-
1.发明授权公开(公告)号:US07190787B1
公开(公告)日:2007-03-13
申请号:US09452329
申请日:1999-11-30
申请人: Gary L. Graunke , Carl M. Ellison
发明人: Gary L. Graunke , Carl M. Ellison
CPC分类号: H04L9/0662 , H04L2209/20
摘要: A stream cipher is provided with a first and a second data bit generators to generate in parallel a first and a second stream of data bits. The stream cipher is further provided with a combiner function having a shuffling unit including a storage structure to generate a pseudo random sequence, by combining the first stream of data bits with at least stochastically generated past values of the first streams of data bits, generated by using the second stream of data bits to stochastically operate the storage structure of the shuffle unit to memorize and reproduce the data bits of the first stream.
摘要翻译: 流密码器具有第一和第二数据位发生器,用于并行生成第一和第二数据位流。 流密码还被提供有组合器功能,其具有包括存储结构的混洗单元以产生伪随机序列,通过将第一数据位流与至少随机生成的第一数据位流的过去值组合,由 使用第二数据比特流来随机地操作混洗单元的存储结构来存储和再现第一流的数据位。
-
公开(公告)号:US07305711B2
公开(公告)日:2007-12-04
申请号:US10316595
申请日:2002-12-10
CPC分类号: G11B20/0021 , G11B20/00086 , G11B20/00188 , G11B20/00224 , G11B20/00253 , G11B20/00362 , G11B20/00492 , G11B20/00528 , H04L9/0825 , H04L9/0897 , H04L2209/60
摘要: Protected content distribution is accomplished by a first entity generating a set of asymmetric key pairs, creating a plurality of sets of private keys by selecting a combination of private keys from the set of asymmetric key pairs for each created set, and distributing the sets of private keys to playback devices. A second entity produces protected content including encrypted content and a public key media key block, encrypts a symmetric content key with each public key in the set of asymmetric key pairs to form the public key media key block and encrypts a content title with the symmetric content key to form the encrypted content. A playback device stores one set of private keys, receives the protected content, and decrypts and plays the content title stored in the protected content when a selected one of the set of private keys stored by the playback device successfully decrypts the encrypted symmetric content key stored in the public key media key block of the received protected content.
摘要翻译: 受保护的内容分发由生成一组非对称密钥对的第一实体完成,通过从每个创建的集合的非对称密钥对集合中选择私钥的组合来创建多组私钥,并且分发私有密钥集合 播放设备的键。 第二实体产生包括加密内容和公共密钥媒体密钥块的受保护内容,使用非对称密钥对集合中的每个公开密钥对对称内容密钥进行加密,以形成公共密钥媒体密钥块,并加密具有对称内容的内容标题 密钥来形成加密的内容。 回放设备存储一组专用密钥,接收受保护的内容,并且当由重放设备存储的一组专用密钥中的所选择的一个成功地解密存储的加密的对称内容密钥时,解密并播放存储在受保护内容中的内容标题 在接收到的受保护内容的公钥媒体密钥块中。
-
公开(公告)号:US07845015B2
公开(公告)日:2010-11-30
申请号:US11923635
申请日:2007-10-24
CPC分类号: G11B20/0021 , G11B20/00086 , G11B20/00188 , G11B20/00224 , G11B20/00253 , G11B20/00362 , G11B20/00492 , G11B20/00528 , H04L9/0825 , H04L9/0897 , H04L2209/60
摘要: Protected content distribution is accomplished by a first entity generating a set of asymmetric key pairs, creating a plurality of sets of private keys by selecting a combination of private keys from the set of asymmetric key pairs for each created set, and distributing the sets of private keys to playback devices. A second entity produces protected content including encrypted content and a public key media key block, encrypts a symmetric content key with each public key in the set of asymmetric key pairs to form the public key media key block and encrypts a content title with the symmetric content key to form the encrypted content. A playback device stores one set of private keys, receives the protected content, and decrypts and plays the content title stored in the protected content when a selected one of the set of private keys stored by the playback device successfully decrypts the encrypted symmetric content key stored in the public key media key block of the received protected content.
