-
公开(公告)号:US07979717B2
公开(公告)日:2011-07-12
申请号:US12100400
申请日:2008-04-09
申请人: Zhimin Ding
发明人: Zhimin Ding
CPC分类号: H04L9/0825 , H04L9/0894 , H04L2209/80
摘要: A secure removable card has electrical connections for communication therewith. The card comprises a first integrated circuit die, with the first die including a processor. The card has a second integrated circuit die, with the second die including a non-volatile memory for storing a secret key, and a controller for controlling the operation of the non-volatile memory. A bus connects the first die with the second die. The processor can generate a key pair, having a public key portion and a private key portion upon power up, and transfers the public key portion across the bus to the second die. The controller can receive the public key and encrypt the secret key with the public key to generate a first encrypted key, and can transfer the first encrypted key across the bus to the first die. The processor can receive the first encrypted key and can decrypt the first encrypted key to recover the secret key, and can encrypt data with the secret key for communicating along the electrical connections external to the card.
摘要翻译: 安全的可拆卸卡具有用于与之通信的电连接。 该卡包括第一集成电路管芯,其中第一管芯包括处理器。 卡具有第二集成电路管芯,第二管芯包括用于存储秘密密钥的非易失性存储器,以及用于控制非易失性存储器的操作的控制器。 总线连接第一个模具和第二个模具。 处理器可以在上电时生成具有公钥部分和私钥部分的密钥对,并且将公共密钥部分跨越总线传送到第二管芯。 控制器可以接收公开密钥并用公开密钥加密秘密密钥,以产生第一个加密密钥,并且可以将总线上的第一加密密钥传输到第一个管芯。 处理器可以接收第一加密密钥并且可以解密第一加密密钥以恢复秘密密钥,并且可以使用秘密密钥加密数据,以沿着卡外部的电连接进行通信。
-
公开(公告)号:US20090257590A1
公开(公告)日:2009-10-15
申请号:US12100400
申请日:2008-04-09
申请人: Zhimin Ding
发明人: Zhimin Ding
IPC分类号: H04L9/30
CPC分类号: H04L9/0825 , H04L9/0894 , H04L2209/80
摘要: A secure removable card has electrical connections for communication therewith. The card comprises a first integrated circuit die, with the first die including a processor. The card has a second integrated circuit die, with the second die including a non-volatile memory for storing a secret key, and a controller for controlling the operation of the non-volatile memory. A bus connects the first die with the second die. The processor can generate a key pair, having a public key portion and a private key portion upon power up, and transfers the public key portion across the bus to the second die. The controller can receive the public key and encrypt the secret key with the public key to generate a first encrypted key, and can transfer the first encrypted key across the bus to the first die. The processor can receive the first encrypted key and can decrypt the first encrypted key to recover the secret key, and can encrypt data with the secret key for communicating along the electrical connections external to the card.
摘要翻译: 安全的可拆卸卡具有用于与之通信的电连接。 该卡包括第一集成电路管芯,其中第一管芯包括处理器。 卡具有第二集成电路管芯,第二管芯包括用于存储秘密密钥的非易失性存储器,以及用于控制非易失性存储器的操作的控制器。 总线连接第一个模具和第二个模具。 处理器可以在上电时生成具有公钥部分和私钥部分的密钥对,并且将公共密钥部分跨越总线传送到第二管芯。 控制器可以接收公开密钥并用公开密钥加密秘密密钥,以产生第一个加密密钥,并且可以将总线上的第一加密密钥传输到第一个管芯。 处理器可以接收第一加密密钥并且可以解密第一加密密钥以恢复秘密密钥,并且可以使用秘密密钥加密数据,以沿着卡外部的电连接进行通信。
-
13.发明申请Integrated microcontroller and memory with secure interface between system program and user operating system and application 审中-公开集成微控制器和内存,具有系统程序与用户操作系统和应用之间的安全接口公开(公告)号:US20060218425A1
公开(公告)日:2006-09-28
申请号:US11345074
申请日:2006-01-31
申请人: Zhimin Ding , Shane Hollmer , Philip Barnett
发明人: Zhimin Ding , Shane Hollmer , Philip Barnett
IPC分类号: G06F1/00
CPC分类号: G06F21/79 , G06F21/6218 , G06F21/74
摘要: An integrated circuit device has a processing unit, a memory management unit, and a memory. The memory management unit is interposed between the memory and the processing unit for controlling access to the memory by the processing unit in one of three modes. In a first mode, called the system mode, the processing unit can access a system program stored in the memory for controlling the resources of the integrated circuit device. In a second mode, called the kernel mode, the processing unit can access an operating system program stored in the memory for controlling the of the integrated circuit device, limited by the system program. Finally in a third mode, called the user mode, the processing unit can access an application program stored in the memory for controlling the resources of the integrated circuit device, limited by the operating system program. In another aspect of the invention, when the processing unit accesses either the operating system program or the application program (herein: “non-system program”), the execution of the non-system program can cause a system interrupt causing program execution to revert to the system mode, but to a specified entry address of the system program, wherein after processing the system interrupt, operation returns to the non-system program in either the kernel mode or the user mode.
摘要翻译: 集成电路装置具有处理单元,存储器管理单元和存储器。 存储器管理单元插入在存储器和处理单元之间,用于以三种模式之一控制处理单元对存储器的访问。 在被称为系统模式的第一模式中,处理单元可以访问存储在存储器中的用于控制集成电路装置的资源的系统程序。 在称为内核模式的第二模式中,处理单元可以访问存储在存储器中的用于控制由系统程序限制的集成电路装置的操作系统程序。 最后,在称为用户模式的第三模式中,处理单元可以访问存储在存储器中的应用程序,用于控制由操作系统程序限制的集成电路设备的资源。 在本发明的另一方面,当处理单元访问操作系统程序或应用程序(这里为“非系统程序”)时,非系统程序的执行可能导致导致程序执行的系统中断恢复 到系统模式,但是指向系统程序的指定输入地址,其中在处理系统中断之后,操作以内核模式或用户模式返回到非系统程序。
-
-
搜索结果
13 条记录 (耗时 0.015 秒)
