Method and system for generating ciphertext and message authentication codes utilizing shared hardware
First Claim
1. A method of generating ciphertext message data and message authentication codes utilizing shared authenticated encryption unit hardware, said method comprising:
- receiving plaintext message data at an authenticated encryption unit, wherein said authenticated encryption unit comprises a first authenticated encryption hardware module and a second authenticated encryption hardware module;
generating a first message authentication code associated with a first authenticated encryption mode of operation utilizing said plaintext message data and said first authenticated encryption hardware module;
receiving authenticated encryption mode selection data wherein the authenticated encryption mode selection data indicates selection of a dual mode, a dual mode comprising a mode in which two or more message authentication codes are generated substantially simultaneously; and
generating ciphertext message data and a second message authentication code associated with a second authenticated encryption mode of operation utilizing said plaintext message data and said second authenticated encryption hardware module;
wherein generating said first message authentication code and generating said ciphertext and said second message authentication code are performed substantially simultaneously.
1 Assignment
0 Petitions
Accused Products
Abstract
A method and system for generating ciphertext and message authentication codes utilizing shared hardware are disclosed. According to one embodiment, a method is provided of generating ciphertext message data and message authentication codes utilizing shared authenticated encryption unit hardware. In the described embodiment, plaintext message data is received at an authenticated encryption unit which comprises first and second authenticated encryption hardware modules. Thereafter, a first message authentication code (MAC) associated with a first authenticated encryption mode and a second MAC associated with a second authenticated encryption mode are generated. More specifically, the first MAC is generated utilizing the plaintext message data and first authenticated encryption hardware module and ciphertext message data and the second MAC are generated utilizing the plaintext message data and second authenticated encryption hardware module.
-
Citations
28 Claims
-
1. A method of generating ciphertext message data and message authentication codes utilizing shared authenticated encryption unit hardware, said method comprising:
-
receiving plaintext message data at an authenticated encryption unit, wherein said authenticated encryption unit comprises a first authenticated encryption hardware module and a second authenticated encryption hardware module; generating a first message authentication code associated with a first authenticated encryption mode of operation utilizing said plaintext message data and said first authenticated encryption hardware module; receiving authenticated encryption mode selection data wherein the authenticated encryption mode selection data indicates selection of a dual mode, a dual mode comprising a mode in which two or more message authentication codes are generated substantially simultaneously; and generating ciphertext message data and a second message authentication code associated with a second authenticated encryption mode of operation utilizing said plaintext message data and said second authenticated encryption hardware module; wherein generating said first message authentication code and generating said ciphertext and said second message authentication code are performed substantially simultaneously. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A machine-readable medium having a plurality of instructions executable by a machine embodied therein, wherein said plurality of instructions when executed cause said machine to perform a method of generating ciphertext message data and message authentication codes utilizing shared authenticated encryption unit hardware, said method comprising:
-
receiving plaintext message data at an authenticated encryption unit, wherein said authenticated encryption unit comprises a first authenticated encryption hardware module and a second authenticated encryption hardware module; generating a first message authentication code associated with a first authenticated encryption mode of operation utilizing said plaintext message data and said first authenticated encryption hardware module; receiving authenticated encryption mode selection data wherein the authenticated encryption mode selection data indicates selection of a dual mode, a dual mode comprising a mode in which two or more message authentication codes are generated substantially simultaneously; and generating ciphertext message data and a second message authentication code associated with a second authenticated encryption mode of operation utilizing said plaintext message data and said second authenticated encryption hardware module; wherein generating said first message authentication code and generating said ciphertext and said second message authentication code are performed substantially simultaneously. - View Dependent Claims (9, 10, 11, 12, 13, 14)
-
-
15. An apparatus for generating ciphertext message data and message authentication codes comprising:
-
means for receiving plaintext message data at an authenticated encryption unit, wherein said authenticated encryption unit comprises a first authenticated encryption hardware module and a second authenticated encryption hardware module; means for generating a first message authentication code associated with a first authenticated encryption mode of operation utilizing said plaintext message data and said first authenticated encryption hardware module; means for receiving authenticated encryption mode selection data wherein the authenticated encryption mode selection data indicates selection of a dual mode, a dual mode comprising a mode in which two or more message authentication codes are generated substantially simultaneously; and means for generating ciphertext message data and a second message authentication code associated with a second authenticated encryption mode of operation utilizing said plaintext message data and said second authenticated encryption hardware module; wherein said first message authentication code and said ciphertext and said second message authentication code are generated substantially simultaneously. - View Dependent Claims (16, 17, 18, 19, 20, 21)
-
-
22. An authenticated encryption unit for generating ciphertext message data and message authentication codes comprising:
-
a first input to receive plaintext message data; a first authenticated encryption hardware module to generate a first message authentication code associated with a first authenticated encryption mode of operation utilizing said plaintext message data; a second input to receive authenticated encryption mode selection data wherein the authenticated encryption mode selection data indicates selection of a dual mode, a dual mode comprising a mode in which two or more message authentication codes are generated substantially simultaneously; and a second authenticated encryption hardware module to generate ciphertext message data and a second message authentication code associated with a second authenticated encryption mode of operation utilizing said plaintext message data; wherein said first message authentication code and said ciphertext and said second message authentication code are generated substantially simultaneously. - View Dependent Claims (23, 24, 25, 26, 27, 28)
-
Specification