专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明授权

US08675866B2 Multiplicative splits to protect cipher keys 有权
标题翻译：乘法分割以保护加密密钥
公开(公告)号：US08675866B2
公开(公告)日：2014-03-18
申请号：US13178410
申请日：2011-07-07
申请人： Augustin J. Farrugia , Benoit Chevallier-Mames , Bruno Kindarji , Mathieu Ciet , Thomas Icart
发明人： Augustin J. Farrugia , Benoit Chevallier-Mames , Bruno Kindarji , Mathieu Ciet , Thomas Icart
IPC分类号： H04L9/06
CPC分类号： H04L9/002 , H04L9/0631 , H04L2209/04 , H04L2209/16
摘要： In the field of computer enabled cryptography, such as a keyed block cipher having a plurality of rounds, the cipher is hardened against an attack by a protection process which obscures the round keys using the properties of group field automorphisms and applying masks to the states of the cipher, for encryption or decryption. This is especially advantageous in a “White Box” environment where an attacker has full access to the cipher algorithm, including the algorithm's internal state during its execution. This method and the associated computing apparatus are useful for protection against known attacks on “White Box” ciphers, by eliminating S-box operations, together with improved masking techniques and increasing the cipher's complexity against reverse engineering and key storage attacks.
摘要翻译：在计算机启用的密码学领域，例如具有多个回合的密钥分组密码，密码被抵御使用群组域自动生成的属性遮蔽轮密钥的保护过程而被强化，并将掩码应用于密码，用于加密或解密。这在“白盒”环境中特别有利，攻击者可以完全访问密码算法，包括算法的执行过程中的内部状态。该方法和相关联的计算装置对于通过消除S盒操作以及改进的掩蔽技术并增加密码复杂性以逆向工程和密钥存储攻击来防止对“白盒”密码的已知攻击是有用的。

2. 发明申请

US20120311338A1 SECURE AUTHENTICATION OF IDENTIFICATION FOR COMPUTING DEVICES 有权
标题翻译：安全验证计算设备的识别
公开(公告)号：US20120311338A1
公开(公告)日：2012-12-06
申请号：US13357454
申请日：2012-01-24
申请人： Augustin J. FARRUGIA , David M'RAIHI , Mathieu CIET , Thomas ICART
发明人： Augustin J. FARRUGIA , David M'RAIHI , Mathieu CIET , Thomas ICART
IPC分类号： H04L9/32
CPC分类号： H04L9/3247 , H04L9/06 , H04L2209/16
摘要： In the field of computer and data security, the identifier (ID) of a computing device is protected by providing a secure signature used to verify the ID. The signature is computed from the ID using a “White Box” cryptographic process and a hash function. This provides a signature that is computationally easy to verify but difficult or impossible to generate by a hacker (unauthorized user). This method of first creating the signature and later verifying the identifier using the signature and the associated computing apparatus are thereby useful for protection against hacking of such identifiers of computing devices.
摘要翻译：在计算机和数据安全领域，通过提供用于验证ID的安全签名来保护计算设备的标识符（ID）。使用白盒加密过程和散列函数从ID计算签名。这提供了计算上容易验证但由黑客（未经授权的用户）产生困难或不可能的签名。因此，首先创建签名并随后使用签名和相关联的计算装置验证标识符的这种方法因此有助于防止这些计算设备的这种标识符的黑客入侵。

3. 发明申请

US20120254625A1 PROTECTING STATES OF A CRYPTOGRAPHIC PROCESS USING GROUP AUTOMORPHISMS 有权
标题翻译：使用组自动化保护CRIPTOGRAPHIC过程的状态
公开(公告)号：US20120254625A1
公开(公告)日：2012-10-04
申请号：US13076362
申请日：2011-03-30
申请人： Augustin J. FARRUGIA , Mathieu Ciet , Thomas Icart
发明人： Augustin J. FARRUGIA , Mathieu Ciet , Thomas Icart
IPC分类号： G06F21/24
CPC分类号： G06F21/602 , G06F21/52
摘要： In the field of computer enabled cryptography, such as a keyed block cipher having a plurality of rounds, the cipher is hardened against an attack by a protection process which obscures the cipher states and/or the round keys using the properties of group field automorphisms and applying multiplicative masks (instead of conventional XOR masks) to the states of the cipher, for encryption or decryption. This is especially advantageous in a “White Box” environment where an attacker has full access to the cipher algorithm, including the algorithm's internal state during its execution. This method and the associated computing apparatus are useful for protection against known attacks on “White Box” ciphers, by eliminating XOR operations with improved masking techniques and increasing complexity of reverse engineering and of attacks.
摘要翻译：在诸如具有多个回合的密钥分组密码的计算机启用密码学领域中，使用组域自动生成的属性，使密码状态和/或循环密钥隐藏的保护过程针对攻击进行加密，将乘法掩码（而不是常规XOR掩码）应用于密码的状态，以进行加密或解密。这在白盒环境中特别有利，在这种情况下，攻击者可以完全访问密码算法，包括算法执行过程中的内部状态。该方法和相关联的计算设备对于通过利用改进的掩蔽技术消除XOR操作并增加逆向工程和攻击的复杂性来防止已知的对白盒密码的攻击是有用的。

4. 发明申请

US20120082307A1 CRYPTOGRAPHY ON A ELLIPTICAL CURVE 有权
标题翻译：椭圆曲线的曲线图
公开(公告)号：US20120082307A1
公开(公告)日：2012-04-05
申请号：US13377404
申请日：2010-06-15
申请人： Thomas Icart , Jean-Sebastien Coron
发明人： Thomas Icart , Jean-Sebastien Coron
IPC分类号： H04L9/28
CPC分类号： G06F7/725 , G06F2207/7261 , H04L9/3066
摘要： A cryptographic calculation includes obtaining a point P(X,Y) from a parameter t on an elliptical curve Y2=f(X); and from polynomials X1(t), X2(t), X3(t) and U(t) satisfying: f(X1(t)).f(X2(t)).f(X3(t))=U(t)2 in Fq, with q=3 mod 4. Firstly a value of the parameter t is obtained. Next, the point P is determined by: (i) calculating X1=X1(t), X2=X2(t), X3=X3(t) and U=U(t); (ii) if the term f(X1)·f(X2) is a square, then testing whether the term f(X3) is a square in Fq and if so calculating the square root of f(X3) in order to obtain the point P(X3); (iii) otherwise, testing whether the term f(X1) is a square and, if so, calculating the square root of f(X1) in order to obtain the point P(X1); (iv) otherwise, calculating the square root of f(X2) in order to obtain the point P(X2). This point P is useful in a cryptographic application.
摘要翻译：密码计算包括从椭圆曲线Y2 = f（X）上的参数t获得点P（X，Y）; 和（x（t））f（X3（t））= U（t（x） t）2，其中q = 3 mod 4.首先获得参数t的值。接下来，通过以下方式确定点P：（i）计算X1 = X1（t），X2 = X2（t），X3 = X3（t）和U = U（t）; （ii）如果术语f（X1）·f（X2）是一个平方，则测试f（X3）是否是Fq中的平方，如果是，则计算f（X3）的平方根，以获得点P（X3）; （iii）否则，测试术语f（X1）是否为平方，如果是，则计算f（X1）的平方根以获得点P（X1）; （iv）否则，计算f（X2）的平方根，以获得点P（X2）。这一点P在加密应用程序中很有用。

5. 发明申请

US20120045050A1 Apparatus and method for block cipher process for insecure environments 有权
标题翻译：用于不安全环境的块密码处理的装置和方法
公开(公告)号：US20120045050A1
公开(公告)日：2012-02-23
申请号：US12806768
申请日：2010-08-20
申请人： Augustin J. Farrugia , Thomas Icart , Mathieu Ciet
发明人： Augustin J. Farrugia , Thomas Icart , Mathieu Ciet
IPC分类号： H04L9/28
CPC分类号： H04L9/0631 , H04L2209/043 , H04L2209/16
摘要： Method and apparatus for increasing security of a cryptographic algorithm such as deciphering, enciphering, or a digital signature using a block type cipher such as AES implemented for instance in a “whitebox” model with the cipher key either known or unknown at the compilation time. This method is secure for use in entrusted environments, particularly for securing cryptographic keys. The look up tables characteristic of such algorithms are protected against attack here by making all such tables of the same size and indistinguishable, and further by masking the output values of such tables, typically where the tables carry out a permutation function or a logical exclusive OR operation.
摘要翻译：使用例如在“白盒”模式中实现的诸如AES之类的块类型密码的加密算法的安全性的加密算法的安全性的方法和装置，所述密码算法在编译时具有已知或未知的密码密钥。这种方法是安全的，用于委托环境，特别是用于保护加密密钥。这种算法特征的查找表可以通过使所有这些相同尺寸和不可区分的表格进行保护，防止这种攻击，并进一步通过掩蔽这些表的输出值，通常在表执行置换功能或逻辑异或操作。

6. 发明授权

US09189425B2 Protecting look up tables by mixing code and operations 有权
标题翻译：通过混合代码和操作来保护查找表
公开(公告)号：US09189425B2
公开(公告)日：2015-11-17
申请号：US13286117
申请日：2011-10-31
申请人： Augustin J. Farrugia , Benoit Chevallier-Mames , Bruno Kindarji , Mathieu Ciet , Thomas Icart
发明人： Augustin J. Farrugia , Benoit Chevallier-Mames , Bruno Kindarji , Mathieu Ciet , Thomas Icart
IPC分类号： G06F12/14 , G09C1/00 , H04L9/06
CPC分类号： G06F12/1408 , G09C1/00 , H04L9/0631 , H04L2209/16 , H04L2209/24
摘要： In the field of computer enabled cryptography, such as a cipher using lookup tables, the cipher is hardened against an attack by a protection process which obscures the lookup tables using the properties of bijective functions and applying masks to the tables' input and output values, for encryption or decryption. This is especially advantageous in a “White Box” environment where an attacker has full access to the cipher algorithm, including the algorithm's internal state during its execution. This method and the associated computing apparatus are useful for protection against known attacks on “White Box” ciphers, by obfuscating lookup table data, thereby increasing the cipher's complexity against reverse engineering and other attacks.
摘要翻译：在计算机启用密码学领域，例如使用查找表的密码，密码被针对使用双射函数的属性遮蔽查找表并且将掩码应用于表的输入和输出值的保护过程的攻击加强，用于加密或解密。这在“白盒”环境中特别有利，攻击者可以完全访问密码算法，包括算法的执行过程中的内部状态。该方法和相关联的计算装置对于通过模糊查找表数据来防止对“白盒”密码的已知攻击是有用的，从而增加了对逆向工程和其他攻击的密码复杂性。

7. 发明授权

US08966279B2 Securing the implementation of a cryptographic process using key expansion 有权
标题翻译：使用密钥扩展保护加密过程的实现
公开(公告)号：US08966279B2
公开(公告)日：2015-02-24
申请号：US12975123
申请日：2010-12-21
申请人： Augustin J. Farrugia , Benoit Chevallier-Mames , Mathieu Ciet , Thomas Icart , Bruno Kindarji
发明人： Augustin J. Farrugia , Benoit Chevallier-Mames , Mathieu Ciet , Thomas Icart , Bruno Kindarji
IPC分类号： G06F12/14 , H04L9/00 , H04L9/06
CPC分类号： H04L9/002 , H04L9/0631 , H04L2209/16 , H04L2209/24
摘要： In the field of computer enabled cryptography, such as a keyed block cipher having a plurality of rounds, the cipher is hardened against an attack by protecting the cipher key by means of a key expansion process which obscures the cipher and/or the round keys by increasing their lengths to provide an expanded version of the keys for carrying out encryption or decryption using the cipher. This is especially advantageous in a “White Box” environment where an attacker has full access to the cipher algorithm, including the algorithm's internal state during its execution. This method and the associated computing apparatus are useful where the key is derived through a process and so is unknown when the software code embodying the cipher is compiled. This is typically the case where there are many users of the cipher and each has his own key, or where each user session has its own key.
摘要翻译：在诸如具有多个回合的密钥分组密码的计算机启用密码学领域中，通过利用通过密钥扩展处理来保护密码密码来抵御攻击来加密密码，该密钥扩展过程掩盖了密码和/或循环密钥，增加其长度以提供用于使用密码进行加密或解密的密钥的扩展版本。这在“白盒”环境中特别有利，攻击者可以完全访问密码算法，包括算法的执行过程中的内部状态。该方法和相关联的计算装置在通过过程导出密钥是有用的，并且当体现密码的软件代码被编译时是未知的。通常情况下，密码的用户很多，每个用户都有自己的密钥，或者每个用户会话都有自己的密钥。

8. 发明授权

US08824670B2 Cryptography by parameterizing on elliptic curve 有权
标题翻译：椭圆曲线参数化加密
公开(公告)号：US08824670B2
公开(公告)日：2014-09-02
申请号：US13378329
申请日：2010-06-28
申请人： Thomas Icart , Herve Chabanne
发明人： Thomas Icart , Herve Chabanne
IPC分类号： G06F21/00 , H04L9/00 , H04L9/30 , H04L9/08
CPC分类号： H04L9/3066 , H04L9/005 , H04L9/0844 , H04L2209/08
摘要： A device is controlled by a controller on the basis of a password. A determination is made at the device or at the controller, on the basis of a random value r1, of a point P(X,Y) on an elliptic curve in a finite body Fq, q being an integer, according to: Ea,b(x, y):x3+ax+b=y2. First and second parameters k and k′ are obtained such that P(X,Y)=F(K,k′), where F is a surjective function of Fq×Fq, in Fq. The first and second parameters are obtained in an encrypted format by encryption in accordance with the password. The first and second encrypted parameters are then transmitted to the controller. During the control, the function F is used, such that, whatever the values of z and z′ which are input elements of Fq, F(z,z′) is a point on the elliptic curve and the input elements do not satisfy the equation.
摘要翻译：设备由密码控制器控制。根据Ea，根据有限体Fq中的椭圆曲线上的点P（X，Y），q为整数，根据随机值r1在装置或控制器处进行判定， b（x，y）：x3 + ax + b = y2。获得第一和第二参数k和k'，使得P（X，Y）= F（K，k'），其中F是Fq中的Fq×Fq的突出函数。第一和第二参数是按照密码通过加密获得的。然后将第一和第二加密参数发送到控制器。在控制期间，使用函数F，使得无论作为Fq的输入元素的z和z'的值如何，F（z，z'）是椭圆曲线上的点，并且输入元素不满足方程。

9. 发明授权

US08605894B2 Cryptographic process execution protecting an input value against attacks 有权
标题翻译：加密过程执行保护输入值免受攻击
公开(公告)号：US08605894B2
公开(公告)日：2013-12-10
申请号：US13271841
申请日：2011-10-12
申请人： Augustin J. Farrugia , Benoit Chevallier-Mames , Bruno Kindarji , Mathieu Ciet , Thomas Icart
发明人： Augustin J. Farrugia , Benoit Chevallier-Mames , Bruno Kindarji , Mathieu Ciet , Thomas Icart
IPC分类号： G06F21/00 , H04L9/06
CPC分类号： H04L9/0631 , H04L2209/043 , H04L2209/16
摘要： A cryptographic process (such as the AES cipher) which uses table look up operations (TLUs) is hardened against reverse engineering attacks intended to recover the table contents and thereby the cipher key. This hardening involves removing any one-to-one correspondence between the TLU inputs and outputs, by altering the output of the TLU dynamically, e.g. at each execution (call) of the TLU. This is done by increasing the size of the tables, applying a dynamically determined mask value to the table input and/or output, or using an inverse of the table.
摘要翻译：使用表查找操作（TLU）的加密过程（例如AES密码）被硬化以防止旨在恢复表内容和密码密钥的反向工程攻击。这种硬化包括通过动态地改变TLU的输出来例如TLU输入和输出之间的一对一的对应关系。在TLU的每次执行（调用）时。这是通过增加表的大小，将动态确定的掩码值应用于表输入和/或输出，或使用表的倒数完成的。

10. 发明申请

US20130061061A1 PROTECTING LOOK UP TABLES BY MIXING CODE AND OPERATIONS 有权
标题翻译：通过混合代码和操作来保护表格
公开(公告)号：US20130061061A1
公开(公告)日：2013-03-07
申请号：US13286117
申请日：2011-10-31
申请人： Augustin J. FARRUGIA , Benoit Chevallier-Mames , Bruno Kindarji , Mathieu Ciet , Thomas Icart
发明人： Augustin J. FARRUGIA , Benoit Chevallier-Mames , Bruno Kindarji , Mathieu Ciet , Thomas Icart
IPC分类号： G06F12/14
CPC分类号： G06F12/1408 , G09C1/00 , H04L9/0631 , H04L2209/16 , H04L2209/24
摘要： In the field of computer enabled cryptography, such as a cipher using lookup tables, the cipher is hardened against an attack by a protection process which obscures the lookup tables using the properties of bijective functions and applying masks to the tables' input and output values, for encryption or decryption. This is especially advantageous in a “White Box” environment where an attacker has full access to the cipher algorithm, including the algorithm's internal state during its execution. This method and the associated computing apparatus are useful for protection against known attacks on “White Box” ciphers, by obfuscating lookup table data, thereby increasing the cipher's complexity against reverse engineering and other attacks.
摘要翻译：在计算机启用密码学领域，例如使用查找表的密码，密码被针对使用双射函数的属性遮蔽查找表并且将掩码应用于表的输入和输出值的保护过程的攻击加强，用于加密或解密。这在白盒环境中特别有利，在这种情况下，攻击者可以完全访问密码算法，包括算法执行过程中的内部状态。该方法和相关联的计算装置对于通过模糊查找表数据来防止对白盒密码的已知攻击是有用的，从而增加了对逆向工程和其他攻击的密码复杂性。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式