129results about How to "Fast encryption and decryption" patented technology

The invention discloses a method for designing an AES (Advanced Encryption Standard) encryption chip based on an FPGA (Field Programmable Gate Array), which is designed for aiming at the requirement of an embedded system. The AES encryption chip not only can be used in a manner of a solid chip but also used in a manner of a software module. Three operation modes of ECB (Electronic Code Book), CBC (Cipher Block Chaining) and CTR (Counter Technical Requirement) are supported simultaneously. All standards of the AES can be encrypted and decrypted. The byte replacement and the key expansion are carried out by using a look-up table optimization algorithm. A column mixed optimization structure is provided. Device resources are saved while the operation speed is ensured. An RAM (Random-Access Memory) can be configured as a cache of information and a key through double ports of the FPGA. A problem for storing a time sequence and data of other devices or equipment and the FPGA is resolved. Safe and reliable communication with an FPGA interface joins CRC (Cyclic Redundancy Check) error detection in a manner of a memory bus. The AES encryption chip has the advantages of high safety, high encryption and decryption speeds, low device resource requirement, low cost and the like. The AES encryption chip can be widely used in information technology industries of intelligent card systems, ATMs (Automatic Teller Machines), wireless local area networks, wireless sensor networks and the like.

The invention relates to a data encryption and decryption technology, in particular to a method adopting the parallel data processing of multi-crypto chips to improve the encryption and decryption speed of a system. A parallel data processing unit for the multi-crypto chips and a high-speed encryption method for the data have the following advantages that: the operation of the system does not occupy extra resource of a main CPU, all the encryption and decryption operations are performed in a DSP processor, and the extreme improvement of the encryption and decryption speed is realized through the parallel processing of a plurality of crypto chips and the DSP.

The invention discloses a weak authentication and key agreement method based on a symmetrical password, comprising the following steps: 1) presetting a long-term shared secret key k between any two network node equipment A and B; 2) respectively arranging a clock on a node A and a node B, wherein, the error between each clock and standard time does not exceed T0 second; 3) internally installing an encryption algorithm E between the node A and the node B; and 4) building an authentication and session key between the node A and the node B by utilizing the encryption algorithm E and the long-term shared secret key k. The method of the invention has low energy-consumption computation and communication, rapid execution speed and high authentication efficiency, and is suitable for resource-restricted communication environments. As the invention uses a symmetric cryptographic algorithm DES or AES, the difficult degree that opponents capture authentication message to obtain the long-term shared key or a ciphertext is relative to the difficult degree of decoding the DES or AES algorithm, thus ensuring the safety of the ciphertext and the key.

The invention is applicable to the field of network communication, and provides a data encryption transmission method and system. The data encryption transmission method comprises the following steps: A. a server dynamically generates a DES (data encryption standard) key based on a data encryption algorithm (DEA), and encrypts the DES key by an RSA (Rivest, Shamir and Adleman) public key which is dynamically generated by a client side so as to generate an RSA encrypted ciphertext; B. the client side decrypts the received RSA encrypted ciphertext so as to obtain the DES key; and C. a message transferred between the server and the client side is compressed according to a ZLIB algorithm, and then the DES key encrypts the compressed message. The data encryption transmission method has the beneficial effects that the RSA and DES encryption algorithms are combined together, namely the message is encrypted according to the DES algorithm and meanwhile the DES key is encrypted according to the RSA algorithm so as to integrate the advantage of fast encryption and decryption speed of the DES algorithm and the advantage of high safety of the RSA algorithm; and meanwhile the message is compressed according to the ZLIB algorithm so as to realize safe and efficient data encryption transmission.

The invention discloses a cloud computing based password service system comprising a physical layer, a computing resource layer, a service layer and an application layer. The physical layer is used for describing its hardware architecture and functions of its parts. The computing resource layer is used for describing its modules and functions of the modules. The service layer is used for describing password operation software and a password computing application interface. The application layer is used for describing various password services provided. Compared with the prior art, the system has the advantages that the techniques such as the cryptographic techniques, the Hadoop technology and the parallel computing technology are adopted, password services such as file encryption, data encryption, key management and identity authentication are provided, safeguarding efficiency can be significantly improved, data processing speed, encryption speed and decryption speed are higher, and data security is effectively protected for cloud computing.

