WO1992017959A1 - Dynamic encryption key selection for encrypted radio transmissions - Google Patents
Dynamic encryption key selection for encrypted radio transmissions Download PDFInfo
- Publication number
- WO1992017959A1 WO1992017959A1 PCT/US1992/002627 US9202627W WO9217959A1 WO 1992017959 A1 WO1992017959 A1 WO 1992017959A1 US 9202627 W US9202627 W US 9202627W WO 9217959 A1 WO9217959 A1 WO 9217959A1
- Authority
- WO
- WIPO (PCT)
- Prior art keywords
- key
- encryption
- radio
- key identifier
- message
- Prior art date
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/08—Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
- H04L9/0894—Escrow, recovery or storing of secret information, e.g. secret key escrow or cryptographic key storage
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/14—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols using a plurality of keys or algorithms
- H04L9/16—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols using a plurality of keys or algorithms the keys or algorithms being changed during operation
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L2209/00—Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
- H04L2209/80—Wireless
Definitions
- This invention relates generally to communication devices, and more specifically to radio frequency communication devices utilizing encryption.
- the Digital Voice Protection System is an encryption system that converts an analog communication signal into a digital bit stream and then scrambles (encrypts) the digital bit stream with a technique to which only the sender and authorized receivers are given "keys" which allow the signals to be decrypted.
- the encrypted messages will be able to be received by the eavesdropper, but the messages will sound like pseudorandom noise unless the eavesdropper has the proper key to decrypt the message.
- the radio includes a storage means for storing a plurality of encryption keys each having an assigned corresponding unique key identifier and a selection means for automatically selecting one of the key identifiers prior to the transmission of a message by the radio's transmitter.
- the radio also includes an encryption means for encrypting the message to be transmitted using the encryption key corresponding to the key identifier automatically selected.
- the radio's receiver means receives encrypted messages having unencrypted key identifiers appended, and a second selection means automatically selects from among the plurality of stored key identifiers the key identifier which is to be used to properly decrypt the received encrypted message.
- a receiver capable of receiving encrypted messages having unencrypted key identifiers.
- the receiver includes a storage means for storing a plurality of encryption keys each having a corresponding unique key identifier, and a selection means for automatically selecting from among the plurality of encryption keys the encryption key which is to be used to properly decrypt the received message.
- the receiver also includes a decryption means for decrypting the encrypted message using the encryption key selected by the decoding means.
- FIG. 1 shows a block diagram of a radio in accordance with the present invention.
- FIG. 2 is a block diagram of a typical communication system in accordance with the present invention.
- FIG. 3A shows a way of dynamically changing the radio encryption key during the course of a radio conversation in accordance with the present invention.
- FIG. 3B shows a second way of dynamically changing the radio encryption key during the course of a radio conversation in accordance with the present invention.
- Radio 100 such as a portable radio capable of operating in an encrypted mode is shown.
- Radio 100 includes a receiver means, such as receiver 114, which is used for receiving information from other communication devices and systems.
- An antenna switch 110 selectively couples antenna 112 to either the receiver 114 or a transmitter 108 depending on the state of radio 100.
- Both receiver 114 and transmitter 108 are of conventional design as known in the art.
- an incoming radio frequency signal is routed from antenna 112 to receiver 114 where the signal is decoded. The signal is then sent to controller 126 where the controller determines if the signal is encrypted.
- controller 126 sends the signal via bus 136 to encryption circuit 134 where the signal is decrypted and sent back via bus 136 to controller 126.
- Voice messages are routed back to receiver 114 where the signal is then sent via line 118 through audio amplifier 120 where the voice signal is amplified and presented to speaker 124.
- Controller 126 can control the volume of the output audio signal by adjusting the gain of amplifier 120 via line 122, which is normally controlled by the user via a volume switch (not shown).
- encryption circuit 134 includes a plurality of encryption keys and encryption algorithms which are stored in a storage means such as memory locations which are part of radio controller 126, the storage means can also be part of encryption circuit 134 if so designed.
- Radio 100 can choose between the different encryptions keys and algorithms in order to automatically switch the encryption which is utilized on a transmission by transmission basis.
- Encryption circuit 134 acts as the encryption means during radio transmissions and as the decryption means when radio 100 is receiving encrypted messages. Consequently, the encryption key can be used for both encryption and decryption.
- Controller 126 is in charge of coordinating the overall activities of radio 100 including the control of both transmitter 108 and receiver 114.
- Controller 126 preferably comprises a conventional microprocessor or microcontroller, having on-chip memory, I/O lines, and the capability for external memory device interfacing.
- controller 126 also controls the dynamic changing of encryptions keys by informing encryption circuit 134 when to load in a new encryption key in order to decrypt an incoming message or encrypt a message which is to be transmitted.
- Radio 100 can be a conventional radio, trunked radio, or other type of radio as known in the communication art.
- Radio 100 can also be a conventional analog transmission radio (FM), or can be a radio capable of digitally transmitting information (i.e. linear modulated, etc.)
- radio 100 is a trunked radio operating in a trunked radio communication system such as that shown in FIG. 2, controller 126 controls the switching of frequencies for both the transmitter 108 and receiver 114 depending on instructions which would come from the trunked system central controller 204 (shown in FIG.2).
- PTT switch 132 is activated by the radio user, which in turn activates the transmitter means such as transmitter 108 via a signal coming from controller 126 on bus 128.
- the radio user speaks into microphone 102 which converts the audio signals to electrical signals which are in turn amplified by amplifier 104.
- Amplifier 104 has gain adjustment capability via line 130, which is controlled by controller 126.
- the amplified signal is then fed to transmitter 108 which converts the signal to a radio frequency signal and transmits the signal via antenna switch 110 to antenna 112. If the transmission is required to be encrypted, the signal is routed via bus 140 to the encryption circuit 134 prior to its transmission, where it is there encrypted and sent back to transmitter 108 for transmission.
- FIG. 2 a block diagram of a typical communication system which can use the present invention such as a trunked radio communication system is shown.
- the radios or subscriber units 100 which are part of system 200, communicate over a control channel 202 with the control resource such as system central controller 204 in order to receive status and control information from the central controller 204.
- the control resource can be a base station or other similar communication devices, or in a system having only radios the control resource can be the embedded signalling sent by the individual radios themselves.
- the system central controller 204 acts as the system coordinator and is responsible for assigning radios in the same groups to different repeaters 206 (voice channels) so that they may communicate amongst each other whenever a request from one of the groups comes into the controller.
- the central controller 204 is also responsible for knowing where each of the radios are located (i.e. what voice channel) and for controlling other features typically found in a modem trunked communication system (e.g. handling phone patches, coordinating groups of radios in emergency situations, etc.).
- the typical central controller 204 includes a main processing unit such as a computer with appropriate control software which controls the operation of controller 204. Also normally included as part of controller 204 is a video display and keyboard in order to allow the central control operator to communicate with the system.
- the signals which are sent from the central controller 204 to the subscriber units over the control channel 202 are typically called outbound signalling words (OSW's").
- the control signals going from radios 100 to the central controller 204 are called inbound signalling words (ISW's).
- OSW's for example, inform particular radios 100 as to when to change channels automatically, so as to allow them to communicate with other members of the same radio group over an assigned voice channel 206.
- FIG. 2 shows a trunked communication system
- the present invention can operate in many types of communication systems including but not limited to cellular systems, conventional radio systems, and systems using embedded signalling on the RF channel.
