-
公开(公告)号:KR100583234B1
公开(公告)日:2006-05-24
申请号:KR1020010048538
申请日:2001-08-11
Applicant: 한국전자통신연구원
IPC: H04L9/22
Abstract: 1. 청구범위에 기재된 발명이 속한 기술분야
본 발명은 무선통신 시스템에서의 가입자 인증용 난수 생성 방법에 관한것임.
2. 발명이 해결하려고 하는 기술적 과제
본 발명은, 무선통신 시스템의 핵심망 인증센터에서 정보 보호 서비스를 위한 가입자 인증 및 암호화/무결성 키에 사용할 인증용 난수를 생성하기 위한 가입자 인증용 난수 생성 방법을 제공하고자 함.
3. 발명의 해결방법의 요지
본 발명은, 무선통신 시스템에 적용되는 가입자 인증용 난수 생성 방법에 있어서, 비트 단위로 입력된 내부 상태 변이값과 사용자 비밀키를 카수미(KASUMI) 연산하는 제1 연산 단계; 상기 내부 상태 변이값을 변형한 값과 사용자 비밀키 및 운영자 키를 배타적 논리합(XOR) 및 카수미(KASUMI) 연산하는 제2 연산 단계; 상기 제2 연산 단계의 연산 결과에 따라, 데이터와 사용자 비밀키, 난수 생성을 위한 초기 랜덤값(이하 "난수 상수값"이라 함)을 배타적 논리합(XOR) 및 카수미(KASUMI) 연산하여 난수열을 생성하는 난수열 생성 단계; 및 상기 제1 연산 단계의 연산 결과에 따른 데이터와 상기 난수열 생성 단계의 연산 결과에 따른 데이터 및 운영자 키를, 배타적 논리합(XOR) 및 카수미(KASUMI) 연산하여 상기 난수 상수값으로서 결정하는 난수 상수값 결정 단계를 포함함.
4. 발명의 중요한 용도
본 발명은 비동기방식 이동통신 시스템 등에 이용됨.
난수 생성, 비동기방식(3GPP), 이동통신, KASUMI, USIM, 인증센터-
Patent Agency Ranking
公开(公告)号:KR100388059B1
公开(公告)日:2003-06-18
申请号:KR1020000080993
申请日:2000-12-23
Applicant: 한국전자통신연구원
IPC: H04L9/18
Abstract: PURPOSE: A data encryption system using an asymmetric encryption algorithm and a method thereof are provided, which provides a data secret and a data robustness by encrypting a large quantity of messages in a high speed without additional shared encryption key exchange step. CONSTITUTION: According to the data encryption system, an AONT(All-Or-Nothing) conversion part(105) converts input data into a pseudo message using an All-or-nothing method based on a hash function(103). An OAE(Optimal Asymmetric Encryption) part(111) encrypts a part of the pseudo message converted by the above AONT conversion part using the hash function and an asymmetric encryption algorithm. The above AONT conversion part includes a unit calculating an intermediate byproduct K using a divided input message X and N of n-bit nonce(Random Number) after dividing the input message X, and a unit calculating the pseudo message from the above K.
