KR19980077685A - METHOD AND DEVICE FOR GENERATING KEYS AND ENCRYPTION SYSTEM USING KEYS CREATED THEREFOR - Google Patents

Abstract

The present invention is based on the fact that it is difficult to solve the nonlinear simultaneous equations and provides a key generation method and apparatus capable of generating a public key depending on its security.

The present invention relates to an apparatus and a method for generating two arbitrary two-dimensional (2D) mathematical formulas of two arbitrary Apa inverse transformation formulas (A1, A2) in which m elements represented by integers less than a modular variable n are input and output, (N), and transforms the order of the first Ap invertible transform (A1), nonlinear invertible transform (N), and second Ap invertible transform (A2) to m input and output (F.A2.N.A1), and provides the combination formula (F) and the modular variable (n) as public keys.

Description

METHOD AND DEVICE FOR GENERATING KEYS AND ENCRYPTION SYSTEM USING KEYS CREATED THEREFOR

1 is a block diagram of a key generation apparatus according to an embodiment of the present invention;

FIG. 2 is a detailed block diagram of the inverse reversible transform generation means and its inverse transform calculation means of FIG. 1; FIG.

FIG. 3 is a detailed block diagram of a unit-based inverse reversible transformation generating means and a reversible transformation-type generating means of FIG.

4 is a detailed block diagram of the nonlinear inverse transform generation means and its inverse transform calculation means of Fig.

5 is a detailed block diagram of the combined calculation means shown in Fig.

6 is a flowchart illustrating an encryption method using a public key according to an embodiment of the present invention.

7 is a flowchart for explaining a decoding method using a secret key.

8 is a block diagram of an encryption communication system according to an embodiment of the present invention.

9 is a block diagram of a cryptographic communication system according to another embodiment of the present invention.

The present invention relates to a method and an apparatus for generating a public key and / or a secret key used to convert a plain text into a cipher text and a cipher text into a plain text, and an encryption method and system using the key generated thereby. The present invention also relates to a cryptographic communication method and system for transmitting a message in an encrypted form.

Cryptosystem is very important to provide security in information communication system. Recently, as society develops into information communication society, its importance is gradually increasing. For example, the electronic payment system and the application field called electronic money are important tools for fundamentally transforming society, and there is a lot of expectation for practical use of them. The key technology in the application field is cryptographic technology. Therefore, it is very important to develop a new cryptographic algorithm with improved security and encryption / decryption speed and to incorporate it into the application field that needs it.

Generally, the cryptographic system is divided into two types according to the method in which the key is used. One is a secret-key cryptosystem (sym-key cryptosystem) where the keys used for encryption and decryption are the same. The other is a public-key cryptosystem (asymmetric-key system) in which two different keys are used as a pair. That is, it is a case of converting a plain text into a cipher text using a public key, and then converting the plain text into a plain text using a secret key. Since the secret key cryptosystem is fast and highly secure, it is widely used for general cryptographic purposes, but applications are limited because the sender and receiver must share a secret key in advance. On the other hand, the public key system does not have the problem of secret key sharing, but it has advantages of various application fields such as digital signature besides simple encryption. However, the public key schemes proposed so far are much slower than the general secret key method This is a disadvantage.

The RSA public key system, which is currently the most widely used public key system, is briefly described and its disadvantages are described. In addition, the fact that the solution of nonlinear simultaneous equations is difficult to obtain as in the present invention is explained by the method proposed by H. Fell and W. Diffie and the method proposed by S. Tsujii et al. And describes the weaknesses of the security of each method.

RSA Public Key System (1977)

The RSA method, which is a typical public key system, relies on its security because it is difficult to decompose very large integers into small numbers. In this way, users generate two keys that can be used in pairs in a specific way based on the number theory, one is publicly disclosed and the other is kept secret by the user. When encryption is performed, the plaintext to be encrypted is subjected to multiplication and modulo operation using a public key and converted into ciphertext. When decrypting, the ciphertext is transformed into plaintext by multiplication and modular operation using the secret key.

The disadvantage of this approach is that the encryption and decryption process must be multiplied by a very large integer greater than 100 digits. Due to this multiplication, RSA public key encryption and decryption is about 100 times slower than that of a conventional secret key encryption system.

The public key system proposed by H. Fwll and W. Diffie (1985)

The public key scheme proposed by Fell and W. Diffie relies on the fact that it is difficult to obtain the solution of the nonlinear symmetry equation. In this method, a nonlinear simultaneous function with N input and output elements is used as the public key, and the nonlinear simultaneous function combines the relatively simple nonlinear algebraic functions with N input and output elements designed for inverse operation The nonlinear functions used in each step or some information used in the combination are used as secret keys. In this method, in order to prevent the size of the public key from becoming too large, a system (Nilpotent Case) which automatically becomes 0 when the degree of each variable becomes a certain degree in the function formula and a system Case) was proposed to make the nonlinear algebraic function used as a public key less than a certain degree.

Although this method provides the advantage of faster data processing speed and key generation speed than RSA, limiting the degree of combining is also applied to the inverse of the nonlinear simultaneous function used as a public key, Therefore, it is disadvantageous that all coefficients of the inverse function can be obtained by a simple identity equation.

Public key method limited by S. Tsujii, T. Itoh, A. Fujioka, K. Kurosawa, T. Matsumoto (1987)

The public key system proposed by S. Tsujii et al. Also uses the nonlinear function with N input / output elements as the public key, depending on its security, that it is difficult to obtain the solution of the nonlinear simultaneous equations as in the Diffie and Fell methods. Different from the Diffie and Fell methods, nonlinear functions used as public keys are generated by combining linear functions, nonlinear functions, and linear functions. The nonlinear function used here is a fractional function where the denominator and the numerator are respectively first order.

The advantage of this method is that it is fast, like Diffie and Fell.

However, this system does not have the same problems as the Diffie and Fell methods, but due to the nature of the fraction function, the form of the equation corresponding to the denominator of the molecular formula appears in the nonlinear function used as the public key. Therefore, there is a method in this system to calculate the secret key from the public key by simple linear algebra.

It is therefore an object of the present invention to provide a key generation method and apparatus capable of generating a public key depending on the security, in the fact that it is difficult to solve the nonlinear simultaneous equations.

Another object of the present invention is to provide an encryption method capable of encrypting plain text quickly and maintaining high security.

It is another object of the present invention to provide a decryption method capable of quickly parsing ciphertext and maintaining high security.

It is another object of the present invention to provide a message transmission method capable of transmitting a signed message in the form of a cipher text.

It is yet another object of the present invention to provide a public key cryptographic communication system that relies on its security in the fact that it is difficult to solve the nonlinear simultaneous equations.

It is another object of the present invention to provide a message transmission device capable of transmitting a message in the form of a cipher text.

The key generation method according to the present invention is a key generation method comprising: inputting and outputting two arbitrary elements (A1, A2) and m elements each having m elements as an input and an output, and performing a nonlinear reversible transformation (N (A1, A2, N) in the order of being located between the reversible transformations (A1, A2) in which the nonlinear reversible transform (N) (F.A12.N.A1) and a modulus variable (n) as m elements represented by integers less than modular variable n, As a public key used for encrypting a digital message (M) having a public key.

The encryption method according to the present invention is a method for encrypting an arbitrary two elements (A1, A2) in which m elements are input and output, and a nonlinear reversible transformation system in which the degree of the highest order term having m elements as input and output is quadratic N) and combines the transformation expressions in the order of the first ApA reversible conversion expression (A1), the non-linear reversible conversion expression (N), and the second A Pa reversible conversion expression (A2) (F) and a modulus variable (n) as public keys, calculating a digital message (M) having m elements represented by integers less than n, Into a cipher text (C) using a public key.