- FIG. 3A there is shown a way of automatically changing the radio's encryption during the course of a radio conversation in accordance with the present invention.
- FIG. 3A shows a typical encrypted conversation as disclosed in the present invention.
- a new encryption new key and/or algorithm
- encryption key will be used to encrypt the next message to be transmitted.
- a different encryption key identifier can be randomly selected from among a group of key identifiers representing the encryption keys stored in the radio's encryption circuitry 134.
- the key identifier is simply a number or other designation assigned to an encryption key and is in no other way related to the encryption key itself.
- the encryption key associated with the chosen key identifier is then used to encrypt the message to be transmitted, which is done by the encryption circuit 134.
- the plurality of unique key identifiers and encryption keys can be stored in a storage means which can be in radio controller 126.
- the data relating to the chosen encryption key can then be sent over bus 136 to encryption circuit 134.
- Another alternative is to have the list of key identifiers stored in controller 126 and the encryption keys stored in encryption circuit 134.
- Controller 126 which acts as the radio's control means has a first selection means such as a conventional random number generation algorithm stored in the controller's memory which is executed by controller 126 in order to randomly determine the next key identifier to select for use by the encryption circuit 134 in encrypting the message to be transmitted.
- controller 126 sends the corresponding encryption information data (e.g. new encryption key data) via bus 136 to encryption circuit 134 so that the encryption information can be loaded in Controller 126 upon selecting a key identifier sends a message over bus 136 to encryption circuit 134 informing the encryption circuit 134 of what key ID has been selected.
- the key identifier basically acts as a pointer allowing encryption circuit 134 to choose the correct encryption key from among the plurality of encryption keys stored in encryption circuit 134 or if the encryption keys are stored in controller 126 the data (i.e. encryption information) is sent via bus 136 and loaded into encryption circuit 134.
- encryption circuit 134 comprises one encryption algorithm in the form of an encryption hybrid, for example DES-XL, which is loaded with the encryption key that matches the key identifier selected. The selected key is loaded into the encryption hybrid from memory locations that are also part of the encryption circuit 134, allowing for the algorithm to become scrambled with that particular key pattern.
- a more sophisticated embodiment of the present invention can have encryption circuit 134 support a plurality of encryption hybrids, for example, DES-XL and DVP-XL
- the key identifier selected by controller 126 informs encryption circuit 134 which encryption hybrid to select and then which key to load into the selected hybrid.
- the key identifier points to a particular encryption algorithm and key combination.
- Radio 100 transmits the key identifier which is selected, in an unencrypted format prior to the encrypted message being transmitted.
- the radio units 100 receiving the encrypted transmission also have the same set of encryption keys and corresponding key identifiers stored.
- the receiving radios 100 Upon receiving the unencrypted key identifier, the receiving radios 100 decode the unencrypted key identifier by using a decoder means such as a conventional decoding algorithm stored in controller 126 which decoded the unencrypted key identifier. Once the received key identifier is decoded, a second selection means included in controller 126 in the form of a comparison program, finds the corresponding key identifier stored in the radio. Once the correct key identifier is located, the corresponding encryption key is loaded into encryption circuit 134 in order to decrypt the encrypted message which accompanied the decoded key identifier. Each radio 100 in communication system 200 has a list of identical encryption keys each having the corresponding unique key identifier, thereby allowing radios 100 to transmit and receive to each other using different encryption keys on a transmission per transmission basis.
- a decoder means such as a conventional decoding algorithm stored in controller 126 which decoded the unencrypted key identifier.
- the radio automatically selects a key identifier from the available list of key identifier's stored in encryption circuit 134, this can be done using a conventional random generation program stored in controller 126 or a predetermined selection process (selection program) also stored in controller 126.
- the automatically selected key identifier information can then be sent over bus 136.
- the encryption (traffic key), which is related to the selected key identifier is then selected in order to encrypt the radio transmission which follows. This is done by loading the appropriate encryption device (i.e. DES-XL) which is part of encryption circuit 134 with the selected key.
- Radio unit #2 receives the key identifier transmitted by radio unit #1 and then uses the unencrypted key identifier to load the appropriate encryption key into its encryption circuitry in order to decode the encrypted message which follows.
- FIG. 3A then shows radio unit #2 loading encryption key "B", transmitting the key id information to unit #1 , followed by an encrypted message encrypted with encryption key "B".
- Radio unit #1 receives the key identifier information and loads the appropriate encryption key in order to decrypt the message. This routine is followed by each radio prior to each radio transmitting a message. Changing the encryption key that is used to transmit a message every time a message is transmitted adds a higher level of security to the radio transmissions, by forcing any would be eavesdropper not only to be able to decipher not one encryption key but many in order to intercept ongoing radio transmissions. By automatically selecting the key identifier to use on a transmission per transmission basis the radio user does not have to preoccupy himself with manually changing encryptions.
- FIG. 3A shows radio unit #2 loading encryption key "B”, transmitting the key id information to unit #1 , followed by an encrypted message encrypted with encryption key "B”.
- Radio unit #1 receives the key identifier information and loads the appropriate encryption key in order to decrypt the message.
- FIG. 3B a similar transmission sequence as in FIG. 3A is shown except this communication sequence has been modified to reduce the delays caused in FIG. 3A by the radios having to decode the key identifier information each time the radios began receiving information.
- the delays in FIG. 3A are caused because it is assumed that radios 100 randomly select a key identifier prior to any radio transmissions. This causes the radios that are receiving the message to first decode the key identifier in order to load in the proper encryption key to decrypt the incoming message.
- the radios instead of using a random encryption key generation protocol, use a predetermined encryption key selection program which is stored in each radios controller 126.
- each radio in a system uses the same encryption selection algorithm (both receiving and transmitting radios), normally only the first transmission sequence will require any delay in decoding the key identifier information. After the first cycle all of the radios know the encryption key which will be used to encrypt the following message, thereby allowing the radios to load in the new encryption key information prior to any radio transmitting or receiving any information.
- the decoding of the key identifiers need only be done by radios which are not "in synch" with the predetermined selection process (i.e. do not know the next encryption which will be used).
- the preprogrammed encryption key sequence can be as simple as an algorithm stored in controller 126 that uses the next key identifier in a key identifier list, or can be a more complex algorithm repeating the key identifiers in a complex manner. As is shown in FIG. 3B, radio unit #1 loads encryption key
- Radio unit #2 receives the unencrypted key identifier which is decoded and then unit #2 compares the presently loaded encryption to see if the key identifier of the presently loaded encryption matches the decoded key identifier. If the key ID'S do not match, the radio automatically loads the encryption associated with the decoded key identifier by running a comparison program with the list of encryption keys the radio has stored in controller 126. After the key identifier is loaded, the encrypted message that follows is decrypted. In this new method of selecting the key identifier as shown in FIG.
- both radios load key "B" after the first transmission call has dropped, since this is the next key which is to be loaded according to their predetermined identifier selection process which all radios in the system follow. Since both radios follow the same predetermined key identifier selection process, there is no delay associated with key identifier decoding and key loading as was the case in FIG. 3A, once the radios come in "synch" with the predetermined key identifier selection process.
- Radios 100 which go out of range or have been turned off, can automatically synch with other radios in the group since the key identifier is sent prior to every transmission in an unencrypted format.
- the synch up procedure requires a key identifier to be decoded using the decoding means which is in controller 126, and then the proper key needs to be loaded, after which the radio 100 will be able to follow the predetermined key identifier selection process which all radios 100 are following.
