公开(公告)号：WO0176130A3

公开(公告)日：2003-02-06

申请号：PCT/US0109804

申请日：2001-03-28

Applicant: VDG INC ,  GLIGOR VIRGIL DORIN ,  DONESCU POMPILIU

Inventor： GLIGOR VIRGIL DORIN ,  DONESCU POMPILIU

IPC: H04L9/32

CPC classification number: H04L9/0662 ,  H04L9/3247 ,  H04L9/34 ,  H04L2209/08 ,  H04L2209/125 ,  H04L2209/20

Abstract: An authentication method and schemes using a block cipher to protect data integrity (authenticity) during communication over insecure channels and during data storage on insecure media. The authentication method and schemes of this invention allow, in a further aspect, message and data signing and verification in parallel or pipelined manners, in addition to sequential operation, without requiring twice as many block enciphering operations as the number of input plaintext blocks. The present invention allows, in a yet further aspect, software and hardware implementations used in high-performance systems and networks where multiple processing units are available for block enciphering operations. In a yet further aspect, the authentication method and schemes of this invention allow incremental updates and out-of-order processing of authentication tags. In a yet further aspect, the authentication method and schemes of this invention are suitable for real-time applications where message length remains unknown until the entire message is received, and commencing message authentication cannot be deferred until the end of the message.

Abstract translation: 一种使用块密码的认证方法和方案，用于在不安全通道通信期间和在不安全介质上的数据存储期间保护数据完整性（真实性）。 除了顺序操作之外，本发明的认证方法和方案在另一方面允许并行或流水线的方式进行消息和数据签名和验证，而不需要两倍于块输入明文块的块加密操作。 本发明在另一方面允许在高性能系统和网络中使用的软件和硬件实现，其中多个处理单元可用于块加密操作。 在另一方面，本发明的认证方法和方案允许认证标签的增量更新和乱序处理。 在另一方面，本发明的认证方法和方案适用于消息长度在接收到整个消息之前仍然未知的实时应用，并且开始消息认证不能推迟到消息结束。

公开(公告)号：WO0176130B1

公开(公告)日：2004-03-04

申请号：PCT/US0109804

申请日：2001-03-28

Applicant: VDG INC ,  GLIGOR VIRGIL DORIN ,  DONESCU POMPILIU

Inventor： GLIGOR VIRGIL DORIN ,  DONESCU POMPILIU

IPC: H04L9/32

CPC classification number: H04L9/0662 ,  H04L9/3247 ,  H04L9/34 ,  H04L2209/08 ,  H04L2209/125 ,  H04L2209/20

Abstract: An authentication method and schemes using a block cipher to protect data integrity (authenticity) during communication over insecure channels and during data storage on insecure media. The authentication method and schemes of this invention allow, in a further aspect, message and data signing and verification in parallel or pipelined manners, in addition to sequential operation, without requiring twice as many block enciphering operations as the number of input plaintext blocks. The present invention allows, in a yet further aspect, software and hardware implementations used in high-performance systems and networks where multiple processing units are available for block enciphering operations. In a yet further aspect, the authentication method and schemes of this invention allow incremental updates and out-of-order processing of authentication tags. In a yet further aspect, the authentication method and schemes of this invention are suitable for real-time applications where message length remains unknown until the entire message is received, and commencing message authentication cannot be deferred until the end of the message.

Abstract translation: 一种使用块密码的认证方法和方案，用于在不安全通道通信期间和在不安全介质上的数据存储期间保护数据完整性（真实性）。 除了顺序操作之外，本发明的认证方法和方案在另一方面允许并行或流水线的方式进行消息和数据签名和验证，而不需要两倍于块输入明文块的块加密操作。 本发明在另一方面允许在高性能系统和网络中使用的软件和硬件实现，其中多个处理单元可用于块加密操作。 在另一方面，本发明的认证方法和方案允许认证标签的增量更新和乱序处理。 在另一方面，本发明的认证方法和方案适用于消息长度在接收到整个消息之前仍然未知的实时应用，并且开始消息认证不能推迟到消息结束。

公开(公告)号：WO0217554A3

公开(公告)日：2003-03-20

申请号：PCT/US0125949

申请日：2001-08-20

Applicant: VDG INC ,  GLIGOR VIRGIL DORIN ,  DONESCU POMPILIU

Inventor： GLIGOR VIRGIL DORIN ,  DONESCU POMPILIU

IPC: H04L9/06 ,  H04L9/32

CPC classification number: H04L9/0637 ,  H04L9/0643 ,  H04L9/3239 ,  H04L2209/08 ,  H04L2209/125 ,  H04L2209/20 ,  H04L2209/34

Abstract: A parallel block encryption method and modes (modes or operation) that provide both data confidentiality and integrity with a single cryptographic primitive and a single processing pass over the input plaintext string by using a non-cryptographic Manipulation detection Code function for secure data communication over insecure channels and for secure data storage in insecure media. The block encryption method and modes of this invention allow, in yet a further aspect, parallel or pipelined operation of the block enciphering and deciphering functions in and architecture-independent manner. The present invention allows, in a further aspect, error recovery. In a yet further aspect, the present invention allows software and hardware implementations, and use in high-performance and low-power applications, and low-power, low-cost hardware devices. In a yet further aspect, the block encryption method and modes of this invention are suitable for real-time applications.

Abstract translation: 通过使用非加密操作检测代码功能，通过不安全的安全数据通信，提供单一加密原语的数据机密性和完整性以及输入明文字符串的单个处理传递的并行块加密方法和模式（模式或操作） 渠道和安全的数据存储在不安全的媒体。 本发明的块加密方法和模式在另一方面允许块加密和解密功能的并行或流水线操作和体系结构独立的方式。 在另一方面，本发明允许错误恢复。 在另一方面，本发明允许软件和硬件实现，并且在高性能和低功率应用以及低功率，低成本的硬件设备中使用。 在另一方面，本发明的块加密方法和模式适用于实时应用。