A decoding method according to the present invention is a decoding method comprising two arbitrary apa invertible transforms (A1, A2) having m elements as input and output, and a nonlinear reversible transforming method in which the order of the highest order term, (N) and combining the reversible transformations A1, A2, N in the order in which the nonlinear reversible transform N is located between the two Apein reversible transforms A1 and A2, A2. N. A1) and the output, the inverse transform of the inverse transform formula (A1 ^{-1, -1} A2, the method comprising the steps of obtaining the n ^-1) available in a secret key (S) together with a modular variable (n), less than n The digital message M having m elements represented by integers of the secret key S is encrypted using the combination expression F≡A2.N.A1 and the modular variable n using the secret key S Into a digital message (M).

The message transmission method according to the present invention generates a non-linear reversible conversion equation (N) having two arbitrary apain reversible conversion equations (A1, A2) and a second order degree of the highest order and generates a first noninvasive reversible conversion equation (A1) The combined expression (F≡A2.N (N)) calculated by combining the two non-linear reversible transformations (N) with the two absent invertible transformations (A1, A2) in the order of transform (P _i , 1 ≤ _i ≤ k) composed of a modular variable (A1) and a modulo variable (n), and two ciphered inverse transforms of two non-linear reversible transformations (S _i , 1? I? K) consisting of the non-linear reversible inverse transformation formula (A1 ^-1 , A2 ^-1 ) and the non-linear reversible inverse transformation formula (N ^-1 ) To the B-th terminal from the A-th terminal to the B-th terminal in the communication system having k terminals commonly connected to the A- A message (M _A) been represented as a step to convert a message _{(M As ≡S A (M A} )) signed using the secret key (S _A) is assigned to the A-th terminal.

The key generation apparatus according to the present invention is a key generation apparatus comprising two arbitrary apa inverse conversion equations (A1, A2) in which m elements are input and output, and m elements are input and output, and a nonlinear reversible transform (N (A1, A2, N) in order of being positioned between the reversible transformations (A1, A2) in which the nonlinear reversible transform (N) (F.A2.N.A1) and a modulus variable (n) as m elements represented by integers less than modular variable n, As a public key used for encrypting the digital message M having the public key M.

The public-key cryptosystem according to the present invention is a public-key cryptosystem in which two (2) and (3) elements are input and output, and two non-linear (A1), non-linear reversible (N), and second (A2) reversible inversions (A2) in order to generate a reversible conversion (N) the inverse transformation formula and also calculates the combined formula (F≡A2. N. A1) of the elements to input and output as well as a reversible transform equation (A1, A2, N) ( A1 -1, A2 -1, N -1 ) and the output, combined formula (F≡A12. N. A1) and the inverse transformation formula (A1 ^{-1, -1} A2, N ^-1) for each public key and the key generation means for providing a secret key and a key generating unit A public key storing means for storing a public key generated by the key generating means, a public key storing means for storing a public key generated by the public key storing means, Encryption means for converting the input plain text into ciphertext using the stored public key, decryption means for converting the ciphertext into plaintext using the secret key stored in the secret key storage means, and communication medium for connecting the encryption means and the decryption means.

The message transmission apparatus according to the present invention generates a non-linear reversible conversion equation (N) having two arbitrary apain reversible conversion equations (A1, A2) and a second order degree of the highest order terms and generates a first noninvasive reversible conversion equation (A1) The combined expression (F≡A2.N (N)) calculated by combining the two non-linear reversible transformations (N) with the two absent invertible transformations (A1, A2) in the order of transform (P _i , 1 ≤ _i ≤ k) composed of a modular variable (A1) and a modulo variable (n), and two ciphered inverse transforms of two non-linear reversible transformations (S _i , 1? I? K) consisting of the non-linear reversible inverse transformation formula (A1 ^-1 , A2 ^-1 ) and the non-linear reversible inverse transformation formula (N ^-1 ) Terminal to a B-th terminal in a communication system having k terminals commonly connected to the A-th terminal and the B-th terminal, Been the message (M _A) by using the public key (P _B) assigned to the second terminal B and means to convert encrypted message _{(C A ≡P B (M A} )).

Hereinafter, embodiments of the present invention will be described in detail with reference to FIGS. 1 to 9 attached hereto.

1 is a block diagram of a key generating apparatus according to the present invention. The key generating apparatus 1 includes a reversible conversion generating means 10, a combining expression calculating means 20, and an inverse conversion calculating means 30. The public key provided by the joint calculation means 20 is stored in a public key storage place 2 accessible by anyone and the secret key provided by the inverse transformation calculation means 30 is stored in a secret key And is stored in the memory 3. The inverse transform generation unit 10 includes two pieces of the inphase invertible transformation formulas A1 and A2 for inputting and outputting m elements and a nonlinear inverse transformation formula N ). To this end, the reversible conversion-type generating means 10 comprises two pieces of the reversible inversion conversion type (A1, A2) generation means 11 and one nonlinear reversible conversion type generation means 12. The combining calculation unit 20 calculates the difference between the two apathetic reversible transformations A1 and A2 generated by the reversible transform generation unit 10 and the nonlinear reversible transformation formula N between the inverse reversible transformations A1 and A2 And a non-linear inverse transform (N) are inserted in the order in which they are inserted, thereby calculating a second-order reversible transformation expression (F≡A1 .N.A2) in which m elements are input and output. Reverse conversion formula calculating means 30 is the sick for two Apa the reversible conversion formula generated by the reversible conversion formula generating means (10) (A1, A2) and a reversible non-linear transformation (N), reverse conversion formula (A1 ^-1, A2 ^{- 1} , N ^-1 ). The two Apa the inverse conversion equation of (A1 ^-1, A2 ^-1) and inverse nonlinear inverse transformation (N ^-1) are respectively the m input element deulwa m output element calculated by the inverse transform equation calculating means 30 I have.

The public key memory 2 stores in its own as a public key a second-order reversible transformation formula (F≡A1 N.A2) supplied together with the modular variable n from the combinational calculation means 20. To this end, the public key storage means 2 consists of an erasable non-volatile memory for stably storing the public key. Secret key memory 3 is the reverse conversion formula calculating unit 30 from the modular variable (n) and two sick a reverse transformation to be supplied with ^(-1 A1, A2 ^-1) and inverse nonlinear inverse transformation (N ^-1) As a secret key. To this end, the secret key storing means 3 is constituted by an erasable inactive memory for stably storing the secret key, similarly to the public key storing means 2. [

FIG. 2 shows details of the inverse inverse transforming means 11 and the inverse inverse transforming calculating means which are a part of the inverse transforming calculating means 30 shown in FIG. The irreversible reversible transformation generating means 11 supplies the rearrangement information Π and the constant vectors α and γ to each of the _K units of the unit inverse reversible transformation generating means 112 ₁ to 112 _K connected in series Number generating means 110 for generating a random number. The K unitary inverse transformation inverse transformation generation means 112 ₁ to 112 _K applies the constant vector (?,?) And the rearrangement information from the random number generation means 110 to a basic basic inverse inverse transformation equation of the same type, Respectively. Each of the K units of the inphase reversible transform generation units 112 ₁ to 112 _K converts each of the m input elements by the generated unit AH reversible conversion. In addition, K-1 unit apyrin reversible conversion generation means 112 ₂ to 112 _K re-convert the m output elements of the lower unit apyrin reversible conversion generation means 112 ₁ to 112 _K-1 . As a result, the K-th unit-acase reversible-conversion-type generating unit 112K generates the A-in-A reversible inverse conversion formula (A1 or A2) In addition, K th unit hurts the reversible conversion formula generating means (112 _K) in an m-element input to the first unit hurts the reversible conversion formula generating means (112 ₁₎ are converted by the Apa the reversible conversion equation (A1 or A2) m Output elements are generated. The reordering information Π and the constant vectors α and γ supplied from the random number generating means 110 to the K unit irreversible transformation generating means 112 ₁ to 112 _K are set to be the same But they are preferably set to have different values from each other.

