US20140348324A1 - Reversible Cipher - Google Patents

Reversible Cipher Download PDF

Info

Publication number
US20140348324A1
US20140348324A1 US14/454,864 US201414454864A US2014348324A1 US 20140348324 A1 US20140348324 A1 US 20140348324A1 US 201414454864 A US201414454864 A US 201414454864A US 2014348324 A1 US2014348324 A1 US 2014348324A1
Authority
US
United States
Prior art keywords
ciphertext
data
unit
filter
cipher device
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Abandoned
Application number
US14/454,864
Inventor
Gregory Scott Callen
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Individual
Original Assignee
Individual
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Individual filed Critical Individual
Priority to US14/454,864 priority Critical patent/US20140348324A1/en
Publication of US20140348324A1 publication Critical patent/US20140348324A1/en
Abandoned legal-status Critical Current

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/06Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols the encryption apparatus using shift registers or memories for block-wise or stream coding, e.g. DES systems or RC4; Hash functions; Pseudorandom sequence generators
    • H04L9/065Encryption by serially and continuously modifying data stream elements, e.g. stream cipher systems, RC4, SEAL or A5/3
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/06Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols the encryption apparatus using shift registers or memories for block-wise or stream coding, e.g. DES systems or RC4; Hash functions; Pseudorandom sequence generators
    • H04L9/065Encryption by serially and continuously modifying data stream elements, e.g. stream cipher systems, RC4, SEAL or A5/3
    • H04L9/0656Pseudorandom key sequence combined element-for-element with data sequence, e.g. one-time-pad [OTP] or Vernam's cipher
    • H04L9/0662Pseudorandom key sequence combined element-for-element with data sequence, e.g. one-time-pad [OTP] or Vernam's cipher with particular pseudorandom sequence generator
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0861Generation of secret information including derivation or calculation of cryptographic keys or passwords
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/34Bits, or blocks of bits, of the telegraphic message being interchanged in time

