-
公开(公告)号:US07734915B2
公开(公告)日:2010-06-08
申请号:US11450418
申请日:2006-06-12
申请人: Brian Neill , Ashok Vadekar , Patrick Xu
发明人: Brian Neill , Ashok Vadekar , Patrick Xu
IPC分类号: H04L29/06
CPC分类号: G06F21/72 , H04L9/0897 , H04L63/062 , H04L2209/04 , H04L2209/60 , H04L2463/062
摘要: A system and method for remote device registration, to monitor and meter the injection of keying or other confidential information onto a device, is provided. A producer who utilizes one or more separate manufacturers, operates a remote module that communicates over forward and backward channels with a local module at the manufacturer. Encrypted data transmissions are sent by producer to the manufacturer and are decrypted to obtain sensitive data used in the devices. As data transmissions are decrypted, credits from a credit pool are depleted and can be replenished by the producer through credit instructions. As distribution images are decrypted, usage records are created and eventually concatenated, and sent as usage reports back to the producer, to enable the producer to monitor and meter production at the manufacturer.
摘要翻译: 提供了用于远程设备注册的系统和方法,用于监视和计量密钥或其他机密信息到设备上的注入。 使用一个或多个单独的制造商的生产商操作远程模块,其通过前向和后向通道与制造商的本地模块进行通信。 加密的数据传输由制造商发送给制造商,并被解密以获得在设备中使用的敏感数据。 当数据传输被解密时,来自信用卡的信用被用尽,并且可以通过信用指示由生产者补充。 随着分发图像被解密,创建使用记录并最终并入,并将其作为使用报告发送回制造商,以使制造商能够监视制造商的生产计量。
-
公开(公告)号:US20070021843A1
公开(公告)日:2007-01-25
申请号:US11450418
申请日:2006-06-12
申请人: Brian Neill , Ashok Vadekar , Patrick Xu
发明人: Brian Neill , Ashok Vadekar , Patrick Xu
IPC分类号: G05B15/00
CPC分类号: G06F21/72 , H04L9/0897 , H04L63/062 , H04L2209/04 , H04L2209/60 , H04L2463/062
摘要: A system and method for remote device registration, to monitor and meter the injection of keying or other confidential information onto a device, is provided. A producer who utilizes one or more separate manufacturers, operates a remote module that communicates over forward and backward channels with a local module at the manufacturer. Encrypted data transmissions are sent by producer to the manufacturer and are decrypted to obtain sensitive data used in the devices. As data transmissions are decrypted, credits from a credit pool are depleted and can be replenished by the producer through credit instructions. As distribution images are decrypted, usage records are created and eventually concatenated, and sent as usage reports back to the producer, to enable the producer to monitor and meter production at the manufacturer.
摘要翻译: 提供了用于远程设备注册的系统和方法,用于监视和计量密钥或其他机密信息到设备上的注入。 使用一个或多个单独的制造商的生产商操作远程模块,其通过前向和后向通道与制造商的本地模块进行通信。 加密的数据传输由制造商发送给制造商,并被解密以获得在设备中使用的敏感数据。 当数据传输被解密时,来自信用卡的信用被用尽,并且可以通过信用指示由生产者补充。 随着分发图像被解密,创建使用记录并最终并入,并将其作为使用报告发送回制造商,以使制造商能够监视制造商的生产计量。
-
公开(公告)号:US08423765B2
公开(公告)日:2013-04-16
申请号:US12767957
申请日:2010-04-27
申请人: Brian Neill , Ashok Vadekar , Patrick Xu
发明人: Brian Neill , Ashok Vadekar , Patrick Xu
IPC分类号: H04L29/06
CPC分类号: G06F21/72 , H04L9/0897 , H04L63/062 , H04L2209/04 , H04L2209/60 , H04L2463/062
摘要: A system and method for remote device registration, to monitor and meter the injection of keying or other confidential information onto a device, is provided. A producer who utilizes one or more separate manufacturers, operates a remote module that communicates over forward and backward channels with a local module at the manufacturer. Encrypted data transmissions are sent by producer to the manufacturer and are decrypted to obtain sensitive data used in the devices. As data transmissions are decrypted, credits from a credit pool are depleted and can be replenished by the producer through credit instructions. As distribution images are decrypted, usage records are created and eventually concatenated, and sent as usage reports back to the producer, to enable the producer to monitor and meter production at the manufacturer.
-
公开(公告)号:US08566791B2
公开(公告)日:2013-10-22
申请号:US11418462
申请日:2006-05-05
申请人: Ashok Vadekar , Brian Neill
发明人: Ashok Vadekar , Brian Neill
IPC分类号: G06F9/44
CPC分类号: G06F21/57 , G06F21/572 , G06F21/79 , G06F2221/2129
摘要: The present invention provides an inexpensive, software-based security-retrofit solution to verify the integrity of program code in embedded systems, or accessories, without resorting to expensive hardware changes. All unused memory on an accessory that could be used to store a program code image is filled with random data. A host system also locally stores a copy of the accessory's program image containing the random data. The host system sends the accessory a list of memory addresses or memory ranges on the accessory, which is always different and random in nature. The accessory will then produce a digest using values stored in the memory addresses as inputs to a secure hash function. The host system verifies the integrity of the embedded program code by verifying the resulting digest produced by and returned from the accessory.
