专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明申请

WO2014106781A1 SECRETS RENEWABILITY 审中-公开
标题翻译：秘密可再生能力
公开(公告)号：WO2014106781A1
公开(公告)日：2014-07-10
申请号：PCT/IB2013/055658
申请日：2013-07-10
申请人： NDS LIMITED , KARA-IVANOV, Michael , KIPNIS, Aviad , REINMAN, Tzachy , MANGELL, Efraim , WAISBARD, Erez , BELENKY, Yaacov
发明人： KARA-IVANOV, Michael , KIPNIS, Aviad , REINMAN, Tzachy , MANGELL, Efraim , WAISBARD, Erez , BELENKY, Yaacov
IPC分类号： H04L9/08
CPC分类号： H04L9/0861 , H04L9/0869
摘要： A method, system and apparatus for deriving a secondary secret from a root secret are described, the method, system and apparatus including reserving a memory buffer included in an integrated circuit, the memory buffer being large enough to contain all of the bits which will include the secondary secret, receiving a plurality of bits from a root secret, the root secret being stored in a secure memory of the integrated circuit, inputting the plurality of bits from the root secret and at least one control bit into a permutation network, and thereby producing a multiplicity of output bits, the at least one control bit including one of one bit of a value g, and one bit an output of a function which receives g as an input, receiving the multiplicity of output bits from the permutation network, inputting the multiplicity of output bits from the permutation network into a plurality of logic gates, thereby combining the multiplicity of output bits, wherein a fixed number of bits is output from the logic gates, inputting the fixed number of bits output by the logic gates into an error correcting code module, the fixed number of bits output by the logic gates including a first group of intermediate output bits and a second group of intermediate output bits and receiving output bits from the error correcting code module, the output bits of the error correcting code module including the first group of intermediate output bits as changed by the error correcting code module, where the change depends on the second group of intermediate output bits, filling non-filled registers in the reserved memory buffer with the first group of intermediate output bits as changed by the error correcting code module, and repeating the steps of "receiving a plurality of bits from a root secret" through "filling non-filled registers in the reserved memory buffer" until the entire secondary secret is derived, wherein the steps of "receiving a plurality of bits from a root secret" through "filling non-filled registers in the reserved memory buffer" are performed in a single clock cycle of the integrated circuit. Related apparatus, methods and systems are also described.
摘要翻译：描述了用于从根秘密导出第二秘密的方法，系统和装置，所述方法，系统和装置包括保留包括在集成电路中的存储器缓冲器，所述存储器缓冲器足够大以包含将包括的所有位第二秘密，从根秘密接收多个比特，根秘密被存储在集成电路的安全存储器中，从根秘密输入多个比特和至少一个控制比特进入置换网络，从而产生多个输出比特，所述至少一个控制比特包括值g的一个比特中的一个，一个比特作为接收g作为输入的函数的输出，从置换网络接收多个输出比特，输入从置换网络到多个逻辑门的多个输出比特，从而组合多个输出比特，其中固定比特数从逻辑门，将由逻辑门输出的固定位数输入到纠错码模块中，逻辑门输出的固定位数包括第一组中间输出位和第二组中间输出位，并接收来自纠错码模块的输出位，纠错码模块的输出位包括由纠错码模块改变的第一组中间输出位，其中改变取决于第二组中间输出位，所述预留存储器缓冲器中的所述第一组中间输出位的补充寄存器被所述纠错码模块改变，并且重复“从根秘密接收多个位”的步骤，通过“将未填充寄存器保留的存储器缓冲器“，直到导出完整的二级秘密，其中”通过“不填入”从“根秘密接收多个比特” 在保留的存储器缓冲器中的n个填充寄存器“在集成电路的单个时钟周期中执行。还描述了相关装置，方法和系统。