Definitions

  • the present invention relates to ciphering apparatus and methods and, in particular, stream-type block cipher apparatus and methods.
  • peer-to-peer communication peer-to-peer communication
  • SSL Secure peer-to-peer communications on the Internet enhances the networks' utility as a means of commerce.
  • a wide-used form of security Public Key Encryption, including RSA—is vulnerable to mathematical attacks.
  • DES is no longer considered to provide enough security for secure transactions.
  • RC4 is expensive in that it requires a large amount of memory and setup time.
  • Ciphering apparatus and methods avoiding these shortcomings are desirable.
  • the present invention includes methods and apparatus for stream-type block ciphering.
  • a method of securing data includes receiving a plaintext data unit; encrypting a plaintext data unit with a transposed Sudoku to form a first ciphertext unit; encrypting the first ciphertext unit with pseudorandom mixing bits to form a second ciphertext unit; and outputting the second ciphertext unit corresponding to the plaintext data unit.
  • Another method, for deciphering includes receiving a third ciphertext data unit; encrypting the third ciphertext data unit with a transposed Sudoku to form a fourth ciphertext unit; encrypting the fourth ciphertext unit with pseudorandom mixing bits to form a second plaintext data unit; and outputting the second plaintext data unit corresponding to the third ciphertext unit.
  • An apparatus for securing data includes an input register having a predetermined number of data bits corresponding to a data unit element; a sudoku filter coupled with the input register having a predetermined number of elements corresponding to the predetermined number of data bits; and a data selector coupled with the sudoku filter and the input register.
  • Another apparatus in a fob configuration, includes: an input port, a FPGA coupled with the input port, and configured using an HDL to perform encrypting a plaintext data unit with a transposed Sudoku to form a first ciphertext unit and encrypting the first ciphertext unit with pseudorandom mixing bits to form a second ciphertext unit; and an output port coupled with the FPGA.
  • the FPGA, the input port, and the output port are configured as a FOB device; and the plaintext is received at an input port and a corresponding second ciphertext unit is transmitted to the output port.
  • a memory device coupled with the FPGA.
  • the input and output ports are USB ports.
  • FIG. 1 is a logic block diagram of a cipher device, in accordance with the teachings of the invention herein;
  • FIG. 2 is a logic flow diagram of a first program algorithm used in accordance with the teachings of the invention herein;
  • FIG. 3 is an example JAVA® programming code representation of the first program algorithm, in accordance with the teachings of the invention herein;
  • FIG. 4 is a logic flow diagram of a second program algorithm used with the first program algorithm, in accordance with the teachings of the invention herein in accordance with the teachings of the invention herein;
  • FIG. 5 is an example JAVA® programming code representation of the second program algorithm, in accordance with the teachings of the invention herein;
  • FIG. 6 is a logic flow diagram of a third program algorithm used with the first program algorithm, in accordance with the teachings of the invention herein in accordance with the teachings of the invention herein;
  • FIG. 7 is an example JAVA® programming code representation of the third program algorithm, in accordance with the teachings of the invention herein;
  • FIG. 8 is a block logic diagram of a fob-type cipher device, in accordance with the teachings of the invention herein.
  • the cipher method and apparatus herein provide a reversible element-oriented (stream-type) block cipher and cipher device that can be easily implemented in hardware or software.
  • the hardware can include firmware or hardware description languages
  • the software can include one or more of compiled, scripting or server-side programming languages.
  • Hardware description languages can include Verilog® HDL language, SystemVerilog language, VHDL language, and SystemC language.
  • Compiled languages can include platform-independent JAVA® or Python programming language, or conventionally compiled code such as C++®, C®, Objective C, FORTRAN, Pascal, or BASIC programming languages.
  • Scripting languages also may be used, such as interpreted BASIC language, JavaScript®, AppleScript®, ActionScript® or Lingo® programming languages.
  • a server-side language includes pert, PHP, CGI, ASP or JSP server-side language. It is known to those of ordinary skill in the art that a scripting-type language tends to operate more slowly than a hardware, a compiled, or a server-side language. Indeed, a hardware language (HDL) usually is “compiled” into a physical electronic device, which can realize the reversible cipher herein at wire speed.
  • the physical electronic device can be a cipher device included as a lightweight cryptofilter on a playback device that uses the cipher device as part of a media content protection or digital rights management scheme.
  • This reversible cipher or cipher device can be block-operable on a payload, such as a pixel, a file, or a data stream, although the cipher possesses some stream-mode characteristics. Mutatis mutandi, the reversible cipher or cipher device can be used on a bit payload, as in a stream-based cipher protocol.
  • the reversible cipher or cipher device herein may be used in a modem, in a computer, in a computer tablet, in a medium (video, audio, or A/V) replay device, in a television, in a movie projection apparatus, in a smart phone, in sensitive or proprietary data files, in self-extracting archives, in managed digital right files, and in other applications where reversible ciphers or cipher devices may be used.
  • the reversible cipher or cipher device can use selectable mixing values in a pseudorandom number generator within the cipher operations.
  • the reversible cipher also can be configured to integrate a password, which may be used to encrypt and decrypt the payload at the source and destination, respectively, using a predetermined mixing value set.
  • the cipher device 110 in accordance with the present embodiments can include an input register or bits list 20 , a sudoku (filter) 60 coupled to the input register, and at least one multiplexer (MUX) or data selector 90 , from which a cipher value is output, coupled to sudoku 60 and input register 20 .
  • Working memory 70 can be used to store intermediate values, variables, and pointers during operations.
  • Device 110 also can include process control unit (PCU) 80 to manipulate instructions and values in respective elements.
  • PCU 80 may be constituted of a FPGA, a CPLD, or a programmed microprocessor or microcontroller.
  • FPGA or CPLD also may include memory, registers, a sudoku memory area, a data selector, and hardware to implement the encryption routines herein (such as “KRYPTOP” or “CIPHER”).
  • PCU 80 is operably coupled with input register 20 , sudoku 60 , MUX 90 , and working memory 70 .
