-
公开(公告)号:US09407438B2
公开(公告)日:2016-08-02
申请号:US14376147
申请日:2013-03-01
CPC分类号: H04L9/16 , H04L9/3073
摘要: The present invention aims to allow for addition of an attribute category without reissuing a public parameter. A cryptographic system 10 uses an indexing technique in dual system encryption in dual pairing vector spaces. Specifically, for a transmission-side vector tj for index j, the cryptographic system 10 sets information J assigned to the index j in advance as a coefficient of a predetermined basis vector. For a reception-side vector for index j′ corresponding to the index j, the cryptographic system 10 sets information J′ having an inner-product of 0 with the information J as a coefficient of a basis vector corresponding to the predetermined basis vector.
摘要翻译: 本发明旨在允许添加属性类别而不重新发布公共参数。 加密系统10在双重配对向量空间中使用双系统加密中的索引技术。 具体地说,对于索引j的发送侧向量tj,密码系统10预先分配给索引j的信息J作为预定基本向量的系数。 对于与索引j相对应的索引j'的接收侧向量,密码系统10将信息J的内积为0的信息J'设置为与预定基本矢量相对应的基矢量的系数。
-
2.发明申请ENCRYPTED DATA MANAGEMENT DEVICE, ENCRYPTED DATA MANAGEMENT METHOD, AND ENCRYPTED DATA MANAGEMENT PROGRAM 有权加密数据管理设备,加密数据管理方法和加密数据管理程序公开(公告)号:US20140310521A1
公开(公告)日:2014-10-16
申请号:US14355043
申请日:2011-12-20
IPC分类号: H04L9/08
CPC分类号: H04L9/0891 , H04L9/0861 , H04L9/3073
摘要: An invalidation scheme of a secret key is implemented, which is usable for a functional encryption scheme. In a cryptographic processing system 10 employing an encryption scheme with which if attribute information and key information set in encrypted data do not correspond to attribute information and key information set in a secret key, the encrypted data cannot be decrypted using the secret key, an encrypted data management device 200 is provided, which carries out a relay between a user terminal 100 carrying out encryption and decryption of data and an encrypted data storage device 300 storing encrypted data. The encrypted data management device 200 determines whether or not a user whose secret key is invalid is included in users having attribute information set in the encrypted data acquired from the encrypted data storage device 300, and sets a different value as key information in the encrypted data based on the determination result. Then, the encrypted data management device 200 sends the encrypted data in which the key information is set to the user terminal 100.
摘要翻译: 实现秘密密钥的无效方案,其可用于功能加密方案。 在采用加密方案的密码处理系统10中,如果加密数据中设置的属性信息和密钥信息与密钥中设置的属性信息和密钥信息不对应,则加密数据不能使用秘密密钥加密, 提供数据管理装置200,其在执行数据的加密和解密的用户终端100和存储加密数据的加密数据存储装置300之间执行中继。 加密数据管理装置200确定在从加密数据存储装置300获取的加密数据中设定的属性信息的用户中是否包含有秘密密钥无效的用户,并且将不同的值设置为加密数据中的密钥信息 基于确定结果。 然后,加密数据管理装置200将其中设置有密钥信息的加密数据发送到用户终端100。
-
3.发明申请CRYPTOGRAPHIC PROCESSING SYSTEM, KEY GENERATION DEVICE, ENCRYPTION DEVICE, DECRYPTION DEVICE, CRYPTOGRAPHIC PROCESSING METHOD, AND CRYPTOGRAPHIC PROCESSING PROGRAM 有权图形处理系统,关键生成装置,加密装置,分解装置,编码处理方法和编码处理程序公开(公告)号:US20130339754A1
公开(公告)日:2013-12-19
申请号:US14003485
申请日:2011-12-16
IPC分类号: G06F21/72
CPC分类号: G06F21/72 , H04L9/0847 , H04L9/085 , H04L9/3073 , H04L63/061
摘要: A decentralized multi-authority functional encryption according to which the security of the whole system does not depend on a single party. Among a plurality of key generation devices, arbitrary one key generation device generates gparam, and each key generation device generates an authority public key and an authority secret key based on gparam. At least some key generation devices among the plurality of key generation devices generate a part of a decryption key of the user based on the authority secret key ask. The user forms one decryption by putting together the decryption keys generated by at least some of the key generation devices, and decrypts a ciphertext.
摘要翻译: 一种分散的多权限功能加密,根据该功能加密,整个系统的安全性不依赖于一方。 在多个密钥生成装置中,任意一个密钥生成装置生成gparam,每个密钥生成装置基于gparam生成权限公钥和权限密钥。 多个密钥生成装置中的至少一些密钥生成装置基于权限密钥询问生成用户的解密密钥的一部分。 用户通过将由至少一些密钥生成设备生成的解密密钥组合在一起形成一个解密,并解密密文。
-
公开(公告)号:US08458479B2
公开(公告)日:2013-06-04
申请号:US12809440
申请日:2008-02-20
申请人: Katsuyuki Takashima
发明人: Katsuyuki Takashima
IPC分类号: H04L9/32
CPC分类号: H04L9/3066 , H04L9/3073 , H04L9/3247 , H04L9/3252
摘要: An integer partitioning unit inputs an order p of a finite group G and an integer e, and calculates an integer e1 and an integer e2 that satisfy e1·e≡e2 (mod p) based on the order p of the finite group G and the integer e which are input. A verification value calculation unit inputs an element s of the finite group G and an element h of the finite group G, and calculates an element a (=e1·h−e2·s) of the finite group G based on the element s and the element h which are input and the integer e1 and the integer e2 which are calculated by the integer partitioning unit in the integer partitioning process. A verification judging unit judges, based on the element a calculated by the verification value calculation unit, whether or not the element a is an identity element O of the finite group G. Hence, whether or not h =e·s is judged at high speed.
摘要翻译: 整数分割单元输入有限群G和整数e的阶数p,并根据有限群G的阶数p计算满足e1·e = e2(mod p)的整数e1和整数e2, 输入的整数e。 验证值计算单元输入有限群G的元素s和有限群G的元素h,并基于元素s计算有限群G的元素a(= e1·h-e2·s), 输入的元素h和整数分割处理中的整数分割单元计算的整数e1和整数e2。 验证判断单元基于由验证值计算单元计算的元素a判断元素a是否为有限群G的身份元素O.因此,判断h = e·s是否高 速度。
-
5.发明申请CIPHERTEXT GENERATING APPARATUS, CRYPTOGRAPHIC COMMUNICATION SYSTEM, AND GROUP PARAMETER GENERATING APPARATUS 有权生产设备,组合通信系统和组参数生成设备。CIPHERTEXT GENERATING APPARATUS,CRYPTOGRAPHIC COMMUNICATION SYSTEM,AND GROUP PARAMETER GENERATING APPARATUS公开(公告)号:US20100104094A1
公开(公告)日:2010-04-29
申请号:US12523827
申请日:2007-01-19
申请人: Katsuyuki Takashima
发明人: Katsuyuki Takashima
IPC分类号: H04L9/28
CPC分类号: H04L9/3073
摘要: The random number generating unit 222 randomly generates an integer s. The first ciphertext generating unit 241 generates a first ciphertext C1 by encrypting the plaintext M, based on the integer s. The second ciphertext generating unit 242 generates a second ciphertext C2i based on the integer s and a recipient ID. The third ciphertext generating unit 243 generates a third ciphertext C3i based on the integer s. The hash value calculation unit 244 calculates a hash value H0 by combining the first ciphertext C1i the second ciphertext C2i and the third ciphertext C3. The fourth ciphertext generating unit 245 generates a fourth ciphertext C4, based on the hash value H0. The ciphertext combining unit 246 generates a ciphertext C by combining the first ciphertext C1i the second ciphertext C2i the third ciphertext C3i and the fourth ciphertext C4. Thus, it is possible to provide an ID-based public key cryptographic communication system being secure even when transmitting ciphertexts generated by encrypting the same plaintext to a plurality of recipients.
