Systems and methods for protecting data secrecy and integrity

US 20050108555A1
Filed: 12/02/2004
Published: 05/19/2005
Est. Priority Date: 12/22/1999
Status: Active Grant

First Claim

Patent Images

1-42. -42. (canceled)

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A technique for integrating message authentication with encryption and decryption is disclosed. Intermediate internal states of the decryption operation are used to generate a validation code that can be used to detect manipulation of the encrypted data. The technique is optimized with respect to processing time, execution space for code and runtime data, and buffer usage. The technique is generally applicable to a variety of block ciphers, including TEA, Rijndael, DES, RC5, and RC6.

Citations

74 Claims

1-42. -42. (canceled)

43. A method for performing a mixing operation for use in authenticating encrypted data, the method comprising the steps of:
- receiving an input data block;
  
  dividing the input data block into a first segment and a second segment;
  
  using a first function to combine the first segment with a first input;
  
  using a second function to combine the second segment with a second input;
  
  generating a first output by performing a first transformation on an output of the first function, wherein the first transformation is based, at least in part, on the second input;
  
  generating a second output by performing a second transformation on an output of the second function, wherein the second transformation is based, at least in part, on the first input;
  
  combining the first output and the second output to form an output data block.
- View Dependent Claims (44, 46, 47, 48)
- - 44. The method of claim 43, wherein the first transformation comprises a bit-wise rotation of the output of the first function by a number of bits specified by a predefined portion of the second input, and wherein the second transformation comprises a bit-wise rotation of the output of the second function by a number of bits specified by a predefined portion of the first input.
  - 46. The method of claim 43, in which the first function comprises an unsigned add function, and in which the second function comprises a logical exclusive-or function.
  - 47. The method of claim 43, in which the first input comprises a first internal round state of a block cipher, and in which the second input comprises a second internal round state of the block cipher.
  - 48. The method claim 47, in which the block cipher is an implementation of the Tiny Encryption Algorithm.

45. The method of 44, wherein the predefined portion of the first input comprises the five lowest order bits of the first input, and wherein the predefined portion of the second input comprises the five lowest order bits of the second input.

49. A system for performing a mixing operation for use in authenticating an encrypted file, the system including:
- first logic for partitioning an input data block into a first segment and a second segment;
  
  an adder for adding the first segment to a first input;
  
  an exclusive-or calculator for combining the second segment with a second input;
  
  second logic for rotating an output of the adder by a number of bits specified by a predefined portion of the second input;
  
  third logic for rotating an output of the exclusive-or calculator by a number of bits specified by a predefined portion of the first input;
  
  fourth logic for combining an output of the second logic and an output of the third logic to form an output data block.
- View Dependent Claims (50, 56, 57, 58, 59)
- - 50. The system of claim 49, wherein at least one of the adder, the exclusive-or calculator, the first logic, the second logic, the third logic, and the fourth logic are implemented in software, the system further including a processor for executing the software.
  - 56. The system of claim 49, wherein the predefined portion of the first input comprises lowest order bits of the first input, and wherein the predefined portion of the second input comprises lowest order bits of the second input.
  - 57. The system of claim 49, wherein the predefined portion of the first input comprises about five lowest order bits of the first input, and wherein the predefined portion of the second input comprises about five lowest order bits of the second input.
  - 58. The system of claim 49, in which the first input and the second input are comprised of internal round state data of a block cipher.
  - 59. A system as in claim 58, in which the first input comprises a first internal round state of the block cipher, and in which the second input comprises a second internal round state of the block cipher.

