-
公开(公告)号:US08331556B2
公开(公告)日:2012-12-11
申请号:US12667712
申请日:2008-06-30
申请人: Olivier Billet , Yannick Seurin , Jacques Patarin
发明人: Olivier Billet , Yannick Seurin , Jacques Patarin
CPC分类号: H04L9/3093
摘要: The invention proposes a method and a device for decrypting an encrypted message represented by a sequence C or applying an electronic signature to a sequence C, said sequence C consisting of data belonging to a finite field K=GF(q), where q>1, in which there are processed successive blocks each comprising (n·d) successive data items from the sequence C, where n and d are predetermined integers greater than 1, the processing of such a block including the following steps: applying a predetermined affine invertible transformation t−1 to said block; interpreting the resulting block as being formed of n successive elements (y1, y2, . . . , yn) of an extension E=GF(qd) of the field K; calculating an n-tuplet (x1, x2, . . . , xn) of elements of the field E by solving a system f of n predetermined polynomials of the form y k = ∑ 1 ≤ i ≤ j ≤ n a k ( ij ) x i q α i x j q β j + ∑ 1 ≤ i ≤ n b k i x i q γ i + c k ( 1 ≤ k ≤ n ) in which the coefficients ak(ij), bk(i), and ck belong to E and the exponents αi, βj, and γi are positive or zero integers; interpreting said n-tuplet (x1, x2, . . . , xn)as being a new block formed of (n·d) successive elements from the field K; and applying a predetermined affine invertible transformation s−1 to said new block.
摘要翻译: 本发明提出了一种用于解密由序列C表示的加密消息或对序列C应用电子签名的方法和装置,所述序列C由属于有限域K = GF(q)的数据组成,其中q> 1 其中存在处理的连续块,每个块包括来自序列C的(n·d)个连续数据项,其中n和d是大于1的预定整数,这种块的处理包括以下步骤:应用预定仿射可逆 将t-1转换为所述块; 将所得到的块解释为由场K的扩展E = GF(qd)的n个连续元素(y1,y2,...,yn)形成; 通过求解以下形式的n个预定多项式的系统f来计算场E的元素的n元组(x1,x2,...,xn):yk =Σ1≤i≤j≤num ak(ij) xiqαi xjq&bgr; 其中系数ak(ij),bk(i)和ck属于E,并且指数为1,j +Σ1≤i≤n笨bki xiqγ卜i i + ck(1≤k≤n) αi,&bgr; j和γi是正整数或零整数; 将所述n元组(x1,x2,...,xn)解释为由来自场K的(n·d)个连续元素形成的新块; 以及将预定的仿射可逆变换s-1应用于所述新块。
-
公开(公告)号:US20120300922A1
公开(公告)日:2012-11-29
申请号:US13519378
申请日:2010-12-28
申请人: Olivier Billet , Gilles Macario-Rat
发明人: Olivier Billet , Gilles Macario-Rat
IPC分类号: G06F21/24
CPC分类号: H04L9/0618 , H04L9/00 , H04L9/002 , H04L9/06 , H04L9/08 , H04L63/0428 , H04L2209/125 , H04L2209/16
摘要: A method is provided for generating a correspondence table suitable for use in a cryptographic processing method and comprising storing a plurality of input data and of output data in the table, each input datum being associated with at least one output datum in the table. For each input datum, at least one of the output data is obtained by applying a coding function to a first subsidiary datum and to an encrypted intermediate datum depending on the input datum. Also provided are a corresponding encryption method, a storage unit suitable for storing the correspondence table generated by the above generation method, a device for physically implementing such a correspondence table, a decryption device including such a storage unit, and a computer program product suitable for implementing the above generation method.
摘要翻译: 提供了一种用于生成适用于密码处理方法的对应表的方法,包括将多个输入数据和输出数据存储在表中,每个输入数据与表中的至少一个输出数据相关联。 对于每个输入数据,根据输入的数据,通过将编码功能应用于第一辅助数据和加密的中间数据来获得至少一个输出数据。 还提供了相应的加密方法,适用于存储通过上述生成方法生成的对应表的存储单元,用于物理实现这种对应表的装置,包括这种存储单元的解密装置,以及适用于 实施上述方法。
-
公开(公告)号:US20110116630A1
公开(公告)日:2011-05-19
申请号:US13000305
申请日:2009-06-23
申请人: Olivier Billet , Ryad Benadjila
发明人: Olivier Billet , Ryad Benadjila
IPC分类号: H04L9/20
CPC分类号: H04L9/0836 , H04L2209/606
摘要: A method and system for a user to obtain a derived value Kr of m bits, in which, given two pseudo-random functions g0 and g1 from m bits to m bits, said user obtains, on the basis of an input parameter consisting of a word r of n bits, a derived value Kr=grn∘ . . . gr2∘gr1 (S), where, for i=1, . . . , n, gri=g0 if ri=0, and gri=g1 if ri=1, and where S is a master value of m bits which is not disclosed to said user. This method comprises the following steps: a search is conducted, from among a set of words of m bits Uj, where j=1, . . . , p, recorded in a table TU and equal to Uj=gvl(j)(j)∘ . . . gv2(j)∘gv1(j) (S), where, for i=1, . . . , l(j), the indices vi(j) are predetermined bits, for a word Uσ equal to Uσ=grl(σ)∘ . . . gr2∘gr1 (S); said derived value Kr is thereafter obtained by calculating Kr=grn∘ . . . gr1(σ)+1 (Uσ).Application to the encryption/decryption of pay-per-use digital contents, and to authentication.