  • Input register 20 can be configured to include a 1 ⁇ n grid or array of numbers from a payload, and sudoku device 60 may be configured to contain 1 ⁇ (n ⁇ m) values, where n includes the number of inputs to the at least one MUX 90 , and m, a subset of n, can be the number of selector lines.
  • a payload may include a header or footer used to on or off ciphering and may include a password or other encrypted message.
  • sudoku is a term used for a logic-based, combinatorial number-placement puzzle which term here is suggestive of the filter or filter list used in the present embodiments.
  • the complementary pairs are chosen so inputs will not be ignored in the data selection stage of this stream cipher.
  • Sudoku 60 can serve to sift bits from register 20 .
  • Sudoku 60 can receive 4 bits (16 possibilities) and shuffles or filters these 4 bits into 10 preselected bit combinations. There can be at least six (6) bits in register 20 and 10 complementary hexadecimal pairs in sudoku 60 , for a total of 20 numbers.
  • hexadecimal values for a sudoku 60 list can be, without limitation, the set of ⁇ 8, 14, 1, 8, 13, 2, 4, 1, 6, 7, 2, 4, 9, 11, 13, 6, 7, 14, 9, 11 ⁇ 16 . These bit combinations eliminate the 6-of-16 hexadecimal values which may cause inputs to be ignored or can cause a lockup situation.
  • m is selected to be 2, leaving 4 bits for each sudoku 60 value.
  • the sudoku list 60 can contain selected ones of 4 bit numbers, as a 10-of-16 filter list.
  • the 6-bit register 20 can be made to assume a unique value between 1 and 63 (1 and 2 6 ⁇ 1).
  • a four-bit sudoku 60 six complementary values that may cause “don't care” (ignore) states, may be excluded from the 4 bit (HEX) sudoku (filter) list 60 , including 0000 (0H), 0011 (3H), 0101 (5H), 1010 (AH), 1100(CH), and 1111(FH).
  • Sudoku 60 has 20 elements and because the prime factorization of 20 is 5, 2, and 2, the value of the sudoku element can be multiplied by 5 to bring the 6 bits in input register 20 into parity with the 20 elements in the sudoku array 60 .
  • Dividing 16 into 315 yields 19.6875; because integer mathematics can be used, the final value of 19 may be achieved by dropping the fractional value, or 0.6875.
  • the resulting value of 19 is within sudoku 60 range, that is, 0 to 19, of 20 elements.
  • CIPHER FILE is an example operational program which illustrates the logical flow of the “KRYPTOP” and “CIPHER” sub-operations used to reversibly encipher a plaintext message or to decipher an encrypted ciphertext message.
  • Code for one or more of “CIPHER FILE,” “KRYPTOP,” and “CIPHER” operations may be stored in PCU 80 or in memory 70 allocated to such use.
  • PCU 80 may contain flash memory and may be flash programmable. By executing such stored instructions, for example, as described by flow 200 , encryption and decryption may be performed. In a payload, a header or footer may be used to turn on and off ciphering, allowing for simple encryption or decryption of a protected block, file, or data stream.
  • a typical flow “CIPHER FILE” flow 200 can proceed by initializing parameters (S 205 ), selecting a sudoku list (S 210 ), opening input and output files (S 215 ), and reading an input data unit (S 220 ) (e.g., a password character) for enciphering. If a data unit is not available for enciphering (S 225 ), the method proceeds by closing (S 230 ) input and output files and indicating completion (S 235 ).
  • FIG. 3 is a JAVA® code counterpart to the logic flow in FIG. 2 .
  • FIGS. 4 and 5 illustrate general flow diagram of the password-integrating ciphering scheme, for convenience, identified as “KRYPTOP” is described, respectively, using a logic flow and the JAVA® programming language for clarity as may be executed on cipher device 110 .
  • “KRYPTOP” can be described as a password integration operation.
  • Two pointers may be used to make a transposition of numbers in sudoku 60 .
  • One pointer may be identified as “sdko,” and another may be identified a “psdko.”
  • values in register 20 are shuffled by sudoku 60 selecting a corresponding constant of 10 different constants from the unique random constants from of 1 to 63. Each of the random values can augment the values in the input register 20 . Finally, the input register 20 is ANDed to fit into 6 bits.
  • Sudoku 60 may be shuffled by the input register 20 .
  • Prime number 7 can be added to sudoku ( 60 ) pointer, pskdo, added to it and is then modulated, by 20, to point to a new element in the sudoku 60 .
  • the number 7 is used because the number 6, the number of elements in the bit register 20 , is not prime and because the number 6 is evenly divisible by 2 and 3.
  • the number 20, the number of elements in the sudoku 60 is evenly divisible by 2 and 5. It can be seen, then, that a prime number, such as 7, can be used to avoid repetitive numerical symmetries.
  • the sudoku ( 60 ) accesses the input register 20 as scrambled by the pointers.
  • the output from the filter array ( 60 ) is passed to the data inputs of at least one data selector or multiplexer ( 90 ).
  • the multiplexer ( 90 ) has its selector inputs provided from the remaining bits from the input register 20 as scrambled by index.
  • the output from the multiplexer ( 90 ) is the cipher output ( 100 ).
  • the output from the multiplexer ( 90 ) is the cipher bit ( 100 ) to be combined (exclusive or) with the plain text to become the cipher text.
  • the cipher text is then transmitted. When received at the other end, the cipher text is combined (exclusive or) with an identically generated cipher bit ( 100 ) to become the plain text once again.
  • FIGS. 6 and 7 illustrate general flow diagram of the password-integrating ciphering scheme, for convenience, identified as “CIPHER” is described, respectively, using a logic flow and the JAVA® programming language for clarity as may be executed on cipher device 110 .
  • CIPHER may be described as a pseudorandom number generator operation, which may be used to encipher plaintext or to decipher ciphertext.
  • Variables SDKO and PDSKO may be transposed and then operation turns over to the cases of a SWITCH statement.
  • Each case statement embodies one of the 10-of-16 filtering functions of the sudoku 60 .
  • Each of the bits statement for a corresponding switch case is generally associated with a selectable mixing value.
  • the values selected for mixing values can be important in that one difference in a mixing value can result in a completely different cipher. So, symmetry of mixing values may be used to produce a reversible cipher—a ciphertext message mixed with the same mixing values as those used to encipher the corresponding plaintext can produce the deciphered plaintext. A change in any of the value, the polarity, the evenness or the position in the mixing values may produce a ciphertext that does not match the corresponding plaintext, and the ciphertext used with different mixing values can end up with a nonsensical plaintext output.
  • a cipher device such as cipher device 110 can be implemented in a fob-like cipher device 810 containing an FPGA 820 and flash memory 830 .
  • An example embodiment of cipher device can be configured to have a first USB port 840 and a second USB port 850 , and include JTAG header support 860 a, b, to the USB ports 840 , 850 .
  • FPGA 820 can be programmed to execute code, for example, in accordance with the operations illustrated by FIGS. 2-7 .