- radios 100 in system 200 could all be using key identifiers "A”, “B”, “C”, and “D” each identifier pointing to a different encryption key and all the radios 100 using a predetermined process which follows the sequence of "D", "B", "A”, and “C”, in that particular order.
- a radio first coming into system 200 would only have to decode the first key identifier in order to determine the next key identifier (and encryption key) which will be used in the next transmission by any radio 100 in that particular radio group.
- a trunked radio system like that shown in FIG.2 could have each of the radio groups utilizing a different unique predetermined selection process for all radio group voice traffic transmissions.
- the present invention illustrates how to increase the overall security of radio communications by utilizing radios which can automatically change the encryption being used to encrypt transmissions on a transmission by transmission basis.
- radios which can automatically change the encryption being used to encrypt transmissions on a transmission by transmission basis.
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Mobile Radio Communication Systems (AREA)
Abstract
A radio (100) transmits and receives encrypted signals having unencrypted key identifiers, allowing other radios having the corresponding key identifiers and encryption keys to communicate with radio (100). Prior to transmitting an encrypted message, radio (100) selects a unique key identifier automatically and uses the corresponding encryption key to encrypt the message that will be transmitted. Radio (100) transmits the key identifier in an unencrypted format with the encrypted message in order to allow other radios to determine the encryption key used in encrypting the message. When receiving an encrypted message, radio (100) uses the predetermined process stored in the radio (100) to properly select the proper encryption key for use in decrypting the incoming message.
Description
DYNAMIC ENCRYPTION KEY SELECTION FOR ENCRYPTED RADIO TRANSMISSIONS
Technical Field
This invention relates generally to communication devices, and more specifically to radio frequency communication devices utilizing encryption.
Background
As the need for protecting sensitive information which is transmitted over radio communication systems increases, better ways of protecting radio signals from eavesdroppers, becomes more of a concern for individual radio users. In communication devices where protection of voice/data messages is important, a system like the Motorola Digital Voice Protection System can be added to individual radios. The Digital Voice Protection System is an encryption system that converts an analog communication signal into a digital bit stream and then scrambles (encrypts) the digital bit stream with a technique to which only the sender and authorized receivers are given "keys" which allow the signals to be decrypted. If an eavesdropper tries to listen to the conversations on this type of system, the encrypted messages will be able to be received by the eavesdropper, but the messages
will sound like pseudorandom noise unless the eavesdropper has the proper key to decrypt the message.
Security concerns in recent years have pushed the state of the art in radio communications to the point that today some communication devices now have multiple key and/or multiple encryption algorithm capabilities (e.g. DES-XL™ and DVP-XL™, both trademarks of Motorola, Inc.). These communication devices transmit an unencrypted key ID field prior to transmitting the encrypted message in order to inform any receiving radios as to the encryption selected for the particular transmission. The receiving radios then automatically select the encyrption to use in order to decrypt the incoming messages and can also by having transmit hangtime capabilities transmit back to the originating radio with the newly selected encryption. The above mentioned radios unfortunately only give radios the capability of using multiple encryptions. When a radio user wants to originate a new transmission using a new encryption from those found in his radio, he has to manually select the new encryption. A need exists for a radio which can dynamically change the encryption used in encrypting a message sent by the radio on a transmission per transmission basis, thereby offering an even higher standard of security for radio users. A need also exists for a receiver which can predetermine the encryption that will be used by radios in transmitting future transmissions.
Summary of the Invention
The radio includes a storage means for storing a plurality of encryption keys each having an assigned corresponding unique key identifier and a selection means for automatically selecting one of the key identifiers prior to the transmission of a message by the radio's transmitter. The radio also includes an encryption means for encrypting the message to be transmitted using the encryption key corresponding to the key identifier automatically selected. The radio's receiver means receives encrypted messages having unencrypted key identifiers appended, and a second selection means automatically selects
from among the plurality of stored key identifiers the key identifier which is to be used to properly decrypt the received encrypted message.
In another aspect of the present invention a receiver capable of receiving encrypted messages having unencrypted key identifiers is disclosed. The receiver includes a storage means for storing a plurality of encryption keys each having a corresponding unique key identifier, and a selection means for automatically selecting from among the plurality of encryption keys the encryption key which is to be used to properly decrypt the received message. The receiver also includes a decryption means for decrypting the encrypted message using the encryption key selected by the decoding means.
Brief Description of the Drawings
FIG. 1 shows a block diagram of a radio in accordance with the present invention.
FIG. 2 is a block diagram of a typical communication system in accordance with the present invention. FIG. 3A shows a way of dynamically changing the radio encryption key during the course of a radio conversation in accordance with the present invention.
FIG. 3B shows a second way of dynamically changing the radio encryption key during the course of a radio conversation in accordance with the present invention.
Detailed Description of the Preferred Embodiment
Referring now by characters of reference to the drawings and first to FIG. 1 , a block diagram of a radio 100 such as a portable radio capable of operating in an encrypted mode is shown. Radio 100 includes a receiver means, such as receiver 114, which is used for receiving information from other communication devices and systems. An antenna switch 110 selectively couples antenna 112 to either the receiver 114 or a transmitter 108 depending on the state of radio 100. Both receiver 114 and transmitter 108 are of conventional design as
known in the art. When receiving a message, an incoming radio frequency signal is routed from antenna 112 to receiver 114 where the signal is decoded. The signal is then sent to controller 126 where the controller determines if the signal is encrypted. If the signal is encrypted, controller 126 sends the signal via bus 136 to encryption circuit 134 where the signal is decrypted and sent back via bus 136 to controller 126. Voice messages are routed back to receiver 114 where the signal is then sent via line 118 through audio amplifier 120 where the voice signal is amplified and presented to speaker 124. Controller 126 can control the volume of the output audio signal by adjusting the gain of amplifier 120 via line 122, which is normally controlled by the user via a volume switch (not shown).
Preferably, encryption circuit 134 includes a plurality of encryption keys and encryption algorithms which are stored in a storage means such as memory locations which are part of radio controller 126, the storage means can also be part of encryption circuit 134 if so designed. Radio 100 can choose between the different encryptions keys and algorithms in order to automatically switch the encryption which is utilized on a transmission by transmission basis. Encryption circuit 134 acts as the encryption means during radio transmissions and as the decryption means when radio 100 is receiving encrypted messages. Consequently, the encryption key can be used for both encryption and decryption.
Controller 126 is in charge of coordinating the overall activities of radio 100 including the control of both transmitter 108 and receiver 114. Controller 126 preferably comprises a conventional microprocessor or microcontroller, having on-chip memory, I/O lines, and the capability for external memory device interfacing. In the present invention, controller 126 also controls the dynamic changing of encryptions keys by informing encryption circuit 134 when to load in a new encryption key in order to decrypt an incoming message or encrypt a message which is to be transmitted. Radio 100 can be a conventional radio, trunked radio, or other type of radio as known in the
communication art. Radio 100 can also be a conventional analog transmission radio (FM), or can be a radio capable of digitally transmitting information (i.e. linear modulated, etc.)