The invention discloses a mobile Internet information communication encryption method based on the GMB algorithm. A user A sends an encrypted message to a user B through a mobile terminal and establishes an elliptic curve dynamically according to the SM2 elliptic curve public key cryptography algorithm, the user A sends parameters relevant to the public key and elliptic curve to the user B, the user B generates a public key kB by means of the parameters relevant to the elliptic curve sent by the user A, and then communication encryption/decryption is conducted. According to the method, Miller-Rabin algorithm underlayer optimization is conducted with the Montgomery algorithm, a good effect is obtained in terms of prime number testing optimal selection, the window size can be controlled flexibly with the sliding window algorithm, elliptic curve point multiplication speed and encryption/decryption speed are increased greatly through salutatory binary string computation, and mobile Internet communication encryption/decryption can be achieved quickly, safely and reliably by means of the asymmetrical secret key algorithm and symmetric secret key algorithm.

A safe data sharing method suitable for a hybrid cloud environment is disclosed and comprises the following steps: a system is initialized; a secret key is generated by an authorization mechanism, a data owner encrypts a file so as to generate a data ciphertext and a middle ciphertext of a secret key ciphertext, the data ciphertext is directly uploaded to a public cloud without being processed via a private cloud, the middle ciphertext of the secret key ciphertext is uploaded to the private cloud, the private cloud processes the middle ciphertext and generates the same into a complete secret key ciphertext, ciphertext conversion is conducted via the private cloud, and user data of a mobile terminal is decrypted. According to the method, in the hybrid cloud environment, data is ciphered and shared based on ciphertext strategy attributes; with limited computation and storage capability of the mobile terminal taken into consideration, the private cloud as a proxy can safely take over part of complex ciphering and deciphering tasks via use of secret key decomposition technologies and secret key negotiation technologies on a precondition that data safety is ensured, a computation burden and storage demand of the mobile terminal can be reduced, and a reliable method is provided for protecting and sharing data of the mobile terminal in a highly efficient and safe manner.

The invention discloses a method and a system for monitoring and diagnosing large scale equipment remotely. The method comprises the steps as follows: firstly, a PLC (Programmable Logic Controller) analyzes collected running data of the large scale equipment on an engineering site, and transmits the data to an internet by a 3G (the third generation telecommunication) wireless network; secondly, a monitoring center platform builds a safe information channel with the PLC by a VPN (Virtual Private Network) router and a VPN fire bulkhead; thirdly, the monitoring center platform analyzes and processes data passing by the safe information channel, and monitors and diagnoses the large scale equipment; and fourthly, the PLC controls the large scale equipment according to the detection and diagnosis results sent back by the monitoring center platform. The method and the system can enhance the data transmission rate and improves the data transmission safety.

The invention provides a mobile terminal file encryption and decryption system and method based on a hardware encryption TF card, which relate to the technical field of information security. The fileencryption and decryption method is applied to a file encryption and decryption system. The system comprises: an operating system bottom support framework for a hardware encrypted TF card, a hardwareencrypted TF card monitoring system service, an application layer registration, and a hardware encrypted TF card system. The method comprises: the hardware encryption TF card is configured to encryptthe device according to the device DevID of the mobile terminal, the IMEI of the SIM card, the SN of the memory chip and the SN of the hardware encrypted TF card are used as parameters, and the true random number generated in the hardware encrypted TF card is used as a key to carry out AES encryption to generate a hardware encrypted TF card root key, which is a key bound with the mobile device andis responsible for encrypting and decrypting the file header information of the mobile terminal. The file encryption and decryption method and system provided by the embodiment of the invention effectively guarantee the information security, and ensure that user data and privacy are not disclosed.

The invention relates to a method for encrypting information. The method comprises the following steps that: when an application program in a mobile terminal is monitored to be switched in an on state, a secret key character string is generated randomly and the generated secret key character string is stored; when the application program sends a communication request to a server for the first time, the generated secret key character string is encrypted asymmetrically by using a server public key published by the server in advance and the encrypted secret key character string is sent to the server; a document uploading request triggered by a user in the application program interface is obtained; a document carried by the document uploading request is analyzed, a privacy field in the document is localized, and the privacy filed is encrypted symmetrically by using a secret key character string generated randomly to generate a document ciphertext; and the generated document ciphertext is uploaded to the server, so that the server decrypts the uploaded document ciphertext based on the received encrypted secret key character string and a server private key. With the method provided by the invention, the information decryption and encryption processing efficiency is increased and the safety is enhanced.