On the other hand, the inverse inverse transform calculation unit 31 includes K unit inverse inverse transform generation units 310 ₁ to 310 _K connected in series. K units of unit inverse inverse transform generation means 310 ₁ to 310 _K are respectively connected to the K units of unit inverse inverse transform generation means 112 ₁ to 112 _K , Lt; / RTI > Each of the K unitary inverse inverse transform generation units 310 ₁ to 310 _K inversely transforms each of the m input elements by the generated unitary inverse inverse transformation equation. In addition, the K-1 unit inverse transforming units 310 ₂ to 310 _K are again inverse transformed to the m output elements of the lower unit inverse inverse transforming generating units 310 ₁ to 310 _K-1 . As a result, K th unit hurts the reverse conversion formula generating means (310 _K) is to produce an inverse conversion equation of APA (A1 or A2 ^{-1 -1)} of unit hurts the inverse transformation K are combined (i.e., multiplied). In addition, in the Kth unit inverse inverse transform generation unit 310 _K , m elements input to the first unit inverse inverse transform generation unit 310 ₁ are input to the inverse inverse transform unit (A 1 ^-1 or A 2 ^-1 ) M output elements are generated. And the m output elements inversely transformed by the _Kth unit inverse inverse transform generation unit 310 _K have the same value as the m elements supplied to the first unit ave inverse transform generation unit 112 ₁ . In addition, an Aaa inverse conversion formula (A1 or A2) finally generated in the Kth Aaa reversible conversion generation means 112 _K and an Aaaa inverse conversion formula (Aa or A2) finally generated in the Kth Aaa inverse conversion generation means A1 ^-1 or A2 ^-1 ) is expressed by a matrix representing the coefficients of the first order term and a vector representing the constant term, and each element of the matrix and the vector is modularly operated with the modulo variable (n) .

FIG. 3A shows an example of the unit-based inverse reversible transformation-type generating means 112 shown in FIG. 2. FIG. 3B shows an example of the unit-based inverse transformation-type generating means 310 shown in FIG. . The unitary inverse reversible transform generation unit 112 shown in FIG. 3A has a plain text having six elements (X ₁ , X ₂ , X ₃ , X ₄ , X ₅ , X ₆ ) Into a ciphertext consisting of _six elements (Y ₁ , Y ₂ , Y ₃ , Y ₄ , Y ₅ , Y ₆ ). The unitary inverse reversible transform generation means 112 includes a rearrangement means (Π) for implementing a basic AAP inverse transform, five multipliers (× α ₁ to × α ₅ ), six adders (+) and six modular And a computing unit (n). The rearranging section (Π) is six rearrangement information from the random number generating means _{(110) (Π 1, Π} 2, Π 3, Π 4, Π 5, Π 6) six plaintext element according to the (X _{1, X 2, X 3, X 4} , X 5, X 6) rearranged to 6 the two rearranged elements _{(X '1, X' 2} , X '3, X' 4, X '5, X' 6 a) . The five multipliers (x alpha ₁ to x alpha ₅ ) and six adders (+) are connected to the first constant vector (? ₁ ,? ₂ ,? ₃ ,? ₄ ,? ₅ ) second constant vector _{(γ 1, γ 2, γ} 3, γ 4, γ 5, γ 6) and the rearranged elements from the rearrangement means _{(Π) (X '1,} X' 2, X '3, X constitute the basic equation for _'4, X' _5, and the output element using the _{X '6) (Y 1,} Y 2, Y 3, Y 4, Y 5, Y 6) , respectively. In detail, the first output element Y ₁ is the sum of the first rearrangement element X ' ₁ and the first second constant vector γ ₁ , and the second through sixth output elements Y ₂ to Y ₆ , each of the i-1-th rearrange elements (X _'i-1) and the i-1-th first product of a constant vector (α _i-1) and the i-th second constant vector (γ _i) with the i-th re-array elements (X ' _i ). In addition, the six modular arithmetic s (n) are respectively output elements _{(Y 1, Y 2, Y} 3, Y 4, Y 5, Y 6) an output element so that the have a value less than the modular variable (n) ( Y ₁ , Y ₂ , Y ₃ , Y ₄ , Y ₅ , and Y ₆ ) to a modulo variable (n). These basic expressions are expressed as follows, which forms a unit type unitary reversible conversion expression.

(Unit 1), which implements the basic unit type of the inverse discrete inverse transform such as Equation (1), generates re-arrangement information (Π ₁ , Π ₂ , Π ₃ , Π ₄ , Π _5, Π _6), the first constant vector _{(α 1, α 2, α} 3, α 4, α 5) and a second constant vector _{(γ 1, γ 2, γ} 3, γ 4, γ 5, γ ₆ ) to generate various unit apyrin reversible transformations. Accordingly, the K units of the unit irreversible inverse transform generation means 112 ₁ to 112 _K shown in FIG. 2 are arranged in the order of the re-arrangement information (Π ₁ , Π ₂ , Π ₃ , Π ₄ , Π ₅ , ₆ ), the first constant vector (? ₁ ,? ₂ ,? ₃ ,? ₄ ,? ₅ ) and the second constant vector (? ₁ ,? ₂ ,? ₃ ,? ₄ ,? ₅ ,? ₆ ) And generates a different unit apache reversible conversion expression.

For example, in the random number generating means 110, the rearrangement information of П = {6,5,1,1,2,3,4}, the first constant vector of? = {131,24,240,66,44}, and? = { 14, 174, 233, 79, 4, 104} is generated, and the modular variable n is 256, the unitary inverse reversible conversion formula generated by the unitary inverse reversible conversion generation means is as follows.

At this time, the rearranged elements to be generated in the rearranging section _{(X '1, X' 2} , X '3, X' 4, X '5, X' 6) are rearranged by the information

_{X '1 = X 6, X} ' 2 are a _{= X 5, X '3 =} X 1, X' 4 = X 2, X '5 = X 3, X' 6 = X 4.

And by a combination of rearranged elements _{(X '1, X' 2} , X '3, X' 4, X '5, X' 6), the first constant vector (α) and a second constant vector (γ) The equations for each of the generated output elements (Y ₁ , Y ₂ , Y ₃ , Y ₄ , Y ₅ , and Y ₆ )

At this time, if the modulus value n of the public key is 256, the result of the data conversion is the same even if modulo operation is performed on the coefficients of the conversion formula to 256. The moduli of the coefficients are 256, the coefficient of the first order is the matrix and the constant term is the vector.

