| 发明名称 |
Method and apparatus for the secure transfer of objects between cryptographic processors |
| 摘要 |
Objects such as master keys or object protection keys that are kept in a protected environment of a crypto module are securely transferred between modules by means of transport keys. The transport keys are generated by public key procedures and are inaccessible outside the modules. Master keys are encrypted under the transport key within the protected environment of the source module, transmitted in encrypted form to the target module, and decrypted with the transport key within the protected environment of the target module. Object protection keys that are encrypted under a first master key kept in the protected environment of the source module are decrypted with the first master within the protected environment of the source module before being encrypted under the transport key. The object protection keys are encrypted under a second master key within the protected environment of the target module after being decrypted with the transport key. The procedure is secure since the transport key, the master keys and the object protection keys are never made available outside the protected environments of the crypto modules.
|
| 申请公布号 |
US6144744(A) |
申请公布日期 |
2000.11.07 |
| 申请号 |
US19970885612 |
申请日期 |
1997.06.30 |
| 申请人 |
INTERNATIONAL BUSINESS MACHINES CORPORATION |
发明人 |
SMITH, SR., RONALD M.;D'AVIGNON, EDWARD J.;DEBELLIS, ROBERT S.;YEH, PHIL CHI-CHUNG |
| 分类号 |
H04L9/08;(IPC1-7):H04K9/00 |
主分类号 |
H04L9/08 |
| 代理机构 |
|
代理人 |
|
| 主权项 |
|
| 地址 |
|
