基于SM2算法的密钥安全存储系统设计与实现

目前,密钥成为用户进行身份验证的重要凭据,密钥安全存储在保证用户信息安全中起着重要作用。SM2算法具有高安全性、密钥管理简单等特点,本文首先对SM2算法作简要分析,通过引入USB Key硬件加密技术,提出了一种基于SM2算法的混合USB Key加密算法,通过引入多个变量生成复合多维度SM2密钥,提高了用户进行密钥存储的数据安全性。本文基于Windows 8操作系统,选用USB Key3000D作为开发平台,设计并实现了基于SM2硬件加密算法的用户密钥安全存储系统。经测试,该算法方便可行,加密、解密速度较快且安全性高,使用方便,具有良好的应用效果。     

RC4密码的改进方法及其性能分析

针对RC4密码技术在工程应用中存在的弱密钥和相关密钥攻击、不变性弱点、数据流偏向性弱点等安全问题,提出一种将ECC技术与RC4技术相结合的方法。对改进后的RC4的数据处理效率、密钥管理、安全性能进行研究和分析。改进后的RC4技术在保证与RC4数据处理效率相近的同时,对当前针对RC4流密码的密码分析方法具有一定的抗攻击性。该技术较好地解决了密钥的共享和更新问题,具有重要的工程应用意义。     

分组密码的并行工作模式

以AES为例，探讨分组密码的并行工作模式。在分组密码的四种标准工作模式中，除ECB模式外，其余工作模式均存在着反馈形式的迭代，这对数据的并行操作是一大障碍，给出了相应的三种并行密码模式，在不改变原分组密码算法的密码学特征的前提下，可以达到线性的加速比。     

The Vernam cipher is robust to small deviations from randomness

The Vernam cipher, or one-time pad, plays an important role in cryptography because it is perfectly secure. In this cipher a key is a sequence of equiprobable independently generated symbols. We show that under small disturbance of these properties the obtained cipher is close to the Vernam cipher in the case where the enciphered plaintext and the key are generated by stationary ergodic sources.

     

BORON: an ultra-lightweight and low power encryption design for pervasive computing

We propose an ultra-lightweight, compact, and low power block cipher BORON. BORON is a substitution and permutation based network, which operates on a 64-bit plain text and supports a key length of 128/80 bits. BORON has a compact structure which requires 1939 gate equivalents (GEs) for a 128-bit key and 1626 GEs for an 80-bit key. The BORON cipher includes shift operators, round permutation layers, and XOR operations. Its unique design helps generate a large number of active S-boxes in fewer rounds, which thwarts the linear and differential attacks on the cipher. BORON shows good performance on both hardware and software platforms. BORON consumes less power as compared to the lightweight cipher LED and it has a higher throughput as compared to other existing SP network ciphers. We also present the security analysis of BORON and its performance as an ultra-lightweight compact cipher. BORON is a well-suited cipher design for applications where both a small footprint area and low power dissipation play a crucial role.     

The improvement of the knapsack cipher

In this paper, I propose an improvement of knapsack cipher. This improvement makes the cipher more high security and efficient. With the enhancement, the new knapsack cipher can be applied widely in the systems which need high security.     

分组密码工作模式的研究现状

分组密码工作模式是利用分组密码解决实际问题的密码方案．好的工作模式可以弥补分组密码的某些缺憾；相反，不好的工作模式可能带来安全隐患．工作模式的研究始终伴随着分组密码的研究历史，新的分组密码标准的推出，都会伴随着相应工作模式的研究．从针对DES的ECB、CBC、CFB和OFB，到针对AES的CTR、CCM、CMAC、GCM和AESKW，作者以各种模式标准为主线，介绍分组密码工作模式的设计理念、安全模型、二十多年的研究成果以及发展现状．     

基于网格技术的密码学计算平台的设计

结合现有的网格技术、思想和密码计算的特点,分析了利用网格技术实现密码学计算的可行性,并结合J2EE开发方式的优势实现系统支持,最后提出了一种有效的、可行的密码计算网格平台构架。     

一种基于演化计算的序列密码分析方法

序列密码是一类重要的密码,演化计算是一种重要的智能计算。在研究利用演化计算进行序列密码分析方法的基础上,具体给出了一种利用演化计算对非线性滤波型序列密码体制进行分析的方法。分别在移位器初态未知和抽头位置未知两种情况下,对滤波流密码体制进行了密码分析。实验结果表明,该算法的攻击复杂度远远小于穷举攻击的复杂度。     

On the use of recurrent neural networks to design symmetric ciphers

In this article, we describe an innovative form of cipher design based on the use of recurrent neural networks. The well-known characteristics of neural networks, such as parallel distributed structure, high computational power, ability to learn and represent knowledge as a black box, are successfully applied to cryptography. The proposed cipher has a relatively simple architecture and, by incorporating neural networks, it releases the constraint on the length of the secret key. The design of the symmetric cipher is described in detail and its security is analyzed. The cipher is robust in resisting different cryptanalysis attacks and provides efficient data integrity and authentication services. Simulation results are presented to validate the effectiveness of the proposed cipher design.     

信息安全中序列随机性测试系统的研究与设计

在密码技术中,随机序列是非常重要的,序列的随机性测试一直是信息安全领域重要的研究方向.针对当前随机性测试系统存在的不足,在Visual C .NET下研究并设计了一个随机性测试系统.根据流密码和分组密码的不同,该系统分开进行测试.在流密码中提出一种新的测试序列的划分和组织方式,而在分组密码中则设计了3种数据模式来构造待检序列.该系统经过严格测试,证明可以快速,准确的进行流密码、分组密码以及随机数发生器的随机性测试.     

