Patent Grant
11824999
Cryptography is related to the study of protocols, techniques, and approaches that prevent third parties from accessing, reading, and/or interpreting secret data. Cryptography can be applied to various processes in information security, such as data integrity and encryption, confidentiality, authentication, verification, and non-repudiation. Thus, cryptography has several applications in various fields, including computer network data encryption and privacy, transaction processing, and computing system security and integrity.
Modern cryptography often relies upon computational hardness in mathematical theory. In other words, it might be theoretically possible to break certain cryptographic systems, but the time required to do so makes such cryptographic-defeating processes intractable. Computationally-secure cryptography processes are preferable to those which are easier to defeat. At the same time, however, computationally-secure cryptography processes might be more computationally-intensive to implement and, thus, more time consuming and costly.
Thus, although some cryptographic processes, such as a one-time pad, cannot be broken or defeated even with unlimited computing power, those schemes are more difficult to implement than a good, theoretically-breakable but computationally-secure approach. As such, today's modern computing devices settle for a pragmatic compromise. Modern computing devices exchange secret data using cryptographic processes that are relatively resource intensive (e.g., the processes are computationally-intensive and difficult to defeat) but still have security limitations (e.g., the processes are still susceptible to brute force attacks).
Aspects and features of a cryptosystem and authentication for the cryptosystem, and a method or process for the cryptosystem, are described. In one example, a method for cryptographic communications includes storing a secret key, generating a system randomization number, and encrypting a plain data package into an encrypted data package by application of the plain data package, the secret key, and the system randomization number to a system of equations for encryption. The system of equations can be a system of linearly dependent equations in one example. Among other benefits, the cryptosystem relies upon the system of linearly dependent equations and the system randomization number to provide additional strength against known-plaintext attacks, chosen-plaintext attacks, and other types of attacks. The system is more semantically secure and offers ciphertext indistinguishability in a new approach using the system of linearly dependent equations.
In other aspects of the embodiments, the secret key includes a set of secret key packages, the randomization number comprises a set of random number packages, and encrypting the plain data package comprises applying the plain data package, the set of secret key packages, and the set of random number packages to the system of equations for encryption.
The method can also include dividing plain data comprising the plain data package into a set of plain data packages for encryption, dividing the secret key into a set of secret key packages, and dividing the randomization number into a set of random numbers. The method can also include encrypting the set of plain data packages into sets of encrypted data packages by applying the set of plain data packages, the secret key packages, and the set of random numbers to the system of equations for encryption.
In one example, x is the plain data package, the secret key comprises a set of secret key packages k1, k2, and k3, the randomization number comprises a set of random number packages r1 and r2, and the system of equations for encryption includes:
(k1+r1)⊕k2=m1,
(x+r2)⊕k3=m2, and
r1+r2=m3, where
the encrypted data package comprises m1, m2, m3.
In another example, x is the plain data package, the secret key comprises a set of secret key packages k1, k2, k3, k4, k5, k6, k7, k8, and k9, the randomization number comprises a set of random number packages r1, r2, r3, and r4, and the system of equations for encryption includes:
(k1+r1+r3)⊕k2+k4=m1,
(x+r2+r4)⊕k3+k5=m2,
(r1+r2)⊕k6+k7=m3, and
(r3+r4)⊕k8+k9=m4, where
the encrypted data package comprises m1, m2, m3, and m4.
In other aspects, the method can further include decrypting, by the second computing device, the encrypted data package to the plain data package, by application of the encrypted data package and the secret key to an equation for decryption. In one example of this case, x is the plain data package, the encrypted data package comprises m1, m2, and m3, the secret key comprises a set of secret key packages k1, k2, and k3, and the equation for decryption is: x=m1 ⊕k2+m2 ⊕k3−k1−m3.
In another example for decrypting, x is the plain data package, the encrypted data package comprises the numbers m1, m2, m3, and m4, the secret key comprises a set of secret key packages k1, k2, k3, k4, k5, k6, k7, k8, and k9, and the equation for decryption is:
x=(m1−k4)⊕k2+(m2−k5)⊕k3−(m3−k7)⊕k6−(m4−k9)⊕k8−k1.
In another embodiment, a computing device for cryptographic communications includes a memory device configured to store computer-readable instructions thereon and a processing device configured, through execution of the computer-readable instructions, to generate a randomization number, encrypt a plain data package into an encrypted data package by application of the plain data package, a secret key, and the randomization number to a system of equations for encryption, and communicate the encrypted data package to a second computing device. In one case, the system of equations includes a system of linearly dependent equations.
In another aspect, the secret key includes a set of secret key packages, the randomization number comprises a set of random number packages, and the processing device is further configured to apply the plain data package, the set of secret key packages, and the set of random number packages to the system of equations for encryption.
The processing device can also be configured to divide plain data comprising the plain data package into a set of plain data packages for encryption, divide the secret key into a set of secret key packages, and divide the randomization number into a set of random numbers. In this case, the processing device is further configured to encrypt the set of plain data packages into sets of encrypted data packages by applying the set of plain data packages, the secret key packages, and the set of random numbers to the system of equations for encryption.
In another embodiment, a computing device for cryptographic communications includes a memory device configured to store computer-readable instructions thereon, and a processing device configured, through execution of the computer-readable instructions, to decrypt an encrypted data package to a plain data package, by application of the encrypted data package and a secret key to an equation for decryption, wherein x is the plain data package, the encrypted data package comprises m1, m2, and m3, the secret key comprises a set of secret key packages k1, k2, and k3, and the equation for decryption is: x=m1 ⊕k2+m2 ⊕k3−k1−m3.
In another embodiment, a computing device for cryptographic communications includes a memory device configured to store computer-readable instructions thereon, and a processing device configured, through execution of the computer-readable instructions, to decrypt an encrypted data package to a plain data package, by application of the encrypted data package and a secret key to an equation for decryption, wherein x is the plain data package, the encrypted data package comprises m1, m2, m3, and m4, the secret key comprises a set of secret key packages k1, k2, k3, k4, k5, k6, k7, k8, and k9, and the equation for decryption is: x=(m1−k4)⊕k2+(m2−k5)⊕k3−(m3−k7)⊕k6−(m4−k9)⊕k8−k1.
Another embodiment includes a non-transitory computer readable medium storing computer-readable instructions thereon that, when executed by a processing device, direct the processing device to generate a randomization number, encrypt a plain data package into an encrypted data package by application of the plain data package, a secret key, and the randomization number to a system of equations for encryption, and communicate the encrypted data package to a second computing device. The system of equations can include a system of linearly dependent equations.
Another embodiment includes a method for cryptographic authentication, including registering a first computing device with an authentication system, registering a second computing device with the authentication system, obtaining, by the authentication system, a first authentication credential from the first computing device, obtaining, by the authentication system, a second authentication credential from the second computing device, and operating, by the authentication system, on the first authentication credential and on the second authentication credential, to generate a combined credential for the first computing device and the second computing device. The method can also include receiving, by the authentication system, an identity credential from the first computing device, generating a verification credential for the second computing device based on the identity credential and the combined credential, and communicating the verification credential to the second computing device.
Another embodiment includes a method for cryptographic communications with authentication, including generating an identity number, combining plain data with the identity number, to generate identified data, encrypting, by a first computing device, the identified data into an encrypted data package by application of the identified data, a secret key, and a randomization number to a system of equations for encryption, and communicating the encrypted data package to a second computing device. The method can also include preparing, by the first computing device, an identity credential based on a combination of an authentication identifier of the first computing device and the identity number, and communicating, by the first computing device, the identity credential to an authentication system.
Many aspects of the present disclosure can be better understood with reference to the following drawings. The components in the drawings are not necessarily to scale, with emphasis instead being placed upon clearly illustrating the principles of the disclosure. Moreover, in the drawings, like reference numerals designate corresponding parts throughout the several views.
As noted above, cryptography is related to the study of protocols, techniques, and approaches that prevent third parties from accessing, reading, and/or interpreting the communication of secret data between parties. Among others, asymmetric key algorithms and symmetric key algorithms are two well-known approaches in cryptography.
