32 results about "Commutative encryption" patented technology

The invention discloses a secure communication method based on an intelligent door lock system and belongs to the technical field of intelligent home and security. The intelligent door lock system comprises an intelligent door lock and a mobile terminal which are in remote communication connection with a cloud server respectively. The method comprises the steps that the intelligent door lock and the mobile terminal are connected through a preset secure communication channel, and encryption keys are exchanged; to-be-transmitted data is generated through a sending end and encrypted through the encryption keys by using a preset encryption algorithm, and encrypted data is obtained; the sending end sends the encrypted data with the unique identification to a receiving end through the cloud server; identity authentication is conducted through the receiving end on the encrypted data with the unique identification, and the encrypted data is processed according to an identity authentication result. According to the method, no encryption key is saved in the server so that the server cannot understand the data forwarded through the server, even if the server is compromised, data encryption, identity authentication and replacement and tamper resisting in the communication between the intelligent door lock and the mobile terminal are still effective, and data security is ensured.

A QKD system used to securely exchange encryption keys between an emitter (100) and a receiver (200) modified to accept an additional customization parameter. Said QKD system consists of a QKD transmitter (120) and a QKD receiver (220) capable of implementing a plurality of QKD protocols forming a family of protocols. The QKD transmitter (120) and receiver (220) connected through a quantum channel (500) consist of optical and electronic components adapted to produce and detect a stream of qubits. The qubits (520) exchanged over the quantum channel (500) are grouped into blocks (510) consisting of at least one qubit and whose length is L_i (511). For each, block (510) of qubits (520), one of the QKD protocol (530), selected from the family of protocols can be implemented using the emitter (100) and transmitter (200) is used.

The present invention provides a method for establishing a secure channel between wireless devices. The method involves reducing the transmit power of the devices in conjunction with placing the devices in close proximity to one another. By reducing the transmit power, wireless communications between the devices cannot be detected by other devices beyond the short transmission range. The devices then generate and exchange encryption keys using the reduced-power transmissions in order to establish a secure, encrypted communications channel. Once the secure channel is established, the devices increase their transmit power back to normal operating levels, allowing them to be moved further apart while maintaining secure wireless communications.

The invention discloses a method for encrypting data memory apparatus based on virtual system, which belongs to the field of software technique. The method provided by the invention includes the steps of: (1) establishing a virtual machine platform and several virtual systems; (2) setting a commutative encryption and decryption algorithm module inside the virtual machine platform for providing an encryption algorithm for the virtual system; (3) dividing a data memory apparatus by the virtual machine platform, allotting a data memory space for each virtual system, meanwhile setting a cipher key and an encryption algorithm for each virtual system; (4) sending the used cipher key to the virtual machine platform when the virtual system accesses the data memory apparatus; (5) executing a consistency verification for the cipher key of the virtual system by the virtual machine platform, if consistent, and then using the cipher key and the corresponding encryption algorithm for executing a corresponding data-processing. The encryption algorithm provided by the invention is irrelevant to hard disk and VMM, and the encryption algorithm upgrade is convenient; moreover different storage zone can use different encryption keys for improving data safety.

The invention discloses a sensitive information processing method. The method comprises the following steps: exchanging and encrypting data sets of the first terminal and the second terminal accordingto an exchangeable encryption algorithm; obtaining a first encryption set of the first terminal and a second encryption set of the second terminal, according to the first prediction model, a data setowned by the first terminal and a homomorphic encryption algorithm, obtaining prediction data encryption set, obtaining intersection data encryption set of the first encryption set and the second encryption set, and acquiring prediction data encryption set of intersection data encryption set, and sending the intersection data encryption set and prediction data encryption set of the intersection data encryption set to the second terminal, so that the second terminal obtains a target prediction set corresponding to the intersection data set. The invention further discloses equipment and a readable storage medium. The multi-model joint prediction value corresponding to the intersection data can be obtained without disclosing respective data sets between the terminals, so that the data privacy is protected, and the information security is improved.

The invention discloses a longitudinal federated learning linear regression and logistic regression model training method and device, computer equipment and a storage medium, and the method comprises the steps: encrypting local training data of each participant through each participant, and exchanging the encrypted ciphertext; obtaining an intersection ciphertext of a sample intersection owned by the participant through an exchangeable encryption mode; randomly selecting data in the plurality of intersection ciphertexts, obtaining an intermediate result ciphertext of the participant according to the selected data, decrypting the intermediate result ciphertext, and calculating an encryption aggregation gradient according to a decryption result; decrypting the encrypted aggregation gradient to obtain a gradient for updating the parameters of the participant model; and updating the model, judging whether an iteration termination condition is met or not, if so, ending iteration, and if not, continuing training. The technical problem that in the prior art, due to data privacy and lack of trust among different organizations, sensitive data of all the organizations are difficult to fully utilize for distributed machine learning model training is solved.

