公开(公告)号：US09215069B2

公开(公告)日：2015-12-15

申请号：US13709646

申请日：2012-12-10

Applicant: Intel Corporation

Inventor： Xiaoyu Ruan ,  Xiaozhu Kang

IPC: H04K1/00 ,  H04L9/00 ,  H04L9/28 ,  H04L9/30 ,  H04L9/32

CPC classification number: H04L9/32 ,  H04L9/3066 ,  H04L9/3218

Abstract: An automated method for authenticating a proving device to a verifying device involves an elliptic curve formula (ECF) for a predetermined elliptic curve associated with a proving device. According to one example method, the prover sends the verifier a message containing a first proof value (P2). The verifier determines whether P2 is a point on the elliptic curve associated with the proving device. If P2 is not on the elliptic curve, the verifier may determine that the proving device should not be trusted. The message may further comprise a second proof value (K1), and the verifier may automatically determine whether K1 corresponds to P1, based on a previous point (P0) on the elliptic curve. If K1 does not correspond to P1, the verifier may determine that the proving device should not be trusted. Other embodiments are described and claimed.

Abstract translation: 用于将验证装置验证到验证装置的自动化方法涉及用于与证明装置相关联的预定椭圆曲线的椭圆曲线公式（ECF）。 根据一个示例性方法，证明者向验证者发送包含第一验证值（P2）的消息。 验证者确定P2是否是与证明设备相关联的椭圆曲线上的点。 如果P2不在椭圆曲线上，则验证者可以确定证明设备不应被信任。 消息还可以包括第二证明值（K1），并且验证者可以基于椭圆曲线上的先前点（P0）自动确定K1是否对应于P1。 如果K1不对应于P1，则验证者可以确定证明设备不应被信任。 描述和要求保护其他实施例。

公开(公告)号：US20150278514A1

公开(公告)日：2015-10-01

申请号：US14739133

申请日：2015-06-15

Applicant: Intel Corporation

Inventor： Xiaozhu Kang ,  Alpa T. Narendra Trivedi ,  Siddhartha Chhabra ,  Prashant Dewan ,  Uday R. Savagaonkar ,  David M. Durham

IPC: G06F21/53 ,  G06F21/60

CPC classification number: G06F21/53 ,  G06F12/14 ,  G06F21/50 ,  G06F21/60 ,  G06F21/78 ,  G06F2221/034

Abstract: The entry/exit architecture may be a critical component of a protection framework using a secure enclaves-like trust framework for coprocessors. The entry/exit architecture describes steps that may be used to switch securely into a trusted execution environment (entry architecture) and out of the trusted execution environment (exit architecture), at the same time preventing any secure information from leaking to an untrusted environment.

Abstract translation: 入口/出口架构可能是保护框架的关键组成部分，使用协同处理器的安全的类似信任框架。 入口/出口架构描述了可用于将安全切换到受信任的执行环境（入口体系结构）并脱离可信执行环境（退出体系结构）的步骤，同时防止任何安全信息泄露到不受信任的环境中。

公开(公告)号：US09087202B2

公开(公告)日：2015-07-21

申请号：US13891255

申请日：2013-05-10

Applicant: Intel Corporation

Inventor： Xiaozhu Kang ,  Alpa T. Narendra Trivedi ,  Siddhartha Chhabra ,  Prashant Dewan ,  Uday R. Savagaonkar ,  David M. Durham

IPC: G06F21/60 ,  G06F21/78 ,  G06F21/50 ,  G06F12/14

CPC classification number: G06F21/53 ,  G06F12/14 ,  G06F21/50 ,  G06F21/60 ,  G06F21/78 ,  G06F2221/034

Abstract: The entry/exit architecture may be a critical component of a protection framework using a secure enclaves-like trust framework for coprocessors. The entry/exit architecture describes steps that may be used to switch securely into a trusted execution environment (entry architecture) and out of the trusted execution environment (exit architecture), at the same time preventing any secure information from leaking to an untrusted environment.

Abstract translation: 入口/出口架构可能是保护框架的关键组成部分，使用协同处理器的安全的类似信任框架。 入口/出口架构描述了可用于将安全切换到受信任的执行环境（入口体系结构）并脱离可信执行环境（退出体系结构）的步骤，同时防止任何安全信息泄露到不受信任的环境中。