公开(公告)号：US20090006855A1

公开(公告)日：2009-01-01

申请号：US11718806

申请日：2005-11-09

Applicant: Pim Theo Tuyls ,  Evgeny Verbitskiy ,  Berry Schoenmakers ,  Marten Erik Van Dijk

Inventor： Pim Theo Tuyls ,  Evgeny Verbitskiy ,  Berry Schoenmakers ,  Marten Erik Van Dijk

IPC: H04L9/32

CPC classification number: H04L9/3231 ,  H04L9/008 ,  H04L9/3218 ,  H04L2209/46 ,  H04L2209/805

Abstract: The present invention relates to a method and a system of securely computing a measure of similarity for at least two sets of data. A basic idea of the present invention is to securely compare two sets of encrypted data to determine whether the two sets of data resemble each other to a sufficient extent. If the measure of similarity complies with predetermined criteria, the two sets of data from which the encrypted sets of data originate are considered to be identical.

Abstract translation: 本发明涉及一种安全地计算至少两组数据的相似性度量的方法和系统。 本发明的基本思想是安全地比较两组加密数据，以确定这两组数据是否足够相似。 如果相似性度量符合预定标准，则认为加密的数据集来源的两组数据是相同的。

公开(公告)号：US09077509B2

公开(公告)日：2015-07-07

申请号：US12096802

申请日：2006-12-07

Applicant: Pim Theo Tuyls ,  Berry Schoenmakers

Inventor： Pim Theo Tuyls ,  Berry Schoenmakers

IPC: H04K1/00 ,  H04L9/00 ,  H04L9/32

CPC classification number: H04L9/0869 ,  G06F7/588 ,  H04L9/008 ,  H04L9/3231 ,  H04L2209/24 ,  H04L2209/46 ,  H04L2209/805

Abstract: The present invention relates to a method of converting an encrypted data set into an encryption of individual bits representing the data set. Further, the invention relates to a system for converting an encrypted data set into an encryption of individual bits representing the data set. A basic idea of the present invention is to provide a protocol in which it is possible to divide an encryption of a data set in the form of e.g. a biometric feature, such as a number x, where xε{0, 1, . . . , n−1}, into an encryption of respective bits x0, x1, . . . , xt-1 forming the number x, where t is the number of bits of the number n−1, without leaking any information about x or its bits x0, x1, . . . , xt-1 Hence, the present invention enables splitting of the encryption [[x]] into the respective encrypted bits [[x0]], [[x1]], . . . , [[xt-1]] forming the encrypted number x=ΣI=1n xi 2i.

Abstract translation: 本发明涉及一种将加密数据集转换为表示数据集的各个比特的加密的方法。 此外，本发明涉及一种用于将加密数据集转换为表示数据集的各个比特的加密的系统。 本发明的基本思想是提供一种协议，其中可以将数据集的加密划分为例如数据集的形式。 一个生物特征，例如数字x，其中x＆egr; {0,1，...， 。 。 ，n-1}转换成相应位x0，x1，...的加密。 。 。 ，xt-1形成数字x，其中t是数字n-1的位数，而不泄漏关于x或其位x0，x1的任何信息。 。 。 ，xt-1因此，本发明能够将加密[[x]]分割成各自的加密比特[[x0]] [[x1]]。 。 。 ，[[xt-1]]形成加密数x =＆Sgr; I = 1n xi 2i。

公开(公告)号：US08281148B2

公开(公告)日：2012-10-02

申请号：US11718806

申请日：2005-11-09

Applicant: Pim Theo Tuyls ,  Evgeny Verbitskiy ,  Berry Schoenmakers ,  Marten Erik Van Dijk

Inventor： Pim Theo Tuyls ,  Evgeny Verbitskiy ,  Berry Schoenmakers ,  Marten Erik Van Dijk

IPC: H04L29/06

CPC classification number: H04L9/3231 ,  H04L9/008 ,  H04L9/3218 ,  H04L2209/46 ,  H04L2209/805

Abstract: The present invention relates to a method and a system of securely computing a measure of similarity for at least two sets of data. A basic idea of the present invention is to securely compare two sets of encrypted data to determine whether the two sets of data resemble each other to a sufficient extent. If the measure of similarity complies with predetermined criteria, the two sets of data from which the encrypted sets of data originate are considered to be identical.

