EP1034527A2 - Procede permettant de reduire l'encombrement de memorisation pour une premiere cle electronique et dispositif de codage et de decodage - Google Patents

Procede permettant de reduire l'encombrement de memorisation pour une premiere cle electronique et dispositif de codage et de decodage

Info

Publication number
EP1034527A2
EP1034527A2 EP98966766A EP98966766A EP1034527A2 EP 1034527 A2 EP1034527 A2 EP 1034527A2 EP 98966766 A EP98966766 A EP 98966766A EP 98966766 A EP98966766 A EP 98966766A EP 1034527 A2 EP1034527 A2 EP 1034527A2
Authority
EP
European Patent Office
Prior art keywords
key
permutation
blocks
identifier
permutations
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Withdrawn
Application number
EP98966766A
Other languages
German (de)
English (en)
Inventor
Jean Georgiades
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Siemens AG
Siemens Corp
Original Assignee
Siemens AG
Siemens Corp
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Siemens AG, Siemens Corp filed Critical Siemens AG
Publication of EP1034527A2 publication Critical patent/EP1034527A2/fr
Withdrawn legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0894Escrow, recovery or storing of secret information, e.g. secret key escrow or cryptographic key storage

Definitions

  • the invention relates to a method for reducing the storage space requirement for an electronic first key and an arrangement for encryption and decryption.
  • a "key” is understood to mean data that are to be kept secret and are to be used in particular in a cryptographic process.
  • An "attacker” is an unauthorized person with the goal of getting the key.
  • keys are each determined with lengths of several 100 bits.
  • a memory area of a computer or portable medium that is protected from an attack that is, a memory area that an attacker cannot read, is usually very small.
  • a length of a key of several 100 bits stored in such a protected memory area reduces free memory space within the protected memory area, so that relatively few such keys can be stored together.
  • the object of the invention is to provide a method for reducing the storage space requirement for an electronic key and an arrangement for encryption and decryption, the disadvantage described above being avoided.
  • a method for reducing the storage space requirement for an electronic first key with a predetermined length is specified, in which the first key contains a number of units corresponding to the predetermined length. Several units are combined into one block.
  • the first key is represented by several blocks, and a publicly accessible identifier is created from the first key by determining a permutation of the blocks and storing an index for this permutation as an electronic second key.
  • the index identifies the permutation after which the blocks of the first key have been exchanged.
  • a first position in the index can contain a number that describes the position to which the first block of the first key has been moved based on the permutation.
  • the second position of the index refers to the position (a block corresponds to a position) of the public identifier which represents the second block of the first key, etc.
  • the result of continuing this process until all blocks have been assigned is one Permutation number (PERM, see Fig. 3) that uniquely references the first key from the publicly accessible identifier.
  • the index can also be a shortened form of the permutation number. If n denotes the number of blocks, then (if all blocks are different in pairs) n! Possibilities to arrange the blocks. Blocks 1 to n can be arranged in different ways. Sorting the possibilities of the arrangement according to a given scheme (e.g. in a table) by size, whereby each block receives a number according to its position, you can determine the index by looking for the entry of the permutation number and its place within the arrangement (with reproducible order) is saved as an index (see example in Fig. 3 and Table 1).
  • the reduction in the storage space requirement for the first key results from the fact that only the second key is stored.
  • the second key comprises the index and therefore requires significantly less storage space than the first key.
  • the storage space requirement for the second key is preferably determined by the number of possible permutations.
  • the created identifier can be made publicly accessible, so it does not have to be stored in a protected memory area. An attacker who learns of this identifier, even if he knows the block size, has n! Possibilities (n is the number of blocks) to determine the first key from the identifier. In practice, such an attempt is extremely unlikely to succeed.
  • a further development consists in the blocks each comprising an equal number of units. It is also a further development that one of the following units is used: a) number; b) alphanumeric character; c) byte; d) bit.
  • the second key is stored in a protected memory area, preferably on a chip card.
  • Storage area provides.
  • the protected memory area ensures that data contained there cannot be easily read by an attacker. Since the available storage space in the protected storage area is generally small, it is a significant advantage if a key to be stored in the protected storage area is reduced in length without having to accept a reduced security of the cryptographic method.
  • Permutation of the blocks is determined by carrying out the following steps: A permutation is randomly determined from all possible permutations, the permutations being created according to a specific scheme and thus an order of the permutations created can be reproduced. The index then determines a place for the permutation within the sequence of the permutations.
  • the Blocks swapped and saved as a publicly accessible identifier.
  • a third key is determined on the basis of the second key, this third key being equal to the first key.
  • the public identifier is divided into blocks, each block comprising several units of the identifier.
  • a third key is determined from the identifier and the second key, in that all possible permutations of the blocks, which are reproducibly created in their sequence, and the permutation among the permutations that represents the third key is determined using the second key.
  • the index (second key) is used for addressing within the sequence of the permutations, so that the associated permutation with the publicly accessible identifier defines a third key which is the same as the first key.
  • the second key is a secret key and is protected
  • Memory area e.g. a chip card.
  • an arrangement for encryption and decryption is also specified with a medium which has a protected memory area and with a
  • Computing unit which is set up in such a way that a first key is shortened in accordance with the steps of the method described above.
  • the medium is preferably a portable medium, for example a chip card.
