公开(公告)号：US20210103682A1

公开(公告)日：2021-04-08

申请号：US17020486

申请日：2020-09-14

Applicant: Intel Corporation

Inventor： Shay Gueron ,  Siddhartha Chhabra ,  Nadav Bonen

IPC: G06F21/79 ,  G06F21/75 ,  G06F21/76 ,  G06F12/14

Abstract: System and techniques for multi-tenant cryptographic memory isolation are described herein. A multiple key total memory encryption (MKTME) circuitry may receive a read request for encrypted memory. Here, the read request may include an encrypted memory address that itself includes a sequence of keyid bits and physical address bits. The MKTME circuitry may retrieve a keyid-nonce from a key table using the keyid bits. The MKTME circuitry may construct a tweak from the keyid-nonce, the keyid bits, and the physical address bits. The MKTME circuitry may then decrypt data specified by the read request using the tweak and a common key.

公开(公告)号：US10581590B2

公开(公告)日：2020-03-03

申请号：US14984637

申请日：2015-12-30

Applicant: Intel Corporation

Inventor： Shay Gueron ,  Wajdi K Feghali ,  Vinodh Gopal ,  Raghunandan Makaram ,  Martin G Dixon ,  Srinivas Chennupaty ,  Michael E Kounavis

IPC: H04L9/28 ,  G06F21/72 ,  H04L9/06 ,  G06F9/30 ,  G06F9/38 ,  H04L9/08 ,  G06F12/14 ,  G06F21/60 ,  G06F12/0875 ,  G06F12/0862 ,  G11C7/10 ,  G06F3/06

Abstract: A flexible aes instruction set for a general purpose processor is provided. The instruction set includes instructions to perform a “one round” pass for aes encryption or decryption and also includes instructions to perform key generation. An immediate may be used to indicate round number and key size for key generation for 128/192/256 bit keys. The flexible aes instruction set enables full use of pipelining capabilities because it does not require tracking of implicit registers.

公开(公告)号：US10567161B2

公开(公告)日：2020-02-18

申请号：US15639936

申请日：2017-06-30

Applicant: INTEL CORPORATION

Inventor： Shay Gueron ,  Wajdi K. Feghali ,  Vinodh Gopal

IPC: G06F21/00 ,  H04L9/06 ,  G06F9/30 ,  G06F21/60 ,  H04L9/14

Abstract: A flexible aes instruction for a general purpose processor is provided that performs aes encryption or decryption using n rounds, where n includes the standard aes set of rounds {10, 12, 14}. A parameter is provided to allow the type of aes round to be selected, that is, whether it is a “last round”. In addition to standard aes, the flexible aes instruction allows an AES-like cipher with 20 rounds to be specified or a “one round” pass.

公开(公告)号：US10560258B2

公开(公告)日：2020-02-11

申请号：US15639964

申请日：2017-06-30

Applicant: INTEL CORPORATION

Inventor： Shay Gueron ,  Wajdi K. Feghali ,  Vinodh Gopal

IPC: H04L9/06 ,  H04L9/14 ,  G06F21/60

Abstract: A flexible aes instruction for a general purpose processor is provided that performs aes encryption or decryption using n rounds, where n includes the standard aes set of rounds {10, 12, 14}. A parameter is provided to allow the type of aes round to be selected, that is, whether it is a “last round”. In addition to standard aes, the flexible aes instruction allows an AES-like cipher with 20 rounds to be specified or a “one round” pass.

公开(公告)号：US10554387B2

公开(公告)日：2020-02-04

申请号：US14947944

申请日：2015-11-20

Applicant: INTEL CORPORATION

Inventor： Shay Gueron ,  Wajdi K. Feghali ,  Vinodh Gopal

IPC: H04L9/06 ,  H04L9/14 ,  G06F21/60

Abstract: A flexible aes instruction for a general purpose processor is provided that performs aes encryption or decryption using n rounds, where n includes the standard aes set of rounds {10, 12, 14}. A parameter is provided to allow the type of aes round to be selected, that is, whether it is a “last round”. In addition to standard aes, the flexible aes instruction allows an AES-like cipher with 20 rounds to be specified or a “one round” pass.