Abstract translation: 本发明涉及一种安全地计算至少两组数据的相似性度量的方法和系统。 本发明的基本思想是安全地比较两组加密数据，以确定这两组数据是否足够相似。 如果相似性度量符合预定标准，则认为加密的数据集来源的两组数据是相同的。

公开(公告)号：US20080304657A1

公开(公告)日：2008-12-11

申请号：US12096802

申请日：2006-12-07

Applicant: Pim Theo Tuyls ,  Berry Schoenmakers

Inventor： Pim Theo Tuyls ,  Berry Schoenmakers

IPC: H04L9/28

CPC classification number: H04L9/0869 ,  G06F7/588 ,  H04L9/008 ,  H04L9/3231 ,  H04L2209/24 ,  H04L2209/46 ,  H04L2209/805

Abstract: The present invention relates to a method of converting an encrypted data set into an encryption of individual bits representing the data set. Further, the invention relates to a system for converting an encrypted data set into an encryption of individual bits representing the data set. A basic idea of the present invention is to provide a protocol in which it is possible to divide an encryption of a data set in the form of e.g. a biometric feature, such as a number x, where xε{0, 1, . . . , n−1}, into an encryption of respective bits x0, x1, . . . , xt−1 forming the number x, where t is the number of bits of the number n−1, without leaking any information about x or its bits x0, x1, . . . , xt−1 Hence, the present invention enables splitting of the encryption [[x]] into the respective encrypted bits [[x0]], [[x1]], . . . , [[xt−1]] forming the encrypted number x=ΣI=1n xi 2i.

Abstract translation: 本发明涉及一种将加密数据集转换为表示数据集的各个比特的加密的方法。 此外，本发明涉及一种用于将加密数据集转换为表示数据集的各个比特的加密的系统。 本发明的基本思想是提供一种协议，其中可以将数据集的加密划分为例如数据集的形式。 生物特征，例如数字x，其中xepsilon {0,1，...， 。 。 ，n-1}转换成相应位x0，x1，...的加密。 。 。 ，xt-1形成数字x，其中t是数字n-1的位数，而不泄漏关于x或其位x0，x1的任何信息。 。 。 ，xt-1因此，本发明能够将加密[[x]]分割成各自的加密比特[[x0]] [[x1]]。 。 。 ，[[xt-1]]形成加密数x = SigmaI = 1n xi 2i。

公开(公告)号：US08848477B2

公开(公告)日：2014-09-30

申请号：US13877656

申请日：2011-09-28

Applicant: Geert Jan Schrijen ,  Petrus Wijnandus Simons ,  Erik Van Der Sluis ,  Pim Theo Tuyls

Inventor： Geert Jan Schrijen ,  Petrus Wijnandus Simons ,  Erik Van Der Sluis ,  Pim Theo Tuyls

IPC: G11C5/14

CPC classification number: G11C5/148 ,  G06F7/588 ,  G11C5/14 ,  G11C7/20 ,  G11C7/24 ,  H04L9/0866 ,  H04L9/3278

Abstract: An electric physical unclonable function (PUF) (100) is provided comprising a semiconductor memory element (110) connectable to a PUF control means for reading content from the memory element and for deriving at least in part from said content a digital identifier, such as a secret key. Upon powering the memory element it settles into one of at least two different stable states. The particular stable state into which the memory element settles is dependent at least in part upon random physical characteristics of the memory element introduced during manufacture of the memory element. Settling of the memory element is further dependent upon a control input (112) of the memory element. The electric physical unclonable function comprises shielding means (142, 144) for shielding, during a time period including the power-up of the memory element and lasting at least until the settling of the memory element, the control input from receiving control signals upon which the particular stable state into which the memory element settles is dependent. In this way, the dependency of the memory element on its physical characteristics is improved, and dependency on possibly irreproducible control signals is reduced.

