Advanced bitflip: threat-adjusted, quantum-ready, battery-friendly, application-rich cipher
First Claim
Patent Images
1. A method for secret communication and for mutual authentication among transmitting parties belonging to a secret-sharing group, wherein a secret communication of a message M written in an alphabet A comprised of t letters:
- {a1, a2, . . . at} where transmitting party and recipient party share a secret key K comprised of t bit strings k1, k2, . . . kt each comprised of n bits, and t positive integers f1, f2, . . . ft where 0≤
fi≤
n, for i=1, 2, . . . t, and where the transmitting party transmits the q letters in M in sequence m1, m2, . . . mj, . . . mq letter by letter such that letter mj (j=1, 2, . . . q) written as letter ai of the alphabet A is communicated to the recipient by the transmitter sending to the recipient string cj which is generated by a flip action defined as flipping fi bits in ki, then conducting a no equivocation test where one tests that for all l≠
i the Hamming distance between cj and ki is not equal to fl;
if the test fails the transmitting party repeats the flip action with different choice of fi bits to flip, then conducting the “
no equivocation test”
on the new output string of the flip action, cj,and repeating this loop until the no equivocation test does not fail, in which case cj is transmitted to the recipient party;
repeating the same for j=1, 2 . . . q the entire message M is transmitted to the recipient party,and where the recipient party, receiving the sequence c1, c2, . . . cj, . . . cq, is extracting the corresponding value of ai for each cj by finding for each cj for j=1, 2, . . . q the letter ai where the corresponding string ki has a Hamming distance fi with cj, while for all l≠
i the Hamming distance between cj and kl is not equal to fl,and where any party in the secret-sharing group will authenticate itself to any other party in the secret-sharing group, regarded as an authenticator, where the party to be authenticated is regarded as an authentication-candidate, and where all parties in the secret-sharing group share a secret comprised of an n-bits long string Ka and a secret integer s≤
n, and whereby the authentication candidate will randomly flip s bits in Ka to generate an authentication candidate string R, and then send the R candidate string to the authenticator to evaluate (i) that the Hamming distance between R and Ka is s, H(R,Ka)=s, and (ii) that the Hamming distance between R and each and every authentication string used previously, is larger than a threshold distance d;
failing either test the authenticator will reject R as a proof of the identity of the authentication candidate, and then the authenticator will instruct the authentication candidate to try with another, candidate string, R′
, and try again, until both tests (i, ii) for authentication are satisfied.
0 Assignments
0 Petitions
Accused Products
Abstract
Generally ciphers project a fixed measure of security, defined by the complexity of their algorithms. Alas, threat is variable, and should be met with matching security. It is useless to project insufficient security, and it is wasteful and burdensome to over-secure data. Advanced BitFlip comes with threat-adjustable flexibility, established via: (i) smart decoy strategy, (ii) parallel encryption, (iii) uniform letter frequency adjustment—tools which enable the BitFlip user to (a) adjust its ciphertexts to match the appraised threat, and (b) sustain security levels for aging keys. The use of these threat-adjusting tools may be automated to allow (1) AI engines to enhance the security service of the cipher, and (2) to enable remote hard-to-access IoT devices to keep aging keys useful, and preserve precious energy by matching security to the ad-hoc threat level. BitFlip may also be operated in a zero-leakage mode where no attributes of a conversation are disclosed, up to full steganographic levels. BitFlip security is two-dimensional: intractability and equivocation, both may be conveniently increased to meet quantum cryptanalytic attacks.
-
Citations
2 Claims
-
1. A method for secret communication and for mutual authentication among transmitting parties belonging to a secret-sharing group, wherein a secret communication of a message M written in an alphabet A comprised of t letters:
- {a1, a2, . . . at} where transmitting party and recipient party share a secret key K comprised of t bit strings k1, k2, . . . kt each comprised of n bits, and t positive integers f1, f2, . . . ft where 0≤
fi≤
n, for i=1, 2, . . . t, and where the transmitting party transmits the q letters in M in sequence m1, m2, . . . mj, . . . mq letter by letter such that letter mj (j=1, 2, . . . q) written as letter ai of the alphabet A is communicated to the recipient by the transmitter sending to the recipient string cj which is generated by a flip action defined as flipping fi bits in ki, then conducting a no equivocation test where one tests that for all l≠
i the Hamming distance between cj and ki is not equal to fl;if the test fails the transmitting party repeats the flip action with different choice of fi bits to flip, then conducting the “
no equivocation test”
on the new output string of the flip action, cj,and repeating this loop until the no equivocation test does not fail, in which case cj is transmitted to the recipient party; repeating the same for j=1, 2 . . . q the entire message M is transmitted to the recipient party, and where the recipient party, receiving the sequence c1, c2, . . . cj, . . . cq, is extracting the corresponding value of ai for each cj by finding for each cj for j=1, 2, . . . q the letter ai where the corresponding string ki has a Hamming distance fi with cj, while for all l≠
i the Hamming distance between cj and kl is not equal to fl,and where any party in the secret-sharing group will authenticate itself to any other party in the secret-sharing group, regarded as an authenticator, where the party to be authenticated is regarded as an authentication-candidate, and where all parties in the secret-sharing group share a secret comprised of an n-bits long string Ka and a secret integer s≤
n, and whereby the authentication candidate will randomly flip s bits in Ka to generate an authentication candidate string R, and then send the R candidate string to the authenticator to evaluate (i) that the Hamming distance between R and Ka is s, H(R,Ka)=s, and (ii) that the Hamming distance between R and each and every authentication string used previously, is larger than a threshold distance d;
failing either test the authenticator will reject R as a proof of the identity of the authentication candidate, and then the authenticator will instruct the authentication candidate to try with another, candidate string, R′
, and try again, until both tests (i, ii) for authentication are satisfied. - View Dependent Claims (2)
- {a1, a2, . . . at} where transmitting party and recipient party share a secret key K comprised of t bit strings k1, k2, . . . kt each comprised of n bits, and t positive integers f1, f2, . . . ft where 0≤
Specification
-
- Resources
Litigation Campaign Assessment
Thank you for your request. You will receive a custom alert email when the Litigation Campaign Assessment is available.
×
-
Current AssigneeGideon Samid
-
Original AssigneeGideon Samid
-
InventorsSamid, Gideon
-
Primary Examiner(s)Siddiqi, Mohammad A
-
Application NumberUS16/253,911Publication NumberTime in Patent Office364 DaysField of SearchUS Class CurrentCPC Class CodesH04L 9/002 Countermeasures against att...H04L 9/0631 Substitution permutation ne...H04L 9/0656 Pseudorandom key sequence c...H04L 9/0662 with particular pseudorando...H04L 9/085 Secret sharing or secret sp...H04L 9/0852 Quantum cryptography transm...H04L 9/3271 using challenge-response
