中科微点-全球专利检索

  1. Login
  2. Sign Up

Search Results

156 records (took 0.027 seconds)

    유사 난수 생성 방법
    123.
    发明公开
    유사 난수 생성 방법 审中-实审
    用于生成伪随机数的方法

    公开(公告)号:KR1020160108952A

    公开(公告)日:2016-09-21

    申请号:KR1020150032447

    申请日:2015-03-09

    Applicant: 한국전자통신연구원

    Inventor: 이승광 최두호

    IPC: G06F7/58 H04L9/06

    CPC classification number: G06F7/582 H04L9/0631

    Abstract: 본발명은유사난수를생성하는방법및 그장치에관한것으로, 본발명의일 실시예에따른유사난수생성방법은, 비선형변환을위한비선형룩업테이블을생성하는단계; 가역선형변환을위한가역행렬을생성하는단계; 고급암호표준(AES: advanced encryption standard) 암호알고리즘에따라일부라운드를수행하여중간결과값을계산하는단계; 상기결과값을상기비선형룩업테이블을이용하여비선형변환을수행하는단계; 및상기비선형변환된값을상기가역행렬을이용하여가역선형변환을수행하여유사난수를생성하는단계를포함할수 있다. 본발명의일 실시예에따르면, AES 라운드중간값에비선형변환및 가역행렬을이용한선형변환을적용하여, 유사난수의생성속도를높일수 제공할수 있다.

    Abstract translation: 本发明涉及一种用于产生伪随机数的方法及其装置。 根据本发明的一个实施例,用于产生伪随机数的方法包括以下步骤:创建用于非线性变换的非线性查找表; 创建可逆矩阵进行可逆线性变换; 通过根据高级加密标准(AES)加密算法执行一些轮次来计算中间结果值; 使用非线性查找表对结果值执行非线性变换; 以及通过使用可逆矩阵对非线性变换值执行可逆线性变换来创建伪随机数。 根据本发明的一个实施例,基于非线性变换和可逆矩阵将线性变换应用于AES循环中间值,从而可以增加创建伪随机数的速率。

    부채널 신호 수집 장치 및 그것을 포함하는 부채널 분석 시스템의 동작 방법
    124.
    发明公开
    부채널 신호 수집 장치 및 그것을 포함하는 부채널 분석 시스템의 동작 방법 审中-实审
    用于收集侧通道的装置和具有装置的侧通道分析系统的方法

    公开(公告)号:KR1020160033506A

    公开(公告)日:2016-03-28

    申请号:KR1020140124502

    申请日:2014-09-18

    Applicant: 한국전자통신연구원

    Inventor: 최용제 최두호

    IPC: G06K17/00 G06K19/07

    CPC classification number: G06F21/556 G09C1/00 H04L9/003 H04L2209/12 H04L2209/80 G06K7/10297 H04L9/002

    Abstract: 비접촉식디바이스의부채널신호를수집하는기술이개시된다. 본발명의일 면에따른부채널신호수집장치는소정간격만큼떨어진비접촉식디바이스에전원을공급하고, 캐리어신호를송신하는리더, 상기전원을공급받아동작하는상기비접촉식디바이스에서상기캐리어신호에대응하여발생하는신호에서부채널신호를추출하는신호추출부, 및추출된상기부채널신호를상기리더에서생성되는트리거신호에동기화하여샘플링하는신호수집부를포함하되, 상기신호추출부는상기리더로부터수신되는캐리어신호의세기에따라기 설정된위치에서, 상기비접촉식디바이스에서발생하는신호를수신하는것이다.

