-
1.发明申请公开(公告)号:US20060056619A1
公开(公告)日:2006-03-16
申请号:US10523840
申请日:2003-08-05
申请人: Olivier Billet , Marc Joye
发明人: Olivier Billet , Marc Joye
CPC分类号: G06F7/725 , H04L9/003 , H04L9/3066
摘要: A method for universal calculation on the points of an elliptic curve defined by a quartic equation uses identical programmed calculating devices for operating an addition of points, a doubling of points and an addition of a neutral point. The calculating device is a central unit associated with a memory. The invention also concerns a cryptographic method using such a universal method. The invention further concerns a component for implementing the universal calculation method and/or the cryptographic method. For example, the invention is applicable to smart cards.
摘要翻译: 用四次方程定义的椭圆曲线的点进行通用计算的方法使用相同的编程计算装置来操作点的加法,点的加倍和中性点的加法。 计算装置是与存储器相关联的中央单元。 本发明还涉及使用这种通用方法的密码方法。 本发明还涉及用于实现通用计算方法和/或密码方法的组件。 例如,本发明适用于智能卡。
-
2.发明授权Method for performing a cryptographic task in an electronic hardware component 有权用于在电子硬件组件中执行密码任务的方法公开(公告)号:US08913741B2
公开(公告)日:2014-12-16
申请号:US13262349
申请日:2010-03-26
CPC分类号: H04L9/304 , G06F2211/007 , H04L9/002 , H04L9/3093 , H04L2209/16
摘要: A method and apparatus are provided to perform a cryptographic task on at least one numerical datum in an electronic hardware component. The method includes a step of at least partial use of an encryption function. This encryption function includes a basic encryption function obtained by the addition between an intermediate function arising from composition of a coding function with a first function, and a second function. This method can be applied to the encryption of a datum or to the decryption of a datum. Also, a method is provided for generating a public key and a device able to implement one of these methods.
摘要翻译: 提供了一种方法和装置,用于在电子硬件部件中的至少一个数字数据上执行密码任务。 该方法包括至少部分地使用加密功能的步骤。 该加密功能包括通过在由具有第一功能的编码功能的组合产生的中间功能与第二功能之间相加而获得的基本加密功能。 该方法可以应用于数据的加密或数据的解密。 此外,提供了一种用于生成公共密钥的方法和能够实现这些方法之一的设备。
-
公开(公告)号:US20100199090A1
公开(公告)日:2010-08-05
申请号:US12680188
申请日:2008-09-24
申请人: Côme Berbain , Olivier Billet , Henri Gilbert
发明人: Côme Berbain , Olivier Billet , Henri Gilbert
CPC分类号: H04L9/3271 , H04L9/0662 , H04L2209/805
摘要: The invention relates to a secure communication between an electronic label (A) and a reader (B), in particular for the authentication of the label by the reader, in which: the reader (31) transmits at least one datum (Ch) to the label, the label calculates a combination comprising at least the datum from the reader (Ch)) and a secret (Si) specific to the label, and the label communicates (32) the result (C(Si, Ch)) of the combination to the reader (B) for verification purposes. The aforementioned combination (C(Si, Ch)) is preferably calculated using a current secret value (Si) delivered by a pseudo-random number generator (33). The reader (B) is also provided with a homologous pseudo-random generator.
摘要翻译: 本发明涉及电子标签(A)和读取器(B)之间的安全通信,特别是用于读取器对标签的认证,其中:读取器(31)将至少一个数据(Ch)发送到 该标签计算至少包含来自读取器(Ch)的数据的组合)和该标签特有的秘密(Si),并且该标签将结果(C(Si,Ch))通信(32) 组合到读者(B)进行验证。 上述组合(C(Si,Ch))优选使用由伪随机数发生器(33)传送的当前秘密值(Si)来计算。 阅读器(B)还具有同源伪随机发生器。
-
公开(公告)号:US08150030B2
公开(公告)日:2012-04-03
申请号:US12280652
申请日:2007-02-22
申请人: Olivier Billet , Henri Gilbert , Matt Robshaw
发明人: Olivier Billet , Henri Gilbert , Matt Robshaw
IPC分类号: G06F21/00
CPC分类号: H04L9/0643 , H04L2209/12 , H04L2209/30 , H04L2209/38
摘要: A device and a method of cryptographically hashing a message M, including the following steps: forming a sequence (M1, . . . , Mi, . . . , Mc) of data m-tuples M1=(a1,1, . . . , a1,m), . . . Mi=(ai,1, . . . , ai,m), . . . , Mc=ac,1, . . . , ac,m), where m is a strictly positive integer, from said message M; iteratively calculating successive output p-tuples V1, . . . , Vi, . . . , Vc, where p is a strictly positive integer, corresponding to said sequence (M1, . . . , Mi, . . . , Mc) of data m-tuples as a function of at least one set of multivariate polynomials defined over a finite field; and determining a hashing value of said message M as a function of the last output p-tuple Vc.
