Method and apparatus for symmetric-key encryption

US 7,110,545 B2
Filed: 02/16/2001
Issued: 09/19/2006
Est. Priority Date: 03/09/2000
Status: Expired due to Fees

First Claim

Patent Images

1. A symmetric-key encryption method performed by a computer comprising the steps of:

dividing plaintext composed of a message and redundancy data added to the message to generate a plurality of plaintext blocks each having a predetermined length, wherein the redundancy data is added to detect whether a ciphertext obtained from said plaintext has been altered;

generating a first random number block and a second random number block both corresponding to each of said plurality of plaintext blocks based on a secret key that is an input value;

performing encrypting operations for producing ciphertext blocks each corresponding to each of said plurality of plaintext blocks; and

concatenating the series of said ciphertext blocks one after another sequentially to output said series as said ciphertext,wherein one of said encryption operations for producing the ciphertext block i corresponding to the plaintext i (2≦

i≦

a number of plaintext blocks) comprises;

a first operation step for performing an arithmetic computation on said plaintext block i and said first random number block corresponding to said plaintext block i,a second operation step for performing an arithmetic computation on a result of said first operation step performed on said plaintext block i and said second random number block corresponding to said plaintext block i, anda third operation step for performing an arithmetic computation on a result of said second operation step performed on said plaintext block i and a result of said first operation step performed on said plaintext block i−

1, to produce said ciphertext block i, andwherein either said first random number or said second random number is generated in complete isolation from any one of said plurality of plaintext blocks or the result of said second operation step.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A symmetric-key cryptographic technique capable of realizing both high-speed cryptographic processing having a high degree of parallelism, and alteration detection. The invention includes dividing plaintext composed of redundancy data and a message to generate plaintext blocks each having a predetermined length, generating a random number sequence based on a secret key, generating a random number block corresponding to one of the plaintext blocks from the random number sequence, outputting a feedback value obtained as a result of operation on the one plaintext blocks and the random number block, the feedback value being fed back for using in the operation on another plaintext blocks, and performing an encryption operation using the one plaintext blocks, random number block, and feedback value.

65 Citations

View as Search Results

22 Claims

1. A symmetric-key encryption method performed by a computer comprising the steps of:
- dividing plaintext composed of a message and redundancy data added to the message to generate a plurality of plaintext blocks each having a predetermined length, wherein the redundancy data is added to detect whether a ciphertext obtained from said plaintext has been altered;
  
  generating a first random number block and a second random number block both corresponding to each of said plurality of plaintext blocks based on a secret key that is an input value;
  
  performing encrypting operations for producing ciphertext blocks each corresponding to each of said plurality of plaintext blocks; and
  
  concatenating the series of said ciphertext blocks one after another sequentially to output said series as said ciphertext,wherein one of said encryption operations for producing the ciphertext block i corresponding to the plaintext i (2≦
  
  i≦
  
  a number of plaintext blocks) comprises;
  
  a first operation step for performing an arithmetic computation on said plaintext block i and said first random number block corresponding to said plaintext block i,a second operation step for performing an arithmetic computation on a result of said first operation step performed on said plaintext block i and said second random number block corresponding to said plaintext block i, anda third operation step for performing an arithmetic computation on a result of said second operation step performed on said plaintext block i and a result of said first operation step performed on said plaintext block i−
  
  1, to produce said ciphertext block i, andwherein either said first random number or said second random number is generated in complete isolation from any one of said plurality of plaintext blocks or the result of said second operation step.
- View Dependent Claims (2, 3, 4, 5, 6, 7)
- - 2. The symmetric-key encryption method as claimed in claim 1, wherein the step of generating random number blocks divides a random number sequence longer than said series of ciphertext blocks to produce the random number blocks independent of any one of said plaintext blocks.
  - 3. The symmetric-key encryption method as claimed in claim 2, wherein said plaintext includes said message, said redundancy data and secret data of a predetermined length, said secret data being generated based on said secret key.
  - 4. The symmetric-key encryption method as claimed in claim 2, wherein said first operation is an exclusive OR operation, said second operation is a multiplication, and said third operation is an exclusive OR operation.
  - 5. The symmetric-key encryption method as claimed in claim 2, wherein said encryption operation includes multiplication and addition in a finite field.
  - 6. The symmetric-key encryption method as claimed in claim 2, wherein said encryption operation includes a combination of a cyclic shift operation and arithmetic multiplication.
  - 7. The symmetric-key encryption method as claimed in claim 2, wherein said symmetric-key encryption method employs a pseudorandom-number generating means for generating said random number sequence based on said secret key;
    - andwherein said method produces said random number blocks from said random number sequence.

