SECURE DISTRIBUTED STORAGE SYSTEM AND METHOD
First Claim
1. A method of encrypting information, comprising:
- defining a plaintext message to be encrypted;
extracting a set of digital information from the plaintext message in a pseudorandom order;
constructing a keystream for the plaintext message with an initialization vector formed from at least the extracted set of digital information, wherein the initialization vector is not constrained to a predetermined length; and
encrypting the plaintext with the set of digital information extracted with the keystream into a ciphertext.
2 Assignments
0 Petitions
Accused Products
Abstract
Moving from server-attached storage to distributed storage brings new vulnerabilities in creating a secure data storage and access facility. The Data Division and Out-of-order keystream Generation technique provides a cryptographic method to protect data in the distributed storage environments. In the technique, the Treating the data as a binary bit stream, our self-encryption (SE) scheme generates a keystream by randomly extracting bits from the stream. The length of the keystream depends on the user'"'"'s security requirements. The bit stream is encrypted and the ciphertext is stored on the mobile device, whereas the keystream is stored separately. This makes it computationally not feasible to recover the original data stream from the ciphertext alone.
-
Citations
21 Claims
-
1. A method of encrypting information, comprising:
-
defining a plaintext message to be encrypted; extracting a set of digital information from the plaintext message in a pseudorandom order; constructing a keystream for the plaintext message with an initialization vector formed from at least the extracted set of digital information, wherein the initialization vector is not constrained to a predetermined length; and encrypting the plaintext with the set of digital information extracted with the keystream into a ciphertext. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. An apparatus for encrypting information, comprising:
-
a memory adapted to store a plaintext message to be encrypted and an encrypted ciphertext; a processor, adapted to extract a pseudorandomly defined set of digital information from the plaintext message, and construct a keystream for the plaintext message with an initialization vector formed from at least the extracted set of digital information, and encrypt the plaintext with the set of digital information extracted with the keystream into the ciphertext; and an interface between the processor and the memory. - View Dependent Claims (9, 10, 11, 12, 13, 14)
-
-
15. A computer readable medium, storing therein instructions for controlling a processor to encrypt information, according to the steps of:
-
defining a plaintext message to be encrypted; extracting a set of digital information from the plaintext message in a pseudorandom order; constructing a keystream for the plaintext message with an initialization vector formed from at least the extracted set of digital information, wherein the initialization vector is not constrained to a predetermined length; and encrypting the plaintext with the set of digital information extracted with the keystream into a ciphertext.
-
-
16. A method of decrypting information, comprising:
-
defining a ciphertext message to be decrypted; receiving information defining a set of digital information pseudorandomly extracted from a corresponding plaintext message; constructing a keystream with an initialization vector formed from at least the extracted set of digital information; decrypting the ciphertext with the keystream into an extracted plaintext; restoring the extracted set of digital information to produce the plaintext. - View Dependent Claims (17, 18, 19, 20, 21)
-
Specification