摘要翻译: 一种密码散列消息M的设备和方法,包括以下步骤:形成数据m元组M1 =(a1,1,...)的序列(M1,...,Mi,...,Mc) ,a1,m),。 。 。 Mi =(ai,1,...,ai,m), 。 。 ,Mc = ac,1,。 。 。 ,ac,m),其中m是严格正整数,来自所述消息M; 迭代地计算连续的输出p元组V1。 。 。 ,Vi,。 。 。 ,Vc,其中p是严格正整数,对应于数据m元组的所述序列(M1,...,Mi,...,Mc)作为至少一组多元多项式的函数,其定义在有限的 领域; 以及确定所述消息M的散列值作为最后输出p元组Vc的函数。
-
公开(公告)号:US20100183147A1
公开(公告)日:2010-07-22
申请号:US12667712
申请日:2008-06-30
申请人: Olivier Billet , Yannick Seurin , Jacques Patarin
发明人: Olivier Billet , Yannick Seurin , Jacques Patarin
CPC分类号: H04L9/3093
摘要: The invention proposes a method and a device for decrypting an encrypted message represented by a sequence C or applying an electronic signature to a sequence C, said sequence C consisting of data belonging to a finite field K=GF(q), where q>1, in which there are processed successive blocks each comprising (n·d) successive data items from the sequence C, where n and d are predetermined integers greater than 1, the processing of such a block including the following steps: applying a predetermined affine invertible transformation t−1 to said block; interpreting the resulting block as being formed of n successive elements (y1,y2, . . . ,yn) of an extension E=GF(qd) of the field K; calculating an n-tuplet (x1,x2, . . . , xn) of elements of the field E by solving a system f of n predetermined polynomials of the form y k = ∑ 1 ≤ i ≤ j ≤ n a k ( ij ) x i q α i x j q β j ∑ 1 ≤ i ≤ n b k i x i q γ i + c k ( 1 ≤ k ≤ n ) in which the coefficients ak(ij), bk(i), and ck belong to E and the exponents αi, βj, and γi are positive or zero integers; interpreting said n-tuplet (x1,x2, . . . , xn)as being a new block formed of (n·d) successive elements from the field K; and applying a predetermined affine invertible transformation s−1 to said new block.
摘要翻译: 本发明提出了一种用于解密由序列C表示的加密消息或对序列C应用电子签名的方法和装置,所述序列C由属于有限域K = GF(q)的数据组成,其中q> 1 其中存在处理的连续块,每个块包括来自序列C的(n·d)个连续数据项,其中n和d是大于1的预定整数,这种块的处理包括以下步骤:应用预定仿射可逆 将t-1转换为所述块; 将所得到的块解释为由场K的扩展E = GF(qd)的n个连续元素(y1,y2,...,yn)形成; 通过求解以下形式的n个预定多项式的系统f来计算场E的元组(x1,x2,...,xn):yk =Σ1≤i≤j≤n(aj(ij) xiqαixjq&bgr 其中系数ak(ij),bk(i)和ck属于E并且指数αi(1≤k≤n),其中, ,&bgr; j,γi为正或零整数; 将所述n元组(x1,x2,...,xn)解释为由来自场K的(n·d)个连续元素形成的新块; 以及将预定的仿射可逆变换s-1应用于所述新块。
-
公开(公告)号:US08416951B2
公开(公告)日:2013-04-09
申请号:US12296687
申请日:2007-04-02
申请人: Olivier Billet , Henri Gilbert , Côme Berbain
发明人: Olivier Billet , Henri Gilbert , Côme Berbain
IPC分类号: H04L9/00
CPC分类号: G06F7/584 , G06F2207/582
摘要: The invention relates to a method of generating a pseudorandom string of terms belonging to a finite body K of cardinal q≧2 intended to be used in a cryptography procedure, said method comprising the iterative calculation of a system (Γ) of m polynomials with n variables belonging to the finite body K. According to the invention, the coefficients of these m polynomials are regenerated at each iteration. The invention also relates to pseudorandom string generator intended to implement this method.