2. 发明申请

WO2011151680A1 EFFICIENT MULTIVARIATE SIGNATURE GENERATION 审中-公开
标题翻译：有效的多重签名生成
公开(公告)号：WO2011151680A1
公开(公告)日：2011-12-08
申请号：PCT/IB2010/055810
申请日：2010-12-14
申请人： NDS LIMITED , KIPNIS, Aviad , SELLA, Yaron , BELENKY, Yaacov
发明人： KIPNIS, Aviad , SELLA, Yaron , BELENKY, Yaacov
IPC分类号： H04L9/32 , H04L9/30
CPC分类号： H04L9/30 , H04L9/0813 , H04L9/0819 , H04L9/0822 , H04L9/0825 , H04L9/0838 , H04L9/3073 , H04L9/3093 , H04L9/3247 , H04L2209/12
摘要： A cryptographic method and apparatus, including providing a public key that defines a multivariate polynomial mapping Q() over a finite field F, extracting a first vector Y of verification values from a message, computing over the first vector, using a processor, a digital signature X including a second vector of signature values such that application of the mapping to the digital signature gives a third vector Q(X) of output values such that each output value is equal to a corresponding element of a vector sum Y + aY SHIFT over F, wherein Y SHIFT is a shifted version of Y, and a ∈ F, and conveying the message with the digital signature to a recipient for authentication using the public key. Related methods, systems, and apparatus are also described.
摘要翻译：一种加密方法和装置，包括提供公共密钥，其在有限域F上定义多元多项式映射Q（），从消息中提取验证值的第一向量Y，使用处理器，数字签名X，其包括签名值的第二向量，使得对数字签名的映射的应用给出输出值的第三向量Q（X），使得每个输出值等于F上的向量和Y + aYSHIFT的对应元素其中YSHIFT是Y的移位版本，并且使用公钥将具有数字签名的消息传送给接收者进行认证。还描述了相关方法，系统和装置。

3. 发明申请

WO2004114587A1 DIGITAL CERTIFICATES 审中-公开
标题翻译：数字证书
公开(公告)号：WO2004114587A1
公开(公告)日：2004-12-29
申请号：PCT/IL2003/001108
申请日：2003-12-29
申请人： NDS LIMITED , BELENKY, Yaacov , SHEN-ORR, Chaim, D. , KIPNIS, Aviad , HALPERIN, Victor
发明人： BELENKY, Yaacov , SHEN-ORR, Chaim, D. , KIPNIS, Aviad , HALPERIN, Victor
IPC分类号： H04L09/00
CPC分类号： H04L9/302 , H04L9/3093 , H04L9/3263
摘要： A method for producing a certificate, the certificate including data, the method including choosing a seed s, the seed s including a result of applying a function H to the data, generating a key pair (E,D), such that E=F(s,t), F being a publicly known function, and including s and t in the certificate. Related methods, and certificates produced by the various methods, are also described.
摘要翻译：一种用于生成证书的方法，包括数据的证书，包括选择种子的方法，包括向数据应用函数H的结果的种子，生成密钥对（E，D），使得E = F （s，t），F是公知的功能，在证书中包括s和t。还描述了相关方法和由各种方法产生的证书。

4. 发明申请

WO2013128244A1 PREVENTION OF PLAYBACK ATTACKS USING OTP MEMORY 审中-公开
标题翻译：使用OTP内存防止回击攻击
公开(公告)号：WO2013128244A1
公开(公告)日：2013-09-06
申请号：PCT/IB2012/053074
申请日：2012-06-19
申请人： NDS LIMITED , BELENKY, Yaacov , SUMNER, Reuben
发明人： BELENKY, Yaacov , SUMNER, Reuben
IPC分类号： G06F21/24
CPC分类号： H04L9/3247 , G06F3/0679 , G06F21/64
摘要： A method for data security includes receiving, in a processor having a one-time programmable (OTP) memory, which includes multiple bits and has a current state defined by the bits of the OTP that have been programmed, new information to be written to a data memory. Based on the new information and the current state, at least one further bit of the OTP memory is selected to be programmed, thereby defining a new state of the OTP memory. A new digital signature is computed over the new information and the new state. The new information and the new digital signature are saved in the data memory. After saving the new information and the new digital signature in the data memory, the at least one further bit of the OTP memory is programmed, whereby the new state becomes the current state. Related apparatus and methods are also disclosed.
摘要翻译：一种用于数据安全的方法包括在具有一次可编程（OTP）存储器的处理器中接收包括多个位并具有由已被编程的OTP的位定义的当前状态的待写入的新信息数据存储器基于新信息和当前状态，选择OTP存储器的至少另外一个位进行编程，从而定义OTP存储器的新状态。对新信息和新状态计算新的数字签名。新的信息和新的数字签名被保存在数据存储器中。在将新信息和新的数字签名保存在数据存储器中之后，OTP存储器的至少另外一个位被编程，从而新的状态变为当前状态。还公开了相关的装置和方法。