可重构密码协处理器的概念及其设计原理

提出了可重构密码协处理器的概念并论述了其设计原理。所谓可重构密码协处理器实际上是一个其内部逻辑电路结构和功能可被灵活改变的密码处理单元,它能够在主处理器的控制和驱动下灵活、快速地实现多种不同的密码操作,以便适应不同密码算法的需求。基于可重构密码协处理器的可重构密码系统具有灵活、快速、安全的特点,在保密通讯和网络安全等领域中具有良好的应用前景。     

计算机密码学中的加密技术研究进展

随着网络信息技术的发展,对网络上传输的数据的安全性要求越来越高,而计算机密码学中的加密技术是保证信息保密性的一种有效手段。文中概括介绍了密码学中的对称密码体制、非对称密码体制和量子密码等三类主要加密技术的相关发展情况,并指出一些值得关注的问题。     

Bellaso’s 1552 cipher recovered in Venice

Abstract

In his 1553 paper Giovan Battista Bellaso presented his first polyalphabetic cipher, writing that this was an improved reprint of a previous cipher of 1552 that had been printed in Venice on a loose leaflet without instructions. There was much speculation about this early cipher, since no print of that cipher was reported to have been found. Now a printed copy of that leaflet has been found in Venice by the author, and this paper is a report of that finding.     

基于明文长度的椭圆曲线密码密文构建方法

针对存储椭圆曲线密码加密生成的密文与明文相比需要的存储空间较多的问题,提出了一种基于明文长度的构建椭圆曲线密码密文的方法。首先,该方法通过分析椭圆曲线密码加密运算流程,推导出明文椭圆曲线点的数量决定存储密文椭圆曲线点需要的存储空间。其次,该方法融合明文分割和明文组合的加密模式,建立了信息加密模型;在建立的模型中针对明文分割和明文组合信息加密模式,设计出能够生成最小数量明文椭圆曲线点的明文分割算法和明文组合算法。最后,该方法计算出存储密文椭圆曲线点需要的存储空间,并通过分析决定存储空间需求的影响因素,给出减少生成密文椭圆曲线点数量的解决途径。分析和示例计算表明,与加密单个字符方式相比,应用基于明文分割信息加密模式,存储密文椭圆曲线点占用的存储空间减少了88.2%;应用基于明文组合信息加密模式,存储密文椭圆曲线点占用的存储空间减少了90.2%。研究结果表明,提出的加密方法能够有效地减少生成密文椭圆曲线点的数量,降低存储密文椭圆曲线点对硬件存储空间的需求。     

密码指令集扩展研究*

详细分析了常见密码算法的基本操作以及密码指令集扩展的研究现状,针对当前密码系统需要支持多种密码算法的特点指出未来密码指令集扩展的发展方向:指令设计需朝通用性上发展且通用密码处理器是处理器密码指令集扩展的最终目的。     

一种混合加密体制的研究与实现

怎样综合利用分组密码和序列密码两种密码体制来得到较高的安全性,如何保证密码分组链接(CBC)方式中IV的安全性,一直是密码学界很关心的问题。提出了一种混合密码体制方案能够较好地解决这些问题,并结合开发实践对整个解决方案进行了详细的阐述。     

TAE模式的分析和改进

TAE(tweakable authenticated encryption)模式是一种基于可调分组密码的加密认证模式.研究结果表明,安全的可调分组密码不是安全的TAE模式的充分条件.只有当可调分组密码是强安全的时候,TAE模式才是安全的.同时,还给出了TAE模式的一些改进,得到模式MTAE(modifiedtweakable authenticated encryption),并且证明了其安全性.     

Securing color images using Two-square cipher associated with Arnold map

Multimedia Tools and Applications - This paper presents an image encryption scheme using modified Two-square cipher associated with Arnold map. The traditional Two-square cipher is modified to make...     

Experimental demonstrations of Y-00 cipher for high capacity and secure optical fiber communications

Quantum Enigma Cipher is an epoch-making concept in the cryptography that may break the Shannon limit of the cryptography. Yuen-2000 (Y-00) protocol is a first generation toward the Quantum Enigma Cipher that overcomes the Shannon limit in cryptography relying on macroscopic quantum effects. Current Y-00 cipher is an encryption scheme where noise masking blocks an eavesdropper’s reading of the physical ciphertext consisting of the mathematical structure. No such masking effect is realized only by using the mathematical encryption, because mathematical ciphertexts are composed of binary signals, “0” or “1” or deterministic symbols, and they are correctly discriminated. Y-00 cipher is one of the candidates to provide high transmission performance and a provable security simultaneously in the real world. In our present, Y-00 cipher, mathematical cipher and physical phenomena are combined. It features multi-level signaling by mathematical cipher and noise masking to hide the ciphertext in the quantum noise and other channel noise. In the paper, transmission performance of Y-00 cipher is experimentally investigated. A running test for 60 days of Y-00 cipher transceiver at 2.5 Gbit/s is demonstrated. In addition, a trial of a current direct modulation scheme using 4096 signal levels for realizing a compact Y-00 transceiver is demonstrated. Furthermore, a wavelength-division multiplexing transmission of Y-00 cipher is experimentally demonstrated, and 100-Gbit/s Y-00 cipher transmission is successfully transmitted over 120 km.