摘要翻译: 本发明提供了一种廉价的基于软件的安全改进解决方案,用于在不诉诸昂贵的硬件改变的情况下验证嵌入式系统或附件中的程序代码的完整性。 可用于存储程序代码图像的附件上的所有未使用的内存都填充有随机数据。 主机系统还在本地存储包含随机数据的附件的节目图像的副本。 主机系统向附件发送附件上的存储器地址或存储器范围列表,该列表本质上是随机的。 然后,附件将使用存储在存储器地址中的值作为安全散列函数的输入来生成摘要。 主机系统通过验证由附件生成和返回的结果摘要来验证嵌入式程序代码的完整性。
-
公开(公告)号:US20100312791A1
公开(公告)日:2010-12-09
申请号:US12859032
申请日:2010-08-18
申请人: Brian Neill , Ashok Vadekar
发明人: Brian Neill , Ashok Vadekar
IPC分类号: G06F17/30
CPC分类号: D04H13/003 , G06F21/6209 , G06F21/64 , G06F21/70 , G06F21/84 , G06F2221/2101 , G06F2221/2129 , G11B20/0021
摘要: A partial revocation list and a system and method for using the partial revocation list for tracking the authenticity of replacement cartridges in a manufactured device to inhibit cloning of the cartridges is provided. A revocation pool is maintained by a manufacturer who chooses a partial revocation list from the revocation pool to store in the memory of the cartridge. The device stores its own revocation list, informs the manufacturer of cartridges which have been used and checks when a new device is installed to ensure a cloned replacement is not being used. The partial revocation list distributes enough revocation information to devices to statistically impair the cartridge yield of a cloning operation.
摘要翻译: 提供了部分撤销列表以及用于使用部分撤销列表跟踪制造的装置中替换盒的真实性以禁止克隆盒的系统和方法。 撤销池由制造商维护,该制造商从撤销池中选择部分撤销列表以存储在存储器的存储器中。 设备存储其自己的撤销列表,通知制造商已经使用的盒式磁带,并在安装新设备时检查,以确保克隆的更换不被使用。 部分撤销列表向设备分配足够的撤销信息以统计地损害克隆操作的盒产量。
-
公开(公告)号:US20080044026A1
公开(公告)日:2008-02-21
申请号:US11711865
申请日:2007-02-28
申请人: Anthony Walters , Brian Neill , Tony Rosati , Ashok Vadekar , Daniel O'Loughlin
发明人: Anthony Walters , Brian Neill , Tony Rosati , Ashok Vadekar , Daniel O'Loughlin
CPC分类号: H04L63/062 , G06F21/602 , G06F21/72 , G06Q10/101 , H04L9/085
摘要: A system and method for controlling a production process for producing a product is provided in which overproduction may be inhibited by introducing a separation of duties within a production process. Typically a producer will contract out the various stages of a production process to multiple contractors. In general, separation of duties involves purposefully separating production stages, for silicon chips or other products, so that the end product has been handled or “touched”, by each subcontractor, in order for the end product to be fully functional.
摘要翻译: 提供了一种用于控制生产产品的生产过程的系统和方法,其中可以通过在生产过程中引入任务分离来抑制过量生产。 通常,生产者将将生产过程的各个阶段合同到多个承包商。 一般来说,职责分工有目的地将生产阶段,硅片或其他产品分开,以便最终产品被每个分包商处理或“触及”,以使最终产品完全起作用。
-
公开(公告)号:US20070156638A1
公开(公告)日:2007-07-05
申请号:US11418462
申请日:2006-05-05
申请人: Ashok Vadekar , Brian Neill
发明人: Ashok Vadekar , Brian Neill
IPC分类号: G06F7/00
CPC分类号: G06F21/57 , G06F21/572 , G06F21/79 , G06F2221/2129
摘要: The present invention provides an inexpensive, software-based security-retrofit solution to verify the integrity of program code in embedded systems, or accessories, without resorting to expensive hardware changes. All unused memory on an accessory that could be used to store a program code image is filled with random data. A host system also locally stores a copy of the accessory's program image containing the random data. The host system sends the accessory a list of memory addresses or memory ranges on the accessory, which is always different and random in nature. The accessory will then produce a digest using values stored in the memory addresses as inputs to a secure hash function. The host system verifies the integrity of the embedded program code by verifying the resulting digest produced by and returned from the accessory.
摘要翻译: 本发明提供了一种廉价的基于软件的安全改进解决方案,用于在不诉诸昂贵的硬件改变的情况下验证嵌入式系统或附件中的程序代码的完整性。 可用于存储程序代码图像的附件上的所有未使用的内存都填充有随机数据。 主机系统还在本地存储包含随机数据的附件的节目图像的副本。 主机系统向附件发送附件上的存储器地址或存储器范围列表,该列表本质上是随机的。 然后,附件将使用存储在存储器地址中的值作为安全散列函数的输入来生成摘要。 主机系统通过验证由附件生成和返回的结果摘要来验证嵌入式程序代码的完整性。
-
公开(公告)号:US20060161571A1
公开(公告)日:2006-07-20
申请号:US11304825
申请日:2005-12-16
申请人: Brian Neill , Ashok Vadekar
发明人: Brian Neill , Ashok Vadekar
IPC分类号: G06F17/00
CPC分类号: D04H13/003 , G06F21/6209 , G06F21/64 , G06F21/70 , G06F21/84 , G06F2221/2101 , G06F2221/2129 , G11B20/0021
摘要: A partial revocation list and a system and method for using the partial revocation list for tracking the authenticity of replacement cartridges in a manufactured device to inhibit cloning of the cartridges is provided. A revocation pool is maintained by a manufacturer who chooses a partial revocation list from the revocation pool to store in the memory of the cartridge. The device stores its own revocation list, informs the manufacturer of cartridges which have been used and checks when a new device is installed to ensure a cloned replacement is not being used. The partial revocation list distributes enough revocation information to devices to statistically impair the cartridge yield of a cloning operation.
-
公开(公告)号:US09121119B2
公开(公告)日:2015-09-01
申请号:US12859032
申请日:2010-08-18
申请人: Brian Neill , Ashok Vadekar
发明人: Brian Neill , Ashok Vadekar
CPC分类号: D04H13/003 , G06F21/6209 , G06F21/64 , G06F21/70 , G06F21/84 , G06F2221/2101 , G06F2221/2129 , G11B20/0021
摘要: A partial revocation list and a system and method for using the partial revocation list for tracking the authenticity of replacement cartridges in a manufactured device to inhibit cloning of the cartridges is provided. A revocation pool is maintained by a manufacturer who chooses a partial revocation list from the revocation pool to store in the memory of the cartridge. The device stores its own revocation list, informs the manufacturer of cartridges which have been used and checks when a new device is installed to ensure a cloned replacement is not being used. The partial revocation list distributes enough revocation information to devices to statistically impair the cartridge yield of a cloning operation.
摘要翻译: 提供了部分撤销列表以及用于使用部分撤销列表跟踪制造的装置中替换盒的真实性以禁止克隆盒的系统和方法。 撤销池由制造商维护,该制造商从撤销池中选择部分撤销列表以存储在存储器的存储器中。 设备存储其自己的撤销列表,通知制造商已经使用的盒式磁带,并在安装新设备时检查,以确保克隆的更换不被使用。 部分撤销列表向设备分配足够的撤销信息以统计地损害克隆操作的盒产量。
-
公开(公告)号:US20120131322A1
公开(公告)日:2012-05-24
申请号:US13357411
申请日:2012-01-24
申请人: Keelan Smith , Scott A. Vanstone , Daniel R. Brown , Darryl L. Parisien , Ashok Vadekar , Brian Neill
发明人: Keelan Smith , Scott A. Vanstone , Daniel R. Brown , Darryl L. Parisien , Ashok Vadekar , Brian Neill
CPC分类号: G06F21/575 , G06F21/73 , G06F2221/2109 , G07F17/32 , G07F17/323 , G07F17/3241 , H04L9/3247 , H04L63/0428 , H04L63/0823 , H04L2209/60 , H04L2463/101
摘要: A method and system are provided for authenticating and securing an embedded device using a secure boot procedure and a full non-volatile memory encryption process that implements Elliptic Curve Pinstov-Vanstone Signature (ECPV) scheme with message recovery on a personalized BIOS and master boot record. The signature includes code that is recovered in order to unlock a key that is in turn used to decrypt the non-volatile memory. The use of ECPVS provides an implicit verification that the hardware is bound to the BIOS since the encrypted memory is useless unless properly decrypted with the proper key.
摘要翻译: 提供了一种方法和系统,用于使用安全引导过程和完整的非易失性存储器加密处理来验证和保护嵌入式设备,所述完整非易失性存储器加密处理在个性化BIOS和主引导记录上实现具有消息恢复的椭圆曲线Pinstov-Vanstone签名(ECPV)方案 。 签名包括恢复的代码,以便解锁一个依次用于解密非易失性存储器的密钥。 使用ECPVS提供了硬件绑定到BIOS的隐含验证,因为加密的内存是无用的,除非使用适当的密钥进行正确的解密。
-
-
-
-
-
-
-
-
-
搜索结果
44 条记录 (耗时 0.017 秒)