公开(公告)号：US10514912B2

公开(公告)日：2019-12-24

申请号：US16133269

申请日：2018-09-17

Applicant: Intel Corporation

Inventor： Shay Gueron ,  Vlad Krasnov ,  Robert Valentine ,  Zeev Sperber ,  Amit Gradstein ,  Simon Rubanovich

IPC: G06F9/30 ,  G06F7/52

Abstract: An apparatus is described having an instruction execution pipeline that has a vector functional unit to support a vector multiply add instruction. The vector multiply add instruction to multiply respective K bit elements of two vectors and accumulate a portion of each of their respective products with another respective input operand in an X bit accumulator, where X is greater than K.

公开(公告)号：US10447468B2

公开(公告)日：2019-10-15

申请号：US16147646

申请日：2018-09-29

Applicant: Intel Corporation

Inventor： Shay Gueron ,  Vlad Krasnov

IPC: H04L29/06 ,  H04L9/06 ,  G06F9/30 ,  G06F21/60

Abstract: A processor of an aspect includes a plurality of packed data registers, and a decode unit to decode an instruction. The instruction is to indicate one or more source packed data operands. The one or more source packed data operands are to have four 32-bit results of four prior SM4 cryptographic rounds, and four 32-bit values. The processor also includes an execution unit coupled with the decode unit and the plurality of the packed data registers. The execution unit, in response to the instruction, is to store four 32-bit results of four immediately subsequent and sequential SM4 cryptographic rounds in a destination storage location that is to be indicated by the instruction.

公开(公告)号：US10432393B2

公开(公告)日：2019-10-01

申请号：US15639941

申请日：2017-06-30

Applicant: INTEL CORPORATION

Inventor： Shay Gueron ,  Wajdi K. Feghali ,  Vinodh Gopal

IPC: G06F21/00 ,  H04L9/06 ,  G06F21/60 ,  H04L9/14 ,  G06F9/30

Abstract: A flexible aes instruction for a general purpose processor is provided that performs aes encryption or decryption using n rounds, where n includes the standard aes set of rounds {10, 12, 14}. A parameter is provided to allow the type of aes round to be selected, that is, whether it is a “last round”. In addition to standard aes, the flexible aes instruction allows an AES-like cipher with 20 rounds to be specified or a “one round” pass.

公开(公告)号：US20190102577A1

公开(公告)日：2019-04-04

申请号：US15720360

申请日：2017-09-29

Applicant: Intel Corporation

Inventor： Shay Gueron ,  Siddhartha Chhabra ,  Nadav Bonen

IPC: G06F21/79 ,  G06F21/76 ,  G06F21/75

Abstract: System and techniques for multi-tenant cryptographic memory isolation are described herein. A multiple key total memory encryption (MKTME) circuitry may receive a read request for encrypted memory. Here, the read request may include an encrypted memory address that itself includes a sequence of keyid bits and physical address bits. The MKTME circuitry may retrieve a keyid-nonce from a key table using the keyid bits. The MKTME circuitry may construct a tweak from the keyid-nonce, the keyid bits, and the physical address bits. The MKTME circuitry may then decrypt data specified by the read request using the tweak and a common key.

公开(公告)号：US10248486B2

公开(公告)日：2019-04-02

申请号：US15279697

申请日：2016-09-29

Applicant: Intel Corporation

Inventor： Rodrigo R. Branco ,  Shay Gueron

IPC: G06F11/07 ,  G06F21/50 ,  G06F9/4401

Abstract: Various systems and methods for providing a memory monitor are provided herein. An integrated circuit and memory are disposed in a computer system. The integrated circuit to monitor main memory includes: a detection circuit to detect that the computer system enters a sleep state; a test circuit to test for the presence of the main memory; and a recovery circuit to perform a recovery process when the test fails.