-
11.发明授权Secured booting of a field programmable system-on-chip including authentication of a first stage boot loader to mitigate against differential power analysis 有权安全引导现场可编程片上系统,包括第一级引导加载程序的认证,以减轻差分功耗分析公开(公告)号:US09230112B1
公开(公告)日:2016-01-05
申请号:US13775151
申请日:2013-02-23
Applicant: Xilinx, Inc.
Inventor: Edward S. Peterson , Roger D. Flateau, Jr. , James D. Wesselkamper , Steven E. McNeil , Jason J. Moore , Lester S. Sanders , Lawrence C. Hung , Yatharth K. Kochar
IPC: G06F9/00 , G06F15/177 , G06F21/57 , G06F9/44 , G06F21/76
CPC classification number: G06F21/575 , G06F9/4401 , G06F9/4406 , G06F9/4416 , G06F21/76
Abstract: A system generally relating to an SoC, which may be a field programmable SoC (“FPSoC”), is disclosed. In this SoC, dedicated hardware includes a processing unit, a first internal memory, a second internal memory, an authentication engine, and a decryption engine. A storage device is coupled to the SoC. The storage device has access to a boot image. The first internal memory has boot code stored therein. The boot code is for a secure boot of the SoC. The boot code is configured to cause the processing unit to control the secure boot.
Abstract translation: 通常涉及可能是现场可编程SoC(“FPSoC”)的SoC的系统被公开。 在该SoC中,专用硬件包括处理单元,第一内部存储器,第二内部存储器,认证引擎和解密引擎。 存储设备耦合到SoC。 存储设备可以访问引导映像。 第一内部存储器具有存储在其中的引导代码。 引导代码用于安全引导SoC。 引导代码被配置为使处理单元控制安全启动。
-
公开(公告)号:US20150236856A1
公开(公告)日:2015-08-20
申请号:US14185780
申请日:2014-02-20
Applicant: Xilinx, Inc.
Inventor: Jason J. Moore , Steven E. McNeil , Stephen M. Trimberger
IPC: H04L9/32
CPC classification number: H04L9/3247 , G06F21/572 , G06F21/575 , G06F21/71 , G06F21/76 , H04L9/0825 , H04L9/0891 , H04L9/3236
Abstract: One approach for authenticating data includes storing a plurality of combinations of representations of public keys and session key IDs in a non-volatile memory. A payload and accompanying public key, session key ID, and signature of the payload are input. The signature is a function of the payload and a private key of a key pair that includes the accompanying public key and the private key. Authenticity of the payload is determined based on the accompanying public key and session key ID and the combinations stored in the non-volatile memory, and from the signature and the payload. In response to determining that the payload is authentic, the payload is processed, and in response to determining that the payload is not authentic, processing of the payload is disabled.
Abstract translation: 用于认证数据的一种方法包括将公共密钥和会话密钥ID的表示的多个组合存储在非易失性存储器中。 输入有效载荷和伴随的公钥,会话密钥ID和有效载荷的签名。 签名是有效载荷和密钥对的私钥的功能,包括伴随的公钥和私钥。 基于附带的公钥和会话密钥ID以及存储在非易失性存储器中的组合,以及从签名和有效载荷来确定有效载荷的真实性。 响应于确定有效载荷是真实的,处理有效载荷,并且响应于确定有效载荷不可靠,禁用有效载荷的处理。
-
Search Results
12
records
(took 0.015 seconds)
