公开(公告)号：US08380683B2

公开(公告)日：2013-02-19

申请号：US13059643

申请日：2009-08-25

申请人： Taizo Shirai ,  Kyoji Shibutani ,  Shiho Moriai ,  Toru Akishita ,  Tetsu Iwata

发明人： Taizo Shirai ,  Kyoji Shibutani ,  Shiho Moriai ,  Toru Akishita ,  Tetsu Iwata

IPC分类号： G06F17/30

CPC分类号： H04L9/0643 ,  H04L2209/12 ,  H04L2209/20 ,  H04L2209/30 ,  H04L2209/38

摘要： There is realized a data conversion device that performs generation of a hash value with improved analysis resistance and a high degree of safety. There are provided a stirring processing section performing a data stirring process on input data; and a compression processing section performing a data compression process on input data including data segments which are divisions of message data, the message data being a target of a data conversion. Part of multi-stage compression subsections is configured to perform a data compression process based on both of output of the stirring processing section and the data segments in the message data. There is provided such a configuration that the stirring process is executed at least on fixed timing of a compression processing round of plural rounds and thus, there is realized a data conversion device that performs generation of a hash value with improved analysis resistance and a high degree of safety.

摘要翻译： 实现了一种数据转换装置，其执行具有改进的分析电阻和高度安全性的哈希值的产生。 提供了一种对输入数据执行数据搅拌处理的搅拌处理部分; 以及对包括作为消息数据的划分的数据段的输入数据执行数据压缩处理的压缩处理部，所述消息数据是数据转换的目标。 多级压缩子部分被配置为基于搅动处理部分的输出和消息数据中的数据段两者执行数据压缩处理。 提供了这样的结构，至少在多轮的压缩处理轮的固定定时执行搅拌处理，因此实现了一种数据转换装置，其执行具有改进的分析电阻和高度的散列值的产生 的安全。

公开(公告)号：US20110238636A1

公开(公告)日：2011-09-29

申请号：US13059643

申请日：2009-08-25

申请人： Taizo Shirai ,  Kyoji Shibutani ,  Shiho Moriai ,  Toru Akishita ,  Tetsu Iwata

发明人： Taizo Shirai ,  Kyoji Shibutani ,  Shiho Moriai ,  Toru Akishita ,  Tetsu Iwata

IPC分类号： G06F17/00

CPC分类号： H04L9/0643 ,  H04L2209/12 ,  H04L2209/20 ,  H04L2209/30 ,  H04L2209/38

摘要： There is realized a data conversion device that performs generation of a hash value with improved analysis resistance and a high degree of safety. There are provided a stirring processing section performing a data stirring process on input data; and a compression processing section performing a data compression process on input data including data segments which are divisions of message data, the message data being a target of a data conversion. Part of multi-stage compression subsections is configured to perform a data compression process based on both of output of the stirring processing section and the data segments in the message data. There is provided such a configuration that the stirring process is executed at least on fixed timing of a compression processing round of plural rounds and thus, there is realized a data conversion device that performs generation of a hash value with improved analysis resistance and a high degree of safety.

摘要翻译： 实现了一种数据转换装置，其执行具有改进的分析电阻和高度安全性的哈希值的产生。 提供了一种对输入数据执行数据搅拌处理的搅拌处理部分; 以及对包括作为消息数据的划分的数据段的输入数据执行数据压缩处理的压缩处理部，所述消息数据是数据转换的目标。 多级压缩子部分被配置为基于搅动处理部分的输出和消息数据中的数据段两者执行数据压缩处理。 提供了这样的结构，至少在多轮的压缩处理轮的固定定时执行搅拌处理，因此实现了一种数据转换装置，其执行具有改进的分析电阻和高度的散列值的产生 的安全。

公开(公告)号：US08787563B2

公开(公告)日：2014-07-22

申请号：US13059641

申请日：2009-08-25

申请人： Taizo Shirai ,  Kyoji Shibutani ,  Shiho Moriai ,  Toru Akishita ,  Tetsu Iwata

发明人： Taizo Shirai ,  Kyoji Shibutani ,  Shiho Moriai ,  Toru Akishita ,  Tetsu Iwata

IPC分类号： H04K1/00 ,  H04L9/00 ,  H04L9/28 ,  H04L9/06

CPC分类号： H04L9/0643 ,  H04L9/0637 ,  H04L2209/122 ,  H04L2209/125 ,  H04L2209/20 ,  H04L2209/30

摘要： A data converter for generating a hash value for message data is disclosed. The data converter executes a data conversion process, which includes compression-function execution sections and process sequences in which divided data blocks constituting message data are processed in parallel. Each compression-function execution section performs a process, using a message scheduling section and a chaining variable processing section. The message scheduling section receives a corresponding divided data block of the message data and performs a message scheduling process. The chaining variable processing section receives an output from the message scheduling section and an intermediate value output from a preceding processing section, and generates output data, which has the same number of bits as in the intermediate value. The compression-function execution sections may use one or more message scheduling sections and chaining variable processing sections.