Abstract

A cipher device having a number of data bits in an input register corresponding to a data unit element, a sudoku filter coupled with the input register, and a data selector coupled with the sudoku filter and the input register. A fob cipher device has a FPGA programmed to perform encrypting of a plaintext with a transposed Sudoku to form a first ciphertext and encrypting the first ciphertext with pseudorandom mixing bits to form a second ciphertext. A reversible encryption method includes encrypting plaintext with a transposed Sudoku forming a first ciphertext, encrypting the first ciphertext with pseudorandom mixing bits forming a second ciphertext, and outputting the plaintext-corresponding second ciphertext.

Description

    BACKGROUND OF THE INVENTION
  • 1. Field of the Invention
  • The present invention relates to ciphering apparatus and methods and, in particular, stream-type block cipher apparatus and methods.
  • 2. Background Art
  • The Internet has become a powerful public communication and information tool. Even so, secure communication between peer computing nodes (peer-to-peer communication) has become vulnerable to attack by the nefarious and by privacy-loathing governments around the world. Secure peer-to-peer communications on the Internet enhances the networks' utility as a means of commerce. However, a wide-used form of security—Public Key Encryption, including RSA—is vulnerable to mathematical attacks. Another form, DES is no longer considered to provide enough security for secure transactions. Yet another, RC4, is expensive in that it requires a large amount of memory and setup time. Almost all current ciphers require manual human intervention to work; it is highly desirable to have well-distributed random number generators to provide for secure keys, and humans are notoriously bad at generating lengthy random numbers and at recalling, long, truly random passwords. Ciphering apparatus and methods avoiding these shortcomings are desirable.
    • SUMMARY
  • The present invention includes methods and apparatus for stream-type block ciphering. A method of securing data, includes receiving a plaintext data unit; encrypting a plaintext data unit with a transposed Sudoku to form a first ciphertext unit; encrypting the first ciphertext unit with pseudorandom mixing bits to form a second ciphertext unit; and outputting the second ciphertext unit corresponding to the plaintext data unit. Another method, for deciphering, includes receiving a third ciphertext data unit; encrypting the third ciphertext data unit with a transposed Sudoku to form a fourth ciphertext unit; encrypting the fourth ciphertext unit with pseudorandom mixing bits to form a second plaintext data unit; and outputting the second plaintext data unit corresponding to the third ciphertext unit.
  • An apparatus for securing data includes an input register having a predetermined number of data bits corresponding to a data unit element; a sudoku filter coupled with the input register having a predetermined number of elements corresponding to the predetermined number of data bits; and a data selector coupled with the sudoku filter and the input register. Another apparatus, in a fob configuration, includes: an input port, a FPGA coupled with the input port, and configured using an HDL to perform encrypting a plaintext data unit with a transposed Sudoku to form a first ciphertext unit and encrypting the first ciphertext unit with pseudorandom mixing bits to form a second ciphertext unit; and an output port coupled with the FPGA. The FPGA, the input port, and the output port are configured as a FOB device; and the plaintext is received at an input port and a corresponding second ciphertext unit is transmitted to the output port. In certain embodiments, a memory device coupled with the FPGA. In others, the input and output ports are USB ports.
    • BRIEF DESCRIPTION OF DRAWINGS
  • The invention is generally shown by way of reference to the accompanying drawings in which:
  • FIG. 1 is a logic block diagram of a cipher device, in accordance with the teachings of the invention herein;
  • FIG. 2 is a logic flow diagram of a first program algorithm used in accordance with the teachings of the invention herein;
  • FIG. 3 is an example JAVA® programming code representation of the first program algorithm, in accordance with the teachings of the invention herein;
  • FIG. 4 is a logic flow diagram of a second program algorithm used with the first program algorithm, in accordance with the teachings of the invention herein in accordance with the teachings of the invention herein;
  • FIG. 5 is an example JAVA® programming code representation of the second program algorithm, in accordance with the teachings of the invention herein;
  • FIG. 6 is a logic flow diagram of a third program algorithm used with the first program algorithm, in accordance with the teachings of the invention herein in accordance with the teachings of the invention herein; and
  • FIG. 7 is an example JAVA® programming code representation of the third program algorithm, in accordance with the teachings of the invention herein; and
  • FIG. 8 is a block logic diagram of a fob-type cipher device, in accordance with the teachings of the invention herein.
    •
  • In the figures, which are not drawn to scale, like numerals refer to like features throughout the description.
    • DETAILED DESCRIPTION OF EMBODIMENTS
  • The cipher method and apparatus herein provide a reversible element-oriented (stream-type) block cipher and cipher device that can be easily implemented in hardware or software. Without limitation, the hardware can include firmware or hardware description languages, and the software can include one or more of compiled, scripting or server-side programming languages. Hardware description languages can include Verilog® HDL language, SystemVerilog language, VHDL language, and SystemC language. Compiled languages can include platform-independent JAVA® or Python programming language, or conventionally compiled code such as C++®, C®, Objective C, FORTRAN, Pascal, or BASIC programming languages. Scripting languages also may be used, such as interpreted BASIC language, JavaScript®, AppleScript®, ActionScript® or Lingo® programming languages. A server-side language includes pert, PHP, CGI, ASP or JSP server-side language. It is known to those of ordinary skill in the art that a scripting-type language tends to operate more slowly than a hardware, a compiled, or a server-side language. Indeed, a hardware language (HDL) usually is “compiled” into a physical electronic device, which can realize the reversible cipher herein at wire speed. The physical electronic device can be a cipher device included as a lightweight cryptofilter on a playback device that uses the cipher device as part of a media content protection or digital rights management scheme.
