专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

91. 发明授权

US08966279B2 Securing the implementation of a cryptographic process using key expansion 有权
标题翻译：使用密钥扩展保护加密过程的实现
公开(公告)号：US08966279B2
公开(公告)日：2015-02-24
申请号：US12975123
申请日：2010-12-21
申请人： Augustin J. Farrugia , Benoit Chevallier-Mames , Mathieu Ciet , Thomas Icart , Bruno Kindarji
发明人： Augustin J. Farrugia , Benoit Chevallier-Mames , Mathieu Ciet , Thomas Icart , Bruno Kindarji
IPC分类号： G06F12/14 , H04L9/00 , H04L9/06
CPC分类号： H04L9/002 , H04L9/0631 , H04L2209/16 , H04L2209/24
摘要： In the field of computer enabled cryptography, such as a keyed block cipher having a plurality of rounds, the cipher is hardened against an attack by protecting the cipher key by means of a key expansion process which obscures the cipher and/or the round keys by increasing their lengths to provide an expanded version of the keys for carrying out encryption or decryption using the cipher. This is especially advantageous in a “White Box” environment where an attacker has full access to the cipher algorithm, including the algorithm's internal state during its execution. This method and the associated computing apparatus are useful where the key is derived through a process and so is unknown when the software code embodying the cipher is compiled. This is typically the case where there are many users of the cipher and each has his own key, or where each user session has its own key.
摘要翻译：在诸如具有多个回合的密钥分组密码的计算机启用密码学领域中，通过利用通过密钥扩展处理来保护密码密码来抵御攻击来加密密码，该密钥扩展过程掩盖了密码和/或循环密钥，增加其长度以提供用于使用密码进行加密或解密的密钥的扩展版本。这在“白盒”环境中特别有利，攻击者可以完全访问密码算法，包括算法的执行过程中的内部状态。该方法和相关联的计算装置在通过过程导出密钥是有用的，并且当体现密码的软件代码被编译时是未知的。通常情况下，密码的用户很多，每个用户都有自己的密钥，或者每个用户会话都有自己的密钥。

92. 发明授权

US08886940B2 Hash function using a card shuffling process 有权
标题翻译：哈希功能使用卡洗牌过程
公开(公告)号：US08886940B2
公开(公告)日：2014-11-11
申请号：US12475384
申请日：2009-05-29
申请人： Benoit Chevallier-Mames , Mathieu Ciet , Augustin J. Farrugia
发明人： Benoit Chevallier-Mames , Mathieu Ciet , Augustin J. Farrugia
IPC分类号： G06F21/00 , H04L9/06 , H04L9/32 , A63F1/12
CPC分类号： H04L9/3236 , A63F1/12 , H04L9/0662
摘要： In the computer data security field, a cryptographic hash function process embodied in a computer system and which is typically keyless, but is highly secure. The process is based on the type of chaos introduction exhibited by a game process such as the well known shuffling of a deck of playing cards. Computation of the hash value (digest) is the result of executing in a model (such as computer code or logic circuitry) a game algorithm that models the actual game such as a playing card shuffling algorithm using the message as an input to the algorithm, then executing the card shuffling algorithm on the input. A state (order) of the modeled deck of cards after a shuffle (or multiple shuffles) gives the hash digest value.
摘要翻译：在计算机数据安全领域中，加密散列函数过程体现在计算机系统中，并且通常是无钥匙的，但是是高度安全的。该过程基于游戏过程所展示的混乱介绍的类型，诸如众所周知的扑克牌。哈希值（摘要）的计算是在模型（例如计算机代码或逻辑电路）中执行游戏算法的结果，该游戏算法对使用该消息作为该算法的输入的游戏卡混洗算法进行建模，然后在输入上执行卡混洗算法。混洗（或多次洗牌）后，建模卡牌的状态（顺序）给出散列摘要值。

93. 发明授权

US08667301B2 Obfuscating transformations on data array content and addresses 有权
标题翻译：对数据阵列内容和地址进行混淆变换
公开(公告)号：US08667301B2
公开(公告)日：2014-03-04
申请号：US12753021
申请日：2010-04-01
申请人： Augustin J. Farrugia , Mathieu Ciet , Benoit Chevallier-Mames
发明人： Augustin J. Farrugia , Mathieu Ciet , Benoit Chevallier-Mames
IPC分类号： G06F12/14
CPC分类号： G06F21/60 , G06F21/14 , G06F2221/2107 , G09C1/00 , H04L2209/04
摘要： In a first computer (digital) data obfuscation process, data which is conventionally arranged in a data structure called an array (e.g., a table) and conventionally stored in computer or computer device memory is obfuscated (masked) by logically or mathematically combining the data, entry-by-entry, with a masking value which is computed as a logical or mathematical function of the entry itself or its index in the array, modulo a security value. The complementary unmasking value is a pointer to the entry's address in the table modulo the security value. In a second computer (digital) data obfuscation process, the addresses (location designations) in memory of a data array are themselves obfuscated (masked) by partitioning the array into blocks of entries and shuffling the order of the data entries in each block by a predetermined algorithm, resulting in a shuffled array also differing from the original array in terms of its size (the total number of entries).
摘要翻译：在第一计算机（数字）数据混淆处理中，通过逻辑地或数学地组合数据来模拟（掩蔽）常规地被布置在被称为阵列（例如，一个表格）的数据结构中并且通常存储在计算机或计算机设备存储器中的数据逐个输入，具有屏蔽值，其被计算为条目本身的逻辑或数学函数或其阵列中的索引，模数为安全值。补充取消掩码值是指向该表中条目地址的指针，以模拟安全值。在第二计算机（数字）数据混淆处理中，数据阵列的存储器中的地址（位置指定）本身通过将阵列划分成条目块并将每个块中的数据条目的顺序按顺序排列（A）来进行混淆（掩蔽）预定的算法，导致在其大小（入口总数）方面与原始阵列不同的混洗阵列。

94. 发明授权

US08605894B2 Cryptographic process execution protecting an input value against attacks 有权
标题翻译：加密过程执行保护输入值免受攻击
公开(公告)号：US08605894B2
公开(公告)日：2013-12-10
申请号：US13271841
申请日：2011-10-12
申请人： Augustin J. Farrugia , Benoit Chevallier-Mames , Bruno Kindarji , Mathieu Ciet , Thomas Icart
发明人： Augustin J. Farrugia , Benoit Chevallier-Mames , Bruno Kindarji , Mathieu Ciet , Thomas Icart
IPC分类号： G06F21/00 , H04L9/06
CPC分类号： H04L9/0631 , H04L2209/043 , H04L2209/16
摘要： A cryptographic process (such as the AES cipher) which uses table look up operations (TLUs) is hardened against reverse engineering attacks intended to recover the table contents and thereby the cipher key. This hardening involves removing any one-to-one correspondence between the TLU inputs and outputs, by altering the output of the TLU dynamically, e.g. at each execution (call) of the TLU. This is done by increasing the size of the tables, applying a dynamically determined mask value to the table input and/or output, or using an inverse of the table.
摘要翻译：使用表查找操作（TLU）的加密过程（例如AES密码）被硬化以防止旨在恢复表内容和密码密钥的反向工程攻击。这种硬化包括通过动态地改变TLU的输出来例如TLU输入和输出之间的一对一的对应关系。在TLU的每次执行（调用）时。这是通过增加表的大小，将动态确定的掩码值应用于表输入和/或输出，或使用表的倒数完成的。

95. 发明授权

US08374341B2 Hash function using a cue sports game process 失效
标题翻译：哈希功能使用提示体育游戏过程
公开(公告)号：US08374341B2
公开(公告)日：2013-02-12
申请号：US12541850
申请日：2009-08-14
申请人： Benoit Chevallier-Mames , Mathieu Ciet , Augustin J. Farrugia
发明人： Benoit Chevallier-Mames , Mathieu Ciet , Augustin J. Farrugia
IPC分类号： H04K1/00
CPC分类号： G06F21/64
摘要： In the computer data security field, cryptographic hash function processes embodied in a computer system and which are typically keyless, but are highly secure. The processes are based on the type of randomness exhibited by well known table “cue sports” games such as billiards, snooker, and pool played on a billiards table involving the players striking one of a plurality of balls with a cue, the struck ball then hitting other balls, the raised sides of the table, and in some cases one or more balls going into pockets in the corners and/or sides of the table. Computation of the hash value (digest) is the result of providing a model (such as expressed in computer code) of such a game algorithm and using the message as an input to the game algorithm, then executing the game algorithm. A state of the game after one or several “shots” gives the hash digest value of the message.
摘要翻译：在计算机数据安全领域中，体现在计算机系统中的加密散列函数过程通常是无钥匙的，但是是高度安全的。这些过程基于众所周知的表提示体育游戏（例如台球，斯诺克和池台）所表现的随机性类型，其涉及到玩家以提示的方式击打多个球中的一个球，撞击的球然后击中其他球球，桌子的凸起部分，以及在某些情况下一个或多个球进入桌子的角落和/或侧面的口袋。哈希值（摘要）的计算是提供这种游戏算法的模型（例如以计算机代码表示）的结果，并且使用该消息作为游戏算法的输入，然后执行游戏算法。一次或多次拍摄后的游戏状态给出消息的散列摘要值。