摘要翻译: 受保护的内容分发由生成一组非对称密钥对的第一实体完成,通过从每个创建的集合的非对称密钥对集合中选择私钥的组合来创建多组私钥,并且分发私有密钥集合 播放设备的键。 第二实体产生包括加密内容和公共密钥媒体密钥块的受保护内容,使用非对称密钥对集合中的每个公开密钥对对称内容密钥进行加密,以形成公共密钥媒体密钥块,并加密具有对称内容的内容标题 密钥来形成加密的内容。 回放设备存储一组专用密钥,接收受保护的内容,并且当由重放设备存储的一组专用密钥中的所选择的一个成功地解密存储的加密的对称内容密钥时,解密并播放存储在受保护内容中的内容标题 在接收到的受保护内容的公钥媒体密钥块中。
-
4.发明授权Apparatus and method for distributing private keys to an entity with minimal secret, unique information 有权将密钥分发给具有最小秘密,唯一信息的实体的装置和方法公开(公告)号:US08639915B2
公开(公告)日:2014-01-28
申请号:US12750128
申请日:2010-03-30
申请人: Gary L. Graunke
发明人: Gary L. Graunke
IPC分类号: G06F15/177
CPC分类号: H04L9/0891 , H04L9/0827 , H04L9/0877 , H04L9/3278 , H04L2209/60
摘要: In some embodiments, a method and apparatus for distributing private keys to an entity with minimal secret, unique information are described. In one embodiment, the method includes the storage of a chip secret key within a manufactured chip. Once the chip secret key is stored or programmed within the chip, the chip is sent to a system original equipment manufacturer (OEM) in order to integrate the chip within a system or device. Subsequently, a private key is generated for the chip by a key distribution facility (KDF) according to a key request received from the system OEM. In one embodiment, the KDF is the chip manufacturer. Other embodiments are described and claimed.
摘要翻译: 在一些实施例中,描述了用于将私钥分配给具有最小秘密唯一信息的实体的方法和装置。 在一个实施例中,该方法包括在制造的芯片内存储芯片秘密密钥。 一旦将芯片秘密密钥存储或编程在芯片内,则芯片被发送到系统原始设备制造商(OEM),以将芯片集成到系统或设备内。 随后,根据从系统OEM接收的密钥请求,通过密钥分发设备(KDF)为芯片生成私钥。 在一个实施例中,KDF是芯片制造商。 描述和要求保护其他实施例。
-
公开(公告)号:US08166471B2
公开(公告)日:2012-04-24
申请号:US12507863
申请日:2009-07-23
申请人: Gary L. Graunke
发明人: Gary L. Graunke
IPC分类号: G06F9/44
CPC分类号: G06F21/125 , G06F21/14
摘要: A source-level compiler may randomly select compilation conventions to implement portable content protection, securing the secrets embedded in a program by shuffling associated data. The program may be developed using a source language that is applicative on the associated data. To obscure the embedded secrets, in one embodiment, pre-compiler software may be deployed for compiling the program in a random-execution-order based on a random seed indication that randomly selects compilation conventions and a shuffling algorithm that moves the associated data across the program during execution.
摘要翻译: 源级编译器可以随机选择编译约定来实现便携式内容保护,通过混洗相关数据来保护嵌入在程序中的秘密。 可以使用适用于相关数据的源语言来开发该程序。 为了掩盖嵌入式秘密,在一个实施例中,可以部署预编译器软件,用于基于随机选择编译约定的随机种子指示以及随机执行顺序来移动相关数据的混洗算法以随机执行顺序编译程序 程序执行。
-
公开(公告)号:US08155306B2
公开(公告)日:2012-04-10
申请号:US11008904
申请日:2004-12-09
申请人: Ernic F. Brickell , Gary L. Graunke
发明人: Ernic F. Brickell , Gary L. Graunke
IPC分类号: G06F21/00
CPC分类号: H04L9/0637 , H04L9/0668
摘要: Encrypting data in a cascaded block cipher system may be accomplished by applying a first encryption algorithm using a secret shared between first and second parties as a key to generate a secret inner key; applying a second encryption algorithm for a predetermined number of rounds using the secret inner key to generate a plurality of blocks of ciphertext data from a plurality of blocks of plaintext data; and repeating the applying the first encryption algorithm and the applying the second encryption algorithm steps.