  • This reversible cipher or cipher device can be block-operable on a payload, such as a pixel, a file, or a data stream, although the cipher possesses some stream-mode characteristics. Mutatis mutandi, the reversible cipher or cipher device can be used on a bit payload, as in a stream-based cipher protocol. The reversible cipher or cipher device herein may be used in a modem, in a computer, in a computer tablet, in a medium (video, audio, or A/V) replay device, in a television, in a movie projection apparatus, in a smart phone, in sensitive or proprietary data files, in self-extracting archives, in managed digital right files, and in other applications where reversible ciphers or cipher devices may be used. The reversible cipher or cipher device can use selectable mixing values in a pseudorandom number generator within the cipher operations. The reversible cipher also can be configured to integrate a password, which may be used to encrypt and decrypt the payload at the source and destination, respectively, using a predetermined mixing value set.
  • As typified by FIG. 1, the cipher device 110 in accordance with the present embodiments can include an input register or bits list 20, a sudoku (filter) 60 coupled to the input register, and at least one multiplexer (MUX) or data selector 90, from which a cipher value is output, coupled to sudoku 60 and input register 20. Working memory 70 can be used to store intermediate values, variables, and pointers during operations. Device 110 also can include process control unit (PCU) 80 to manipulate instructions and values in respective elements. PCU 80 may be constituted of a FPGA, a CPLD, or a programmed microprocessor or microcontroller. Similarly, FPGA or CPLD also may include memory, registers, a sudoku memory area, a data selector, and hardware to implement the encryption routines herein (such as “KRYPTOP” or “CIPHER”). PCU 80 is operably coupled with input register 20, sudoku 60, MUX 90, and working memory 70. Input register 20 can be configured to include a 1×n grid or array of numbers from a payload, and sudoku device 60 may be configured to contain 1×(n−m) values, where n includes the number of inputs to the at least one MUX 90, and m, a subset of n, can be the number of selector lines. For understanding, (m=2) bits “0” and “1” are shown as being coupled to the MUX, although the m bits may be drawn from any preselected bits of the input register to operate the selection function of the MUX 90. A payload may include a header or footer used to on or off ciphering and may include a password or other encrypted message.
  • Typically, sudoku is a term used for a logic-based, combinatorial number-placement puzzle which term here is suggestive of the filter or filter list used in the present embodiments. The complementary pairs are chosen so inputs will not be ignored in the data selection stage of this stream cipher. Sudoku 60 can serve to sift bits from register 20. Sudoku 60 can receive 4 bits (16 possibilities) and shuffles or filters these 4 bits into 10 preselected bit combinations. There can be at least six (6) bits in register 20 and 10 complementary hexadecimal pairs in sudoku 60, for a total of 20 numbers. Twenty suitable example hexadecimal values for a sudoku 60 list can be, without limitation, the set of {8, 14, 1, 8, 13, 2, 4, 1, 6, 7, 2, 4, 9, 11, 13, 6, 7, 14, 9, 11}16. These bit combinations eliminate the 6-of-16 hexadecimal values which may cause inputs to be ignored or can cause a lockup situation. In this example, m is selected to be 2, leaving 4 bits for each sudoku 60 value. In general, the sudoku list 60 can contain selected ones of 4 bit numbers, as a 10-of-16 filter list. The 6-bit register 20 can be made to assume a unique value between 1 and 63 (1 and 26−1). Preferably, in a four-bit sudoku 60, six complementary values that may cause “don't care” (ignore) states, may be excluded from the 4 bit (HEX) sudoku (filter) list 60, including 0000 (0H), 0011 (3H), 0101 (5H), 1010 (AH), 1100(CH), and 1111(FH). Sudoku 60 has 20 elements and because the prime factorization of 20 is 5, 2, and 2, the value of the sudoku element can be multiplied by 5 to bring the 6 bits in input register 20 into parity with the 20 elements in the sudoku array 60. By shifting right four (4) times, i.e., dividing by 16, the appropriate power of 2 is achieved. For example, 63 times 5 equals 315. Dividing 16 into 315 yields 19.6875; because integer mathematics can be used, the final value of 19 may be achieved by dropping the fractional value, or 0.6875. The resulting value of 19 is within sudoku 60 range, that is, 0 to 19, of 20 elements.
  • Turning to FIGS. 2 and 3, a general flow diagram of the password-integrating ciphering scheme, for convenience, identified as “CIPHER FILE” is described respectively using a logic flow and the JAVA® programming language for clarity, as may be executing on cipher device 110. “CIPHER FILE” is an example operational program which illustrates the logical flow of the “KRYPTOP” and “CIPHER” sub-operations used to reversibly encipher a plaintext message or to decipher an encrypted ciphertext message. Code for one or more of “CIPHER FILE,” “KRYPTOP,” and “CIPHER” operations may be stored in PCU 80 or in memory 70 allocated to such use. PCU 80 may contain flash memory and may be flash programmable. By executing such stored instructions, for example, as described by flow 200, encryption and decryption may be performed. In a payload, a header or footer may be used to turn on and off ciphering, allowing for simple encryption or decryption of a protected block, file, or data stream.