Abstract translation: 目的:提供了一种使用非对称加密算法的数据加密系统及其方法,该系统通过高速加密大量消息而无需额外的共享加密密钥交换步骤来提供数据秘密和数据鲁棒性。 组成:根据数据加密系统,AONT(全或无)转换部分(105)使用基于散列函数的全有或全无方法将输入数据转换为伪消息(103)。 OAE(最佳非对称加密)部分(111)使用散列函数和非对称加密算法对由上述AONT转换部分转换的伪消息的一部分进行加密。 上述AONT转换部分包括一个单元,该单元使用划分输入消息X之后的n比特乱数(随机数)的分割输入消息X和N来计算中间副产品K,以及从上述K计算伪消息的单元。
-
公开(公告)号:KR1020020081885A
公开(公告)日:2002-10-30
申请号:KR1020010021336
申请日:2001-04-20
Applicant: 한국전자통신연구원
IPC: G06F7/58
Abstract: PURPOSE: A nonlinear random number series generation device is provided to receive different number series from an FCSR(Feedback with Carry Shift Register), and to search for a corresponding random number series in an S-BOX(Substitution Box), a table of a random number having a good SAC(Strict Avalanch Criterion) characteristic so that it can be applied at a digital signature or an identification check in an electronic document transaction system. CONSTITUTION: The device comprises a plurality of FCSRs(210), a S-BOX(220), and a logic operator(230). The FCRSs(210) generate 8 bit nonlinear random number series, and transmit the 8 bit nonlinear random series to the logical operator(230). The logical operator(230) searches for a nonlinear random series in the S-BOX(220) corresponding to the transmitted 8 bit nonlinear random series. For example, in a case that a 8 bit binary value of the 8 bit nonlinear random number series is "abcdefgh", the logical operator(230) selects a row in the S-BOX(220) corresponding to the former 4 bit("abcd") and a column in the S-BOX(220) corresponding to the latter 4 bit("efgh"). Then, the logical operator(230) generates a 8 bit random number at a point where the column and the row cross in the S-BOX(220).
Abstract translation: 目的:提供一种非线性随机数序列生成装置,用于从FCSR(带进位移位寄存器的反馈)接收不同的数字序列,并在S-BOX(Substitution Box)中搜索相应的随机数字序列, 具有良好的SAC(严格雪崩准则)特征的随机数,使得其可以在电子文档交易系统中的数字签名或识别检查中应用。 构成:该装置包括多个FCSR(210),S-BOX(220)和逻辑运算器(230)。 FCRS(210)生成8位非线性随机数序列,并将8位非线性随机序列发送到逻辑运算符(230)。 逻辑运算符(230)在对应于所发送的8位非线性随机序列的S-BOX(220)中搜索非线性随机序列。 例如,在8位非线性随机数序列的8位二进制值为“abcdefgh”的情况下,逻辑运算符(230)选择与前4位对应的S-BOX(220)中的行(“ abcd“)和对应于后4位(”efgh“)的S-BOX(220)中的列。 然后,逻辑运算器(230)在S-BOX(220)中列和行交叉的点处产生8位随机数。
-
公开(公告)号:KR1020020051597A
公开(公告)日:2002-06-29
申请号:KR1020000080993
申请日:2000-12-23
Applicant: 한국전자통신연구원
IPC: H04L9/18
CPC classification number: H04L9/302
Abstract: PURPOSE: A data encryption system using an asymmetric encryption algorithm and a method thereof are provided, which provides a data secret and a data robustness by encrypting a large quantity of messages in a high speed without additional shared encryption key exchange step. CONSTITUTION: According to the data encryption system, an AONT(All-Or-Nothing) conversion part(105) converts input data into a pseudo message using an All-or-nothing method based on a hash function(103). An OAE(Optimal Asymmetric Encryption) part(111) encrypts a part of the pseudo message converted by the above AONT conversion part using the hash function and an asymmetric encryption algorithm. The above AONT conversion part includes a unit calculating an intermediate byproduct K using a divided input message X and N of n-bit nonce(Random Number) after dividing the input message X, and a unit calculating the pseudo message from the above K.
Abstract translation: 目的:提供一种使用非对称加密算法及其方法的数据加密系统,其通过在没有额外的共享加密密钥交换步骤的情况下高速加密大量消息来提供数据秘密和数据鲁棒性。 构成:根据数据加密系统,AONT(All-Or-Nothing)转换部分(105)使用基于散列函数(103)的全无变换方法将输入数据转换为伪消息。 OAE(最优非对称加密)部分(111)使用散列函数和非对称加密算法加密由上述AONT转换部分转换的伪消息的一部分。 上述AONT转换部分包括在划分输入消息X之后使用分割输入消息X和n位随机数(随机数)N计算中间副产品K的单元,以及从上述K计算伪消息的单元。
-
公开(公告)号:KR1020030014510A
公开(公告)日:2003-02-19
申请号:KR1020010048538
申请日:2001-08-11
Applicant: 한국전자통신연구원
IPC: H04L9/22
CPC classification number: H04L9/0662 , H04L9/0625 , H04W12/06
Abstract: PURPOSE: A method for generating random number for subscriber authentication in wireless communication system is provided to generate a random number for a subscriber authentication which is used in a subscriber authentication and decoding/integrity key in order to serve an information security in a core network authentication center of a wireless communication system. CONSTITUTION: An internal state value and a user password key are calculated by a CASUMI method. A change value of the internal state value and the user password key and an operator key are operated by an XOR and KASUMI method. Data according to the XOR and KASUMI-operation and the user password key and a random number constant value are operated by an XOR and KASUMI method to generate a random number row. Data according to the KASUMI-operation and the data according to the XOR and KASUMI-operation, and the operator key are operated by XOR and KASUMI method to determine the result as the random number constant value.
