分组密码算法链接模式构造单向函数的可证安全性

为了促进可证安全性在密码学中的应用,我们对基于分组密码算法验证模式的单向函数进行了证明。认证模式是分组密码算法五种工作模式标准化新加入的一种,通过这一工作"教科书式密码"转化为现实的分组密码算法。通过安全性证明:分组密码算法的验证运算模式因为算法本身的强度而使得消息在保密和认证两方面都具备了可用的理论基础,是构造单向函数的一种合适的方法。     

一种新的一阶段加密认证模式

 在信息安全的许多实际应用中往往需要同时提供私密性和认证性,通常采用加密模式和消息认证码的组合来实现这一目的,但这种实现方式须对同一消息分加密和认证两阶段进行处理,不仅密钥使用量大,而且效率低下.本文基于CBC加密模式设计了一种新的一阶段加密认证方案OXCBC,能够同时提供私密性和认证性,且仅使用一个密钥和一个Nonce,与同类型的加密认证方案相比具有较高的效率.在分组密码是强伪随机置换的假设下,证明了该方案的认证性.     

一种基于身份认证的密钥协商模型

利用通信双方密码设备的身份特征和共享密钥,提出了一种基于身份认证的密钥协商模型,采用与时间戳机制相绑定的分组密码算法、杂凑算法加密体制,定义了密码设备进行密钥协商的工作流程,按此流程进行双方通信密钥的按需协商以及共享密钥的实时有效更新,保证了密钥协商过程的机密性、完整性、防重放性和不可预测性,为某些应用模式下密码设备的安全密钥交换提供了一种有效实用的技术手段。     

对完整轮数ARIRANG加密模式的相关密钥矩形攻击

对SHA-3计划候选算法ARIRANG采用的分组密码组件进行了安全性分析,利用初始密钥的一个线性变换和轮函数的全1差分特征,给出了一个完整40轮ARIRANG加密模式的相关密钥矩形攻击,该攻击是第一个对ARIRANG加密模式的密码分析结果。攻击结果表明:ARIRANG加密模式作为分组密码是不抵抗相关密钥矩形攻击的。     

分组算法模块的VHDL和VERILOG实现及其比较研究

分组密码算法是一种常用的密码技术.其加密速度非常快,在数据加密领域仍广泛使用.目前,分组密码的重点研究方向包括新型分组密码的研究,分组密码的实现研究,分组密码的各个组件的研究等等.本文从AES的5个候选算法中提炼出7大分组算法模块,分别用VHDL和Verilog实现,并对资源占用情况加以分析比较.然后选取分组算法的典型代表AES,用两种语言实现并对资源占用情况和实现速率加以比较.结果表明:对于小型分组算法模块,VHDL和Verilog的实现在占用逻辑单元方面基本上没有什么差别;对较为复杂的模块和AES算法,Verilog的实现会比VHDL的实现占用较少的资源,但速度要慢些.     

BMP图像加密算法研究

流密码与分组密码是基于位运算的图像加密算法中两种主要密码体制。着重研究了分组密码长度和密码多样性的不同选取对加密BMP彩色图像的影响。指出了在分组密码长度与BMP图像的长宽尺寸成倍数关系的情况下,BMP图像加密效果极其不理想的规律和现象,并对此进行了分析和研究。此外,对采用基于位运算方法加密BMP图像的抗噪声性能也进行了分析。     

基于多重加密技术的一个三重加密方案

分组密码的应用非常广泛,但由于差分密码攻击和线性密码攻击的出现,使分组密码受到致命的打击,文章基于能够保护已有软件和硬件使用分组密码投资的目的,采用多重加密的思想,通过对密码体制强化的方法,提出了一个新的三重加密方案,并分析了其安全性特征,得到了安全性更强的一种算法。     

AES加密算法的原理与设计实现

2001年11月，NIST确定新的加密算法Rijndael为高级加密标准（AES），以取代安全性已经不能满足需要的的原数据加密标准（DES）。AES属于对称分组密码，可用128、192、256位密钥对128位的分组明文明文行加解密。本文在分析其算法结构和性能特点的基础上，作出了具体的设计实现。     