5. 发明申请

WO2007113802A2 KEY MANAGEMENT SYSTEM 审中-公开
标题翻译：关键管理系统
公开(公告)号：WO2007113802A2
公开(公告)日：2007-10-11
申请号：PCT/IL2007/000387
申请日：2007-03-25
申请人： NDS LIMITED , SHEN-ORR, Chaim , HIBSHOOSH, Eliphaz , BELENKY, Yaacov , ICKOWICZ, Gabi
发明人： SHEN-ORR, Chaim , HIBSHOOSH, Eliphaz , BELENKY, Yaacov , ICKOWICZ, Gabi
IPC分类号： G06F21/24
CPC分类号： H04N7/162 , H04N5/913 , H04N21/4405 , H04N21/4408 , H04N21/4623 , H04N2005/91364
摘要： A key management method including receiving content scrambled with a first scrambling algorithm (FSA), determining whether to descramble the content according to a first rule and producing a first result, only if the first result indicates that the content should be descrambled, descrambling the content according to an FSA control word, determining whether to apply a second scrambling algorithm (SSA) according to a second rule and producing a second result, and only if the second result indicates that the SSA should be applied, applying the SSA, the applying the SSA including re-scrambling according to a SSA control word, wherein the FSA control word changes at an FSA control word change time, and the method also includes changing the SSA control word in lockstep fashion with the FSA control word, such that each change of the FSA control word causes a change of the SSA control word. Related methods and apparatus are also described.
摘要翻译：一种密钥管理方法，包括：接收利用第一加扰算法（FSA）加扰的内容，根据第一规则确定是否解密该内容并产生第一结果，只有当第一结果指示该内容应被解扰时，对该内容进行解扰根据FSA控制字，确定是否根据第二规则应用第二加扰算法（SSA）并产生第二结果，并且仅当第二结果指示应用SSA时，应用SSA，应用 SSA包括根据SSA控制字的重新加扰，其中FSA控制字以FSA控制字改变时间改变，并且该方法还包括以FSA控制字的锁定方式改变SSA控制字，使得每个改变 FSA控制字导致SSA控制字的改变。还描述了相关方法和装置。

6. 发明申请

WO2007113787A3 CERTIFICATE IMPLEMENTATION SYSTEM 审中-公开
公开(公告)号：WO2007113787A3
公开(公告)日：2007-10-11
申请号：PCT/IL2007/000092
申请日：2007-01-25
申请人： NDS LIMITED , BELENKY, Yaacov , SHEN-ORR, Chaim
发明人： BELENKY, Yaacov , SHEN-ORR, Chaim
IPC分类号： H04L9/00 , H04K1/00 , H04K1/02
摘要： A certificate for use in a secure communication system that employs a public-key infrastructure (PKI) scheme is disclosed. The certificate includes: a certificate field including an indication of identity of a secure device to which the certificate pertains, a certificate field including a public key, and at least one of the following certificate fields: a certificate field including a level of security of a timer used in the secure communication system, a certificate field including a level of security of a non-volatile memory (NVM) of the secure device, a certificate field including a level of implementation of export to another secure communication system, a certificate field including an identification of at least one encryption mode supported by the secure device, and a certificate field including a rendering type specification. Related apparatus and methods are also disclosed.

7. 发明申请

WO2007110852A3 REVOCATION LIST IMPROVEMENT 审中-公开
公开(公告)号：WO2007110852A3
公开(公告)日：2007-10-04
申请号：PCT/IL2006/001151
申请日：2006-10-03
申请人： NDS LIMITED , SHEN-ORR, Chaim , LEVY, Yaacov (Jordan) , BELENKY, Yaacov
发明人： SHEN-ORR, Chaim , LEVY, Yaacov (Jordan) , BELENKY, Yaacov
IPC分类号： H04L9/00
摘要： A method for enforcing use of certificate revocation lists [figure 4, CRL 14] in validating certificates, the lists being associated with a series of list generation indices such that each list is assigned one index which advances according to a time of generation of the list, the lists and the indices being cryptographically signed, the method including receiving one of the lists and an associated index as an identifier of the one list, checking the certificates against the list, associating each of the certificates, which have been checked against the list, with the index, receiving an enforcement generation index (EGI) associated with a latest list in us.e, storing the EGI as a last known EGI, and refusing performance of an action associated with a certificate if the one index of the one certificate is earlier in the series than the last known EGI. Related apparatus and methods are also included.