    Abstract translation: 公开了一种用于收集非接触式装置的侧向信道信号的技术。 根据本发明的一个方面,一种用于收集侧信道信号的装置包括:读取器,其在与读取器分开放置一定距离处的非接触设备上提供电力,并发送载波信号; 信号提取单元,其通过接收功率而操作的非接触式设备中的载波信号产生的信号中提取侧信道信号; 以及信号采集单元,其将提取的侧声道信号与由读取器产生的触发信号同步,并执行侧声道信号的采样。 信号提取单元根据从读取器接收到的载波信号的强度在预定位置接收在非接触式设备中产生的信号。 本发明的目的是提供一种使载波信号最小化并有效地收集非接触式装置的侧信道信号的技术。

    부채널 분석 시스템 및 그 방법
    125.
    发明公开
    부채널 분석 시스템 및 그 방법 审中-实审
    使用相同的通道分析系统和侧面通道分析方法

    公开(公告)号:KR1020150136337A

    公开(公告)日:2015-12-07

    申请号:KR1020140063687

    申请日:2014-05-27

    Applicant: 한국전자통신연구원

    Inventor: 김주한 최두호 최용제

    IPC: H04K1/00

    CPC classification number: H04L9/003 G09C1/00 H04L2209/12

    Abstract: 본발명은스마트폰과같이전용부채널분석보드가없는기기에대해부채널분석을수행할수 있도록한 부채널분석시스템및 방법에관한것으로, 상기시스템은, 부채널분석을위한제어신호를출력하는한편, 수신되는측정신호를바탕으로부채널분석하는부채널분석장치; 상기부 채널분석장치로부터제공되는제어신호에따라, 부채널측정을위해광 신호의발생과암호화기능을수행하는분석대상장치; 상기분석대상장치에서발생되는광 신호를검출하여검출된광 신호에따라트리거신호를생성하여출력하는광센서모듈; 및상기광 센서모듈로부터출력되는트리거신호를이용하여상기분석대상장치의암호화동작에따라발생되는적어도하나이상의신호들의파형을측정하여, 상기부채널분석장치로제공하는신호측정장치를포함한다.

    Abstract translation: 侧信道分析系统及其方法技术领域本发明涉及一种侧信道分析系统及其方法,所述侧信道分析系统可以对没有如智能电话的专用侧信道的分析板的设备进行侧信道分析。 本发明的侧信道分析系统包括:侧信道分析装置,用于在输出用于分析侧信道的控制信号的同时基于接收的测量信号分析侧信道; 分析目标装置,用于根据从侧信道分析装置提供的控制信号执行产生和编码用于测量侧信道的光信号的功能; 光传感器模块,用于检测从分析目标装置产生的光信号,以根据检测到的光信号产生并输出触发信号; 以及信号测量装置,用于通过使用从光学传感器模块输出的触发信号来测量根据分析对象装置的编码操作产生的至少一个信号的波形,并将其提供给侧信道分析装置。

    부 채널 분석을 위한 범용 트리거 발생 장치
    126.
    发明公开
    부 채널 분석을 위한 범용 트리거 발생 장치 审中-实审
    触发信号生成用于信道分析的装置

    公开(公告)号:KR1020150085980A

    公开(公告)日:2015-07-27

    申请号:KR1020140006028

    申请日:2014-01-17

    Applicant: 한국전자통신연구원

    Inventor: 최용제 최두호 조현숙

    IPC: G06F21/55 G06F21/70

    Abstract: 본발명은별도의트리거신호의생성이어려운보안임베디드시스템의부채널보안성테스트시부 채널신호수집을용이하게수행할수 있도록한 부채널분석을위한범용트리거발생장치에관한것으로서, 상기장치는, 보안임베디드시스템에서암호화연산을통해측정되는부 채널신호에대하여패턴샘플링하는패턴샘플링부; 및상기패턴샘플링부를통해샘플링된데이터와호스트 PC로부터제공되는트리거기준신호의상관계수연산을수행하고, 연산된상관계수값을기설정된기준값과비교하여연산된상관계수값이기준값을초과하는경우부 채널분석을위한트리거신호를발생하여파형측정장치로제공하는상관계수연산부를포함한다.

