公开(公告)号：US09984005B2

公开(公告)日：2018-05-29

申请号：US14840132

申请日：2015-08-31

Applicant: STMICROELECTRONICS (GRENOBLE 2) SAS

Inventor： Jean-Philippe Fassino ,  Roland Bohrer ,  Laurent Gerard

IPC: G06F12/14 ,  G06F12/00 ,  H04L9/08 ,  G06F21/10 ,  G06F21/79 ,  G06F21/84 ,  H04N21/426

CPC classification number: G06F12/1408 ,  G06F21/10 ,  G06F21/79 ,  G06F21/84 ,  G06F2212/1052 ,  G06F2221/2141 ,  H04L9/0825 ,  H04N21/42623

Abstract: A method for secure processing of encrypted data within a receiver includes receiving a packet of encrypted compressed data and allocating a region of memory for storing a decrypted version of the packet of encrypted compressed data. The allocation is in response to, and after, reception of the encrypted compressed data. A size of the region of the memory allocated is equal to a size of the packet of encrypted compressed data that is received. The method further includes modifying a configuration of an access authorization filter for defining access rights to the allocated region, decrypting the packet of encrypted compressed data, and storing, in the allocated region, the decrypted compressed data of the packet. The aforementioned allocation, modification, decryption, and storage steps are repeated in response to each new reception of a packet of encrypted compressed data so as to dynamically modify the configuration of the access authorization filter.

公开(公告)号：US20160179703A1

公开(公告)日：2016-06-23

申请号：US14840132

申请日：2015-08-31

Applicant: STMICROELECTRONICS (GRENOBLE 2) SAS

Inventor： Jean-Philippe FASSINO ,  Roland Bohrer ,  Laurent Gerard

IPC: G06F12/14 ,  H04L9/08

CPC classification number: G06F12/1408 ,  G06F21/10 ,  G06F21/79 ,  G06F21/84 ,  G06F2212/1052 ,  G06F2221/2141 ,  H04L9/0825 ,  H04N21/42623

Abstract: A method for secure processing of encrypted data within a receiver comprising a memory and a configurable authorization filter for access to the memory, the method comprising:a. reception (100) of the data by packets including at least one packet of encrypted compressed data,b. allocation (110) of a region of the memory means, andc. modification of the configuration (120) of the access authorization filter for defining the access rights to the said allocated region,d. decryption (130) of the encrypted compressed data of the said at least one received packet,e. storing in memory (140) of the decrypted compressed data of the said at least one packet in the said allocated region,f. and repetition of the steps b) to e) at each new reception of at least one packet of encrypted compressed data in such a manner as to dynamically modify the configuration of the access authorization filter in the course of the reception of at least one packet of encrypted compressed data.

Abstract translation: 一种用于在接收机内对加密数据进行安全处理的方法，包括存储器和用于访问存储器的可配置授权过滤器，所述方法包括：a。 通过包括至少一个加密压缩数据分组的分组来接收（100）数据，b。 分配（110）存储装置的区域，以及c。 修改用于定义对所述分配区域的访问权限的访问授权过滤器的配置（120），d。 解密（130）所述至少一个接收到的分组的加密压缩数据， 在所述分配区域中的所述至少一个分组的解密压缩数据的存储器（140）中存储f。 以及在每次新的接收至少一个加密压缩数据分组时重复步骤b）至e），以便在接收至少一个分组的过程中动态地修改接入授权过滤器的配置 加密压缩数据。