摘要翻译： 公开了一种用于生成消息数据的散列值的数据转换器。 数据转换器执行数据转换处理，其包括压缩函数执行部分和处理序列，其中构成消息数据的分割数据块被并行处理。 每个压缩函数执行部分使用消息调度部分和链接变量处理部分执行处理。 消息调度部接收消息数据的对应的分割数据块，进行消息调度处理。 链接变量处理部接收消息调度部的输出和从前一处理部输出的中间值，生成与中间值相同位数的输出数据。 压缩函数执行部分可以使用一个或多个消息调度部分和链接可变处理部分。

公开(公告)号：US20130083920A1

公开(公告)日：2013-04-04

申请号：US13685821

申请日：2012-11-27

申请人： Taizo Shirai ,  Kyoji Shibutani ,  Shiho Moriai ,  Toru Akishita ,  Tetsu Iwata

发明人： Taizo Shirai ,  Kyoji Shibutani ,  Shiho Moriai ,  Toru Akishita ,  Tetsu Iwata

IPC分类号： H04L9/28

CPC分类号： H04L9/28 ,  G09C1/00 ,  H04L9/0625 ,  H04L9/0631 ,  H04L2209/122

摘要： A data conversion algorithm achieving efficient data diffusion is achieved. For example, in a configuration where a various processes are executed on two data segments which are resultants of dividing a rectangular matrix of data containing arranged one-byte data blocks into two parts to perform data conversion, efficient data scrambling with less operation cost is achieved by executing a linear conversion process on one of the data segments, an exclusive OR operation between the two data segments, a shift process on one of the data segments, and a swap process between the two data segments. Moreover, cryptographic processing with a high security level is achieved by including nonlinear conversion or key application operation on the data segments.

摘要翻译： 实现了实现有效数据扩散的数据转换算法。 例如，在将包含排列1字节的数据块的数据的矩形矩阵分割成两部分进行数据转换的两个数据段执行各种处理的结构中，实现了以较少的运算成本的有效数据加扰 通过对数据段之一执行线性转换处理，在两个数据段之间进行异或运算，对数据段之一进行移位处理，以及两个数据段之间的交换处理。 此外，通过在数据段上包括非线性转换或密钥应用操作来实现具有高安全级别的密码处理。

公开(公告)号：US20110243319A1

公开(公告)日：2011-10-06

申请号：US12812903

申请日：2009-01-21

申请人： Taizo Shirai ,  Kyoji Shibutani ,  Shiho Moriai ,  Toru Akishita ,  Tetsu Iwata

发明人： Taizo Shirai ,  Kyoji Shibutani ,  Shiho Moriai ,  Toru Akishita ,  Tetsu Iwata

IPC分类号： H04L9/28

CPC分类号： H04L9/28 ,  G09C1/00 ,  H04L9/0625 ,  H04L9/0631 ,  H04L2209/122

摘要： A data conversion algorithm achieving efficient data diffusion is achieved. For example, in a configuration where a various processes are executed on two data segments which are resultants of dividing a rectangular matrix of data containing arranged one-byte data blocks into two parts to perform data conversion, efficient data scrambling with less operation cost is achieved by executing a linear conversion process on one of the data segments, an exclusive OR operation between the two data segments, a shift process on one of the data segments, and a swap process between the two data segments. Moreover, cryptographic processing with a high security level is achieved by including nonlinear conversion or key application operation on the data segments.

