Pre-signed response generation and verification method and generation and verification device

A pre-signature and responder technology, applied to electrical components, transmission systems, etc., can solve the problem that the freshness protection level of the pre-signature cannot be adjusted, and achieve the effect of improving the anti-replay attack ability

Active Publication Date: 2012-10-10
ZHENGZHOU SEANET TECH CO LTD
View PDF2 Cites 5 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

The disadvantage is that it cannot provide higher priority freshness protection for high-value and high-risk certificates, and the freshness protection level of pre-signed responses cannot be adjusted

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Pre-signed response generation and verification method and generation and verification device
  • Pre-signed response generation and verification method and generation and verification device
  • Pre-signed response generation and verification method and generation and verification device

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0023] In the embodiment of the present invention, the OCSP responder generates the protection level adjustment information and its signature and the pre-signed response with the hash chain extension field, and dynamically adjusts the protection level adjustment information. When the OCSP responder receives the online After the certificate verification request, the current update value is calculated to form real-time hash chain update information, and the real-time hash chain update information and pre-signed response are sent to the verifier. After receiving the pre-signed response and real-time hash chain update information, the verifier can immediately perform replay verification according to the real-time hash chain update information, thereby improving the ability to resist replay attacks.

[0024] In order to make the object, technical solution and advantages of the present invention clearer, the specific embodiments of the present invention will be further described in d...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention relates to a pre-signed response generation and verification method and a pre-signed response generation and verification device. An online certificate status protocol (OCSP) responder generates protection level adjustment information and a signature thereof as well as the pre-signed response of a Hash chain extension field, and can dynamically adjust the protection level adjustment information; when receiving an on-line certificate verification request from a verifier, the OCSP responder calculates a current update value to form the real-time Hash chain update information, and sends the real-time Hash chain update information and the pre-signed response to the verifier. After receiving the pre-signed response and the real-time Hash chain update information, the verifier can instantaneously play back and calibrate according to the real-time Hash chain update information, so that the anti-playback attack capability is improved.

Description

technical field [0001] The invention relates to the field of digital certificate services, in particular to a method and device for generating and verifying a pre-signature response. Background technique [0002] The Online Certificate Status Protocol (OCSP) was proposed by the PKIX working group in RFC 2560 to implement real-time verification of digital certificate status information. OCSP is a request / response protocol, and the response to each certificate to be verified contains the status information of the certificate. Since certificate verification needs to digitally sign the verification service response, which consumes a lot of time and computing resources, the online verification server often becomes a performance bottleneck. [0003] Pre-signing refers to digitally signing the service response of the certificate to be verified before the OCSP responder receives the service request. Since the pre-signed response is a legal certificate status verification response,...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/06
Inventor 陈君宋磊吴京洪黄垂碧黄志敏
Owner ZHENGZHOU SEANET TECH CO LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap