84results about How to "Easy to decrypt" patented technology

An image signal output device includes a code generating means for generating a two-dimensional geometrical code based on a source data, a obtaining means for retrieving a sequential image signal, a code inserting means for inserting the two-dimensional geometrical code in the sequential image signal and a output means for outputting the sequential image signal. The code inserting means imperceptibly inserts the two-dimensional geometrical code in the sequential image signal, and the output means outputs the sequential image signal having the two-dimensional geometrical code inserted therein. The imperceptible two-dimensional geometrical code is captured by a camera in a cell phone to be decoded and stored in a memory medium.

The invention discloses a safe data transmission method, comprising that a mobile terminal uses a second public key to encrypt the personal password of bank card to generate a second cryptogram, the mobile terminal combines the first and second cryptograms into a trade report to be sent to a server, while the first cryptogram contains card track information stored in the mobile terminal, the server decrypts the first and second cryptograms, for best, the mobile terminal can use random password to encrypt the first cryptogram to generate a dynamic first cryptogram, while the random password is generated by relative algorism according to dynamic factor. The invention uses asymmetry encrypt technique to encrypt the data sent by mobile terminal, and uses random password to generate dynamic cryptogram, and generates the cryptogram with living period according to time mark, therefore, the transmission safety of finance data as cark track information or the like is effectively protected via the combined encrypt methods, to realize mobile payment.

The invention discloses an identity-based file encryption transmission method which is applicable to a system of client/server architecture based on FTP. The method, based on identity based encryption algorithm, comprises the following steps: generation of public keys and private keys of a client and a server; identity authentication; negotiation of a symmetric key; transmission of encrypted files and secret key update and management. The identity based encryption (IBE) algorithm is used in the identity-based method, so that users can communicate safely and signature of each person is authenticated without exchanging the public keys and the private keys; besides, the file safety transmission method is low in cost, flexible in form, high in efficiency and good in safety.

The present invention discloses a system and a method that can automatically complete the decryption and encryption of data files via the Internet. The system comprises a client-end subsystem, which performs decryption and encryption by receiving the instructions of client and manages public or private keys, and a server subsystem, which receives job requests from the client-end subsystem, executes jobs and returns job results. A reader first publishes a public key to the server subsystem, and a user symmetrically encrypts a file plaintext by a user-set password Keyl; then the user acquires the public key of reader via the Internet and uses the public key to symmetrically encrypt the password Keyl that is then stored in a file head; after receiving the file of user, the reader first decrypts the ciphertext of the password Keyl in the file head by the private key of reader to acquire the password Keyl, which is then used again to decrypt the cipher text of the file in order to obtain the plaintext. By combining the encryption and decryption of the file and the management of keys with the Internet, the present invention can enable users to conveniently decrypt or encrypt files anytime and anywhere.

In one embodiment, a communication device includes a key strength controlling agent 308 operable to (i) receive a request for a cryptographic key; (ii) determine, from a restriction identifier, whether the cryptographic key strength is restricted; (iii) when the cryptographic key is restricted, cause the use of a second cryptographic key having a second key strength; and (iv) when the cryptographic key is not restricted, cause the use of a first cryptographic key having a first key strength. The first and second key strengths are different.

One embodiment of the present invention provides a system for facilitating storage encryption and decryption. During operation, the system receives a first request to encrypt data which is to be stored on a remote device, wherein the first request indicates the data. The system updates a key based on a dynamic key refreshment protocol. The system determines a key label for the updated key. The system encrypts the data based on the updated key, and transmits the encrypted data and the key label to the remote device, thereby facilitating secure encryption and decryption of data on the remote device.

Let us consider a message M an element (m1,m2, . . . ,mk) in a Galois field GF (2k), and multiply it by a product of polynomials beta 1(alpha)-alpha t(alpha) into M(alpha).<paragraph lvl="0"><in-line-formula>M(alpha)=Mbeta1(alpha).Mbeta2(alpha) . . . Mbetat(alpha)</in-line-formula>Combine a noise vector r(alpha) of n-k to M(alpha) in series so that the data is expanded into degree n. Next, they are transformed into Γ by permutation. Γ is multiplied by an element gammax in the Galois field GF(2n) into cyphertext C(M), where gamma is a primitive root of the multiplicative group of the Galois field GF(2n). Practically, when the message M is substituted for X in a public key C(X), the cyphertext C(M) is obtained. The cyphertext C(M) is multiplied by gamma-x, is applied to an inverse permutation, and the noise vector r(alpha) is separated. Then, the inverse element of the product of beta1(alpha)-betat(alpha) is multiplied and is raised to an adequate index. Then the decrypted message is obtained.

