公开(公告)号：US12124710B2

公开(公告)日：2024-10-22

申请号：US18217736

申请日：2023-07-03

Applicant: SAMSUNG ELECTRONICS CO., LTD.

Inventor： Hyunsook Hong ,  Jisoo Kim ,  Yongsuk Lee ,  Younsung Chu ,  Hyungsup Kim

IPC: G06F3/06 ,  G06F21/78 ,  G06F7/58

CPC classification number: G06F3/0622 ,  G06F3/0637 ,  G06F3/0659 ,  G06F3/0673 ,  G06F21/78 ,  G06F7/588

Abstract: A method of writing data to a protected region in response to a request from a host includes receiving a first write request including a first host message authentication code and a first random number from the host, verifying the first write request based on a write count, the first random number, and the first host message authentication code, updating the write count based on a result of verifying the first write request, generating a first device message authentication code based on the updated write count and the first random number, and providing the host with a first response including the first device message authentication code and a result of the verifying of the first write request.

公开(公告)号：US10705894B2

公开(公告)日：2020-07-07

申请号：US15608592

申请日：2017-05-30

Applicant: Samsung Electronics Co., Ltd.

Inventor： Sang-Hoon Jeon ,  Hyungsup Kim ,  Wonjae Lee

IPC: G06F9/54 ,  H04L9/32 ,  G06F21/74 ,  G06F21/44

Abstract: A method for operating an electronic device is provided. The method includes generating, by an authentication agent, a digital fingerprint of an application, transmitting, by an authentication agent, the generated digital fingerprint to a trusted application on a trusted execution environment (TEE), verifying, by the trusted application, the digital fingerprint, and permitting, by the trusted application, the application to access a secure storage, when the trusted application succeeds in verifying the digital fingerprint.

公开(公告)号：US11714561B2

公开(公告)日：2023-08-01

申请号：US17358367

申请日：2021-06-25

Applicant: SAMSUNG ELECTRONICS CO., LTD.

Inventor： Hyunsook Hong ,  Jisoo Kim ,  Yongsuk Lee ,  Younsung Chu ,  Hyungsup Kim

IPC: G06F3/06 ,  G06F21/78 ,  G06F7/58

CPC classification number: G06F3/0622 ,  G06F3/0637 ,  G06F3/0659 ,  G06F3/0673 ,  G06F21/78 ,  G06F7/588

Abstract: A method of writing data to a protected region in response to a request from a host includes receiving a first write request including a first host message authentication code and a first random number from the host, verifying the first write request based on a write count, the first random number, and the first host message authentication code, updating the write count based on a result of verifying the first write request, generating a first device message authentication code based on the updated write count and the first random number, and providing the host with a first response including the first device message authentication code and a result of the verifying of the first write request.

公开(公告)号：US20170344407A1

公开(公告)日：2017-11-30

申请号：US15608592

申请日：2017-05-30

Applicant: Samsung Electronics Co., Ltd.

Inventor： Sang-Hoon Jeon ,  Hyungsup Kim ,  Wonjae Lee

IPC: G06F9/54 ,  G06F21/62 ,  H04L9/06 ,  H04L9/32

Abstract: A method for operating an electronic device is provided. The method includes generating, by an authentication agent, a digital fingerprint of an application, transmitting, by an authentication agent, the generated digital fingerprint to a trusted application on a trusted execution environment (TEE), verifying, by the trusted application, the digital fingerprint, and permitting, by the trusted application, the application to access a secure storage, when the trusted application succeeds in verifying the digital fingerprint.

公开(公告)号：US20250165162A1

公开(公告)日：2025-05-22

申请号：US18936517

申请日：2024-11-04

Applicant: SAMSUNG ELECTRONICS CO., LTD.

Inventor： Daejin JUNG ,  Minji Kim ,  Myeongjong Lee ,  Hyungsup Kim ,  Seongchan Jo ,  Jeongwoo Park

IPC: G06F3/06

Abstract: Provided are a universal flash storage (UFS) device for preventing a replay attack, a method of operating the same, and a UFS system. The UFS device including: a memory including a replay protection memory block (RPMB) region, the RPMB region including one or more index fields storing a second write failure index; and a memory controller including at least one controller memory storing one or more instructions, wherein the memory controller is configured to execute the one or more instructions to cause the UFS device to: receive, from an external device, an RPMB write request including a first write failure index, meta information, and a first message authentication code generated based on the first write failure index and the meta information, and determine whether to perform an authentication operation on the external device based on the first write failure index and the second write failure index.

公开(公告)号：US20240354448A1

公开(公告)日：2024-10-24

申请号：US18390736

申请日：2023-12-20

Applicant: SAMSUNG ELECTRONICS CO., LTD.

Inventor： Myeongjong Lee ,  Seongchan Jo ,  Jisoo Kim ,  Hyungsup Kim

IPC: G06F21/78 ,  G06F21/60 ,  G06F21/64

CPC classification number: G06F21/78 ,  G06F21/602 ,  G06F21/64

Abstract: A method of writing data in a replay protected memory block (RPMB) area of a storage device in response to a request of a host device includes receiving a write request, including a message authentication code, data, and a bitmap index, from the host device and verifying the write request based on the message authentication code and the bitmap index. The verifying the write request may include calculating a message authentication code based on data and a bitmap index received from the host device, comparing a message authentication code, calculated in the storage device, with the message authentication code of the write request, and comparing the bitmap index of the write request with bitmap indexes, stored in the storage device, to check whether a replay attack has been made.