    Abstract translation: 本发明涉及用于子信道分析的通用触发发生器。 当安全嵌入式系统中的子信道的安全性难以产生单独的触发信号时,通用触发发生器使得能够容易地收集子信道信号。 该装置包括:模式采样单元,其通过安全嵌入式系统中的密码操作测量的子信道信号执行模式采样操作; 以及相关系数计算单元,其执行从主PC提供的触发参考信号和由模式采样单元采样的数据的相关系数计算单元,将计算出的相关系数值与预设参考值进行比较,并产生触发信号 用于子信道分析,并且当相关系数值超过参考值时,将触发信号发送到波形测量装置。

    블록 암호화 처리 방법 및 장치
    127.
    发明公开
    블록 암호화 처리 방법 및 장치 审中-实审
    用于块加密算法的方法和装置

    公开(公告)号:KR1020140116725A

    公开(公告)日:2014-10-06

    申请号:KR1020130031652

    申请日:2013-03-25

    Applicant: 한국전자통신연구원

    Inventor: 이승광 최두호 김태성 최용제 오경희 김주한

    IPC: H04L9/06 H04L9/28

    CPC classification number: H04L9/003 H04L9/0631 H04L2209/08 H04L2209/125

    Abstract: The present invention relates to a method and an apparatus to process block encryption. The disclosed method to process block encryption comprises the steps of: generating an OPc divided value, an RAND divided value, and an S divided value by dividing an OPc generated by encrypting an OP via a block algorithm, a random number RAND and a random number S by the preset byte unit; determining a sequence of a process using the RAND divided value and a process using the S divided value and the OPc divided value; sequentially performing a logic operation between the RAND divided value and the OPc divided value, and a logic operation between the S divided value and the OPc divided value in accordance to the determined sequence; sequentially performing block encryption for a value resulted from the logic operation between the RAND divided value and the OPc divided value, and a value resulted from the logic operation between the S divided value and the OPc divided value in accordance to the determined sequence; and eliminating the block encryption result of the value resulted from the logic operation between the S divided value and the OPc divided value, and outputting the block encryption result of the value resulted from the logic operation between the RAND divided value and the OPc divided value. The present invention, performs in multiple times, an exclusive logic operation between the OPc value and the random number RAND and performs the logic operation and the encryption process using the random number RAND, and the logic operation and the encryption process using the random number S in accordance to an arbitrary sequence, thereby increasing the attack complexity to calculate a correlation coefficient at some point of a power consumption waveform when a correlation power analysis is performed effectively defending against a correlation power analysis attack.

    Abstract translation: 本发明涉及一种处理块加密的方法和装置。 所公开的处理块加密的方法包括以下步骤:通过将通过块算法加密生成的OPc,随机数RAND和随机数除以产生的OPc,生成OPc划分值,RAND分割值和S分割值 S以预设字节单位; 使用所述RAND分割值确定处理的序列,以及使用所述S分割值和所述OPc分割值的处理; 根据所确定的顺序顺序地执行RAND分割值和OPc分割值之间的逻辑运算以及S分割值与OPc分割值之间的逻辑运算; 根据所确定的顺序对由RAND分割值和OPc分割值之间的逻辑运算产生的值以及由S分割值和OPc分割值之间的逻辑运算产生的值进行顺序执行块加密; 并且消除由S分割值和OPc分割值之间的逻辑运算导致的值的块加密结果,并输出由RAND分割值和OPc分割值之间的逻辑运算产生的值的块加密结果。 本发明多次执行OPc值和随机数RAND之间的异或逻辑运算,并使用随机数RAND执行逻辑运算和加密处理,并使用随机数S的逻辑运算和加密处理 从而提高攻击的复杂度,以便在相对功率分析进行有效防御相关功率分析攻击时计算功耗波形的某一点的相关系数。

    사이버 공격 탐지 장치 및 방법
    128.
    发明公开
    사이버 공격 탐지 장치 및 방법 审中-实审
    用于检测圆锥体目标攻击的方法和装置

    公开(公告)号:KR1020140077405A

    公开(公告)日:2014-06-24

    申请号:KR1020120146176

    申请日:2012-12-14

    Applicant: 한국전자통신연구원

    Inventor: 김태성 최두호

    IPC: G06F21/00 G06F9/30

    CPC classification number: G06F9/30 G06F21/00

    Abstract: A cyber target attack is not prevented by the signature-based detection of an existing security system because an unknown weakness is attacked. Moreover, a damaged system does not recognize damage since an attack is slowly performed over a long time to incapacitate a system for sensing abnormal traffic. The present invention provides technology to detect the cyber target attack which attacks the system over a long time by using the unknown weakness. The present invention provides the technology to detect the attack by comparing the similarity of a previously stored normal operation with information by storing the information after the information is received from various sources of an information system.

