-
公开(公告)号:US20120204023A1
公开(公告)日:2012-08-09
申请号:US13501875
申请日:2010-10-20
申请人: Christiaan Kuipers , Pim Theo Tuyls
发明人: Christiaan Kuipers , Pim Theo Tuyls
IPC分类号: H04L9/00
CPC分类号: H04L9/3278 , G06F21/10 , G06F2221/0711 , G06F2221/0753 , G06F2221/0755 , H04L9/08 , H04L9/0866 , H04L9/32 , H04L9/3271 , H04L2209/34 , H04L2209/60 , H04L2209/80
摘要: A distribution system and method for distributing digital information is provided, which has high recoverability from a security breach. The distribution system comprises a server (200) and a computing device (110). During an enrollment phase, the computing device obtains a first response from an integrated physically unclonable function (150) integrated in the computing device. The system comprises an enrollment module (130) for determining helper data from a decryption key and the first response to enable later reconstruction of the decryption key from the helper data and a second response obtained from the physically unclonable function. During a reconstruction phase, which occurs after the enrollment phase and typically after a security breach has occurred that revealed data and/or programming code of the computing device, the server may encrypt digital information using an encryption module (220) with a cryptographic encryption key corresponding to the decryption key. The computing device comprises a decryption module (120) for decrypting the encrypted digital information with the decryption key. The digital information may be used to send an update message to the computing device. Since, the decryption key need only be available at the computing device after the breach, it can recover even if data, such as a cryptographic key, or programming code of the computing device was revealed, and even if an attacker could eavesdrop on the encrypted digital information.
摘要翻译: 提供了一种用于分发数字信息的分发系统和方法,其具有从安全漏洞的高可恢复性。 分配系统包括服务器(200)和计算设备(110)。 在注册阶段,计算设备从集成在计算设备中的集成的物理上不可克隆功能(150)获得第一响应。 该系统包括用于从解密密钥确定帮助数据的登记模块(130)和用于能够从辅助数据稍后重建解密密钥的第一响应以及从物理不可克隆功能获得的第二响应。 在重建阶段期间,其在注册阶段之后发生,并且通常在发生了显示计算设备的数据和/或编程代码的安全漏洞之后,使用具有密码加密密钥的加密模块(220)来加密数字信息 对应于解密密钥。 该计算装置包括用解密密钥解密加密的数字信息的解密模块(120)。 数字信息可以用于向计算设备发送更新消息。 由于解密密钥仅在破坏之后才能在计算设备上可用,所以即使显示出诸如计算设备的密码密钥或编程代码的数据,即使攻击者可以窃取加密的密钥 数字信息。
-
公开(公告)号:US20110215829A1
公开(公告)日:2011-09-08
申请号:US12674367
申请日:2008-08-18
IPC分类号: H03K19/003 , H05K13/00
CPC分类号: G11C7/1006 , G06F7/588 , G06F21/73 , G06F21/76 , G06F2221/2129 , G11C7/24 , G11C8/16 , H01L23/544 , H01L2223/54433 , H01L2223/5444 , H01L2924/0002 , H04L9/3278 , Y10T29/49002 , H01L2924/00
摘要: A method of generating a response to a physically unclonable function, said response being uniquely representative of the identity of a device having challengeable memory, the memory comprising a plurality of logical locations each having at least two possible logical states, the method comprising applying a challenge signal to an input of said memory so as to cause each of said logical locations to enter one of said two possible logical states and thereby generate a response pattern of logical states, said response pattern being dependent on said physically unclonable function which is defined by, the physical characteristics of said memory, the method further comprising reading out said response pattern.
