摘要 |
METHOD AND APPARATUS FOR PROVIDING SECURE , CONTROLLED ACCESS TO ONE OR MORE FUNCTIONS (F1,F2) IN AN ELECTRONIC SYSTEM (400) WHICH MAY HAVE A PLURALITY OF FUNCTIONS (F1, F2) HAVING DIFFERENT ACCESS REQUIREMENTS. A DESIRED FUNCTION (F1, F2) IS ENABLED ACCORDING TO THE RESULT OF A FIRST AUTHENTICATION PROCESS WHICH USES A PUBLIC KEY (PK1, PK2) WHICH CORRESPONDS TO THE DESIRED FUNCTION (F1, F2) , AND ACCESS TO THE FUNCTION (F1, F2) IS AUTHORIZED BY A SECOND AUTHENTICATION PROCESS WHICH USES A SECOND, PRIVATE SESSION KEY COMPUTED AS A RESULT OF A RANDOM CHALLENGE MADE BY THE SYSTEM (400) TO AN EXTERNAL ENTITY (270) DURING THE FIRST AUTHENTICATION PROCESS. ADDITIONAL PROTECTION IS ALSO PROVIDED AGAINST PASSIVE AND ACTIVE WIRETAPPER ATTACKS, SUCH THAT ONLY AN ENTITY (270) THAT HAS RECIVED AUTHORIZATION CAN ACCESS THE SYSTEM (400) AT THE CORRECT ACCESS LEVEL.(FIG 2)
|