System and method for preventing unauthorized access to information

摘要

An authentication system protects a hardware cryptographic chip from being commanded to decrypt or sign data by someone other than the legitimate owner(s) of the certificate residing on the chip. Openness of present cryptographic hardware systems are limited by imposing a condition that the cryptographic chip will only perform critical cryptographic tasks if the task is accompanied by a signature which only the legitimate owner can provide.

主权项

1. A method of securely decrypting data, comprising:
obtaining, by a computer application, a first transactionID from a cryptographic chip of a computer; obtaining, by the computer application, a second transactionID from a wireless eKey; signing, by the computer application, the second transactionID with a second private key stored on the computer; sending, by the computer application, the first transactionID and the signed second transactionID to the eKey for verifying the signed second transactionID with a second public key stored on the eKey; receiving, by the computer application, in response to the verification, a signed first transactionID from the eKey, the signed first transactionID being signed with a first private key stored on the eKey; and sending, by the computer application, the signed first transactionID with data to the cryptographic chip of the computer, the cryptographic chip verifying the signed first transactionID with a first public key stored on the cryptographic chip, the cryptographic chip decrypting the data in response to verifying the signed first transactionID.