Pre-Grant Publication Number: 20070160202
Please help the USPTO examine the application by evaluating the relevance of the publicly submitted prior art to the patent application.
Peer To Patent forwards the Top 10 most relevant prior art submissions and their annotations to the USPTO.Review this prior art and click on the thumbs up (or down) to indicate whether this submission should be forwarded to the USPTO.If you login then you can add an annotation by typing in the box at the bottom of the screen to comment on the relevance of the prior art to the claims of the patent application. #94RE: A New Triple-DES Key Wrap AlgorithmApplies to Claims 10,11,12,13,16,17,18,19,2,20,3,4,5,6,9 Submitted by: G. R. Konrad RoederLast updated: over 4 years ago 2 thumbs up 0 thumbs down
| Summary / Description | A discussion of S/MIME's key integrity check security risk due to partially known plaintext from the salt |
| |
| Type of Prior Art | Online Communication |
| |
| Type | Email |
| |
| Subject/Title | RE: A New Triple-DES Key Wrap Algorithm |
| |
| Relevant Name(s) (i.e. authors, speakers, senders, recipients) | "Bob Jueneman" <BJUENEMAN@novell.com> To: <djohnson@certicom.com>, <burt@RSA.COM>, <housley@spyrus.com> |
| |
| Publication Date | February 3, 1999 |
| |
| Time | 17:12:33 -0700 |
| |
| Location of Record | S/MIME list server http://www.imc.org/ietf-smime/mail-archive/ |
| |
| URL | http://www.imc.org/ietf-smime/a... |
| |
| Additional Information | |
| |
| Notes | This document shows that the security aspects of S/MIME's key wrap was being discussed in 1999, including an integrity check using salting techniques which are used to verify the delivered key. This places a date on their dicussions, which is well before |
| |
Excerpt And the size of salt and/or padding should not be fixed, as it might be necessary to deal with KEK algorithms of arbitrary structure, ranging from some 1-bit stream cipher such as DES CFB to perhaps a 256 bit AES block. I wouldn't necessarily even assume that the internal blocks were multiples of 8 bits. |
| |
Claims
The signal bearing medium of Claim 1, wherein the operations further comprise: encrypting the intermixing of the known text and the random text with the user data key prior to the encryption of the user data key with the encryption key, wherein the verification text is the encrypted intermixing of the known text and the random text. Relevance
A process of intermixing of the random text with the verification text is called salting.
A process of intermixing of the random text with the verification text is called salting.
The signal bearing medium of Claim 1, wherein the operations further comprise: segment the intermixing of the known text and the random text; encrypting the segmented intermixing of the known text and the random text with the user data key prior to the encryption of the user data key with the encryption key, wherein the verification text is the segmented intermixing of the known text and the random text in segments as encrypted with the user data key. Relevance
see claim 2
see claim 2
The signal bearing medium of Claim 1, wherein the verification text includes a first verification segment, a second verification segment, a third verification segment and a fourth verification segment in sequential order; wherein the first verification segment includes an encryption of a first random text segment with the user data key prior to the encryption of the user data key with the encryption key; wherein the second verification segment includes an encryption of a first known text segment with the user data key prior to the encryption of the user data key with the encryption key; wherein the third verification segment includes an encryption of a second known text segment with the user data key prior to the encryption of the user data key with the encryption key; and wherein the fourth verification segment includes an encryption of a second random text segment with the user data key prior to the encryption of the user data key with the encryption key. Relevance
see claim 2
see claim 2
The signal bearing medium of Claim 4, wherein the operations further comprise: encrypting a first grouping of a first known text segment and a first random text segment with the user data key prior to the encryption of the user data key with the encryption key; encrypting a second grouping of a second known text segment and a second random text segment with the user data key prior to the encryption of the user data key with the encryption key; and storing the verification text including the encrypted first grouping of the first known text segment and the first random text segment and the encrypted second grouping of the second known text segment and the second random text segment. Relevance
see claim 2
see claim 2
The signal bearing medium of Claim 5, wherein the decrypting of the verification text with the user data key as decrypted with the decryption key includes: decrypting the first grouping of the first known text segment and the first random text segment with the user data key as decrypted with the decryption key; and decrypting the second grouping of the second known text segment and the second random text segment with the user data key as decrypted with the decryption key. Relevance
see claim 2
see claim 2
The cipher system of Claim 8, wherein the instructions are further executed for: encrypting the intermixing of the known text and the random text with the user data key prior to the encryption of the user data key with the encryption key, wherein the verification text is the encrypted intermixing of the known text and the random text. Relevance
see claim 2
see claim 2
