Quantum Safe Cryptography and Advanced Encryption and Key Exchange (AEKE) Method for

Symmetric Key Encryption/Exchange

CROSS REFERENCE TO RELATED APPLICATIONS

[Para 1 ] This application claims the benefit of Provisional Application Serial Number 62/854,651 filed May 30, 2019 the entire contents of which is hereby expressly incorporated by reference herein.

TECHNICAL FIELD

[Para 2] This invention relates to improvements in data encryption. More particularly, the present quantum safe cryptography and advanced encryption and key exchange method for symmetric key encryption/exchange creates a secure data exchange uses simple linear algebra, rank deficient matrix and a bilinear equation, which will be easy to understand, fast, efficient and practical but almost impossible to crack.

BACKGROUND ART

[Para 3] Encryption is widely used in our daily lives even without the user being aware of it. Public key encryption is a great system but is relatively slow; therefore, it is typically used to encrypt the symmetric keys to disseminate them securely. However, it can be easily cracked on a sufficiently powerful quantum computer running Shor’s algorithm. Although quantum computers are not ready for common use yet, they are just around the comer. When that happens, current encryption system will be collapsed to chaos in our daily lives.

[Para 4] A number of patents and or publications have been made to address these issues. Exemplary examples of patents and or publication that try to address this /these problem(s) are identified and discussed below.

[Para 5] U.S. Patent Number 9,722,787 issued on August 1, 2017 to Garcia Morchon and is titled Key sharing device and system for configuration thereof. This patent discloses a method of configuring a network device for key sharing and a method for a first network device to determine a shared key are provided. The method of configuring uses a private modulus (p.sub.l) a public modulus (N), and a bivariate polynomial (f.sub.l) having integer coefficients, the binary representation of the public modulus and the binary representation of the private modulus are the same in at least key length (b) consecutive bits. While this patent discloses a key sharing system it does not use a rank deficient matrix.

[Para 6] U.S. Patent Number 8,447,036 issued on May 21 , 2013 to Namsu Jho and is titled Multi-Party Key Agreement Method Using Bilinear Map and System Therefor. This patent discloses an efficient method and system in which a plurality of participants share a secret key in a communication environment that is not ensured. According to an embodiment of the invention, each of the participants is assigned with a secret key from a key generation party, generates exchange information, and transmits its own exchange information to the other participant to exchange the exchange information with each other. Each of the participants generates a shared key on the basis of the exchange information and its own secret key. While this patent uses keys and bilinear maps, uses a secret key assigned from a key generation party as opposed to user generated secret keys and rank deficient matrix. [Para 7] U.S. Patent Number 10,454,681 issued on October 22, 2019 to Atsushi Yamada and is titled Multi-use Key Encapsulation Process. This patent discloses a random seed value may be used in a key encapsulation process for multiple recipients. An error vector derivation function is applied to a combination of the random seed value and an additional value, including an identifier of a recipient, to produce an error vector. A plaintext value for the recipient is obtained based on the random seed value. The error vector and the plaintext value are used in an encryption function to produce a ciphertext for the recipient. A pseudorandom function is applied to the random seed value to produce a pseudorandom function output that includes a symmetric key, and the symmetric key is used to generate an encrypted message for the recipient based on an unencrypted message. While this patent discloses a key encapsulation process, it does not use a bilinear equation.

[Para 8] What is needed is a way to improve on public key encryption schemes in use today to provide secure encryption that is virtually impossible to crack even on quantum computers. The quantum safe cryptography and advanced encryption and key exchange method for symmetric key encryption/exchange disclosed in this document provides the solution.

DISCLOSURE OF THE INVENTION

[Para 9] It is an object of the quantum safe cryptography and advanced encryption and key exchange method for symmetric key encryption/exchange to include a novel quantum safe cryptography and advanced encryption and key exchange (AEKE) method for symmetric key encryption/exchange .

[Para 10] It is an object of the quantum safe cryptography and advanced encryption and key exchange method for symmetric key encryption/exchange to use quantum safe cryptography and AEKE method does not use easily solvable hard mathematical problems on a quantum computer with Shor’s algorithm.

[Para 1 1 ] It is another object of the quantum safe cryptography and advanced encryption and key exchange method for symmetric key encryption/exchange to use quantum safe

cryptography and AEKE method uses simple linear algebra and a bilinear equation, which will be easy to understand, fast, efficient and practical but almost impossible to crack.