If radio 100 is a trunked radio operating in a trunked radio communication system such as that shown in FIG. 2, controller 126 controls the switching of frequencies for both the transmitter 108 and receiver 114 depending on instructions which would come from the trunked system central controller 204 (shown in FIG.2). In order for radio 100 to transmit a voice message, PTT switch 132 is activated by the radio user, which in turn activates the transmitter means such as transmitter 108 via a signal coming from controller 126 on bus 128. During a normal voice transmission, the radio user speaks into microphone 102 which converts the audio signals to electrical signals which are in turn amplified by amplifier 104. Amplifier 104 has gain adjustment capability via line 130, which is controlled by controller 126. The amplified signal is then fed to transmitter 108 which converts the signal to a radio frequency signal and transmits the signal via antenna switch 110 to antenna 112. If the transmission is required to be encrypted, the signal is routed via bus 140 to the encryption circuit 134 prior to its transmission, where it is there encrypted and sent back to transmitter 108 for transmission. In FIG. 2 a block diagram of a typical communication system which can use the present invention such as a trunked radio communication system is shown. The radios or subscriber units 100, which are part of system 200, communicate over a control channel 202 with the control resource such as system central controller 204 in order to receive status and control information from the central controller 204. In communication systems which are not trunked, the control resource can be a base station or other similar communication devices, or in a system having only radios the control resource can be the embedded signalling sent by the individual radios themselves. The system central controller 204 acts as the system coordinator and is responsible for assigning radios in the same groups to
different repeaters 206 (voice channels) so that they may communicate amongst each other whenever a request from one of the groups comes into the controller. The central controller 204 is also responsible for knowing where each of the radios are located (i.e. what voice channel) and for controlling other features typically found in a modem trunked communication system (e.g. handling phone patches, coordinating groups of radios in emergency situations, etc.). The typical central controller 204 includes a main processing unit such as a computer with appropriate control software which controls the operation of controller 204. Also normally included as part of controller 204 is a video display and keyboard in order to allow the central control operator to communicate with the system.
The signals which are sent from the central controller 204 to the subscriber units over the control channel 202 are typically called outbound signalling words (OSW's"). The control signals going from radios 100 to the central controller 204 are called inbound signalling words (ISW's). OSW's for example, inform particular radios 100 as to when to change channels automatically, so as to allow them to communicate with other members of the same radio group over an assigned voice channel 206.
An example of a typical trunked conversation will begin by one radio 100 in group "A" pressing PTT which automatically sends an ISW over the control channel 202 to the central controller 204 requesting a voice channel grant (allocation of one of the voice channels 206). Once the request comes in, central controller 204 decides which voice channel 206 to assign and transmits an OSW via control channel 202 back to radios 100. The OSW will inform all radios 100 in group "A" to move to repeater No. 2 for example, at which point all the radios in group "A" will move to that repeater to begin their conversation. Although FIG. 2 shows a trunked communication system, the present invention can operate in many types of communication systems including but not limited to cellular systems, conventional
radio systems, and systems using embedded signalling on the RF channel.
In FIG. 3A there is shown a way of automatically changing the radio's encryption during the course of a radio conversation in accordance with the present invention. FIG. 3A shows a typical encrypted conversation as disclosed in the present invention. Each time a radio 100, either unit #1 or unit #2 sends a transmission, a new encryption (new key and/or algorithm), which will be hereinafter referred to simply as "encryption key", will be used to encrypt the next message to be transmitted. Each time a radio sends a transmission, a different encryption key identifier can be randomly selected from among a group of key identifiers representing the encryption keys stored in the radio's encryption circuitry 134. The key identifier is simply a number or other designation assigned to an encryption key and is in no other way related to the encryption key itself. The encryption key associated with the chosen key identifier is then used to encrypt the message to be transmitted, which is done by the encryption circuit 134. Preferably, the plurality of unique key identifiers and encryption keys can be stored in a storage means which can be in radio controller 126. The data relating to the chosen encryption key can then be sent over bus 136 to encryption circuit 134. Another alternative is to have the list of key identifiers stored in controller 126 and the encryption keys stored in encryption circuit 134.
Controller 126, which acts as the radio's control means has a first selection means such as a conventional random number generation algorithm stored in the controller's memory which is executed by controller 126 in order to randomly determine the next key identifier to select for use by the encryption circuit 134 in encrypting the message to be transmitted. Once a key identifier is automatically selected, controller 126 sends the corresponding encryption information data (e.g. new encryption key data) via bus 136 to encryption circuit 134 so that the encryption information can be loaded in
Controller 126 upon selecting a key identifier sends a message over bus 136 to encryption circuit 134 informing the encryption circuit 134 of what key ID has been selected. The key identifier basically acts as a pointer allowing encryption circuit 134 to choose the correct encryption key from among the plurality of encryption keys stored in encryption circuit 134 or if the encryption keys are stored in controller 126 the data (i.e. encryption information) is sent via bus 136 and loaded into encryption circuit 134. Preferably, encryption circuit 134 comprises one encryption algorithm in the form of an encryption hybrid, for example DES-XL, which is loaded with the encryption key that matches the key identifier selected. The selected key is loaded into the encryption hybrid from memory locations that are also part of the encryption circuit 134, allowing for the algorithm to become scrambled with that particular key pattern. A more sophisticated embodiment of the present invention can have encryption circuit 134 support a plurality of encryption hybrids, for example, DES-XL and DVP-XL In this particular case, the key identifier selected by controller 126 informs encryption circuit 134 which encryption hybrid to select and then which key to load into the selected hybrid. In this particular case, the key identifier points to a particular encryption algorithm and key combination. Radio 100 transmits the key identifier which is selected, in an unencrypted format prior to the encrypted message being transmitted. The radio units 100 receiving the encrypted transmission also have the same set of encryption keys and corresponding key identifiers stored. Upon receiving the unencrypted key identifier, the receiving radios 100 decode the unencrypted key identifier by using a decoder means such as a conventional decoding algorithm stored in controller 126 which decoded the unencrypted key identifier. Once the received key identifier is decoded, a second selection means included in controller 126 in the form of a comparison program, finds the corresponding key identifier stored in the radio. Once the correct key identifier is located, the corresponding encryption key is loaded into encryption circuit 134 in order to decrypt the
encrypted message which accompanied the decoded key identifier. Each radio 100 in communication system 200 has a list of identical encryption keys each having the corresponding unique key identifier, thereby allowing radios 100 to transmit and receive to each other using different encryption keys on a transmission per transmission basis.
When unit #1 has its PTT switch activated, the radio automatically selects a key identifier from the available list of key identifier's stored in encryption circuit 134, this can be done using a conventional random generation program stored in controller 126 or a predetermined selection process (selection program) also stored in controller 126. The automatically selected key identifier information can then be sent over bus 136. The encryption (traffic key), which is related to the selected key identifier is then selected in order to encrypt the radio transmission which follows. This is done by loading the appropriate encryption device (i.e. DES-XL) which is part of encryption circuit 134 with the selected key. As soon as encryption circuit 134 has decided which encryption key to use for encrypting the message, the key identifier information is relayed to transmitter 108 which transmits this information prior to the radio user's message going out over the air. Radio unit #2 receives the key identifier transmitted by radio unit #1 and then uses the unencrypted key identifier to load the appropriate encryption key into its encryption circuitry in order to decode the encrypted message which follows.