96. 发明授权

US08364965B2 Optimized integrity verification procedures 有权
标题翻译：优化完整性验证程序
公开(公告)号：US08364965B2
公开(公告)日：2013-01-29
申请号：US11377082
申请日：2006-03-15
申请人： Augustin J. Farrugia , Jean-Francois Riendeau
发明人： Augustin J. Farrugia , Jean-Francois Riendeau
IPC分类号： H04L29/06
CPC分类号： G06F21/64
摘要： Some embodiments of the invention provide a method of verifying the integrity of digital content. At a source of the digital content, the method generates a signature for the digital content by applying a hashing function to a particular portion of the digital content, where the particular portion is less than the entire digital content. The method supplies the signature and the digital content to a device. At the device, the method applies the hashing function to the particular portion of the digital content in order to verify the supplied signature, and thereby verifies the integrity of the supplied digital content.
摘要翻译：本发明的一些实施例提供了一种验证数字内容的完整性的方法。在数字内容的源头上，该方法通过对数字内容的特定部分应用散列函数来生成数字内容的签名，其中特定部分小于整个数字内容。该方法将签名和数字内容提供给设备。在该设备中，该方法将哈希函数应用于数字内容的特定部分，以验证所提供的签名，从而验证所提供的数字内容的完整性。

97. 发明授权

US08200986B2 Computer enabled secure status return 有权
标题翻译：计算机启用安全状态返回
公开(公告)号：US08200986B2
公开(公告)日：2012-06-12
申请号：US12109283
申请日：2008-04-24
申请人： Mathieu Ciet , Augustin J. Farrugia , Gianpaolo Fasoli
发明人： Mathieu Ciet , Augustin J. Farrugia , Gianpaolo Fasoli
IPC分类号： G06F11/30
CPC分类号： H04L9/0618 , H04L9/0656
摘要： Computer related method and apparatus to transmit a logical value (e.g., 1 or 0) between two entities, such as an operating system and application program, in a secure way in an insecure environment. The logical status is sent by in effect encrypting it using two random numbers, one from each entity, before sending it to the other entity. However the encrypting is much “lighter” (requiring much less computer or circuit resources) than any conventional secure cipher and has a built-in verification feature.
摘要翻译：计算机相关方法和装置，以安全的方式在不安全的环境中传送诸如操作系统和应用程序的两个实体之间的逻辑值（例如，1或0）。逻辑状态在发送给另一个实体之前通过实际加密来发送，使用两个随机数，一个来自每个实体。然而，与任何传统的安全密码相比，加密比“更轻”（需要更少的计算机或电路资源），并具有内置的验证功能。

98. 发明申请

US20120124366A1 SYSTEM AND METHOD FOR A DERIVATION FUNCTION FOR KEY PER PAGE 有权
标题翻译：用于关键每页的衍生函数的系统和方法
公开(公告)号：US20120124366A1
公开(公告)日：2012-05-17
申请号：US13357832
申请日：2012-01-25
申请人： Mathieu Ciet , Augustin J. Farrugia , Filip Toma Paun
发明人： Mathieu Ciet , Augustin J. Farrugia , Filip Toma Paun
IPC分类号： H04L9/00
CPC分类号： H04L9/0838 , H04L9/16 , H04L2209/16
摘要： Disclosed herein are systems, methods and computer-readable media to perform data encryption and decryption using a derivation function to obtain a key per page of data in a white-box environment. The method includes sharing a master key with the sender and receiver, splitting the input data into blocks and sub-blocks, and utilizing a set of keys and a master key to derive a page key. In another aspect of this disclosure, the key validation and shuffling operations are included. This method allows for the derivation of a key instead of storing a predetermined key, thus maintaining system security in a white-box environment.
摘要翻译：这里公开的是使用推导函数来执行数据加密和解密以在白盒环境中获得每页数据的密钥的系统，方法和计算机可读介质。该方法包括与发送器和接收器共享主密钥，将输入数据分成块和子块，以及利用一组密钥和主密钥来导出页面密钥。在本公开的另一方面，包括密钥验证和混洗操作。该方法允许导出密钥而不是存储预定的密钥，从而在白盒环境中保持系统安全性。

