Abstract: It is a technological object of the present invention to provide an information processing device, a card and a card system that have a high level of security. In order to achieve the object described above, the present invention provides a data processing apparatus comprising at least a first information processing device and a second information processing device connected to the first information processing device by a signal line, the data processing apparatus having a means for changing power consumption on the signal line during transmission of a signal through the signal line in accordance with an actual state of the power consumption that would be observed when the means were not used.

Abstract: The present invention makes it difficult for unauthorized parties to estimate processing and a secret key based upon the waveforms of power consumption of an IC card chip by changing a processing order in the IC card chip so that it is not estimated by the attackers. In an information processing apparatus comprising storing means having a program storing part for storing programs and a data storing part for storing data, an operation processing unit, means for inputting data to be operated on in the operation processing unit, and means for outputting operation processing results on the data by the operation processing unit, an arithmetic operation method is provided which comprises the steps of: for two integers K1 and K2, when finding a value F(K, A) of a function F satisfying F(K1+K2, A)=F(K1, A)?F(K2, A) (? denotes an arithmetic operation in a communtative semigroup S. K designates an integer and A designates an element of S), decomposing the K to the sum of m integers K[0]+K[1]+ . . .

Abstract: The disclosed technology of the present invention relates to an information processing device such as an IC card, and specifically to the overflow processing which occurs in a modular multiplication operation during crypto-processing. Such overflow processing exhibits a particular pattern of consumption current. It is the subject of the present invention to decrease the relationship between the data processing and the pattern of the consumption current. In the processing procedures for performing a modular exponentiation operation according to the 2 bit addition chain method, the modular multiplication operation to be executed is selected at random, the selected modular multiplication operation is executed for each 2 bits, the correction of the result is performed, and the result of the calculation (i.e, a corrected value or uncorrected value) is outputted.

Abstract: An object of the present invention is to a provide tamper resistant information processing unit that is used as an IC card with a high level of security. To achieve the above-mentioned object, the information unit of the present invention comprises: a program container part for storing a program; a memory for storing data; an arithmetic unit for performing specified processing according to the program; a data bus for connecting the memory to the arithmetic unit; and a transform function for transforming a logical address and a physical address of the memory, said logical address being used for arithmetic operation by the arithmetic unit, said physical address being set at random corresponding to the logical address at each arithmetic operation or every time the information processing unit is started up.

Abstract: An IC card having a storage memory including a program storage unit for storing a program and a data storage unit for storing data and a central processing unit for executing a predetermined process in accordance with the program to process the data, the program including one or more data process units each having a process instruction for giving an execution instruction to the central processing unit, wherein a data process order is randomly exchanged and a dummy process is added to thereby reduce the dependency of consumption current of an IC chip upon the data process.

Abstract: As fast algorithm for RSA cryptosystem, a calculation method employing the Chinese Remainder Theorem is widely used today. However, modular calculation modulo P (P: secret prime) has to be carried out in the first step of the calculation, and the modular calculation x mod P, explicitly using the secret prime P, has been used as the target of attack from long ago. To resolve the problem, there is provided a calculation method, in which x mod P is calculated not directly, but x*(2{circumflex over ( )}n) mod P is calculated by previously multiplying x by 2{circumflex over ( )}(m+n) mod P or 2{circumflex over ( )}(2n) mod P and multiplying the result by 2{circumflex over ( )}(−m) or 2{circumflex over ( )}(−n) afterward. When Montgomery modular multiplication is used, subsequent process is carried out according to the conventional method.

Abstract: An object of the present invention is to prevent secret information that is being internally processed from being inferred through operational information of a secured device, including the current consumption information. One solution is provided by an information processing device having at least a key generation apparatus that generates key data automatically, an encryption unit that encrypts data with the corresponding key data, a register that stores a plurality of encrypted data items with the corresponding encryption key data items, and an arithmetic unit that performs operations using data expressed with the corresponding encryption key data and new key data as the input, encrypts the operation result with new input key data, and outputs the result, thereby being capable of performing internal processing on an encrypted data expression. Accordingly, only encrypted data is transferred on the internal or external data bus line.

Abstract: A method and device are provided for accessing a memory of an information processing device in order to prevent tampering to a program in the memory. In one example, the method involves making it difficult to extract inner information inside an integrated circuit (IC) chip via analyzing variations of power consumption of the IC chip. A relationship between address information processed inside the IC chip and the power consumption is made inconspicuous. The Difference between hamming distances of certain memory portions is reduced so as to reduce changes of a program counter in each execution of conditional branch instructions.

Abstract: An object of the present invention is to prevent secret information that is being internally processed from being inferred through operational information of a secured device, including the current consumption information. One solution is provided by an information processing device having at least a key generation apparatus that generates key data automatically, an encryption unit that encrypts data with the corresponding key data, a register that stores a plurality of encrypted data items with the corresponding encryption key data items, and an arithmetic unit that performs operations using data expressed with the corresponding encryption key data and new key data as the input, encrypts the operation result with new input key data, and outputs the result, thereby being capable of performing internal processing on an encrypted data expression. Accordingly, only encrypted data is transferred on the internal or external data bus line.

