公开(公告)号：WO2013006819A1

公开(公告)日：2013-01-10

申请号：PCT/US2012/045819

申请日：2012-07-06

Applicant: APPLE INC. ,  FARRUGIA, Augustin, J. ,  CHEVALLIER-MAMES, Benoit ,  KINDARJI, Bruno ,  CIET, Mathieu ,  ICART, Thomas

Inventor： FARRUGIA, Augustin, J. ,  CHEVALLIER-MAMES, Benoit ,  KINDARJI, Bruno ,  CIET, Mathieu ,  ICART, Thomas

IPC: H04L9/00 ,  H04L9/06

CPC classification number: H04L9/002 ,  H04L9/0631 ,  H04L2209/04 ,  H04L2209/16

Abstract: In the field of computer enabled cryptography, such as a keyed block cipher having a plurality of rounds, the cipher is hardened against an attack by a protection process which obscures the round keys using the properties of group field automorphisms and applying masks to the states of the cipher, for encryption or decryption. This is especially advantageous in a "White Box" environment where an attacker has full access to the cipher algorithm, including the algorithm's internal state during its execution. This method and the associated computing apparatus are useful for protection against known attacks on "White Box" ciphers, by eliminating S-box operations, together with improved masking techniques and increasing the cipher's complexity against reverse engineering and key storage attacks.

Abstract translation: 在计算机启用的密码学领域，例如具有多个回合的密钥分组密码，密码被抵御使用群组域自动生成的属性遮蔽轮密钥的保护过程而被强化，并将掩码应用于 密码，用于加密或解密。 这在“白盒”环境中特别有利，攻击者可以完全访问密码算法，包括算法的执行过程中的内部状态。 该方法和相关联的计算装置对于通过消除S盒操作以及改进的掩蔽技术并增加密码的复杂度以逆向工程和密钥存储攻击来防止已知的对“白盒”密码的攻击是有用的。

公开(公告)号：WO2012024086A1

公开(公告)日：2012-02-23

申请号：PCT/US2011/046483

申请日：2011-08-03

Applicant: APPLE INC. ,  FARRUGIA, Augustin, J. ,  ICART, Thomas ,  CIET, Mathieu

Inventor： FARRUGIA, Augustin, J. ,  ICART, Thomas ,  CIET, Mathieu

IPC: H04L9/06

CPC classification number: H04L9/0631 ,  H04L2209/043 ,  H04L2209/16

Abstract: Method and apparatus for increasing security of a cryptographic algorithm such as deciphering, enciphering, or a digital signature using a block type cipher such as AES implemented for instance in a "whitebox" model with the cipher key either known or unknown at the compilation time. This method is secure for use in entrusted environments, particularly for securing cryptographic keys. The look up tables characteristic of such algorithms are protected against attack here by making all such tables of the same size and indistinguishable, and further by masking the output values of such tables, typically where the tables carry out a permutation function or a logical exclusive OR operation.

Abstract translation: 使用例如在“白盒”模式中实现的诸如AES之类的块类型密码的加密算法的安全性的加密算法的安全性的方法和装置，所述密码算法在编译时具有已知或未知的密码密钥。 这种方法是安全的，用于委托环境，特别是用于保护加密密钥。 这种算法特征的查找表可以通过使所有这些相同尺寸和不可区分的表格进行保护，防止这种攻击，并进一步通过掩蔽这些表的输出值，通常在表执行置换功能或逻辑异或 操作。

公开(公告)号：WO2019067056A1

公开(公告)日：2019-04-04

申请号：PCT/US2018/040701

申请日：2018-07-03

Applicant: APPLE INC.

Inventor： SIERRA, Yannick ,  CHEN, Zhimin ,  ICART, Thomas

IPC: H04W12/02 ,  H04W12/04 ,  H04W64/00 ,  H04L9/00 ,  H04L9/08

Abstract: Embodiments described herein enable the generation of cryptographic material for ranging operations in a manner that reduces and obfuscates potential correlations between leaked and secret information. One embodiment provides for an apparatus including a ranging module having one or more ranging sensors. The ranging module is coupled to a secure processing system through a hardware interface to receive at least one encrypted ranging session key, the ranging module to decrypt the at least one encrypted ranging session key to generate a ranging session key, generate a sparse ranging input, derive a message session key based on the ranging session key, and derive a derived ranging key via a key derivation cascade applied to the message session key and the sparse ranging input, the derived ranging key to encrypt data transmitted during a ranging session.

公开(公告)号：EP3646628A1

公开(公告)日：2020-05-06

申请号：EP18745762.7

申请日：2018-07-03

Applicant: Apple Inc.

Inventor： SIERRA, Yannick ,  CHEN, Zhimin ,  ICART, Thomas

IPC: H04W12/02 ,  H04W12/04 ,  H04W64/00 ,  H04L9/00 ,  H04L9/08

公开(公告)号：EP2606603A1

公开(公告)日：2013-06-26

申请号：EP11741738.6

申请日：2011-08-03

Applicant: Apple Inc.

Inventor： FARRUGIA, Augustin, J. ,  ICART, Thomas ,  CIET, Mathieu

IPC: H04L9/06

CPC classification number: H04L9/0631 ,  H04L2209/043 ,  H04L2209/16

Abstract: Method and apparatus for increasing security of a cryptographic algorithm such as deciphering, enciphering, or a digital signature using a block type cipher such as AES implemented for instance in a "whitebox" model with the cipher key either known or unknown at the compilation time. This method is secure for use in entrusted environments, particularly for securing cryptographic keys. The look up tables characteristic of such algorithms are protected against attack here by making all such tables of the same size and indistinguishable, and further by masking the output values of such tables, typically where the tables carry out a permutation function or a logical exclusive OR operation.