Browse Prior Art Database

Certificate Authority Service of Dynamic Default Nonce

IP.com Disclosure Number: IPCOM000118316D
Original Publication Date: 1996-Dec-01
Included in the Prior Art Database: 2005-Apr-01
Document File: 2 page(s) / 36K

Publishing Venue

IBM

Related People

Johnson, DB: AUTHOR [+2]

Abstract

Some cryptographic protocols are one pass (i.e., one protocol message) as the other party cannot be assumed to be online. Having a Certificate Authority (CA) issue periodic default random nonces allows one pass cryptographic protocols to show that the message could not have been sent prior to the distribution of the CA's nonce.

This text was extracted from an ASCII text file.
This is the abbreviated version, containing approximately 88% of the total text.

Certificate Authority Service of Dynamic Default Nonce

      Some cryptographic protocols are one pass (i.e., one protocol
message) as the other party cannot be assumed to be online.  Having a
Certificate Authority (CA) issue periodic default random nonces
allows one pass cryptographic protocols to show that the message
could not have been sent prior to the distribution of the CA's nonce.

      In cryptography, there are many protocols.  Some protocols
follow a challenge response paradigm and some follow a solitary
message paradigm.  The challenge response paradigm can be used to
prove things  that a solitary message cannot.  For example, if a
challenge message from party A to party B contains a nonrepeating
unguessable nonce (typically a random number) and the response
message from party B to party A contains the same nonce, then party A
is assured that party B just recently created the response message.
Such capability is not possible with a solitary message.

      This invention is to have a CA as part of its normal processing
issue nonrepeating unguessable nonces every certain time interval,
for example, every minute.  The nonce message from the CA can be
signed using  a digital signature so that everyone knows the nonce is
valid.

      A user can now use this "default" nonce from the CA in what
would normally be a solitary message.  This indicates to the
recipient of the message that the message could not have been created
at a time before th...