Public-key or asymmetric key algorithms rely upon public/private key pairs. The public key can be distributed widely, and the private key is held by one user or party as a secret. Security in an asymmetric cryptography system relies upon maintaining the privacy of the private key, but the public key can be distributed without compromising security. Asymmetric cryptosystems are based on complexity but can, theoretically, be cracked, broken, and decrypted. For example, the Rivest-Shamir-Adleman (RSA) cryptosystem, the elliptic curve cryptography (ECC) cryptosystem, and other asymmetric (and even some symmetric) methods of secure key exchange can be cracked.
Symmetric key algorithms rely upon a single key for both encryption and decryption processes. Symmetric key algorithms are generally more complex, secure, and difficult to break than asymmetric key algorithms. Some symmetric key algorithms are considered virtually unbreakable, even using quantum computing devices. In terms of processing demands, symmetric key algorithms are also relatively less demanding and, thus, faster and cheaper to implement. Symmetric key algorithms are often used for the encryption and decryption of significant amounts of data where strong cryptography is desired. There are many different symmetric key algorithms, such as the data encryption standard (DES), advanced encryption standard (AES), international data encryption algorithm (IDEA), and the RC4 and RC5 stream cipher algorithms, among others.
However, like asymmetric cryptosystems, symmetric cryptosystems can also be subject to attack and, in some cases, broken and decrypted. Various weaknesses of asymmetric and symmetric cryptosystems are known in the field. Known-plaintext and chosen-plaintext attacks, among other approaches, can be used by attackers to evaluate weaknesses in and defeat cryptosystems. In a known-plaintext or chosen-plaintext attack, the attacker either a priori knows—or even choses—the blocks of plaintext data corresponding to the encrypted cyphertext blocks. The cyphertext blocks can then be analyzed in connection with the plaintext blocks, in an attempt to determine the cryptographic key or other operational aspects of the cryptosystem, which can then be used to further attack the cryptosystems or even decrypt other messages.
The embodiments described herein are directed to aspects and features of a new cryptosystem. The cryptosystem provides certain improvements as compared to conventional techniques. In one aspect, the cryptosystem relies upon a system of linearly dependent equations and a system randomization number to provide additional strength against known-plaintext attacks, chosen-plaintext attacks, and other types of attacks. The system is more semantically secure and offers ciphertext indistinguishability in a new approach using the system of linearly dependent equations, randomization numbers, authentication numbers, and other aspects. The system is also suitable for use with identity authentication techniques, and a centralized authentication system and processes performed by the authentication system are also described herein.
In one example, a method for cryptographic communications includes storing a secret key, generating a system randomization number, and encrypting a plain data package into an encrypted data package by application of the plain data package, the secret key, and the system randomization number to a system of equations for encryption. The system of equations can be a system of linearly dependent equations in one example. Among other benefits, the cryptosystem relies upon the system of linearly dependent equations and the system randomization number to provide additional strength against known-plaintext attacks, chosen-plaintext attacks, and other types of attacks. The system is more semantically secure and offers ciphertext indistinguishability in a new approach using the system of linearly dependent equations. Additional features and benefits of the embodiments are described in further detail below.
Turning to the drawings,
The authentication system 100 can be embodied as one or more computing environments, computer systems, computing devices, or processing systems or devices. The authentication system 100 can include one or more computing devices arranged, for example, in one or more server or computer banks. The computing device or devices can be located at a single installation site or distributed among different geographical locations. The authentication system 100 can include a plurality of computing devices that together embody a hosted computing resource, a grid computing resource, or other distributed computing arrangement. In some cases, the authentication system 100 can be embodied as an elastic computing resource where an allotted capacity of processing, network, storage, or other computing-related resources varies over time. As further described below, the authentication system 100 can also be embodied, in part, as certain functional or logical (e.g., computer-readable instruction) elements or modules. Those elements can be executed to direct the authentication system 100 to act as an authentication or identity-verification system in the networked environment 10, as described in further detail below.
As also shown in
The network 150 can include the Internet, intranets, extranets, wide area networks (WANs), local area networks (LANs), wired networks, wireless networks, cable networks, satellite networks, other suitable networks, or any combinations thereof. As one example, the authentication system 100 and the computing devices 160-164 can be respectively coupled to one or more public or private LANs or WANs and, in turn, to the Internet for communication of data among each other. Although not shown in
In the networked environment 10, the authentication system 100 and the computing devices 160-164 can communicate data among each other using one or more network transfer protocols or interconnect frameworks, such as hypertext transfer protocol (HTTP), simple object access protocol (SOAP), representational state transfer (REST), real-time transport protocol (RTP), real time streaming protocol (RTSP), real time messaging protocol (RTMP), user datagram protocol (UDP), internet protocol (IP), transmission control protocol (TCP), other protocols and interconnect frameworks, and combinations thereof.
As noted above, the authentication system 100 and the computing devices 160-164 can communicate data between each other over the network 150. The data can be sensitive in many cases, such as when account numbers, passwords, identifying information (e.g., full names, addresses, social security numbers, etc.), and other sensitive data is communicated. In that context, the cryptographic concepts and processes described herein can be relied upon to securely share secret data between and among the authentication system 100 and the computing devices 160-164 over the network 150.
The computing devices 160-164 are representative of various types of computing devices, processing devices, and/or processor-based device or systems, including those in the form of a server computer, desktop computer, a laptop computer, a tablet computer, a personal digital assistant, a cellular telephone, a wearable computing device, a set-top box, and other example computing devices and systems. Each of the computing devices 160-164 can include one or more processors or processing devices, cryptographic trusted platform modules (TPMs), memory devices, local interfaces, various peripheral devices, and other components. The peripheral devices can include input or communications devices or modules, such as keyboards, keypads, touch pads, touch screens, microphones, cameras, network communications interfaces, wireless network communications modules (e.g., infra-red, WI-FI®, or BLUETOOTH®), buttons, switches, sensors, etc. The peripheral devices can also include a display, indicator lights, speakers, global positioning system (GPS) circuitry, accelerometers, gyroscopes, and other peripheral devices.
As shown in
The application 180 is an example of one application program executable on the computing device 160. The computing device 160 can host and execute any number of applications concurrently, as would be understood in the field of computing. As one example, the application 180 can be embodied as a hypertext-based network browser, such as the Internet Explorer®, Firefox®, Chrome®, Safari®, or Silk® browsers, among other types of browsers. Additionally or alternatively, the application 180 can be embodied as an e-mail client, messaging client, or other application(s) for other purpose(s). In any case, when executed on the computing device 160, the application 180 can receive user input and data, process data, interpret and render various interfaces on display devices, and conduct other processes and tasks. As shown in
The computing device 161 includes a data store 175 and an application 190. The data store 175 can be embodied as any suitable type of memory and can be used to store data and data files, including sensitive or secret data, executable code, and other information. The application 190 is an example of one application program executable on the computing device 161. The computing device 161 can host and execute any number of applications concurrently, as would be understood in the field of computing. As one example, the application 190 can be embodied as a hypertext-based network browser, such as the Internet Explorer®, Firefox®, Chrome®, Safari®, or Silk® browsers, among other types of browsers. Additionally or alternatively, the application 190 can be embodied as an e-mail client, messaging client, or other application(s) for other purpose(s). In any case, when executed on the computing device 161, the application 190 can receive user input and data, process data, interpret and render various interfaces on display devices, and conduct other processes and tasks. As shown in
As also shown in
The secret keys 171 and 176 can be a key for cryptographic operations, stored respectively by the computing devices 160 and 161. As one example, the secret keys 171 and 176 can be the same, common key K. The key K can be identical at both the computing devices 160 and 161, or a relatively simple transformation can exist between the secret key 171 and the secret key 176. In one example, the key K can be a symmetric key, and it can be generated by a TPM of either of the computing devices 160 and 161 and shared between the computing devices 160 and 161 using asymmetric keys, during an authentication process between the computing devices 160 and 161, with the authentication system 100, or in another way using other suitable techniques. However, the key K can be generated and exchanged in other suitable ways.