8. 发明申请

WO2007107976A3 PERIOD KEYS 审中-公开
公开(公告)号：WO2007107976A3
公开(公告)日：2007-09-27
申请号：PCT/IL2007/000083
申请日：2007-01-22
申请人： NDS LIMITED , BELENKY, Yaacov
发明人： BELENKY, Yaacov
IPC分类号： H04L9/00 , H04K1/00
摘要： A method for securing encryption keys is described, the method including providing a first device and a second device (110 and 120), the devices include secure and insecure hardware, generating in the secure hardware at least two period keys (150-165), generating in the secure hardware a plurality of session keys (170a-190a and 170b-190b), the session keys being stored in either the secure hardware or the insecure hardware, encrypting at least one of the plurality of session keys generated in the device according to a first of the two period keys (150-165) included in the secure hardware, encrypting at least one of the plurality of session keys (170a-190a and 170b-190b), generated according to a second of the two period keys (150-165), wherein the at least two period keys (150-165) included in the first device and the at least two period keys (150-165) included in the second device are periodically regenerated in order to produce new period keys (150-165), thereby rendering useless any session keys (170a-190a and 170b-190b) encrypted according to an old period key.

9. 发明申请

WO2011114197A1 DATA EXPANSION USING AN APPROXIMATE METHOD 审中-公开
标题翻译：数据扩展使用近似方法
公开(公告)号：WO2011114197A1
公开(公告)日：2011-09-22
申请号：PCT/IB2010/054257
申请日：2010-09-21
申请人： NDS LIMITED , BELENKY, Yaacov
发明人： BELENKY, Yaacov
IPC分类号： H04L9/08 , H04L9/30
CPC分类号： H04L9/3263 , H04L9/0897 , H04L9/3093
摘要： A method for computation is described, the method including configuring a processor to expand input seed values into respective output data values using an approximated expansion process such that the output data values are not guaranteed to satisfy a required output data criterion, selecting a seed value so that an output data value generated by the processor by application of the approximated expansion process to the selected seed value will yield an output data value that satisfies the required output data criterion, and storing the selected seed value in a non-volatile memory to be accessed by the processor. Related apparatus and systems are also described.
摘要翻译：描述了一种用于计算的方法，所述方法包括配置处理器以使用近似扩展处理将输入种子值扩展为相应的输出数据值，使得输出数据值不能保证满足所需的输出数据标准，从而选择种子值由处理器通过将所接近的扩展处理应用于选择的种子值而产生的输出数据值将产生满足所需输出数据准则的输出数据值，并将所选择的种子值存储在要访问的非易失性存储器中由处理器。还描述了相关装置和系统。

10. 发明申请

WO2006117775A3 NATIVE SCRAMBLING SYSTEM 审中-公开
公开(公告)号：WO2006117775A3
公开(公告)日：2006-11-09
申请号：PCT/IL2006/000367
申请日：2006-03-22
申请人： NDS LIMITED , SHEN-ORR, Chaim , HIBSHOOSH, Eliphaz , BELENKY, Yaacov , LEVY, Jordan
发明人： SHEN-ORR, Chaim , HIBSHOOSH, Eliphaz , BELENKY, Yaacov , LEVY, Jordan
IPC分类号： H04L9/00
摘要： A system for scrambling / descrambling packets of a stream of content, each packet having a must stay clear (MSC) section, the system including an input handler including a receiving module to receive the stream, a characteristic analyzer to analyze the stream in order to determine a data independent characteristic of each packet, and a scrambling / descrambling device operationally associated with the input handler (figure 1, unit 12), the scrambling / descrambling device (figure 1, unit 14) including a receiving module to receive the data independent characteristic for each packet from the input handler, and an Initial Value module to determine a Initial Value for each packet as a function of the data independent characteristic of one of the packets being processed, wherein the scrambling / descrambling device is adapted to scramble and/or descramble the packets based on the Initial Value and a Control Word. Related apparatus and methods are included.

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式