Abstract:
In an apparatus for a hyperelliptic-curve cryptography processing, an input/output control block controls a peripheral component interconnect (PCI) interface block, a direct memory access (DMA) and a data input/output. An input memory block stores an external instruction and input data provided by the PCI interface block. An output memory block stores a final and an intermediate value of a hyperelliptic-curve cryptography operation. A MUX controls a path of input/output data. An operation core block performs a genus one elliptic-curve and a genus two hyperelliptic-curve cryptography algorithm, respectively. A controlling device controls the operation core block.
Abstract:
PURPOSE: A hyperelliptic curve encryption processing system is provided to process a hyperelliptic curve encryption algorithm within a short period of time by performing simultaneously a hyperelliptic curve encryption algorithm having a genus parameter of 1 and the hyperelliptic curve encryption algorithm having the genus parameter of 2. CONSTITUTION: A hyperelliptic curve encryption processing system includes an input/output control block(120), an input memory block(140), an output memory block(150), a MUX(160), an encryption core block(180), and a control unit(170). The input/output control block(120) controls an operation of a PCI interface block, a DMA(Direct Memory Access) operation, and a data input/output operation. The input memory block(140) stores external commands and input data from the PCI interface block. The output memory block(150) stores a result value and an intermediate value of a hyperelliptic curve encryption calculation process. The MUX(160) controls an input/output data path of an input memory block and an output memory block. The encryption core block(180) performs a hyperelliptic curve encryption algorithm having a genus parameter of 1 and the hyperelliptic curve encryption algorithm having the genus parameter of 2 according to the external commands and the input data of the MUX. The control unit(170) controls the encryption core block according to a command of the input memory block.
Abstract:
PURPOSE: A serial-parallel multiplier finding out the multiplication of two elements on a finite field is provided to quickly find out the multiplication of two elements on finite field by performing the modular subtraction for each operation result again after respectively multiplying the divided two multipliers to a multiplicand. CONSTITUTION: A multiplexer(11) alternatively outputs the first and the second multiplier data depending on a selection signal by receiving the multiplier data in parallel. A half multiplier(12) outputs the first operation value by multiplying the first multiplier to the multiplicand data and performing the modular operation, and outputs the second operation value by multiplying the second multiplier to the multiplicand data and performing the modular operation. A storage(13) stores the first operation value at the first cycle and outputs the stored value at the second cycle depending on a clock doubled to the selection signal. A modular subtracter(14) performs the modular subtraction for subtracting the received first operation value from the second operation value.
Abstract:
PURPOSE: A public key encryption apparatus based on the prime field is provided, which improves the efficiency of the system as well is commonly utilized in various system required to operate encryption operation. CONSTITUTION: A public key encryption apparatus(100) based on the prime field includes a register(110), an RSA operational block(160), a modular inverse element calculation block(175), an ellipse curve calculation block(180), a modular operational block(170) and a controller(130). The register(110) stores the various data for the encryption operation. The RSA operational block(160) performs the RSA public key encryption operation. The modular inverse element calculation block(175) calculates the inverse element of the data based on the prime field. The ellipse curve calculation block(180) performs the ellipse curve public key encryption operation. The modular operational block(170) performs the repeat operation in the unit of the 32 bits so as to perform the RSA/ellipse curve encryption operations. And, the controller(130) reads/writes the data required to the encryption operation from the register(110) and controls the operations of each block to perform the encryption operation.
Abstract:
PURPOSE: An encryption system for an F8 encryption algorithm and an F9 integrity verification algorithm of IMT(International Mobile Telecommunication)-2000 system is provided to enhance the security of data by using a data encryption calculator between a terminal and an RNC system. CONSTITUTION: An encryption system includes an input/output system bus(10), a register file(11), a memory portion(13), and an F8_F9 calculator(12). The register file is used for storing input variables of an F8 encryption algorithm and an F9 integrity verification algorithm. The memory portion stores encoded output data and authentication code generation object data of the F8 encryption algorithm and the F9 integrity verification algorithm. The F8_F9 calculator performs selectively the F8 encryption algorithm and the F9 integrity verification algorithm in order to provide a message authentication code to the register file and output the encoded output data to the memory portion.