摘要翻译: 本发明涉及一种产生属于要在密码学过程中使用的基数为q≥2的有限体K的术语的伪随机串的方法,所述方法包括对m个多项式的系统(&Ggr)的迭代计算, n个变量属于有限体K.根据本发明,这些m个多项式的系数在每个迭代中被再生。 本发明还涉及旨在实现该方法的伪随机串生成器。
-
公开(公告)号:US08331556B2
公开(公告)日:2012-12-11
申请号:US12667712
申请日:2008-06-30
申请人: Olivier Billet , Yannick Seurin , Jacques Patarin
发明人: Olivier Billet , Yannick Seurin , Jacques Patarin
CPC分类号: H04L9/3093
摘要: The invention proposes a method and a device for decrypting an encrypted message represented by a sequence C or applying an electronic signature to a sequence C, said sequence C consisting of data belonging to a finite field K=GF(q), where q>1, in which there are processed successive blocks each comprising (n·d) successive data items from the sequence C, where n and d are predetermined integers greater than 1, the processing of such a block including the following steps: applying a predetermined affine invertible transformation t−1 to said block; interpreting the resulting block as being formed of n successive elements (y1, y2, . . . , yn) of an extension E=GF(qd) of the field K; calculating an n-tuplet (x1, x2, . . . , xn) of elements of the field E by solving a system f of n predetermined polynomials of the form y k = ∑ 1 ≤ i ≤ j ≤ n a k ( ij ) x i q α i x j q β j + ∑ 1 ≤ i ≤ n b k i x i q γ i + c k ( 1 ≤ k ≤ n ) in which the coefficients ak(ij), bk(i), and ck belong to E and the exponents αi, βj, and γi are positive or zero integers; interpreting said n-tuplet (x1, x2, . . . , xn)as being a new block formed of (n·d) successive elements from the field K; and applying a predetermined affine invertible transformation s−1 to said new block.
摘要翻译: 本发明提出了一种用于解密由序列C表示的加密消息或对序列C应用电子签名的方法和装置,所述序列C由属于有限域K = GF(q)的数据组成,其中q> 1 其中存在处理的连续块,每个块包括来自序列C的(n·d)个连续数据项,其中n和d是大于1的预定整数,这种块的处理包括以下步骤:应用预定仿射可逆 将t-1转换为所述块; 将所得到的块解释为由场K的扩展E = GF(qd)的n个连续元素(y1,y2,...,yn)形成; 通过求解以下形式的n个预定多项式的系统f来计算场E的元素的n元组(x1,x2,...,xn):yk =Σ1≤i≤j≤num ak(ij) xiqαi xjq&bgr; 其中系数ak(ij),bk(i)和ck属于E,并且指数为1,j +Σ1≤i≤n笨bki xiqγ卜i i + ck(1≤k≤n) αi,&bgr; j和γi是正整数或零整数; 将所述n元组(x1,x2,...,xn)解释为由来自场K的(n·d)个连续元素形成的新块; 以及将预定的仿射可逆变换s-1应用于所述新块。
-
公开(公告)号:US20120300922A1
公开(公告)日:2012-11-29
申请号:US13519378
申请日:2010-12-28
申请人: Olivier Billet , Gilles Macario-Rat
发明人: Olivier Billet , Gilles Macario-Rat
IPC分类号: G06F21/24
CPC分类号: H04L9/0618 , H04L9/00 , H04L9/002 , H04L9/06 , H04L9/08 , H04L63/0428 , H04L2209/125 , H04L2209/16
摘要: A method is provided for generating a correspondence table suitable for use in a cryptographic processing method and comprising storing a plurality of input data and of output data in the table, each input datum being associated with at least one output datum in the table. For each input datum, at least one of the output data is obtained by applying a coding function to a first subsidiary datum and to an encrypted intermediate datum depending on the input datum. Also provided are a corresponding encryption method, a storage unit suitable for storing the correspondence table generated by the above generation method, a device for physically implementing such a correspondence table, a decryption device including such a storage unit, and a computer program product suitable for implementing the above generation method.
