Host device, semiconductor memory device, and authentication method
    31.
    发明授权
    Host device, semiconductor memory device, and authentication method 有权
    主机设备,半导体存储设备和认证方法

    公开(公告)号:US08667286B2

    公开(公告)日:2014-03-04

    申请号:US13524532

    申请日:2012-06-15

    IPC分类号: H04L9/32

    摘要: According to one embodiment, encrypted secret identification information (E-SecretID) and the key management information (FKB) are read from a memory device. Encrypted management key (E-FKey) is obtained using the key management information (FKB) and index information (k). The index information (k) and the encrypted management key (E-FKey) are transmitted to the semiconductor memory device. An index key (INK) is generated using the first key information (NKey) and the received index information (k). The encrypted management key (E-FKey) is decrypted using the index key (INK) to obtain management key (FKey), which is transmitted to the host device.

    摘要翻译: 根据一个实施例,从存储装置读取加密的秘密识别信息(E-SecretID)和密钥管理信息(FKB)。 使用密钥管理信息(FKB)和索引信息(k)获得加密管理密钥(E-FKey)。 索引信息(k)和加密管理密钥(E-FKey)被发送到半导体存储器件。 使用第一密钥信息(NKey)和接收的索引信息(k)生成索引密钥(INK)。 使用索引密钥(INK)对加密管理密钥(E-FKey)进行解密以获得被发送到主机设备的管理密钥(FKey)。

    Authenticator, authenticatee and authentication method
    32.
    发明授权
    Authenticator, authenticatee and authentication method 有权
    认证者,认证方和认证方式

    公开(公告)号:US08661527B2

    公开(公告)日:2014-02-25

    申请号:US13486684

    申请日:2012-06-01

    摘要: According to one embodiment, an authenticator which authenticates an authenticatee, which stores first key information (NKey) that is hidden, includes a memory configured to store second key information (HKey) which is hidden, a random number generation module configured to generate random number information, and a data generation module configured to generate a session key (SKey) by using the second key information (HKey) and the random number information. The authenticator is configured such that the second key information (HKey) is generated from the first key information (NKey) but the first key information (NKey) is not generated from the second key information (HKey).

    摘要翻译: 根据一个实施例,认证存储隐藏的第一密钥信息(NKey)的认证者的认证器包括被配置为存储隐藏的第二密钥信息(HKey)的存储器,被配置为生成随机数的随机数生成模块 信息和数据生成模块,被配置为通过使用第二密钥信息(HKey)和随机数信息来生成会话密钥(SKey)。 认证器被配置为使得从第一密钥信息(NKey)生成第二密钥信息(HKey),但是不从第二密钥信息(HKey)生成第一密钥信息(NKey)。

    Authenticator
    33.
    发明授权
    Authenticator 有权
    认证者

    公开(公告)号:US08650393B2

    公开(公告)日:2014-02-11

    申请号:US13524417

    申请日:2012-06-15

    IPC分类号: H04L29/06

    摘要: According to one embodiment, a method for authenticating a device, wherein the device holds secret identification information, encrypted secret identification information, and key management information, and an authenticator holds an identification key, the method includes reading, by the authenticator, the encrypted secret identification information and the key management information from the device, and obtaining, by the authenticator, a family key by using the key management information, the family key being capable of being decrypted with the identification key. The method further includes obtaining, by the authenticator, the secret identification information by decrypting the encrypted secret identification information with the family key.

    摘要翻译: 根据一个实施例,一种用于认证设备的方法,其中所述设备保存秘密识别信息,加密的秘密识别信息和密钥管理信息,并且认证器保存识别密钥,所述方法包括由认证者读取加密的秘密 识别信息和密钥管理信息,并且由认证者通过使用密钥管理信息获得家庭密钥,家庭密钥能够用识别密钥解密。 该方法还包括通过用家庭密钥解密加密的秘密识别信息,由认证者获得秘密识别信息。

    Semiconductor storage device
    34.
    发明授权
    Semiconductor storage device 有权
    半导体存储设备

    公开(公告)号:US08634557B2

    公开(公告)日:2014-01-21

    申请号:US13524271

    申请日:2012-06-15

    IPC分类号: H04K1/00

    摘要: According to one embodiment, a device includes a storage and an authenticator. The storage includes a first area, a second area and a third area. The first area stores NKey and SecretID, the second area stores index information. E-SecretID is generated by SecretID. The third area stores FKB including information generated by FKey. The authenticator authenticates the external device. HKey is generated by an AES encryption calculating using NKey and HC. A SKey is generated by an AES encryption process using HKey and RN. A one-way conversion calculating is performed. E-SecretID, FKB and Oneway-ID are output to the external device. The index information is read from the second area.