    Abstract translation: 基于签名的现有安全系统的检测不会阻止网络目标攻击,因为未知的弱点被攻击。 此外,损坏的系统不会识别损坏,因为长时间缓慢执行攻击以使系统无法识别异常流量。 本发明提供了通过使用未知弱点来检测长时间攻击系统的网络目标攻击的技术。 本发明提供了一种通过将从先前存储的正常操作的相似性与信息进行比较来检测攻击的技术,该信息通过从信息系统的各种来源接收信息之后存储信息。

    부채널 분석 장치 및 방법
    129.
    发明公开
    부채널 분석 장치 및 방법 审中-实审
    用于提供侧面通道分析的方法和装置

    公开(公告)号:KR1020140077404A

    公开(公告)日:2014-06-24

    申请号:KR1020120146175

    申请日:2012-12-14

    Applicant: 한국전자통신연구원

    Inventor: 김태성 최두호

    IPC: H04L12/22 H04L9/14

    Abstract: Verification of a side channel takes a very long time because of an amount of data and the number of analyzing candidate keys. When an equipment manufacturer verifies safety of equipment of the company or an evaluation institution receives a request of safety verification of the equipment and evaluates the equipment, since a key of the equipment is previously known, an entire verification time may be reduced by using the key. According to the present invention, the verification is divided into two steps where, in the first step, the number of candidate keys is reduced to perform the verification and, in the second step, a size of a waveform is reduced to perform the verification, so that the entire verification time can be reduced.

    Abstract translation: 侧面通道的验证需要很长时间,因为数据量和分析候选键的数量。 当设备制造商验证公司设备的安全性或评估机构接收设备的安全验证请求并对设备进行评估时,由于设备的密钥以前是已知的,所以可以通过使用密钥来减少整个验证时间 。 根据本发明,验证分为两个步骤,其中在第一步骤中减少候选密钥的数量以执行验证,并且在第二步骤中减小波形的大小以执行验证, 从而可以减少整个验证时间。

    피분석 장치에 대한 오류 주입 제어 장치 및 그 방법
    130.
    发明公开
    피분석 장치에 대한 오류 주입 제어 장치 및 그 방법 审中-实审
    将智能卡注入故障的设备计算及其方法

    公开(公告)号:KR1020140068445A

    公开(公告)日:2014-06-09

    申请号:KR1020120135944

    申请日:2012-11-28

    Applicant: 한국전자통신연구원

    Inventor: 오경희 최용제 김태성 최두호 김주한 이승광

    IPC: G06F21/00 G06F11/30

    Abstract: An apparatus for controlling injection of an error into a controlled device and a method thereof are disclosed. An apparatus for controlling injection of an error according to an embodiment of the present invention includes: an error injecting unit which injects a predetermined error into a controlled device to cause the controlled device to generate error information; a controlled device state sensing unit which senses whether the controlled device is in an inoperable state; and a control unit which extracts secret information of the controlled device using the error information generated by the controlled device, and initializes the controlled device when it is sensed that the controlled device is in an inoperable state. The apparatus additionally includes a communication control unit which provides the control unit with the error information generated by the controlled device and initializes the controlled device using an initialization command received from the control unit. Therefore, a process of repeated error injection and information extraction can be automated to minimize user intervention, thereby improving user convenience.

    Abstract translation: 公开了一种用于控制将误差注入受控装置的装置及其方法。 根据本发明的实施例的用于控制错误的注入的装置包括:错误注入单元,其将预定的错误注入到受控设备中,以使受控设备产生错误信息; 受控设备状态感测单元,其感测受控设备是否处于不可操作状态; 以及控制单元,其使用由受控设备生成的错误信息来提取受控设备的秘密信息,并且当感测到受控设备处于不可操作状态时初始化受控设备。 该装置还包括通信控制单元,其向控制单元提供由受控设备生成的错误信息,并使用从控制单元接收的初始化命令来初始化受控设备。 因此,重复错误注入和信息提取的过程可以自动化以最小化用户干预,从而提高用户便利性。

Patent Agency Ranking