Description

METHOD AND APPARATUS FOR ENCRYPTING DATA

Technical Field

[1] Methods and apparatuses consistent with the present invention relate to encrypting data, and more particularly, to encrypting data that is composed of a plurality of data units. Background Art

[2] Bits included in data may have different significances. When a predetermined bit of the data has an error, the entire data may be significantly distorted or may be slightly distorted. For this reason, it is necessary to separately manage bits that may significantly distort the entire data.

[3] FIG. 1 illustrates data having bits of different significances.

[4] The data of FIG. 1 is video data that expresses each pixel with red (R), green (G), and blue (B) data. It is assumed that each of the R, G, and B data is expressed with an 8-bit data unit and data of each pixel is expressed with a total of 24 bits. The R, G, and B data are values indicating the additive color degrees of red, green, and blue in the presentation of colors of a pixel.

[5] In FIG. 1, R data 110 of a first pixel 100 is expressed with a data unit of 8 bits 111 through 118. Since an 8-bit binary can express a decimal ranging from 0 to 255, the R data 110 can express the additive color degree of red with a total of 256 levels.

[6] When video data is transmitted and received between devices through a wired/ wireless network, an error may occur so that binary values of bits are exchanged improperly during transmission.

[7] If an error occurs in the most significant bit 111, the R data 110 has a value of

OOlOlOlO'. The original value '10101010' corresponds to a decimal of '170', but the value '00101010' resulting from the error corresponds to a decimal of '42'. As a result, a difference of '128' is generated in the additive color degree of red.

[8] If an error occurs in the least significant bit 118, the R data 110 has a value of

'1010101 T. The original value '10101010' corresponds to a decimal of '170', but the value '10101011' resulting from the error corresponds to a decimal of '171'. As a result, a difference of T is generated in the additive color degree of red.

[9] Therefore, during transmission of the video data illustrated in FIG. 1, a user who watches the corresponding video can easily recognize an error if the error occurs in the most significant bit 111 of each of the R, G, and B data, but the user cannot easily recognize an error if the error occurs in the least significant bit 118. As such, within the R data 110 of the first pixel 100, the significance of the error differs from bit to bit.

[10] Although the R data 110 of the first pixel 100 is taken as an example, bits likewise

have different significances within the R, G, and B data of the other pixels, as well as within G data 120, and B data 130 of the first pixel 100.

[11] In general, the reliability of data transmission and the efficiency of data transmission have a trade-off relationship. A representative example showing such a trade-off relationship is error-correction coding, in which a redundancy is added in order to detect and correct an error that occurs during data transmission. Although the probability of successful error correction is improved by increasing a redundancy in order to guarantee the reliability of data transmission, the efficiency of data transmission is degraded due to an increase in the size of the entire data that is to be transmitted.

[12] Therefore, there is a need for a method capable of separately managing a bit that can be easily recognized by a user, like when an error occurs in a bit, such as the most significant bit 111, and a bit that cannot be easily recognized by the user, like when an error occurs in the least significant bit, thereby improving the efficiency of data transmission and minimizing errors that are most recognizable by the user. Disclosure of Invention Technical Solution

[13] Exemplary embodiments of the present invention provide a method and apparatus for encrypting data, in which a data error that can be recognized by a user is minimized and data can be transmitted efficiently, and a computer-readable recording medium having recorded thereon a program for implementing the method. Advantageous Effects

[14] As described above, according to the exemplary embodiments of the present invention, for data composed of a plurality of data units, high significant bits are separately encrypted and error-correction coded, thereby minimizing an error that can be recognized by the user and improving the efficiency of data transmission.

[15] While the present invention has been particularly shown and described with reference to exemplary embodiments thereof, it will be understood by those of ordinary skill in the art that various changes in form and detail may be made therein without departing from the spirit and scope of the present invention as defined by the following claims. Description of Drawings

[16] The above and other aspects of the present invention will become more apparent by describing in detail exemplary embodiments thereof with reference to the attached drawings in which:

[17] FIG. 1 illustrates data having bits of different significances;

[18] FIG. 2 is a view for explaining a method of assigning data that is composed of a plurality of data units, according to an exemplary embodiment of the present invention, to a plurality of data blocks;

[19] FIG. 3 is a flowchart illustrating a method of encrypting data according to an exemplary embodiment of the present invention;

[20] FIG. 4 illustrates a case where a data block is not an integral multiple of an encryption basic unit;

[21] FIG. 5 illustrates a case where data blocks padded according to an exemplary embodiment of the present invention are encrypted using a CBC advanced encryption standard (AES); and

[22] FIG. 6 is a block diagram of an apparatus for encrypting data according to an exemplary embodiment of the present invention. Best Mode

[23] According to one aspect of the present invention, there is provided a method of encrypting data that is composed of a plurality of data units. The method includes assigning bits included in each data unit to a plurality of data blocks based on positions of the bits in the data unit and encrypting the data blocks using a predetermined encryption method.