  • A typical flow “CIPHER FILE” flow 200 can proceed by initializing parameters (S205), selecting a sudoku list (S210), opening input and output files (S215), and reading an input data unit (S220) (e.g., a password character) for enciphering. If a data unit is not available for enciphering (S225), the method proceeds by closing (S230) input and output files and indicating completion (S235). If an input data unit is available for enciphering, then the method proceeds by performing (S240) the “KRYPTOP” operation upon the input data unit to create a first enciphered data unit integrating, for example, a password datum or element, and by performing (S245) the “CIPHER” pseudorandom operation to apply the pseudorandom mixing values to the first ciphertext data unit, thereby creating a second ciphertext data unit. If either of the encryption routines encounters an error, throwing (S250) and announcing (S255) an appropriate error message is performed. Otherwise, writing (S260) the second ciphertext data unit into an output file precedes reading the next input data unit (S220) for enciphering. FIG. 3 is a JAVA® code counterpart to the logic flow in FIG. 2.
  • FIGS. 4 and 5 illustrate general flow diagram of the password-integrating ciphering scheme, for convenience, identified as “KRYPTOP” is described, respectively, using a logic flow and the JAVA® programming language for clarity as may be executed on cipher device 110. “KRYPTOP” can be described as a password integration operation. In FIGS. 4 and 5, it is assumed for the sake of exposition that the password (pw) to be used has a length (len) 20 characters (c), and that the process of FIGS. 2 and 3 continues until all password characters have been encrypted (I=>len). Two pointers may be used to make a transposition of numbers in sudoku 60. One pointer may be identified as “sdko,” and another may be identified a “psdko.”
  • First, values in register 20 are shuffled by sudoku 60 selecting a corresponding constant of 10 different constants from the unique random constants from of 1 to 63. Each of the random values can augment the values in the input register 20. Finally, the input register 20 is ANDed to fit into 6 bits.
  • Sudoku 60 may be shuffled by the input register 20. Prime number 7 can be added to sudoku (60) pointer, pskdo, added to it and is then modulated, by 20, to point to a new element in the sudoku 60. This suboperation [((psdko=+7)% 20)] can be repeated, as desired. The number 7 is used because the number 6, the number of elements in the bit register 20, is not prime and because the number 6 is evenly divisible by 2 and 3. Also, the number 20, the number of elements in the sudoku 60, is evenly divisible by 2 and 5. It can be seen, then, that a prime number, such as 7, can be used to avoid repetitive numerical symmetries.
  • The sudoku (60) accesses the input register 20 as scrambled by the pointers. The output from the filter array (60) is passed to the data inputs of at least one data selector or multiplexer (90). The multiplexer (90) has its selector inputs provided from the remaining bits from the input register 20 as scrambled by index. The output from the multiplexer (90) is the cipher output (100). The output from the multiplexer (90) is the cipher bit (100) to be combined (exclusive or) with the plain text to become the cipher text. The cipher text is then transmitted. When received at the other end, the cipher text is combined (exclusive or) with an identically generated cipher bit (100) to become the plain text once again.
  • FIGS. 6 and 7 illustrate general flow diagram of the password-integrating ciphering scheme, for convenience, identified as “CIPHER” is described, respectively, using a logic flow and the JAVA® programming language for clarity as may be executed on cipher device 110. “CIPHER” may be described as a pseudorandom number generator operation, which may be used to encipher plaintext or to decipher ciphertext. Variables SDKO and PDSKO may be transposed and then operation turns over to the cases of a SWITCH statement. Each case statement embodies one of the 10-of-16 filtering functions of the sudoku 60. Each of the bits statement for a corresponding switch case is generally associated with a selectable mixing value. The values selected for mixing values can be important in that one difference in a mixing value can result in a completely different cipher. So, symmetry of mixing values may be used to produce a reversible cipher—a ciphertext message mixed with the same mixing values as those used to encipher the corresponding plaintext can produce the deciphered plaintext. A change in any of the value, the polarity, the evenness or the position in the mixing values may produce a ciphertext that does not match the corresponding plaintext, and the ciphertext used with different mixing values can end up with a nonsensical plaintext output.
  • In one embodiment shown in FIGS. 6 and 7, positive and negative values of numbers between 1 and 31 were selected, drawing an equal number of positive and negative numbers around a mode of the numbers. Such sign, symmetry, modality, and selection are for example only and other embodiments of the present invention are not so restricted, for example, in a general case. It may be possible to have the mixing values assigned in advance of an enciphering or a deciphering transaction, for example, by a content distributor over the Internet to a playback device, which may include cipher device 110, although such device is not mandatory to practice the method described herein. In any case, once the mixing values are selected, elements of a password, such as a character, may be encrypted into a ciphertext message, which serves, for example, as a decryption key.
  • In another embodiment, shown in FIG. 8, a cipher device, such as cipher device 110 can be implemented in a fob-like cipher device 810 containing an FPGA 820 and flash memory 830. An example embodiment of cipher device can be configured to have a first USB port 840 and a second USB port 850, and include JTAG header support 860 a, b, to the USB ports 840, 850. FPGA 820 can be programmed to execute code, for example, in accordance with the operations illustrated by FIGS. 2-7.
  • While the invention has been described in terms of various specific embodiments, those skilled in the art will recognize that the invention can be practiced with modification within the spirit and scope of the claims.