FIG. 3A then shows radio unit #2 loading encryption key "B", transmitting the key id information to unit #1 , followed by an encrypted message encrypted with encryption key "B". Radio unit #1 then receives the key identifier information and loads the appropriate encryption key in order to decrypt the message. This routine is followed by each radio prior to each radio transmitting a message. Changing the encryption key that is used to transmit a message every time a message is transmitted adds a higher level of security to the radio transmissions, by forcing any would be eavesdropper not only to be able to decipher not one encryption
key but many in order to intercept ongoing radio transmissions. By automatically selecting the key identifier to use on a transmission per transmission basis the radio user does not have to preoccupy himself with manually changing encryptions. In FIG. 3B a similar transmission sequence as in FIG. 3A is shown except this communication sequence has been modified to reduce the delays caused in FIG. 3A by the radios having to decode the key identifier information each time the radios began receiving information. The delays in FIG. 3A are caused because it is assumed that radios 100 randomly select a key identifier prior to any radio transmissions. This causes the radios that are receiving the message to first decode the key identifier in order to load in the proper encryption key to decrypt the incoming message. In FIG. 3B the radios, instead of using a random encryption key generation protocol, use a predetermined encryption key selection program which is stored in each radios controller 126. By having each radio in a system use the same encryption selection algorithm (both receiving and transmitting radios), normally only the first transmission sequence will require any delay in decoding the key identifier information. After the first cycle all of the radios know the encryption key which will be used to encrypt the following message, thereby allowing the radios to load in the new encryption key information prior to any radio transmitting or receiving any information. The decoding of the key identifiers need only be done by radios which are not "in synch" with the predetermined selection process (i.e. do not know the next encryption which will be used). If the predetermined selection process chosen repeats a key identifier more than once prior to the algorithm cycling one time through, it will require receiving radios 100 who are just coming into the system to receive two or more key identifiers in order to properly determine the place in the predetermined sequence the radios in the system are presently at. This will cause a slight delay in radios just coming into the system in having to properly decode the key ID a few times until the new radio can begin using the predetermined algorithm automatically. The preprogrammed encryption key
sequence can be as simple as an algorithm stored in controller 126 that uses the next key identifier in a key identifier list, or can be a more complex algorithm repeating the key identifiers in a complex manner. As is shown in FIG. 3B, radio unit #1 loads encryption key
"A" and the radio then follows the standard routine of transmitting the unencrypted key identifier information followed by the encrypted message which is encrypted with the encryption corresponding to key identifier "A". Radio unit #2 receives the unencrypted key identifier which is decoded and then unit #2 compares the presently loaded encryption to see if the key identifier of the presently loaded encryption matches the decoded key identifier. If the key ID'S do not match, the radio automatically loads the encryption associated with the decoded key identifier by running a comparison program with the list of encryption keys the radio has stored in controller 126. After the key identifier is loaded, the encrypted message that follows is decrypted. In this new method of selecting the key identifier as shown in FIG. 3B, both radios load key "B" after the first transmission call has dropped, since this is the next key which is to be loaded according to their predetermined identifier selection process which all radios in the system follow. Since both radios follow the same predetermined key identifier selection process, there is no delay associated with key identifier decoding and key loading as was the case in FIG. 3A, once the radios come in "synch" with the predetermined key identifier selection process.
Radios 100, which go out of range or have been turned off, can automatically synch with other radios in the group since the key identifier is sent prior to every transmission in an unencrypted format. The synch up procedure requires a key identifier to be decoded using the decoding means which is in controller 126, and then the proper key needs to be loaded, after which the radio 100 will be able to follow the predetermined key identifier selection process which all radios 100 are following. For example, radios 100 in system 200 could all be using key identifiers "A", "B", "C", and "D" each identifier pointing to a
different encryption key and all the radios 100 using a predetermined process which follows the sequence of "D", "B", "A", and "C", in that particular order. A radio first coming into system 200 would only have to decode the first key identifier in order to determine the next key identifier (and encryption key) which will be used in the next transmission by any radio 100 in that particular radio group. A trunked radio system like that shown in FIG.2 could have each of the radio groups utilizing a different unique predetermined selection process for all radio group voice traffic transmissions.
In summary, the present invention illustrates how to increase the overall security of radio communications by utilizing radios which can automatically change the encryption being used to encrypt transmissions on a transmission by transmission basis. By transmitting an unencrypted key identifier prior to the encrypted transmission all other radios which have the correct key identifier can decrypt the message. Since the key identifiers have no relationship to the encryption key being used except for their use in pointing to the location of the corresponding encryption key in the individual radios, an eavesdropper could no use for the key identifier if he were able to decode it. By using more than one encryption key to encrypt transmissions a higher level of security can be had for individual communications. If an eavesdropper were able to decipher one of the encryption keys he stili would only be able to listen to a very short piece of a conversation, since most of the transmissions would be using a different encryption key to encrypt the transmissions. By also using a predetermined encryption selection process which is utilized by all radios in a system, all radios can automatically know what encryption will be used for the next transmission by any particular radio. By using the predetermined selection process, very little deiays are encountered in automatically switching encryptions on a transmission per transmission basis. Which makes the overall communications more secure and does not add delays to the radio transmissions. What is claimed is:
Claims
1. A receiver capable of receiving encrypted messages which have unencrypted key identifiers, comprising: storage means for storing a plurality of encryption keys each having a unique stored key identifier; selection means for automatically selecting the proper key identifier to use from among the plurality of key identifiers in order to decrypt the incoming message prior to the encrypted message being received; and a decryption means for decrypting the encrypted message using the encryption key which corresponds to the selected key identifier.
2. The receiver of claim 1 , wherein the selection means comprises a predetermined selection routine stored in the storage means which automatically selects the proper key identifier from among the plurality of key identifiers prior to receiving an encrypted message.
3. The receiver of claim 1 , wherein the receiver is a radio receiver.
4. The receiver of claim 2, further comprising: a decoding means for decoding the unencrypted key identifier from the encrypted message which is received.
5. A transmitter, comprising: storage means for storing a plurality of encryption keys each having a unique stored key identifier; selection means for automatically selecting from among the plurality of key identifiers one of the key identifiers; an encryption means responsive to the selection means for encrypting a message to be transmitted using the encryption key corresponding to the key identifier selected; and transmitter means for transmitting the selected key identifier in an unencrypted format with the message encrypted by the encryption means.
6. A transmitter as defined in claim 5, wherein the selection means uses a random selection process to select from among the plurality of key identifiers one of the key identifiers.
7. A transmitter as defined in claim 5, wherein the selection means uses a predetermined selection process to select from among the plurality of key identifiers one of the key identifiers.
8. A transmitter as defined in claim 7, wherein the predetermined selection process chooses a different key identifier from among the plurality of stored key identifiers for every subsequent transmission.
9. A radio, comprising: storage means for storing a plurality of encryption keys each having an unique stored key identifier; transmitter means for transmitting messages; control means having a first selection means for automatically selecting a key identifier, and a second selection means for use in automatically selecting a key identifier when the radio is receiving a message; encryption means responsive to the first selection means for encrypting messages to be transmitted using the encryption key corresponding to the key identifier selected by the first selection means; receiver means capable of receiving encrypted messages having unencrypted key identifiers; said second selection means automatically selecting from among the plurality of stored key identifiers the key identifier which is to be used to properly decrypt the received encrypted message; and decryption means for decrypting the received encrypted message using the encryption key which corresponds to the key identifier selected by the second selection means.
10. The radio as defined in claim 9, wherein the selected key identifier is transmitted in an unencrypted format with the encrypted message that is to be transmitted.
11. A communication system, comprising: a control resource; and a plurality of radios, each radio further comprising: storage means for storing a plurality of encryption keys each having a unique stored key identifier; transmitter means for transmitting messages; control means having a first selection means for automatically selecting a key identifier, and a second selection means for use in automatically selecting a key identifier when the radio is receiving a message; encryption means responsive to the first selection means for encrypting messages to be transmitted using the encryption key corresponding to the key identifier selected by the first selection means; receiver means capable of receiving encrypted messages having unencrypted key identifiers; said second selection means automatically selecting from among the plurality of stored key identifiers the key identifier which is to be used to properly decrypt the received encrypted message; and decryption means for decrypting the encrypted message using the encryption key which corresponds to the key identifier selected by the second selection means.
