公开(公告)号：US20190253434A1

公开(公告)日：2019-08-15

申请号：US16272358

申请日：2019-02-11

申请人： Amit Biyani ,  Gunjan Karun

发明人： Amit Biyani ,  Gunjan Karun

IPC分类号： H04L29/06 ,  H04L9/32

CPC分类号： H04L63/126 ,  H04L9/3226 ,  H04L63/065 ,  H04L2209/043 ,  H04L2209/38

摘要： The present disclosure relates to a method and system for managing and securing a distributed ledger for a decentralized peer-to-peer (p2p) network. The method receives an encrypted block and a group key generated by at least one peer node on the p2p network, wherein each peer node is IoT device and determines a virtual device block in a device chain on verifying the unique device ID, and address of a corresponding event chain associated with the virtual device block. Further, the method generates a transaction ID for a new transaction using the unique ID of the virtual device block and determines a valid event block in the event chain associated with the virtual device block for storing the new transaction and associated transaction ID. Further, the method updates the distributed ledger with the valid event block upon verification by one or more peer IoT devices of the p2p network.

公开(公告)号：US20190251061A1

公开(公告)日：2019-08-15

申请号：US16390530

申请日：2019-04-22

申请人： International Business Machines Corporation

发明人： Sebastien Vas ,  Zachary J. Mark ,  Jason K. Resch

IPC分类号： G06F16/13 ,  G06F11/14 ,  H04L29/06 ,  H04W12/04 ,  G06F11/07 ,  H04L9/32

CPC分类号： G06F16/13 ,  G06F11/0727 ,  G06F11/141 ,  G06F16/137 ,  G06F21/31 ,  G06F21/6209 ,  H04L9/3242 ,  H04L9/3247 ,  H04L9/3263 ,  H04L9/3271 ,  H04L63/0428 ,  H04L63/06 ,  H04L63/12 ,  H04L2209/043 ,  H04L2209/30 ,  H04L2209/34 ,  H04L2209/56 ,  H04L2209/80 ,  H04W12/04

摘要： To identify slice errors, a processing module of a computing device in a dispersed storage network (DSN) sends first list digest requests to at least first and second dispersed storage (DS) units. The requests indicates a first range of slice names to include in a first list digest. The processing module receives digest responses from the DS units, and compares the digest responses to determine whether they identify the same slices. If they do not identify the same slices, the processing module sends second list digest requests indicating a sub-range of the first range of slice names to include in second list digests. The sub-range continues to be narrowed until the processing module identifies at least one sub-range of slice names where a slice error exists.

公开(公告)号：US09906556B2

公开(公告)日：2018-02-27

申请号：US15486967

申请日：2017-04-13

申请人： Citrix Systems, Inc.

发明人： Tushar Kanekar

IPC分类号： H04L29/06 ,  H04L29/08

CPC分类号： H04L63/166 ,  H04L9/3268 ,  H04L9/3271 ,  H04L9/3297 ,  H04L63/0464 ,  H04L63/0471 ,  H04L63/0485 ,  H04L63/0823 ,  H04L63/0876 ,  H04L63/101 ,  H04L67/02 ,  H04L67/1002 ,  H04L67/1027 ,  H04L67/1036 ,  H04L67/146 ,  H04L69/162 ,  H04L2209/043 ,  H04L2209/30 ,  H04L2209/56 ,  H04L2209/60 ,  H04L2209/76 ,  H04L2209/80

摘要： The present invention is directed towards systems and methods for managing SSL session persistence and reuse in a multi-core system. A first core may indicate that an SSL session established by the first core is non-resumable. Responsive to the indication, the core may set an indicator at a location in memory accessible by each core of the multi-core system, the indicator indicating that the SSL session is non-resumable. A second core of the multi-core system may receive a request to reuse the SSL session. The request may include a session identifier of the SSL session. In addition, the session identifier may identify the first core as an establisher of the SSL session. The second core can identify from encoding of the session identifier whether the second core is not the establisher of the SSL session. Responsive to the identification, the second core may determine whether to resume the SSL session.

公开(公告)号：US20170353302A1

公开(公告)日：2017-12-07

申请号：US15614328

申请日：2017-06-05

申请人： AgilePQ, Inc.

