| 摘要 |
The invention relates to a method for generating an identifier for identifying a pair, wherein the pair comprises a cryptographic device (100) and a computer system (1, 2, . . . , i, . . . I), wherein the cryptographic device has a first secret key (102), wherein a second secret key (118.i) is associated with the computer system, wherein a blocking system (120) for accessing the second secret key of the computer system is provided, wherein the blocking system has a third secret key (126), and wherein the following steps are carried out for generating the identifier:
Generating a second public key (116.i) from the second secret key and a third public key (128) associated with the third secret key by means of the blocking system,Transmitting the second public key (116.i) to the computer system (i), andGenerating the identifier from the first secret key and the second public key, using the cryptographic device. |
| 主权项 |
1. A method for blocking a cryptographic device, the method comprising:
storing, by the cryptographic device, a first secret key associated with a first public key, wherein the first secret key is also associated with the cryptographic device and held by the cryptographic device; storing, by a blocking system, a second secret key, wherein the second secret key is associated with the computer system and held by the blocking system; storing, by a blocking system, a third secret key associated with a third public key, wherein the third secret key is also associated with blocking system; producing, by the blocking system, a the second public key by combining the second secret key and the third public key; producing, by the blocking system, a first identifier by combining the second secret key, the third secret key and the first public key, wherein the blocking system does not have knowledge of the first secret key; transmitting, by the blocking system, the first identifier to the computer system; receiving, by the cryptographic device, the second public key from the blocking system; producing, by the cryptographic device, a second identifier by combining the second public key with the first secret key; storing, by the computer system, the received first identifier in a blocking list of the computer system; receiving, by the computer system, the second identifier from the cryptographic device; comparing, by the computer system, the received second identifier with the stored first identifier in the blocking list; and blocking, by the computer system, the cryptographic device, in response to the comparing result that the first identifier and the second identifier are identical. |
