METHODS AND APPARATUS FOR COMMUNICATION BETWEEN PROCESSING CIRCUITRY AND A PERIPHERAL DEVICE

    公开(公告)号:US20230385207A1

    公开(公告)日:2023-11-30

    申请号:US18249194

    申请日:2021-08-26

    Applicant: Arm Limited

    CPC classification number: G06F13/102 G06F21/44

    Abstract: Examples of the present disclosure relate to an apparatus comprising interface circuitry to interface with one or more peripheral devices, processing circuitry to execute software to communicate with a given peripheral device of the one or more peripheral devices, trusted execution environment circuitry communicatively coupled to the interface circuitry and the processing circuitry. The trusted execution circuitry is configured to: receive a transmission from one of the processing circuitry and the given peripheral device to the other one of the processing circuitry and the given peripheral device; and apply a control policy in respect of the received transmission and, based on the control policy, determine whether to forward the received transmission to said other one of the processing circuitry and the given peripheral device.

    DISTRIBUTED VERIFICATION OF ATTESTATION EVIDENCE

    公开(公告)号:US20240265083A1

    公开(公告)日:2024-08-08

    申请号:US18106750

    申请日:2023-02-07

    Applicant: Arm Limited

    CPC classification number: G06F21/44

    Abstract: A method to distribute verification of attestation evidence and a verifiable system are provided. Method includes receiving, at a secondary verifier operating in a verifiable system, a request from a relying party to perform a verification process with respect to attestation evidence of a device in communication with the relying party, communicating self-attestation evidence, by the secondary verifier, to a trusted verifier to generate an attestation report of the verifiable system, communicating the attestation report of the verifiable system or other indicator of trustworthiness to the relying party to indicate trustworthiness of the secondary verifier with respect to performing the verification process, and performing, by the secondary verifier, the verification process on the attestation evidence of the device in communication with the relying party. The verifiable system includes instructions of a secondary verifier stored and executed by the verifiable system to perform the method to distribute verification of attestation evidence.

    DRAINING OPERATION TO CAUSE STORE DATA TO BE WRITTEN TO PERSISTENT MEMORY

    公开(公告)号:US20220114102A1

    公开(公告)日:2022-04-14

    申请号:US17069057

    申请日:2020-10-13

    Applicant: Arm Limited

    Abstract: An apparatus comprises a write buffer to buffer store requests issued by the processing circuitry, prior to the store data being written to at least one cache. Draining circuitry detects a draining trigger event having potential to cause loss of state stored in the at least one cache. In response to the draining trigger event, the draining circuitry performs a draining operation to identify whether the write buffer buffers any committed store requests requiring persistence, and when the write buffer buffers at least one committed store request requiring persistence, to cause the store data associated with the at least one committed store request to be written to persistent memory. This helps to eliminate barrier instructions from software, simplifying persistent programming and improving performance.

    METHODS AND APPARATUS FOR MANAGING TRUSTED DEVICES

    公开(公告)号:US20230418930A1

    公开(公告)日:2023-12-28

    申请号:US17846214

    申请日:2022-06-22

    Applicant: Arm Limited

    CPC classification number: G06F21/53 G06F21/606 H04L9/3213 G06F2221/031

    Abstract: Aspects of the present disclosure relate to an apparatus comprising TEE circuitry configured to maintain a list of trusted devices, and interface circuitry to provide communication between the TEE of the apparatus and TEE circuitry of a device communicatively coupled to the apparatus. The TEE circuitry of the apparatus is configured to perform, with the TEE circuitry of the device, a remote attestation in respect of the TEE circuitry of the device. Responsive to a positive outcome of the remote attestation, the device is added to the list of trusted devices. The TEE of the apparatus receives, from the TEE circuitry of the device, an indication of one or more further devices which are trusted by the device, and adds said one or more further devices to the list of trusted devices.

    NETWORK SECURITY
    5.
    发明公开
    NETWORK SECURITY 审中-公开

    公开(公告)号:US20230300175A1

    公开(公告)日:2023-09-21

    申请号:US18042272

    申请日:2021-08-06

    Applicant: ARM LIMITED

    CPC classification number: H04L63/205

    Abstract: There is provided a network node coordinator system. Communication circuitry communicates, via a network, with one or more network nodes. Receive circuitry receives a global policy that describes a security policy to be applied across the network. Policy processing circuitry specialises the global policy and produces, for each of the one or more network nodes, an associated local policy specific to that network node. Transmit circuitry transmits, to each of the one or more network nodes, the associated local policy specific to that network node.

    DATA SECURITY
    6.
    发明申请

    公开(公告)号:US20220164458A1

    公开(公告)日:2022-05-26

    申请号:US17104718

    申请日:2020-11-25

    Applicant: Arm Limited

    Abstract: A data processing system is provided, which comprises receiving circuitry for receiving, from a requester, a request to use decrypted data obtained by decrypting encrypted data. Trusted execution circuitry provides a trusted execution environment. The trusted execution circuitry is configured to: securely store a policy, acquire a key within the trusted execution environment, where the key is associated with the decrypted or encrypted data, and respond to the request based on the policy and one or more characteristics of the requester.

Patent Agency Ranking