利索-全球专利检索

  1. 登录
  2. 注册
发明申请
US20090172411A1 Protecting the security of secure data sent from a central processor for processing by a further processing device 有权
保护从中央处理器发送的安全数据的安全性,以便由另外的处理设备进行处理

  • 专利标题: Protecting the security of secure data sent from a central processor for processing by a further processing device
  • 专利标题(中): 保护从中央处理器发送的安全数据的安全性,以便由另外的处理设备进行处理
  • 申请号: US12003858
    申请日: 2008-01-02
  • 公开(公告)号: US20090172411A1
    公开(公告)日: 2009-07-02
  • 发明人: Daniel KershawNigel Charles Paver
  • 申请人: Daniel KershawNigel Charles Paver
  • 申请人地址: GB Cambridge
  • 专利权人: ARM LIMITED
  • 当前专利权人: ARM LIMITED
  • 当前专利权人地址: GB Cambridge
  • 主分类号: G06F12/14
  • IPC分类号: G06F12/14
Protecting the security of secure data sent from a central processor for processing by a further processing device
摘要:
A data processing apparatus comprising: a data processor for processing data in a secure and a non-secure mode, said data processor processing data in said secure mode having access to secure data that is not accessible to said data processor in said non-secure mode, and processing data in said secure mode being performed under control of a secure operating system and processing data in said non-secure mode being performed under control of a non-secure operating system; and a further processing device for performing a task in response to a request from said data processor, said task comprising processing data at least some of which is secure data; wherein said further processing device is responsive to receipt of a signal to suspend said task to initiate: processing of said secure data using a secure key; and storage of said processed secure data to a non-secure data store; and is responsive to receipt of a signal to resume said task to initiate: retrieval of said processed secure data from said non-secure data store; and restoring of said processed secure data using said secure key; wherein said secure key is securely stored such that it is not accessible to other processes operating in said non-secure mode.
摘要(中):

一种数据处理装置,包括:用于以安全和非安全模式处理数据的数据处理器,所述数据处理器处理所述安全模式中的数据,以访问在所述非安全模式下所述数据处理器不可访问的安全数据 并且在安全操作系统的控制下执行所述安全模式中的处理数据,并且在非安全操作系统的控制下执行所述非安全模式中的数据处理; 以及用于响应于来自所述数据处理器的请求执行任务的另一处理装置,所述任务包括处理数据,其中至少一些是安全数据; 其中所述另外的处理设备响应于收到信号以暂停所述任务以启动:使用安全密钥处理所述安全数据; 以及将所述处理的安全数据存储到非安全数据存储器; 并且响应于接收到信号以恢复所述任务以启动:从所述非安全数据存储中检索所述处理的安全数据; 以及使用所述安全密钥恢复所述处理的安全数据; 其中所述安全密钥被安全地存储,使得对于在所述非安全模式中操作的其他进程是不可访问的。

公开/授权文献
信息查询
Global Dossier Espacenet
0/0