Cryptographic system with enhanced encryption function and cipher key for data encryption standard
First Claim
1. In a cryptographic device for performing a Data Encryption Standard (DES) type block cipher operation on a block of a plain text data bits under control of a set of cipher key bits including first storage means storing said block of data bits, first linear transformation means permuting said set of cipher bits, means connected to said first store means duplicating predetermined ones of the data bits of said block of data bits to produce an expanded block of data bits equal in number to the number of said permuted cipher key bits, means connected to said expansion means and said first linear transformation means carrying out a substitution transformation function in accordance with said expanded block of data bits and said permuted cipher key bits to produce a substitution set of bits equal to the number of bits in said block of data, the improvement comprising:
- a second variable linear and cipher key dependent transformation means for providing a substantially increased level of encryption security compared to a standard DES device while retaining system compatability with the traditional DES cipher device whereby the combined transformation results in a product block cipher of said block of data bits with little or no increase in said encryption cycle time compared to a standard DES device.
1 Assignment
0 Petitions
Accused Products
Abstract
An enhanced cryptographic system of high security for a referable ciphering of a block of data bits under control of a cryptographic key or for generating a non referable ciphering of a block of data bits with said cryptographic system being based upon the traditional DES but utilizing a variable permutation or linear transformation after the S box substitution function. Said variable permutation is able to be realized in an FPGA implementing the variable permutation via a switching network such as an Omega or Bennes-Waksman network with the switching network control elements under control of the cryptographic key and with an electable mode compatible with the traditional single DES and TDEA and their various modes and with a further capability for a privacy mode within a set of holders of common cryptographic key via a sub key selection mask.
-
Citations
12 Claims
-
1. In a cryptographic device for performing a Data Encryption Standard (DES) type block cipher operation on a block of a plain text data bits under control of a set of cipher key bits including first storage means storing said block of data bits, first linear transformation means permuting said set of cipher bits, means connected to said first store means duplicating predetermined ones of the data bits of said block of data bits to produce an expanded block of data bits equal in number to the number of said permuted cipher key bits, means connected to said expansion means and said first linear transformation means carrying out a substitution transformation function in accordance with said expanded block of data bits and said permuted cipher key bits to produce a substitution set of bits equal to the number of bits in said block of data, the improvement comprising:
a second variable linear and cipher key dependent transformation means for providing a substantially increased level of encryption security compared to a standard DES device while retaining system compatability with the traditional DES cipher device whereby the combined transformation results in a product block cipher of said block of data bits with little or no increase in said encryption cycle time compared to a standard DES device. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
8. A digital electronic process for ciphering/deciphering a group of data bits under control of a set of cipher key bits wherein the set of cipher key bits is substantially larger than the length of the Data Encryption Standard (DES) cipher key and wherein an encryption/decryption cycle time is substantially equivalent to the cycle time of a standard DES device, the process comprising the steps of:
-
storing said group of data bits in a first digital storage memory, storing said set of cipher key bits in a second digital storage memory, separating said stored cipher key bits into at least a first segment and a second segment, linearly transforming said first set of cipher key bits into a plurality of transformed cipher key bits, performing a plurality of different substitution transformation functions using said transformed cipher key bits on said group of data bits, and performing a second time varying transformation of said substitution set of bits under control of said second segment of said cipher key bit section whereby the combined transformations generate a product block cipher of said block of data bits. - View Dependent Claims (9)
-
-
10. An improved Data Encryption Standard (DES) device for performing a Product block cipher operation on a block of data bits under control of a set of cipher key bits wherein said set of cipher key bits is substantially larger than a typical cipher key set of a standard DES device, said improved DES device comprising:
-
a digital memory for storing said block of data bits, a key bit storage register for storing said set of cipher key bits and for dividing said key bits into at least two segments, a first linear transformation logic gate array for permuting said bits of said first segment of said cipher key bits, a storage memory register for grouping said permuted cipher key bits into a plurality of permuted cipher key bits, a binary logic gate array coupled to said storage memory register for producing an expanded block of data bits equal in number to the number of permuted cipher key bits, a second binary gate array responsive to said plurality of permuted data bit segments and to said plurality of permuted cipher key bit segments for executing different substitution transformation functions to generate a substitution set of data bits equal in number to the number of bits in said block of data bits, and a second time variable, key dependent linear transformation logic gate array of binary switches controlled by said second segment of said cipher key bits and coupled to said first substitution transformation gate array whereby the combined transformations result in a product cipher of said block of data bits without substantially increasing the cipher cycle time compared to a standard DES device. - View Dependent Claims (11)
-
-
12. The improved DES type cipher device additionally including an operator selectable switch for activating a means of generating a unique user privacy code from said cipher key bits for providing individual users with a unique privacy function.
Specification