The unitary inverse transform generation unit 310 shown in FIG. 3B has a cipher text having six elements (Y ₁ , Y ₂ , Y ₃ , Y ₄ , Y ₅ , and Y ₆ ) Into a plain text consisting of _six elements (X ₁ , X ₂ , X ₃ , X ₄ , X ₅ , X ₆ ). The unitary inverse inverse transform generation unit 310 includes inverse division means (Π ^-1 ) for implementing the basic inverse inverse transform, five multipliers (× α ₁ to × α ₅ ), six adders (+), and six And a modular operator n. The five multipliers (x alpha ₁ to x alpha ₅ ) and six adders (+) are connected to the first constant vector (? ₁ ,? ₂ ,? ₃ ,? ₄ ,? ₅ ) (Y ₁ , Y ₂ , Y ₃ , Y ₄ , Y ₅ , Y ₆ ) are combined with the two constant vectors (? ₁ ,? ₂ ,? ₃ ,? ₄ ,? ₅ ,? ₆ ) constitute the six elements of the rearrangement _{(X '1, X' 2} , X '3, X' 4, X '5, X' 6) basic operation of each formula. In detail, the first rearrangement element X ' ₁ becomes a value obtained by subtracting the first second constant vector γ ₁ from the first input element Y ₁ , and the second through sixth rearrangement elements X' ₁ = X _'2 to X' _6), each i-th input component (Y _i = Y ₂ to Y ₆₎ i-1-th rearrange elements _{(X 'i-1 = X} ' 1 to X _'5) and i from -1) th first constant vector (α _i-1 = α ₁ to α ₅ ) and the i-th second constant vector (γ _i = γ ₂ to γ ₆ ). The inverse demultiplexing unit Π ^-1 is configured to generate the six inverse matrix information (Π ₁ ^-1 , Π ₂ ^-1 , Π ₃ ^-1 , Π ₄ ^-1 , Π ₅ ^-1 , Π ₆ ^s-1) in accordance 6 rearrangement elements _{(X '1, X' 2} , X '3, X' 4, X '5, X' 6) by yeokbaeyeol six plaintext elements (X _1, X ₂ , X ₃ , X ₄ , X ₅ , X ₆ ). And six of the of the modular arithmetic (n) are re-arranged elements each _{(X '1, X' 2} , X '3, X' 4, X '5, X' 6) the value of less than (n) modular variable the modular operation with different reordering element to _{(X '1, X' 2} , X '3, X' 4, X '5, X' 6) a modular variable (n). These basic expressions are expressed as follows, which form the basic unit type apa inverse transformation.

Unit inverse transform generation unit 310 for implementing the unitary unit inverse inverse transform equation as shown in equation (2) includes inverse inverse matrix information (Π ₁ ^-1 , Π ₂ ^-1 , Π ₃ ) from the random number generation unit 110 ^{-1, -1} ₄ Π, Π ^-1 _{5, 6} Π ^-1), the first constant vector _{(α 1, α 2, α} 3, α 4, α 5) and a second constant vector (γ _1, γ ₂ , γ ₃ , γ ₄ , γ ₅ , and γ ₆ ), respectively. Accordingly, the K pieces of unit inverse inverse transform generation means 310 ₁ to 310 _K shown in FIG. 2 are provided with inverse matrix information (Π ₁ ^-1 , Π ₂ ^-1 , Π ₃ ^-1 , Π ₄ ^{-1, -1} ₅ Π, Π ^-1 _6), the first constant vector _{(α 1, α 2, α} 3, α 4, α 5) and a second constant vector _{(γ 1, γ 2, γ} 3, γ ₄ , γ ₅ , and γ ₆ ), respectively.

For example, in the random number generating means 110, the inverse sequence information of П ^-1 = {6,5,1,2,3,4}, the first constant vector of? = {131,24,240,66,44} When a second constant vector of {14, 174, 233, 79, 4, 104} is generated and the modular variable n is 256, the unitary inverse conversion equation generated by the unit-

By a yield of 6 to rearrange elements _{(X '1, X' 2} , X '3, X' 4, X '5, X' 6) by following yeokbaeyeol them by yeokbaeyeol means,

(X ₁ to X ₆ ). At this time, if the modulus value n of the public key is 256, the result of the data conversion is the same even if the transformation coefficients are modulo 256. The moduli of the coefficients are 256, the coefficient of the first order is the matrix and the constant term is the vector.

As described above, the unit-acase reversible-conversion-type generating unit 112 and the unit-based inverse-inverse-conversion generating unit 310 generate arbitrary rearrangement information П generated by the random number generator 110 and the first and second constants We use a vector (α, γ) to generate a unit-averse inverse transform and a unit-ave inverse transform. 2, the unit inverse reversible transformation generating means 112 and the unitary inverse inverse transforming generating means 310 are arranged in succession as shown in FIG. 2, whereby the inverse reversible transformation expression A and its inverse transformation A ^-1 are . Next, an A-in-H inverse conversion formula (A) generated by five continuously connected unit A-type inverse inversion-conversion-type generating means 112 and five A- An example of the inverse inverse transform equation (A- ¹ ) generated by the inverse transform process will be described.

The five sets of rearrangement information P, the first constant vector? And the second constant vector? Generated by the random number generating means 110 are

, Five unit apa reversible conversion equations are generated by the five unit apa inverse conversion conversion means 112. [ In addition, the five unit acase reversible transformations are sequentially combined to generate the inverse reversible transform (A). Likewise, five unit-aphase inverse transformations are generated by five unit-aphase inverse-transform-generating means 310. Then, the five unit apa inverse transformations (A ^-1 ) are combined in reverse order to generate the inverse inverse transform (A ^-1 ). When these inverse inverse transform (A) and inverse transform (A- ¹ ) are represented by a matrix and a vector,

Fig. 4A shows in detail the embodiment of the nonlinear inverse transform generation means 12 shown in Fig. 1, and Fig. 4B shows the nonlinear inverse transformation type generating means 312 included in the inverse transform calculation means 30 in Fig. The embodiment is shown in detail. The second order nonlinear reversible transform generation means 12 also generates random rearrangement information Π (Π ₁ , Π ₂ , Π ₃ , Π ₄ , Π ₅ , Π ₆ ) generated by the random number generation means 110, a first constant vector _{(α (α l, α 2} , α 3, α 4)), any of the second constant vector _{(γ (γ 1, γ 2} , γ 3, γ 4, γ 5, γ 6)) And an arbitrary third constant vector beta (beta ₁ , beta ₂ , beta ₃ , beta ₄ beta ₅ ).

First, the nonlinear reversible transformation generation means 114 shown in FIG. 4A generates random rearrangement information (? ₁ ,? ₂ ,? ₃ ,? ₄ ,? ₅ ,? ₆ (X), five square arithmetic operators (S), six adders (+), and six modular operators (n). The five squared operators (S) perform multiplication of the squared result and the third constant vector (β) in addition to the square operation. The rearrangement means Π is a means for rearranging the input elements X1 to X6 into arbitrary rearrangement information Π (Π ₁ , Π ₂ , Π ₃ , Π ₄ , Π ₅ , Π ₆ ) To rearrange the six reordering elements ( ). The four multipliers (x), the five squared operators (S) and the six adders (+) are connected to the arbitrary first constant vector (? ₁ ,? ₂ ,? ₃ ,? _4)), and any of the second constant vector _{(γ (γ 1, γ 2} , γ 3, γ 4, γ 5, γ 6)) , and any of the third constant vector (β (β _1, β _2, β ₃ ,? ₄ ,? ₅ ) and rearrangement elements (?) from the rearrangement means ) It was used and the output element _{(Y 1, Y 2, Y} 3, Y 4, Y 5, Y 6) constitute the basic equation for each. And the six modular operators n are arranged such that each of the output elements Y ₁ , Y ₂ , Y ₃ , Y ₄ , Y ₅ , Y ₆ has a value less than the modular variable n _{Y 1, Y 2, Y 3} , Y 4, Y 5, Y 6) and the modular operation to the re-variable modules (n). Specifically, the first output element (Y ₁ ) is the first rearrangement element ( ) And the first second constant vector 粒₁ , and the second output element Y ₂ is the sum of the first rearrangement element ( ) Multiplied by the first third constant vector (β ₁ ) and the second reorder element ( ) And the second second constant vector (粒₂ ). And each of the third to sixth output elements Y ₃ to Y ₆ is an i-th rearrangement element ( ), (i-1) th rearrangement element ( (I-1) th third constant vector ( ), (I-1) th and (i-2) th rearrangement elements ( ) Is multiplied by the i-2 th first constant vector (? _I-2 ) and the i-th second constant vector (? _I ). Finally, each output element is modularized to a modular variable n. Expression of the operation process of each of these output elements Y ₁ to Y ₆ ,

.