  • the protected memory area can be stored both on the medium and within a computer, which is connected, for example, in a network with other computers.
  • the protected memory area should be sufficiently secure against unauthorized access. This ensures suitable mechanisms, for example reading the protected
  • FIG. 1 shows a sketch which represents a method for reducing the storage space requirement for an electronic first key
  • FIG. 2 shows a sketch which represents a method for restoring the first key from the publicly accessible identifier and the second key
  • a computing unit 1 shows a method for reducing the storage space requirement for an electronic first key.
  • the first key is divided into blocks, the blocks each containing an equal number of units. Such units are preferably numbers, alphanumeric characters, bytes or bits.
  • a permutation is randomly determined from all permutations of the blocks that are reproducible in their order. This random permutation is used as a publicly available identifier. From the order of the blocks corresponding to this permutation, it is extremely unlikely that the first key will be restored if the first key is provided with a suitable number of units. The selected permutation has a certain place within the order of all permutations (order reproducible) (see step 103).
  • the index is stored as a second key. The second key is stored in a protected memory area.
  • step 201 shows steps of a method for restoring the first key from the publicly accessible identifier with the second key.
  • a step 201 reproducible permutations of the blocks of the identifier are determined from the identifier.
  • a permutation among the permutations is determined as a third key (see step 202).
  • the third key is equal to the first key (see step 203). The first key that was mapped in a second key to reduce storage space is thus restored.
  • Fig. 3 illustrates the relationships.
  • the first key Kl "1234567890” comprises several units UNIT “1", “2", “3”, “4", “5", “6", “7”, “8”, “9”, “0” which are each represented by an alphanumeric character.
  • a step 301 the first key K1 is subdivided into blocks BL “1 2", “3 4", “5 6", “7 8", “9 0”, each of which comprises two units EINH.
  • a next step 302 determines a random combination of the blocks BL to form an identifier KEN "3478129056", which can be publicly accessible.
  • a step 303 represents a permutation number PERM "24153" which uniquely converts the identifier KEN into the first key K1.
  • the permutation number PERM maps the identifier KEN to the first key, in that the first digit of the permutation number PERM "2" is the first digit of the identifier KEN "3 4" based on blocks of two units and this block as the second block of the first key Kl identifies. The second digit of the identifier KEN "7 8" is therefore the fourth digit of the first key K1, etc. After complete assignment, the permutation number clearly results in the first key K1 to "1234567890".
  • a further assignment results in a representation of the first key K1 that is significantly shortened in relation to the length of the permutation number PERM.
  • a place in this order is determined from the permutation number PERM based on the sequence of all permutations that have the same number of digits as the permutation number PERM using table 1.
  • Sorting the possible permutations according to size results in a clear order of all permutations (from 0 to n! -L) (see table 1 as a section of the first 47 options).
  • the entry is determined in a step 305 which references the permutation number PERM in the table LISTE.
  • the 37th entry in Table 1 (LIST in Fig. 3) is equal to the permutation number PERM. Accordingly, the 37th entry, ie the character string “037”, is stored as the second key K2.
  • the second key K2 has a significantly reduced length compared to the first key Kl.
  • the second key K2 is preferably protected Storage area filed.
  • the size of the second key K2 is determined by the number of possible permutations. If n is the number of blocks BL into which the first key K1 is divided, the number of possibilities for "n! Results. Here in the example there are 5 blocks, i.e. 120
  • the second key K2 is three digits ("000" to "119") in decimal notation, but only 7 bits in binary notation.
  • the first key Kl comprises several 100 bits
  • Table 1 mainly serves to illustrate the basic procedure.
  • the number of blocks n is usually large, so that the assignment described, indicated by Table 1, is preferably carried out according to a specific scheme. Such a scheme will be explained below.
  • T position of the read number from list L 3.
  • k k + (T-l) * (n-s)!
  • the s-th block of the permuted key is the block of the secret key located at (E + 1) -th position of the list L 5.
  • the (E + l) th entry in list L is deleted, subsequent entries move forward by one position
  • 3rd R 0 4th 4th block of the permuted key is the 2nd position of the
  • the permutation is: 2,4,1,5,3 3 that the identifier K2 can be determined from the PERM permutation and vice versa the PERM permutation can be determined from the identifier K2.
  • the LIST block ensures an allocation of the location of the PERM permutation within the set of all permutations of the same length, the permutations being sorted according to size.
  • FIG. 1 An arrangement for encryption and decryption is shown in FIG. 1
  • a portable medium 401 preferably a chip card, comprises a (conventional) memory area MEM 403 and a protected memory area SEC 402
  • Interface IFC 404 data is exchanged between the medium 401 and a computer network 406 via a channel 405.
  • the computer network 406 comprises a plurality of computers which are connected to one another and communicate with one another. Data for the operation of the portable medium 401 are preferably available distributed in the computer network RN 406.
  • the protected memory area 402 is designed to be unreadable.
  • the data of the protected memory area 402 is used on the basis of a computing unit which is accommodated on the portable medium 401 or in the computer network 406. As a result, a comparison operation can indicate whether or not a comparison of an entry with a key in the protected memory area 402 was successful.
  • a computing unit 501 is shown in FIG.
  • the arithmetic unit 501 comprises a processor CPU 502, a memory 503 and an input / output interface 504, which is used in different ways via an interface 505 led out of the arithmetic unit 501: an output on a monitor 507 is visible via a graphics interface and / or printed out on a printer 508. A Input takes place via a mouse 509 or a keyboard 510.
  • the computing unit 501 also has a bus 506, which ensures the connection of memory 503, processor 502 and input / output interface 504. It is also possible to connect additional components to bus 506: additional memory, hard disk, etc.

