25-07-2013 дата публикации
Номер: US20130191632A1
A system and method where the “dealer” of a split Master Secret becomes the Master Key Server, whose role is to initially compute the Master Secret, create and distribute shares of the Master Secret to two Distributed Private Key Generators (D-PKG), initialize and route the inter-process communication between the nodes, co-ordinate and computationally participate in the User System's IBE Private Key generation process. 1. A method comprising:selecting a value for x of 2 to q-1;at a Master Key Server, extracting D-PKG IBE Private Keys;issuing the IBE Private Keys to the D-PKG nodes;at the D-PKG nodes, storing their IBE Private Keys;generating a straight line f(X)=mX+x, where m (the slope) is chosen at random;{'sub': 1', '2', '3, 'dividing x into 3 shares, x, xand x;'}{'sub': 1', '2', '3, 'using a different m, breaking a random value r into three shares, r, rand r;'}{'sub': 2', '2, 'at the Master Key Server, distributing to the two D-PKG nodes xand rto'}{'sub': 3', '3', '1', '1, 'one D-PKG node and xand rto another D-PKG, keeping xand rfor itself.'}2. The method of further comprising:at the Master Key Server, generating a request to Authentication System to enroll the D-PKG nodes in the Authentication System Directory;at the Master Key Server, applying an HMAC signature to the request;at the Master Key Server, sending the request to the Authentication Service at the Authentication Service, verifying the HMAC signature of the request;at the Authentication Service, contacting both DPK-G nodes and Master Key Server with a request for shares of the Master Public Key{'sub': i', 'i', '1, 'at the Master Key Server and D-PKG nodes, calculating R=xPand pass this to the Authentication System as a response'} {'br': None, 'i': R=', 'R', 'R', '+R, 'sub': 1', '2', '3, '3−3'}, 'at the Authentication System, combining shares to obtain the Master Public Keyat the Authentication System, recording the location of the Distributed Private Key Generators, and the Master Public Key into the ...
Подробнее