Next, the nonlinear inverse transform generation unit 312 shown in FIG. 4B generates arbitrary rearrangement information (? ₁ ,? ₂ ,? ₃ ,? ₄ ,? ₅ ,? ₆ ), and a multiplier (x), five squared operators (S), six subtractors (-) and six modular operators (n) S) further perform a multiplication of the result of the squaring operation and the third constant vector in addition to the squaring operation. Four multipliers (x), five squared operators (S), and six adders (+ 110) any first constant vector _{(α (α 1, α 2} , α 3, α 4) from a), any of the second constant vector _{(γ (γ 1, γ 2} , γ 3, γ 4, γ 5 , γ _6)), and any of the third constant vector _{(β (β 1, β 2} , β 3, β 4 β 5)) and the input elements _{(Y 1, Y 2, Y} 3, Y 4, Y 5, Y ₆ ) < / RTI > ), Respectively. And the six modular operators n are arranged in the respective rearrangement elements < RTI ID = 0.0 > ) Is less than modular variable (n) ) To a modular variable (n). Specifically, the first reorder element ( ) Becomes a value obtained by subtracting the first input element Y ₁ from the first second constant vector γ ₁ , and the second rearrangement element ) Is first rearranged elements from the second input element (Y ₂₎ ( ) Multiplied by the first third constant vector (? ₁ ) and the second second constant vector (? ₂ ). And the third through sixth rearrangement elements ( To (I-1) th rearrangement element (i-1) from the i-th input element Y _i )of (I-1) -th and (i-2) -th rearrangement elements (? _I-1 ) , ) Is multiplied by the i-2th first constant vector (? _I-2 ) and subtracted from the i-th second constant vector (? _I ). Finally, each reorder element ( ) Is modularized by modular variable n. These rearrangement elements ( ) Can be represented by an equation,

. Thus, the nonlinear inverse transform (N ^-1 ) depends only on the addition and subtraction of addition and subtraction, except for division, and the order of the variables does not exceed the maximum second order. This is the i-th rearrangement element ( (I.e., the two previous rearrangement elements), which are the previous output elements And . The inverse-division means (Π- ¹ ) comprises six reordering elements ( To ) To any of the rearrangement information (Π _1, to Π ₆₎ in yeokbaeyeol to six plaintext element according applied from the random number generating means _{(110) (X 1, X} 2, X 3, X 4, X 5, X ₆ ).

Fig. 5 shows in detail an embodiment of the combined calculation means 20 shown in Fig. 5, the combined expression calculating unit 20 calculates the first and second Ape reversible conversion equations A1 and A2 and the nonlinear reversible conversion expression N generated by the reversible conversion expression generating unit 10 shown in FIG. (A1), the nonlinear reversible conversion (N), and the second AAP inverse reversible conversion (A2) in the order of the first AAP, the input combination, and the input combination. To this end, the combined expression calculating unit 20 temporarily converts the first A p in-reversible conversion formula A1, the non-linear reversible conversion formula N, and the second A p in-reversible conversion formula A2 from the reversible conversion- And the first to third registers 21 to 23 for storing data. The combination calculation unit 20 includes a first coupling unit 24 for coupling the conversion equations stored in the first and second registers 21 and 22, And a second coupling unit 25 for coupling the conversion formula stored in the second storage unit 23. The first coupling unit 24 substitutes the non-linear reversible conversion formula N from the second register 22 as the first A-in-reversible conversion formula A1 from the first register 21 as a variable, . The second coupling unit 25 substitutes the first coupling equation from the first coupling unit 24 as a variable and the second coupling coefficient A2 from the third register 23 into the final coupling equation F = A1, N, A2).

For example, if the number of input elements m is 6, the modulus variable n is 256, and the first and second AAP invertible transforms A1 and A2 and the nonlinear inverse transform N are ,

(F = A1, N, A2) used as a public key is expressed by the following (Example 4) by the first and second coupling portions 24, 25.

Then, in this coupled equation (F = A1 · N · A2), the coefficient of the quadratic term is expressed as a tensor, the coefficient of the first term is expressed as a matrix, and the constant term is expressed as a vector.

In this case, the non-linear inverse transform (N) generated by the inverse transform calculation unit 30 shown in FIG. 1 to be used as the secret key, the inverse transform equation for each of the first and second Aa invertible transformations A1 and A2 (N ^-1 , A 1 ^{-1, A} 2 ^-1 ) are as follows (Example 5).

(N- ¹ ) of the second embodiment (Example 6) includes the output element X in addition to the input element Y on the right side of the inequality. That is, the previously calculated previous output element X _i-1 is used to calculate the next output element X _i . As a result, the inverse operation by the secret key does not cause the degree of the highest order to exceed the second order.

6 is a flowchart for explaining an encryption method for converting a message M into a cipher text C using a public key provided in a public key memory 2 in which the encryption means of the communication terminal is disclosed. Each element of the message M is transformed into a cipher text (C) by a quadratic nonlinear transformation which is a combination given from the public key. In step 43,?,?,? Are the coefficients of the first term of the public key, the coefficients of the quadratic term, the matrix representing the constant term, the tensor, and the elements of the vector.

The encryption method of FIG. 6 will be described step by step. In operation 40, the communication terminal inputs a message M including m elements. The communication terminal initializes the value (i) of the element counter to 0 (step 41), and then adds the value (i) of the element counter by 1 (step 42). Then, the communication terminal calculates a second-order nonlinear transformation equation including a coefficient of a quadratic term made of a tensor from a public key storage place, a coefficient of a first- In step 43, the i-th element of the message is encrypted. Subsequently, the communication terminal modulo the encrypted i-th element with the modulo variable n (Step 44), and then compares whether the value of the element counter i is smaller than or equal to the number of elements m of the message (Step 45). If the value of the element counter (i) is less than or equal to the number of elements (m) of the message in step 45, the communication terminal returns to step 42 and repeatedly performs steps 42 through 45 to return m Encrypt all the elements. On the other hand, if the value of the element counter (i) is greater than the number of elements (m) of the message in step 45, the communication terminal considers all m elements of the message to be encrypted and outputs a cipher text composed of m elements (Step 46).

For example, if the public key is given as in Example 3 and the message M is binary coded according to an ASCII code, then each of the characters of the ASCII encoded message will have a value within the range of 0 to 255. Accordingly, the value of the modular variable n becomes 256. [ Like the public key, the number of elements is six, and the message is divided into several blocks and encrypted one block at a time. That is, it encodes six characters at a time.

For example, if you block a message public key cryptosystem by six characters, four message blocks of [Public] [key c] [ryptos] [ystem] are generated. Then, when the characters of the first block are encoded by ASCII code, the characters contained in the first block are represented by the numbers of [80 117 98 108 105 99]. Therefore, each element of the first block is M ₁ = 80, M ₂ = 117, M ₃ = 98, M ₄ = 108, M ₅ = 105, and M ₆ = 99. C ₁ = 19, C ₂ = 208, C ₃ = 77, C ₄ = 205, C ₅ = 216, and C ₆ = 182 are substituted into the cipher text C by substituting these into the expression of Example 3.

