The present invention relates to a method of transmitting a message comprising an integrity check and a header, between two processing units via a shared memory, comprising steps of: —generation (501), by a first processing unit, of a first pseudorandom binary string; —encryption (502) of the message to be transmitted by applying an involutive transformation dependent on the first pseudorandom binary string generated; —transmission and storage (503) of the encrypted message in the shared memory; —generation (504), by the second processing unit, of a second pseudorandom binary string; —decryption of the message stored by applying an involutive transformation dependent on the second pseudorandom binary string, and by decrypting the header (505) of said message, by verifying the decrypted header (505), and as a function of the result of the verification, by decrypting the complete message (506); —verification (507) of the integrity of the decrypted message on the basis of its integrity check.

The disclosure is generally directed to a method and apparatus for encrypting and decrypting data on an integrated circuit. In various implementations, the apparatus includes an on-chip high performance bus bridge that transparently encrypts and decrypts data between the embedded microprocessor(s) and off-chip system memory. In some implementations, the apparatus is optimized to the transactions generated by the processor's cache controller (e.g., optimized for cache line size) and optimized to the bus protocol being used. This provides code protection with minimal effect on system performance latency and throughput. The implementation of multiple cryptographic engines allows for encryption of a complete cache line while incurring only a single latency for the first cipher rounds to be completed.

The present disclosure provides a system for securing wireless data communication. The system includes a launcher and a projectile. The launcher has a random number generator, a launcher memory, a launcher encryption/decryption module, and a launcher transceiver. The projectile has a projectile memory, a projectile encryption/decryption module, and a projectile transceiver. Both the launcher encryption/decryption module and the projectile encryption/decryption module are configured to use the one-time pad to encrypt and to decrypt data. The system is configured to establish a temporary datalink at a point in time in which the projectile and the launcher are substantially collocated so that the one-time pad can be transmitted from random number generator located in the launcher to the projectile memory using the temporary datalink.

In some aspects, an apparatus for encoding data for delivery to or for decoding data retrieved from a storage medium comprises a memory device and at least one hardware processor. The memory device is configured to store at least one parameter associated with at least one cryptographic protocol, the at least one parameter comprising one or more of a first cryptographic scheme, a first cryptographic key operation, a first cryptographic key length, and first cipher directives. The hardware processor is configured to generate a first frame comprising a first field for one parameter selected from the first cryptographic scheme, the first cryptographic key operation, the first cryptographic key length, and the first cipher directives and excluding fields for non-selected parameters, wherein the first frame is associated with the data delivered to or retrieved from the storage medium.

In an embodiment, an electronic data security system improves the security and usability of encrypted electronic data using a symmetric key approach implemented by security engines embedded on operably coupled integrated circuits. Engines paired to integrated circuits in combinations of hardware and software engines implementing security tasks can also be utilized. A first security engine is configured to interface to a second security engine and, using the components of the respective security engines, securely exchange electronic data using symmetric key encryption. The key change instruction configures the second security engine private key for a subsequent transmission.

A secure communication method between an RFID transponder and an RFID reader. The method includes at least the following steps: the RFID reader sends a series of random numbers A1 to the RFID transponder; the RFID transponder sends a series of random numbers A2 to the RFID reader; the RFID reader sends a result R1 to the at least one RFID transponder; the RFID transponder compares the result R1 with a result R1′. If R1′ is equal to R1, then the RFID transponder switches from a locked communication mode to an unlocked communication mode, and sends a result R2′ to the at least one RFID reader.

Systems and methods include modifying a random number pool using one or more user-identified randomization processes to produce a modified RN pool with a user-specific modification that is unknown to or otherwise separated from a RN provider. Systems and methods also include sending and receiving encrypted messages that are encrypted and decrypted using the modified RN pool.

A method for encrypting digital data (A, E) by conversion, comprising the steps of accessing first digital data (D), wherein the first digital data (D) consist of at least one first unit, which has a data value and a data arrangement; accessing second digital data (A, E), wherein the second digital data (A, E) consist of at least one second unit which has a data value and a data arrangement; establishing a start condition, wherein the start condition has at least one start position based on the data arrangement of the first digital data; persistently retaining the data of the start condition; forming a first temporary data stream (B) from the first digital data (D) as a function of the start condition; and forming a cipher (C) by converting the second digital data (A, E), wherein the at least one second unit (a∈A) is converted using at least one predetermined function (⊕) as a function of at least one third unit (b∈B) selected from the first temporary data stream (a⊕b=c).

A processor-implemented mobile payment method includes: receiving a one-time pad (OTP) key generated based on a plurality of true random numbers; encrypting a payment token based on the OTP key; and performing a payment based on the encrypted payment token.

Techniques for secure public exposure of digital data include extracting first digital data comprising one or more batches, each batch comprising a plurality of no more than a number T of packets, each packet containing a plurality of a number n of bits. A random binary matrix CK consisting of T rows and n columns is generated. For a first batch, a first random n-bit temporary key is generated and positions of the nT elements of matrix CK are randomized to produce matrix CK(RP). For a packet in the first batch, a first packet vector key is generated based on non-overlapping pairs of bit positions for both the temporary key and for a first packet-corresponding row of matrix CK(RP). An encrypted packet is generated for the packet based on the packet and the first packet vector key. The encrypted packet is exposed publicly.