The authentication identifiers 172 and 177 can be unique identifiers of the computing devices 160 and 161, respectively. As described below with reference to
The plain data 173 and 178 can be any unencrypted data stored by the computing devices 160 and 161, respectively, for secure communication between the computing devices 160 and 161. The plain data 173 and 178 may be referred to as “plaintext,” for example, data in the field of cryptography. The plain data 173 and 178 can be organized in any suitable way, and the computing devices 160 and 161 can process the plain data 173 and 178 in any suitable chunks, such as blocks of bits of any size. Although several examples are provided of the secure communication of the plain data 173 from the computing device 160 to the computing device 161, the computing device 161 can also securely communicate the plain data 178 to the computing device 160.
The cryptography engine 182 of the computing device 160 is configured to perform a number of different operations that facilitate secure communications. Similarly, the cryptography engine 192 of the computing device 161 is configured to perform a number of different operations that facilitate secure communications. The operations of the cryptography engines 182 and 192 are described in further detail below.
The cryptography engines 182 and 192 can rely, in part, on the generation of random numbers for certain cryptographic operations. Thus, the number generators 184 and 194 of the computing devices 160 and 161 can be embodied as random number generators, respectively, for the cryptography engines 182 and 192. Each of the number generators 184 and 194 can be configured to generate a number of different random numbers, over time. The random numbers can be generated in any suitable bit length, uniformly distributed in bit values in a string of bits, uniformly distributed as compared to each other, and carry other attributes. The cryptography engines 182 and 192 can request and obtain random numbers from the number generators 184 and 194 at any time in the cryptographic processes described herein. Random numbers generated by the number generators 184 and 194 can be relied upon to provide semantic security, ciphertext indistinguishability, protect or obscure the secret keys 171 and 176, protect or obscure the authentication identifiers 172 and 177, protect the integrity of the cryptographic operations performed by the computing devices 160 and 161, and add other benefits to the embodiments.
Turning to an operational example, the computing device 160 can securely communicate the plain data 173 to the computing device 161 over the network 150. Before communicating the plain data 173, the cryptography engine 182 can encrypt the plain data 173 using a system of equations for encryption, the secret key K 171, and a randomization number R generated by the number generator 184. In one example, the system of equations can be a system of linearly dependent equations. The system of equations can include three equations and rely upon three random number packages as described in further detail below. In another example, the system of equations can include four equations and rely upon four random number packages. However, the system of equations is not limited to any particular size or complexity, and other, larger systems can be relied upon. For decryption, the cryptography engine 192 of the computing device 161 can rely upon a system of equations for decryption, which is also described in further detail below.
The cryptography engine 182 can be configured to format, divide, or segment the plain data 173, the randomization number R, the secret key K 171, and possibly other data, into segmented data chunks or packages suitable for operation using the system of equations. To that end, the cryptography engine 182 is configured to divide or separate the plain data XS 173 into segmented plain data packages xi, as follows:
XS={x1,x2, . . . ,xm}. (1)
Each of the segmented plain data packages xi can be two bytes in length in one example, although the size of each xi, in bits, can vary based on the type(s) of processors used in the computing devices 160 and 161, among other factors. Example bit sizes for each segmented plain data package xi are described in detail below. The number of plain data packages xi, on the other hand, depends on the amount of data to be securely communicated.
The cryptography engine 182 is also configured to divide or segment the secret key K 171 into segmented secret key packages ki, as follows:
K={ki}i=1n. (2)
Each of the segmented secret key packages ki can be two bytes in length in one example, although the size of each ki can vary based on the type(s) of processors used in the computing devices 160 and 161, among other factors. Example bit sizes for the secret key packages ki are described in detail below.
As also described below, when using a system of three equations (e.g., the Equations (4)), the cryptography engine 182 of the computing device 160 can operate with three (3) segmented secret key packages k1, k2, and k3 for each data package xi. When using a system of four equations (e.g., the Equations (5)), the cryptography engine 182 can operate with nine (9) segmented secret key packages k1-k9 for each data package xi, and other numbers of secret key packages can be relied upon for other systems of linear equations. The full size of the secret key K 171 in bits, before being segmented, can thus depend on a number of factors, including the type(s) of processors used in the computing devices 160 and 161, the system of equations used, and other factors. Both the computing device 160 and the computing device 161 share (i.e., know and store) the same secret key K. That is, the secret key K 171, which is stored by the computing device 160, and the secret key K 176, which is stored by the computing device 161, are the same secret key K, and the computing devices 160 and 161 can exchange the secret key K with each other in any suitable way.
The cryptography engine 182 can also direct the number generator 184 to generate a random number R, and the random number R can serve as a randomization number. The random number R can be a uniformly distributed random number in one example. The cryptography engine 182 is also configured to divide or segment the random number R into a set of random number packages rl, as follows:
R={rl}l=1p. (3)
Each rl can also be two bytes in length in one example, although the size can vary based on the type(s) of processors used in the computing devices 160 and 161, among other factors. Example bit sizes for each random number package rl are described in detail below. As also described below, when using a system of three equations, the cryptography engine 182 of the computing device 160 can operate with a set of two (2) random number packages r1 and r2 for each data package xi. When using a system of four equations, the cryptography engine 182 can operate with a set of four (4) random number packages r1-r4 for each data package xi. The full size of the random or randomization number R in bits, before being segmented, can thus depend on a number of factors, including the type(s) of processors used in the computing devices 160 and 161, the system of equations used, and other factors.
The plain data packages xi, the secret key packages ki, and the random number packages rl can be stored in the data store 170, as needed, for further processing by the cryptography engine 182. The cryptography engine 182 is also configured to apply or process the plain data packages xi, the secret key packages ki, and the random number packages rl to the system of equations for encryption. For the three equation system, one example of the system of equations (“Equations (4)”) is as follows:
(k1+r1)⊕k2=m1,
(xi+r2)⊕k3=m2, and
r1+r2=m3, where (4)
⊕ is logical XOR and m1, m2, and m3 are parts or segments of an encrypted data package Mi. The values of m1, m2, and m3 can be concatenated or strung together as a single encrypted data package Mi, which corresponding to the plain data package xi (i.e., Mi is the ciphertext of the xi plaintext). The computing device 160 can securely communicate the encrypted bit package Mi to the computing device 161 over the network 150.
After processing the plain data package x1 to obtain the encrypted data package M1, the cryptography engine 182 can process subsequent plain data packages x2, x3, . . . xm, in turn, using the system of Equations (4), to generate the encrypted data packages M2, M3, . . . Mm. In one case, the cryptography engine 182 can process the next plain data package x2, among others, with the same secret key packages k1, k2, and k3 and the same random numbers r1 and r2 as used for the plain data package x1. In another example, the cryptography engine 182 is configured to process each respective plain data package xi with the same set of secret key packages k1, k2, and k3 but with a different set of random numbers from the number generator 184. The use of a different set of random numbers for each plain data package xi can provide better semantic security and ciphertext indistinguishability. In still other examples, the cryptography engine 182 can process each respective plain data package x, with a different set of secret key packages, with a different set of random numbers, or with both a different set of secret key packages and a different set of random numbers. In any case, each of the encrypted data packages M1, M2, M3, . . . Mm can be communicated from the computing device 160 to the computing device 161, as shown in
For the four equation system, one example of the system of equations (“Equations (5)”) is as follows:
(k1+r1+r3)⊕k2+k4=m1,
(xi+r2+r4)⊕k3+k5=m2,
(r1+r2)⊕k6+k7=m3, and
(r3+r4)⊕k8+k9=m4, where (5)
⊕ is logical XOR and m1, m2, m3, and m4 are parts or segments of an encrypted data package M. The values of and m1, m2, m3, and m4 can be concatenated or strung together as the encrypted data package Mi corresponding to the plain data package xi, and the computing device 160 can securely communicate the encrypted data package Mi to the computing device 161 over the network 150.
