| 发明名称 | Method and system for generating ciphertext and message authentication codes utilizing shared hardware | ||
| 摘要 | A method and system for generating ciphertext and message authentication codes utilizing shared hardware are disclosed. According to one embodiment, a method is provided of generating ciphertext message data and message authentication codes utilizing shared authenticated encryption unit hardware. In the described embodiment, plaintext message data is received at an authenticated encryption unit which comprises first and second authenticated encryption hardware modules. Thereafter, a first message authentication code (MAC) associated with a first authenticated encryption mode and a second MAC associated with a second authenticated encryption mode are generated. More specifically, the first MAC is generated utilizing the plaintext message data and first authenticated encryption hardware module and ciphertext message data and the second MAC are generated utilizing the plaintext message data and second authenticated encryption hardware module. | ||
| 申请公布号 | US8996871(B2) | 申请公布日期 | 2015.03.31 |
| 申请号 | US201213423843 | 申请日期 | 2012.03.19 |
| 申请人 | International Business Machines Corporation | 发明人 | Sandberg Melanie J.;Schaffer Scott J. |
| 分类号 | H04L9/00;H04L9/06;H04L9/32 | 主分类号 | H04L9/00 |
| 代理机构 | Kunzler Law Group | 代理人 | Kunzler Law Group |
| 主权项 | 1. A method of generating ciphertext message data and message authentication codes utilizing shared authenticated encryption unit hardware, said method comprising: receiving plaintext message data at an authenticated encryption unit, wherein said authenticated encryption unit comprises a first authenticated encryption hardware module and a second authenticated encryption hardware module; generating a first message authentication code based on data generated by the second authenticated encryption module, the first message authentication code associated with a first authenticated encryption mode of operation utilizing said plaintext message data and said first authenticated encryption hardware module; and generating ciphertext message data and a second message authentication code based on data generated by the second authenticated encryption module, the second message authentication code associated with a second authenticated encryption mode of operation utilizing said plaintext message data and said second authenticated encryption hardware module, wherein generating said first message authentication code and generating said ciphertext and said second message authentication code are performed substantially simultaneously, the first message authentication code different from the second message authentication code. | ||
| 地址 | Armonk NY US | ||