摘要翻译: 一种产生对物理不可克隆功能的响应的方法,所述响应唯一地代表具有可询问存储器的设备的身份,所述存储器包括多个逻辑位置,每个逻辑位置具有至少两个可能的逻辑状态,该方法包括应用挑战 信号到所述存储器的输入,以使每个所述逻辑位置进入所述两个可能的逻辑状态之一,从而生成逻辑状态的响应模式,所述响应模式取决于所述物理不可克隆功能, 所述存储器的物理特性,所述方法还包括读出所述响应模式。
-
公开(公告)号:US20090153841A1
公开(公告)日:2009-06-18
申请号:US11573947
申请日:2005-08-15
申请人: Wil Ophey , Sjoerd Stallinga , Pim Theo Tuyls , Antonius Hermanus Maria Akkermans , Boris Skoric
发明人: Wil Ophey , Sjoerd Stallinga , Pim Theo Tuyls , Antonius Hermanus Maria Akkermans , Boris Skoric
IPC分类号: G06K9/74
CPC分类号: H04L9/3278 , G07D7/003 , G07D7/121
摘要: An optical identifier (1) can be used as a Physical Unclonable Function for producing a speckle pattern, as a response, upon being challenged with a light beam, as a challenge. This property can be used for identification of the optical identifier or of an object attached thereto, for the authentication of an information carrier or for generation of transaction keys. Since the response obtained in response to given challenge is highly sensitive to the relative position of the optical identifier, light beam source and detector for the speckle pattern, this relative position has to be accurately adjusted to reliably obtain the same response to a given challenge. To this aim, an optical identifier is proposed having an alignment area (3) for splitting an incident beam into distinct beams (6, 7) which can be detected as alignment signals (10a, 10b, 10c, 10d) on a detector (8) and used for the monitoring and for the adjustment of said relative position.
摘要翻译: 作为挑战,光学标识符(1)可以用作用于产生斑点图案作为响应的物理不可克隆功能,作为响应。 该属性可以用于识别光学标识符或附加到其上的对象,用于信息载体的认证或用于生成交易密钥。 由于响应于给定挑战而获得的响应对于光学标识符,用于散斑图案的光束源和检测器的相对位置高度敏感,所以必须精确地调整该相对位置以可靠地获得对给定挑战的相同响应。 为此目的,提出一种具有用于将入射光束分成不同光束(6,7)的对准区域(3)的光学识别器,其可以被检测为检测器(8)上的对准信号(10a,10b,10c,10d) )并用于监视和调整所述相对位置。
-
公开(公告)号:US20090006855A1
公开(公告)日:2009-01-01
申请号:US11718806
申请日:2005-11-09
IPC分类号: H04L9/32
CPC分类号: H04L9/3231 , H04L9/008 , H04L9/3218 , H04L2209/46 , H04L2209/805
摘要: The present invention relates to a method and a system of securely computing a measure of similarity for at least two sets of data. A basic idea of the present invention is to securely compare two sets of encrypted data to determine whether the two sets of data resemble each other to a sufficient extent. If the measure of similarity complies with predetermined criteria, the two sets of data from which the encrypted sets of data originate are considered to be identical.
摘要翻译: 本发明涉及一种安全地计算至少两组数据的相似性度量的方法和系统。 本发明的基本思想是安全地比较两组加密数据,以确定这两组数据是否足够相似。 如果相似性度量符合预定标准,则认为加密的数据集来源的两组数据是相同的。
-
公开(公告)号:US20080260152A1
公开(公告)日:2008-10-23
申请号:US12094999
申请日:2006-11-27
申请人: Boris Skoric , Alphons Antonius Maria Lambertus Bruekers , Pim Theo Tuyls , Willem Gerard Ophey
发明人: Boris Skoric , Alphons Antonius Maria Lambertus Bruekers , Pim Theo Tuyls , Willem Gerard Ophey
IPC分类号: H04L9/32
CPC分类号: H04L9/3234 , H04L9/3278
摘要: The present invention relates to a method and a device (104) for authenticating a plurality of physical tokens (101, 102, 103). A basic idea of the invention is to supply a sequence of interconnected devices (108, 109, 110), each device comprising a physical token (101, 102, 103), with a challenge of the respective physical token created during enrollment of said respective physical token, wherein the sequence of interconnected devices is arranged such that a data set supplied to the sequence is cryptographically processed with a response of a token comprised in a device and passed on to a token comprised in a subsequent device which further cryptographically processes the processed data set with its response until a response of a final physical token has been used to further cryptographically process the data set. Then, the data set which has been cryptographically processed with the responses of the tokens in the sequence is received and used together with the data set itself and data associated with the response of the respective token to authenticate the sequence of physical tokens.