FIG. 7 shows a decoding process in which the decryption unit of the communication terminal converts the cipher text C into a decrypted message, that is, a message M, using the secret key provided in the secret key storage location 3. In FIG. 7, the decryption unit of the communication terminal performs an inverse transformation of each transformation used in the public key generation process in the cipher text C, that is,^-One), A nonlinear inverse transform (N^-One) And the second Apa inverse transform equation (A2 -1) is applied in reverse to convert it to message M. This decoding process will be described in detail as follows.

First, the decryption unit of the communication terminal inputs the cipher text (C) in operation 50. [ Then, the decryption means of the communication terminal decrypts the secret key stored in the secret key storing place (3) by using a second AP inverse transform C '= A2 ^-1 (C) (mod n (Step 51). In step 51, a cipher text C is substituted for the second inverse inverse transform equation, and a product with the matrix is subtracted from a vector to calculate a first inverse transform cipher text C '. And the decoding means of the communication terminal has key storage means 3, the first inverse transform the ciphertext (C,) by a non-linear element of the inverse transform equation are provided in, that is _{M '= C 1' -γ 1} (mod n), M 2 _{'= C' 2 -α 1 (} M 1,) 2 -γ 1 (mod n), M i '= C' 2 -α i-1 (M i-1 ') 2 -β i mM' i-1 (C ') is substituted into M' _i-2- y _i-1 (mod n) (3 ≦ i ≦ m) to calculate the second cipher text M ' step). The decryption means of the communication terminal further includes a first AH inverse transformation formula M '= A 1 ^-1 (M') (mod ( ¹ )) containing a coefficient expressed by a vector and a coefficient expressed by a vector expressed by a matrix from the secret key storage place n) of the ciphertext, and the message M is decrypted by performing a subtraction between the matrix and the vector by substituting the cipher text (M ') quadratically inverse to the first inverse inverse transform equation (step 53) . Finally, the decoding means of the communication terminal transmits the decoded message M (Step 54).

For example, if the private key is given as in the example 5 the ciphertext (C) having six elements are _{C 1 = 19, C 2 =} 208, C 3 = 77, C 4 = 205, C 5 = 216, C 6 = 182, the first inverse transform cipher text (C ') is computed as (29,219,202,22,28,80) by applying the second inverse inverse transformer A2 ^-1 (Example 5 (b)). And a first inverse transform the ciphertext (C ') a non-linear inverse transform formula N ^-1 (Example 5 (c)) When using the inversion (139,139,71,40,225,64) the encrypted text (M 2 having the reverse order ") is . Finally, the encrypted text (M ') of the second inverse transformation of the first inverse transformation APA A1 ^-l (for example 5 (a)) of the original message (M) when having the (80,117,98,108,105,99) is applied to the decoding . This decryption process also divides the cipher text (C) into a plurality of ciphertext blocks having m number of elements (for example, m = 6) like a ciphering process, and ciphers them one block at a time.

8 schematically shows an encrypted communication system according to the first embodiment of the present invention. 8, the encrypted communication system includes two communication terminals 60A and 60B connected to the communication channel 70 and a public key memory 2 commonly connected to the two communication terminals 60A and 60B. Respectively. The public key memory 2 stores the two public keys P _A and P _B corresponding to the two communication terminals 60A and 60B so that the first public key P _A is transmitted to the second communication terminal 60B, And the second public key P _B , respectively, to the first communication terminal 60A. The first and second public keys P _A and P _B are generated in the form of a second order nonlinear transformation equation by the key generating means 20 shown in FIG.

The two communication terminals 60A and 60B are each composed of one secret key memory 3A and 3B, one encryption means 40A and 40B and one decryption means 50A and 50B. The encrypting means 40A included in the first communication terminal 60A encrypts the message M _A using the public key P _B having the form of the nonlinear second order transformation provided from the public key memory 2, C _A ). This public key P _B is assigned to the second communication terminal 60B. The cipher text (C _A ) is transmitted to the second communication terminal (60B) through the communication channel (70). And the first communication terminal (60A), the secret key memory (3A) includes a key generating unit 20, the two of the APA produced by the inverse conversion equation shown in Figure 1 comprises a ^(-1 A1, A2 ^-1) and one To the decryption means 50A, the secret key S _A including the nonlinear inverse transformation (N ^-1 ) of the secret key S _A. In addition, the first decoding means included in a communication terminal (60A) (50A) is an inverse conversion equation hurts the ciphertext (C _B) transmitted from the second communication terminal (60B) via a communication channel (70) (A2 ^-1 ), and decodes the messages (M _B) by operation in the order of the inverse non-linear transformation (N ^-1) and an inverse transform equation APA (A1 ^-1).

Similarly, the encryption means 40B included in the second communication terminal 60B encrypts the message M _B using the public key P _A having the form of the nonlinear second order transformation provided from the public key memory 2 Encrypted with cipher text (C _B ). At this time, the public key P _A is assigned to the first communication terminal 60A. This cipher text C _B is transmitted to the first communication terminal 60A via the communication channel 70. And the 2-terminal (60B) includes left secret key memory (3B) nor the two Apa generated by the key generating means 20 shown in Figure 1 to the inverse transform formula (A1 ^{-1, -1} A2) and one To the decryption means 50B, the secret key S _B including the nonlinear inverse transformation (N ^-1 ) of the secret key S _B. In addition, the second communication terminal (60B), the decoding means (50B) is the inverse conversion equation APA (A2 ^-1 of the ciphertext (C _A) transmitted from the first communication terminal (60A) via a communication channel (70) contained in the ), and decodes the messages (M _B) by operation in the order of the inverse non-linear transformation (N ^-1) and an inverse transform equation APA (A1 ^-1).

9 schematically shows an encrypted communication system according to another embodiment of the present invention. The cryptographic communication system shown in Fig. 9 enables encrypted communication of a signed message. The encrypted communication system includes two communication terminals 601A and 601B connected to a communication channel 701 and a public key memory 2 commonly connected to two communication terminals 601A and 601B. The public key memory 2 stores the two public keys P _A and P _B corresponding to the two communication terminals 601 A and 601 _B so that the first public key P _A is transmitted to the second communication terminal 601 B, And the second public key P _B to the first communication terminal 601A, respectively. The first and second public keys B _A and P _B are generated in the form of a second order nonlinear transformation equation by the key generating means 20 shown in FIG. The two communication terminals 601A and 601B are each provided with one secret key memory 3A and 3B, two encryption means 401A and 402A, 401B and 402B and two decryption means 501A and 502A, 501B and 502B .

A first terminal of the (601A) generated by a secret key memory (3A) includes a key generating unit 20 shown in Figure 1 comprises a two sick-in station of the conversion formula (A1 ^{-1, -1} A2) and one The secret key S _A including the nonlinear inverse transform (N ^-1 ) is commonly supplied to the first and second decoding means 501A and 502A. First decoding means (501A) the message (M _A) a secret key memory (3A) secret (S _A) of the two sick reverse conversion formula (A1 ^-1, A2 ^-1) and inverse non-linear transformation from a given (N ^-1 ) with the inverse inverse transform (A2 ^-1 ), the nonlinear inverse transform (N ^-1 ) and the inverse inverse transform (A1 ^-1 ) ). Then, the first encryption means 401A encrypts the signed message ( ) Using a public key (P _B ) having a non-linear quadratic conversion form provided from the public key memory (2) ). This cipher text ( Is transmitted to the second communication terminal 601B via the communication channel 701. [ Next, the second decryption unit 502A decrypts the signed cipher text (hereinafter referred to as " cipher text ") transmitted from the second communication terminal 601B via the communication channel 701 ) As a signed message by operation in the order of the inverse transform equation APA (A2 ^-1), inverse non-linear transformation (N ^-1) and an inverse transform equation APA (A1 ^-1) provided by the secret key memory (3A) ( ). This decrypted signed message ( Is decrypted with the message M _B by the second encryption means 402A using the public key P _B provided from the public key memory 2.

