利索-全球专利检索

  1. 登录
  2. 注册

搜索结果

137 条记录 (耗时 0.027 秒)

    FAULT DETECTION FOR SYSTEMS IMPLEMENTING A BLOCK CIPHER
    111.
    发明授权
    FAULT DETECTION FOR SYSTEMS IMPLEMENTING A BLOCK CIPHER 有权

    公开(公告)号:EP3086503B1

    公开(公告)日:2018-06-06

    申请号:EP15164808.6

    申请日:2015-04-23

    申请人: Inside Secure

    发明人: Willemse, Gijs Van Loon, Marcel

    IPC分类号: H04L9/00 H04L9/06 G06F11/07

    CPC分类号: H04L9/0631 G06F11/0736 G06F11/0751 G06F11/079 H04L9/004

    摘要: A fault detection method for an encryption/decryption system based on a block cipher comprises the steps of subjecting a state array (CST) to multiple rounds, each round comprising a same series of sequential operations transforming the state array; storing the state of a reference operation (ShiftRows) of a current round as a checkpoint state (CHK); storing the state of the reference operation in the next round as an intermediate state; applying one round of reciprocal operations to the intermediate state, starting from the reciprocal of the reference operation (InvShiftRows); and comparing the result state of said one round of reciprocal operations with the checkpoint state.

    PROCEDE DE SECURISATION D'UNE COMPARAISON DE DONNEES LORS DE L'EXECUTION D'UN PROGRAMME
    112.
    发明公开
    PROCEDE DE SECURISATION D'UNE COMPARAISON DE DONNEES LORS DE L'EXECUTION D'UN PROGRAMME 审中-公开

    公开(公告)号:EP3295297A1

    公开(公告)日:2018-03-21

    申请号:EP16731207

    申请日:2016-05-10

    申请人: INSIDE SECURE

    发明人: DUPAQUIS VINCENT LE COCQUEN ERIC

    IPC分类号: G06F7/02 G06F9/30 G06F11/14 G06F21/55 H04L9/00

    CPC分类号: G06F7/02 G06F11/14 G06F21/52 G06F2207/7271 G09C1/00 H04L9/004

    摘要: The invention relates to a method for securing the execution of a program by a processor, the program comprising a comparison instruction (S1) for comparing two data (D1, D2), followed by an operation of the program (SI2) which is selected as a function of a comparison result provided by the comparison instruction, the method comprising steps consisting in: before the execution of the comparison instruction, calculating in various ways comparison data representative of the equality of the data to be compared, after the execution of the comparison instruction, verifying whether the comparison data calculated are consistent with the fact that the operation is selected or not selected, and activating an error signal (ER) if the comparison data are mutually inconsistent or inconsistent with the result of the comparison.

    SECURE ASSET MANAGEMENT SYSTEM
    116.
    发明公开
    SECURE ASSET MANAGEMENT SYSTEM 有权
    安全的资产管理系统

    公开(公告)号:EP3246845A1

    公开(公告)日:2017-11-22

    申请号:EP16170012.5

    申请日:2016-05-17

    申请人: Inside Secure

    发明人: WILLEMSE, Gijs VAN HOORN, Marc VAN LOON, Marcel

    IPC分类号: G06F21/79 G06F21/62 G06F21/85

    CPC分类号: G06F21/602 G06F12/1408 G06F21/53 G06F21/6218 G06F21/79 G06F21/85 G06F2212/1052 H04L9/0631 H04L9/3213 H04L9/3234

    摘要: A data processing system with a trusted execution environment, comprises a host processor (12) having a secure mode for operating in the trusted execution environment and a non-secure mode; and a secure module (10) configured to respond to tokens posted by the host processor in secure mode, wherein each token identifies a secure asset, and source and destination addresses within secure and public address spaces. The secure module includes an internal memory (16) storing secure assets identifiable by the tokens; a memory access circuit (26) connected to read data from the source addresses and write processed data to the destination addresses; and a cryptography engine (18, 20) configured to process the read data using the identified secure assets. The secure module (10') is configured to also respond to tokens posted by the host processor in non-secure mode. The internal memory (16') of the secure module stores a rule (Px) together with each secure asset (Ax), defining permissions as to the address spaces where the memory access circuit may read and write the data. The secure module ignores tokens that do not satisfy the permissions defined for the corresponding assets.

    摘要翻译: 一种具有可信执行环境的数据处理系统,包括具有用于在可信执行环境中操作的安全模式和非安全模式的主处理器(12) 以及安全模块(10),被配置为以安全模式响应主处理器发布的令牌,其中每个令牌标识安全资产以及安全和公共地址空间内的源和目的地地址。 安全模块包括存储由令牌可识别的安全资产的内部存储器(16) 存储器访问电路(26),其被连接以从所述源地址读取数据并将经处理的数据写入所述目的地址; 和密码引擎(18,20),被配置为使用所识别的安全资产来处理读取的数据。 安全模块(10')被配置成也响应主机处理器以非安全模式发布的令牌。 安全模块的内部存储器(16')与每个安全资产(Ax)一起存储规则(Px),定义关于存储器访问电路可以读取和写入数据的地址空间的许可。 安全模块会忽略不满足为相应资产定义的权限的令牌。