Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

A method for generating a fido device key index

A key index and device key technology, which is applied to the public key and key distribution of secure communication, can solve the problems of limited device storage space, time-consuming query key index, etc., achieve fast data reading and reduce storage capacity required effect

Active Publication Date: 2021-03-16
JIANGSU HENGBAO INTELLIGENT SYST TECH CO LTD
View PDF8 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

If we store the key index and private key pair of each account, then as the number of accounts managed by Fido increases, the required storage space will also increase. The storage space of the device is always limited, and as the account increases, the query These key indexes can also be very time consuming

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • A method for generating a fido device key index
  • A method for generating a fido device key index
  • A method for generating a fido device key index

Examples

Experimental program
Comparison scheme
Effect test

Embodiment 1

[0025] As an example, the registration and authentication process of a Fido device is as follows:

[0026] Registration: Register an account with Fido, and the Fido server sends some registration parameters to the Fido device; the Fido device generates a public-private key pair, and generates a key index; the Fido device should retain the corresponding relationship between the key index and the public-private key; the Fido device Return the key index and public key to the server; the server retains the key index and public key, and establishes the corresponding relationship between accounts;

[0027] Authentication: The server finds the key index according to the account number, and sends the key index and some data to the Fido device; the Fido device finds the private key corresponding to the key index according to the key index, and signs some data with the private key and returns it to the server ;The server verifies the data according to the public key corresponding to the...

Embodiment 2

[0029] In the above embodiment, the Fido device needs to store the key index and private key pair of each account during the registration and authentication process. As the number of accounts increases, the storage space will become more and more scarce, resulting in more and more data reading. slower.

[0030] In order to make the Fido device use less storage space during the registration and authentication process and make data reading more convenient, a root key is stored in the Fido device provided in this embodiment, and the root key of each Fido device is different. At the same time, an AES or DES symmetric key is added, and a key seed usage counter is added.

[0031] Such as figure 1 As shown, based on the above-mentioned Fido device, the present application provides a method for generating a key index, including:

[0032] Step 11: The Fido device generates a legal random number;

[0033] Step 12: The Fido device generates a key index based on the legal random number...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention discloses a method for generating a key index of Fido equipment, and relates to the field of information safety. According to the main technical scheme, the method comprises the following steps of generating a legal random number by the Fido equipment, and generating the key index according to the legal random number and the number of uses of an internal root key. Through the adoption of the method for generating the key index, the Fido equipment does not need to store the key index of each account number and a corresponding private key value, so that the requirements for storagecapacity can be reduced, and the data of the Fido equipment can be read more quickly.

Description

technical field [0001] The present application relates to the technical field of information security, in particular to a method for generating a Fido device key index. Background technique [0002] Fido: Fast Identity Online, a fast online identity authentication alliance. The Fido U2F device is a device that replaces the password for login authentication when logging in to the network. Fido U2F devices can replace passwords for multiple account logins. [0003] Fido device authentication is based on a public-private key system. The Fido device corresponds to a public-private key pair and a key index keyhandle for each account. Fido uses the elliptic curve algorithm, and its private key is 128 bytes. The key index keyhandle cannot be too short. For example, if calculated according to 32 bytes, the Fido device must record at least 160 bytes for each account, and 100 The account is 16Kbytes space. [0004] However, many existing security chip SEs use space of more than a...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Patents(China)
IPC IPC(8): H04L9/08H04L9/30H04L9/32H04L29/06
CPCH04L9/0822H04L9/0869H04L9/3066H04L9/3247H04L63/083
Inventor 高岚陆道如
Owner JIANGSU HENGBAO INTELLIGENT SYST TECH CO LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com