Similarly, the second communication terminal (601B), the secret key memory (3B) nor the two Apa the inverse transform equation generated by the key generating means 20 shown in Figure 1 included in the ^(-1 A1, A2 ^-1) and The secret key S _B including one nonlinear inverse transform (N ^-1 ) is commonly supplied to the first and second decoding means 501B and 502B. Second communication terminal the first decoding means (501B) included in (601B), a message (M _A) a secret key memory hurts the inverse transform equation (A2 ^-1) provided by the secret key (S _B) from (3B), a non-linear (N ^-1 ) and the inverse inverse conversion (A 1 ^-1 ) to obtain a signed message ). Then, the first encryption means 401B encrypts the signed message (first encryption means) from the first decryption means 501B ) The ciphertext by using a public key (P _A) having the form of a non-linear second conversion equation that is provided from the public key memory 2 ( ). This cipher text ( Is transmitted to the first communication terminal 601A via the communication channel 701. [ The second decryption unit 502B included in the second communication terminal 601B also receives the signed cipher text transmitted from the first communication terminal 601A via the communication channel 701 ) The signed message by operation as in the order of the inverse transform equation APA (A2 ^-1), inverse non-linear transformation (N ^-1) and an inverse transform equation APA (A1 ^-1) provided by the secret key memory (3B) ( ). This decrypted signed message ( Is decrypted by the second encryption means 402B using the public key P _A from the public key memory 2 into the message MA.

Winry of the digital signature is that the message converted by the secret key is converted into plain text by the corresponding public key again. That is, if a signed document is converted to a plain text by a specific person's public key, then the document is converted from the plaintext to the signed document by the secret key of the specific person. In other words, the secret key of the particular person is known only to the person, so the person can sign that document himself. By using the encryption method of FIG. 8, it is possible to send a signed document that can be recognized by only a specific person so that the signed document can be confirmed again by another specific person.

As described above, in order to maintain the security of the signature system using the public key cryptosystem or the public key, it is impossible to obtain the secret key from the public key in a practical way. In the public key cryptosystem according to the present invention, a combination of a public key and a secret key is examined. A combination of two pieces of the inverse inverse transform and the inverse non-inverse inverse transform is used as a public key, and the inverse transform of each transform is used as a secret key. That is, in the public key system according to the present invention, finding the secret key from the public key is equivalent to finding out the transformation of each step from the joint expression. Therefore, the security of the public key cryptosystem according to the present invention is similar to the problem of solving the nonlinear simultaneous equations. In this case, it is known that it is practically impossible to obtain the solution if there is a large number of unknowns. Therefore, the public key cryptosystem according to the present invention can be said to be safe if m is a certain value or more. Also, unlike in the Fell and Diffie system, the public key cryptosystem according to the present invention does not limit the degree of the inverse transformation of the transform used as the public key. Considering the case where m is 9, the degree of the highest degree of inverse transformation is 256, and when m is 10, the degree of the difference is 512, and the method of calculating the coefficient of inverse transformation by the identity equation through substitution of many plaintext- It can be seen that the degree is too high to be practically impossible. For reference, the number of 512 terms in 512th order nonlinear function with 10 elements is ₁₀ H ₅₁₂ (= 7.27 × 1018). Also, since the public key method according to the present invention does not use the fractional expression, the problem that has appeared in the method proposed by Tsujii has not appeared in the present invention.

It is to be understood that the invention is not limited to the embodiments described heretofore but that various modifications and changes may be made without departing from the spirit of the invention. Accordingly, the present invention should be determined only by the matters set forth in the following claims.

Claims (31)

