Showing papers on "Format-preserving encryption published in 2016"

Message-Recovery Attacks on Feistel-Based Format Preserving Encryption

Abstract: We give attacks on Feistel-based format-preserving encryption (FPE) schemes that succeed in message recovery (not merely distinguishing scheme outputs from random) when the message space is small. For $4$-bit messages, the attacks fully recover the target message using $2^{21}$ examples for the FF3 NIST standard and $2^{25}$ examples for the FF1 NIST standard. The examples include only three messages per tweak, which is what makes the attacks non-trivial even though the total number of examples exceeds the size of the domain. The attacks are rigorously analyzed in a new definitional framework of message-recovery security. The attacks are easily put out of reach by increasing the number of Feistel rounds in the standards.

Format preserving encryption

Abstract: Encrypting data without losing their format is important in computing systems, because many parties using confidential data rely on systems that require specific formatting for data. Information security depends on the systems and methods used to store and transmit data as well as the keys used to encrypt and decrypt those data. A policy broker is disclosed that maintains keys for clients in confidence, while providing cryptographically secure ciphertext as tokens that the clients may use in their systems as though they were the unencrypted data. Tokens are uniquely constructed for each client by the policy broker based on policies set by a receiving client detailing the formatting needs of their systems. Each client may communicate with other clients via the policy broker with the tokens and will send tokens unique to their system that the policy broker will translate into the tokens of the other party.

SPF: A New Family of Efficient Format-Preserving Encryption Algorithms

Abstract: Commonly used encryption methods treat the plaintext merely as a stream of bits, disregarding any specific format that the data might have. In many situations, it is desirable and essential to have the ciphertext follow the same format as the plaintext. Moreover, ciphertext length expansion is also not allowed in these situations. Encryption of credit card numbers and social security numbers are the two most common examples of this requirement. Format-Preserving Encryption (FPE) is a symmetric key cryptographic primitive that is used to achieve this functionality. Initiated by the work of Black and Rogaway (CT-RSA 2002), many academic solutions have been proposed in literature that have focused on designing efficient FPE schemes. However, almost all the existing FPE schemes are based on Feistel construction and have efficiency issues.

Advance security technique for format preserving encryption

Abstract: Cryptography is a technique used to transmit data in a secured way using encryption and decryption. Encryption is the process of converting information from its original form into an unintelligible form. In Cryptography many traditional algorithms introduced to provide security to sensitive data but encrypted data changes its length and format. There is a requirement to change existing database schema. There is no need to change database schema in Format Preserving Encryption. It is a way to encrypt data such that the cipher text has the same length and format as the plaintext. We have proposed new Format Preserving Method which provides Confidentiality and authentication tends to high security.

Format-preserving encryption for Excel

Abstract: In the age of Big data, it's taken more seriously for the publisher to protect the privacy information of released data. This paper focuses on the problem of Format-Preserving Encryption(FPE) of massive multi-type data and researches on the model and scheme of encryption and decryption. First of all, the model takes Excel as the unit of encryption and decryption and analyzes the file structure. Then, the model automatically identifies the types of data, verifies the legitimacy of data and filters the keywords which will not be encrypted and decrypted. At last, we invoke special algorithms to encrypt or decrypt the data. The experimental results show that the FPE scheme for Excel can perform correctly and efficiently with high data throughput.

Fast format-preserving encryption for variable length data

Abstract: Systems, apparatuses, and methods are provided for fast format-preserving encryption. An input string can be divided into blocks (potentially of varying length). An arrangement of cryptographic pipelines can perform operations on different blocks, each pipeline providing an output block. The cryptographic pipelines can interact such that the output blocks are dependent on each other, thereby providing strong encryption. The pipelines can operate efficiently on the block and operations can occur partly in parallel.

Progressive key rotation for format preserving encryption (FPE)

Abstract: Aspects of the disclosure provide a technological improvement to a cipher by improving data security of format-preserving encryption (FPE), by, inter alia, embedding specific key identifiers for rotating keys directly into ciphertext. Aspects of the disclosure relate to methods, computer-readable media, and apparatuses for improving data security in a format-preserving encryption (FPE) context by using specific methods of rotating and identifying the appropriate encryption key from among numerous rotating keys stored in a key data store. Specific to FPE, a plaintext of the data and its corresponding ciphertext of the data remain the same in length/size; yet the methods, computer-readable media, and/or apparatuses disclosed herein permit embedding of an identification of a specific key among the plurality of rotating keys for the particular ciphertext without compromising the technical requirements of FPE.

A Privacy-Preserving System based on Format-Preserving Encryption in Mobile Healthcare Environments

Abstract: Background/Objectives: The healthcare industry has been greatly grown based on the system such as EMR and HER. The objective is to prevent the privacy invasion in mobile EMR and HER healthcare environments. Methods: Token system is suggested to prevent the information used in healthcare mobile devices and it communicates with each mobile phone which operates as gateway as well as EHR and EMR. Findings: In this paper, healthcare device information token system is suggested based on the Format-Preserving Encryption (FPE) in the mobile healthcare environment for preventing personal information from being infringed while preserving availability in order to solve an aforementioned issue. Application/Improvements: Format-Preserving Encryption techniques have applications in Fintech, EMR, HER, bank, and credit card company

Format-preserving encryption method

Abstract: The present invention relates to a format-preserving encryption method based on linear transformation. The format-preserving encryption method according to an aspect of the present invention comprises the steps of: computing a natural number set having a number of elements less than a predetermined value based on the type and length of characters of plain text data; generating a plurality of character strings based on the type and length of characters of the plain text data; substituting each of the character strings with natural numbers of the natural number set based on a preset substitution rule; generating a configuration value set composed of a predetermined number of natural numbers of the natural number set; and encrypting the plain text data by performing primary and secondary operations by using a plurality of operation expressions composed of the configuration value set.

Format Preserving Encryption: A Survey

Abstract: Cryptography is a technique used to transmit data in a secured way using encryption and decryption. Encryption is the process of converting information from its original form (plain text) into an unintelligible form (cipher text).In Cryptography many traditional algorithms introduced to provide security to sensitive data but encrypted data changes its length and format. There is a requirement to change existing database schema. Format Preserving Encryption mechanism there is no need to change database schema. It is a way to encrypt data such that the cipher text has the same length and format as the plaintext. This paper describes various techniques of FPE, Its pros and cons and survey done on these techniques. Finally it concludes by comparison of all techniques.

Method and apparatus for encoding and decoding of korean language in format-preserving encryption

Abstract: The present invention relates to a method and an apparatus for encoding and decoding Korean text in format-preserving encryption which maintain a property of format-preserving encryption, encode an input character string including Korean text into a digit string, and decode a digit string into a character string including Korean text. According to the present invention, the method for encoding and decoding Korean text in format-preserving encryption comprises: a step of receiving an input character string; a step of encoding at least one two-byte or three-byte Korean character composing the input character string into two or three digits; and a step of encrypting an encoded result to output ciphertext.

DMSD-FPE: Data Masking System for Database Based on Format-Preserving Encryption

Abstract: The traditional data masking systems cannot provide reversible operations for database, and they will destroy the referential integrity of database. To solve the problems above, we provide a new data masking system based on format-preserving encryption (DMSD-FPE). This paper presents the model of it and highlights the appropriate masking algorithms for different databases. DMSD-FPE could guarantee that the format of cipher text is the same as plain text, and provides reversible operations for databases. Besides, the referential integrity is also kept. Furthermore, the experiments demonstrates that the system is efficient enough to adapt to practical uses.