一种逻辑加密卡安全体系的实现

介绍并讨论了一种逻辑加密卡安全体系实现的设计方法，针对加密卡成本较低、使用方便、安全性较好、用途广泛等要求，提出了包括密码认证体系和写保护体系在内的安全系统，给出了密码认证过程的几种模拟结果     

分组密码的NOTP工作模式

提出了一种实用的分组密码工作模式NOTP(Nearly One-Time Pad),即分组密码的拟一次一密工作模式。该模式不仅可以提供理想的安全强度,还可提供完整性和认证性。NOTP具备了CBC工作模式的所有优点,而且在安全性和运算效率方面更加优越,因此,它在很多方面优于CBC工作模式。     

基于Radix-4 Booth编码的模2n+1乘法器设计

模2n+1乘法(n=8、16)在分组密码算法中比较常见,如IDEA算法,但由于其实现逻辑复杂,往往被视为密码算法性能的瓶颈。提出了一种适用于分组密码算法运算特点的基于Radix-4 Booth编码的模2n+1乘法器实现方法,其输入/输出均无需额外的转换电路,并通过简化部分积生成、采用重新定义的3-2和4-2压缩器等措施以减少路径时延和硬件复杂度。比较其他同类设计,该方法具有较小的面积、时延,可有效提高分组密码算法的加解密性能。     

一种可证明安全的消息认证码

消息认证码是保证消息完整性的重要工具,它广泛应用于各种安全系统中.随着可证明安全理论的逐渐成熟,具备可证明安全的消息认证码无疑成为人们的首选.本文基于XOR MAC和PMAC的构造方法,使用分组密码构造了一种确定性、可并行的消息认证码-DXOR MAC(Deterministic XOR MAC).在底层分组密码是伪随机置换的假设下,本文使用Game-Playing技术量化了攻击者成功伪造的概率,从而证明了其安全性.     

改进的CBC 模式及其安全性分析

针对CBC模式在分块适应性攻击模型下不安全这一问题,提出了一个新的分组密码工作模式。新方案引进了Gray码,改变了原有模式的输入方式,打乱了前后输出输入的内在联系。同时,利用规约的思想对其安全性进行了分析。结果表明,在所用分组密码是伪随机置换的条件下,方案在分块适应性攻击模型下是可证明安全的。     

高功率横流CO2激光横模随时间变化的测量

用激光光束分析仪实时在线测量了一台连续运转的高功率横流CO2激光器的激光横模,获得了较为完整的激光横模随时间的变化关系.测量结果表明,激光输出由两个分离的、非对称的高阶横模叠加组成("双模"),两横模中心相距约8 mm.形成"双模"的原因是串接式谐振腔的前腔和后腔两者的中心轴线不重合以及阴极铜管形变.横模随激光器运行时间的延长而逐步蜕化,呈更高阶和复杂化趋向.初步分析表明,横模的时间变化主要与激光器连续运转过程中腔内气体组分发生的变化有关.     

Transverse and longitudinal mode control in semiconductor injection lasers

Mechanisms which determine the oscillating transverse and longitudinal modes in semiconductor injection lasers are discussed in this paper. The analysis is based on the semiclassical method in which the optical field is represented by Maxwell equations and the lasing phenomenon is analyzed quantum mechanically using the density matrix formalism. Guided modes are classified by the relation between refractive index and gain-loss differences at the boundaries of the active region as normal guided mode (index guiding), active-guided mode (gain guiding), and leaky mode (anti-index guiding). The guiding loss and cutoff conditions are given for these modes. The optimum range to obtain stable fundamental transverse mode operation is discussed with respect to several guiding factors, such as width of active region, the refractive index difference, and gain-loss differences at the boundaries of the active region. Longitudinal mode behavior is discussed in terms of electron transition mechanism in semiconductor crystals. The relaxation effect of the electron wave is introduced in this model. Profiles of the saturated gain and the spatial diffusion of the electron are related to this relaxation effect. Mode competition phenomena are analyzed, and a strong gain suppression among the longitudinal modes is shown to be as an intrinsic property of semiconductor lasers. The possibility of obtaining single longitudinal mode operation is postulated. Physical influences for stable single longitudinal mode operation are discussed in terms of transverse mode control (or stripe structure), spontaneous emission, threshold current level, impurity concentration in the active region, and direct modulation. Some experimental results are also given to support these analyses.     

Mode competition and mode locking in compound cavity semiconductorlasers

This letter concerns the mode-competition effect for compound-cavity lasers. Considering the mode properties of such a system we show, that the side cavity mode having the same threshold gain as the lasing one, may correspond to either stable or unstable modes of laser operation. In the last case the mode competition leads to locking of the lasing and side modes yielding high-frequency self-pulsations in some range of the system parameters. This effect can be used for the design of self-pulsating SLs generating optical pulses in the microwave region without an intracavity saturable absorber     

Cryptanalysis of Multiple Modes of Operation

In recent years, several new attacks on DES were introduced. These attacks have led researchers to suggest stronger replacements for DES, and in particular new modes of operation for DES. The most popular new modes are triple DES variants, which are claimed to be as secure as triple DES. To speed up hardware implementations of these modes, and to increase the avalanche, many suggestions apply several standard modes sequentially. In this paper we study these multiple (cascade) modes of operation. This study shows that many multiple modes are much weaker than multiple DES, and their strength is theoretically comparable to a single DES. We conjecture that operation modes should be designed around an underlying cryptosystem without any attempt to use intermediate data as feedback, or to mix the feedback into an intermediate round. Thus, in particular, triple DES used in CBC mode is more secure than three single DESs used in triple CBC mode. Alternatively, if several encryptions are applied to each block, the best choice is to concatenate them to one long encryption, and build the mode of operation around it. Received 15 February 1996 and revised 30 May 1996     

工作方式对相控阵雷达作用距离的影响

相控阵雷达作用距离决定于雷达技术参数与雷达工作方式的控制参数。本文给出了不同相控阵工作模式下的探测与跟踪距离的计算公式，详细讨论了工作模式控制参数对相控阵雷达作用距离的影响。     

大模场抗弯曲全固态光纤的结构设计

提出了一种具有对称结构的大模场面积和低弯曲损耗的新型结构光纤,运用全矢量有限元法结合完美匹配层边界条件分析了光纤特性。该光纤由纤芯中的梯形折射率环和包层中的多层下陷层组成,仿真结果显示该光纤具有低弯曲损耗大模场单模传输的特性。对比分析了梯形谐振环、矩形谐振环、三角形谐振环结构光纤的弯曲损耗以及电场模式分布,实验结果显示梯形折射率环更具优越性。多层下陷层结构将模场限制在纤芯中,下陷层的数量大于2时模场面积基本上保持不变。研究结果表明,在波长为1 550 nm、弯曲半径为20 cm时,基模(FM)弯曲损耗只有0.056 868 dB/m,而高阶模(HOMs)损耗为3.58 dB/m,有效模场面积可达2 313.67μm²。该光纤对弯曲方向不敏感,在高功率光纤激光器放大器等光通信器件领域具有广阔的发展前景。     

Mode partition in semiconductor lasers with optical feedback

The authors point out that random noise processes induce mode partition fluctuations in semiconductor lasers. Mode partition depends on laser parameters and modulation current. However, external optical feedback can also increase mode partition noise. Here, a numerical solution of multimode noise-driven rate equations with time-delayed terms is utilized to investigate mode partition in semiconductor lasers with reflecting feedback. Photon statistics of the main and side modes in semiconductor lasers under both CW operation and dynamic operation are considered. Probability-density curves for the main and side modes are shown. The feedback-induced change of photon statistics of the main and side modes is clearly seen. Numerical results indicate that, if the laser used is exposed to reflections, a more stringent mode discrimination requirement for suppressing the buildup of laser-cavity longitudinal side modes may result. If mode discrimination is insufficient for avoiding the excitation of side modes, the feedback-induced power penalty depends on the fiber dispersion