RU2114463C1 - Method for generation of n-bit control combination for n-bit binary information - Google Patents

Abstract

FIELD: information transmission, in particular, hash functions in systems for generation of control sums, digital signature. SUBSTANCE: method involves functional converting of N-bit information which is represented by sequence of electric pulses into n-bit combination by means of sequential encryption of m-bit combination using next s-bit piece of converted N-bit binary information as key and m-bit result of previous encryption as encrypted information. When N bits are exhausted, new n-bit control combination from m-bit result of last encryption is chosen. EFFECT: impossibility of information substitution with same control sum.

Description

 The invention relates to the transmission of information and can be used in communication and computing systems to generate a control combination of binary information (for example, messages), as well as for digital signing as a “hash” function for converting N-bit information (for example, messages) to n-bit convolution.

 A known method of forming an n-bit control combination, which consists in the functional conversion by some device or algorithm of N bit information into an n-bit combination, for example, by summing n-bit parts of N-bit information [1]. The amount received is a control combination. Information is stored or transmitted along with a checksum. When checking or receiving information, the checksum is formed again and compared with the stored or received. If the newly formed and existing or accepted checksums do not match, a conclusion is drawn about the distortion of information during storage or transmission.

 This method does not save from deliberate distortion of information, allowing you to replace the information with another with the same control combination. For example, in the case of summing n-bit parts of N-bit information, you can add a certain number to one n-bit part, and subtract the same number from another n-bit part. So the distorted information will have the same checksum as the original.

 The aim of the invention is to ensure the impossibility of substituting information for another with the same control combination.

 This goal is achieved by the fact that when generating an n-bit control combination of N-bit information (for example, a message converted into a discrete sequence of electrical pulses), a serial encryption by the device or an encryption algorithm of a certain m-bit number is selected as the functional transformation, using the next encryption as the key, the next s-bit part of the converted information, and as the encrypted number, the m-bit result of the previous encryption.

. А именно:

,
где
g_i,

- m-битные комбинации. Определенные n бит (например, младшие) результаты последнего преобразования g_N′ и есть n - битная контрольная комбинация W.N-bit information T is converted to an n-bit combination W using an encryption device that implements the encryption algorithm F, as follows (the encryption device converts the m-bit source combination, and into the m-bit encryption combination b using the s-bit key k: b = F _k (a). First T is divided into blocks by s-bits, where s is the length of the transformation key F, that is, T = U ₁ U ₂ ... U _N (if the block U _{N ′} contains less than s bits, then it is supplemented in some way (for example, with zeros) to s bits.) Then, for m ≥ n, the encryption device N'times sequentially encrypts some Roe m-bit number a (for example, 0) by using as keys s-bit units U _i, i =

. Namely:

,
Where
g _i

- m-bit combinations. Certain n bits (for example, the least significant) results of the last conversion g _{N ′} are the n - bit control combination W.

, а именно:

,
где

, - m-битные комбинации. Определенные n бит результатов последних преобразований g $\genfrac{}{}{0ex}{}{\text{1}}{\text{N′}}$ , g $\genfrac{}{}{0ex}{}{\text{2}}{\text{N′}}$ ,..., g $\genfrac{}{}{0ex}{}{\text{r}}{\text{N′}}$ и есть n-битная контрольная комбинация W.If m <n, then the encryption device N 'times sequentially encrypts some m-bit numbers a ₁ , ₂ , ..., and _r (for example, 0,1, ..., r-1) using s as keys -bit blocks U _i ,

, namely:

,
Where

, - m-bit combinations. Defined n bits of the results of recent transformations g $\genfrac{}{}{0ex}{}{\text{1}}{\text{N ′}}$ , g $\genfrac{}{}{0ex}{}{\text{2}}{\text{N ′}}$ , ..., g $\genfrac{}{}{0ex}{}{\text{r}}{\text{N ′}}$ and there is an n-bit control combination W.

As the encryption device, you can select "Albert" (patent 2007884). Then, for n = 64, in order to select other information T 'with the same control combination W, it will be necessary to sort out on average 10 ¹⁹ different T'.

известны. Для нахождения другой информации T' = T с той же контрольной комбинацией W необходимо для некоторого

подобрать или V≠U, при которой F_v(g_i)=F_U(g_i) или V при которой

. Следовательно, задача сводится к определению ключа в устройстве шифрования "Албер", что невозможно.Given T, all g _i ,

known. To find other information, T '= T with the same control combination W is necessary for some

choose either V ≠ U for which F _v (g _i ) = F _U (g _i ) or V for which

. Therefore, the task is reduced to determining the key in the Alber encryption device, which is impossible.

Claims (1)

 A method of generating an n-bit control combination of N-bit binary information, which consists in the functional conversion of N-bit information, presented as a sequence of electrical pulses, into an n-bit combination, characterized in that serial encryption of some m-bit is selected as the functional conversion combinations, using the next s-bit part of the converted N-bit information as the key during the next encryption, and the m-bit result of the pre-encrypted information yduschego encryption, and after using up all N bits selected n-bit control sequence of m-bit result of the last encryption.