-
公开(公告)号:KR1020040040784A
公开(公告)日:2004-05-13
申请号:KR1020020069035
申请日:2002-11-08
Applicant: 한국전자통신연구원
IPC: G06F1/00
CPC classification number: H01R13/641
Abstract: PURPOSE: A portable USB(Universal Serial Bus) storage is provided to increase usability, mobility, convenience by making an USP port put in the inside of an external case without a cap for protecting the USB port. CONSTITUTION: A data storage is embedded into the external case(11). The USB port(12) is slid/installed into the inside of the external case. A controlling tool(13) selectively controls the reception of the USB port. The controlling tool comprises a controlling switch(16) performing the seesaw movement, a stopper(18), and an elastic part(19) restoring the received USB port by installing between the external case and the USB port.
Abstract translation: 目的:提供便携式USB(通用串行总线)存储,以通过将USP端口放在外部外壳的内部而没有用于保护USB端口的盖来提高可用性,移动性和便利性。 构成:数据存储器嵌入到外壳(11)中。 USB端口(12)滑入/安装到外壳的内部。 控制工具(13)有选择地控制USB端口的接收。 控制工具包括执行跷跷板运动的控制开关(16),止动器(18)和弹性部件(19),通过安装在外壳和USB端口之间来恢复所接收的USB端口。
-
公开(公告)号:KR1020040033531A
公开(公告)日:2004-04-28
申请号:KR1020020062659
申请日:2002-10-15
Applicant: 한국전자통신연구원
Abstract: PURPOSE: A method for generating a certification path using a verification server on the PKI(Public Key Infrastructure) is provided to reduce client's load by making the verification server process a certification path generating work instead of the client, and effectively perform the certification path generation by previously generating/storing the certification path and reusing the certification path. CONSTITUTION: The verification server connecting to the client collects a certificate from a linkable certification organization, and generates/stores the certification path realized by the certificate. When the client requests certification by providing the certificate to the verification server(321), the verification server checks that the certification path for the certificate is stored(322). In case that the certification path is existed(323), the verification server verifies the certificate by using the existed certification path, and transmits a verification result to the client.
Abstract translation: 目的:提供一种使用PKI(公钥基础设施)上的验证服务器生成认证路径的方法,通过使验证服务器处理认证路径生成工作而不是客户端,有效地执行认证路径生成 通过先前生成/存储认证路径并重新使用认证路径。 构成:连接客户端的验证服务器从可链接的认证机构收集证书,生成/存储证书实现的认证路径。 当客户端通过向验证服务器(321)提供证书来请求认证时,验证服务器检查证书的认证路径是否被存储(322)。 在认证路径存在的情况下(323),验证服务器通过使用现有认证路径来验证证书,并将验证结果发送给客户端。
-
公开(公告)号:KR1020030032423A
公开(公告)日:2003-04-26
申请号:KR1020010064187
申请日:2001-10-18
Applicant: 한국전자통신연구원
IPC: G06K9/00
CPC classification number: H04L9/006 , H04L9/3231 , H04L9/3263
Abstract: PURPOSE: A method for issuing a certificate using living body information in a public key infrastructure authenticating system is provided to directly issue a certificate without inputting a complex approval code and improve a security of a certificate issuing procedure. CONSTITUTION: A certificate issuing request message is received from a user system, which connects to an authentication system through the Internet(S500). A reference number and living body information of the corresponding user are extracted for a user authentication(S502). It is checked whether the transmitted living body information of the user is identified with living body information of a member registration user corresponded to a reference number registered and stored in a database storage(S504). If the living body information is identified with the registered living body information, an approval code of the user is created and supplied to the user system(S510). A public key created from the user system is received(S516) and a certificate is issued(S524).