8. A symmetric-key encryption apparatus comprising:
- a circuit for dividing plaintext composed of a message and redundancy data added to the message to generate a plurality of plaintext blocks each having a predetermined length;
  
  wherein the redundancy data is added to detect whether a ciphertext obtained from said plaintext has been altered;
  
  a random number generation circuit for generating a first random number block and a second random number block both corresponding to each of said plurality of plaintext blocks based on a secret key that is an input value;
  
  an encryption operation circuit for performing encryption operations to produce ciphertext blocks each corresponding to each of said plurality of plaintext blocks; and
  
  a circuit for concatenating the series of said ciphertext blocks one after another sequentially to output said series as said ciphertext,wherein said encryption operation circuit for producing the ciphertext block i corresponding to the plaintext i (2≦
  
  i≦
  
  a number of plaintext blocks) comprises;
  
  a first circuit for performing a first operation on said plaintext block i and said first random number block corresponding to said plaintext block i,a second circuit for performing a second operation on a result of said first operation performed on said plaintext block i and said first random number block corresponding to said plaintext block i, anda third circuit for performing a third operation on a result of said second operation performed on said plaintext block i and a result of said first operation performed on said plaintext block i−
  
  1, to produce a result of said third operation as said ciphertext block i, andwherein either said first random number of said second random number, which is generated by said random number generation circuit, is generated in complete isolation from any one of said plurality of plaintext blocks or the result of said second operation step.
- View Dependent Claims (9, 10, 11, 12, 13, 14)
- - 9. The symmetric-key encryption apparatus as claimed in claim 8, wherein said random number generation circuit divides a random number sequence longer than said series of ciphertext blocks to produce the random number blocks independent of any one of said plaintext blocks.
  - 10. The symmetric-key encryption apparatus as claimed in claim 9, wherein said plaintext includes said message, said redundancy data and secret data of a predetermined length, said secret data being generated based on said secret key.
  - 11. The symmetric-key encryption apparatus as claimed in claim 9, wherein said first operation is an exclusive OR operation, said second operation is a multiplication, and said third operation is an exclusive OR operation.
  - 12. The symmetric-key encryption apparatus as claimed in claim 9, wherein said encryption operation circuit performs multiplication and addition in a finite field.
  - 13. The symmetric-key encryption apparatus as claimed in claim 9, wherein said encryption operation circuit includes a cyclic shift operation circuit and an arithmetic multiplication circuit.
  - 14. The symmetric-key encryption apparatus as claimed in claim 9, said random number generation circuit further comprising:
    - a pseudorandom number generator for generating said random number sequence based on said secret key; and
      
      a circuit for producing said random number blocks from said random number sequence.

15. A medium storing a program for causing a computer to perform a symmetric-key encryption method, wherein said program is read into said computer, said program when executed causes said computer to perform the steps of:
- dividing plaintext composed of a message and redundancy data added to the message to generate a plurality of plaintext blocks each having a predetermined length,wherein the redundancy data is added to detect whether a ciphertext obtained from said plaintext has been altered;
  
  generating a first random number block and a second random number block corresponding to each of said plurality of plaintext blocks based on a secret key that is an input value;
  
  performing encryption operations for producing ciphertext blocks each corresponding to each of said plurality of plaintext blocks; and
  
  concatenating the series of said ciphertext blocks one after another sequentially to output said series as said ciphertext,wherein one of said encryption operations for producing the ciphertext block i corresponding to the plaintext block i (2≦
  
  i≦
  
  a number of plaintext blocks) comprises;
  
  a first operation step for performing an arithmetic computation on said plaintext block i and said first random number block corresponding to said plaintext block i,a second operation step for performing an arithmetic computation on a result of said first operation step performed on said plaintext block i and said second random number block corresponding to said plaintext block i, anda third operation step for performing an arithmetic computation on a result of said second operation step performed on said plaintext block i and a result of said first operation step performed on said plaintext block i−
  
