-
公开(公告)号:US08042157B2
公开(公告)日:2011-10-18
申请号:US11465535
申请日:2006-08-18
申请人: Peter Bennett , Andrew Dellow
发明人: Peter Bennett , Andrew Dellow
IPC分类号: H04L29/00
CPC分类号: H04N21/443 , H04H60/23 , H04H60/80
摘要: A filter is arranged to selectively block or allow a data access command from an initiator according to whether the initiator is secure or insecure and whether a data source or destination being accessed is privileged or unprivileged. The data access command contains an identification of the initiator from which the data access command originated and an identification of the data source or destination being accessed. The security filter compares the initiator identification and data source or destination identification contained within the data access command with a list of those initiators defined as secure and a list of those data sources or destinations which are defined as unprivileged. The filter then blocks or allows the data access command signal according to a set of rules.
摘要翻译: 布置过滤器以根据启动器是安全的还是不安全的以及被访问的数据源或目的地是特权还是非特权来选择性地阻止或允许来自发起者的数据访问命令。 数据访问命令包含发起数据访问命令的启动器的标识以及所访问的数据源或目的地的标识。 安全过滤器将包含在数据访问命令中的启动器标识和数据源或目的地标识与定义为安全的那些启动器的列表以及被定义为无特权的那些数据源或目的地的列表进行比较。 然后,滤波器根据一组规则阻止或允许数据访问命令信号。
-
公开(公告)号:US07624442B2
公开(公告)日:2009-11-24
申请号:US10817148
申请日:2004-04-02
申请人: Andrew Dellow , Peter Bennett
发明人: Andrew Dellow , Peter Bennett
IPC分类号: G06F11/00
CPC分类号: G06F21/72 , G06F12/1441 , G06F21/57 , G06F2221/2105
摘要: A semiconductor integrated circuit includes a processor for executing application code from a memory and a verifier processor arranged to receive the application code via the same internal bus as the processor. The verifier processor performs a verification function to check that the application code is authentic. The verifier processor runs autonomously and cannot be spoofed as it receives the application code via the same internal bus as the main processor. An additional instruction monitor checks the code instructions from the CPU and also impairs the operation of the circuit unless the address of code requested is in a given range. The code is in the form of a linked list and the range is derived as a linked list table during a first check.
摘要翻译: 半导体集成电路包括用于从存储器执行应用代码的处理器和被布置为经由与处理器相同的内部总线接收应用代码的验证器处理器。 验证者处理器执行验证功能以检查应用代码是否可信。 验证者处理器自动运行,并且不能通过与主处理器相同的内部总线接收应用代码而被欺骗。 附加的指令监视器检查来自CPU的代码指令,并且还损害电路的操作,除非所请求的代码的地址在给定的范围内。 代码是链表的形式,并且在第一次检查期间将该范围派生为链表。
-
公开(公告)号:US20070200960A1
公开(公告)日:2007-08-30
申请号:US10575650
申请日:2003-10-16
申请人: Peter Bennett , Paul Elliott , Andrew Dellow
发明人: Peter Bennett , Paul Elliott , Andrew Dellow
IPC分类号: H04N5/38
CPC分类号: H04N21/44 , H04N7/165 , H04N21/26606 , H04N21/42623 , H04N21/6334
摘要: A semiconductor integrated circuit for the processing of conditional access television signals that includes an input interface for receiving encrypted television signals and an output interface for output of decrypted television signals. The semiconductor integrated circuit is provided with some functionality restricted in some way by preventing one or more hardware circuit elements from operating, such as an MPEG decoder, display engine, IO ports or main CPU. To enable the functionality, a subscriber must pay for a service and then receives an encrypted message broadcast to the semiconductor integrated circuit that is decrypted and instructs functionality to be turned on or off.
摘要翻译: 一种用于处理条件接收电视信号的半导体集成电路,包括用于接收加密的电视信号的输入接口和用于输出解密的电视信号的输出接口。 半导体集成电路具有通过防止一个或多个硬件电路元件操作(例如MPEG解码器,显示引擎,IO端口或主CPU)以某种方式受到限制的某些功能。 为了实现该功能,用户必须支付服务费用,然后接收加密的消息广播到被解密的半导体集成电路,并指示功能被打开或关闭。
-
公开(公告)号:US07698718B2
公开(公告)日:2010-04-13
申请号:US11461306
申请日:2006-07-31
申请人: Andrew Dellow , Peter Bennett
发明人: Andrew Dellow , Peter Bennett
CPC分类号: H04N7/1675 , H04L9/0891 , H04L9/3247 , H04L2209/56 , H04L2209/601 , H04N21/4181 , H04N21/43607 , H04N21/4405 , H04N21/8166
摘要: An integrated circuit restricts use of a data item and includes a data memory storing the data item; a value memory storing a value; a signature input that receives a signature derived from data in a data item field and a value in a value field, the signature being in a coded form; a decoding circuit that decodes the signature and outputs information representing the data in the data item field and the value in the value field; and a comparison circuit that receives the decoding circuit output, determines whether the information representing the data from the data item field corresponds to the stored data item and whether the information representing the value from the value field corresponds to the value stored in the value memory, and outputs a comparison signal according to the determinations. The circuit restricts the use of the data item according to the comparison signal.