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Storage Device Security (AREA)
  • Credit Cards Or The Like (AREA)

Abstract

Pour réduire l'encombrement de mémorisation pour une clé secrète, celle-ci est subdivisée en blocs, les blocs sont permutés et un index connecté à la permutation est conservé en mémoire. L'index est considérablement raccourci par rapport à la clé. Inversement, la clé secrète peut être retrouvée à partir de l'index en déterminant la permutation dans l'index. La clé secrète est déterminée au moyen des blocs permutés non maintenus secrets et de la permutation. L'invention concerne en outre un dispositif, par exemple une carte à puce, destiné à effectuer le codage et le décodage.
EP98966766A 1997-12-01 1998-11-25 Procede permettant de reduire l'encombrement de memorisation pour une premiere cle electronique et dispositif de codage et de decodage Withdrawn EP1034527A2 (fr)

Applications Claiming Priority (5)

Application Number Priority Date Filing Date Title
DE19753274 1997-12-01
DE19753274 1997-12-01
DE19801776 1998-01-19
DE19801776 1998-01-19
PCT/DE1998/003470 WO1999028887A2 (fr) 1997-12-01 1998-11-25 Procede permettant de reduire l'encombrement de memorisation pour une premiere cle electronique et dispositif de codage et de decodage

Publications (1)

Publication Number Publication Date
EP1034527A2 true EP1034527A2 (fr) 2000-09-13

Family

ID=26042074

Family Applications (1)

Application Number Title Priority Date Filing Date
EP98966766A Withdrawn EP1034527A2 (fr) 1997-12-01 1998-11-25 Procede permettant de reduire l'encombrement de memorisation pour une premiere cle electronique et dispositif de codage et de decodage

Country Status (4)

Country Link
EP (1) EP1034527A2 (fr)
JP (1) JP2001525624A (fr)
CA (1) CA2312358A1 (fr)
WO (1) WO1999028887A2 (fr)

Families Citing this family (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
DE10158393A1 (de) 2001-11-28 2003-06-12 Infineon Technologies Ag Speicher für die Zentraleinheit einer Rechenanlage, Rechenanlage und Verfahren zum Synchronisieren eines Speichers mit dem Hauptspeicher einer Rechenanlage

Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP0695997A2 (fr) * 1994-08-01 1996-02-07 AT&T Corp. Méthodes pour réaliser un accès protégé à des informations partagées
US5533123A (en) * 1994-06-28 1996-07-02 National Semiconductor Corporation Programmable distributed personal security