Abstract translation: 目的:提供一种在公共密钥基础设施认证系统中发布使用生物体信息的证书的方法,以直接发布证书而不输入复杂的认证码并提高证书颁发过程的安全性。 构成:从通过因特网连接到认证系统的用户系统接收证书发行请求消息(S500)。 提取用于用户认证的相应用户的参考号码和生物体信息(S502)。 检查用户的传送的生物体信息是否与对应于登记并存储在数据库存储器中的参考号码的成员登记用户的生物体信息进行识别(S504)。 如果生物体信息用注册的生物体信息识别,则创建用户的批准代码并将其提供给用户系统(S510)。 接收从用户系统创建的公共密钥(S516),并发出证书(S524)。
-
公开(公告)号:KR1020160114252A
公开(公告)日:2016-10-05
申请号:KR1020150040316
申请日:2015-03-23
Applicant: 한국전자통신연구원
Abstract: 본발명의실시예들은, 암호알고리즘의안정성분석을위한부채널분석연산방법에관한것으로, 본발명의일 실시예에따른부채널분석연산방법은, 부채널분석대상장치의암호연산과정에서발생하는파형데이터를수집하는단계; 하나의파형데이터에포함된포인트수, 분석대상암호키바이트수 및추측키수를기반으로, 중간데이터변수값저장에필요한메모리용량을계산하는단계; 상기계산된메모리용량과가용메모리용량을비교하는단계; 및상기가용메모리용량이상기계산된메모리용량보다큰 경우, 상기수집된파형데이터에대한분석작업을시작하는단계를포함한다. 본발명의실시예들에따르면, 부채널분석연산을수행하기이전에미리필요한메모리용량이확보되었는지여부를확인함으로써, 오류발생을사전에방지할수 있다.
-
公开(公告)号:KR1020150139304A
公开(公告)日:2015-12-11
申请号:KR1020140067735
申请日:2014-06-03
Applicant: 한국전자통신연구원
IPC: H04L9/06
Abstract: 화이트박스암호기반으로보호된마스터키로부터세션키를생성하는방법이개시된다. 이방법은화이트박스암호구현에이용될블록암호알고리즘과마스터키를합성한합성함수를생성하는과정과, 상기생성된합성함수를룩업테이블로구성하는과정과, 상기구성된룩업테이블을화이트박스암호기반의인코딩테이블을이용해인코딩하는과정및 인코딩된결과를이용해세션키를생성하는과정을포함한다.
Abstract translation: 公开了一种从基于白箱密码学保护的主密钥生成会话密钥的方法。 本发明的方法包括以下步骤:产生合成块加密算法和用于实现白盒加密的主密钥的合成功能; 用查找表配置所生成的合成函数; 通过使用基于白盒密码术的编码表来对配置的查找表进行编码; 以及通过使用编码结果生成会话密钥。
-
Patent Agency Ranking
公开(公告)号:KR1020130120856A
公开(公告)日:2013-11-05
申请号:KR1020120044060
申请日:2012-04-26
Applicant: 한국전자통신연구원
IPC: G06K17/00
CPC classification number: G06K17/0022 , G06K7/10297 , H04L9/0861
Abstract: The present invention relates to a tag key distribution technology in a RFID system and the feature of a RFID is to receive changed key information from a tag key information server by requesting changed version information after an update version of the key information by communicating with the tag key information server in order to effectively distribute a tag key to a reader by the tag key information server having information for a RFID tag key. According to the present invention, the tag key information server remarkably reduces network loads compared to a method which always transmits the whole tag key at the predetermined time point and minimizes the time when the reader did not respond during tag key transmission by managing the tag key by version and transmitting it to each reader. [Reference numerals] (100) Tag key information server;(110) Network;(120) Reader
Abstract translation: 本发明涉及一种RFID系统中的标签密钥分发技术,RFID的特征在于,通过与该标签通信,通过在更新版本的密钥信息之后请求改变的版本信息,从标签密钥信息服务器接收改变的密钥信息 密钥信息服务器,以便通过具有用于RFID标签密钥的信息的标签密钥信息服务器来有效地将标签密钥分发给读取器。 根据本发明,标签密钥信息服务器与在预定时间点总是发送整个标签密钥的方法相比显着地降低了网络负载,并且通过管理标签密钥来最小化读取器在标签密钥传输期间不响应的时间 并将其发送给每个读卡器。 (附图标记)(100)标签密钥信息服务器;(110)网络;(120)读取器
-
公开(公告)号:KR101276683B1
公开(公告)日:2013-06-19
申请号:KR1020090123130
申请日:2009-12-11
Applicant: 한국전자통신연구원
Abstract: 마스킹(masking) 기법은 알고리즘 레벨에서 부채널 분석 공격을 방지하는 대표적인 기술로서, 원래의 암호화 되야 하는 데이터들에 랜덤(random)한 데이터를 더하거나, XOR(eXclusive OR) 연산하여, 수집된 전력파형이나 전자기파 데이터의 통계적인 분석을 통한 비밀정보 추출을 어렵게 하는 방법이다. 또한, SEED 알고리즘은 국내 표준 대칭키 암호화 알고리즘으로서, IC카드나 전자상거래 등에서 널리 사용하고 있다. 본 발명에서는, 이러한 SEED 알고리즘의 F-함수에 대해 마스킹 기법을 적용하여 일차 전력/전자파 부채널 분석 공격으로부터 안전한 SEED 알고리즘의 F-함수를 마련하고자 한다.