51-55. -55. (canceled)

60. A method for performing a mixing operation for use in authenticating encrypted data, the method comprising the steps of:
- receiving an input data block;
  
  dividing the input data block into a first segment and a second segment;
  
  using a first function to combine the first segment with a first input;
  
  using a second function to combine the second segment with a second input;
  
  generating a first output by performing a first transformation including a bit-wise rotation on an output of the first function, wherein the first transformation is based, at least in part, on the second input;
  
  generating a second output by performing a second transformation on an output of the second function; and
  
  combining the first output and the second output to form an output data block.
- View Dependent Claims (61, 62, 63, 64, 65, 66, 67)
- - 61. The method of claim 60, wherein the bit-wise rotation of the output of the first function is executed as a function of a number of bits specified by a predefined portion of the second input, and wherein the second transformation comprises a bit-wise rotation of the output of the second function by a number of bits specified by a predefined portion of the first input.
  - 62. The method of claim 61, wherein the predefined portion of the first input comprises lowest order bits of the first input, and wherein the predefined portion of the second input comprises lowest order bits of the second input.
  - 63. The method of claim 61, wherein the predefined portion of the first input comprises about five lowest order bits of the first input, and wherein the predefined portion of the second input comprises about five lowest order bits of the second input.
  - 64. The method of claim 60, in which the first function comprises an unsigned add function, and in which the second function comprises a logical exclusive-or function.
  - 65. The method of claim 60, wherein the first input and the second input are comprised of internal round state data of a block cipher.
  - 66. The method of claim 60, wherein the first input comprises a first internal round state of a block cipher, and in which the second input comprises a second internal round state of the block cipher.
  - 67. The method of claim 66, wherein the block cipher is an implementation of the Tiny Encryption Algorithm.

68. A system for performing a mixing operation for use in authenticating an encrypted file, the system including:
- first logic for partitioning an input data block into a first segment and a second segment;
  
  an adder for adding the first segment to a first input;
  
  a calculator for combining the second segment with a second input;
  
  second logic for rotating an output of the adder by a number of bits specified by a predefined portion of the second input;
  
  third logic for rotating an output of the calculator by a number of bits specified by a predefined portion of the first input;
  
  fourth logic for combining an output of the second logic and an output of the third logic to form an output data block.
- View Dependent Claims (69, 70, 71, 72, 73, 74)
- - 69. The system of claim 68 further comprising:
    - decryption logic; and
      
      a first shift register for shifting an output of the adder by a first predefined number of bits derived from an intermediate state of the decryption logic.
  - 70. The system of claim 68, wherein at least one of the adder, the calculator, the first logic, the second logic, the third logic, and the fourth logic are implemented in software, the system further including a processor for executing the software.
  - 71. The system of claim 68, wherein the predefined portion of the first input comprises lowest order bits of the first input, and wherein the predefined portion of the second input comprises lowest order bits of the second input.
  - 72. The system of claim 68, wherein the predefined portion of the first input comprises about five lowest order bits of the first input, and wherein the predefined portion of the second input comprises about five lowest order bits of the second input.
  - 73. The system of claim 68, wherein the first input and the second input comprise internal round state data of a block cipher.
  - 74. The system of claim 73, wherein the first input comprises a first internal round state of the block cipher, and in which the second input comprises a second internal round state of the block cipher.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Intertrust Technologies Corporation (Fidelio Acquisition Co LLC)
Original Assignee
Intertrust Technologies Corporation (Fidelio Acquisition Co LLC)
Inventors
Sibert, W. Olin

Granted Patent

US 7,058,805 B2
Time in Patent Office

Days
Field of Search
US Class Current

713/187
CPC Class Codes

G06F 21/606   by securing the transmissio...

G06F 21/6209   to a single file or object,...

G06F 21/64   Protecting data integrity, ...

G06F 2221/2107   File encryption

H04L 2209/60   Digital content management,...

H04L 63/0428   wherein the data content is...

H04L 63/123   received data contents, e.g...

H04L 9/0625   with splitting of the data ...

H04L 9/0637   Modes of operation, e.g. ci...

H04L 9/3242   involving keyed hash functi...

Systems and methods for protecting data secrecy and integrity

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

Citations

74 Claims

Specification

Solutions

Use Cases

Quick Links

Systems and methods for protecting data secrecy and integrity

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

74 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links