12. The communication system of claim 11 , wherein the system is a trunked system, and the control resource is a trunked system central controller.
13. The radio of claim 11 , wherein the first selection means randomly selects one of the key identifiers prior to each transmission.
14. The radio of claim 11 , wherein the first selection means follows a predetermined pattern of selecting key identifiers.
15. The radio as defined in claim 11 , wherein the selected key identifier is transmitted in an unencrypted format with the encrypted message that is to be transmitted.
Priority Applications (4)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
DE69229346T DE69229346T2 (en) | 1991-04-03 | 1992-03-27 | DYNAMIC ENCRYPTION KEY SELECTION FOR ENCRYPTED RADIO TRANSMISSION |
DK92911983T DK0596894T3 (en) | 1991-04-03 | 1992-03-27 | Dynamic selection of encryption keys for encrypted radio transmissions |
JP4511679A JP2782954B2 (en) | 1991-04-03 | 1992-03-27 | Dynamic encryption key selection for encrypted wireless transmission |
EP92911983A EP0596894B1 (en) | 1991-04-03 | 1992-03-27 | Dynamic encryption key selection for encrypted radio transmissions |
Applications Claiming Priority (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
US07/680,188 US5222137A (en) | 1991-04-03 | 1991-04-03 | Dynamic encryption key selection for encrypted radio transmissions |
US680,188 | 1991-04-03 |
Publications (1)
Publication Number | Publication Date |
---|---|
WO1992017959A1 true WO1992017959A1 (en) | 1992-10-15 |
Family
ID=24730082
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
PCT/US1992/002627 WO1992017959A1 (en) | 1991-04-03 | 1992-03-27 | Dynamic encryption key selection for encrypted radio transmissions |
Country Status (7)
Country | Link |
---|---|
US (1) | US5222137A (en) |
EP (1) | EP0596894B1 (en) |
JP (1) | JP2782954B2 (en) |
DE (1) | DE69229346T2 (en) |
DK (1) | DK0596894T3 (en) |
ES (1) | ES2134807T3 (en) |
WO (1) | WO1992017959A1 (en) |
Cited By (6)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
GB2279537A (en) * | 1993-07-01 | 1995-01-04 | Motorola Inc | A method for point-to-point communications within secure communication systems |
AU659023B2 (en) * | 1992-07-27 | 1995-05-04 | Telstra Corporation Limited | A communications system |
US7929704B2 (en) | 2005-05-25 | 2011-04-19 | Zenith Electronics Llc | Modified triple wrap encryption/decryption system |
US8144868B2 (en) | 2005-05-25 | 2012-03-27 | Zenith Electronics Llc | Encryption/decryption of program data but not PSI data |
EP2204939B1 (en) * | 2001-10-09 | 2020-03-18 | Qualcomm Incorporated | Method and apparatus for security in a data processing system |
US11388001B2 (en) | 2017-08-02 | 2022-07-12 | Nippon Telegraph And Telephone Corporation | Encrypted communication device, encrypted communication system, encrypted communication method, and program |
Families Citing this family (72)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US4965825A (en) | 1981-11-03 | 1990-10-23 | The Personalized Mass Media Corporation | Signal processing apparatus and methods |
US7831204B1 (en) | 1981-11-03 | 2010-11-09 | Personalized Media Communications, Llc | Signal processing apparatus and methods |
USRE47642E1 (en) | 1981-11-03 | 2019-10-08 | Personalized Media Communications LLC | Signal processing apparatus and methods |
US6175312B1 (en) | 1990-05-29 | 2001-01-16 | Microchip Technology Incorporated | Encoder and decoder microchips and remote control devices for secure unidirectional communication |
US5608800A (en) * | 1992-04-09 | 1997-03-04 | Siemens Aktiengesellschaft | Process for detecting unauthorized introduction of any data transmitted by a transmitter to a receiver |
US5442341A (en) * | 1992-04-10 | 1995-08-15 | Trw Inc. | Remote control security system |
US5768276A (en) * | 1992-10-05 | 1998-06-16 | Telefonaktiebolaget Lm Ericsson | Digital control channels having logical channels supporting broadcast SMS |
US6041047A (en) * | 1992-10-05 | 2000-03-21 | Telefonaktiebolaget Lm Ericsson | Digital control channels having logical channels supporting broadcast SMS |
US5444782A (en) * | 1993-03-09 | 1995-08-22 | Uunet Technologies, Inc. | Computer network encryption/decryption device |
US5442703A (en) * | 1993-05-30 | 1995-08-15 | Motorola, Inc. | Method for identifying corrupt encryption keys within a secure communication system |
JP3548215B2 (en) * | 1993-12-22 | 2004-07-28 | キヤノン株式会社 | Communication method and system |
US5381479A (en) * | 1994-02-28 | 1995-01-10 | Motorola, Inc. | Method for over the air rekeying of multiple communication groups |
JPH07271865A (en) | 1994-04-01 | 1995-10-20 | Mitsubishi Corp | Method for managing copyright of data base |
US7302415B1 (en) * | 1994-09-30 | 2007-11-27 | Intarsia Llc | Data copyright management system |
DE69532434T2 (en) | 1994-10-27 | 2004-11-11 | Mitsubishi Corp. | Device for file copyright management system |
JPH08204702A (en) * | 1995-01-30 | 1996-08-09 | Nec Corp | Cipher key management equipment |
JP3294739B2 (en) * | 1995-03-30 | 2002-06-24 | 三洋電機株式会社 | Method for scrambling or descrambling FM multiplex broadcasting |
US5757924A (en) * | 1995-09-18 | 1998-05-26 | Digital Secured Networks Techolognies, Inc. | Network security device which performs MAC address translation without affecting the IP address |
US8595502B2 (en) | 1995-09-29 | 2013-11-26 | Intarsia Software Llc | Data management system |
JP3176030B2 (en) | 1996-01-08 | 2001-06-11 | 株式会社東芝 | Copy control method and copy control device |
US5912882A (en) | 1996-02-01 | 1999-06-15 | Qualcomm Incorporated | Method and apparatus for providing a private communication system in a public switched telephone network |
US5966443A (en) * | 1996-04-30 | 1999-10-12 | Motorola, Inc. | Method for correcting subscriber-based secure call keys |
US5784461A (en) * | 1996-05-23 | 1998-07-21 | Eastman Kodak Company | Security system for controlling access to images and image related services |
US5822430A (en) * | 1996-11-20 | 1998-10-13 | Technical Communications Corporation | System for encoding encryption/decryption information into IFF challenges |
US6240513B1 (en) * | 1997-01-03 | 2001-05-29 | Fortress Technologies, Inc. | Network security device |
EP1012702A4 (en) * | 1997-09-11 | 2004-04-21 | Digital Square Inc | Digital content vending, delivery, and maintenance system |
US20120323792A1 (en) * | 1997-09-11 | 2012-12-20 | Digital Delivery Networks, Inc. | Multi platform and operating system digital content vending, delivery, and maintenance system |
US6282294B1 (en) | 1998-01-07 | 2001-08-28 | Microsoft Corporation | System for broadcasting to, and programming, a motor device in a protocol, device, and network independent fashion |