[24] The method may further include performing error-correction coding on the encrypted data blocks using different coding rates.

[25] The data may be RGB video data.

[26] The encryption of the data blocks may be performed on each data block using a cipher block chaining (CBC) mode AES.

[27] According to another aspect of the present invention, there is provided an apparatus for encrypting data that is composed of a plurality of data units. The apparatus includes an assignment unit that assigns bits included in each data unit to a plurality of data blocks based on positions of the bits in the data unit and an encryption unit that encrypts the data blocks using a predetermined encryption method.

[28] The apparatus may further include a coding unit that performs error-correction coding on the encrypted data blocks using different coding rates.

[29] The encryption unit may further include a determination unit that determines whether the data blocks are integral multiples of an encryption basic unit, a padding unit that selectively pads the data blocks to form integral multiples of the encryption basic unit based on the determination result, and a padding data encryption unit that encrypts the padded data blocks using the predetermined encryption method.

[30] The padding data encryption unit may perform encryption on each padded data block using a CBC mode AES.

[31] According to another aspect of the present invention, there is provided a computer- readable recording medium having recorded thereon a program for implementing the method of encrypting data that is composed of a plurality of data units.

Mode for Invention

[32] Hereinafter, exemplary embodiments of the present invention will be described in detail with reference to the accompanying drawings.

[33] FIG. 2 is a view for explaining a method of assigning data that is composed of a plurality of data units, according to an exemplary embodiment of the present invention, to a plurality of data blocks. By using the method, bits included in each data unit are assigned to different data blocks according to their significances. If a high significant bit has an error, a user can easily recognize the error. If a low significant bit has an error, the user cannot easily recognize the error.

[34] Referring to FIG. 2, data assigned to a plurality of data blocks is composed of a plurality of data units of predetermined size. In FIG. 2, like in FIG. 1, RGB video data is illustrated, in which n pixels are expressed with R, G, and B data. Each R data, G data, and B data 211-213, 221-223, or 231-233 for each pixel is a data unit. Generally, each R data, G data, and B data is expressed with 8-bit data and, thus, a data unit is composed of 8 bits. In FIG. 2, each box within a data unit indicates 1-bit data.

[35] As described with reference to FIG. 1, an error of a most significant bit (MSB) in each data unit can be more easily recognized by the user than a least significant bit (LSB). This means that the position of a bit in a data unit determines the significance of the bit. Thus, bits in a data unit are assigned to a plurality of data blocks based on their positions in the data unit.

[36] Most significant bits of the R data 211, 221, and 231 from among data units are assigned to a first data block 270. Next, most significant bits of the G data 212, 222, and 232 are assigned to the first data block 270. Finally, most significant bits of the B data 213, 223, and 233 are assigned to the first data block 270. The most significant bits of the RGB data all are assigned to the single data block 270 and the first data block 270 may be encrypted or error-correction coded separately as described below.

[37] Once the most significant bits of the data units are assigned to the first data block

270, the next significant bits of the data units are assigned to a second data block 280. These operations are repeated until all the bits of the data units are assigned to data blocks. Thus, if a data unit is composed of 8 bits, bits are assigned to 8 data blocks.

[38] In FIG. 2, after the R data 211, 221, and 231 of the video data is assigned to the first data block 270, the G data and then the B data are sequentially assigned to the first data block 270. However, various assignment methods may be used as long as the most significant bits included in data units are assigned to the single data block 270. For example, data may be assigned so that the most significant bit of the R data 211, the most significant bit of the G data 212, and the most significant bit of the B data 213 can be included in the first data block 270 by turns.

[39] In FIG. 2, one bit of each data unit is assigned to the single data block 270. However,

the number of bits of each data unit, which are assigned to a single data block, is not necessarily one and at least two consecutive bits of each data unit may be assigned to the single data block 270. For example, the most significant bits and the next significant bits of the R data 211, 221, and 231 may be assigned to the first data block 270, and the most significant bits and the next significant bits of the G data 212, 222, and 232 and the B data 213, 223, and 233 may also be assigned to the first data block 270. In this case, if a data unit is composed of eight bits, two consecutive bits of each data unit are assigned to four different data blocks.

