SM4-FPE:基于SM4的数字型数据保留格式加密算法

详细信息    查看全文 | 推荐本文 |

英文篇名：SM4-FPE: a Format-preserving Encryption Algorithm Based on SM4 for Numeric Data 作者：陈佳 ; 彭长根 ; 樊玫玫 ; 丁红发 ; 赵园园 英文作者：CHEN Jia;PENG Chang-gen;FAN Mei-mei;DING Hong-fa;ZHAO Yuan-yuan;College of Mathematics and Statistics,Guizhou University;State key Laboratory of Public Big Data,Guizhou University;College of Computer Science and Technology,Guizhou University;College of Information,Guizhou University of Finance and Economics; 关键词：SM4 ; 保留格式加密 ; 数字型数据 ; 平衡Feistel ; 非平衡Feistel 英文关键词：SM4;;format-preserving encryption;;numeric data;;the balanced Feistel;;the unbalanced Feistel 中文刊名：XXWX 英文刊名：Journal of Chinese Computer Systems 机构：贵州大学数学与统计学院;贵州大学公共大数据国家重点实验室;贵州大学计算机科学与技术学院;贵州财经大学信息学院; 出版日期：2019-06-14 出版单位：小型微型计算机系统 年：2019 期：v.40 基金：国家自然科学基金项目(U1836205,61662009,61772008,11761020)资助;; 贵州省科技计划项目(黔科合重大专项字([2018]3001,[2018]3007,[2017]3002,黔科合支撑项目[2019]2004,[2018]2162)资助,黔科合基础项目([2019]1049,[2017]1045)资助;; “十三五”国家密码发展基金项目(MMJJ20170129)资助;; 贵州财经大学科研基金项目(2017XJC01)资助 语种：中文; 页：XXWX201906025 页数：6 CN：06 ISSN：21-1106/TP 分类号：140-145

摘要

保留格式加密算法能在加密的同时保证明文和密文格式相同.现有保留格式加密算法以国际分组密码算法为基础设计,且效率有待改进.提出一种基于我国商用分组密码算法SM4的数字型数据的保留格式加密算法.通过对数字型特征数据进行分段处理后,利用平衡Feistel结构或非平衡Feistel结构进行轮运算和模运算,在每轮轮运算中用SM4加密截断实现F函数功能,并对分段加密结果组合后的密文进行校验得到加密后的保留格式密文.所提出的算法能正确实现保留格式加密,扩展了SM4的应用,且通过减少Cycle-Walking的使用提高算法效率.安全性分析表明,提出的算法与SM4安全性相当.
        The format-preserving encryption algorithm can ensure the same format of plaintext and ciphertext while encrypting. The existing format-preserving encryption algorithms are designed based on the international block cipher algorithms and are not efficient. A format-preserving encryption algorithm based on China's commercial block cipher algorithm SM4 for numeric data is suggested. After segmenting the numeric feature data,the algorithm uses the balanced/unbalanced Feistel structure for round and modular operations. In each round,the function of F function is realized by SM4 encryption truncation,and the ciphertext combined by segmented encryption results is verified to obtain the final format-preserving encryption ciphertext. The proposed algorithm can correctly implement the formatpreserving encryption,extend the application of SM4,and improve the efficiency of the algorithm by reducing the use of CycleWalking. The security analysis shows that the proposed algorithm is equivalent to SM4 security.

引文

[1] Black J,Rogaway P. Ciphers with arbitrary finite domains[C]//Cryptographers'Track at the RSA Conference on Topics in CryptologyCT-RSA 2002,Springer,2002:114-130.
    [2] Bellare M,Ristenpart T,Rogaway P,et al. Format-preserving encryption[C]//International Conference on SelectedAreas in Cryptography,Springer,2009:295-312.
    [3] Liu Z,Jia C,Li J,et al. Format-preserving encryption for datetime[C]//Interntional Conference on Intelligent Computing and Intelligent Systems,IEEE,2010:201-205.
    [4] Dworkin M. Recommendation for block cipher modes of operation:methods for format-preserving encryption[J]. NIST Special Publication,2016,800(38G):1-24.
    [5] Bellare M,Hoang V T. Identity-based format-preservingencryption[C]//ACM SIGSAS Conference on Computer and Communications Security,ACM,2017:1515-1532.
    [6] Durak F B,Vaudenay S. Breaking the FF3 format-preserving encryption standard over small domains[C]//International Cryptology Conference on Advances in Cryptology-CRYPTO 2017,Springer,2017:679-707.
    [7] Hoang V T,Tessaro S,Ni T. The curse of small domains:new attacks on format-preserving encryption[C]//International Cryptology Conference on Advances in Cryptology-CRYPTO 2017,Springer,2018:221-251.
    [8] Zou Jun-wei,Wang Peng,Luo Hong. Improved prefixbased formatPreserving encryption for Chinese names[J]. China Communications,2018,15(3):78-90.
    [9] The State Encryption Administration. GM/T002-2012. SM4[S].Beijing:China Standard Press,2012.
    [10] Lang Huan,Zhang Lei,Wu Wen-ling. Fast software implementation of SM4[J]. Journal of the Chinese Academy of Sciences,2018,35(2):180-187.
    [11] Benadjila R,Jian G,LomnéV,et al. Implementing lightweight block ciphers on x86 architectures[C]//International Conference on Selected Areas in Cryptography-SAC 2013,Springer,2013:324-351.
    [12] Lu Shu-wang,Su Bo-zhan,Wang Peng,et al. Overview on SM4algorithm[J]. Journal of Information Security Research,2016,2(11):995-1007.
    [13] Wang Peng. Research and implementation on multi-type formatpreserving encryption techniques[D]. Beijing:Beijing University of Posts and Telecommunications,2017.
    [14] Gold wasser S,Micali S. Probabilistic encryption[J]. Journal Computer and System Science,1984,28(2):270-299
    [9]国家密码管理局. GM/T002-2012. SM4分组密码算法[S].北京:中国标准出版社,2012.
    [10]郎欢,张蕾,吴文玲. SM4的快速软件实现技术[J].中国科学院大学学报,2018,35(2):180-187.
    [12]吕述望,苏波展,王鹏,等. SM4分组密码算法综述[J].信息安全研究,2016,2(11):995-1007.
    [13]王鹏.多类型数据保留格式加密技术的研究与实现[D].北京:北京邮电大学,2017.
    1 Spies T. Feistel finite set encryption mode. 2008. http://csrc. nist. gov/groups/ST/toolkit/BCM/documents/proposedmodes/ffsem-spec. pdf.
    2 Bellare M,Rogaway P,Spies T,The FFX mode of operation for format-preserving encryption. 2010. http://www. csrc. nist.. gov/groups/ST/toolkit/BCM/documents/proposedmodes/ffx/ffx/-spec. pdf.
    3 Brier E,Peyrin T,Stern J. BPS:a Format-Preserving Encryption Proposal. 2010. http://csrc. nist. gov/groups/ST/toolkit/BCM/docume-nts/proposedmodes/bps/bps-spec. pdf.