| CPC H04L 9/0844 (2013.01) [H04L 9/3093 (2013.01)] | 30 Claims |
|
1. A second cryptographic device comprising:
a communication interface circuit, wherein the communication interface circuit is arranged to communicate with a first cryptographic device using a lattice-based key exchange or a lattice-based key encapsulation key agreement protocol; and
a processor circuit,
wherein the processor circuit is arranged to compute a final seed from a pre-seed and a pre-shared secret,
wherein the pre-seed is received from the first cryptographic device,
wherein the pre-shared secret is pre-shared between the second cryptographic device and the first cryptographic device,
wherein the processor circuit is arranged to compute a common object from the final seed using a deterministic random bit generator or a pseudorandom number generator,
wherein the processor circuit is arranged to obtain a first public-key and a second public-key,
wherein the first public-key is associated with the first cryptographic device,
wherein the second public-key is associated with the second cryptographic device,
wherein the first public-key is computed at the first cryptographic device,
wherein the computation comprises a first multiplication between the common object and a first private-key of the first cryptographic device,
wherein the processor circuit is arranged to compute a second public-key from the second private-key,
wherein computing the second public-key comprises multiplying the second private-key with the common object,
wherein the processor circuit is arranged to compute a second raw key from the first public-key and the second private-key,
wherein computing the second raw key comprises a second multiplication between the second private-key and the first public-key,
wherein the processor circuit is arranged to transfer the second public-key to the first device.
|