Cryptographic apparatus with double feedforward hash function
First Claim
1. Cryptographic apparatus comprising:
- a cryptographic processor having a first input for receiving eight parallel bytes F1 -F8 of first input data, a second input for receiving eight parallel bytes S1 -S8 of second input data, and an output for outputting eight parallel bytes C1 -C8 of ciphertext generated by cryptographically processing said first and second input data;
first means for processing said ciphertext and said first input data to produce a first ciphertext derivative comprising eight parallel bytes FD1 -FD8 ; and
second means for processing said first ciphertext derivative and said second input data for outputting a second ciphertext derivative comprising eight parallel bytes SD1 -SD8 ;
wherein;
said first means logically processes each of said ciphertext bytes C1 -C8 with the like numbered first input data byte F1 -F8 to produce said first ciphertext derivative; and
said second means logically processes each of said first ciphertext derivative bytes FD1 -FD8 with the like numbered second input data byte S1 -S8 to produce said second ciphertext derivative.
5 Assignments
0 Petitions
Accused Products
Abstract
Apparatus is provided for authenticating information using a double feedforward hash function to provide complementarity in the implementation of an encryption algorithm. A cryptographic processor has a first input for receiving plaintext, a second input for receiving a key and an output for outputting ciphertext generated by cryptographically processing the plaintext and key. A first circuit element is responsive to the ciphertext and plaintext for outputting a first ciphertext derivative. A second circuit element is responsive to at least a portion of the first ciphertext derivative and the key for outputting a second ciphertext derivative. The first and second circuit elements can be XOR gates. Alternatively, these elements can be provided using lookup tables. Subsequent cryptographic processor stages can be provided having a first input for receiving second plaintext, a second input for receiving the second ciphertext derivative as a key, and an output for outputting second ciphertext generated by cryptographically processing the second plaintext and the second ciphertext derivative. In an illustrated embodiment, the cryptographic processor is a DES processor.
39 Citations
20 Claims
-
1. Cryptographic apparatus comprising:
-
a cryptographic processor having a first input for receiving eight parallel bytes F1 -F8 of first input data, a second input for receiving eight parallel bytes S1 -S8 of second input data, and an output for outputting eight parallel bytes C1 -C8 of ciphertext generated by cryptographically processing said first and second input data; first means for processing said ciphertext and said first input data to produce a first ciphertext derivative comprising eight parallel bytes FD1 -FD8 ; and second means for processing said first ciphertext derivative and said second input data for outputting a second ciphertext derivative comprising eight parallel bytes SD1 -SD8 ; wherein; said first means logically processes each of said ciphertext bytes C1 -C8 with the like numbered first input data byte F1 -F8 to produce said first ciphertext derivative; and said second means logically processes each of said first ciphertext derivative bytes FD1 -FD8 with the like numbered second input data byte S1 -S8 to produce said second ciphertext derivative. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
-
-
12. Cryptographic apparatus comprising:
-
a cryptographic processor having a first input for receiving eight parallel bytes F1 -F8 of input data, a second input for receiving parallel bytes F2 -F8 of said first input data as a key, and an output for outputting seven parallel bytes C1 -C7 of ciphertext generated by cryptographically processing said input data and said key; first means for logically processing each of the first seven input data bytes F1 -F7 with the succeeding input data byte F2 -F8, respectively, to produce seven bytes of feedforward data FF1 -FF7 ; and second means for logically processing each of said feedforward data bytes FF1 -FF7 with the like numbered ciphertext byte C1 -C7 to produce a ciphertext derivative comprising seven parallel bytes D1 -D7. - View Dependent Claims (13, 14, 15, 16, 17, 18, 19, 20)
-
Specification