Method, apparatus and system for multiplexing same digital certificate to a plurality of terminals

A digital certificate and terminal technology, applied in the field of information security, can solve the problems of increasing the cost of digital certificates, increasing the complexity of digital certificate maintenance and management, etc.

Active Publication Date: 2018-01-12
吕文华
View PDF3 Cites 1 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

Cost of digital certificates: Since digital certificates are a binding technology for public keys, that is, private keys are indirectly bound, while traditional public key cryptosystems are based on terminal protection of private keys, that is, one terminal corresponds to one private key. Therefore, One terminal also corresponds to one digital certificate, and the use mode of multiple certificates for one person increases the cost of digital certificates, and also increases the complexity of digital certificate maintenance and management

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Method, apparatus and system for multiplexing same digital certificate to a plurality of terminals
  • Method, apparatus and system for multiplexing same digital certificate to a plurality of terminals
  • Method, apparatus and system for multiplexing same digital certificate to a plurality of terminals

Examples

Experimental program
Comparison scheme
Effect test

Embodiment 1

[0081] Embodiment 1 of the present invention provides a method for multiplexing the same digital certificate to multiple terminals. Wherein, the source terminal and the server form a source key chain corresponding to the public key bound when the digital certificate is issued, and the target terminal is a terminal that multiplexes the certificate in the source terminal. The method includes:

[0082] At least one target terminal, the source terminal, and the server dynamically construct at least one target key chain corresponding to the public key bound when the digital certificate is issued, after performing an identity transformation on the source key chain, and each of the target key chains is related to Source keychain equivalent.

[0083] Further, the at least one target terminal, the source terminal and the server dynamically construct at least one target key chain corresponding to the public key bound when the digital certificate is issued after performing an identity tr...

Embodiment 2

[0169] Embodiment 2 of the present invention provides a method for multiplexing the same digital certificate to multiple terminals. The method is applied to the server, wherein the source terminal and the server constitute the source corresponding to the public key bound when the digital certificate is issued. Keychain, the method includes:

[0170] Generate target random number d s2 ∈[1,n-1], where n is the order of the elliptic curve;

[0171] The inverse element d of the target random number that will be stored s2 -1 with source random number d s1 The first modular multiplication result u of 1 =(d s2 - 1 d s1 ) mod n is sent to the source terminal; the source terminal makes the modular multiplication result u 1 , source derived key d p1 and the stored source storage key d c1 The second modular multiplication result u 2 =(d p1 d c1 u 1 ) mod n is sent to the target terminal, so that the target terminal will take the second modular multiplication result u 2 ,...

Embodiment 3

[0178] Embodiment 3 of the present invention provides a method for multiplexing the same digital certificate to multiple terminals. The method is applied to the source terminal, wherein the source terminal and the server constitute the source corresponding to the public key bound when the digital certificate is issued. Keychain, the method includes:

[0179] Receive the first modular multiplication result u sent by the server 1 =(d s2 -1 d s1 ) mod n, where, d s2 -1 is the inverse of the target random number stored by the server, d s1 the source nonce stored for the server;

[0180] The result of the modular multiplication operation u 1 , source derived key d p1 and the stored source storage key d c1 The second modular multiplication result u 2 =(d p1 d c1 u 1 ) mod n is sent to the target terminal, so that the target terminal will multiply the second modular multiplication result u 2 , the inverse element d of the target derived key p2 -1 The modular multiplic...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention provides a method, apparatus and system for multiplexing the same digital certificate to a plurality of terminals. A resource end and a server constitute a source key chain of a bound public key when the digital certificate is issued, the method comprises the following steps: at least one target terminal, the resource end and the server perform identical transformation on the sourcekey chain to form at least one target key chain of the bound public key when the digital certificate is issued, and each target key chain is equivalent to the source key chain. By adoption of the method, apparatus and system, the technical problem of multiplexing the same digital certificate to a plurality of terminals safely is solved, secure experience of one-person-one-certificate is provided for a plurality of intelligent terminals of the user, and the unification of security, convenience and cost is achieved.

Description

technical field [0001] The present invention relates to the technical field of information security, in particular to a method, device and system for multiplexing the same digital certificate to multiple terminals. Background technique [0002] Digital certificate technology based on public key cryptography has been widely used in various security authentication applications, and digital certificates have also become "identity cards" on the Internet. A digital certificate is a data file that binds a user's identity (such as a certificate) with a public key and is issued by an authoritative certification center. It can be used to determine the user's identity and transfer trust. The digital certificate issuance mechanism mainly includes three key steps in sequence: one is the face-to-face review, for example, when the user goes to the bank counter to apply for a digital certificate, the face-to-face review mechanism is used to ensure that the user's identity is reliable; the ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): H04L9/32H04L9/08H04L9/30
Inventor 宛海加吕文华董宁周大勇刘鹏
Owner 吕文华
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap