BitLaw

Example 41: Cryptographic Communications

Background

Security of information is of increasing importance in computer technology. It is critical that data being sent from a sender to a recipient is unable to be intercepted and understood by an intermediate source. In addition, authentication of the source of the message must be ensured along with the verification of and security of the message content. Various cryptographic encoding and decoding methods are available to assist with these security and authentication needs. However, many of them require expensive encoding and decoding hardware as well as a secure way of sharing the private key used to encrypt and decrypt the message. There is a need to perform these same security and authentication functions efficiently over a public key system so that information can be shared easily between users who do not know each other and have not shared the key used to encrypt and decrypt the information.

To solve these problems, applicants have invented a method for establishing cryptographic communications using an algorithm to encrypt a plaintext into a ciphertext. The invention includes at least one encoding device and at least one decoding device, which are computer terminals, and a communication channel, where the encoding and decoding devices are coupled to the communication channel. The encoding device is responsive to a precoded message-to-be-transmitted M and an encoding key E to provide a ciphertext word C for transmission to a particular decoding device. The message-to-be-transmitted is precoded by converting it to a numerical representation which is broken into one or more blocks MA of equal length. This precoding may be done by any conventional means. The resulting message MA is a number representative of a message-to-be-transmitted, where 0 ≤ MA ≤ n-1, where n is a composite number of the form n=p*q, where p and q are prime numbers. The encoding key E is a pair of positive integers e and n, which are related to the particular decoding device. The encoding device distinctly encodes each of the n possible messages. The transformation provided by the encoding device is described by the relation CA=MAe (mod n) where e is a number relatively prime to (p-1)*(q-1). The encoding device transmits the ciphertext word signal CA to the decoding device over the communications channel. The decoding device is responsive to the received ciphertext word CA and a decoding key to transform the ciphertext to a received message word MA’.

The invention improves upon prior methods for establishing cryptographic communications because by using only the variables n and e (which are publicly known), a plaintext can be encrypted by anyone. The variables p and q are only known by the owner of the decryption key d and are used to generate the decryption key (private key d is not claimed below). Thus, the security of the cipher relies on the difficulty of factoring large integers by computers, and there is no known efficient algorithm to recover the plaintext given the ciphertext and the public information (n, e) (assuming that p and q are sufficiently large).

Claim:

A method for establishing cryptographic communications between a first computer terminal and a second computer terminal comprising:

• receiving a plaintext word signal at the first computer terminal;
• transforming the plaintext word signal to one or more message block word signals MA;
• encoding each of the message block word signals MA to produce a ciphertext word signal CA, whereby CA=MAe (mod n);

• where CA is a number representative of an encoded form of message word MA;
• where MA corresponds to a number representative of a message and 0 ≤ MA ≤ n-1;
• where n is a composite number of the form n=p*q; where p and q are prime numbers;
• where e is a number relatively prime to (p-1)*(q-1); and

transmitting the ciphertext word signal CA to the second computer terminal over a communication channel.