After the plain data package x1, the cryptography engine 182 can process subsequent plain data packages x1, x2, x3, . . . xm, in turn, using the system of Equations (5), to generate the encrypted data packages M1, M2, M3, . . . Mm. In one case, the cryptography engine 182 can process the next plain data package x2, among others, with the same secret key packages k1-k9 and the same random numbers r1-r4 as used for the plain data package x1. In another example, the cryptography engine 182 is configured to process each respective plain data package xi with the same secret key packages k1-k9 but with a different set of random numbers from the number generator 184. The use of a different set of random numbers for each plain data package xi can provide better semantic security and ciphertext indistinguishability. In still other examples, the cryptography engine 182 can process each respective plain data package x, with a different set of secret key packages, with a different set of random numbers, or with both a different set of secret key packages and a different set of random numbers. In any case, each of the encrypted data packages M1, M2, M3, . . . Mm can be communicated from the computing device 160 to the computing device 161, as shown in
The computing device 161 is configured to receive the encrypted data packages M2, M3, . . . Mm from the computing device 160. The encrypted data packages M1, M2, M3, . . . Mm can be stored in the data store 175 for further processing by the application 190. The cryptography engine 192 is configured to decrypt the encrypted data packages M1, M2, M3, . . . Mm, respectively, to recapture the plain data XS 173 communicated from the computing device 160.
First, the cryptography engine 192 is configured to segment or divide each of the encrypted data packages Mm into segmented encrypted data packages and m1, m2, and m3. The cryptography engine 192 is also configured to segment or divide the secret key K 176 into segmented secret key packages ki, similar to Equation (2) above. The cryptography engine 192 is also configured to decrypt the segmented encrypted data packages and m1, m2, and m3 into a plain data package xi, according to an equation for decryption. If the Equations (4) were relied upon to generate the encrypted data packages Mi, then the cryptography engine 192 is configured to decrypt each of the encrypted bit packages Mi into a plain data package xi, according to the following equation:
xi=m1⊕k2+m2⊕k3−k1−m3. (6)
If the Equations (5) were relied upon to generate the encrypted data packages Mi, then the cryptography engine 192 is configured to decrypt each of the encrypted data packages Mi into a plain data package xi, according to the following equation:
xi=(m1−k4)⊕k2+(m2−k5)⊕k3−(m3−k7)⊕k6−(m4−k9)⊕k8−k1. (7)
By decrypting the packages M1, M2, M3, . . . Mm, respectively, into the plain data packages x1, x2, x3, . . . xm, the cryptography engine 192 is able to recapture the plain data XS from the computing device 160, by concatenating the plain data packages together. The plain data can be stored in the data store 175.
At reference numeral 200, the process includes dividing, separating, or segmenting plain data into data packages. For example, the process can include the cryptography engine 182 dividing or separating the plain data XS 173 into plain data packages x1, x2, x3, . . . xm according to Equation (1) above, or by another suitable approach. Each of the plain data packages x, can be two bytes in length in one example, although the size of the data packages can vary based on the type(s) of processors used in the computing devices 160 and 161, among other factors.
At reference numeral 202, the process includes dividing, separating, or segmenting a secret key into a set of secret key packages. For example, the process can include the cryptography engine 182 dividing or separating the secret key K 171 into secret key packages k1, k2, k3, . . . kn according to Equation (2) above, or by another suitable approach. Each of the secret key packages ki can be two bytes in length in one example, although the size of the data packages can vary based on the type(s) of processors used in the computing devices 160 and 161, among other factors.
At reference numeral 204, the process includes generating a randomization number and segmenting the randomization number into a set of random numbers. For example, the process can include the cryptography engine 182 directing the number generator 184 to generate a randomization number R. The process can also include the cryptography engine 182 dividing or segmenting the randomization number R into a set of random number packages r1, r2, r3, . . . rp according to Equation (3) above, or by another suitable approach. Each of the random numbers rl can be two bytes in length in one example, although the size of the data packages can vary based on the type(s) of processors used in the computing devices 160 and 161, among other factors.
At reference numeral 206, the process includes encrypting the plain data XS 173 into encrypted data packages by application of the plain data XS 173, the secret key K 171, and the randomization number R to a system of equations for encryption. The cryptography engine 182 can perform the process of encrypting in parts or segments of the plain data XS 173, as described herein. That is, the cryptography engine 182 can apply each segmented plain data package x1, x2, x3, . . . xm from reference numeral 200, respectively, to the system of equations for encryption. The system of equations can be the Equations (4), the Equations (5), or another system of linear equations consistent with the concepts described herein. For the Equations (4), the cryptography engine 182 can encrypt each plain data package xi with three (3) secret key packages k1, k2, and k3 from the segmenting at reference numeral 202 and two (2) random numbers r1 and r2 from the segmenting at reference numeral 204. For the Equations (5), the cryptography engine 182 can encrypt each plain data package xi with nine (9) secret key packages k1-k9 from the segmenting at reference numeral 202 and four (4) random numbers r1-r4 from the segmenting at reference numeral 204.
At reference numeral 206, the cryptography engine 182 also generates an encrypted data package Mi for each plain data package xi by combining or concatenating the values of m1, m2, and m3 from the Equations (4). As another example, the cryptography engine 182 can generate an encrypted data package Mi for each plain data package xi by combining or concatenating the values of m1, m2, m3, and m4 from the Equations (5).
Further, after processing the plain data package x1 to obtain the encrypted data package M1, the process at reference numeral 206 can continue. The cryptography engine 182 can continue to process the subsequent plain data packages x2, x3, . . . xm, in turn, using the system of Equations (4), the system of Equations (5), or another system of linear equations, to generate the encrypted data packages M1, M2, M3, . . . Mm. In one case, the cryptography engine 182 can process the next plain data package x2, among others, with the same secret key packages k1, k2, and k3 and the same random numbers r1 and r2 as used for the plain data package x1. In another example, the cryptography engine 182 can process each respective plain data package x, with the same set of secret key packages k1, k2, and k3 but with a different set of random numbers from the number generator 184. The use of a different set of random numbers for each plain data package xi can provide better semantic security and ciphertext indistinguishability. In still other examples, the cryptography engine 182 can process each respective plain data package xi with a different set of secret key packages, with a different set of random numbers, or with both a different set of secret key packages and a different set of random numbers.
At reference numeral 208, the process includes the computing device 160 communicating the encrypted data packages M1, M2, M3, . . . Mm to the computing device 161 over the network 150. The computing device 160 can communicate the encrypted data packages M1, M2, M3, . . . Mm to the computing device 161 using any suitable network interfaces and network transfer protocols. The encrypted data packages M1, M2, M3, . . . Mm can be sent from the computing device 160 to the computing device 161 in any number of data packets, for example, in any suitable way and sequence over time. Although not separately shown in
The remaining process steps shown in
At reference numeral 212, the process includes the cryptography engine 192 dividing or separating each of the encrypted data packages M1, M2, M3, . . . Mm into encrypted data segments. As one example, if the Equations (4) were relied upon to encrypt the packages M1, M2, M3, . . . Mm, then the cryptography engine 192 can divide each encrypted data package into m1, m2, and m3. As another example, if the Equations (5) were relied upon to encrypt the packages M1, M2, M3, . . . Mm, then the cryptography engine 192 can divide each encrypted data package into m1, m2, m3, and m4.
At reference numeral 214, the process includes decrypting each encrypted data package to a plain data package, by application of the encrypted data package and the secret key to an equation for decryption. That is, the process includes the cryptography engine 192 decrypting the segmented encrypted data packages and m1, m2, and m3 for each Mi into a plain data package xi, according to an equation for decryption. If the Equations (4) were relied upon to generate the encrypted data packages Mi, then the cryptography engine 192 is configured to decrypt each of the encrypted bit packages Mi into a plain data package xi, according to the following equation:
xi=m1⊕k2+m2⊕k3−k1−m3. (8)
If the Equations (5) were relied upon to generate the encrypted data packages Mi, then the cryptography engine 192 is configured to decrypt each of the encrypted data packages Mi into a plain data package xi, according to the following equation:
xi=(m1−k4)⊕k2+(m2−k5)⊕k3−(m3−k7)⊕k6−(m4−k9)⊕k9−k1. (9)
By decrypting the packages M1, M2, M3, . . . Mm, respectively, into the plain data packages x1, x2, x3, . . . xm, the cryptography engine 192 is able to recapture the plain data XS from the computing device 160, by concatenating the plain data packages together. The plain data can be stored in the data store 175.
Turning to other aspects of the embodiments, the concepts described herein can also be used with a centralized authentication system, such as the authentication system 100 shown in
As part of the registration of the computing devices 160 and 161 with the authentication system 100, the authentication system 100 can obtain authentication credentials from the computing devices 160 and 161. The authentication system 100 can also operate on or combine the authentication credentials from the computing devices 160 and 161, to generate a combined credential for the computing devices 160 and 161.
After registration with the authentication system 100 is complete, the computing devices 160 and 161 can communicate encrypted data with each other, using an approach that is similar to that described above with reference to
At reference numeral 302, the process includes the authentication system 100 registering the computing device 160. This registration can include exchanging certain credentials, such as device identifiers (e.g., media access control (MAC) addresses of network interface controllers), usernames, passwords, or other credentials between the computing device 160 and the authentication system 100. The authentication system 100 can store a list, table, or database of registered devices, including the computing device 160, in the data store 120. The registration at reference numeral 302 can also include the exchange of a common key KA between the computing device 160 and the authentication system 100, which is used in later process steps.
At reference numeral 304, the process includes the authentication system 100 generating a credential randomization number R12. The authentication system 100 can also store the credential randomization number R12 in the data store 120 for use with another computing device as described below. At reference numeral 304, the process can also include the authentication system 100 combining the key KA with R12, to generate a transfer key T1 according to T1=KA ⊕R12. The authentication system 100 also sends the transfer key T1 to the computing device 160 over the network 150 at reference numeral 304. The transfer key T1 is used by the computing device 160 to securely return an authentication identifier N1 back to the authentication system 100, as described below.
Although not separately shown in
The cryptography engine 182 of the computing device 160 is configured to combine the authentication identifier N1 with the randomization number R12, to generate an authentication credential A1, according to A1=N1 ⊕R12. The computing device 160 then sends the authentication credential A1 to the authentication system 100, and the authentication system 100 receives the authentication credential A1 from the computing device 160 at reference numeral 306 in
Registration of the computing device 160 by the authentication system 100 is complete after the authentication credential A1 is received from the computing device 160. However, registration of the computing device 161 occurs separately, and the authentication system 100 cannot generate the combined credential for the computing devices 160 and 161 until after the computing device 161 is also registered.
Thus, at reference numeral 312 in
At reference numeral 314, the process includes the authentication system 100 obtaining the credential randomization number R12 from the data store 120. This assumes that the credential randomization number R12, which was generated at reference numeral 304 and associated with the computing device 160, will not be used with computing devices other than the computing devices 160 and 161. For example, at reference numeral 314, the authentication system 100 can reserve the randomization number R12 for use in authentication services between the computing devices 160 and 161 and only the computing devices 160 and 161.
At reference numeral 314, the process can also include the authentication system 100 combining the key KB with R12, to generate a transfer key T2 according to T1=KA ⊕R12. The authentication system 100 also sends the transfer key T2 to the computing device 161 over the network 150 at reference numeral 314. The transfer key T2 is used by the computing device 161 to securely return an authentication identifier N2 back to the authentication system 100, as described below.
Although not separately shown in
The cryptography engine 192 of the computing device 161 is configured to combine the authentication identifier N2 with the randomization number R12, to generate an authentication credential A2, according to A2=N2 ⊕R12. The computing device 161 sends the authentication credential A2 to the authentication system 100, and the authentication system 100 receives the authentication credential A2 from the computing device 161 at reference numeral 316 in
Registration of the computing device 161 by the authentication system 100 is complete after the authentication credential A2 is received from the computing device 161. At this point, both the computing devices 160 and 161 are registered with the authentication system 100. At reference numeral 318 in
Turning to other embodiments,
At reference numeral 400, the process includes the computing device 160 generating a randomization number R. Here, the cryptography engine 182 can direct the number generator 184 (
At reference numeral 402, the process includes the computing device 160 generating an identity number G. The cryptography engine 182 can direct the number generator 184 (
At reference numeral 404, the process includes the cryptography engine 182 combining the plain data XS 173, in segments, with the identity number G, to generate identified data XG. As part of this process, the cryptography engine 182 can also divide or separate the plain data XS 173 into segmented plain data packages xi, according to Equation (1) above or in another suitable way. When the plain data XS 173 is segmented into the plain data packages xi, the cryptography engine 182 can combine each segmented plain data package xi with the identity number G, according to xGi=xi ⊕G, to generate segmented identified data packages xGi. The combination (e.g., concatenated or strung together combination) of all identified data packages xGi can be referred to as the identified data XG. The cryptography engine 182 can also store the identified data XG in the data store 170.
At reference numeral 406, the process includes the cryptography engine 182 encrypting the identified data XG into encrypted data packages by application of the identified data XG, the secret key K 171, and the randomization number R to a system of equations for encryption. The cryptography engine 182 can perform the process in parts or segments of the identified data XG. That is, the cryptography engine 182 can apply each identified data package xG1, xG2, xG3, . . . xGm, respectively, to the system of equations for encryption, along with the segments of the secret key K 171 and the segments of the randomization number R, as described herein. The system of equations can be the Equations (4), the Equations (5), or another system of linear equations consistent with the concepts described herein. Thus, the process at reference numeral 406 is similar to that in reference numeral 206 of
At reference numeral 406, the cryptography engine 182 also generates an encrypted data package Mi for each identified data package xGi by combining or concatenating the values of m1, m2, and m3 from the Equations (4). As another example, the cryptography engine 182 can generate an encrypted data package Mi for each identified data package xGi by combining or concatenating the values of m1, m2, m3, and m4 from the Equations (5).
At reference numeral 408, the process includes the computing device 160 communicating the encrypted data packages M1, M2, M3, . . . Mm to the computing device 161 over the network 150. The computing device 160 can communicate the encrypted data packages M1, M2, M3, . . . Mm to the computing device 161 using any suitable network interfaces and network transfer protocols. The encrypted data packages M1, M2, M3, . . . Mm can be sent from the computing device 160 to the computing device 161 in any number of data packets, for example, in any suitable way and sequence over time. Although not separately shown in
In addition to the transfer of the encrypted data packages M1, M2, M3, . . . Mm, the process in
Although not shown in
The authentication system 100 has no visibility into the identity number G of the computing device 160, because the authentication system 100 does not have access to the Auth ID N2 177 of the computing device 161. Likewise, the authentication system 100 does not have access to the Auth ID N1 172 of the computing device 160. Instead, the authentication system 100 only stores the combined credential N12, but the individual values of N1 and N2 cannot be obtained by the authentication system 100 from the combined credential N12.
At reference numeral 500, the process includes the computing device 161 receiving the encrypted data packages M1, M2, M3, . . . Mm from the computing device 160. The computing device 161 can store the encrypted data packages M1, M2, M3, . . . Mm in the data store 175 for further processing. Additionally, at reference numeral 502, the process includes the computing device 161 receiving the verification credential V1 from the authentication system. As noted above, the verification credential V1 is equal to G⊕N2, and the computing device 161 can obtain the identity number G of the computing device 160 from the verification credential V1. The computing device 161 can store the verification credential V1 in the data store 175 for further processing.
At step 504, the process includes the cryptography engine 192 obtaining the identity number G of the computing device 160 from the verification credential V1. Particularly, the cryptography engine 192 can process the verification credential V1 with the Auth ID N2 177, which was previously generated during registration of the computing device 161 with the authentication system 100, according to G=V1⊕N2, as V1 is equal to G⊕N2. The cryptography engine 192 can store the identity number G in the data store 175.
At reference numeral 506, the process includes the cryptography engine 192 of the computing device 161 dividing, separating, or segmenting the secret key K 176 into secret key packages k1, k2, k3, . . . kn according to Equation (2) above, or by another suitable approach. As one example, if the Equations (4) were used for encryption, then the cryptography engine 192 can segment the secret key K 176 into three (3) segmented secret key packages k1, k2, and k3. As another example, if the Equations (5) were used for encryption, then the cryptography engine 192 can segment the secret key K 176 into nine (9) segmented secret key packages k1-k9.
At reference numeral 508, the process includes the cryptography engine 192 dividing or separating each of the encrypted data packages M1, M2, M3, . . . Mm into encrypted data segments. As one example, if the Equations (4) were relied upon to encrypt the packages M1, M2, M3, . . . Mm, then the cryptography engine 192 can divide each encrypted data package into m1, m2, and m3. As another example, if the Equations (5) were relied upon to encrypt the packages M1, M2, M3, . . . Mm, then the cryptography engine 192 can divide each encrypted data package into m1, m2, m3, and m4.
At reference numeral 510, the process includes decrypting each encrypted data package to a plain data package, by application of the encrypted data package and the secret key to an equation for decryption. That is, the process includes the cryptography engine 192 decrypting the segmented encrypted data packages and m1, m2, and m3 for each Mi into an identified data package xGi, according to an equation for decryption. If the Equations (4) were relied upon to generate the encrypted data packages Mi, then the cryptography engine 192 is configured to decrypt each of the encrypted bit packages Mi into an identified data package xGi, according to the following equation:
xGi=m1⊕k2+m2⊕k3−k1−m3. (8)
If the Equations (5) were relied upon to generate the encrypted data packages Mi, then the cryptography engine 192 is configured to decrypt each of the encrypted data packages Mi into an identified data package xGi, according to the following equation:
XGi=(m1−k4)⊕k2+(m2−k5)⊕k3−(m3−k7)⊕k6−(m4−k9)⊕k8−k1. (9)
Thus, each of the packages M1, M2, M3, . . . Mm can be decrypted, respectively, into the identified data packages xG1, xG2, xG3, . . . xGm.
At reference numeral 512, the process includes the cryptography engine 182 extracting plain data packages xi from the identified data packages xGi. Here, the cryptography engine 192 can extract plain data packages xi from the identified data packages xGi by application of the identity number G, according to xi=xGi ⊕G. The combination (e.g., concatenated or strung together combination) of all plain data packages x, results in the plain data XS from the computing device 160, by concatenating the plain data packages together. The plain data can be stored in the data store 175.
According to the concepts of authentication described herein, the integrity of data communication between the computing devices 160 and 161 depends on proper authentication of both devices with the authentication system 100. In other words, the computing device 161 cannot decrypt and obtain the data communicated from the computing device 160 (i.e., with the same data integrity and meaning), unless the identity number G generated by the computing device 160 at reference numeral 402 in
In other aspects of the embodiments, it is noted that the systems in Equations (4) and (5) provide ciphertext (e.g., the encrypted data packages M1, M2, M3, . . . Mm) that is protected against security concerns that arise when communicating recurring plain data packages, plain data packages that are known by an attacker, or plain data packages that are chosen by an attacker. To demonstrate, assume a sender S uses an encryption algorithm to send to plain text x to a receiver R. As a result of the algorithm, S generates three publicly-visible values s1, s2 and s3 using the following non-linear system of three equations as basic algorithm:
s1=k+a1,
s2=x+a2, and
s3=a1a2. (8)
The algorithm relies upon random values a1 and a2 and two recurring values, including the secret key k and the plain text x. R knows the key k and can decrypt (calculate) the plain text x, according to:
A third party cannot decrypt the plain text x, because s1, s2 and s3 are the only visible values. A third party would need to obtain four independent unknown variables, as the number of unknown variables (e.g., x, k, a1, a2) exceeds the number of visible values. The system of Equations 6 is undetermined for the third party and, thus, cannot be resolved. Cannot be resolved means that there is no unique solution of the system of equations due to the unknown variables.
However, in case S sends a recurring x to R, the third party can decrypt the plain text x and obtain the key k from the system of Equations 6, as shown in Table 1 below. This occurs because the number of visible values equals or exceeds the number of independent variables in any next, subsequent attack.
Thus, in case S sends a recurring x to R, the third party can use six publicly visible values (s1(1), s2(1), s3(1), s1(2), s2(2), s3(2)) to obtain six independent variables (k, x, a1(1), a2(1), a1(2), a2(2)). The third party can obtain the secret key k from the following equation:
and the plain text x from the following equation:
S can make the algorithm more complex using longer vector of authentication attribute, but the number of secure, non-decrypted attacks will be limited. In this case, the authentication attribute should be changed after certain secure attacks in order to extend the algorithm security lifetime.
As a different example, assume S uses an encryption algorithm to send plain text to R. As a result of the algorithm, S sends three publicly visible values s1, s2 and s3 using the following non-linear system of equations:
s1=k+a1,
s2=x+a2, and
s3=a1+a2. (10)
The algorithm relies upon random values a1 and a2 and two recurring values, including the secret key k and the plain text x. R knows the key k and can decrypt the plain text x, according to:
x=s2+s1−s3−k. (11)
A third party cannot decrypt the plain text x, because s1, s2 and s3 are the only visible values. A third party would need to obtain four independent unknown variables, as the number of unknown variables (e.g., x, k, a1, a2) exceeds the number of visible values. The system of Equations 6 is undetermined for the third party and, thus, cannot be resolved.
Additionally, in case S sends a recurring x to R, unlike in the previous example, the third party cannot decrypt the plain text x or obtain the key k from the system of Equations 8, because it still remains underdetermined as shown in Table 2. This is because the Equations 8 are a linear dependent system.
Thus, R knows the secret key k and can easily decrypt the plain text x, while the third party has only five publicly visible values (s1(1), s2(1), s3(1), s1(2), s2(2)) to obtain six independent variables (k, x, a1(1), a2(1), a1(2), a2(2)). The value s3(2) is not independent and can be obtained from other visible independent values, as s3(2)=s1(2)+s1(2)+s3(1)−s1(1)−s2(1), so R can decrypt the plain text x, although the third party has only five publicly visible independent values.
It is also noted that certain devices, and particularly low-power devices, can be limited in terms of register sizes, the capability of processing block sizes (in bits), and other constraints. For example, the processor cores in the computing devices 160-164 may have a 16-bit, 32-bit, or 64-bit base. In that context, the cryptographic algorithms described herein can be tailored to avoid size overflows in processing operations. As examples, for a 47-bit key length on a processor of 16, 32, or 64 bit base, the variables for the Equations (4) can be sized as follows, where bit sizes are identified within the brackets:
(k1[15]+r1[15])⊕k2[16]=m1[16],
(x[15]+r2[15])⊕k3[16]=m2[16], and
r1[15]+r2[15]=m3[16]. (12)
As another example, for a 95-bit key length on a processor of 16, 32, or 64 bit base, the variables for the Equations (4) can be sized as follows, where bit sizes are identified within the brackets:
(k1[31]+r1[31])⊕k2[32]=m1[32],
(x[31]+r2[31])⊕k3[32]=m2[32], and
r1[31]+r2[31]=m3[32]. (13)
As another example, for a 189-bit key length on a processor of 64 bit base, the variables for the Equations (4) can be sized as follows, where bit sizes are identified within the brackets:
(k1[61]+r1[61])⊕k2[64]=m1[64],
(x[61]+r2[61])⊕k3[64]=m2[64], and
r1[61]+r2[61]=m3[64]. (14)
As another example, for a 139-bit key length on a processor of 16, 32, or 64 bit base, the variables for the Equations (5) can be sized as follows, where bit sizes are identified within the brackets:
(k1[14]+r1[13]+r3[13])⊕k2[15]+k4[15]=m1[16],
(x[14]+r2[13]+r4[13])⊕k3[15]+k5[15]=m2[16],
(r1[13]+r2[13])⊕k6[15]+k7[15]=m3[16], and
(r3[13]+r4[13])⊕k8[15]+k9[15]=m4[16]. (15)
As another example, for a 278-bit key length on a processor of 32 or 64 bit base, the variables for the Equations (5) can be sized as follows, where bit sizes are identified within the brackets:
(k1[30]+r1[29]+r3[29])⊕k2[31]+k4[31]=m1[32],
(x[30]+r2[29]+r4[29])⊕k3[31]+k5[31]=m2[32],
(r1[29]+r2[29])⊕k6[31]+k7[31]=m3[32], and
(r3[29]+r4[29])⊕k8[31]+k8[31]=m4[32]. (16)
As another example, for a 566-bit key length on a processor of 64 bit base, the variables for the Equations (5) can be sized as follows, where bit sizes are identified within the brackets:
(k1[62]+r1[61]+r3[61])⊕k2[63]+k4[63]=m1[64],
(x[62]+r2[61]+r4[61])⊕k3[63]+k5[63]=m2[64],
(r1[61]+r2[61])⊕k6[63]+k7[63]=m3[64], and
(r3[61]+r4[61])⊕k8[63]+k9[63]=m4[64]. (17)
The flowcharts in
The authentication system 100 can include at least one processing circuit. Such a processing circuit can include, for example, one or more processors and one or more storage devices that are coupled to a local interface. The local interface can include, for example, a data bus with an accompanying address/control bus or any other suitable bus structure. Similarly, each of the computing devices 160-164 can include at least one processing circuit. Such a processing circuit can include, for example, one or more processors and one or more storage devices that are coupled to a local interface.
The storage devices for a processing circuit can store data or components that are executable by the processors of the processing circuit. For example, the authentication engine 132, the cryptography engine 182, the cryptography engine 192, and/or other components can be stored in one or more storage devices and be executable by one or more processors in the authentication system 100, the computing device 160, and the computing device 161.
The authentication engine 132, the cryptography engine 182, the cryptography engine 192, and/or other components described herein can be embodied in the form of hardware, as software components that are executable by hardware, or as a combination of software and hardware. If embodied as hardware, the components described herein can be implemented as a circuit or state machine that employs any suitable hardware technology. The hardware technology can include, for example, one or more microprocessors, discrete logic circuits having logic gates for implementing various logic functions upon an application of one or more data signals, application specific integrated circuits (ASICs) having appropriate logic gates, programmable logic devices (e.g., field-programmable gate array (FPGAs), and complex programmable logic devices (CPLDs)).
Also, one or more or more of the components described herein that include software or program instructions can be embodied in any non-transitory computer-readable medium memory device for use by or in connection with an instruction execution system such as, a processor in a computer system or other system. The computer-readable medium can contain, store, and/or maintain the software or program instructions for use by or in connection with the instruction execution system.
A computer-readable medium can include a physical media, such as, magnetic, optical, semiconductor, and/or other suitable media. Examples of a suitable computer-readable media include, but are not limited to, solid-state drives, magnetic drives, or flash memory. Further, any logic or component described herein can be implemented and structured in a variety of ways. For example, one or more components described can be implemented as modules or components of a single application. Further, one or more components described herein can be executed in one computing device or by using multiple computing devices.
Further, any logic or applications described herein, including the authentication engine 132, the cryptography engine 182, the cryptography engine 192, and/or other components can be implemented and structured in a variety of ways. For example, one or more applications described can be implemented as modules or components of a single application. Further, one or more applications described herein can be executed in shared or separate computing devices or a combination thereof. For example, a plurality of the applications described herein can execute in the same computing device, or in multiple computing devices. Additionally, terms such as “application,” “service,” “system,” “engine,” “module,” and so on can be used interchangeably and are not intended to be limiting.
The above-described examples of the present disclosure are merely possible examples of implementations set forth for a clear understanding of the principles of the disclosure. Many variations and modifications can be made without departing substantially from the spirit and principles of the disclosure. All such modifications and variations are intended to be included herein within the scope of this disclosure and protected by the following claims.
Disjunctive language, such as the phrase “at least one of X, Y, or Z,” unless specifically stated otherwise, is to be understood with the context as used in general to present that an item, term, etc., can be either X, Y, or Z, or any combination thereof (e.g., X, Y, and/or Z). Thus, such disjunctive language is not generally intended to, and should not, imply that certain embodiments require at least one of X, at least one of Y, or at least one of Z to be each present.
It should be emphasized that the above-described embodiments of the present disclosure are merely possible examples of implementations set forth for a clear understanding of the principles of the disclosure. Many variations and modifications can be made to the above-described embodiment(s) without departing substantially from the spirit and principles of the disclosure. All such modifications and variations are intended to be included herein within the scope of this disclosure and protected by the following claims.
| Number | Name | Date | Kind |
|---|---|---|---|
| 7571320 | Davis | Aug 2009 | B2 |
| D607009 | McEnaney | Dec 2009 | S |
| D614192 | Takano | Apr 2010 | S |
| 7885635 | Laursen | Feb 2011 | B2 |
| 7925013 | Washington | Apr 2011 | B1 |
| 7992102 | De Angelo | Aug 2011 | B1 |
| 8218762 | Itoh | Jul 2012 | B2 |
| 8363259 | Gilboa | Jan 2013 | B2 |
| 8417642 | Oren | Apr 2013 | B2 |
| 8543834 | Barra | Sep 2013 | B1 |
| 8543884 | Mansour | Sep 2013 | B2 |
| 8621209 | Johansson | Dec 2013 | B1 |
| 8639785 | Kiley | Jan 2014 | B2 |
| 8892871 | Cho | Nov 2014 | B2 |
| D719176 | Cohen | Dec 2014 | S |
| D719177 | Cohen | Dec 2014 | S |
| D723050 | Minsung et al. | Feb 2015 | S |
| 9112835 | Isozaki | Aug 2015 | B2 |
| 9210156 | Little | Dec 2015 | B1 |
| 9219732 | Baghdasaryan | Dec 2015 | B2 |
| 9350539 | Veugen | May 2016 | B2 |
| 9392460 | Blake | Jul 2016 | B1 |
| 9419951 | Felsher et al. | Aug 2016 | B1 |
| D765669 | Shaw | Sep 2016 | S |
| 9706406 | Adams | Jul 2017 | B1 |
| D800764 | Thoreson | Oct 2017 | S |
| 9852418 | Mardikar | Dec 2017 | B2 |
| D813884 | Penker | Mar 2018 | S |
| 9959694 | LIndsay | May 2018 | B2 |
| 9961547 | Molina-Markham | May 2018 | B1 |
| 10019561 | Shelton | Jul 2018 | B1 |
| 10200364 | Ketharaju et al. | Feb 2019 | B1 |
| D847857 | Elatta | May 2019 | S |
| 10402800 | Lucas | Sep 2019 | B2 |
| 10437975 | Shelton | Oct 2019 | B1 |
| 10521223 | Bogushefsky, III | Dec 2019 | B1 |
| 10810290 | Minter et al. | Oct 2020 | B2 |
| 10867021 | Shelton | Dec 2020 | B1 |
| 10887307 | Newstadt | Jan 2021 | B1 |
| 10911425 | Hitchcock | Feb 2021 | B1 |
| D916890 | Nagpal | Apr 2021 | S |
