Encryption processing system

US 6,460,137 B1
Filed: 03/19/1996
Issued: 10/01/2002
Est. Priority Date: 06/02/1995
Status: Expired due to Term

First Claim

Patent Images

1. An encryption processing system in a service provider for distributing packets each containing a header and data to a service client, said data comprising software having a plurality of titles representing the software, said header having an ID provided with each title and time information previously provided with each packet which represents data for indicating a generation time of each packet, and said system comprising:

key generating means for randomly generating first and second keys for respective titles of the software in the data;

a first encryption circuit encrypting input data with said first key;

extracting means for extracting information comprising the ID and the time information from the header of each packet and inputting the ID and the time information to said first encryption circuit as an initial value of the input data to be initially encrypted;

a second encryption circuit encrypting a value of a result of the encryption by said first encryption circuit with said second key and inputting a value of a result of this encryption to said first encryption circuit as the input data to be subsequently encrypted; and

an exclusive OR circuit outputting an exclusive OR of the data stored in each packet and the value of the result of the encryption by said second encryption circuit.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A random-number generator generates first and second title keys on the basis of random numbers. A first DES encryption circuit for the title encrypts input data with the first title key. Initial values of this item of input data are a data identifier (ID) and program clock reference (PCR) that are extracted from a packet header. After completing the encryption of the initial values, a result of an encryption by a second DES encryption circuit for title serves as the input data for the first DES encryption circuit for title. The second DES encryption circuit for title encrypts a value of result of the encryption by the first DES encryption circuit for title with the second title key. An exclusive OR circuit outputs an exclusive OR of the data stored in the packet and a value of result of the encryption by the second DES encryption circuit for title. This exclusive OR turns out encrypted data.

Citations

11 Claims

1. An encryption processing system in a service provider for distributing packets each containing a header and data to a service client, said data comprising software having a plurality of titles representing the software, said header having an ID provided with each title and time information previously provided with each packet which represents data for indicating a generation time of each packet, and said system comprising:
- key generating means for randomly generating first and second keys for respective titles of the software in the data;
  
  a first encryption circuit encrypting input data with said first key;
  
  extracting means for extracting information comprising the ID and the time information from the header of each packet and inputting the ID and the time information to said first encryption circuit as an initial value of the input data to be initially encrypted;
  
  a second encryption circuit encrypting a value of a result of the encryption by said first encryption circuit with said second key and inputting a value of a result of this encryption to said first encryption circuit as the input data to be subsequently encrypted; and
  
  an exclusive OR circuit outputting an exclusive OR of the data stored in each packet and the value of the result of the encryption by said second encryption circuit.
- View Dependent Claims (2, 3, 6)
- - 2. An encryption processing system according to claim 1, wherein the packet contains storage position information about a storage position of the data stored in the packet, and said encryption processing system further comprises an encryption control circuit for enabling said first and second encryption circuits to perform the encryption only at the point in time when the data stored in the packet is inputted to said exclusive OR circuit on the basis of the storage position information.
  - 3. An encryption processing system according to claim 1, further comprising:
6. An encryption processing system according to claim 1, wherein said information extracted by said extracting means comprises a program clock reference indicating a generation time of each packet.

4. A software distributing system comprising a service provider and a service client system for distributing packets, each containing a header and software, between said service provider for providing the software and said service client and for receiving the software, said data comprising the software having a plurality of titles representing the software, said header having an ID provided with each title and time information previously provided with each packet which represents data for indicating a generation time of each packet, said service provider comprising:
- key generating means for randomly generating first and second keys for respective titles of the software in the data;
  
  key distributing means for distributing said first and second keys to said service client;
  
  a first encryption circuit encrypting provider input data with said first key;
  
  means for recovering the first and second keys from the key generating means;
  
  first extracting means for extracting information comprising the ID and the time information from the header of each packet and inputting the ID and the time information to said first encryption circuit as an initial value for the provider input data to be initially encrypted;
  
  a second encryption circuit encrypting a value of a result of the encryption by said first encryption circuit with said second key and inputting a value of a result of this encryption to said first encryption circuit as the provider input data to be subsequently encrypted;
  
  a first exclusive OR circuit outputting an exclusive OR of the data stored in each packet and the value of the result of the encryption by said second encryption circuit; and
  
  data distributing means for distributing the packet including the header and the data output from said exclusive OR circuit to said service client, and said service client comprising;
  
  a third encryption circuit encrypting client input data with the first key distributed by said key distributing means;
  
  second extracting means for extracting the information including the ID from the header of each packet distributed from said service provider and inputting this information to said third encryption circuit as initial value of the client input data to be initially encrypted;
  
