second station, requiring the second station to perform an operation on the first station cryptographic data in accordance with the second station operational key to obtain cryptographic data for transmission back to the first station, and in which an operation is performed at the first station in accordance with the first number and the second station cryptographic data to verify that the second station is the source of second station cryptographic data only if the operational keys are identical.
-
公开(公告)号:DE2558206A1
公开(公告)日:1976-09-09
申请号:DE2558206
申请日:1975-12-23
Applicant: IBM
-
公开(公告)号:DE2862042D1
公开(公告)日:1982-11-04
申请号:DE2862042
申请日:1978-12-05
Applicant: IBM
-
公开(公告)号:DE2861422D1
公开(公告)日:1982-01-28
申请号:DE2861422
申请日:1978-12-05
Applicant: IBM
Inventor: EHRSAM WILLIAM FRIEDRICH , ELANDER ROBERT CARL , MATYAS STEPHEN MICHAEL , MEYER CARL HEINZ WILHELM , POWERS ROBERT LOWELL , PRENTICE PAUL NORMAN , SMITH JOHN LYNN , TUCHMAN WALTER LEONARD
Abstract: The invention concerns a data processing terminal. … In an embodiment of the invention a data processing terminal coupled via a communication line to a remote host system includes data security device 11 which includes storage means 13 for storing a master cipher key, cryptographic apparatus 12 for performing cryptographic operations, and control means 14 for controlling the writing of a master cipher key into the storage means 13, controlling the transfer of the master cipher key to the cryptographic apparatus 12 and controlling the cryptographic apparatus to perform cryptographic operations. When a new master cipher key is written into the storage means 13, the old master cipher key is automatically overwritten with an arbitrary value, after which the new master key may be written into the storage means. The cryptographic apparatus 23 of the data security device 11 includes data storage means BR17 and DR22, a working key storage means 20, and cipher means 25 for performing a cipher function on data stored in the cryptographic apparatus storage means under control of a working cipher key stored in the storage means 20, the resulting ciphered data being stored in the cryptographic apparatus storage means. A load cipher key direct function can be performed whereby a working cipher key may be loaded directly into the working key storage means 20 for use as a working cipher key in performing a cipher function. A decipher key function also can be performed whereby the master cipher key from 13 is transferred to the working key storage means 20 as a working cipher key after which an operational key enciphered under the master cipher key (received from the remote host system) is transferred to the cryptographic apparatus storage means and the control means causes the enciphered operational key to be deciphered to obtain the operational key in clear form as a working cipher key for subsequent encipher/decipher data functions by the cipher means 25.
-
-
-
Search Results
4
records
(took 0.015 seconds)