摘要翻译: 提供了一种用于生成适用于密码处理方法的对应表的方法,包括将多个输入数据和输出数据存储在表中,每个输入数据与表中的至少一个输出数据相关联。 对于每个输入数据,根据输入的数据,通过将编码功能应用于第一辅助数据和加密的中间数据来获得至少一个输出数据。 还提供了相应的加密方法,适用于存储通过上述生成方法生成的对应表的存储单元,用于物理实现这种对应表的装置,包括这种存储单元的解密装置,以及适用于 实施上述方法。
-
9.发明申请公开(公告)号:US20120020476A1
公开(公告)日:2012-01-26
申请号:US13262349
申请日:2010-03-26
IPC分类号: H04L9/28
CPC分类号: H04L9/304 , G06F2211/007 , H04L9/002 , H04L9/3093 , H04L2209/16
摘要: A method and apparatus are provided to perform a cryptographic task on at least one numerical datum in an electronic hardware component. The method includes a step of at least partial use of an encryption function. This encryption function includes a basic encryption function obtained by the addition between an intermediate function arising from composition of a coding function with a first function, and a second function. This method can be applied to the encryption of a datum or to the decryption of a datum. Also, a method is provided for generating a public key and a device able to implement one of these methods.
摘要翻译: 提供了一种方法和装置,用于在电子硬件部件中的至少一个数字数据上执行密码任务。 该方法包括至少部分使用加密功能的步骤。 该加密功能包括通过在由具有第一功能的编码功能的组合产生的中间功能与第二功能之间相加而获得的基本加密功能。 该方法可以应用于数据的加密或数据的解密。 此外,提供了一种用于生成公共密钥的方法和能够实现这些方法之一的设备。
-
公开(公告)号:US20110116630A1
公开(公告)日:2011-05-19
申请号:US13000305
申请日:2009-06-23
申请人: Olivier Billet , Ryad Benadjila
发明人: Olivier Billet , Ryad Benadjila
IPC分类号: H04L9/20
CPC分类号: H04L9/0836 , H04L2209/606
摘要: A method and system for a user to obtain a derived value Kr of m bits, in which, given two pseudo-random functions g0 and g1 from m bits to m bits, said user obtains, on the basis of an input parameter consisting of a word r of n bits, a derived value Kr=grn∘ . . . gr2∘gr1 (S), where, for i=1, . . . , n, gri=g0 if ri=0, and gri=g1 if ri=1, and where S is a master value of m bits which is not disclosed to said user. This method comprises the following steps: a search is conducted, from among a set of words of m bits Uj, where j=1, . . . , p, recorded in a table TU and equal to Uj=gvl(j)(j)∘ . . . gv2(j)∘gv1(j) (S), where, for i=1, . . . , l(j), the indices vi(j) are predetermined bits, for a word Uσ equal to Uσ=grl(σ)∘ . . . gr2∘gr1 (S); said derived value Kr is thereafter obtained by calculating Kr=grn∘ . . . gr1(σ)+1 (Uσ).Application to the encryption/decryption of pay-per-use digital contents, and to authentication.
摘要翻译: 一种用于获得m比特的导出值Kr的方法和系统,其中给定从m比特到m比特的两个伪随机函数g0和g1,所述用户基于由 n位的字r,派生值Kr = grn o。 。 。 gr2 ogr1(S),其中,对于i = 1, 。 。 如果ri = 0,则n,gri = g0,如果ri = 1,则gri = g1,其中S是未向所述用户公开的m位的主值。 该方法包括以下步骤:从m位Uj的一组单词中进行搜索,其中j = 1,...。 。 。 ,p,记录在表TU中并且等于Uj = gvl(j)(j)o。 。 。 gv2(j)∘gv1(j)(S),其中,对于i = 1, 。 。 ,l(j),索引vi(j)是字U&sgr的预定位; 等于U&sgr; = grl(&sgr;)o。 。 。 gr2 ogr1(S); 然后通过计算Kr = grn0获得所述导出值Kr。 。 。 gr1(&sgr;)+ 1(U&sgr;)。 应用于按使用付费数字内容的加密/解密,以及认证。
-
-
-
-
-
-
-
-
-
搜索结果
15 条记录 (耗时 0.019 秒)