摘要翻译： 实现了实现有效数据扩散的数据转换算法。 例如，在将包含排列1字节的数据块的数据的矩形矩阵分割成两部分进行数据转换的两个数据段执行各种处理的结构中，实现了以较少的运算成本的有效数据加扰 通过对数据段之一执行线性转换处理，在两个数据段之间进行异或运算，对数据段之一进行移位处理，以及两个数据段之间的交换处理。 此外，通过在数据段上包括非线性转换或密钥应用操作来实现具有高安全级别的密码处理。

公开(公告)号：US20110211688A1

公开(公告)日：2011-09-01

申请号：US13059641

申请日：2009-08-25

申请人： Taizo Shirai ,  Kyoji Shibutani ,  Shiho Moriai ,  Toru Akishita ,  Tetsu Iwata

发明人： Taizo Shirai ,  Kyoji Shibutani ,  Shiho Moriai ,  Toru Akishita ,  Tetsu Iwata

IPC分类号： H04L9/28 ,  H04K1/04

CPC分类号： H04L9/0643 ,  H04L9/0637 ,  H04L2209/122 ,  H04L2209/125 ,  H04L2209/20 ,  H04L2209/30

摘要： A construction with an improved compression-function execution section is achieved. A data conversion process with use of a plurality of compression-function execution sections and through a plurality of process sequences in which divided data blocks constituting message data are processed in parallel is executed. Each of the plurality of compression-function execution sections performs a process with use of a message scheduling section which receives a corresponding divided data block of the message data to perform a message scheduling process, and a process with use of a chaining variable processing section which receives both of an output from the message scheduling section and an intermediate value as an output from a preceding processing section to generate output data whose number of bits is same as that of the intermediate value through compression of received data. The plurality of compression-function execution sections, respectively performing parallel processing commonly use one or both of the message scheduling section and the chaining variable processing section, and allow a single message scheduling section or a single chaining variable processing section to be utilized. Downsizing of a hardware configuration and simplification of processing steps are achieved by such a construction.

摘要翻译： 实现了具有改进的压缩函数执行部分的结构。 执行使用多个压缩函数执行部分并且通过并行处理构成消息数据的划分数据块的多个处理序列的数据转换处理。 多个压缩函数执行部中的每一个执行使用消息调度部的处理，该消息调度部接收消息数据的对应的分割数据块来执行消息调度处理，以及使用链接变量处理部的处理 接收来自消息调度部分的输出和来自前一处理部分的输出的中间值，以通过压缩接收到的数据来产生其数目与中间值的位数相同的输出数据。 分别执行并行处理的多个压缩函数执行部分通常使用消息调度部分和链接变量处理部分中的一个或两个，并且允许使用单个消息调度部分或单个链接变量处理部分。 通过这种结构实现了硬件配置的小型化和处理步骤的简化。

公开(公告)号：US08787568B2

公开(公告)日：2014-07-22

申请号：US12439302

申请日：2007-08-29

申请人： Kyoji Shibutani ,  Taizo Shirai ,  Toru Akishita ,  Shiho Moriai

发明人： Kyoji Shibutani ,  Taizo Shirai ,  Toru Akishita ,  Shiho Moriai

IPC分类号： G06F21/00 ,  H04L29/06

CPC分类号： H04L9/0631 ,  G09C1/00 ,  H04L9/002 ,  H04L9/0625

摘要： A non-linear transformation processing structure having a high implementation efficiency and a high security is realized. Data transformation is performed using a first non-linear transformation part performing non-linear transformation using a plurality of small S-boxes; a linear transformation part receiving all the outputs from the first non-linear transformation part and performing data transformation using a matrix for performing optimal diffusion mappings; and a second non-linear transformation part including a plurality of small non-linear transformation parts that perform non-linear transformation on individual data units into which output data from the linear transformation part is divided. With this structure, appropriate data diffusion can be achieved without excessively increasing a critical path, and a structure with a high implementation efficiency and a high security can be achieved.

摘要翻译： 实现了具有高实现效率和高安全性的非线性变换处理结构。 使用使用多个小S盒执行非线性变换的第一非线性变换部分执行数据变换; 线性变换部分接收来自第一非线性变换部分的所有输出，并且使用用于执行最佳扩散映射的矩阵执行数据变换; 以及包括多个小的非线性变换部分的第二非线性变换部分，所述多个小的非线性变换部分对来自线性变换部分的输出数据被划分成的各个数据单元执行非线性变换。 利用这种结构，可以在不过度增加关键路径的情况下实现适当的数据扩散，并且可以实现具有高实现效率和高安全性的结构。