The invention provides a system for controlling ink quantity reset of an ink box and an ink quantity reset method. The ink box comprises a control module with a built-in storage unit and a communication module with a built-in storage unit; a printer performs read-write operation on the communication module, and stores ink box identification information and ink quantity information in the storage unit of the communication module; and the communication module comprises a data encryption/decryption module, and encrypts/decrypts the data exchanged by the printer and the communication module. In the ink quantity reset method, the control module determines whether to reset according to the identification bit; when the reset is needed, the control module acquires a bus control right, blocks the communication between the printer and the communication module through a resistor, and resets the data of bytes of the ink quantity of the corresponding ink box in the communication module; and when the printer rereads the ink box information, because the data of the ink quantity of the corresponding ink box are reset, personal computer (PC) monitoring software displays that the ink quantity of the corresponding ink box is already fully filled. The method improves the use efficiency of printer consumables, and reduces the environmental pollution.

The invention discloses a multivariable public key encryption method. According to the multivariable public key encryption method, when a key is generated, a matrix is constructed according to an iterative method, the length of the key is greatly reduced, and the key can be managed conveniently; a probability encryption method is adopted, random parameters are introduced into encryption, the random parameters must be solved by a deciphering party through a deciphering process, the random parameters take part in decryption of a plaintext, the plaintext can be deciphered only under the condition that the random parameters are known, the difficulty of ciphertext decryption by an attacker is increased, ciphertexts are different even if public keys are the same, the public keys can be released in the forms such as telephone numbers, and encryption security is improved; based on the combinatorial optimization difficulty and multivariable quadratic polynomial, attack of a quantum computer can be resisted, both the encryption speed and the decryption speed are high, and the method can be applied to mobile terminals such as mobile phones; based on calculation on a finite field, the calculation process is simplified; the addition homomorphism and the subtraction homomorphism are achieved, the multiplication homomorphism can be achieved under special conditions, and the method can be applied to the newly-developed fields such as cloud computing.

The invention relates to an encryption method based on circular queue shifting rule. The method comprises the following steps: a plaintext information matrix is taken; a random integer sequence is created; a matrix transformation frequency is input by a user; a random number is taken out from the random integer sequence and is rounded; circular queue shifting of one row or one column of the transformation matrix is carried out according to a set remainder rule; a cipher text matrix is obtained after repeated transformations; finally, all transformation operation processes are recorded as sub keys which are arranged in turn to obtain a key. The encryption method, which belongs to a classic permutation encryption, adopts basic shifting operation and realizes quick enciphering process and deciphering process by means of less resource; meanwhile, the method solves the problems of the prior shifting encryption method such as low encryption intensity, low speed and poor operability; moreover, the encryption method which has the advantages of high encryption speed, simple implementation, high encryption intensity, excellent safety and a wide application scope is suitable to be used in software implementation and hardware implementation.

The invention relates to a method and a device for encrypting data in an ATA memory device with a USB interface. Based on the conventional ATA memory device, the device for encrypting data consisting of a user card and a hardware encryption board card encrypts data transmitted between the memory device and a USB host, thereby achieving the aim for encrypting the data in the memory device. The device for encrypting data consists of a user secret key card and a hardware encryption bard card; and the hardware encryption bard card consist of a USB transreceiver, a USB equipment controller, a control endpoint buffer area, a batch endpoint buffer area, a main controller, an encryption-decryption module, an ATA controller, a secret key acquisition module and a safe access module. The invention has the advantages that the secret key is directly read by the encryption device, without using a computer connected with the memory, thereby ensuring high security; in addition, the data can be encrypted and decrypted at high speed without using an operation system; and moreover, the secret key is stored in a special hardware secret key memory card, and the secret key and the protected data are independently stored, thereby ensuring the security of the data.

A method for ciphering/deciphering the video data is characterized in that the ciphering component is embedded in the encoding process and adopts a strategy of grouping scrambling for ciphering the DCT coefficient of the digital video data. The deciphering data is embedded into the decoding process and adopts an inverse scrambling strategy which is reverse to the ciphering for deciphering the DCT coefficient of the digital video data. The frame movement compensating of the digital video can be simultaneously executed with scrambling to obtain a higher security. The invention embeds the ciphering/deciphering into the coding/decoding process and has the advantages of high ciphering speed and low actualizing difficulty. The technique of dynamic key is adopted and the invention has strong clear text attacking resistance. The effect of the ciphering/deciphering method of the invention is reduced to the minimum. The quality of the deciphered vide image does not have any loss compared with the video image before ciphering.