Abstract translation: 提供电物理不可克隆功能（PUF）（100），其包括可连接到PUF控制装置的半导体存储元件（110），用于从存储元件读取内容，并且至少部分地从所述内容导出数字标识符，诸如 秘密钥匙 在为存储器元件供电时，它稳定在至少两个不同的稳定状态之一中。 存储元件稳定的特定稳定状态至少部分地取决于在存储元件的制造期间引入的存储元件的随机物理特性。 存储器元件的稳定还取决于存储元件的控制输入（112）。 电物理不可克隆功能包括屏蔽装置（142,144），用于在包括存储元件的上电的持续时间期间屏蔽屏蔽装置，并持续至少直到存储元件的稳定，控制输入从其上接收控制信号 存储元件稳定的特定稳定状态是依赖的。 以这种方式，存储元件对其物理特性的依赖性得到改善，并且减少了可能不可再生的控制信号的依赖性。

公开(公告)号：US08694856B2

公开(公告)日：2014-04-08

申请号：US13390255

申请日：2010-08-06

Applicant: Pim Theo Tuyls ,  Geert Jan Schrijen

Inventor： Pim Theo Tuyls ,  Geert Jan Schrijen

IPC: G11C29/00

CPC classification number: G06F21/73 ,  H04L9/002 ,  H04L9/0866 ,  H04L2209/805

Abstract: Systems for generating an identifying response pattern comprising a memory (120) used as a physically unclonable function configured for generating a response pattern dependent on physical, at least partially random characteristics of said memory may be vulnerable to freezing attacks and to aging. A memory-overwriting device (110) configured for overwriting at least a first portion of the plurality of memory locations to obscure the response pattern in the memory avoids freezing attacks. An anti-degradation device (160) configured to write to each respective location of a second portion of the plurality of memory locations an inverse of a response previously read from the memory reduces the effects of aging.

Abstract translation: 用于生成识别响应模式的系统包括用作被配置用于生成依赖于所述存储器的物理，至少部分随机特性的响应模式的物理不可克隆功能的存储器（120），其易于受到冻结攻击和老化。 被配置为重写多个存储器位置的至少第一部分以遮蔽存储器中的响应模式的存储器重写设备（110）避免了冻结攻击。 一种抗劣化装置（160），被配置为写入多个存储器位置的第二部分的每个相应位置，先前从存储器读取的响应的反相减少了老化的影响。

公开(公告)号：US08433983B2

公开(公告)日：2013-04-30

申请号：US12067988

申请日：2006-09-11

Applicant: Pim Theo Tuyls ,  Antonius Hermanus Maria Akkermans ,  Jasper Goseling

Inventor： Pim Theo Tuyls ,  Antonius Hermanus Maria Akkermans ,  Jasper Goseling

IPC: G06F11/00

CPC classification number: H04L9/3231 ,  H04L2209/08 ,  H04L2209/34

Abstract: This invention relates to methods and devices for verifying the identity of a person based on a sequence of feature components extracted from a biometric sample. Thereafter, the feature components are quantized and assigned a data bit sequence in such a way that adjacent quantization intervals have a Hamming distance of 1. The data bit sequences are concatenated into a bit string, and said bit string is combined with a helper data set by using an exclusive disjunction (XOR) operation into a codeword. Finally, the codeword is decoded into a secret V and a secret S is matched with the secret V.

Abstract translation: 本发明涉及用于基于从生物特征样本提取的特征成分序列来验证个人身份的方法和装置。 此后，对特征分量进行量化并分配数据比特序列，使得相邻量化间隔的汉明距离为1.数据比特序列被连接成比特串，并且所述比特串与辅助数据组合 通过对代码字使用独占分离（XOR）操作。 最后，码字被解码为秘密V，秘密S与秘密V匹配。

公开(公告)号：US20130051552A1

公开(公告)日：2013-02-28

申请号：US13574311

申请日：2011-01-19

Applicant: Héléna Handschuh ,  Pim Theo Tuyls

Inventor： Héléna Handschuh ,  Pim Theo Tuyls

IPC: H04L9/14

CPC classification number: G06F21/602 ,  H04L9/0866 ,  H04L9/0897 ,  H04L9/3033 ,  H04L2209/34 ,  H04L2209/805

Abstract: A computing device for obtaining a first cryptographic key during an enrollment phase, the computing device comprising a key generator for generating the first cryptographic key in dependence upon a seed, the computing device being configured for storing the first cryptographic key on a storage of the computing device for later cryptographic use of the first cryptographic key on the computing device during a usage phase coming after the enrollment phase wherein, the computing device further comprises a physically unclonable function, the key generator being configured for deriving the seed from an output of the physically unclonable function, and an encryption module for encrypting the first cryptographic key using a second cryptographic key derived from the output of the physically unclonable function, the computing device being configured for storing the first cryptographic key on the storage in encrypted form.