发明人： Sergio A. FERNANDEZ ,  Bruce CONWAY ,  Drew CONWAY ,  David J. GOTRIK ,  Ayman IBAIDA ,  Dhiah AL-SHAMMARY ,  Alsharif ABUADBBA ,  Mark CONWAY

IPC分类号： H04L9/06 ,  H04L9/14 ,  G06F21/60

CPC分类号： H04L9/0662 ,  G06F21/602 ,  H04L1/0061 ,  H04L1/0075 ,  H04L9/06 ,  H04L9/065 ,  H04L9/12 ,  H04L9/14 ,  H04L9/16 ,  H04L2209/043 ,  H04L2209/08 ,  H04L2209/16 ,  H04L2209/805

摘要： In various embodiments, a computer-readable memory medium coupled to a processor is disclosed. The memory medium is configured to store instructions which cause the processor to retrieve a seed value, receive a digital bit stream, receive a digital bit stream, generate a stream of random bits, using the seed value as a seed to a pseudo random number generator (PRNG), wherein the stream of random bits contains at least as many bits as the digital bit stream, shuffle bits of the stream of random bits to create a random bit buffer, generate an obfuscated digital bit stream by applying a first exclusive OR (XOR) to the digital bit stream and the random bit buffer, wherein the obfuscated digital bit stream has the same number of bits as the digital bit stream, and provide the obfuscated digital bit stream to the communications interface.

公开(公告)号：US20170352298A1

公开(公告)日：2017-12-07

申请号：US15525235

申请日：2015-10-30

申请人： GIESECKE & DEVRIENT GMBH

发明人： Hermann DREXLER ,  Sven BAUER ,  Jürgen PULKUS

IPC分类号： G09C1/06 ,  H04L9/06 ,  H04L9/00 ,  G06F9/44 ,  H04L9/08 ,  G06F21/12

CPC分类号： G09C1/06 ,  G06F9/4403 ,  G06F21/12 ,  G09C1/00 ,  H04L9/002 ,  H04L9/0618 ,  H04L9/0625 ,  H04L9/0631 ,  H04L9/0822 ,  H04L2209/043 ,  H04L2209/08 ,  H04L2209/16

摘要： A processor device has an executable implementation of a cryptographic algorithm implemented being white-box-masked by a function f. The implementation comprises an implemented computation step S by which input values x are mapped to output values s=S[x], and which is masked to a white-box-masked computation step T′ by means of an invertible function f. As a mapping f there is provided a combination (f=(c1, c2, . . . )*A) of an affine mapping A having an entry width BA and a number of one or several invertible mappings c1, c2, . . . having an entry width Bc1, Bc2, . . . respectively, wherein BA=Bc1+Bc2+ . . . . Output values w are generated altogether by the mapping f. Multiplicities of sets Mxi, i=1, 2, . . . =Mx11, Mx12, . . . Mx21, Mx22, . . . are formed from the output values a of the affine mapping A.

公开(公告)号：US09838198B2

公开(公告)日：2017-12-05

申请号：US14219734

申请日：2014-03-19

申请人： NXP B.V.

发明人： Wil Michiels ,  Jan Hoogerbrugge

IPC分类号： H04L9/28 ,  H04L9/00 ,  H04L29/06 ,  G09C1/00 ,  H04L9/06

CPC分类号： H04L9/002 ,  G09C1/00 ,  H04L9/0618 ,  H04L63/1466 ,  H04L2209/043 ,  H04L2209/16 ,  H04L2209/24

摘要： A method of performing a keyed cryptographic operation mapping an input message to an output message, wherein the input message comprises m input data and the output message comprises m output data and wherein the cryptographic operation includes at least one round and the cryptographic operation specifies a substitution box for mapping input data into output data, including: transforming each of the m input data into n output data using n split substitution boxes, wherein the n split substitution boxes sum to the specified substitution box; and mixing and combining the m×n output data.

公开(公告)号：US20170332234A1

公开(公告)日：2017-11-16

申请号：US15154751

申请日：2016-05-13

申请人： Alfonsus D. Lunardhi

发明人： Alfonsus D. Lunardhi

IPC分类号： H04W12/06 ,  G01K1/02 ,  H04W24/04 ,  H04W52/18

CPC分类号： H04W12/06 ,  G01K1/02 ,  G06F21/44 ,  H04L2209/043 ,  H04W12/00504 ,  H04W24/04 ,  H04W52/18

摘要： Examples are disclosed that relate to the securing of a distributed sensor system. One example provides a security component configured to be communicatively coupled between a trusted element and a distributed sensor system. The security component includes a secured controller configured to receive a signal for forwarding to a sensor of the distributed sensor system, authenticate the signal as being sent from the trusted element, and forward the authenticated signal to the sensor. Further, when the signal is not authenticated as being sent from the trusted element, the secured controller may be configured to not forward the signal to the sensor. The security component also includes a feedback controller configured to analyze signals received from the distributed sensor system and send one or more feedback instructions to the trusted element based at least on the signals from the distributed sensor system.