A system for securely transmitting Real Time Protocol voice packets to a remote multimedia terminal adapter over an Internet protocol network. The system features an MTA (a local multimedia terminal adapter) having a key stream generator for generating a first key stream used for encrypting the voice packets. The remote multimedia terminal adapter receives and decrypts the voice packets. Also, the system includes a remote key stream generator for generating the first key stream in order to decrypt the encrypted voice packets and a packet decryptor decrypting the encrypted voice packets using the first key stream, wherein both key stream generators are capable of generating a second key stream to prevent reuse of any portion of the first key stream during the communication session.

The embodiment of the present invention discloses a terminal control method, terminal and system, wherein the method includes: the first terminal signs the first data acquired by the first terminal according to the private key of the first terminal, and obtains the second data; the first terminal encrypts the first data and the second data according to the public key of the second terminal pre-stored by the first terminal to obtain third data; the first terminal encrypts the The third data is sent to the second terminal, so that the second terminal decrypts the third data to obtain the first data and the second data, and the second terminal based on the first data The second data is verified, and the second terminal performs an unlocking operation after the second data is verified. The embodiment of the present invention can effectively improve the data security in the process of keyless unlocking by adopting the public-private key cryptography technology to sign and encrypt the data.

The invention relates to a privacy protection type attribute matching method based on symmetrical encryption. According to the method, a secret key is generated by means of common attributes naturally shared by matched users, an establish request and a secure channel secret key are connected through the secret key in an encryption mode, and only the matched users can generate the same secret key, decrypt a message conveniently and obtain a channel secret key; in this way, privacy protection type attribute matching and secure channel establishment are achieved synchronously through one round of communication, accurate and fuzzy matching/searching can be achieved, any privacy information can not be obtained by a participant with a similarity degree lower than the threshold value, an established secure channel can resist man-in-the-middle attack, and meanwhile, the attribute matching mechanism is verifiable so that matching result cheating attack can be resisted. Compared with most existing methods depending on an asymmetric encryption system and a trusted third party, the method has the advantages that calculation cost and communication cost are reduced greatly, calculated amount is small, practicality is high, flexibility is high, and the lightweight purpose is realized.

Provided is an apparatus for encrypting data including a key determiner configured to determine a cipher key for white-box cryptography (WBC)-based encryption and a symmetric key different from the cipher key and an encrypter configured to generate a ciphertext of the data using the WBC-based encryption and symmetric-key-based encryption with the symmetric key.

A method of transmitting email and a device for transmitting email capable of broadcasting the email including encrypted data effectively. When a personal computer PC1 accepts an instruction to transmit same data to multiple destinations by email, the PC1 generates a session key (S105) and encrypts the data by utilizing the generated session key (S106). Next, the PC1 generates the common key by utilizing a public key generated based on an email address of each destination and the secret key acquired from a center in advance (S107), and encrypts the session key by utilizing the generated common key (S108). The PC1 transmits the email including the encrypted data and the encrypted session key to each destination (S110).

The invention provides a data sending method, a data receiving method, a sending end and a receiving end, and relates to the technical field of communication. The sending method comprises the following steps: calculating to-be-sent data by utilizing a message digest algorithm to obtain a first hashed value of the to-be-sent data, splicing the length value of the to-be-sent data to the head and/orthe tail of the to-be-sent data to obtain to-be-encrypted data, encrypting the to-be-encrypted data to obtain first encrypted data, dividing the first hashed value into a plurality of pieces of firstsub-data at an interval of every a second preset number of characters, splicing one piece of first sub-data to the head and/or the tail of a group of to-be-inserted characters to obtain a group of preset characters, sequentially inserting a group of preset characters into the first encrypted data at intervals of a fifth preset number of characters to obtain second encrypted data, and splicing allcharacters of the first hashed value at the head and/or the tail of the second encrypted data to obtain target encrypted data. The data transmission security performance is high, and whether the target encrypted data is tampered or not can be conveniently verified.