99. 发明授权

US08165286B2 Combination white box/black box cryptographic processes and apparatus 有权
标题翻译：组合白盒/黑匣子加密处理和装置
公开(公告)号：US08165286B2
公开(公告)日：2012-04-24
申请号：US12061363
申请日：2008-04-02
申请人： Mathieu Ciet , Augustin J. Farrugia , Jean-Francois Riendeau
发明人： Mathieu Ciet , Augustin J. Farrugia , Jean-Francois Riendeau
IPC分类号： H04K1/00 , H04L9/00 , H04L9/28 , H04L29/06 , G06F17/00
CPC分类号： H04L9/002 , H04L9/3066 , H04L2209/16 , H04L2209/603
摘要： Method and apparatus for increasing security of a cryptographic algorithm such as deciphering, enciphering, or a digital signature. A cryptographic algorithm and a key are provided such that a deciphering process, for instance, is partitioned between two portions. The portion of the cryptographic algorithm carried out in the first portion is implemented in a “white box” model such that it is highly secure even against an attack by the user who has full access to internal operations, code execution and memory of the user device, such as a hacker or attacker. The remaining portion of the algorithm is carried out in the second portion. Since this second portion has relaxed security constraints, its code may be implemented using a “black box” approach where its code execution may be more efficient and faster, not requiring the code obfuscation of the white box implementation in the user device. This partitioning may be achieved using a delegation protocol. The chief advantage is that even given a limited code size for the cryptographic process, the security of the system is improved by carrying out the more computationally intensive functions more efficiently in the black box portion and executing the less computationally intensive function in the white box portion.
摘要翻译：用于提高加密算法的安全性的方法和装置，例如解密，加密或数字签名。提供了一种加密算法和密钥，使得例如在两部分之间进行解密处理。在第一部分中执行的加密算法的部分被实现在“白盒”模型中，使得即使对于完全访问内部操作，代码执行和用户设备的存储器的用户的攻击也是非常安全的，如黑客或攻击者。算法的剩余部分在第二部分中进行。由于该第二部分具有放松的安全约束，因此其代码可以使用“黑箱”方法来实现，其中其代码执行可能更有效和更快，而不需要用户设备中的白盒实现的代码混淆。可以使用委托协议来实现该分区。主要的优点是，即使给出密码过程的有限的代码大小，通过在黑盒部分中更有效地执行更多的计算密集型函数，并且在白盒部分中执行较少的计算密集型函数来提高系统的安全性。

100. 发明授权

US08094813B2 System and method for modulus obfuscation 有权
标题翻译：模糊模糊系统和方法
公开(公告)号：US08094813B2
公开(公告)日：2012-01-10
申请号：US12203101
申请日：2008-09-02
申请人： Mathieu Ciet , Augustin J. Farrugia , Nicholas T. Sullivan
发明人： Mathieu Ciet , Augustin J. Farrugia , Nicholas T. Sullivan
IPC分类号： H04L9/00
CPC分类号： H04L9/00 , H04L2209/16
摘要： Disclosed herein are methods for obfuscating data on a client, on a server, and on a client and a server. The method on a client device includes receiving input data, storing an operation value in a secure location, performing a modulus obfuscation on the operation value, performing a modulus operation on the operation value and the input data, performing a modulus transformation on the operation value and the input data to obtain client output data, and checking if the client output data matches corresponding server output data. The method on a server device includes receiving input data, performing a modulus transformation on the input data to obtain a result, performing a plain operation on the result and an operation value to obtain server output data, and checking if the server output data matches corresponding client output data from a client device that (1) receives input data, (2) stores an operation value in a secure location, (3) performs a modulus obfuscation on the operation value, (4) performs a modulus operation on the operation value and the input data, and (5) performs a modulus transformation on the operation value and the input data to obtain client output data. In an optional step applicable to both clients and servers, the method further includes authenticating the client input data and the server input data if the server output data matches the client output data. In one aspect, server input data and client input data pertain to a cryptographic key.
摘要翻译：这里公开了用于在客户端，服务器上以及在客户端和服务器上模糊数据的方法。客户端装置的方法包括接收输入数据，将操作值存储在安全位置，对运算值进行模糊混淆，对运算值和输入数据进行模运算，对运算值进行模变换和输入数据，以获取客户端输出数据，并检查客户端输出数据是否匹配相应的服务器输出数据。服务器装置上的方法包括：接收输入数据，对输入数据进行模数变换，得到结果，对结果执行简单操作，得到操作值，得到服务器输出数据，并检查服务器输出数据是否匹配对应（1）接收输入数据的客户端输出数据，（2）将操作值存储在安全位置，（3）对运算值进行模糊混淆，（4）对运算值进行模运算和输入数据，（5）对运算值和输入数据进行模变换，得到客户输出数据。在适用于客户端和服务器的可选步骤中，如果服务器输出数据与客户端输出数据匹配，则该方法还包括验证客户端输入数据和服务器输入数据。在一个方面，服务器输入数据和客户端输入数据属于加密密钥。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式