摘要 |
SECURE COMMUNICATION BETWEEN A KEYBOARD [162] AND A COMPONENT [202], SUCH AS A PIECE OF SOFTWARE RUNNING ON A COMPUTER [110]. A FIRST INITIAL VALUE IS KNOWN TO BOTH THE KEYBOARD [162] AND THE COMPONENT [202]. THE KEYBOARD [162] AND THE COMPONENT [202] EXCHANGE NONCES [412][414]. THE KEYBOARD [162] AND THE COMPONENT [202] EACH COMPUTE A SECOND INITIAL VALUE AND A THIRD INITIAL VALUE BASED ON THE NONCES [412][414] AND THE FIRST INITIAL VALUE. BOTH THE KEYBOARD [162] AND THE COMPONENT [202] PERFORM THE SAME COMPUTATION, SO THAT THE KEYBOARD [162] AND THE COMPONENT [202] EACH HAVE THE SAME SECOND AND THIRD INITIAL VALUES. THE KEYBOARD [162] ENCRYPTS KEYSTROKES DESTINED FOR THE COMPONENT [202] USING CBC-3DES BASED ON THE KEY [402] AND THE SECOND INITIAL VALUE, AND ALSO CREATES A MESSAGE AUTHENTICATION CODE FOR EACH KEYSTROKE USING CBC-3DESMAC BASED ON THE KEY [402] AND THE THIRD INITIAL VALUE. THE COMPONENT [202] DECRYPTS AND VERIFIES THE KEYSTROKES USING THE KEY [402] AND THE SECOND AND THIRD INITIAL VALUES.
|