The invention discloses a safe cloud storage method and system with the support of file encryption based on a windows platform. The system comprises a user registration module, a file option module, a sharing module, an encryption option module, a message option module, a check mode module. The method and the system are based on Eclipse and the Java language development is used, the practicability is high, the cost of development is low, and the energy consumption is low; an RSA encryption algorithm is used to protect a session key, the security of the algorithm is high, and the efficiency is relatively high; a Hadoop cloud storage architecture is used by a cloud end storage architecture, the distributed storage and threshold storage are realized. The system has the advantages of a small size and low memory consumption, the storage of a private key into a mobile device is supported, and the decryption operation of an encrypted file is supported.

The invention belongs to the field of information security and privacy protection, and particularly relates to a BGV type multi-key fully homomorphic encryption method with a directional decryption function, which comprises the following steps that different users use BGV type homomorphic encryption on plaintext data of themselves to obtain ciphertext corresponding to different keys; user extension is performed on the ciphertext participating in homomorphic calculation to obtain an extended ciphertext of a set (user set S) composed of all users participating in homomorphic calculation; homomorphic operation is performed on the extended ciphertext of the user set S participating in calculation to obtain a result ciphertext; the users participating in calculation carry out directional partial decryption on the result ciphertext respectively, and send partial decryption results to the users needing to be decrypted finally; and a decrypted user is appointed to carry out final decryption toobtain a plaintext result of homomorphic calculation. According to the method, the controllability of the ciphertext decryption result is enhanced, the limitation that MPC related technologies need to be used in the ciphertext broadcasting process is eliminated, and the complexity of the decryption result is reduced.

The invention discloses a certificate-based end-to-end key exchange method. The method comprises the following steps: first step, a terminal I obtains a public key of a terminal II, wherein the specific process is as follows: A1, the terminal I encrypts the public key and submits the same to a server; A2, the server decrypts the public key encrypted by the terminal I, a digital certificate authentication center creates a user certificate of the terminal I, and the server stores the user certificate of the terminal I; A3, the terminal I generates a request message for key exchange with the terminal II; A4, the server sends the user certificate of the terminal I to the terminal II, and after the terminal II agrees to the key exchange request, the server sends the user certificate of the terminal II to the terminal I; A5, the terminal I parses the public key of the terminal II from the user certificate of the terminal I and stores and the same. Similarly, the terminal II acquires the public key of terminal 1. By adoption of the certificate-based end-to-end key exchange method, the key exchange process is simplified, the man-in-the-middle attacks and replay attacks in the registrationprocess are prevented, and the security of the public key is improved.

The invention relates to a multi-signature implementation method and device, equipment, and a storage medium. The method comprises the steps of generating a key pair participating in a transaction; creating a multi-label template, and returning the address of the multi-label template; transferring a pass certificate to the multi-signature module; creating a transaction according to the multi-signature template, and returning to-be-signed data; signing the to-be-signed data, and returning signed signature data and a Boolean value; and if the Boolean value does not meet the weight condition, taking the signed signature data as a new signature object, and continuing to sign by using other private keys corresponding to a public key participating in multi-signature template establishment so asto continue to judge until the Boolean value meets the weight condition, thereby realizing multi-signature. The multi-signature scheme has the characteristics of simplicity and safety in operation andhigh running speed.

An encryption/decryption system which is capable of preventing encrypted data from being easily decrypted. A program for carrying out an encryption process or a decryption process on data sent and received to and from a host apparatus is stored in encrypted form. A key for decrypting the stored program is generated in response to startup of the encryption/decryption system. The stored program is decrypted using the generated key, and the decrypted program is executed.

The present invention relates to a data exchange method based on an HTTP protocol and a data exchange device based on an HTTP protocol to solve the safety problem in AJAX technology transmission data based on the HTTP protocol, and the transmission safety of user data can be ensured while the use of a HTTPS protocol is avoided. The method comprises the steps of using a reversible algorithm to encrypt data which is needed to be sent to a server to obtain encrypted data and sending the encrypted data to the server via an AJAX request. According to the technical scheme, the safe transmission of the data in the AJAX technology transmission data based on the HTTP protocol is ensured.