Claims (24)

1. A method of securing data, comprising:
receiving a plaintext data unit;
encrypting a plaintext data unit with a transposed Sudoku to form a first ciphertext unit;
encrypting the first ciphertext unit with pseudorandom mixing bits to form a second ciphertext unit; and
outputting the second ciphertext unit corresponding to the plaintext data unit.
2. The method of claim 1 further comprising:
receiving a third ciphertext data unit;
encrypting the third ciphertext data unit with a transposed Sudoku to form a fourth ciphertext unit;
encrypting the fourth ciphertext unit with pseudorandom mixing bits to form a second plaintext data unit; and
outputting the second plaintext data unit corresponding to the third ciphertext unit.
3. A cipher device, comprising:
an input register having a predetermined number of data bits corresponding to a data unit element;
a sudoku filter coupled with the input register having a predetermined number of elements corresponding to the predetermined number of data bits; and
a data selector coupled with the sudoku filter and the input register.
4. A cipher device, comprising:
an input port;
a FPGA coupled with the input port, and configured using an HDL to perform encrypting a plaintext data unit with a transposed Sudoku to form a first ciphertext unit and encrypting the first ciphertext unit with pseudorandom mixing bits to form a second ciphertext unit; and
an output port coupled with the FPGA;
wherein the FPGA, the input port, and the output port are configured as a FOB device, and wherein the plaintext is received at an input port and a corresponding second ciphertext unit is transmitted to the output port.
5. The cipher device of claim 4, further comprising:
a memory device coupled with the FPGA.
6. The cipher device of claim 4 where the input port is a USB port and the output port is a USB port
7. A reversible cipher device, comprising:
a data input register;
a transposed 10 of 16 filter coupled to the data input register; and
a 1 of 4 multiplexer having 4 data inputs coupled to the transposed 10 of 16 filter and having 2 selector inputs coupled to the data input register, wherein the cipher device is configured to produce pseudorandom bits using the 1 of 4 multiplexer and combine the pseudorandom bits with a plaintext data unit using an exclusive or function to produce a ciphertext data unit.
8. The reversible cipher device of claim 7, wherein the ciphertext unit cannot be decrypted without an identically configured cipher device.
9. The reversible cipher device of claim 7, further comprising:
a process control unit (PCU) operably coupled to the data input register, the transposed 10 of 16 filter; and
a USB port coupled to the PCU.
10. The reversible cipher device of claim 9, wherein the PCU and the USB port are configured to receive input and transmit output allowing reconfiguration, enciphering, and deciphering.
11. The reversible cipher device of claim 10, wherein the PCU, the USB port, the data input register, the transposed 10 of 16 filter, and the 1 of 4 multiplexer are arranged on a field-programmable gate array (FPGA).
12. The reversible cipher device of claim 10, wherein the PCU, the USB port, the data input register, the transposed 10 of 16 filter, and the 1 of 4 multiplexer are arranged in a fob device.
13. The reversible cipher device of claim 7, further comprising a field-programmable gate array (FPGA) coupled with the data input register and the transposed 10 of 16 filter and configured using a hardware description language (HDL) to instruct the cipher device to produce the pseudorandom bits and combine the pseudorandom bits with the plaintext data unit using an exclusive or function to produce the ciphertext data unit.
14. The reversible cipher device of claim 13, wherein the FPGA is arranged in a fob device and is coupled to an input port and an output port, wherein the plaintext is received at the input port and the ciphertext data unit is transmitted to the output port.
15. The reversible cipher device of claim 14, wherein the input port is a USB port and the output port is a different USB port.
16. The reversible cipher device of claim 7, further comprising a hardware description language (HDL) configured to instruct the 1 of 4 multiplexer to produce the pseudorandom bits and combine the pseudorandom bits with the plaintext data unit using an exclusive or function to produce the ciphertext data unit.
17. The reversible cipher device of claim 7, further configured with a stream-based cipher protocol allowing the 1 of 4 multiplexer to combine the pseudorandom bits with a data stream to produce a ciphertext data stream.
18. The reversible cipher device of claim 7, further configured to integrate a password into the ciphertext data unit, which may be used to encrypt and decrypt the plaintext data unit at a source and a destination.
19. The reversible cipher device of claim 7, wherein the 10 of 16 filter is configured to shuffle or filter data received from the 4 data inputs into 10 preselected bit combinations.
20. A cipher device, comprising:
a data input register;
a filter coupled to the data input register and configured to shuffle or filter bits received from the data input register into preselected bit combinations, wherein the filter is configured to exclude values that may cause ignore states; and
a multiplexer having data inputs coupled to the filter and having selector inputs coupled to the data input register, wherein the cipher device is configured to produce pseudorandom bits using the multiplexer and combine the pseudorandom bits with a plaintext data unit using an exclusive or function to produce a ciphertext data unit.
21. The cipher device of claim 20, further comprising:
a process control unit (PCU) operably coupled to the data input register, the filter, and the multiplexer; and
a USB port coupled to the PCU.
22. The cipher device of claim 21, wherein the filter is a 10 of 16 filter and the multiplexer is a 1 of 4 multiplexer having 4 data inputs coupled to the transposed 10 of 16 filter and having 2 selector inputs coupled to the data input register.
23. The cipher device of claim 22, wherein the PCU, the USB port, the data input register, the transposed 10 of 16 filter, and the 1 of 4 multiplexer are arranged on a field-programmable gate array (FPGA) in a fob device.
24. The cipher device of claim 20, further comprising a field-programmable gate array (FPGA) coupled with the multiplexer and configured using a hardware description language (HDL) to use the multiplexer to produce the pseudorandom bits and combine the pseudorandom bits with the plaintext data unit using an exclusive or function to produce the ciphertext data unit.
US14/454,864 2011-06-24 2014-08-08 Reversible Cipher Abandoned US20140348324A1 (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
US14/454,864 US20140348324A1 (en) 2011-06-24 2014-08-08 Reversible Cipher

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
US13/168,679 US8817976B2 (en) 2011-06-24 2011-06-24 Reversible cipher
US14/454,864 US20140348324A1 (en) 2011-06-24 2014-08-08 Reversible Cipher

Related Parent Applications (1)

Application Number Title Priority Date Filing Date
US13/168,679 Continuation US8817976B2 (en) 2011-06-24 2011-06-24 Reversible cipher

Publications (1)

Publication Number Publication Date
US20140348324A1 true US20140348324A1 (en) 2014-11-27

Family

ID=47361864

Family Applications (2)

