METHOD AND APPARATUS FOR ENCRYPTING/DECRYPTING DATA
First Claim
1. A method of encrypting data (105) using a first key and multiple encryption keys (135) at least in part based on the first key (115), the method comprising:
- encoding the data into a redundant representation by distributing the information content of the data among a number of groups, each group being associated with a respective encryption key of the multiple encryption keys (135), each encryption key being associated with at least one group, the redundant representation allowing recovery of the data in the absence of the groups associated with the at least one of the multiple encryption keys, andencrypting each group by the respective associated encryption key.
1 Assignment
0 Petitions
Accused Products
Abstract
The present invention relates to a method and apparatus for encrypting data (105) by means of a first key (115), and a method and apparatus for decrypting encrypted data by means of a second key (185). The present invention alleviates the need for exact key information by allowing encryption of data (105) by means of a first key (115) and subsequent decryption of the encrypted data by means of a second key (185) without the need for the first key (115), provided that the first key (115) and the second key (185) form a sufficient estimate of an encryption/decryption key pair. During encryption, multiple encryption keys (135), at least in part based on the first key (115), are used to encrypt a redundant representation (122) of the data (105). The encrypted data (124) may subsequently be decrypted by using multiple decryption keys (165) based on the second key (185), without the need for the first key (115), provided that the second key (185) forms a sufficient estimate of the first key (115).
36 Citations
20 Claims
-
1. A method of encrypting data (105) using a first key and multiple encryption keys (135) at least in part based on the first key (115), the method comprising:
-
encoding the data into a redundant representation by distributing the information content of the data among a number of groups, each group being associated with a respective encryption key of the multiple encryption keys (135), each encryption key being associated with at least one group, the redundant representation allowing recovery of the data in the absence of the groups associated with the at least one of the multiple encryption keys, and encrypting each group by the respective associated encryption key. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 20)
-
-
12. A method of decrypting encrypted data, a first key and a second key (185) forming an estimate of an encryption/decryption key pair, comprising:
-
decrypting the encrypted data using multiple decryption keys (165) based at least in part on the second key (185), at least one of the encryption keys including key information that is not present in the respective other encryption keys, each of the multiple decryption keys being associated with a respective one of the multiple encryption keys, decrypting at least one or more encrypted groups using the respective decryption key associated with the encryption key used to encrypt the group, and decoding the data (105) from the at least one or more decrypted groups by extracting information content related to the data from at least one or more correctly decrypted groups. - View Dependent Claims (13, 14, 15, 16)
-
-
17. An apparatus for encrypting data (105) using a first key and multiple encryption keys (135) at least in part based on the first key (115), the apparatus comprising:
-
encoding means (121) arranged to encode the data into a redundant representation (122), the encoding means distributing the information content of the data among a number of groups, each group being associated with a respective encryption key of the multiple encryption keys (135), each encryption key being associated with at least one group, the redundant representation at least allowing recovery of the data from the redundant representation in the absence of the groups associated with an encryption key comprising key information that is not present in the respective other encryption keys, and encrypting means (123) arranged to encrypt each group using the respective associated encryption key.
-
-
18. An apparatus for decrypting encrypted data (124), a first key (115) and a second key (185) forming an estimate of an encryption/decryption key pair, wherein the encrypted data (124) is decrypted by using multiple decryption keys (165) based at least in part on the second key (185), and at least one of the encryption keys comprises key information that is not present in the respective other encryption keys, and each of the multiple decryption keys is associated with a respective one of the multiple encryption keys, the apparatus comprising decryption means (181) arranged to decrypt at least one or more encrypted group by decrypting the at least one or more encrypted group by means of the respective decryption key associated with the encryption key used to encrypt the group, and
decoding means (183) arranged to decode the data (105) from the at least one or more decrypted groups by extracting information content related to the data from at least one or more correctly decrypted groups.
-
19.
Specification