摘要翻译: 本发明涉及一种用于认证多个物理令牌(101,102,103)的方法和装置(104)。 本发明的基本思想是提供一系列互连的设备(108,109,110),每个设备包括物理令牌(101,102,103),在所述相应的设备注册期间产生相应物理令牌的挑战 物理令牌,其中所述互连设备的序列被布置为使得提供给所述序列的数据集通过包含在设备中的令牌的响应进行密码处理,并传递到包含在后续设备中的令牌,所述令牌进一步加密处理 数据集具有其响应,直到最终物理令牌的响应已被用于进一步加密处理数据集。 然后,已经用序列中的令牌的响应进行了密码处理的数据集被接收并与数据集本身一起使用,并且与相应令牌的响应相关联的数据被使用以验证物理令牌的顺序。
-
公开(公告)号:US20080237506A1
公开(公告)日:2008-10-02
申请号:US12090364
申请日:2006-10-11
IPC分类号: G01N23/00
CPC分类号: H04L9/3278 , H04L2209/805
摘要: In a device for providing challenge-response pairs a radiation detection element, a challenge-modifying element and preferably also a light source are arranged on the same side of an imaginary plane, which separates said radiation-detecting element from a radiation scattering element. Hence, generation of a speckle pattern having a desired minimum speckle size is facilitated and a more easily assembled device is provided.
摘要翻译: 在用于提供挑战 - 响应对的装置中,辐射检测元件,挑战修改元件以及优选地还有光源被布置在虚拟平面的同一侧上,该假平面将辐射检测元件与辐射散射元件分离。 因此,有助于产生具有期望的最小散斑尺寸的散斑图案,并且提供更容易组装的装置。
-
37.发明申请Integrated Physical Unclonable Function (Puf) with Combined Sensor and Display 审中-公开具有组合传感器和显示器的集成物理不可克隆功能(Puf)公开(公告)号:US20080231418A1
公开(公告)日:2008-09-25
申请号:US12090414
申请日:2006-10-02
IPC分类号: H04L9/32
CPC分类号: G02B26/0833 , G02B5/02 , G02B26/026 , G02B27/00 , G09C1/00 , H04L9/3278 , H04L2209/805
摘要: The present invention relates to a device (100, 200, 300) and a method for creating challenge-response pairs. A basic idea of the present invention is to create a challenge in the form of light emitted onto a light scattering element (103, 203), which light will be scattered in the light scattering element and detected as a response to the challenge by light detecting elements (105, 205). The light scattering element comprises a transmissive material which contains randomly distributed light scattering particles (104, 204), which scatter incident light such that a random speckle pattern is created and spread over the light detecting elements. This random pattern is detected by the light detecting elements, and is known as the response to the challenge (i.e. the light) that was supplied to the light scattering element. Hence, a challenge-response pair is created. Further, picture elements (109, 209) are included in the device in order to enable modification of the challenge created by a light source (101, 201) and supplied to the light scattering element. By activating picture elements and thereby modifying the challenge, one will also modify the response that corresponds to the modified challenge.
摘要翻译: 本发明涉及一种用于创建挑战 - 响应对的装置(100,200,300)和方法。 本发明的基本思想是以光散射元件(103,203)的光的形式产生挑战,该光将散射在光散射元件中,并通过光检测作为对挑战的响应进行检测 元素(105,205)。 光散射元件包括透射材料,其包含随机分布的光散射粒子(104,204),其散射入射光,使得随机散斑图案被产生并分布在光检测元件上。 该随机图案由光检测元件检测,并且被称为对提供给光散射元件的挑战(即,光)的响应。 因此,创建了一个挑战 - 响应对。 此外,图像元素(109,209)包括在装置中,以便能够修改由光源(101,201)产生并提供给光散射元件的挑战。 通过激活图片元素并从而修改挑战,还将修改对应于修改的挑战的响应。
-
公开(公告)号:US20080159529A1
公开(公告)日:2008-07-03
申请号:US11568477
申请日:2005-05-03
摘要: The invention relates to an identification system, wherein the identifier is a body comprising an inhomogeneous material, which body is identified by subjecting it to mechanical vibrations, in particular acoustic vibrations, observing how the propagation of this mechanical vibrations is affected by inhomogeneities present in the body, and recognizing the body on the basis of a previous observation. Such an identifier body can be associated with an information carrier, allowing for the authentication of the information carrier, and for a conditional access or a copy protection scheme which can be relied upon. The acoustic identification according to the invention can be seen as an alternative to the optical identification of a body, which is known in the art, which alternative, compared to the optical identification, is characterized by higher robustness, various simplifications in the identification system and lower costs of implementation. The invention can also be applied for the generation of keys.