Family Cites Families (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
FR2596177B1 (fr) * 1986-03-19 1992-01-17 Infoscript Procede et dispositif de sauvegarde qualitative de donnees numerisees
US5003596A (en) * 1989-08-17 1991-03-26 Cryptech, Inc. Method of cryptographically transforming electronic digital data from one form to another
JP3053527B2 (ja) * 1993-07-30 2000-06-19 インターナショナル・ビジネス・マシーンズ・コーポレイション パスワードを有効化する方法及び装置、パスワードを生成し且つ予備的に有効化する方法及び装置、認証コードを使用して資源のアクセスを制御する方法及び装置
KR19990035965A (ko) * 1995-07-27 1999-05-25 맥클린토크 샤운 엘 은폐된 작업인자를 가진 암호시스템

Patent Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5533123A (en) * 1994-06-28 1996-07-02 National Semiconductor Corporation Programmable distributed personal security
EP0695997A2 (fr) * 1994-08-01 1996-02-07 AT&T Corp. Méthodes pour réaliser un accès protégé à des informations partagées

Also Published As

Publication number Publication date
WO1999028887A2 (fr) 1999-06-10
JP2001525624A (ja) 2001-12-11
CA2312358A1 (fr) 1999-06-10
WO1999028887A3 (fr) 1999-07-29

Similar Documents

Publication Publication Date Title
DE69205425T2 (de) Gesichertes verfahren zum laden von mehrfachen anwendungen in einer mikroprozessor-speicherkarte.
DE69430339T2 (de) Verfahren zur Dateiunterschrift und Einrichtung für seine Durchführung
EP1246043B1 (fr) Procédé de transfert de données sur un bus de données
DE3811378C3 (de) Informationsaufzeichnungssystem
DE69320900T2 (de) IC-Karte mit hierarchischer Dateienstruktur
DE68915186T2 (de) Tragbarer elektronischer Apparat.
DE69027377T2 (de) Verfahren zur Ausarbeitung einer unregelmässigen Vertauschung von mittels Verschlüsselung geschützten Daten
WO2001006341A1 (fr) Dispositif de traitement de donnees
EP1618519A2 (fr) Procede pour traiter des donnees
DE19621768B4 (de) Telefon mit Aufnahmevorrichtung für eine Telefonspeicherkarte und Verfahren zum Übertragen von Daten einer Telefonspeicherkarte
EP3889806B1 (fr) Système de classification des données basé sur les séquences de bits
DE3809795A1 (de) Informationsuebertragungssystem unter verwendung von ic-karten
DE3586447T2 (de) Kompression von binaerzahlen fuer ihre speicherung.
DE69512175T2 (de) Verfahren und vorrichtung zur erzeugung eines gemeinsamen schlüssels in zwei vorrichtungen für die durchführung einer gemeinsamen verschlüsselungsprozedur
DE69729685T2 (de) Verfahren zur Verdeckung eines Geheimcodes in einer Rechnerbeglaubigungsvorrichtung
EP1163776B1 (fr) Procede pour rendre anonymes des donnees sensibles
DE10124139A1 (de) Verfahren und Vorrichtung zur Sicherung der Datenübertragung zwischen einem Zentralprozessor und einem Speicher
DE60114299T2 (de) Verfahren und Vorrichtung zum Übersetzen von IP Telekommunikationsnetzwerkadressen mit einem gesteuerten undichten Speicher
DE19962902A1 (de) Vorrichtung zum Passwort-geschützten Handhaben eines elektronischen Dokuments
EP1034527A2 (fr) Procede permettant de reduire l'encombrement de memorisation pour une premiere cle electronique et dispositif de codage et de decodage
DE102023106510A1 (de) Verfahren zum Durchsuchen von sensiblen Dokumenten und System hierzu
DE69904696T2 (de) System und verfahren zur sicheren verwaltung von rechneranwendungen
DE10323755B3 (de) Verfahren zum Bereitstellen und Abrufen von Dokumenten über ein Computer-Netzwerk
DE60315435T2 (de) Verfahren zur ermöglichung einer kommunikation zwischen mindestens zwei kommunikationsgeräten
DE60126583T2 (de) Verfahren und Vorrichtung zur automatischen Chiffrierung/Dechiffrierung in einem sicheren Kommunikationssystem

Legal Events

Date Code Title Description
PUAI Public reference made under article 153(3) epc to a published international application that has entered the european phase

Free format text: ORIGINAL CODE: 0009012

17P Request for examination filed

Effective date: 20000417

AK Designated contracting states

Kind code of ref document: A2

Designated state(s): DE FR GB SE

17Q First examination report despatched

Effective date: 20020919

STAA Information on the status of an ep patent application or granted ep patent

Free format text: STATUS: THE APPLICATION IS DEEMED TO BE WITHDRAWN

18D Application deemed to be withdrawn

Effective date: 20030731