The invention relates to a hand-held equipment data encryption and decryption method and hand-held equipment peripheral equipment with encryption and decryption functions. In the hand-held equipment data encryption and decryption method, the hand-held equipment peripheral equipment with the encryption and decryption functions is used for encrypting and decrypting private data in the hand-held equipment, when the encryption and the decryption are completed, the hand-held equipment peripheral equipment with the encryption and decryption functions can be physically separated from the hand-held equipment, when the hand-held equipment is not connected with the hand-held equipment peripheral equipment with the encryption and decryption functions, the private data in the hand-held equipment can not be encrypted, and the encrypted data can not be decrypted, so the security of the encrypted data is ensured. A key used during the encryption and the decryption is stored in the hand-held equipment peripheral equipment with the encryption and decryption functions and is bound with the hand-held equipment peripheral equipment, and the security and the uniqueness of the encryption key are ensured.

Provided are a radar comprehensive recorder and a radar data recording method. The radar comprehensive recorder comprises a radar optical fiber data acquisition board used for receiving radar video data, a video acquisition card used for processing operation station VGA output data, a network card used for receiving track data, a solid-state disk used for storing the radar video data, the VGA output data and the track data, a processor, and a memory which stores a program, wherein the program, when executed by the processor, can operate to acquire the radar video data from the radar optical fiber data acquisition board, acquire the operation station VGA output data from the video acquisition card and acquire the track data from the network card and store the data in the solid-state disk. Radar original video, target plot, target track, work status, operator manual operation command and other data can be transmitted based on an optical fiber, a video acquisition card and a network and can be acquired, recorded and stored in parallel, comprehensive analysis of radar data and track data is facilitated, radar operator's operation of the data is supervised, and the data security is ensured.

The invention discloses a long repeating data encryption and transmission method and a long repeating data encryption and transmission system, and belongs to the field of data encryption. The method comprises the following steps: a server receives and detects a login message from a client, wherein the login message comprises a user name, a password, a timestamp and a RSA public key of the client; the server dynamically generates a data encryption algorithm data encryption standard (DES) secret key, encrypts the DES secret key by using the RSA public key dynamically generated by the client, and thus generates a RSA encrypted ciphertext; the client decrypts the received RSA encrypted ciphertext and acquires the DES secret key; the client empties RSA secret key pairs; a message transmitted between the server and the client is compressed by using a RLE algorithm, and the compressed message is encrypted by using the DES secret key; and the client/server decrypts the received message by using the DES secret key, and decompresses the decrypted message by using the RLE algorithm.

The invention provides a data processing method of an E-commerce and government affairs system. The data processing method includes the steps of a user terminal receiving user information input by a user, the user terminal encrypting the user information and then sending the user information to a user authentication server, the user authentication server decrypting the encrypted user information, conducting user authentication, logging an E-commerce server and/or electronic government affairs server if authentication succeeds, rejecting log-in of the user, if authentication fails, and returning log-in error information to the user. The invention provides an integrated e-commerce and government affairs system, which allows a user to log in an E-government server or a business server according to the user's choice or default and allows switching between the two servers without reconfirming the user's identity. The invention also provides an encryption and decryption algorithm for a user's terminal. The encryption and decryption speed is increased by converting a string into a plurality of integers and hiding the integers in a matrix. The system security is improved.

The invention discloses a composite sensor for a 10kV power distribution cable partial discharge on-line monitoring and positioning system, comprising an insulating shell, an electric field coil frame, an electric field coil, a magnetic field coil frame and a magnetic field coil, and the electric field coil frame and the magnetic field coil frame are arranged in the insulating shell Inside, the electric field coil is evenly wound on the electric field coil frame, and the magnetic field coil is evenly wound on the magnetic field coil frame. The composite sensor for the 10kV distribution cable partial discharge on-line monitoring and positioning system can not only detect high-frequency partial discharge signals, It can also locate the discharge source, which effectively improves the accuracy and reliability of positioning while reducing the complexity of the system.

The invention discloses an information security chip of the Internet of Things. The chip comprises a central processor, a dynamic memory, a flash memory, an SM2 encryption algorithm unit, an SM3 encryption algorithm unit, an SM4 encryption algorithm unit, an AES encryption algorithm unit, a true random number generator, a physical unclonable function circuit, an I2C interface, a UART interface, anSPI interface, an I/O interface, a JTAG interface and a timer which are interconnected through an on-chip bus. The true random number generator is used for generating true random numbers; The physical unclonable function circuit is used for chip authentication and key generation, when a key needs to be used, a true random number generated by the true random number generator is input into the physical unclonable function circuit through an on-chip bus, the physical unclonable function circuit outputs a unique response sequence, and the response sequence is the key. The encryption and decryption operation speed is high, the hardware resource consumption is low, the power consumption is low, the secret key cannot be copied and stolen, and the security and anti-counterfeiting level is high.