The invention provides a data query method, device and system based on exchangeable encrypted data confusion, and the method comprises the steps: generating a first hash value according to a user identifier; encrypting the first hash value by using the first exchangeable encryption key to obtain a first encrypted value; intercepting the first n bits of the first hash value to obtain a second hash value; generating a session identifier; sending a query request to a queried party, wherein the query request carries the first encryption value, the second hash value and the session identifier; receiving a second encryption value and a second user list returned by the queried party; the second encrypted value is obtained by performing signature processing on the first encrypted value; the second user list is obtained by encrypting all keys of the first user list by using an exchangeable encryption algorithm; encrypting all keys in the second user list to obtain a fourth user list; and determining whether the target user exists in the queried party or not according to the second encryption value and the fourth user list. The method can be used for hiding traced queries and minimizing information leakage.

The invention relates to the technical field of computers, in particular to a data collision method and device, a storage medium and electronic equipment. The method comprises the following steps: encrypting first original data by using a first key according to a preset exchangeable encryption algorithm to obtain first encrypted data; acquiring second encrypted data, wherein the second encrypted data is obtained by encrypting the second original data by using a second key according to an exchangeable encryption algorithm; encrypting the second encrypted data by using the first key according toan exchangeable encryption algorithm to obtain third encrypted data; acquiring fourth encrypted data, wherein the fourth encrypted data is obtained by encrypting the first encrypted data by using thesecond key according to an exchangeable encryption algorithm; and obtaining an encrypted data intersection of the third encrypted data and the fourth encrypted data, and determining an original dataintersection of the first original data and the second original data based on the encrypted data intersection. According to the method, data collision can be completed under the condition of protecting private data from being leaked.

A method implemented by computers includes exchanging a key between a first user and a second user. Ephemeral session keys are generated. The ephemeral session keys are generated by a first computer associated with the first user and a second computer associated with the second user. An encrypted key generation response is exchanged between the first computer and the second computer. A new session request is received. It is determined that there is a valid session state. It is confirmed that there is a valid user. It is determined that there is a valid session identification. Information between the first computer and the second computer is cryptographically exchanged in response to the valid session state, the valid user and the valid session identification.

The invention discloses a modeling and prediction method and device based on cross characteristics, equipment and a storage medium. The method comprises the following steps of: performing encryption exchange on respective statistics of the first device and the second device according to a preset exchangeable encryption algorithm, calculating to obtain encrypted cross feature statistics corresponding to the first device, and then determining a gradient value corresponding to a model parameter in the first device by using the encrypted cross feature statistics corresponding to the first device,updating the model parameter of the first device based on the gradient value, and performing loop iteration until a preset stop condition is detected to be satisfied to obtain a trained first recommendation model of the first device. Under the condition that the data is not local, the feature intersection between the feature components in the equipment and the feature intersection between the feature components between the equipment are completed at the same time, the complexity of the recommendation model is increased, and therefore the recommendation prediction capacity of the model is improved.

The invention discloses a privacy data intersection method and system for transmitting trace data by one party, and the method comprises the steps: generating an encryption Key value data set and a first encryption key one by one according to a second encryption data set and a first data stamp; encrypting additional data of the Key value data set to generate first encrypted additional data; solving a Key value intersection according to the first encrypted data set, the first data stamp and the encrypted Key value data set, and obtaining a first decryption key at the same time; and decrypting the intersection additional data in the first encrypted additional data according to the first decryption key to obtain a first additional plaintext corresponding to the Key value intersection. The technical problems that in the prior art, multiple times of communication and encrypted data exchange are needed in the intersection process, the requirements of some application scenes cannot be met, and data of intersection operation is limited to one field, and other meaningful application data cannot be attached are solved.

The present disclosure provides in various aspects an encryption device (100), a communication system and a method of exchanging encrypted data in such a network. In accordance with some illustrativeembodiments of an aspect, the encryption device (100) comprises a communication interface (110), a variable key generator (120) configured to generate at least two keys, a memory (130) configured to store keys that are either generated by the variable key generator (120) and/or received at the communication interface (110), and an encryption/decryption component (140) configured to successively use keys stored in the memory (130) for encrypting a plaintext received at the communication interface (110) and for decrypting a ciphertext received at the communication interface (110), wherein the communication interface (110) is configured to communicate with an associated separate communication device which is used by a user of the encryption device (100) for communicating in a communication network.

The invention discloses an access authentication method of an IMS network. The method comprises: encrypting a user identity, performing dual encryption on a user ID through an exchange encryption function according to a random key generated by UE and a random key generated by a P-CSCF in a network, and decrypting the P-CSCF after entering the network, thereby avoiding leakage of a real identity ofthe user; performing identity authentication between the UE and the network through identity authentication tokens generated by the UE and the network respectively, so that parameters carried in information during identity authentication are simplified; and establishing IPSec association between the UE and the P-CSCF, and adopting a session key in a bidirectional identity authentication process to generate a negotiation key, so that the confidentiality and integrity of data transmitted between the UE and the P-CSCF are ensured.