摘要翻译: 可以通过使用第一方和第二方之间共享的秘密应用第一加密算法作为生成秘密内密钥的密钥来实现加密级联块密码系统中的数据; 使用所述秘密内键对预定次数的循环应用第二加密算法,以从多个明文数据块生成多个密文块数据; 并重复应用第一加密算法和应用第二加密算法步骤。
-
7.发明授权公开(公告)号:US07472285B2
公开(公告)日:2008-12-30
申请号:US10603680
申请日:2003-06-25
申请人: Gary L. Graunke , Carlos Rozas
发明人: Gary L. Graunke , Carlos Rozas
IPC分类号: H04L9/00
CPC分类号: G06F12/1408 , G06F12/0802 , G06F21/78 , G06F21/85 , H04L9/0637 , H04L2209/12
摘要: A method and apparatus for memory encryption with reduced decryption latency. In one embodiment, the method includes reading an encrypted data block from memory. During reading of the encrypted data block, a keystream used to encrypt the data block is regenerated according to one or more stored criteria of the encrypted data block. Once the encrypted data block is read, the encrypted data block is decrypted using the regenerated keystream. Accordingly, in one embodiment, encryption of either random access memory (RAM) or disk memory is performed. A keystream is regenerated during data retrieval such that once the data is received, the data may be decrypted using a single clock operation. As a result, memory encryption is performed without exacerbating memory latency between the processor and memory.
摘要翻译: 一种减少解密延迟的存储器加密方法和装置。 在一个实施例中,该方法包括从存储器读取加密的数据块。 在读取加密数据块期间,根据加密数据块的一个或多个存储标准来重新生成用于加密数据块的密钥流。 读取加密的数据块后,使用再生的密钥流对加密的数据块进行解密。 因此,在一个实施例中,执行随机存取存储器(RAM)或磁盘存储器的加密。 在数据检索期间重新生成密钥流,使得一旦接收到数据,可以使用单个时钟操作来解密数据。 结果,执行存储器加密,而不会加剧处理器和存储器之间的存储器等待时间。
-
公开(公告)号:US07369661B2
公开(公告)日:2008-05-06
申请号:US10769253
申请日:2004-01-30
申请人: Gary L. Graunke
发明人: Gary L. Graunke
IPC分类号: H04L9/00
CPC分类号: H04N21/4367 , H04L9/065 , H04L9/12 , H04L2209/60 , H04N7/163 , H04N7/1675 , H04N21/4405 , H04N21/4408
摘要: Detecting loss of stream cipher synchronization between a transmitter and a receiver in a video processing system may be achieved by receiving, by the receiver, an encrypted video frame from the transmitter, obtaining an encrypted value for a selected pixel in the encrypted video frame, decrypting the encrypted pixel value using a first portion of the receiver's current key stream, re-encrypting the pixel value using a second portion of the receiver's current key stream, sending the re-encrypted pixel value from the receiver to the transmitter, obtaining, by the transmitter, a plaintext value for the selected pixel from a corresponding original video frame and encrypting the plaintext pixel value using a second portion of the transmitter's current key stream, and comparing the re-encrypted pixel value received from the receiver with the encrypted pixel value generated by the transmitter and detecting a loss of cipher synchronization when the values do not match.