US6408074B1 (en) * | 1998-10-22 | 2002-06-18 | Lucent Technologies Inc. | Hardware architecture for a configurable cipher device |
US7010127B2 (en) * | 2000-01-26 | 2006-03-07 | Fujitsu Limited | Cryptographic communication method, file access system and recording medium |
JP2001230769A (en) * | 2000-02-18 | 2001-08-24 | Nippon Telegr & Teleph Corp <Ntt> | Transmission terminal, reception terminal and password key synchronization system in packet communication system |
US6454709B1 (en) * | 2000-08-29 | 2002-09-24 | Peter Kleinschmidt | Tele-evaluation system, especially for medicine |
US6907123B1 (en) * | 2000-12-21 | 2005-06-14 | Cisco Technology, Inc. | Secure voice communication system |
US6782102B2 (en) | 2000-12-21 | 2004-08-24 | Motorola, Inc. | Multiple format secure voice apparatus for communication handsets |
US7224801B2 (en) * | 2000-12-27 | 2007-05-29 | Logitech Europe S.A. | Wireless secure device |
ITTO20010321A1 (en) * | 2001-04-04 | 2002-10-04 | Telecom Italia Lab Spa | PROCEDURE FOR THE TRANSMISSION OF SMS MESSAGES WITH PROTECTED IDENTITY. |
FR2825209A1 (en) * | 2001-05-23 | 2002-11-29 | Thomson Licensing Sa | DEVICES AND METHOD FOR SECURING AND IDENTIFYING MESSAGES |
JP4045777B2 (en) * | 2001-10-30 | 2008-02-13 | 株式会社日立製作所 | Information processing device |
KR100445406B1 (en) * | 2001-11-30 | 2004-08-25 | 주식회사 하이닉스반도체 | Apparatus for encrypting the data and method therefor |
US8335915B2 (en) * | 2002-05-14 | 2012-12-18 | Netapp, Inc. | Encryption based security system for network storage |
FI114061B (en) * | 2002-05-17 | 2004-07-30 | Nokia Corp | Procedure and system in a digital wireless data network to provide a data encryption and corresponding server |
US7496353B2 (en) | 2002-11-22 | 2009-02-24 | Intellisist, Inc. | System and method for providing multi-party message-based voice communications |
KR100547855B1 (en) | 2003-01-14 | 2006-01-31 | 삼성전자주식회사 | Secure communication system and method of a composite mobile communication terminal having a local area communication device |
CN100583741C (en) * | 2003-09-04 | 2010-01-20 | 学校法人同志社 | Radio communication system |
GB2417399B (en) * | 2004-08-12 | 2007-04-25 | Samsung Electronics Co Ltd | Reconfigurable key search engine |
GB2431320B (en) * | 2004-08-12 | 2007-12-05 | Samsung Electronics Co Ltd | Reconfigurable key search engine |
KR100735577B1 (en) * | 2004-08-12 | 2007-07-04 | 삼성전자주식회사 | Apparatus and method for adaptively searching security key in wireless network |
ES2272130B1 (en) * | 2004-10-28 | 2008-03-16 | Universidad De Almeria | MESSAGE ENCRYPTION / DECIFRING UNIT WITH DIGITAL INFORMATION, SYSTEM AND ENCRYPTION / DEFRYING METHOD FOR DIGITAL COMMUNICATIONS IN REAL TIME. |
JP2006197041A (en) * | 2005-01-12 | 2006-07-27 | Nec Corp | PoC SYSTEM AND PoC MOBILE TERMINAL, POINTER DISPLAY METHOD USED THEREFOR, AND PROGRAM THEREOF |
JP2006211343A (en) * | 2005-01-28 | 2006-08-10 | Renesas Technology Corp | Authentication method and its system |
US8898452B2 (en) * | 2005-09-08 | 2014-11-25 | Netapp, Inc. | Protocol translation |
DE102005046462B4 (en) * | 2005-09-21 | 2008-09-18 | Engel Solutions Ag | Network component for a communication network, communication network and method for providing a data connection |
US8127130B2 (en) * | 2006-04-18 | 2012-02-28 | Advanced Communication Concepts, Inc. | Method and system for securing data utilizing reconfigurable logic |
US8042155B1 (en) | 2006-09-29 | 2011-10-18 | Netapp, Inc. | System and method for generating a single use password based on a challenge/response protocol |
US7876220B2 (en) * | 2006-11-22 | 2011-01-25 | Cintas Corporation | Garment tracking and processing system |
US20080116274A1 (en) * | 2006-11-22 | 2008-05-22 | Aldridge Jeffrey L | Garment RFID Private Protocol Apparatus |
US20080115541A1 (en) * | 2006-11-22 | 2008-05-22 | Aldridge Jeffrey L | Garment Processing Personnel Safety Apparatus |
EP2223460A4 (en) * | 2007-12-20 | 2011-12-28 | Bce Inc | Contact-less tag with signature, and applications thereof |
US20090310786A1 (en) * | 2008-06-11 | 2009-12-17 | Quintic Holdings | Systems for Channel Coordination of Audio and Data Transmission in a Broadcast Band |
KR20100047651A (en) * | 2008-10-29 | 2010-05-10 | 삼성전자주식회사 | Method and apparatus for acquiring encryption key for providing premium channel |
WO2010069033A1 (en) | 2008-12-18 | 2010-06-24 | Bce Inc | Validation method and system for use in securing nomadic electronic transactions |
WO2010069034A1 (en) | 2008-12-18 | 2010-06-24 | Bce Inc. | Processing of communication device signatures for use in securing nomadic electronic transactions |
JP5975594B2 (en) * | 2010-02-01 | 2016-08-23 | 沖電気工業株式会社 | Communication terminal and communication system |
US8631460B2 (en) * | 2011-03-23 | 2014-01-14 | CipherPoint Software, Inc. | Systems and methods for implementing transparent encryption |
US8990266B2 (en) | 2011-10-18 | 2015-03-24 | CipherPoint Software, Inc. | Dynamic data transformations for network transmissions |
US8687808B2 (en) * | 2012-04-10 | 2014-04-01 | Comtech Ef Data Corp. | Method and system for self synchronizing cryptographic parameters |
KR101329084B1 (en) * | 2012-05-17 | 2013-11-14 | 한국전자통신연구원 | Method and apparatus of encryption/decryption for providing seamless cipher communication |
FR2996947B1 (en) * | 2012-10-11 | 2015-09-04 | Openways Sas | SECURE METHOD FOR OPENING CONTROL OF LOCK DEVICES FROM MESSAGES USING SYMMETRICAL ENCRYPTION |
US20160261670A1 (en) * | 2013-06-24 | 2016-09-08 | Cornet Technology, Inc. | Tactical radio adaptor |
US9119064B2 (en) * | 2013-11-20 | 2015-08-25 | At&T Intellectual Property I, L.P. | Method and apparatus for providing broadcast channel encryption to enhance cellular network security |
US10248553B2 (en) * | 2017-07-14 | 2019-04-02 | International Business Machines Corporation | Test methodology for detection of unwanted cryptographic key destruction |
US10291594B2 (en) * | 2017-08-31 | 2019-05-14 | Fmr Llc | Systems and methods for data encryption and decryption |
Citations (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US4607137A (en) * | 1983-04-26 | 1986-08-19 | U.S. Philips Corporation | Method of distributing and utilizing enciphering keys |
US4809327A (en) * | 1986-09-02 | 1989-02-28 | Unisys Corporation | Encrtption of messages employing unique control words and randomly chosen encryption keys |
US4853962A (en) * | 1987-12-07 | 1989-08-01 | Universal Computer Consulting, Inc. | Encryption system |
US4876716A (en) * | 1986-08-22 | 1989-10-24 | Nec Corporation | Key distribution method |
US4924513A (en) * | 1987-09-25 | 1990-05-08 | Digital Equipment Corporation | Apparatus and method for secure transmission of data over an unsecure transmission channel |
