公开(公告)号：US11436343B2

公开(公告)日：2022-09-06

申请号：US16731123

申请日：2019-12-31

Applicant: Arm Limited

Inventor： Ehud Maor ,  Avi Shif ,  David Yellin ,  Ofir Drang

IPC: G06F21/60 ,  G06F16/2455 ,  H04L9/06 ,  G06F21/10

Abstract: Device, system, and method of policy enforcement for rich execution environment. An electronic device includes a Trusted Execution Environment (TEE), a Rich Execution Environment (REE), and a hardware-based secure sub-system which includes a cryptographic engine. The REE includes a cryptographic driver configured to initiate a request for TEE authorization to perform a particular cryptographic operation by the cryptographic engine on a data-item that is stored in a memory region that is accessible by the REE. The TEE includes a policies manager to determine whether the request from the REE is approved or rejected, and if approved, to inject data-items into the secure sub-system to enable performance of the requested cryptographic operation by the cryptographic engine.

公开(公告)号：US20210200882A1

公开(公告)日：2021-07-01

申请号：US16731123

申请日：2019-12-31

Applicant: Arm Limited

Inventor： Ehud Maor ,  Avi Shif ,  David Yellin ,  Ofir Drang

IPC: G06F21/60 ,  G06F16/2455 ,  G06F21/10 ,  H04L9/06

Abstract: Device, system, and method of policy enforcement for rich execution environment. An electronic device includes a Trusted Execution Environment (TEE), a Rich Execution Environment (REE), and a hardware-based secure sub-system which includes a cryptographic engine. The REE includes a cryptographic driver configured to initiate a request for TEE authorization to perform a particular cryptographic operation by the cryptographic engine on a data-item that is stored in a memory region that is accessible by the REE. The TEE includes a policies manager to determine whether the request from the REE is approved or rejected, and if approved, to inject data-items into the secure sub-system to enable performance of the requested cryptographic operation by the cryptographic engine.

公开(公告)号：US11030065B2

公开(公告)日：2021-06-08

申请号：US16190335

申请日：2018-11-14

Applicant: Arm Limited

Inventor： Kar-Lik Kasim Wong ,  Alessandro Renzi ,  Michael Weiner ,  Avi Shif ,  Oded Golombek

IPC: G06F11/277 ,  G06F7/58 ,  H04L9/00

Abstract: Aspects of the present disclosure relate to an apparatus comprising analogue circuitry comprising an entropy source, the entropy source being configured to provide a random output. The apparatus comprises first digital circuitry to receive the output of the entropy source and, based on said output, generate random numbers, and second digital circuitry to receive the output of the entropy source and, based on said output, generate random numbers, the second digital circuitry being a duplicate of the first digital circuitry. The apparatus comprises difference detection circuitry to determine a difference of operation between the first digital circuitry and the second digital circuitry. Each of the first digital circuitry and the second digital circuitry comprises entropy checking circuitry to check the entropy of the output of the entropy source.