Abstract translation: 目的:提供一种用于在无线通信系统中生成用户认证的随机数的方法,以生成用于用户认证和解码/完整性密钥中的用户认证的随机数,以便服务于核心网络认证中的信息安全 无线通信系统的中心。 构成:通过CASUMI方法计算内部状态值和用户密码密钥。 内部状态值和用户密码键和操作员键的变化值通过XOR和KASUMI方法进行操作。 根据XOR和KASUMI操作的数据和用户密码密钥和随机数常数值通过XOR和KASUMI方法操作以生成随机数行。 根据KASUMI操作的数据和根据XOR和KASUMI操作的数据以及操作员键通过XOR和KASUMI方法操作,以将结果确定为随机数常数值。
-
公开(公告)号:KR1020020079264A
公开(公告)日:2002-10-19
申请号:KR1020010020052
申请日:2001-04-14
Applicant: 한국전자통신연구원
IPC: H04L9/00
Abstract: PURPOSE: A method for generating a key of an asynchronous mobile communication system is provided to generate the key by using parameters and typeid of the 3GPP(3rd Generation Partnership Project) standard in a process for performing an authentication and key agreement mechanism. CONSTITUTION: A Rand as random number data of 128bits is stored in byte units(100). The first byte, Rand(0) is added to Typeid. The Rand is divided into an upper R1(120) of 64bits and a lower R2(130) of 64bits. T1 of 64bits is obtained by using the R2(130) and an XOR operation value for the R1(120) and a user secret key of 128bits(140) as input values. O1 of 64bits is obtained by using an input sentence as an XOR operation value for the T1 of 64bits and the R1(120) and a key value as the R2(130) and the user secret key of 128bits(150). R1'(160) and R2'(170) are generated from the upper R1(120) of 64bits and the lower R2(130) of 64bits. T2 of 64bits is obtained by using the R2'(170) and an XOR operation value for the R1'(160) and the user secret key of 128bits as input values(180). O2 of 64bits is obtained by using an input sentence as an XOR operation value for the T2 of 64bits and the R1'(160) and a key value as the R2'(170) and the user secret key of 128bits(190). A final output, O is obtained by using the O1 and the O2.
Abstract translation: 目的:提供一种用于生成异步移动通信系统的密钥的方法,用于在用于执行认证和密钥协商机制的过程中使用3GPP(第三代合作伙伴计划)标准的参数和类型来生成密钥。 构成:将Rand作为128位的随机数数据以字节为单位存储(100)。 第一个字节,Rand(0)被添加到Typeid。 兰德被划分为64位的上部R1(120)和64位的较低的R2(130)。 通过使用R2(130)和R1(120)的XOR运算值和128位(140)的用户密钥作为输入值来获得64位的T1。 通过使用输入句子作为64位的T1和R1(120)的XOR运算值和作为R2(130)的键值和128位(150)的用户密钥的输入句子来获得64位的O1。 从64位的上部R1(120)和64位的下部R2(130)生成R1'(160)和R2'(170)。 通过使用R2'(170)和R1'(160)的XOR运算值和128位的用户密钥作为输入值(180)获得64位的T2。 通过使用输入句子作为64位的T2和R1'(160)的XOR运算值以及作为R2'(170)的键值和128位(190)的用户密钥的输入句子来获得64位的O2。 通过使用O1和O2获得最终输出。
-
-
-
-
-
Search Results
6
records
(took 0.019 seconds)