Abstract translation: 一种用于在注册阶段期间获得第一密码密钥的计算设备，所述计算设备包括密钥生成器，用于根据种子生成所述第一密码密钥，所述计算设备被配置为将所述第一密码密钥存储在所述计算 用于在注册阶段之后的使用阶段期间在计算设备上稍后加密使用第一加密密钥的设备，其中，所述计算设备还包括物理上不可克隆的功能，所述密钥生成器被配置用于从物理的输出中导出种子 不可克隆功能，以及加密模块，用于使用从物理不可克隆功能的输出导出的第二加密密钥来加密第一加密密钥，该计算设备被配置为以加密的形式将第一加密密钥存储在存储器上。

公开(公告)号：US20120179952A1

公开(公告)日：2012-07-12

申请号：US13390255

申请日：2010-08-06

Applicant: Pim Theo Tuyls ,  Geert Jan Schrijen

Inventor： Pim Theo Tuyls ,  Geert Jan Schrijen

IPC: G06F11/10 ,  G06F12/06

CPC classification number: G06F21/73 ,  H04L9/002 ,  H04L9/0866 ,  H04L2209/805

Abstract: Systems for generating an identifying response pattern comprising a memory (120) used as a physically unclonable function configured for generating a response pattern dependent on physical, at least partially random characteristics of said memory may be vulnerable to freezing attacks and to aging. A memory-overwriting device (110) configured for overwriting at least a first portion of the plurality of memory locations to obscure the response pattern in the memory avoids freezing attacks. An anti-degradation device (160) configured to write to each respective location of a second portion of the plurality of memory locations an inverse of a response previously read from the memory reduces the effects of aging.

Abstract translation: 用于生成识别响应模式的系统包括用作被配置用于生成依赖于所述存储器的物理，至少部分随机特性的响应模式的物理不可克隆功能的存储器（120），其易于受到冻结攻击和老化。 被配置为重写多个存储器位置的至少第一部分以遮蔽存储器中的响应模式的存储器重写设备（110）避免了冻结攻击。 一种抗劣化装置（160），被配置为写入多个存储器位置的第二部分的每个相应位置，先前从存储器读取的响应的反相减少了老化的影响。

公开(公告)号：US07898648B2

公开(公告)日：2011-03-01

申请号：US11721389

申请日：2005-12-12

Applicant: Wil Ophey ,  Pim Theo Tuyls ,  Boris Skoric ,  Antonius Hermanus Maria Akkermans

Inventor： Wil Ophey ,  Pim Theo Tuyls ,  Boris Skoric ,  Antonius Hermanus Maria Akkermans

IPC: G07D7/12 ,  G06K9/00

CPC classification number: H04L9/3278 ,  G07D7/0032

Abstract: The invention relates to an optical identifier (30) for generating an identification signal in response to an incident radiation beam (12), and to a corresponding method. In order to provide an optical identifier (30) which can be produced by a simplified process and which has nevertheless a sufficient or even improved stability against environmental interferences it is proposed that said identifier comprises a carrier layer (32), at least partially transparent to said radiation beam (12), having a first scattering face (34) comprising a plurality of randomly oriented partial faces for scattering at least a part of said radiation beam (12), wherein said identification signal is formed by a scattered part of said radiation beam (12). Further, a device comprising said identifier, and a reading apparatus for identifying the identifier are proposed.

Abstract translation: 本发明涉及一种用于响应于入射辐射束（12）产生识别信号的光学标识符（30）以及相应的方法。 为了提供可以通过简化的过程产生并且仍然具有足够或甚至改善的对环境干扰的稳定性的光学标识符（30），建议所述标识符包括载体层（32），至少部分地透明到 所述辐射束（12）具有包括多个随机取向的部分面的第一散射面（34），用于散射所述辐射束（12）的至少一部分，其中所述识别信号由所述辐射的散射部分形成 梁（12）。 此外，提出了包括所述标识符的装置和用于识别标识符的读取装置。