摘要翻译: 随机数生成单元222随机生成整数s。 第一密文生成单元241通过基于整数s加密明文M来生成第一密文C1。 第二密文生成单元242基于整数s和接收者ID生成第二密文C2i。 第三密文生成单元243基于整数s生成第三密文C3i。 哈希值计算单元244通过将第一密文C1i与第三密文C3组合来计算散列值H0。 第四密文生成单元245基于散列值H0生成第四密文C4。 密文合成单元246通过将第一密文C1i与第三密文C3i和第四密文C4组合,生成密文C. 因此,即使在将通过将相同明文加密而生成的密文发送给多个接收者时,也可以提供安全的基于ID的公钥密码通信系统。
-
6.发明授权公开(公告)号:US09203622B2
公开(公告)日:2015-12-01
申请号:US14355699
申请日:2012-11-12
CPC分类号: H04L9/3073 , H04L9/0822 , H04L2209/601
摘要: A cryptographic processing system and method to decrease the sizes of public parameters and a master secret key, and shorten the time taken for the generation process of the secret key to be supplied to the user and the encryption process. A generation device generates a basis B and a basis B* that form public parameters and a master secret key using a sparse matrix in which each row and each column have at least one value other than 0. An encryption device generates a vector in the basis B, the vector being embedded with predetermined information, as a cipher vector. A decryption device, by treating a predetermined vector in the basis B* as a key vector, conducts a pairing operation for the cipher vector and the key vector, to decrypt the cipher vector.
摘要翻译: 一种用于减小公共参数的大小和主秘密密钥的密码处理系统和方法,并且缩短了提供给用户的秘密密钥的生成处理所需的时间和加密处理。 生成装置使用稀疏矩阵生成形成公共参数的基础B和基础B *,其中每行和每列具有除了0以外的至少一个值。加密装置在基础上生成向量 B,作为加密向量嵌入预定信息的向量。 解密装置通过将基于B *的预定向量作为关键向量来进行密码向量和密钥向量的配对操作,对密码矢量进行解密。
-
7.发明授权Signature processing system, key generation device, signature device, verification device, signature processing method, and signature processing program 有权签名处理系统,密钥生成装置,签名装置,验证装置,签名处理方法和签名处理程序公开(公告)号:US09106408B2
公开(公告)日:2015-08-11
申请号:US13981679
申请日:2011-12-08
CPC分类号: H04L9/0816 , H04L9/3073 , H04L9/3255
摘要: The object is to provide an attribute-based signature scheme which is flexible in the design and which supports a non-monotone predicate. An access structure is constituted by applying the inner-product of the attribute vectors to a non-monotone span program. This access structure is flexible in the design of the span program and in the design of the attribute vectors, providing high flexibility in the design of access control. By incorporating the concept of secret distribution in the access structure, the attribute-based signature scheme which supports the non-monotone predicate is realized.
摘要翻译: 目的是提供一种基于属性的签名方案,其在设计中是灵活的并且支持非单调谓词。 通过将属性向量的内积应用于非单调范围程序来构成访问结构。 这种访问结构在跨度程序的设计和属性向量的设计中是灵活的,在访问控制的设计中提供了高度的灵活性。 通过在访问结构中并入秘密分布的概念,实现了支持非单调谓词的基于属性的签名方案。
-
公开(公告)号:US08958552B2
公开(公告)日:2015-02-17
申请号:US13504506
申请日:2009-10-29
申请人: Mitsuhiro Hattori , Yoichi Shibata , Takashi Ito , Nori Matsuda , Katsuyuki Takashima , Takeshi Yoneda
发明人: Mitsuhiro Hattori , Yoichi Shibata , Takashi Ito , Nori Matsuda , Katsuyuki Takashima , Takeshi Yoneda
CPC分类号: H04L9/3073 , H04L9/008 , H04L9/3231
摘要: A certification device 101 encrypts a feature vector for registration by using a random number and a public key which is set to correspond to a secret key in a decryption device 103. The encrypted feature vector for registration is registered in an authentication device 102. In authentication, the certification device encrypts a feature vector for authentication by using the public key and a random number. With the two encrypted feature vectors being kept encrypted, the authentication device generates encrypted similarity degree information from which the decryption device can derive the similarity degree between the two feature vectors by a decryption process using the secret key. The decryption device 103 decrypts the encrypted similarity degree information to derive the similarity degree of the plaintext. The authentication device 102, if the similarity degree is equal to or larger than a threshold, determines that the user is the correct user. The similarity degree can be derived without using the feature vector of the plaintext. Thus, secure identity authentication with a lower possibility of plaintext theft can be realized.