  a fourth encryption circuit encrypting a value of a result of the encryption by said third encryption circuit with said second key distributed by said key distributing means and inputting a value of a result of this encryption to said third encryption circuit as the client input data to be subsequently encrypted; and
  
  a second exclusive OR circuit outputting an exclusive OR of the data stored in each packet and the value of the result of the encryption by said fourth encryption circuit.
- View Dependent Claims (5, 7)
- - 5. An encryption processing system according to claim 4, wherein said service provider further comprises a fifth encryption circuit encrypting first and second keys with master keys having specified contents, said key distributing means distributes thus encrypted first and second keys to said service provider, and said service client further comprises a decryption circuit decrypting said encrypted first and second keys distributed by said data distributing means with said first and second keys having the specified contents.
  - 7. An encryption processing system according to claim 4, wherein said information extracted by said first and second extracting means comprises a program clock reference indicating a generation time of each packet.

8. An encryption system distributing packets each containing a header and data said data comprising software having a plurality of titles representing the software, said header having an ID provided with each title and time information previously provided with each packet which represents data for indicating a generation time of each packet, said system comprising:
- a key generating device generating a random first kev for each respective title of the software;
  
  a first encryption circuit encrypting an input including the title of the software and a packet generation time into each respective packet, with a first key, and producing a first output, said first encryption circuit starts with an initial value and information corresponding to the title of the software and the packet generation time extracted from a header of the packet comprising the initial value of the input to said first encryption circuit;
  
  a second encryption circuit encrypting the first output and producing a second output, the second output being supplied to said first encryption circuit as the input; and
  
  an exclusive OR circuit performing an exclusive OR operation using the packet data and the second output.

9. An encryption system for packet data, distributing packets each containing a header and data, said data comprising software having a plurality of titles representing the software, said header having an ID provided with each title and time information previously provided with each packet which represents data for indicating a generation time of each packet, said system comprising:
- a key generating device generating a random first key for each respective title of the software;
  
  a first encryption circuit encrypting an input with a first key, producing a first encrypted output, and starting with an initial value corresponding to the title of the software and the packet generation time extracted from the header of the packet;
  
  a second encryption circuit encrypting the first encrypted output producing a second encrypted output, the second encrypted output being supplied as feedback to said first encryption circuit as the input; and
  
  an exclusive OR circuit performing an exclusive OR operation using the packet data and the second encrypted output.

10. An encryption system for packet data, distributing packets each containing a header and data, said data comprising software having a plurality of titles representing the software, said header having an ID provided with each title and time information previously provided with each packet which represents data for indicating a generation time of each packet, said system comprising:
- a key generating device generating a random first key for each respective title of the software;
  
  a first encryption circuit encrypting an input with a first key, producing a first encrypted output, and starting with an initial value corresponding to the title of the software and the packet generation time extracted from the header of the packet; and
  
  a second encryption circuit encrypting the first encrypted output producing a second encrypted output, the second encrypted output being supplied as feedback to said first encryption circuit as the input.

11. An encryption system for packet data, distributing packets each containing a header and data, said data comprising software having a plurality of titles representing the software, said header having an ID provided with each title and time information previously provided with each packet which represents data for indicating a generation time of each packet, said system comprising:
- key generating means generating a random first key for each respective title of the software;
  
  first encryption circuit means encrypting an input with a first key, producing a first encrypted output, and starting with an initial value corresponding to the title of the software and the packet generation time extracted from the header of the packet; and
  
  second encryption circuit means encrypting the first encrypted output producing a second encrypted output, the second encrypted output being supplied as feedback to said first encryption circuit as the input.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Fujitsu Limited
Original Assignee
Fujitsu Limited
Inventors
Ishizaki, Masayuki, Yoshioka, Makoto, Akiyama, Ryota, Munakata, Akio, Koga, Yuzuru
Primary Examiner(s)
Barron, Jr., Gilberto
Assistant Examiner(s)
Seal, James

Application Number

US08/617,596
Time in Patent Office

2,387 Days
Field of Search

380/21, 380/49, 380/45, 380/29, 380/37, 380/262, 380/202, 380/277, 380/278, 380/279, 380/283, 380/705, 380/51, 380/713, 380/160, 380/162, 713/160, 713/162, 705/51
US Class Current

713/160
CPC Class Codes

H04L 9/0625   with splitting of the data ...

H04L 9/0869   involving random numbers or...

H04L 9/12   Transmitting and receiving ...

Encryption processing system

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

11 Claims

Specification

Solutions

Use Cases

Quick Links

Encryption processing system

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

11 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links