公开(公告)号：US09646175B2

公开(公告)日：2017-05-09

申请号：US14554772

申请日：2014-11-26

申请人： Synopsys, Inc.

发明人： Amir Kaivani

IPC分类号： H04K1/00 ,  G06F21/72 ,  H04L9/06 ,  G09C1/00 ,  H04L9/00 ,  H03M13/09

CPC分类号： G06F21/72 ,  G06F11/10 ,  G09C1/00 ,  H03M13/098 ,  H04L9/003 ,  H04L9/004 ,  H04L9/0631 ,  H04L2209/043 ,  H04L2209/12 ,  H04L2209/26

摘要： A method of improving the operation of a processor executing a cryptographic process, by automatically detecting faults during both encryption and decryption operations by the cryptographic process, comprises segmenting the data to be encrypted and encrypting the data segments using a complex non-linear algorithm that can lead to faults; computing an output parity bit from a selected step of the algorithm for a selected data segment, based on the input value of that segment; comparing the actual output parity bit of the selected segment with the computed output parity bit for that segment; and determining whether a fault exists, based on whether the actual output parity bit matches the computed output parity bit for the selected segment.

公开(公告)号：US20170063524A1

公开(公告)日：2017-03-02

申请号：US15046114

申请日：2016-02-17

申请人： STMicroelectronics (Rousset) SAS

发明人： Nicolas Bruneau

IPC分类号： H04L9/00 ,  H04L9/06

CPC分类号： H04L9/005 ,  G09C1/00 ,  H04L9/003 ,  H04L9/0631 ,  H04L2209/043 ,  H04L2209/046

摘要： A method of protecting a Rijndael-type algorithm executed by an electronic circuit against side channel attacks, wherein: each block of data to be encrypted or decrypted is masked with a first mask before applying a non-linear block substitution operation from a first substitution box, and is then unmasked by a second mask after the substitution; the substitution box is recalculated, block by block, before applying the non-linear operation, the processing order of the blocks of the substitution box being submitted to a random permutation; and the recalculation of the substitution box uses the second mask as well as third and fourth masks, the sum of the third and fourth masks being equal to the first mask.

摘要翻译： 一种保护由电子电路执行的针对侧信道攻击的Rijndael型算法的方法，其中：在应用来自第一替换盒的非线性块替代操作之前，要用第一掩码掩蔽要加密或解密的每个数据块 ，然后在替代后被第二个掩模剥离; 替代框在应用非线性运算之前逐块重新计算，替换框的块的处理顺序被提交给随机排列; 并且替换盒的重新计算使用第二掩模以及第三和第四掩模，第三和第四掩模的和等于第一掩模。

公开(公告)号：US20170063522A1

公开(公告)日：2017-03-02

申请号：US15046092

申请日：2016-02-17

申请人： STMicroelectronics (Rousset) SAS

发明人： Nicolas Bruneau

IPC分类号： H04L9/00 ,  H04L9/06

CPC分类号： H04L9/003 ,  G09C1/00 ,  H04L9/0631 ,  H04L2209/043

摘要： A method of verifying the sensitivity of an electronic circuit executing a Rijndael-type algorithm to side channel attacks, wherein: each block of data to be encrypted or to be decrypted is masked with a first mask before a non-linear block substitution operation is applied based on a substitution box, and is then unmasked with a second mask after the substitution; the substitution box is recalculated, block by block, before the non-linear operation is applied, the processing order of the blocks of the substitution box being submitted to a permutation; and a side channel attack is performed on the steps of recalculating, block by block, the substitution box.

摘要翻译： 一种验证执行Rijndael型算法的电子电路对侧信道攻击的灵敏度的方法，其中：在应用非线性块替换操作之前，要加密或要解密的每个数据块被第一掩码掩蔽 基于替代框，然后在替换后用第二个掩码进行掩码; 在应用非线性操作之前，逐块重新计算替换盒，替换盒的块的处理顺序被提交到置换; 并且在重新计算的步骤上逐块执行替代框执行侧信道攻击。