A method for implementing cryptographic communication of a digital message (M) having m elements represented by an integer less than a modular variable n, the method comprising the steps of: And generating a nonlinear reversible transform (N) having m elements as input and output and having a second highest order as a second derivative; and performing the nonlinear reversible transformation (N) (F.A2.N.A1) by combining the transformation equations (A1, A2, N) in the order of the positions and the m elements as input and output, A2, N. A1) and the modular variable (n) as a public key. The key generation method according to claim 1, wherein the nonlinear reversible transformation (N) is such that an inverse transformation formula (N ^-1 ) depending on addition, subtraction and multiplication exists. 3. The method of claim 2, wherein the inverse transform (N- ¹ ) further includes an integer and a divisor with respect to a modulo variable (n). 4. The method of claim 3, wherein the nonlinear reversible transform (N) comprises a first output element having a sum of a first input element and an arbitrary constant, a sum of a second input element (I-1) th input elements from the first input element to the i-th input element, and the third to the A key generation method characterized by: 5. The method according to claim 4, wherein the arbitrary second order nonlinear function that takes the i-1 th input elements as a factor from the first consecutive input element includes a square term of the i-1 th input element. . 4. The method of claim 3, wherein the nonlinear reversible transform (N) is a sum of a first output element having a sum of a first input element and a certain constant, a second nonlinear function having a first input element as a factor, (I-1) -th input elements from the first input element to the i-th input element, and a third output element, ≪ / RTI > 5. The method of claim 4, wherein the arbitrary nonlinear reversible conversion formula (N) comprises generating random rearrangement information (П) and arbitrary constant vectors (?,?,?,?,? and the base non-linear equation for the random rearrangement information (Π), the arbitrary constants vector s (α, β, χ, δ, γ) to an output element (Y ₁ to Y _i) here, To Generates key being generated by applying the integer would input element (X ₁ to X _m) are rearranged by any rearrangement information (Π), i is from 3 to m method . 3. The method of claim 1, wherein the inverse reversible transformations are generated by generating an arbitrary matrix in which an arbitrary vector and an inverse matrix exist, and transforming the arbitrary matrix and the arbitrary vector into a first- And a coefficient and a constant term, respectively. 9. The method of claim 8, wherein the matrix and the vector are generated by combining multiple unitary inverse reversible transformations each having an inverse transform and are transformed by modular operations with the modular variable (n) The key generation method comprising: 10. The apparatus of claim 9, wherein the unitary < RTI ID = 0.0 > , ≪ / RTI > To Will enter the element (X ₁ to X _m) are rearranged by any rearrangement information (Π), i is an integer from 3 to m And adjusting values of the arbitrary rearrangement information P and arbitrary constant vectors alpha and gamma. 2. The method according to claim 1, wherein the combining expression F provided by the public key is calculated by a modulus operation of the modulus n and a coefficient of a quadratic term expressed by a tensor having elements calculated by a modular operation with the modular variable n And a constant term expressed as a vector having elements calculated by a modular operation of the modular variable n and a coefficient of a first term expressed by a matrix having elements. Step according to any one of claims 1 to 11, wherein the inverse transformation to obtain the formula (A1 ^-1, A2 ^-1) and inverse transformation formula (N ^-1) of the reversible non-linear transformation of the two Apa the reversible conversion equation and the inverse transform of equation ^{(A1 -1, A2 -1, n} -1) to the key generation method comprising: a modular variable (n) by adding the step of providing a secret key (s). 13. The method of claim 12, wherein the reversible linear transformation the reverse ^(-1 A1, A2 ^-1) of (A1, A2) are, respectively, is calculated through the inverse process of the generating process of the matrix and the vector representing the linear reversible transformation And a matrix composed of elements having a value less than the modular variable n by modular operation with the modular variable n. 13. The method of claim 12, wherein the inverse transform (N- ¹ ) of the nonlinear reversible transform (N) comprises less than second order terms. 13. The method of claim 12, further comprising the steps of: generating the inverse fundamental equations for the linear fundamental equations and the nonlinear fundamental equations; and generating the inverse fundamental equations, the rearrangement information (?) And the arbitrary constant vectors ,?,?,?,?) as a secret key. A method for implementing cryptographic communication of a digital message M having m elements represented by integers less than or equal to n, comprising the steps of: (N), wherein the degree of the highest order term having the first and second elements as input and output is a second non-linear reversible conversion equation (N), and the first and second non-linear reversible conversion equations (A2) by a combination expression (F≡A2.N.A1) in which m elements are input and output, providing the combination expression F and the modular variable n as public keys, (C) by encrypting the digital message (M) using the public key. A method for implementing communication in the form of a cipher text C in a digital message M having m elements represented by integers less than n, the method comprising the steps of: , A2) and a nonlinear reversible transformation formula (N) in which the degree of the highest order term having m elements as input and output is quadratic, and the nonlinear reversible transformation formula (N) in order to combine the reversible conversion formula to calculate the binding equation (F≡A2. N. A1), and obtain the inverse formula ^{(A1 -1, A2 -1, N} -1) of the reversible transformation modular variable (n) And decrypting the cipher text (C) using the secret key (S) and converting the decrypted text (C) into the digital message (M). A communication system having k terminals, each of which is identified by a public key (P _i , 1 ≤ _i ≤ k) and a secret key (S _i , 1 ≤ _i ≤ k) (S _A ) assigned to the A < th &_gt; terminal (S _A ) ? S _A (M _A )), Wherein the public key P _i generates a nonlinear reversible transform N with two arbitrary apa invertible transformations A1 and A2 and a quadratic order of the highest order terms, Calculated by combining the two non-linear reversible conversion equations (A1) and (A2) with the non-linear reversible conversion equations (N) in the order of the non-linear reversible conversion formula (N) (F.A2.N.A1) and a modular variable (n), and the secret key S _i is composed of two (2) the two of the APA reversible inversion formula (A1 ^-1, A2 ^-1) and a non-linear inverse reversible type (N ^-1) and the modular parameters calculated by as, A2) and the non-linear inverse transform a reversible transformation (N) (n) And transmitting the message. 19. The method of claim 18, wherein the A-th terminal sends the signed message ) To the B < th > terminal, and transmitting the signed message (M _A? P _A (?) Using the public key (P _A ) assigned to the A-th terminal ) ≪ / RTI > of the message. The method of claim 18, wherein the signed message ( ) Using the public key (P _B ) assigned to the B-th terminal ≡P _B ( ) ≪ / RTI > of the message. 21. The method of claim 20, wherein the A-th terminal sends the encryption message ( ) To the B-th terminal, and transmitting the encryption message To the B-th terminal using the secret key (S _B ) assigned to the B-th terminal ≡SB ( ), Converting the signed message ( To the A-th terminal using the public key (P _A ) assigned to the A-th terminal (M _A? P _A ) ≪ / RTI > of the message. A cryptographic communication system for a digital message M having m elements represented by an integer less than a modular variable n, comprising: two arbitrary apa inverse conversion equations (A1, A2) with m elements as input and output and m Means for generating a nonlinear reversible transformation (N) whose input and output are elements and whose maximum difference is quadratic, and means for generating a non-linear reversible transformation (N) Means for calculating a combined expression (F≡A2.N.A1) by combining the transformations (A1, A2, N) with the m elements as an input and an output, A1) and means for providing the modular variable (n) as a public key. 23. The apparatus of claim 22, wherein the nonlinear reversible transform (N) is characterized in that there exists an inverse transform equation (N- ¹ ) that depends on addition, subtraction, and multiplication, and division of the modulus variable Key generating device. 24. The method of claim 23, wherein the nonlinear reversible transform (N) comprises a first output element having a sum of a first input element and an arbitrary constant, a sum of a second input element (I-1) th input elements from the first input element to the i-th input element, and the third to the Wherein the key generation device comprises: The apparatus of claim 23, wherein the nonlinear reversible transform (N) is a sum of a first input element and a second input element, the first output element being a sum of a first input element and a certain constant, (I-1) -th input elements from the first input element to the i-th input element, and a third output element, . 23. The apparatus of claim 22, wherein the means for generating the apa invertible transformations comprises: means for generating an arbitrary matrix in which any vector and inverse matrix are present; means for transforming the arbitrary matrix and the arbitrary vector into And means for providing a first term coefficient and a constant term, respectively. The method as claimed in claim 22, wherein the combined expression (F) provided by the public key includes a coefficient of a tensor type quadratic term having elements calculated by a modular operation with the modulo variable n and a modulo operation of the modulo n And a constant of a vector form having elements calculated by a modular operation of the modular variable n. Of claim 22 wherein the means to claim 27 according to any one of items, to obtain the two inverse transform equation of the sick reversible conversion formula (A1 ^-1, A2 ^-1) and inverse transformation formula (N ^-1) of the non-linear transformation and reversible the inverse transform of equation ^{(A1 -1, A2 -1, n} -1) and that the key generation apparatus, characterized in further comprising a means for providing a modular variable (n) to the secret key (s). A system for implementing cryptographic communication of a digital message, the system comprising: two arbitrary apache reversible conversion equations (A1, A2) having m elements as input and output, (N), which is a quadratic, nonlinear inverse transform (N), and combines the m elements in the order of the first inverse inverse transform (A1), the nonlinear inverse transform (N) combined according to the inputs and outputs (F≡A2. N. A1) and also the calculation as well as calculating the inverse transformation of the expression of the reversible conversion formula ^{(A1 -1, A2 -1, N} -1), and the combined equation (F ≡A2. N. A1) and the inversion of expression ^{(A1 -1, A2 -1, N} -1) for each of the secret key generated by the key generating means, said key generation means provided with a public key and a secret key A public key storing means for storing the public key generated by the key generating means; Encryption means for converting the input plain text into ciphertext using the public key stored in the public key storage means; and decryption means for converting the ciphertext into a plaintext using the secret key stored in the secret key storing means And a communication medium connecting the encryption means and the decryption means. A communication system having k terminals, each of which is identified by a public key (P _i , 1 ≤ _i ≤ k) and a secret key (S _i , 1 ≤ _i ≤ k) Means for converting a message (M _A ) expressed as an integer to be encrypted into an encryption message (C _A ≡P _B (M _A )) using a public key (P _B ) assigned to the B-th terminal, Wherein the key P _i generates a nonlinear reversible transformation N having two arbitrary apain reversible transformation formulas A1 and A2 and a degree of a highest order term quadratic, (F) calculated by combining the two non-linear reversible conversion equations (N) and the second non-linear reversible conversion equations (A2) ≡A2. N. A1) and consists of a modular variable (n), are two of the APA in which the secret key (S _i), constituting the combined formula (F≡A2. N. A1) Conversion equation (A1, A2) and said non-linear reversible transformation of the two Apa a reversible inverse transform equation as calculated by inverse transformation (A1 ^-1, A2 ^-1) and a non-linear inverse reversible type (N ^-1) and the modular variable (n) Wherein the message transmission device comprises: The method of claim 30, wherein the A-th terminal is assigned to the encrypted message (C _A) means for transmitting towards the B-th terminal via the communication channel and the encrypted message (C _A) to the B-th terminal Further comprising means for transforming the message (M _A? S _B (C _A )) using a secret key (S _B )