公开(公告)号：US20120017089A1

公开(公告)日：2012-01-19

申请号：US13245054

申请日：2011-09-26

申请人： PAUL C. KOCHER

发明人： PAUL C. KOCHER

IPC分类号： H04L9/32

CPC分类号： G07F7/1008 ,  G06F2207/7219 ,  G06Q20/341 ,  G06Q20/40975 ,  H04L9/003 ,  H04L9/0625 ,  H04L9/0891

摘要： Methods and apparatuses for increasing the leak-resistance of cryptographic systems are disclosed. A cryptographic token maintains secret key data based on a top-level key. The token can produce updated secret key data using an update process that makes partial information that might have previously leaked to attackers about the secret key data no longer usefully describe the new updated secret key data. By repeatedly applying the update process, information leaking during cryptographic operations that is collected by attackers rapidly becomes obsolete. Thus, such a system can remain secure against attacks involving analysis of measurements of the device's power consumption, electromagnetic characteristics, or other information leaked during transactions. Transactions with a server can be secured with the token.

摘要翻译： 公开了增加密码系统的防漏性的方法和装置。 加密令牌基于顶级密钥来维护密钥数据。 令牌可以使用更新过程产生更新的秘密密钥数据，该更新过程使先前泄漏给攻击者的部分信息对于秘密密钥数据不再有用地描述新的更新的秘密密钥数据。 通过重复应用更新过程，攻击者收集的密码操作过程中信息泄露迅速变得过时。 因此，这种系统可以保持安全性，防止涉及分析设备的功耗，电磁特性或事务中泄露的其他信息的测量的攻击。 可以使用令牌来保护与服务器的事务。