Application Number Title Priority Date Filing Date
US13/168,679 Expired - Fee Related US8817976B2 (en) 2011-06-24 2011-06-24 Reversible cipher
US14/454,864 Abandoned US20140348324A1 (en) 2011-06-24 2014-08-08 Reversible Cipher

Family Applications Before (1)

Application Number Title Priority Date Filing Date
US13/168,679 Expired - Fee Related US8817976B2 (en) 2011-06-24 2011-06-24 Reversible cipher

Country Status (1)

Country Link
US (2) US8817976B2 (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN112913188A (en) * 2018-10-26 2021-06-04 罗伯特·博世有限公司 Subscriber station for a serial bus system and method for the manipulation-proof transmission of data in a serial bus system

Citations (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5553012A (en) * 1995-03-10 1996-09-03 Motorola, Inc. Exponentiation circuit utilizing shift means and method of using same
US20030231766A1 (en) * 2002-05-30 2003-12-18 Bedros Hanounik Shared control and information bit representing encryption key position selection or new encryption key value
US20040019793A1 (en) * 2002-07-23 2004-01-29 Sony Corporation Encryption apparatus
US20050213761A1 (en) * 2002-12-02 2005-09-29 Walmsley Simon R Storing number and a result of a function on an integrated circuit
US7142675B2 (en) * 2002-02-12 2006-11-28 City University Of Hong Kong Sequence generator and method of generating a pseudo random sequence
US20080019504A1 (en) * 2006-06-20 2008-01-24 Wei Han Key Generation For Advanced Encryption Standard (AES) Decryption And The Like
US20110264922A1 (en) * 2008-12-24 2011-10-27 The Commonwealth Of Australia Digital video guard
US20120128150A1 (en) * 2009-06-28 2012-05-24 Nds Limited Pattern-free encryption

Family Cites Families (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20010050989A1 (en) * 2000-06-07 2001-12-13 Jabari Zakiya Systems and methods for implementing encryption algorithms
WO2008147577A2 (en) * 2007-01-22 2008-12-04 Spyrus, Inc. Portable data encryption device with configurable security functionality and method for file encryption

Patent Citations (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5553012A (en) * 1995-03-10 1996-09-03 Motorola, Inc. Exponentiation circuit utilizing shift means and method of using same
US7142675B2 (en) * 2002-02-12 2006-11-28 City University Of Hong Kong Sequence generator and method of generating a pseudo random sequence
US20030231766A1 (en) * 2002-05-30 2003-12-18 Bedros Hanounik Shared control and information bit representing encryption key position selection or new encryption key value
US20040019793A1 (en) * 2002-07-23 2004-01-29 Sony Corporation Encryption apparatus
US20050213761A1 (en) * 2002-12-02 2005-09-29 Walmsley Simon R Storing number and a result of a function on an integrated circuit
US20080019504A1 (en) * 2006-06-20 2008-01-24 Wei Han Key Generation For Advanced Encryption Standard (AES) Decryption And The Like
US20110264922A1 (en) * 2008-12-24 2011-10-27 The Commonwealth Of Australia Digital video guard
US20120128150A1 (en) * 2009-06-28 2012-05-24 Nds Limited Pattern-free encryption

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN112913188A (en) * 2018-10-26 2021-06-04 罗伯特·博世有限公司 Subscriber station for a serial bus system and method for the manipulation-proof transmission of data in a serial bus system

Also Published As

Publication number Publication date
US8817976B2 (en) 2014-08-26
US20120328091A1 (en) 2012-12-27

Similar Documents

Publication Publication Date Title
JP6030103B2 (en) Data protection apparatus and method
US8127130B2 (en) Method and system for securing data utilizing reconfigurable logic
US7945049B2 (en) Stream cipher using multiplication over a finite field of even characteristic
KR101143041B1 (en) Stream cipher design with revolving buffers
CN109245881A (en) A kind of photograph video cloud encryption storage method
WO2011029753A1 (en) A method of diversification of a round function of an encryption algorithm
JP4025722B2 (en) Method and apparatus for data encryption
WO2011123575A1 (en) Cryptographic processor with dynamic update of encryption state
Reyad et al. Key-based enhancement of data encryption standard for text security
EP1975779A2 (en) Pseudorandom number generator and encryption device using the same
CN116846542A (en) Data encryption and decryption method and device and electronic equipment
EP2458774A1 (en) A method of processing a cryptographic function in obfuscated form
Priya et al. FPGA implementation of efficient AES encryption
JP2000066586A (en) Data processor and communication system as well as recording medium
US20030210783A1 (en) Method and system of encryption
Aparna et al. Implementation of AES algorithm on text and image using MATLAB
Patel et al. Hybrid security algorithms for data transmission using AES-DES
Dawood et al. Design large symmetric algorithm for securing big data
US8817976B2 (en) Reversible cipher
Zhang Cryptanalyzing an image cryptosystem based on circular inter-intra pixels bit-level permutation
Sachdeva et al. Implementation of AES-128 using multiple cipher keys
Kumari et al. Data encryption and decryption using graph plotting
Gomez et al. Performance evaluation of the present cryptographic algorithm over FPGA
Rajashekarappa et al. Study on cryptanalysis of the tiny encryption algorithm
Tarawneh Cryptography: Recent Advances and Research Perspectives

Legal Events

Date Code Title Description
STCB Information on status: application discontinuation

Free format text: ABANDONED -- FAILURE TO RESPOND TO AN OFFICE ACTION