摘要翻译: 检测视频处理系统中的发射机和接收机之间的流密码同步的损失可以通过接收机从发射机接收加密的视频帧来获得加密的视频帧中的所选像素的加密值,解密 使用接收机当前密钥流的第一部分的加密像素值,使用接收机当前密钥流的第二部分重新加密像素值,将重新加密的像素值从接收器发送到发送器,通过 发送器,来自相应的原始视频帧的所选像素的明文值,并使用发送器当前密钥流的第二部分加密明文像素值,并将从接收器接收的重新加密的像素值与生成的加密像素值进行比较 并且当值不匹配时检测密码同步丢失。
-
9.发明授权Method and apparatus for simultaneous encryption and decryption of publicly distributed media 有权用于同时加密和解密公共分布式媒体的方法和装置公开(公告)号:US07298849B2
公开(公告)日:2007-11-20
申请号:US09896380
申请日:2001-06-29
申请人: Gary L. Graunke
发明人: Gary L. Graunke
CPC分类号: H04L9/0838 , H04L2209/60
摘要: The present invention provides secure communication from one encryption domain to another using a trusted module. In one embodiment, the invention includes generating a cipher stream based on a first key for encrypted streamed content, and generating a second cipher stream based on a second key to re-encrypt the streamed content. The invention further includes receiving the encrypted streamed content, simultaneously decrypting and re-encrypting the encrypted content using a combination of the first and the second cipher streams and conveying the re-encrypted content to a sink.
摘要翻译: 本发明使用可信模块提供从一个加密域到另一个加密域的安全通信。 在一个实施例中,本发明包括基于用于加密的流式内容的第一密钥生成密码流,以及基于第二密钥生成第二密码流,以重新加密流传输的内容。 本发明还包括接收加密的流式传输内容,同时使用第一和第二密码流的组合对加密的内容进行解密和重新加密,并将重新加密的内容传送给宿。
-
10.发明授权Method and apparatus for protected exchange of status and secret values between a video source application and a video hardware interface 有权用于在视频源应用和视频硬件接口之间保护交换状态和秘密值的方法和装置公开(公告)号:US06920221B1
公开(公告)日:2005-07-19
申请号:US09540190
申请日:2000-03-31
CPC分类号: H04N21/4122 , G06F21/10 , G06F21/445 , G06F2221/2103 , G06F2221/2107 , H04N7/1675 , H04N21/4367 , H04N21/4408
摘要: A video source application in a video source device requests from a video hardware interface of the video source device status with respect to a link linking the video source device to an external video sink device, and supplements the status request with a first basis value to a symmetric ciphering/deciphering process. The video source application, upon receiving from the video hardware interface the requested status and a verification key, generated using said symmetric ciphering/deciphering process and employing the first basis value, verifies the correctness of the verification key to determine whether to trust said provided status. In like manner, the video source application requests from the video hardware interface a secret the video hardware interface uses to cipher video to be transmitted by the video hardware interface to the external video sink device. The secret request is supplemented with a second basis value to the symmetric ciphering/deciphering process. The secret is returned in a cipher form, ciphered using a ciphering key generated using the second basis value. The video source application deciphers the secret using its own independently generated copy of the ciphering key.
摘要翻译: 视频源设备中的视频源应用相对于将视频源设备链接到外部视频接收设备的链接,从视频源设备的视频硬件接口请求状态,并将第一基础值的状态请求补充到 对称加密/解密过程。 视频源应用程序在从视频硬件接口接收到使用所述对称加密/解密处理并采用第一基值产生的请求状态和验证密钥时,验证验证密钥的正确性以确定是否信任所提供的状态 。 以类似的方式,视频源应用程序从视频硬件接口请求视频硬件接口用于将视频硬件接口传输的视频加密到外部视频接收器设备的秘密。 秘密请求以对称加密/解密处理的第二基础值补充。 秘密以加密形式返回,使用使用第二基础值生成的加密密钥进行加密。 视频源应用程序使用其自己独立生成的加密密钥的副本来解密秘密。
-
-
-
-
-
-
-
-
-
搜索结果
57 条记录 (耗时 0.031 秒)