Family Cites Families (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US3953677A (en) * | 1945-05-10 | 1976-04-27 | Bell Telephone Laboratories, Incorporated | Key signaling system with multiple pulse generators |
US5146498A (en) * | 1991-01-10 | 1992-09-08 | Motorola, Inc. | Remote key manipulations for over-the-air re-keying |
-
1991
- 1991-04-03 US US07/680,188 patent/US5222137A/en not_active Expired - Fee Related
-
1992
- 1992-03-27 DK DK92911983T patent/DK0596894T3/en active
- 1992-03-27 ES ES92911983T patent/ES2134807T3/en not_active Expired - Lifetime
- 1992-03-27 JP JP4511679A patent/JP2782954B2/en not_active Expired - Lifetime
- 1992-03-27 EP EP92911983A patent/EP0596894B1/en not_active Expired - Lifetime
- 1992-03-27 WO PCT/US1992/002627 patent/WO1992017959A1/en active IP Right Grant
- 1992-03-27 DE DE69229346T patent/DE69229346T2/en not_active Expired - Fee Related
Patent Citations (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US4607137A (en) * | 1983-04-26 | 1986-08-19 | U.S. Philips Corporation | Method of distributing and utilizing enciphering keys |
US4876716A (en) * | 1986-08-22 | 1989-10-24 | Nec Corporation | Key distribution method |
US4809327A (en) * | 1986-09-02 | 1989-02-28 | Unisys Corporation | Encrtption of messages employing unique control words and randomly chosen encryption keys |
US4924513A (en) * | 1987-09-25 | 1990-05-08 | Digital Equipment Corporation | Apparatus and method for secure transmission of data over an unsecure transmission channel |
US4853962A (en) * | 1987-12-07 | 1989-08-01 | Universal Computer Consulting, Inc. | Encryption system |
Non-Patent Citations (1)
Title |
---|
See also references of EP0596894A4 * |
Cited By (17)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
AU659023B2 (en) * | 1992-07-27 | 1995-05-04 | Telstra Corporation Limited | A communications system |
GB2279537A (en) * | 1993-07-01 | 1995-01-04 | Motorola Inc | A method for point-to-point communications within secure communication systems |
FR2708403A1 (en) * | 1993-07-01 | 1995-02-03 | Motorola Inc | Method for point-to-point communications in security communication systems. |
GB2279537B (en) * | 1993-07-01 | 1997-09-10 | Motorola Inc | A method for point-to-point communications within secure communication systems |
CN1068486C (en) * | 1993-07-01 | 2001-07-11 | 摩托罗拉公司 | A method for point-to-point communications within secure communication systems |
EP1436939B1 (en) * | 2001-10-09 | 2020-04-08 | Qualcomm Incorporated | Method and apparatus for security in a data processing system |
EP2204940B1 (en) * | 2001-10-09 | 2020-04-01 | Qualcomm Incorporated | Method and apparatus for security in a data processing system |
EP2204939B1 (en) * | 2001-10-09 | 2020-03-18 | Qualcomm Incorporated | Method and apparatus for security in a data processing system |
US8144868B2 (en) | 2005-05-25 | 2012-03-27 | Zenith Electronics Llc | Encryption/decryption of program data but not PSI data |
US8189786B2 (en) * | 2005-05-25 | 2012-05-29 | Zenith Electronics Llc | Encryption system |
US8345877B2 (en) | 2005-05-25 | 2013-01-01 | Zenith Electronics Llc | Key management system |
US8401189B2 (en) | 2005-05-25 | 2013-03-19 | Zenith Electronics Llc | Opportunistic use of keys during encryption/decryption |
US8442226B2 (en) * | 2005-05-25 | 2013-05-14 | Zenith Electronics Llc | Decryption key management |
US8054974B2 (en) * | 2005-05-25 | 2011-11-08 | Zenith Electronics Llc | Opportunistic use of null packets during encryption/decryption |
US7936870B2 (en) * | 2005-05-25 | 2011-05-03 | Zenith Electronics Llc | Rotation of keys during encryption/decryption |
US7929704B2 (en) | 2005-05-25 | 2011-04-19 | Zenith Electronics Llc | Modified triple wrap encryption/decryption system |
US11388001B2 (en) | 2017-08-02 | 2022-07-12 | Nippon Telegraph And Telephone Corporation | Encrypted communication device, encrypted communication system, encrypted communication method, and program |
Also Published As
Publication number | Publication date |
---|---|
ES2134807T3 (en) | 1999-10-16 |
JPH06506813A (en) | 1994-07-28 |
JP2782954B2 (en) | 1998-08-06 |
DE69229346D1 (en) | 1999-07-08 |
EP0596894A1 (en) | 1994-05-18 |
DK0596894T3 (en) | 1999-12-06 |
EP0596894A4 (en) | 1994-08-17 |
DE69229346T2 (en) | 2000-01-27 |
EP0596894B1 (en) | 1999-06-02 |
US5222137A (en) | 1993-06-22 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US5222137A (en) | Dynamic encryption key selection for encrypted radio transmissions | |
US5185797A (en) | Encrypted trunked control channel system | |
US5199069A (en) | Automatic encryption selector | |
US5909491A (en) | Method for sending a secure message in a telecommunications system | |
US9131292B2 (en) | Wireless microphone system | |
US20070160214A1 (en) | Secure transmission system for a digital trunked radio system | |
JPH10336756A (en) | Direct cipher communication device between two terminals of mobile radio network, corresponding base station and terminal device | |
JPH0746643A (en) | System to access to digitally coded communication in dispersion type switching network | |
US5247576A (en) | Key variable identification method | |
GB2324682A (en) | Connection of a mobile wireless terminal to a host computer | |
KR20010080908A (en) | System and method of communicating encrypted group broadcast messages | |
EP0700627B1 (en) | Method for realizing ambience listening, and radio unit | |
EP1428403B1 (en) | Communications methods, systems and terminals | |
JP2967089B1 (en) | Cryptographic communication device | |
EP1253797B1 (en) | Communication system, communication unit and method for dynamically changing an encryption key | |
JPH11308673A (en) | Radio lan system | |
EP1641175A1 (en) | Receiver and method of receiving an encrypted communication | |
GB2439613A (en) | Communicating synchronising information for encryption/decryption functions | |
US20050074053A1 (en) | Method and system for providing security on a network |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
AK | Designated states |
Kind code of ref document: A1 Designated state(s): JP |
|
AL | Designated countries for regional patents |
Kind code of ref document: A1 Designated state(s): AT BE CH DE DK ES FR GB GR IT LU MC NL SE |
|
DFPE | Request for preliminary examination filed prior to expiration of 19th month from priority date (pct application filed before 20040101) | ||
WWE | Wipo information: entry into national phase |
Ref document number: 1992911983 Country of ref document: EP |
|
WWP | Wipo information: published in national office |
Ref document number: 1992911983 Country of ref document: EP |
|
WWG | Wipo information: grant in national office |
Ref document number: 1992911983 Country of ref document: EP |