公开(公告)号：US20100002872A1

公开(公告)日：2010-01-07

申请号：US12439302

申请日：2007-08-29

申请人： Kyoji Shibutani ,  Taizo Shirai ,  Toru Akishita ,  Shiho Moriai

发明人： Kyoji Shibutani ,  Taizo Shirai ,  Toru Akishita ,  Shiho Moriai

IPC分类号： H04L9/28 ,  G06F17/14 ,  G06F17/16

CPC分类号： H04L9/0631 ,  G09C1/00 ,  H04L9/002 ,  H04L9/0625

摘要： A non-linear transformation processing structure having a high implementation efficiency and a high security is realized. Data transformation is performed using a first non-linear transformation part performing non-linear transformation using a plurality of small S-boxes; a linear transformation part receiving all the outputs from the first non-linear transformation part and performing data transformation using a matrix for performing optimal diffusion mappings; and a second non-linear transformation part including a plurality of small non-linear transformation parts that perform non-linear transformation on individual data units into which output data from the linear transformation part is divided. With this structure, appropriate data diffusion can be achieved without excessively increasing a critical path, and a structure with a high implementation efficiency and a high security can be achieved.

摘要翻译： 实现了具有高实现效率和高安全性的非线性变换处理结构。 使用使用多个小S盒执行非线性变换的第一非线性变换部分执行数据变换; 线性变换部分接收来自第一非线性变换部分的所有输出，并且使用用于执行最佳扩散映射的矩阵执行数据变换; 以及第二非线性变换部分，其包括多个小的非线性变换部分，其对来自线性变换部分的输出数据进行分割的各个数据单元执行非线性变换。 利用这种结构，可以在不过度增加关键路径的情况下实现适当的数据扩散，并且可以实现具有高实现效率和高安全性的结构。

公开(公告)号：US08396210B2

公开(公告)日：2013-03-12

申请号：US12439250

申请日：2007-08-29

申请人： Kyoji Shibutani ,  Taizo Shirai ,  Toru Akishita ,  Shiho Moriai

发明人： Kyoji Shibutani ,  Taizo Shirai ,  Toru Akishita ,  Shiho Moriai

IPC分类号： H04L29/06

CPC分类号： H04L9/002 ,  G09C1/00 ,  H04L9/0625 ,  H04L2209/122 ,  H04L2209/125

摘要： A configuration that efficiently executes cryptographic processing to which a plurality of different F-functions are applied is provided. In a configuration that executes cryptographic processing by performing round operations to which different F-functions are selectively applied, a plurality of F-function correspondence tables, each corresponding to one of the F-functions, in which input values and output values or intermediate values are associated with each other are stored in a memory; in accordance with a prescribed cryptographic processing sequence, addresses corresponding to F-functions for the respective rounds are applied to read F-function correspondence tables from the memory; and output values or intermediate values for input values are acquired on the basis of reference to the tables to obtain data transformation results in accordance with the respective F-functions.

摘要翻译： 提供了有效地执行应用了多个不同的F功能的加密处理的配置。 在通过执行选择性地应用了不同的F功能的循环操作来执行加密处理的配置中，分别对应于F功能之一的多个F函数对应表，其中输入值和输出值或中间值 相互关联存储在存储器中; 根据规定的密码处理顺序，对应于各轮的F函数的地址被应用于从存储器读取F函数对应表; 并且基于参考表获取输入值的输出值或中间值，以根据各自的F函数获得数据变换结果。

公开(公告)号：US20120191986A1

公开(公告)日：2012-07-26

申请号：US13436223

申请日：2012-03-30

申请人： Kyoji SHIBUTANI ,  Taizo Shirai ,  Toru Akishita ,  Shiho Moriai

发明人： Kyoji SHIBUTANI ,  Taizo Shirai ,  Toru Akishita ,  Shiho Moriai

IPC分类号： G06F21/22

CPC分类号： H04L9/002 ,  H04L9/0625 ,  H04L2209/122 ,  H04L2209/24

摘要： In extended Feistel type common key block cipher processing, a configuration is realized in which an encryption function and a decryption function are commonly used. In a cryptographic processing configuration to which an extended Feistel structure in which the number of data lines d is set to an integer satisfying d≧3 is applied, involution properties, that is, the application of a common function to encryption processing and decryption processing, can be achieved. With a configuration in which round keys are permuted or F-functions are permuted in the decryption processing, processing using a common function can be performed by setting swap functions for the encryption processing and the decryption processing to have the same processing style.

摘要翻译： 在扩展的Feistel型通用密钥块密码处理中，实现了通常使用加密功能和解密功能的配置。 在将数据线数d设定为满足d≥3的整数的扩展Feistel结构的密码处理配置中，应用了加密处理和解密处理中的共同功能的卷积特性， 可以实现。 通过在解密处理中将轮密钥置换或F功能配置的配置，可以通过将用于加密处理和解密处理的交换功能设置为具有相同的处理风格来执行使用公共功能的处理。