  1 to produce said ciphertext block i, andwherein either said first random number of said second random number is generated in complete isolation from any one of said plurality of plaintext blocks or the result of said second operation step.
- View Dependent Claims (16, 17, 18, 19, 20, 21)
- - 16. The medium storing a program as claimed in claim 15, wherein the step of generating random number blocks divides a random number sequence longer than said series of ciphertext blocks to produce the random number blocks independent of any one of said plaintext blocks.
  - 17. The medium storing a program as claimed in claim 16, wherein said plaintext includes said message, said redundancy data and secret data of a predetermined length, said secret data being generated based on said secret key.
  - 18. The medium storing a program as claimed in claim 16, wherein said first operation is an exclusive OR operation, said second operation is a multiplication, and said third operation is an exclusive OR operation.
  - 19. The medium storing a program as claimed in claim 16, wherein said encryption operation includes multiplication and addition in a finite field.
  - 20. The medium storing a program as claimed in claim 16, wherein said encryption operation includes a cyclic shift operation and arithmetic multiplication.
  - 21. The medium storing a program as claimed in claim 16, wherein said symmetric-key encryption method further comprises a step of:
    - generating pseudorandom numbers to generate said random number sequence based on said secret key; and
      
      wherein said method produces said random number blocks from said random number sequence.

22. A program product for causing a computer to perform a symmetric-key encryption method, wherein said program product is read into said computer, said program product comprising:
- code for causing said computer to divide plaintext composed of a message and redundancy data added to the message, to generate a plurality of plaintext blocks each having a predetermined length, wherein the redundancy data is added to detect whether a ciphertext obtained from said plaintext has been altered;
  
  code for causing said computer to generate a first random number block and a second random number block both corresponding to each one of said plurality of plaintext blocks based on a secret key that is an input value;
  
  code for causing said computer to perform encryption operations for producing ciphertext blocks each corresponding to each of said plurality of plaintext blocks; and
  
  code for causing said computer to concatenate the series of said ciphertext blocks one after another sequentially to output said series as said ciphertext,wherein one of said encryption operations for producing the ciphertext block i (2≦
  
  i≦
  
  a number of plaintext blocks) comprises;
  
  a first operation step for performing an arithmetic computation on said plaintext block i and said first random number block corresponding to said plaintext block i,a second operation step for performing an arithmetic computation on a result of said first operation step performed on said plaintext block i and said second random number block corresponding to said plaintext block i, anda third operation step for performing an arithmetic computation on a result of said second operation step performed on said plaintext block i and a result of said first operation step performed on said plaintext block i−
  
  1, to produce said ciphertext block i, andwherein either said first random number of said second random number is generated in complete isolation from any one of said plurality of plaintext blocks or the result of said second operation step, andwherein said program product is stored in a medium readable by said computer for embodying said codes.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Hitachi, Ltd.
Original Assignee
Japan Tokyo
Inventors
Miyazaki, Kunihiko, Watanabe, Dai, Takahashi, Masashi, Sato, Hisayoshi, Takaragi, Kazuo, Kurumatani, Hiroyuki, Furuya, Soichi
Primary Examiner(s)
Louis-Jacques, Jacques H.
Assistant Examiner(s)
Tran, Ellen C

Application Number

US09/784,254
Publication Number

US 20010021253A1
Time in Patent Office

2,041 Days
Field of Search

380/37, 380/44, 380/46, 380/210, 380/200, 380/212, 380/28, 380/259, 713/150, 713/189, 713/192, 713/169, 713/193
US Class Current

380/259
CPC Class Codes

H04L 2209/125   Parallelization or pipelini...

H04L 2209/20   Manipulating the length of ...

H04L 9/0625   with splitting of the data ...

H04L 9/0637   Modes of operation, e.g. ci...

H04L 9/0662   with particular pseudorando...

H04L 9/0822   using key encryption key

H04L 9/3236   using cryptographic hash fu...

H04L 9/50   using hash chains, e.g. blo...

Method and apparatus for symmetric-key encryption

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

65 Citations

22 Claims

Specification

Solutions

Use Cases

Quick Links

Method and apparatus for symmetric-key encryption

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

65 Citations

22 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links