摘要翻译: 集成电路限制数据项的使用,并且包括存储数据项的数据存储器; 存储值的值存储器; 签名输入,其接收从数据项字段中的数据和值字段中的值导出的签名,所述签名处于编码形式; 解码电路,对所述签名进行解码并输出表示所述数据项字段中的数据的信息和所述值字段中的值; 以及接收解码电路输出的比较电路,确定表示来自数据项字段的数据的信息是否对应于所存储的数据项,以及表示来自值字段的值的信息是否对应于存储在值存储器中的值, 并根据确定输出比较信号。 电路根据比较信号限制数据项的使用。
-
公开(公告)号:US20070180464A1
公开(公告)日:2007-08-02
申请号:US11461306
申请日:2006-07-31
申请人: Andrew Dellow , Peter Bennett
发明人: Andrew Dellow , Peter Bennett
CPC分类号: H04N7/1675 , H04L9/0891 , H04L9/3247 , H04L2209/56 , H04L2209/601 , H04N21/4181 , H04N21/43607 , H04N21/4405 , H04N21/8166
摘要: An integrated circuit restricts use of a data item and includes a data memory storing the data item; a value memory storing a value; a signature input that receives a signature derived from data in a data item field and a value in a value field, the signature being in a coded form; a decoding circuit that decodes the signature and outputs information representing the data in the data item field and the value in the value field; and a comparison circuit that receives the decoding circuit output, determines whether the information representing the data from the data item field corresponds to the stored data item and whether the information representing the value from the value field corresponds to the value stored in the value memory, and outputs a comparison signal according to the determinations. The circuit restricts the use of the data item according to the comparison signal.
摘要翻译: 集成电路限制数据项的使用,并且包括存储数据项的数据存储器; 存储值的值存储器; 签名输入,其接收从数据项字段中的数据和值字段中的值导出的签名,所述签名处于编码形式; 解码电路,对所述签名进行解码并输出表示所述数据项字段中的数据的信息和所述值字段中的值; 以及接收解码电路输出的比较电路,确定表示来自数据项字段的数据的信息是否对应于所存储的数据项,以及表示来自值字段的值的信息是否对应于存储在值存储器中的值, 并根据确定输出比较信号。 电路根据比较信号限制数据项的使用。
-
公开(公告)号:US20070103997A1
公开(公告)日:2007-05-10
申请号:US11465535
申请日:2006-08-18
申请人: Peter Bennett , Andrew Dellow
发明人: Peter Bennett , Andrew Dellow
IPC分类号: G11C7/00
CPC分类号: H04N21/443 , H04H60/23 , H04H60/80
摘要: A filter is arranged to selectively block or allow a data access command from an initiator according to whether the initiator is secure or insecure and whether a data source or destination being accessed is privileged or unprivileged. The data access command contains an identification of the initiator from which the data access command originated and an identification of the data source or destination being accessed. The security filter compares the initiator identification and data source or destination identification contained within the data access command with a list of those initiators defined as secure and a list of those data sources or destinations which are defined as unprivileged. The filter then blocks or allows the data access command signal according to a set of rules.
摘要翻译: 布置过滤器以根据启动器是安全的还是不安全的以及被访问的数据源或目的地是特权还是非特权来选择性地阻止或允许来自发起者的数据访问命令。 数据访问命令包含发起数据访问命令的启动器的标识以及所访问的数据源或目的地的标识。 安全过滤器将包含在数据访问命令中的启动器标识和数据源或目的地标识与定义为安全的那些启动器的列表以及被定义为无特权的那些数据源或目的地的列表进行比较。 然后,滤波器根据一组规则阻止或允许数据访问命令信号。
-
公开(公告)号:US09118961B2
公开(公告)日:2015-08-25
申请号:US13535162
申请日:2012-06-27
申请人: Peter Bennett , Paul Elliott , Andrew Dellow
发明人: Peter Bennett , Paul Elliott , Andrew Dellow
IPC分类号: H04N7/167 , H04N21/44 , H04N7/16 , H04N21/266
CPC分类号: H04N21/44 , H04N7/165 , H04N21/26606 , H04N21/42623 , H04N21/6334
摘要: A semiconductor integrated circuit for the processing of conditional access television signals that includes an input interface for receiving encrypted television signals and an output interface for output of decrypted television signals. The semiconductor integrated circuit is provided with some functionality restricted in some way by preventing one or more hardware circuit elements from operating, such as an MPEG decoder, display engine, IO ports or main CPU. To enable the functionality, a subscriber must pay for a service and then receives an encrypted message broadcast to the semiconductor integrated circuit that is decrypted and instructs functionality to be turned on or off.