부채널, 마스킹, SEED, F-함수-
公开(公告)号:KR1020130064269A
公开(公告)日:2013-06-18
申请号:KR1020110130802
申请日:2011-12-08
Applicant: 한국전자통신연구원
CPC classification number: H04L9/14 , G06F9/455 , H04L9/003 , H04L2209/12
Abstract: PURPOSE: A device for generating a power simulation waveform in encryption algorithm hardware and a method thereof are provided to easily implement sub channel analysis or safety evaluation. CONSTITUTION: An input part(100) receives an input text with a plurality of bits corresponding to the power state of encryption hardware. A separation part(200) separates the input text into a plurality of groups including at least one bit or into a plurality of groups according to time. A waveform application part(300) searches for waveforms, corresponding to each group separated from the separation part, in a waveform storage part(350) and applies the searched waveform to corresponding groups. An integration part(400) integrates all the waveforms for each group and finally generates a power simulation waveform in encryption algorithm hardware. [Reference numerals] (100) Input part; (200) Separation part; (300) Waveform application part; (350) Waveform storage part; (400) Integration part; (500) Display part
Abstract translation: 目的:提供一种用于在加密算法硬件中生成功率仿真波形的装置及其方法,用于轻松实现子信道分析或安全评估。 构成:输入部分(100)接收具有对应于加密硬件的电源状态的多个位的输入文本。 分离部分(200)根据时间将输入文本分离成包括至少一个位或多个组的多个组。 波形应用部分(300)在波形存储部分(350)中搜索与分离部分分离的每个组对应的波形,并将搜索的波形应用于相应的组。 集成部分(400)集成了每组的所有波形,最后在加密算法硬件中生成功率仿真波形。 (附图标记)(100)输入部; (200)分离部分; (300)波形应用部分; (350)波形储存部分; (400)整合部分; (500)显示部分
-
公开(公告)号:KR1020120070873A
公开(公告)日:2012-07-02
申请号:KR1020100132383
申请日:2010-12-22
Applicant: 한국전자통신연구원
CPC classification number: H04L9/002 , H04L2209/046 , H04L2209/08 , H04L2209/12
Abstract: PURPOSE: A sub-channel protection masking addition apparatus is provided to minimize increase of hardware area and to maximize the efficiency of operation without a conversion operation. CONSTITUTION: A random value generating unit(110) generates a sum random value and first/second random values. An operation unit(120) receives first/second random values and a random masking value. A carrier generating unit(130) generates carrier input by using an operation result. A sum bit generating unit(140) generates a sum bit by using the first/second masking values.
Abstract translation: 目的:提供一种子信道保护掩蔽附加装置,以最小化硬件面积的增加并且在没有转换操作的情况下最大化操作效率。 构成:随机值生成单元(110)生成和随机值和第一/第二随机值。 操作单元(120)接收第一/第二随机值和随机屏蔽值。 载波生成单元(130)通过使用运算结果生成载波输入。 和位产生单元(140)通过使用第一/第二掩蔽值产生和位。
-
公开(公告)号:KR1020120033626A
公开(公告)日:2012-04-09
申请号:KR1020100095245
申请日:2010-09-30
Applicant: 한국전자통신연구원
CPC classification number: H04L41/042 , G06F21/755 , G06F2207/7219
Abstract: PURPOSE: A distributed data processing apparatus for fast side channel analysis and a method thereof are provided to distributedly performing process at a plurality of sub systems. CONSTITUTION: A main system creates divided work(S310). The main system transfers the divided work into a plurality of sub systems(S320). The sub systems distributedly process the divided work(S330). The sub system transfers the divided work result to the main system. The main system combines the divided work results(S340).
Abstract translation: 目的:提供一种用于快速侧信道分析的分布式数据处理装置及其方法,用于在多个子系统上分布式执行处理。 构成:一个主要的系统创建分工(S310)。 主系统将分割的工作传送到多个子系统(S320)。 子系统分散处理分割的工作(S330)。 子系统将分割的工作结果传送到主系统。 主要系统结合了分割的工作结果(S340)。
-
-
-
-
-
-
-
-
-
Search Results
89
records
(took 0.022 seconds)