摘要翻译: 本发明涉及一种识别系统,其中标识符是包括不均匀材料的主体,该主体通过使其受到机械振动特别是声振动来识别,观察该机械振动的传播如何受到存在于 身体,并在以前的观察的基础上承认身体。 这样的标识符主体可以与信息载体相关联,允许信息载体的认证,以及可以依赖的条件访问或复制保护方案。 根据本发明的声学识别可以被看作是本领域已知的身体的光学识别的替代方案,与光学识别相比,其特征在于更高的鲁棒性,识别系统中的各种简化和 降低执行成本。 本发明也可以应用于密钥的生成。
-
公开(公告)号:US20080106605A1
公开(公告)日:2008-05-08
申请号:US11577355
申请日:2005-10-06
申请人: Geert Jan Schrijen , Pim Theo Tuyls
发明人: Geert Jan Schrijen , Pim Theo Tuyls
CPC分类号: G06F21/86 , G06F21/60 , G06F21/73 , G07C9/00158 , H01L23/576 , H01L2924/0002 , H01L2924/3011 , H04L9/3278 , H04L2209/805 , H01L2924/00
摘要: A method and device for providing a secure sensor chip (1) for recording digital information regarding at least one physical parameter, wherein the recording later can be verified with respect to its authenticity, whether the at least one physical parameter was indeed recorded by the specified chip (1) or not, wherein this is accomplished by providing the sensor chip (1) with a Controlled Physical Random Function (CPUF) in the form of a coating (5) and wherein both the sensor chip (1) and a micro controller (2) controlling all digital inputs (3) and outputs (4) of the sensor chip are both embedded in the CPUF coating (5).
摘要翻译: 一种用于提供用于记录关于至少一个物理参数的数字信息的安全传感器芯片(1)的方法和装置,其中可以根据其真实性来验证以后的记录,所述至少一个物理参数是否确实由指定的 芯片(1),其中这是通过向传感器芯片(1)提供涂层(5)形式的受控物理随机功能(CPUF)来实现的,并且其中传感器芯片(1)和微控制器 (2)控制传感器芯片的所有数字输入(3)和输出(4)均嵌入在CPUF涂层(5)中。
-
公开(公告)号:US06696779B2
公开(公告)日:2004-02-24
申请号:US10095831
申请日:2002-03-12
申请人: Pim Theo Tuyls
发明人: Pim Theo Tuyls
IPC分类号: H01J2970
CPC分类号: H01J29/76 , H01J2229/7031
摘要: The present invention relates to a yoke ring for use in a deflection unit in a cathode ray tube (CRT). The yoke ring having a neck and a flared side, and being defined by an inner and an outer contour. According to the invention, the inner contour is periodically deformed in the radial direction, the contour having at least two local minima and maxima. This deformation influences the magnetic field generated by the coils in the CRT, leading to improved front-of-screen performance. In particular, astigmatism, coma and raster errors are reduced.
摘要翻译: 本发明涉及一种用于阴极射线管(CRT)中的偏转单元的轭环。 轭环具有颈部和扩张侧,并且由内外轮廓限定。 根据本发明,内轮廓在径向上周期性变形,轮廓具有至少两个局部最小值和最大值。 这种变形影响CRT中线圈产生的磁场,从而提高了屏幕前的性能。 特别地,散光,昏迷和光栅错误减少。
-
-
-
-
-
-
-
-
-
搜索结果
70 条记录 (耗时 0.029 秒)