摘要翻译: 认证装置101通过使用设置为对应于解密装置103中的秘密密钥的随机数和公开密钥对用于注册的特征向量进行加密。用于注册的加密特征向量被登记在认证装置102中。在认证 ,认证装置通过使用公钥和随机数加密特征向量进行认证。 在两个加密特征向量保持加密的情况下,认证装置生成加密的相似度信息,解密装置可以通过使用秘密密钥的解密处理从两个特征向量之间导出相似度。 解密装置103对加密的相似度信息进行解密,得到明文的相似度。 认证装置102如果相似度等于或大于阈值,则确定用户是正确的用户。 可以在不使用明文的特征向量的情况下导出相似度。 因此,可以实现具有较低的明文盗窃可能性的安全身份认证。
-
9.发明授权Cryptographic processing system, key generation device, encryption device, decryption device, cryptographic processing method, and cryptographic processing program 有权加密处理系统,密钥生成装置,加密装置,解密装置,密码处理方法以及存储密码处理程序的非暂时性计算机可读介质公开(公告)号:US08938623B2
公开(公告)日:2015-01-20
申请号:US13823507
申请日:2011-12-06
CPC分类号: H04L9/08 , G09C1/00 , H04L9/007 , H04L9/008 , H04L9/3073
摘要: The object is to provide a secure functional encryption scheme having many cryptographic functions. An access structure is constituted by applying the inner-product of attribute vectors to a span program. The access structure has a degree of freedom in design of the span program and design of the attribute vectors, thus having a large degree of freedom in design of access control. A functional encryption process is implemented by imparting the access structure to each of a ciphertext and a decryption key.
摘要翻译: 目的是提供一种具有许多加密功能的安全功能加密方案。 通过将属性向量的内积应用到跨度程序来构成访问结构。 访问结构具有跨度程序的设计自由度和属性向量的设计,从而在访问控制的设计中具有较大的自由度。 通过将访问结构赋予密文和解密密钥中的每一个来实现功能性加密处理。
-
10.发明申请CRYPTOGRAPHIC PROCESSING SYSTEM, CRYPTOGRAPHIC PROCESSING METHOD, CRYPTOGRAHPIC PROCESSING PROGRAM, AND KEY GENERATION DEVICE 有权图形处理系统,图形处理方法,CRYPTOGRAHPIC处理程序和关键生成装置公开(公告)号:US20140298028A1
公开(公告)日:2014-10-02
申请号:US14355699
申请日:2012-11-12
IPC分类号: H04L9/30
CPC分类号: H04L9/3073 , H04L9/0822 , H04L2209/601
摘要: A cryptographic processing system and method to decrease the sizes of public parameters and a master secret key, and shorten the time taken for the generation process of the secret key to be supplied to the user and the encryption process. A generation device generates a basis B and a basis B* that form public parameters and a master secret key using a sparse matrix in which each row and each column have at least one value other than 0. An encryption device generates a vector in the basis B, the vector being embedded with predetermined information, as a cipher vector. A decryption device, by treating a predetermined vector in the basis B* as a key vector, conducts a pairing operation for the cipher vector and the key vector, to decrypt the cipher vector.
摘要翻译: 一种用于减小公共参数的大小和主秘密密钥的密码处理系统和方法,并且缩短了提供给用户的秘密密钥的生成处理所需的时间和加密处理。 生成装置使用稀疏矩阵生成形成公共参数的基础B和基础B *,其中每行和每列具有除了0以外的至少一个值。加密装置在基础上生成向量 B,作为加密向量嵌入预定信息的向量。 解密装置通过将基于B *的预定向量作为关键向量来进行密码向量和密钥向量的配对操作,对密码矢量进行解密。
-
-
-
-
-
-
-
-
-
搜索结果
35 条记录 (耗时 0.051 秒)