Abstract: A tamper-resistant information device for use with IC cards, etc. having high security. The tamper-resistant information device has an input unit for inputting a signal, a storage unit for storing a program, an operation unit for performing predetermined data processing according to a program, and an output unit for outputting a signal. The program stored in the above storage unit includes one or more data processing instructions giving an execution direction to the operation unit.

Abstract: A relation between the data process contents in an IC card chip and the consumption current of the IC card chip is reduced. Prior to executing an input data process of the IC card chip, the input data is transformed to thereby reduce the relation between the process data and the consumption current of the IC card chip. After the transforming process, the transformed data is untransformed to obtain a correct process result.

Abstract: A relation between the data process contents in an IC card chip and the consumption current of the IC card chip is reduced. Prior to executing an input data process of the IC card chip, the input data is transformed to thereby reduce the relation between the process data and the consumption current of the IC card chip. After the transforming process, the transformed data is untransformed to obtain a correct process result.

Abstract: In an information processing method, an ordinary adder is structurally added with an embedding unit for embedding an error detection code in input data A, B, an error detection code checking unit, and an error detection code removing unit. Firstly, error detection data D is generated and A and B are multiplied by the D. Next, operation of AD+BD=(A+B)*D=CD is made by using an adder. In the error detection checking unit, remainders modulo D are calculated in respect to an operation result and it is confirmed that the result is zero. If CD mod D≠0, an error signal is delivered. The original operation result can be obtained as CD*1/D=C.

Abstract: An object of the present invention is to prevent secret information that is being internally processed from being inferred through operational information of a secured device, including the current consumption information. One solution is provided by an information processing device having at least a key generation apparatus that generates key data automatically, an encryption unit that encrypts data with the corresponding key data, a register that stores a plurality of encrypted data items with the corresponding encryption key data items, and an arithmetic unit that performs operations using data expressed with the corresponding encryption key data and new key data as the input, encrypts the operation result with new input key data, and outputs the result, thereby being capable of performing internal processing on an encrypted data expression. Accordingly, only encrypted data is transferred on the internal or external data bus line.

Abstract: An information processing unit and methods therefore which render it more difficult to infer information being processed within an information processing unit by observing the unit's current consumption or electromagnetic radiation. Specifically, the information processing unit preferably encrypts and decrypts data when the data is read from/written to memories within the unit. The encryption/decryption process may include the use of multiple cryptographic keys, permutated data storage locations, randomly generated keys, and permutated data processing steps.

Abstract: A loyalty program using a smart card enables realtime customer information analysis at a shop. Customer services are improved by conveniently and realtime providing results of analyzing each customer's usage status and tendency. A smart card application program analyzes customer information. Since the smart card has just a limited capacity and calculation capability, the card is incapable of complicated calculation and storing a large amount of log data. To solve this problem, a recurrence formula is used for calculating a value representing the customer's buying habit. There is provided a plurality of parameters needed for the calculation in order to enable determination of loyal customers according to different evaluation criteria such as a score based on the most recent purchase amount or the continuity. In addition, a shop card is used for point management to more economically enable customer information analysis at shops.

Abstract: The present invention makes it difficult for unauthorized parties to estimate processing and a secret key based upon the waveforms of power consumption of an IC card chip by changing a processing order in the IC card chip so that it is not estimated by the attackers. In an information processing apparatus comprising storing means having a program storing part for storing programs and a data storing part for storing data, an operation processing unit, means for inputting data to be operated on in the operation processing unit, and means for outputting operation processing results on the data by the operation processing unit, an arithmetic operation method is provided which comprises the steps of: for two integers K1 and K2, when finding a value F(K, A) of a function F satisfying F(K1+K2, A)=F(K1, A)∘F(K2, A) (∘ denotes an arithmetic operation in a communtative semigroup S.

Abstract: A malfunction detection system that can continue or terminate processing appropriately even if a malfunction occurs in an information processing unit; wherein an information processing unit receives branch direction information, carries out a conditional branch depending on the branch direction information, and performs an applicable operation on data I; at this time, the information processing unit performs an applicable operation on data J other than the operated data I in the conditional branch path and outputs the result for examination, thereby enabling validation of the conditional branch.

Abstract: The subject of the disclosed technology is, when a crypto-processing is performed utilizing an information processing device buried in an IC card, etc., to decrease the relationship between the waveform of the consumption current and the contents of the crypto-processing as a countermeasure against a tamper which observes the waveform of a consumption current.

Abstract: It is an object of the disclosed technology to provide a tamper resistance device such as a card member having high security. The disclosed technology provides a solution to problems by reduction of the degree of relationship between information processed in the card member such as a chip for an IC card and current consumption for the processing.