Abstract:
PURPOSE: An encryption processing apparatus for a high speed radio network switch is provided to process much data at a time with high throughput and little response time and to process little data rapidly with a little delay time. CONSTITUTION: According to the encryption processing apparatus for a high speed radio network switch performing security processing and integrity verification encryption algorithm processing in the high speed radio network switch, a memory memorizing device part(101) stores input/output protocol packet or data and command and control signals extracted from the packet. A shared memory memorizing device part(102) stores a packet and a control signal and command and data extracted from the packet. A memory control part(105) performs input/output control and synchronization of the memory memorizing device part and the shared memory memorizing device part. An encryption processing device part(107) processes security and integrity verification encryption algorithm. An external input/output control part(108) controls external input/output. An external network interface block(109) performs packet analysis operation as to a packet received from an external network connection network, and transmits the analyzed packet to the encryption processing device part or the memory memorizing device part or the shared memory memorizing device part. And a central processing part(100) performs basic protocol analysis and packet processing, memory management, shared memory management and encryption processor control.
Abstract:
PURPOSE: An encryption system for an F8 encryption algorithm and an F9 integrity verification algorithm of IMT(International Mobile Telecommunication)-2000 system is provided to enhance the security of data by using a data encryption calculator between a terminal and an RNC system. CONSTITUTION: An encryption system includes an input/output system bus(10), a register file(11), a memory portion(13), and an F8_F9 calculator(12). The register file is used for storing input variables of an F8 encryption algorithm and an F9 integrity verification algorithm. The memory portion stores encoded output data and authentication code generation object data of the F8 encryption algorithm and the F9 integrity verification algorithm. The F8_F9 calculator performs selectively the F8 encryption algorithm and the F9 integrity verification algorithm in order to provide a message authentication code to the register file and output the encoded output data to the memory portion.
Abstract:
PURPOSE: A data encryption system using an asymmetric encryption algorithm and a method thereof are provided, which provides a data secret and a data robustness by encrypting a large quantity of messages in a high speed without additional shared encryption key exchange step. CONSTITUTION: According to the data encryption system, an AONT(All-Or-Nothing) conversion part(105) converts input data into a pseudo message using an All-or-nothing method based on a hash function(103). An OAE(Optimal Asymmetric Encryption) part(111) encrypts a part of the pseudo message converted by the above AONT conversion part using the hash function and an asymmetric encryption algorithm. The above AONT conversion part includes a unit calculating an intermediate byproduct K using a divided input message X and N of n-bit nonce(Random Number) after dividing the input message X, and a unit calculating the pseudo message from the above K.
Abstract:
본 발명은 고성능 타원곡선 암호화 장치 구현에 관한 것으로, 본 발명의 타원곡선 암호화 장치는 타원곡선의 스칼라 곱셈 연산인 kP 연산을 수행한다. 이때, k는 곱셈 상수 값으로 타원곡선 차수(order)보다 작은 임의의 정수값이며, P는 타원곡선 위의 임의의 점, 또는 타원곡선 기저점이다. 즉, 본 발명은 고성능 타원곡선 암호화 장치에 있어 프로젝티브 좌표계에서의 타원곡선 연산 기법과 윈도우 연산 기법을 최적화하며, 또한 기저점의 스칼라 곱셈 연산과 임의의 좌표의 스칼라 곱셈 연산이 모두 효율적으로 수행될 수 있도록 하여 타원곡선 암호 처리의 주된 연산인 스칼라 곱셈 연산을 고속으로 처리 가능하도록 함으로써, 타원곡선 스칼라 곱셈 연산에 대하여 빠른 처리 능력을 보장하며, 이를 통하여 타원곡선 암호 프로토콜이 사용되는 서버 시스템에서 보조 연산 장치로 사용하여 전체 시스템 처리 성능을 향상시킬 수 있는 이점이 있다. 또한 타원곡선 암호화 장치에서 하드웨어 자원을 효율적으로 사용할 수 있게 되어 높은 성능을 얻을 수 있으며, 여러 타원곡선 암호 시스템으로 확장이 용이하게 되는 이점이 있다.
Abstract:
본 발명은 시스템의 보안성과 기밀성을 제공하기 위한 공개키 암호장치에 관한 것이다. 즉 본 발명은 소수체 연산을 기본으로 하는 RSA 암호 알고리즘과 소수체 타원곡선 암호알고리즘을 선택적으로 구동하도록 구현함에 있어, 핵심적인 연산을 수행하는 모듈러 연산장치 및 그 방법과 상기 모듈러 연산장치를 이용하여 RSA 공개키 암호알고리즘과 소수체 타원곡선 공개키 암호알고리즘을 모두 구동 가능하게 구현함으로서, 시스템의 안정성을 증가시키고, 보다 범용적인 활용을 가능하게 하는 이점이 있다.