ENCRYPTION AND AUTHENTICATION OF DATA AND FOR DECRYPTION AND VERIFICATION OF AUTHENTICITY OF DATA
First Claim
Patent Images
1. Method for encryption and authentication of data, comprising:
- generating from one or more plaintext data blocks ciphertext data blocks and corresponding authentication tags by means of authenticated encryption; and
generating a tag tree by means of the authentication tags.
1 Assignment
0 Petitions
Accused Products
Abstract
Techniques for encryption and authentication of data. One or more plaintext data blocks ciphertext data blocks and corresponding authentication tags are generated by means of authenticated encryption. A tag tree is generated by means of the authentication tags. The ciphertext data blocks and the tag tree data of the tag tree are stored in an untrusted storage, and the root tag of the tag tree is stored in a trusted storage.
-
Citations
13 Claims
-
1. Method for encryption and authentication of data, comprising:
-
generating from one or more plaintext data blocks ciphertext data blocks and corresponding authentication tags by means of authenticated encryption; and generating a tag tree by means of the authentication tags. - View Dependent Claims (2, 3, 4)
-
-
5. A method for decryption and verification of authenticity of data, the method comprising:
-
generating from one or more ciphertext data blocks and corresponding authentication tags from a tag tree plaintext data blocks and verification values by means of authenticated decryption; verifying the authentication tags by means of a root tag; and outputting the plaintext data blocks, if the verification values and the verification of the authentication tags confirm the authenticity of the data and the authentication tags. - View Dependent Claims (6)
-
-
7. A method for generating a tag authentication tree, the method comprising:
-
generating from plaintext data blocks authentication tags by means of authenticated encryption; concatenating the authentication tags to concatenated authentication tags; and generating from the concatenated authentication tags encrypted authentication tags and authentication tags by means of authenticated encryption. - View Dependent Claims (8)
-
-
9. A method for decryption and verification of authenticity of encrypted authentication tags of a tag tree comprising:
-
generating from the encrypted authentication tags and a parent authentication tags decrypted authentication tags and tag verification values by means of authenticated decryption; generating from one or more ciphertext data blocks plaintext data blocks and comparison tags by means of authenticated decryption; and outputting the plaintext data blocks, if the tag verification values and the verification of the comparison tags confirm the authenticity of the data and the decrypted authentication tags. - View Dependent Claims (10, 11)
-
-
12. A computer program product embodied in a tangible media comprising:
-
computer readable program codes coupled to the tangible media for encryption and authentication of data, the computer readable program codes configured to cause the program to; generate from one or more plaintext data blocks ciphertext data blocks and corresponding authentication tags by means of authenticated encryption; and generate a tag tree by means of the authentication tags.
-
-
13. An apparatus for encryption and authentication of data, the apparatus comprising:
a generator for; generating from one or more plaintext data blocks ciphertext data blocks and corresponding authentication tags by means of authenticated encryption; and generating a tag tree by means of the authentication tags.
Specification
-
- Resources
Litigation Campaign Assessment
Thank you for your request. You will receive a custom alert email when the Litigation Campaign Assessment is available.
×
-
Current AssigneeInternational Business Machines Corporation
-
Original AssigneeInternational Business Machines Corporation
-
InventorsHurley, Paul T., Pletka, Roman A., Cachin, Christian
-
Application NumberUS11/622,467Publication NumberTime in Patent OfficeDaysField of SearchUS Class Current713/193CPC Class CodesG06F 12/1408 by using cryptography for d...G06F 12/1416 by checking the object acce...G06F 21/6218 to a system of files or obj...G06F 21/64 Protecting data integrity, ...H04L 2209/30 Compression, e.g. Merkle-Da...H04L 9/0637 Modes of operation, e.g. ci...H04L 9/3242 involving keyed hash functi...H04L 9/50 using hash chains, e.g. blo...