[Para 12] It is another object of the quantum safe cryptography and advanced encryption and key exchange method to use a novel rank deficient matrix for key exchange method.

[Para 13] It is another object of the quantum safe cryptography and advanced encryption and key exchange method for symmetric key encryption/exchange to establish a new novel encryption algorithm using linear algebra and bilinear equation framework. The underlying idea of using a bilinear equation is that it is almost impossible to find two unknown variables from one known value. This algorithm will resist the quantum computer attacks and make new encryption system safe.

[Para 14] It is still another object of the quantum safe cryptography and advanced encryption and key exchange method for symmetric key encryption/exchange for the private key exchange to rely on hard mathematical problems, which can be easily solved on quantum computers. In contrast, the quantum safe cryptography and AEKE method will use rank deficient matrix and bilinear equation framework but is almost impossible to solve. Various objects, features, aspects, and advantages of the present invention will become more apparent from the following detailed description of preferred embodiments of the invention, along with the accompanying drawings in which like numerals represent like components.

BRIEF DESCRIPTION OF THE DRAWING(S)

[Para 1 5] FIG. 1 shows a shared symmetric key generation and exchange method.

[Para 16] FIG. 2 shows an encryption and decryption method using a shared symmetric key.

BEST MODE FOR CARRYING OUT THE INVENTION

[Para 17] It will be readily understood that the components of the present invention, as generally described and illustrated in the drawings herein, could be arranged and designed in a wide variety of different configurations. Thus, the following more detailed description of the embodiments of the system and method of the present invention, as represented in the drawings, is not intended to limit the scope of the invention but is merely representative of various embodiments of the invention. The illustrated embodiments of the invention will be best understood by reference to the drawings, wherein like parts are designated by like numerals throughout.

[Para 18] Item Numbers and Description

[Para 19] 20 sender 21 recipient

[Para 20] 30 sender private key 31 encrypted sender private key

[Para 21 ] 32 public key 33 recipient private key

[Para 22] 34 encrypted recipient private key 40 send to a ^t B

[Para 23] 41 Send to Bc 50 encrypted sender private key [Para 24] 51 recipient private key 52 shared secret key

[Para 25] 53 encrypted recipient private key 54 sender private key

[Para 26] 61 message 62 encryption

[Para 27] 63 decryption 64 message

[Para 28] 65 send to

[Para 29] The quantum safe cryptography and AEKE method for symmetric key

encryption/exchange of the present disclosure may be comprised of the following elements.

This list of possible constituent elements is intended to be exemplary only and it is not intended that this list be used to limit the quantum safe cryptography and AEKE method of the present application to just these elements.

[Para 30] FIG. 1 shows a shared symmetric key generation and exchange method.

[Para 31 ] SHARED PRIVATE KEY EXCHANGE

[Para 32] 1. Shared key generation and distribution uses an equation of where k is 1 x 1 vector of shared private key for sender and recipient, a ^t is a transpose of n x 1 vector a of sender private key, B is n x n matrix of public key, and c is n x 1 vector of recipient private key.

[Para 33] 2. From figure 1, both sender and recipient of the message generate their own private keys, as a sender private key 30 a and a recipient private key 33 c. The sender private key 30 a and the recipient private key 33 c are created with secure random number generator(s) or any other method that is unpredictable.

[Para 34] 3. The sender generates a public key 32 B with secure random number generator or any other method that is unpredictable and makes the public key 32 B rank deficient matrix (by making the public key 32 B linearly dependent.)

[Para 35] 4. The sender transmits the public key B to the recipient. [Para 36] 5. Both the sender and recipient encrypt the sender private key 30 a and the recipient private key 33 c with the same public key 32 B for sender and 34 e _r = Be for recipient).

[Para 37] 6. The sender 20 sends encrypted sender private key 31 to the recipient 21 (40) and the recipient 21 sends encrypted recipient private key 34 e _r to the sender 20 (41).

[Para 38] 7. Sender generates the shared private key 52 k with encrypted recipient private key 53 e _r and sender private key 54 a by and converts it into p x n matrix K by splitting the key into each cell of matrix K.

[Para 39] 8. Recipient generates the same-shared private key 52 k with encrypted sender private key 50 and recipient private key 51 c by and converts it into p x n matrix K by splitting the key into each cell of matrix K.

[Para 40] 9. If only one user encrypts and decrypts the information, the user generates the private key 52 K with a, B, c, and secure random number generator or any other method that is unpredictable.

[Para 41 ] THE ABOVE STEPS 1-8 IS HOW TO GENERATE THE SHARED KEY AND EXCHANGE THE SHARED KEY BETWEEN SENDER AND RECIPIENT— THIS IS THE NOVEL KEY EXCHANGE FEATURE.

[Para 42] FIG. 2 shows an encryption and decryption method using a shared symmetric key.

[Para 43] ENCRYPTION AND DECRYPTION OF THE MESSAGE

[Para 44] 10. AEKE symmetric key encryption uses E = MK + D as the encryption algorithm, which is a bilinear equation, where E is m x n cipher text, M is m x p message, K is p x n private key, and D = m x n error matrix. (THIS IS THE ENCRYPTION FEATURE).

[Para 45] 11. The sender converts the message into numbers and splits it into each cell of the message matrix 61 M using ASCII character code or equivalent table. [Para 46] 12. The sender generates m x n error matrix D with a secure random number generator or any other method that is unpredictable using the shared private key k as a seed.

[Para 47] 13. The sender generates the cipher text E with message 61 M, error matrix D and shared secret key 52 K using E = MK + D. If more security is needed, the encryption can use different key for each cell of K.

[Para 48] 14. The sender 20 can add characters to make uniform distribution of the cipher text E and shuffle it if more security is needed for the cipher text E.

[Para 49] 15. The sender 20 sends the cipher text E to the recipient 21.

[Para 50] 16. The recipient 21 unshuffle and subtract added characters from the cipher text

E if adding characters and shuffling are used.

[Para 51 ] 17. In the decryption, the recipient 21 generates m x n error matrix D with a secure random number generator or any other method that is unpredictable using the shared private key k as a seed and decrypts 63 the cipher text E to recover the numbers in the message 64 M using error matrix D and the shared private key 52 K from

[Para 52] 18. The recipient converts the recovered number in message M into the readable message 64.

[Para 53] The various elements of the quantum safe cryptography and AEKE method for symmetric key encryption/exchange of the present disclosure may be related in the following exemplary fashion. It is not intended to limit the scope or nature of the relationships between the various elements and the following examples are presented as illustrative examples only. Steps 2 and 3 are the private and public key generation steps needed to generate the shared key in steps 7 and 8. In step 5, private keys for the sender and the recipient generated from step 2 are encrypted with a public key generated from step 3. Then the shared same private key for the sender and the recipient is generated in steps 7 and 8. If a single user uses AEKE system, shared key generation is not needed; therefore, the user would skip steps 4 through 8 and step 15.

Instead, the single user could just generate a private key in step 9 with a, B and c. Message is encrypted into a cipher text in steps 11 through 14. Then the cipher text is decrypted and converted into the original message in stepsl6 through 18.

[Para 54] The quantum safe cryptography and AEKE method of the present disclosure generally works by following the above-listed steps. In this way, a sending user (the sender) can encrypt a message to a cipher text using a shared private key. Then the recipient can decrypt the cipher text to a readable plain text using the same-shared private key. Shared symmetric key generation and its key exchange method can be applied to the secure one-time pad generation.

[Para 55] To make the quantum safe cryptography and AEKE method of the present disclosure, one may implement the steps of the method into a practical application, such as a program that implements the above-listed steps so that users can easily use the quantum safe cryptography and AEKE scheme to successfully provide secure messaging. Also, it is possible to make the quantum safe cryptography and AEKE method more secure by extending the length of both the sender and the recipient private keys in each cell of a vector, or just be using a matrix instead of a vector, or both extending the length of the keys and using a matrix. This will increase the complexity of the shared private key. The encryption can also use different key for each cell of K to increase the security. In addition, using real numbers instead of integers in all cells of a vector and a matrix will increase the security of the encryption system. To further increase the security of the encryption, characters can be added to the cipher text to make it uniform distribution and shuffle the cipher text using private key k as a seed as well.

[Para 56] To use the quantum safe cryptography and AEKE method of the present disclosure, a user would typically follow the steps listed above in the order shown. By following the above-listed steps, in the order listed, the secret key can be securely shared between the sender and the recipient. Then the recipient can securely decrypt the cipher text sent by the sender without using the public encryption of the secret key. However, the order of the steps for using the quantum safe cryptography and AEKE method is not a required order. In other embodiments of the quantum safe cryptography and AEKE method the order of the steps can vary from the order shown above. For instance, in some embodiments, step 3 can occur before step 2 and the quantum safe cryptography and AEKE method will provide identical results. In addition, steps 7 and 8 can be shuffled.