[40] FIG. 3 is a flowchart illustrating a method of encrypting data according to an exemplary embodiment of the present invention.

[41] In operation 300, an apparatus for encrypting data according to an exemplary embodiment of the present invention assigns bits included in each data unit to a plurality of data blocks according to the positions of the bits in the data unit. As described with reference to FIG. 2, the bits have different significances according to their positions in the data units. Thus, the bits included in the data unit are assigned to a plurality of data blocks according to their positions in the data unit in order to separately manage the bits according to their significances.

[42] In operation 302, the apparatus for encrypting data according to the present exemplary embodiment determines whether the data blocks to which data is assigned in operation 300 are integral multiples of an encryption basic unit.

[43] A widely used encryption method called advanced encryption standard (AES) performs encryption based on an encryption basic unit, such as 128 bits, 196 bits, or 256 bits. In this case, if data blocks are not integral multiples of the encryption basic unit, problems that will be described later occur. Therefore, it is first determined whether the data blocks are integral multiples of the encryption basic unit.

[44] FIG. 4 illustrates a case where a data block is not an integral multiple of the encryption basic unit.

[45] In FIG. 4, all predetermined bits of data that are rearranged with a plurality of data blocks in operation 300 are sequentially encrypted. If the first data block 270 is not an integral multiple of each encryption basic unit 41 through 46, encryption is performed on the first data block 270 and a second data block 280 at the end 45 of the first data block 270. In other words, bits of the first data block 270 and bits of the second data block 280 are encrypted together.

[46] When the AES is used, bits of the first data block 270 and bits of the second data block 280 are encrypted as a single bit sequence. For this reason, the bits of the first data block 270 and the bits of the second data block 280 cannot be distinguished from each other in the encrypted bit sequence. As a result, data cannot be separately managed according to significances.

[47] Referring back to FIG. 3, in operation 303, the apparatus for encrypting data according to the present exemplary embodiment uses padding in data blocks to form integral multiples of the encryption basic unit. Since the problem described above occurs if the data blocks are not integral multiples of the encryption basic unit, the data blocks are padded by '0' or T so as to make the data blocks integral multiples of the encryption basic unit.

[48] In operation 304, the apparatus for encrypting data according to the present exemplary embodiment encrypts the data blocks using a predetermined encryption method. In other words, the apparatus for encrypting data according to the present exemplary embodiment encrypts a data block that is determined to be an integral multiple of the encryption basic unit in operation 302 or a data block that is padded so as to form an integral multiple of the encryption basic unit in operation 303.

[49] If the data blocks are encrypted separately, separate encryption engines (e.g., an AES engine) may be used or, after a data block is encrypted, the next data block may be encrypted. In other words, encryption is performed so that an encryption result of an encryption unit composed of at least one data block is not mixed with an encryption result of another encryption unit. In particular, encryption using a cipher blocking chaining (CBC) mode AES will be taken as an example.

[50] FIG. 5 illustrates a case where data blocks that are padded according to an embodiment of the present invention are encrypted using a CBC mode AES.

[51] Referring to FIG. 5, each of the first data block 270 and the second data block 280 is padded to form n multiples of a predetermined encryption basic unit and is encrypted using the CBS mode AES.

[52] A first encryption basic unit P of the first data block 270 undergoes an exclusive OR

(XOR) operation with an initial vector (IV) and then is encrypted by an AES engine. A second encryption basic unit P of the first data block 270 undergoes an encryption result C of the first encryption basic unit P and then is encrypted by the AES engine. As a result, an encryption result of a previous encryption basic unit has an influence upon the next encryption basic unit. Therefore, an encryption result C of the last n encryption basic unit P of the first data block 270 has an influence upon encryption of n a first encryption basic unit P of the second data block 280. As a result, the other n+l encryption basic units P through P of the second data block 280 are affected in series.

[53] In an exemplary embodiment of the present invention, data is assigned to a plurality of data blocks, thereby separately managing bits of the data according to the significances of the bits. Even when the first data block 270 has an error, the second data block 280 should not be affected by the error. Therefore, the second data block 280 should not use encryption results of the first data block 270. To this end, data blocks

may be encrypted using separate encryption engines or the IV may undergo the XOR operation with P instead of C in order to resume encryption.

