Patents by Inventor Denis FIRSOV

Denis FIRSOV has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).

  • Patent number: 12041180
    Abstract: Digital signatures are generated for a message using an authentication tree data structure in which nodes are created as needed from a root node. A public and secret key pair is generated using a one-time signature method to form each node, and the secret key of each parent node is used to sign the public keys of its child nodes. Once the secret key of a node has been used in creating a signature for a message, it may be revealed. The signature data structure is unbounded and stateless, and need not be pre-generated and fixed.
    Type: Grant
    Filed: February 10, 2022
    Date of Patent: July 16, 2024
    Assignee: Guardtime SA
    Inventors: Denis Firsov, Henri Lakk
  • Publication number: 20220271945
    Abstract: Digital signatures are generated for a message using an authentication tree data structure in which nodes are created as needed from a root node. A public and secret key pair is generated using a one-time signature method to form each node, and the secret key of each parent node is used to sign the public keys of its child nodes. Once the secret key of a node has been used in creating a signature for a message, it may be revealed. The signature data structure is unbounded and stateless, and need not be pre-generated and fixed.
    Type: Application
    Filed: February 10, 2022
    Publication date: August 25, 2022
    Applicant: Guardtime SA
    Inventors: Denis FIRSOV, Henri LAKK
  • Patent number: 11316698
    Abstract: Data security is provided in the form of a method for digitally signing a data message. A client device issues a issuing a signature request to a server and generates a first signature part as functions of selected ones of first signature parameters. It then receives from the server a second signature part, said second signature part having been computed by the server as functions of second signature parameters and at least one of the first signature parameters. The client device then attempts to verify components of the second signature part and generates a final digital signature of the message only if the components of the second signature part are valid. Part of the computational effort of creating the signature is thus offloaded to the server, even though the server may not be fully trusted.
    Type: Grant
    Filed: July 17, 2020
    Date of Patent: April 26, 2022
    Assignee: Guardtime SA
    Inventors: Ahto Truu, Denis Firsov
  • Publication number: 20210021429
    Abstract: Data security is provided in the form of a method for digitally signing a data message. A client device issues a issuing a signature request to a server and generates a first signature part as functions of selected ones of first signature parameters. It then receives from the server a second signature part, said second signature part having been computed by the server as functions of second signature parameters and at least one of the first signature parameters. The client device then attempts to verify components of the second signature part and generates a final digital signature of the message only if the components of the second signature part are valid. Part of the computational effort of creating the signature is thus offloaded to the server, even though the server may not be fully trusted.
    Type: Application
    Filed: July 17, 2020
    Publication date: January 21, 2021
    Applicant: Guardtime SA
    Inventors: Ahto TRUU, Denis FIRSOV
  • Publication number: 20200259663
    Abstract: To digitally sign a message, a signing entity generates a set of secret keys is generated and, for each secret key, a signing key is derived. An authenticator value is submitted to a signature server and is formed as a cryptographic binding of both the message and a respective one of the signing keys. The signature server then generates and returns to the signing entity a first signature of the authenticator value. If the signing entity determine that the first signature is valid, it replaces the signing key within the first signature with the secret key from which it was derived to form an augmented signature, and only thereafter reveals the respective secret key. This allows the signing entity to offload computational burden onto even an untrusted signature server.
    Type: Application
    Filed: February 7, 2020
    Publication date: August 13, 2020
    Applicant: Guardtime SA
    Inventor: Denis FIRSOV