    摘要翻译: 根据一个实施例,一种设备包括存储器和认证器。 存储器包括第一区域,第二区域和第三区域。 第一个区域存储NKey和SecretID,第二个区域存储索引信息。 E-SecretID由SecretID生成。 第三个区域存储FKB,包括FKey生成的信息。 验证器验证外部设备。 HKey由使用NKey和HC的AES加密计算产生。 通过使用HKey和RN的AES加密过程生成SKey。 执行单向转换计算。 E-SecretID,FKB和Oneway-ID被输出到外部设备。 从第二区域读取索引信息。

    DEVICE AND AUTHENTICATION METHOD THEREFOR
    37.
    发明申请
    DEVICE AND AUTHENTICATION METHOD THEREFOR 有权
    其设备和认证方法

    公开(公告)号:US20130145162A1

    公开(公告)日:2013-06-06

    申请号:US13524843

    申请日:2012-06-15

    IPC分类号: H04L9/32

    摘要: According to one embodiment, a device includes first and second data generator, a one-way function processor, and a data output interface. The first data generator generates a second key by encrypting a host constant with a first key in AES operation. The second data generator generates a session key by encrypting a random number with a second key in AES operation. The one-way function processor generates authentication information by processing secret identification information with the session key in one-way function operation. The data output interface outputs the encrypted secret identification information, a family key block, and the authentication information to outside of the device.

    摘要翻译: 根据一个实施例,设备包括第一和第二数据生成器,单向功能处理器和数据输出接口。 第一个数据生成器通过AES操作中的第一个密钥加密主机常数来生成第二个密钥。 第二数据生成器通过在AES操作中用第二密钥加密随机数生成会话密钥。 单向功能处理器通过在单向功能操作中通过会话密钥处理秘密识别信息来生成认证信息。 数据输出接口将加密的秘密识别信息,家庭密钥块和认证信息输出到设备外部。

    SEMICONDUCTOR STORAGE DEVICE
    38.
    发明申请
    SEMICONDUCTOR STORAGE DEVICE 有权
    半导体存储设备

    公开(公告)号:US20130142333A1

    公开(公告)日:2013-06-06

    申请号:US13524271

    申请日:2012-06-15

    IPC分类号: H04L9/00

    摘要: According to one embodiment, a device includes a storage and an authenticator. The storage includes a first area, a second area and a third area. The first area stores NKey and SecretID, the second area stores index information. E-SecretID is generated by SecretID. The third area stores FKB including information generated by FKey. The authenticator authenticates the external device. HKey is generated by an AES encryption calculating using NKey and HC. A SKey is generated by an AES encryption process using HKey and RN. A one-way conversion calculating is performed. E-SecretID, FKB and Oneway-ID are output to the external device. The index information is read from the second area.

    摘要翻译: 根据一个实施例,一种设备包括存储器和认证器。 存储器包括第一区域,第二区域和第三区域。 第一个区域存储NKey和SecretID,第二个区域存储索引信息。 E-SecretID由SecretID生成。 第三个区域存储FKB,包括FKey生成的信息。 验证器验证外部设备。 HKey由使用NKey和HC的AES加密计算产生。 通过使用HKey和RN的AES加密过程生成SKey。 执行单向转换计算。 E-SecretID,FKB和Oneway-ID被输出到外部设备。 从第二区域读取索引信息。

    Contents management method, contents management apparatus, and recording medium
    39.
    发明授权
    Contents management method, contents management apparatus, and recording medium 有权
    内容管理方法,内容管理装置和记录介质

    公开(公告)号:US07505584B2

    公开(公告)日:2009-03-17

    申请号:US11406396

    申请日:2006-04-19

    IPC分类号: H04L9/00

    摘要: An apparatus generates first shared information that is shared by the apparatus and a recording medium by performing a first bilateral authentication. The apparatus encrypts overwrite data that is used to erase key information item recorded in the recording medium using the first shared information. Encrypted overwrite data is transferred to the recording medium. Second shared information is generated and shared by the apparatus and the recording medium by performing a second bilateral authentication between them. The apparatus receives data that is encrypted using the second shared information and that has been used by the recording medium for erasing key information. Encrypted data is decrypted using second shared information item and key information recorded in the recording medium is erased when the decrypted data is identical to overwrite data.

    摘要翻译: 设备通过执行第一双向认证来生成由设备和记录介质共享的第一共享信息。 该装置使用第一共享信息加密用于擦除记录在记录介质中的密钥信息项的重写数据。 加密的覆盖数据被传送到记录介质。 通过在它们之间执行第二双向认证,由设备和记录介质生成和共享第二共享信息。 该装置接收使用第二共享信息进行加密并且已由记录介质使用的用于擦除密钥信息的数据。 使用第二共享信息项解密加密数据,并且当解密的数据与覆盖数据相同时,擦除记录在记录介质中的密钥信息。