The cipher system of Claim 8, wherein the instructions are further executed for: segmenting the intermixing of the known text and the random text; encrypting the segmented intermixing of the known text and the random text with the user data key prior to the encryption of the user data key with the encryption key, wherein the verification text is the segmented intermixing of the known text and the random text in segments as encrypted with the user data key. Relevance
see claim 2
see claim 2
The cipher system of Claim 8, wherein the verification text includes a first verification segment, a second verification segment, a third verification segment and a fourth verification segment in sequential order; wherein the first verification segment includes an encryption of a first random text segment with the user data key prior to the encryption of the user data key with the encryption key; wherein the second verification segment includes an encryption of a first known text segment with the user data key prior to the encryption of the user data key with the encryption key; wherein the third verification segment includes an encryption of a second known text segment with the user data key prior to the encryption of the user data key with the encryption key; and wherein the fourth verification segment includes an encryption of a second random text segment with the user data key prior to the encryption of the user data key with the encryption key. Relevance
see claim 2
see claim 2
The cipher system of Claim 11, wherein the instructions are further executed for: encrypting a first grouping of a first known text segment and a first random text segment with the user data key prior to the encryption of the user data key with the encryption key; encrypting a second grouping of a second known text segment and a second random text segment with the user data key prior to the encryption of the user data key with the encryption key; and storing the verification text including the encrypted first grouping of the first known text segment and the first random text segment and the encrypted second grouping of the second known text segment and the second random text segment. Relevance
see claim 2
see claim 2
The cipher system of Claim 12, wherein the decrypting of the verification text with the user data key as decrypted with the decryption key includes: decrypting the first grouping of the first known text segment and the first random text segment with the user data key as decrypted with the decryption key; and decrypting the second grouping of the second known text segment and the second random text segment with the user data key as decrypted with the decryption key. Relevance
see claim 2
see claim 2
The cipher method of Claim 15, further comprising: encrypting the intermixing of the known text and the random text with the user data key prior to the encryption of the user data key with the encryption key, wherein the verification text is the encrypted intermixing of the known text and the random text. Relevance
see claim 2
see claim 2
The cipher method of Claim 15, further comprising: segment the intermixing of the known text and the random text; encrypting the segmented intermixing of the known text and the random text with the user data key prior to the encryption of the user data key with the encryption key, wherein the verification text is the segmented intermixing of the known text and the random text in segments as encrypted with the user data key. Relevance
see claim 2
see claim 2
The cipher method of Claim 15, wherein the verification text includes a first verification segment, a second verification segment, a third verification segment and a fourth verification segment in sequential order; wherein the first verification segment includes an encryption of a first random text segment with the user data key prior to the encryption of the user data key with the encryption key; wherein the second verification segment includes an encryption of a first known text segment with the user data key prior to the encryption of the user data key with the encryption key; wherein the third verification segment includes an encryption of a second known text segment with the user data key prior to the encryption of the user data key with the encryption key; and wherein the fourth verification segment includes an encryption of a second random text segment with the user data key prior to the encryption of the user data key with the encryption key. Relevance
see claim 2
see claim 2
The cipher method of Claim 18, further comprising: encrypting a first grouping of a first known text segment and a first random text segment with the user data key prior to the encryption of the user data key with the encryption key; encrypting a second grouping of a second known text segment and a second random text segment with the user data key prior to the encryption of the user data key with the encryption key; and storing the verification text including the encrypted first grouping of the first known text segment and the first random text segment and the encrypted second grouping of the second known text segment and the second random text segment. Relevance
see claim 2
see claim 2
The cipher method of Claim 19, wherein the decrypting of the verification text with the user data key as decrypted with the decryption key includes: decrypting the first grouping of the first known text segment and the first random text segment with the user data key as decrypted with the decryption key; and decrypting the second grouping of the second known text segment and the second random text segment with the user data key as decrypted with the decryption key. Relevance
see claim 2
see claim 2