摘要翻译: 一种用于处理条件接收电视信号的半导体集成电路,包括用于接收加密的电视信号的输入接口和用于输出解密的电视信号的输出接口。 半导体集成电路具有通过防止一个或多个硬件电路元件操作(例如MPEG解码器,显示引擎,IO端口或主CPU)以某种方式受到限制的某些功能。 为了实现该功能,用户必须支付服务费用,然后接收加密的消息广播到被解密的半导体集成电路,并指示功能被打开或关闭。
-
公开(公告)号:US20050028004A1
公开(公告)日:2005-02-03
申请号:US10817148
申请日:2004-04-02
申请人: Andrew Dellow , Peter Bennett
发明人: Andrew Dellow , Peter Bennett
CPC分类号: G06F21/72 , G06F12/1441 , G06F21/57 , G06F2221/2105
摘要: A semiconductor integrated circuit includes a processor for executing application code from a memory and a verifier processor arranged to receive the application code via the same internal bus as the processor. The verifier processor performs a verification function to check that the application code is authentic. The verifier processor runs autonomously and cannot be spoofed as it receives the application code via the same internal bus as the main processor. An additional instruction monitor checks the code instructions from the CPU and also impairs the operation of the circuit unless the address of code requested is in a given range. The code is in the form of a linked list and the range is derived as a linked list table during a first check.
摘要翻译: 半导体集成电路包括用于从存储器执行应用代码的处理器和被布置为经由与处理器相同的内部总线接收应用代码的验证器处理器。 验证者处理器执行验证功能以检查应用代码是否可信。 验证者处理器自动运行,并且不能通过与主处理器相同的内部总线接收应用代码而被欺骗。 附加的指令监视器检查来自CPU的代码指令,并且还损害电路的操作,除非所请求的代码的地址在给定的范围内。 代码是链表的形式,并且在第一次检查期间将该范围派生为链表。
-
公开(公告)号:US07889862B2
公开(公告)日:2011-02-15
申请号:US11523775
申请日:2006-09-18
申请人: Andrew Dellow , Peter Bennett , Rodrigo Cordero
发明人: Andrew Dellow , Peter Bennett , Rodrigo Cordero
IPC分类号: H04L9/00
CPC分类号: H04N7/162 , G06F12/1408 , H04H60/23 , H04N7/1675
摘要: A memory stores data in an encrypted form. A modifiable register stores a memory address, a0, defining a boundary separating the memory into two regions. The lower region stores data encrypted using a key B, and the upper region stores data encrypted using a different key A. Data stored on the boundary address is encrypted using key A. Accordingly, when data is read from a memory address a, key A is used to decrypt the data if a≧a0, and key B is used if a
摘要翻译: 内存以加密形式存储数据。 可修改的寄存器存储存储器地址a0,定义将存储器分为两个区域的边界。 下部区域存储使用密钥B加密的数据,上部区域存储使用不同的密钥A加密的数据。使用密钥A对存储在边界地址上的数据进行加密。因此,当从存储器地址a读取数据时,密钥A 如果a≥a0,则用于解密数据,如果a
-
公开(公告)号:US20050066354A1
公开(公告)日:2005-03-24
申请号:US10917253
申请日:2004-08-12
申请人: Andrew Dellow , Peter Bennett
发明人: Andrew Dellow , Peter Bennett
CPC分类号: G06F12/1483 , H04N21/443 , H04N21/4623
摘要: A privileged data table maintains a list of regions of a memory which contain privileged data. When a data access operation is attempted, a privilege rule enforcer compares the address of the memory being accessed to the list of privileged regions. If the memory address falls within a privileged region, then the memory access operation is blocked unless the instruction accessing the memory has been securely authorized by a code verifier. A privileged instruction table is provided to maintain a list of instructions stored in an instruction list that have been verified. When an instruction is fetched from the instruction list, an instruction privilege identifier compares the instruction with the list of verified instructions, and generates a signal indicating the privilege status of the instruction. Instructions are blocked according to the privilege signal. Only privileged instructions are allowed to modify the privileged data table and the privileged instruction table.
摘要翻译: 特权数据表维护包含特权数据的存储器的区域列表。 当尝试进行数据访问操作时,特权规则执行者将正在访问的内存的地址与特权区域列表进行比较。 如果存储器地址落在特权区域内,则存储器访问操作被阻止,除非访问存储器的指令已被代码验证者安全地授权。 提供特权指令表以维护存储在已被验证的指令列表中的指令的列表。 当从指令列表中取出指令时,指令特权标识符将指令与验证指令的列表进行比较,并产生指示指令的特权状态的信号。 根据特权信号阻止指令。 只允许特权指令修改特权数据表和特权指令表。
-
-
-
-
-
-
-
-
-
搜索结果
73 条记录 (耗时 0.018 秒)