[54] In operation 306, the apparatus for encrypting data according to the present exemplary embodiment performs error-correction encoding on the encrypted data blocks using different coding rates. Although the probability of successful error correction is improved by increasing a redundancy in order to guarantee the reliability of data transmission, the efficiency of data transmission is degraded due to an increase in the size of the entire data to be transmitted. The coding rate decreases as the redundancy increases and the coding rate increases as the redundancy decreases.

[55] A large redundancy is applied to a data block that is assigned high significant bits in order to increase the probability of successful error correction and a small redundancy is applied to a data block that is assigned low significant bits in order to increase the efficiency of data transmission. By performing error-correction coding using different coding rates according to the significances of the bits, an error that can be recognized by the user can be minimized and the efficiency of data transmission can be improved.

[56] In addition, by repeating transmission of a data block that is assigned high significant bits a predetermined number of times, the same effect as when different error- correction coding rates are used according to significances can be obtained.

[57] In the above description, RGB video data is assigned to a plurality of data blocks according to significances, i.e., positions of bits in data units, and the data blocks are separately encrypted. However, it can be easily understood by those of ordinary skill in the art that the scope of the present invention is not limited to RGB data and embodiments of the present invention can also be applied to any data having bits of different significances.

[58] FIG. 6 is a block diagram of an apparatus for encrypting data according to an exemplary embodiment of the present invention.

[59] Referring to FIG. 6, the apparatus includes an assignment unit 610, an encryption unit 620, and a coding unit 630. The encryption unit 620 may include a determination unit 621, a padding unit 622, and a padding data encryption unit 623.

[60] The assignment unit 610 assigns bits included in each data unit to a plurality of data blocks according to positions of the bits in the data unit. In data composed of a plurality of data units like RGB video data, bits have different significances according to positions of the bits in the data units. Thus, the assignment unit 610 assigns the bits in the data units to the plurality of data blocks according to the positions of the bits so as to separately manage the bits in the data units according to significances of the bits.

[61] The encryption unit 620 encrypts the data assigned by the assignment unit 610 to the plurality of data blocks using a predetermined encryption method. As described above, the AES may be used as the predetermined encryption method.

[62] As mentioned above, the encryption unit 620 may include the determination unit 621, the padding unit 622, and the padding data encryption unit 623.

[63] The determination unit 621 determines whether the data blocks assigned data by the assignment unit 610 are integral multiples of an encryption basic unit. The AES performs encryption based on an encryption basic unit, such as 128 bits, 196 bits, and 256 bits. In this case, if data blocks are not integral multiples of the encryption basic unit, bits around a boundary between consecutive data blocks may be encrypted as a bit sequence. In order to prevent this problem, the determination unit 621 first determines whether the data blocks are integral multiples of the encryption basic unit.

[64] The padding unit 622 uses padding in the data blocks to form integral multiples of the encryption basic unit. Since the problem described above occurs if the data blocks are not integral multiples of the encryption basic unit, the padding unit 622 pads the data blocks with '0' or T to make the data blocks integral multiples of the encryption basic unit.

[65] The padding data encryption unit 623 encrypts the data blocks using a predetermined encryption method. The padding data encryption unit 623 performs encryption on a data block that is determined by the determination unit 621 to be an integral multiple of the encryption basic unit without using separate padding. However, for a data block that is determined by the determination unit 621 not to be an integral multiple of the encryption basic unit, the padding data encryption unit 623 performs encryption on the data block after the data block is padded to form an integral multiple of the encryption basic unit by the padding unit 622.

[66] The coding unit 630 performs error-correction coding on data that is encrypted by the encryption unit 620. The data blocks are error-correction coded according to different coding rates.

[67] A large redundancy is applied to a data block assigned high significant bits in order to improve the probability of successful error correction and a small redundancy is applied to a data block assigned low significant bits in order to improve the efficiency of data transmission.

[68] Exemplary embodiments of the present invention can also be embodied as a computer-readable code on a computer-readable recording medium. The computer- readable recording medium is any data storage device that can store data which can be thereafter read by a computer system. Examples of computer-readable recording media include read-only memory (ROM), random-access memory (RAM), CD-ROMs, magnetic tapes, floppy disks, optical data storage devices, and the like. The computer- readable recording medium can also be distributed over a network of coupled computer systems so that the computer-readable code is stored and executed in a decentralized fashion.