摘要翻译: 一种用于获得m比特的导出值Kr的方法和系统,其中给定从m比特到m比特的两个伪随机函数g0和g1,所述用户基于由 n位的字r,派生值Kr = grn o。 。 。 gr2 ogr1(S),其中,对于i = 1, 。 。 如果ri = 0,则n,gri = g0,如果ri = 1,则gri = g1,其中S是未向所述用户公开的m位的主值。 该方法包括以下步骤:从m位Uj的一组单词中进行搜索,其中j = 1,...。 。 。 ,p,记录在表TU中并且等于Uj = gvl(j)(j)o。 。 。 gv2(j)∘gv1(j)(S),其中,对于i = 1, 。 。 ,l(j),索引vi(j)是字U&sgr的预定位; 等于U&sgr; = grl(&sgr;)o。 。 。 gr2 ogr1(S); 然后通过计算Kr = grn0获得所述导出值Kr。 。 。 gr1(&sgr;)+ 1(U&sgr;)。 应用于按使用付费数字内容的加密/解密,以及认证。
-
公开(公告)号:US09154295B2
公开(公告)日:2015-10-06
申请号:US13519378
申请日:2010-12-28
申请人: Olivier Billet , Gilles Macario-Rat
发明人: Olivier Billet , Gilles Macario-Rat
CPC分类号: H04L9/0618 , H04L9/00 , H04L9/002 , H04L9/06 , H04L9/08 , H04L63/0428 , H04L2209/125 , H04L2209/16
摘要: A method is provided for generating a correspondence table suitable for use in a cryptographic processing method and comprising storing a plurality of input data and of output data in the table, each input datum being associated with at least one output datum in the table. For each input datum, at least one of the output data is obtained by applying a coding function to a first subsidiary datum and to an encrypted intermediate datum depending on the input datum. Also provided are a corresponding encryption method, a storage unit suitable for storing the correspondence table generated by the above generation method, a device for physically implementing such a correspondence table, a decryption device including such a storage unit, and a computer program product suitable for implementing the above generation method.
摘要翻译: 提供了一种用于生成适用于密码处理方法的对应表的方法,包括将多个输入数据和输出数据存储在表中,每个输入数据与表中的至少一个输出数据相关联。 对于每个输入数据,根据输入的数据,通过将编码功能应用于第一辅助数据和加密的中间数据来获得至少一个输出数据。 还提供了相应的加密方法,适用于存储通过上述生成方法生成的对应表的存储单元,用于物理实现这种对应表的装置,包括这种存储单元的解密装置,以及适用于 实施上述方法。
-
公开(公告)号:US08774408B2
公开(公告)日:2014-07-08
申请号:US13000305
申请日:2009-06-23
申请人: Olivier Billet , Ryad Benadjila
发明人: Olivier Billet , Ryad Benadjila
CPC分类号: H04L9/0836 , H04L2209/606
摘要: A method and system for a user to obtain a derived value Kr of m bits, in which, given two pseudo-random functions g0 and g1 from m bits to m bits, said user obtains, on the basis of an input parameter consisting of a word r of n bits, a derived value Kr=grn∘ . . . gr2∘gr1 (S), where, for i=1, . . . , n, gri=g0 if ri=0, and gri=g1 if ri=1, and where S is a master value of m bits which is not disclosed to said user. This method comprises the following steps: a search is conducted, from among a set of words of m bits Uj, where j=1, . . . , p, recorded in a table TU and equal to Uj=gvl(j)(j)∘ . . . gv2(j)∘gv1(j) (S), where, for i=1, . . . , l(j), the indices vi(j) are predetermined bits, for a word Uσ equal to Uσ=grl(σ)∘ . . . gr2∘gr1 (S); said derived value Kr is thereafter obtained by calculating Kr=grn∘ . . . grl(σ)+1 (Uσ).Application to the encryption/decryption of pay-per-use digital contents, and to authentication.
摘要翻译: 一种用于获得m比特的导出值Kr的方法和系统,其中给定从m比特到m比特的两个伪随机函数g0和g1,所述用户基于由 n位的字r,派生值Kr = grn o。 。 。 gr2 ogr1(S),其中,对于i = 1, 。 。 如果ri = 0,则n,gri = g0,如果ri = 1,则gri = g1,其中S是未向所述用户公开的m位的主值。 该方法包括以下步骤:从m位Uj的一组单词中进行搜索,其中j = 1,...。 。 。 ,p,记录在表TU中并且等于Uj = gvl(j)(j)o。 。 。 gv2(j)∘gv1(j)(S),其中,对于i = 1, 。 。 ,l(j),索引vi(j)是字U&sgr的预定位; 等于U&sgr; = grl(&sgr;)o。 。 。 gr2 ogr1(S); 然后通过计算Kr = grn0获得所述导出值Kr。 。 。 grl(&sgr;)+ 1(U&sgr;)。 应用于按使用付费数字内容的加密/解密,以及认证。
-
-
-
-
搜索结果
15 条记录 (耗时 0.023 秒)