[Para 57] For a better understanding of the shared key exchange and symmetric key encryption method, this document provides an example using a message“Hello World!” illustrated in step-by-step for the case of m = n = p = 3 and the message“Hello World!”

[Para 58] 1. Shared symmetric key generation

[Para 59] Step 1. Sender generates its own sender private key 30 with a secure random number generator or any other method that is unpredictable. In this example the sender private key is identified as a ¹ = [227 148 339] and linearly dependent rank deficient public key 32 B.

[Para 60] There are many ways to create a rank deficient matrix. In this illustration, public key B is made a rank one matrix, i.e. the second and third columns and rows are multiples of the first column and row, respectively.

[Para 61 ]

[Para 62] Then sender encrypts its own sender private key 30 a with the public key 32 B.

[Para 63]

[Para 64] Step 2. The sender 20 transmits both encrypted private key e _s and the public key 32 B to the recipient 21.

[Para 65] Step 3. The recipient generates its own recipient private key 33 c with a secure random number generator or any other method that is unpredictable. In this example the recipient private key is c ^l = [389 268 428] and the recipient encrypts its own private key 34 with the public key 32 B.

[Para 66]

[Para 67] Then recipient 21 sends e _r the sender 20. [Para 68] Step 4. Sender generates the shared private key 52 k with the own sender private key 54 a and the encrypted recipient private key 53 e _r .

[Para 69]

[Para 70] Step 5. The recipient 21 generates the same-shared secret key 52 k with recipient private key 51 c and the encrypted sender private key 50 e _s .

[Para 71 ]

[Para 72] 2. Encryption and Decryption

[Para 73] Step 6. Both sender and recipient convert lxl vector k into 3x3 matrix K by splitting the key into each cell of 3x3 matrix.

[Para 75] Step 7. Sender transforms the message“Hello World!” into numbers with a two- digit number for each character according to preassigned numbers. In this example the letters are converted using an ASCII conversion where each letter is converted to a numerical value.

[Para 76] In this illustration, preassigned numbers for each character are H = 44, e = 15, 1 = 22, o = 25, blank = 95, W = 59, r = 28, d=14, and ! = 63. Each number is serially appended together. This transforms the message into m = 441522222595592528221463. Then m is split into each cell of 3x3 matrix M.

[Para 77]

[Para 78] Step 8. Sender generates 3x3 error matrix D with a secure random number generator or any other method that is unpredictable using the shared private key 52 k (3401860) as a seed.

[Para 79]

[Para 80] Step 9. The sender generates the cipher text E with D and the shared private key K generated in step 6. Then transmits E to the recipient.

[Para 81 ]

[Para 82]

[Para 83]

[Para 84] Step 10. Recipient generates 3x3 error matrix D with a secure random number generator or any other method that is unpredictable, using the shared private key 52 k as a seed.

[Para 85]

[Para 86] Then subtract D from E and recover the message M.

[Para 87]

[Para 88]

[Para 89]

[Para 90]

[Para 91 ] Numbers in each cell of 3x3 matrix M are put together to form, m =

441522222595592528221463. Then recipient converts m into characters by reversing two-digit numbers in m using the preassigned numbers and recovers the original message,“Hello

World!”

[Para 92] Google defines“The rank of a matrix is defined as (a) the maximum number of linearly independent column vectors in the matrix or (b) the maximum number of linearly independent row vectors in the matrix. Both definitions are equivalent. For an r x c matrix, if r is less than c, then the maximum rank of the matrix is r.” A matrix is said to have full rank if its rank is either equal to its number of columns or to its number of rows (or to both). A matrix that does not have full rank is said to be rank deficient.

[Para 93] Thus, specific embodiments of a quantum safe cryptography and advanced encryption and key exchange method for symmetric key encryption/exchange have been disclosed. The above-described embodiments of the invention are presented for purposes of illustration and not of limitation. While these embodiments of the invention have been described with reference to numerous specific details, one of ordinary skill in the art will recognize that the invention can be embodied in other specific forms without departing from the spirit of the invention. It should be apparent, however, to those skilled in the art that many more modifications besides those described are possible without departing from the inventive concepts herein. The inventive subject matter, therefore, is not to be restricted except in the spirit of the appended claims.

INDUSTRIAL APPLICABILITY

[Para 94] The industrial applicability relates to secure communication using encryption.