Message format for secure communication over data links
First Claim
1. In a data link communication system utilizing a synchronous protocol and having an encryption/decryption device at each end of the data link, the improvement in said encryption/decryption device comprising:
- means for generating a multi-bit random number to be used as an initialization vector;
means for enciphering message text according to the DES algorithm in the cipher feedback mode; and
means for supplying said initialization vector to said enciphering means prior to the start of the next message enciphering, and supplying the same initialization vector to the receiving encryptor/decryptor device as the trailing end of the previous encrypted message, whereby said initializing vector is supplied to the deciphering portion of the receiving encryptor/decryptor device for the purpose of initializing it for reception of the next cipher.
3 Assignments
0 Petitions
Accused Products
Abstract
Communication over data links using binary synchronous protocol that is to be made secure according to the Federal data encryption standard (DES) is enhanced by utilizing an encrypted message format wherein the initialization vector for the DES algorithm is at the trailing end of the message. Additional information or control words may also be strung at the trailing end of the encrypted message format without causing throughput loss while enhancing the security and flexibility of the encrypted message in both point-to-point and multipoint systems.
59 Citations
18 Claims
-
1. In a data link communication system utilizing a synchronous protocol and having an encryption/decryption device at each end of the data link, the improvement in said encryption/decryption device comprising:
-
means for generating a multi-bit random number to be used as an initialization vector; means for enciphering message text according to the DES algorithm in the cipher feedback mode; and means for supplying said initialization vector to said enciphering means prior to the start of the next message enciphering, and supplying the same initialization vector to the receiving encryptor/decryptor device as the trailing end of the previous encrypted message, whereby said initializing vector is supplied to the deciphering portion of the receiving encryptor/decryptor device for the purpose of initializing it for reception of the next cipher. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. In a data link communication system utilizing a synchronous protocol and having a master encryption/decryption device at a central location and an encryption/decryption device at each of a plurality of tributary locations, said master encryption/decryption device storing a plurality of multi-bit secret keys, one for each of the tributary encryption/decryption devices, the improvement in the encryption/decryption device comprising:
-
means for storing a multi-bit random number to be used as an initialization vector; means for enciphering message text according to the DES algorithm in the cipher feedback mode; means for supplying the initialization vector to said message enciphering means prior to the start of the next message enciphering by said enciphering means; and means for supplying the same initialization vector to each of the tributary encryption/decryption devices as the trailing end of the previous encrypted message whereby the initialization vector is supplied to the deciphering portion of each tributary encryption/decryption device for the purpose of initializing it for reception of the next cipher. - View Dependent Claims (8, 9, 10, 11, 12)
-
-
13. In a data link communication system utilizing a synchronous protocol and having an encryption/decryption device at each end of the data link, one of the encryption/decryption devices being a master and the other being the tributary device, each encryption/decryption device enciphering and deciphering message text according to the DES algorithm in the cipher feedback mode with the use of a secret key for each data link, the initialization of the master and tributary encryption/decryption device prior to a cipher transmission being controlled by a multi-bit initialization vector genereated at the master encryption/decryption device and transmitted to the tributary encryption/decryption device, the improvement therein comprising:
- means for supplying the initialization vector to the master encryption/decryption device prior to the start of the next message enciphering; and
means for supplying the same initialization vector to the tributary device as the trailing end of the previous encrypted message whereby said initializing vector is supplied to the deciphering portion of the tributary device for the purpose of initializing it for reception of the next cipher. - View Dependent Claims (14, 15, 16, 17, 18)
- means for supplying the initialization vector to the master encryption/decryption device prior to the start of the next message enciphering; and
Specification