公开(公告)号：US11709941B1

公开(公告)日：2023-07-25

申请号：US17305135

申请日：2021-06-30

Applicant: Amazon Technologies, Inc.

Inventor： Ori Cohen ,  Barak Wasserstrom ,  Andrew Robert Sinton

IPC: H04L29/06 ,  G06F21/57 ,  H04L9/30 ,  H04L9/32

CPC classification number: G06F21/575 ,  H04L9/3073 ,  H04L9/3265 ,  G06F2221/034

Abstract: A modified measured boot approach is utilized for establishing a secure communication link between two devices. Each device may execute a respective boot process until the device reaches the stage responsible for establishing the communication link with the other device. Each device may exchange its respective self-signed certificate and extend its certificate chain with the self-signed certificate received from the other device. Each device can then generate a new pair of keys based on its extended certificate chain that includes the identity of the other device, and exchange the public key of the new key pair with the other device. A secure link can be established using the public key of the other device as a based key for a key exchange protocol. A central management entity can attest the measurements of the boot stages for each device using the corresponding public key.

公开(公告)号：US10318737B2

公开(公告)日：2019-06-11

申请号：US15199479

申请日：2016-06-30

Applicant: Amazon Technologies, Inc.

Inventor： Anthony Nicholas Liguori ,  Barak Wasserstrom

IPC: H04L9/00 ,  H04L9/06 ,  H04L9/08 ,  H04L9/14 ,  H04L9/30 ,  H04L9/32 ,  G06F21/57 ,  G06F9/455 ,  H04L29/06 ,  G06F9/4401

Abstract: A multi-phase boot operation of a virtualization manager at a virtualization host is initiated at an offload card. In a first phase of the boot, a security key stored in a tamper-resistant location of the offload card is used. In a second phase, firmware programs are measured using a security module, and a first version of a virtualization coordinator is instantiated at the offload card. The first version of the virtualization coordinator obtains a different version of the virtualization coordinator and launches the different version at the offload card. Other components of the virtualization manager (such as various hypervisor components that do not run at the offload card) are launched by the different version of the virtualization controller.

公开(公告)号：US10303621B1

公开(公告)日：2019-05-28

申请号：US15452117

申请日：2017-03-07

Applicant: AMAZON TECHNOLOGIES, INC.

Inventor： Ron Diamant ,  Alex Levin ,  Barak Wasserstrom

IPC: G06F21/00 ,  G06F12/14 ,  G06F12/02 ,  G06F15/78

Abstract: An electronic system includes a secret value (e.g., an encryption key) which is used for its intended purpose after which the address translations in the system's memory management unit are modified to prevent further access to the secret value. The address translation modifications also include modification of a translation for the memory management unit itself thereby preventing further modification of the address translations. The secret value cannot again be accessed until the system is reinitialized, but the address translations are modified during each system initialization so that the secret value is only usable for its intended purpose during the initialization process. In other implementations, the system modifies mappings between physical addresses and hardware components to preclude further access to the secret value.

公开(公告)号：US10210083B1

公开(公告)日：2019-02-19

申请号：US15669346

申请日：2017-08-04

Applicant: AMAZON TECHNOLOGIES, INC.

Inventor： Noam Efraim Bashari ,  Ron Diamant ,  Yaniv Shapira ,  Barak Wasserstrom

IPC: G06F12/08 ,  G06F12/0802 ,  G06F12/02

Abstract: An apparatus such as a system-on-a-chip includes memory that is distributed through one or more functional hardware circuits. Each functional hardware circuit includes memory, and each functional hardware circuit can be configured to have its memory used either by the respective functional hardware circuit or by the apparatus' master device (e.g., main processor). For those functional hardware circuits that are not needed for a given application, their memories can be repurposed for use by the master device. Related methods are also disclosed.

公开(公告)号：US09747219B1

公开(公告)日：2017-08-29

申请号：US15053994

申请日：2016-02-25

Applicant: AMAZON TECHNOLOGIES, INC.

Inventor： Noam Efraim Bashari ,  Ron Diamant ,  Yaniv Shapira ,  Barak Wasserstrom

IPC: G06F12/10 ,  G06F3/06 ,  G06F13/16 ,  G06F13/40

CPC classification number: G06F12/10 ,  G06F3/0604 ,  G06F3/0632 ,  G06F3/067 ,  G06F13/16 ,  G06F13/4068 ,  G06F2212/1016

Abstract: An apparatus such as a system-on-a-chip includes memory that is distributed through multiple functional hardware circuits. Each functional hardware circuit includes memory, and each functional hardware circuit can be configured to have its memory used either by the respective functional hardware circuit or by the apparatus' master device (e.g., main processor). For those functional hardware circuits that are not needed for a given application, their memories can be repurposed for use by the master device. Related methods are also disclosed.

公开(公告)号：US09612611B1

公开(公告)日：2017-04-04

申请号：US14869349

申请日：2015-09-29

Applicant: Amazon Technologies, Inc.

Inventor： Guy Nakibly ,  Usama Nassir ,  Saar Gross ,  Nafea Bshara ,  Barak Wasserstrom ,  Daniel Joseph Grey

IPC: G06F1/08

CPC classification number: G06F1/08 ,  G06F1/04 ,  G06F1/12

Abstract: In a system having a first clock domain with a first clock and a second clock domain with a second clock, the first and second clocks are monitored to determine whether one or both clocks are active. The first clock is selected to be an output clock if the first clock is active and the second clock is disabled irrespective of the clock selection signal. The second clock is selected to be the output clock if the second clock is active and the first clock is disabled irrespective of the clock selection signal. If both the first clock and the second clock are active, either the first clock or the second clock is selected according to a received clock selection signal.