| 10970607 | Xue | Apr 2021 | B2 |
| 11005839 | Shahidzadeh | May 2021 | B1 |
| 11030618 | Budko | Jun 2021 | B1 |
| 11038694 | Kleinman | Jun 2021 | B1 |
| D925602 | Xu | Jul 2021 | S |
| D928803 | Faller | Aug 2021 | S |
| D928820 | Bodduluri | Aug 2021 | S |
| 11121878 | McCarty | Sep 2021 | B2 |
| 20020099955 | Peled | Jul 2002 | A1 |
| 20030016844 | Numaoka | Jan 2003 | A1 |
| 20040223616 | Kocarev | Nov 2004 | A1 |
| 20060031301 | Herz et al. | Sep 2006 | A1 |
| 20060196950 | Kiliccote | Sep 2006 | A1 |
| 20080031460 | Brookner | Feb 2008 | A1 |
| 20080301057 | Oren | Dec 2008 | A1 |
| 20090194592 | Ming et al. | Aug 2009 | A1 |
| 20090315671 | Gocho | Dec 2009 | A1 |
| 20090327746 | Greco | Dec 2009 | A1 |
| 20100079591 | Lee | Apr 2010 | A1 |
| 20110072142 | Herz et al. | Mar 2011 | A1 |
| 20110167255 | Matzkel | Jul 2011 | A1 |
| 20110187642 | Faith | Aug 2011 | A1 |
| 20110233284 | Howard | Sep 2011 | A1 |
| 20110302405 | Marlow | Dec 2011 | A1 |
| 20120214442 | Crawford | Aug 2012 | A1 |
| 20120221859 | Marien | Aug 2012 | A1 |
| 20120272058 | Wang et al. | Oct 2012 | A1 |
| 20120281885 | Syrdal | Nov 2012 | A1 |
| 20130086625 | Driscoll | Apr 2013 | A1 |
| 20130111208 | Sabin et al. | May 2013 | A1 |
| 20130239191 | Bostick | Sep 2013 | A1 |
| 20140039892 | Mills | Feb 2014 | A1 |
| 20140040628 | Fort et al. | Feb 2014 | A1 |
| 20140244514 | Rodriquez | Aug 2014 | A1 |
| 20140244515 | Garfinkle | Aug 2014 | A1 |
| 20140278077 | Levin | Sep 2014 | A1 |
| 20140368601 | deCharms | Dec 2014 | A1 |
| 20150089568 | Sprague | Mar 2015 | A1 |
| 20150242601 | Griffiths | Aug 2015 | A1 |
| 20150242605 | Du | Aug 2015 | A1 |
| 20150271679 | Park | Sep 2015 | A1 |
| 20150278805 | Spencer, III | Oct 2015 | A1 |
| 20150294092 | Balasubramanian | Oct 2015 | A1 |
| 20150347734 | Beigi | Dec 2015 | A1 |
| 20150356289 | Brown | Dec 2015 | A1 |
| 20150365229 | Patey | Dec 2015 | A1 |
| 20150373007 | Sheller | Dec 2015 | A1 |
| 20160011224 | Pollack | Jan 2016 | A1 |
| 20160057623 | Dutt | Feb 2016 | A1 |
| 20160065570 | Spencer | Mar 2016 | A1 |
| 20160110528 | Gupta | Apr 2016 | A1 |
| 20160135107 | Hampel | May 2016 | A1 |
| 20160180078 | Chhabra | Jun 2016 | A1 |
| 20160182503 | Cheng | Jun 2016 | A1 |
| 20160227411 | Lundblade | Aug 2016 | A1 |
| 20160239649 | Zhao | Aug 2016 | A1 |
| 20160239657 | Loughlin-McHugh et al. | Aug 2016 | A1 |
| 20160283406 | Linga | Sep 2016 | A1 |
| 20160342873 | Winkk et al. | Nov 2016 | A1 |
| 20170013453 | Lee | Jan 2017 | A1 |
| 20170041309 | Ekambaram et al. | Feb 2017 | A1 |
| 20170063528 | Seo | Mar 2017 | A1 |
| 20170070890 | Luff | Mar 2017 | A1 |
| 20170085382 | Kamakari | Mar 2017 | A1 |
| 20170124385 | Ganong | May 2017 | A1 |
| 20170193211 | Blake | Jul 2017 | A1 |
| 20170272419 | Kumar | Sep 2017 | A1 |
| 20170289168 | Bar | Oct 2017 | A1 |
| 20170339118 | Hwang | Nov 2017 | A1 |
| 20180005239 | Schlesinger | Jan 2018 | A1 |
| 20180012003 | Asulin | Jan 2018 | A1 |
| 20180025135 | Odom | Jan 2018 | A1 |
| 20180029560 | Mohaupt | Feb 2018 | A1 |
| 20180039990 | Lindemann | Feb 2018 | A1 |
| 20180114221 | Karantzis | Apr 2018 | A1 |
| 20180135815 | Rowles | May 2018 | A1 |
| 20180167816 | Kusens et al. | Jun 2018 | A1 |
| 20180248865 | Johansson | Aug 2018 | A1 |
| 20180285879 | Gadnis | Oct 2018 | A1 |
| 20180302416 | Einberg | Oct 2018 | A1 |
| 20180329857 | Ko | Nov 2018 | A1 |
| 20180375848 | Tunnell | Dec 2018 | A1 |
| 20190122024 | Schwartz | Apr 2019 | A1 |
| 20190207918 | Kurian | Jul 2019 | A1 |
| 20190268774 | Kusens et al. | Aug 2019 | A1 |
| 20190281025 | Harriman | Sep 2019 | A1 |
| 20190281036 | Eisen | Sep 2019 | A1 |
| 20190318122 | Hockey | Oct 2019 | A1 |
| 20190342092 | Handschuh | Nov 2019 | A1 |
| 20200042723 | Krishnamoorthy | Feb 2020 | A1 |
| 20200050745 | Kim | Feb 2020 | A1 |
| 20200053096 | Bendersky | Feb 2020 | A1 |
| 20200066071 | Budman | Feb 2020 | A1 |
| 20200097643 | Uzun | Mar 2020 | A1 |
| 20200125704 | Chavez | Apr 2020 | A1 |
| 20200162435 | Kubo | May 2020 | A1 |
| 20200175157 | Wilding | Jun 2020 | A1 |
| 20200193051 | Van Antwerp | Jun 2020 | A1 |
| 20200358787 | Barker | Nov 2020 | A1 |
| 20200403787 | Islam | Dec 2020 | A1 |
| 20200403992 | Huffman | Dec 2020 | A1 |
| 20210014314 | Yamada | Jan 2021 | A1 |
| 20210123835 | Glennon | Apr 2021 | A1 |
| 20210250759 | Ziv | Aug 2021 | A1 |
| 20220108026 | Ortiz et al. | Apr 2022 | A1 |
| Number | Date | Country |
|---|---|---|
| 106413128 | Jul 2020 | CN |
| 2016179433 | Nov 2016 | WO |
| Entry |
|---|
| Erdem Alkim et al., “Post-Quantum key exchange—a new hope”, International Association For Cryptologic Research, vol. 20161116:063839, Nov. 16, 2016, pp. 1-22. |
| Joppe W. Bos et al., “Post-quantum key exchange for the TLS protocol from the ring learning with errors problem”, International Association for Cryptologic Research, vol. 20150316:235249, Mar. 17, 2015, pp. 1-28. |
| International Search Report dated Aug. 11, 2016, for PCT Application No. PCT/US2016/031055, filed May 5, 2016, five pages. |
| International Search Report dated Oct. 9, 2019, for PCT Application No. PCT/US2019/041871, filed Jul. 15, 2019, four pages. |
| Li et al., “Addressable Metasurfaces for Dynamic Holography and Optical Information Encryption”, Jun. 15, 2018, http://advances.sciencemag.org/content/advances/4/6/eaar6768.full.pdf. |
| The International Search Report and Written Report for the International Application No. PCT/US2020/064099 dated Mar. 16, 2021. |
| Magoon, Owais, “iOS app.” Behance, published Sep. 7, 2015 (Retrieved from the Internet Mar. 22, 2021). Internet URL: <https://www.behance.net/gallery/27383661/iOS-app> (Year: 2015). |
| Bywater Films, “Winkk: Emotion to Action.” Vimeo, published Oct. 7, 2015 (Retrieved from the Internet Mar. 22, 2021). Internet URL: <https://vimeo.com/141695923> (Year: 2015). |
| Schiff, Eli, “Unofficial Apple Icon Design Awards.” Eli Schiff Blog, published Jan. 5, 2016 (Retrieved from the Internet Mar. 22, 2021), Internet URL: <www.elischiff.com/blog/2016/1/5/apple-icon-design-awards> (Year: 2016). |
| International Report on Patentability from International Application No. PCT/US2020/064099, dated Jun. 23, 2022, 7 pages. |
| Number | Date | Country | |
|---|---|---|---|
| 20230096233 A1 | Mar 2023 | US |
