公开(公告)号：US09690922B2

公开(公告)日：2017-06-27

申请号：US14673086

申请日：2015-03-30

Applicant: Broadcom Corporation

Inventor： Mark Buer ,  Weiyang Zhou ,  Kunyan Liu ,  Jaku Jose

IPC: G06F21/34 ,  G06F21/71 ,  G06F3/06 ,  G06F21/79 ,  G06F21/64 ,  G06F12/14

CPC classification number: G06F21/34 ,  G06F3/0622 ,  G06F3/0625 ,  G06F3/0653 ,  G06F3/0679 ,  G06F12/1433 ,  G06F21/64 ,  G06F21/71 ,  G06F21/79 ,  G06F2206/1014

Abstract: Embodiments of the present disclosure generally relate to a system, apparatus, and method for providing anti-replay protection of data stored in a non-volatile memory device. Some embodiments describe an anti-replay protection (ARP) device that may protect an external non-volatile memory device from replay attacks.

公开(公告)号：US20160078435A1

公开(公告)日：2016-03-17

申请号：US14954037

申请日：2015-11-30

Applicant: Broadcom Corporation

Inventor： Edward H. Frank ,  Mark Buer ,  Jeyhan Karaoguz

IPC: G06Q20/38 ,  G06Q20/32

CPC classification number: H04W12/06 ,  G06Q20/3229 ,  G06Q20/3829 ,  H04B1/3816 ,  H04L63/0853 ,  H04W4/12 ,  H04W12/02

Abstract: Methods and systems are provided that use smartcards, such as subscriber identity module (SIM) cards to provide secure functions for a mobile client. One embodiment of the invention provides a mobile communication network system that includes a mobile network, a mobile terminal, a server coupled to the mobile terminal via the mobile network, and a subscriber identity module (SIM) card coupled to the mobile terminal. The SIM card includes a first key and a second key. The first key is used to authenticate an intended user of the mobile terminal to the mobile network. Upon successful authentication of the intended user to the mobile network, the mobile terminal downloads a function offered from the server through the mobile network. The second key is then used by the mobile terminal to authenticate the intended user to the downloaded function so that the intended user can utilize the function.

公开(公告)号：US20150205735A1

公开(公告)日：2015-07-23

申请号：US14609046

申请日：2015-01-29

Applicant: Broadcom Corporation

Inventor： Mark Buer

IPC: G06F13/16

CPC classification number: G06F13/1663 ,  G06F13/00 ,  G06F13/16 ,  G06F2213/0038 ,  Y02D10/14

Abstract: One or more methods and systems of sharing an external memory between functional modules of an integrated circuit chip are presented. The invention provides a system and method of reducing the amount of off-chip memory utilized by one or more integrated circuit chips. In one embodiment, a method for sharing an off-chip memory among one or more on-chip functional modules comprises arbitrating the communication of data between one or more on-chip functional modules and the off-chip memory. In one embodiment, the arbitration is facilitated by using an internal data bus that is controlled by a bus arbiter control unit. In one embodiment, a system for sharing an off-chip memory between functional modules of an integrated circuit comprises a security processing module, a media access controller module, a data interface, and a data bus.

Abstract translation: 提出了在集成电路芯片的功能模块之间共享外部存储器的一种或多种方法和系统。 本发明提供一种减少由一个或多个集成电路芯片利用的片外存储器的量的系统和方法。 在一个实施例中，一种用于在一个或多个片上功能模块之间共享片外存储器的方法包括：对一个或多个片上功能模块和片外存储器之间的数据通信进行仲裁。 在一个实施例中，通过使用由总线仲裁器控制单元控制的内部数据总线来促进仲裁。 在一个实施例中，用于在集成电路的功能模块之间共享片外存储器的系统包括安全处理模块，媒体访问控制器模块，数据接口和数据总线。

公开(公告)号：US08929544B2

公开(公告)日：2015-01-06

申请号：US13853880

申请日：2013-03-29

Applicant: Broadcom Corporation

Inventor： Mark Buer ,  Zheng Qi

IPC: H04L9/00 ,  H04L9/08 ,  G06F21/60 ,  H04L9/32

CPC classification number: H04L63/0428 ,  G06F21/602 ,  H04L9/0822 ,  H04L9/083 ,  H04L9/3228 ,  H04L9/3234 ,  H04L63/061

Abstract: A method and system for secure and scalable key management for cryptographic processing of data is described herein. In the method, a General Purpose Cryptographic Engine (GPE) receives key material via a secure channel from a key server and stores the received Key encryption keys (KEKs) and/or plain text keys in a secure key cache. When a request is received from a host to cryptographically process a block of data, the requesting entity is authenticated using an authentication tag included in the request. The GPE retrieves a plaintext key or generate a plaintext using a KEK if the authentication is successful, cryptographically processes the data using the plaintext key and transmits the processed data. The system includes a key server that securely provides encrypted keys and/or key handles to a host and key encryption keys and/or plaintext keys to the GPE.

Abstract translation: 本文描述了用于数据的密码处理的用于安全和可扩展的密钥管理的方法和系统。 在该方法中，通用密码引擎（GPE）通过密钥服务器的安全通道接收密钥资料，并将接收到的密钥加密密钥（KEK）和/或纯文本密钥存储在安全密钥缓存中。 当从主机接收到加密处理数据块的请求时，请求实体使用包含在请求中的认证标签进行认证。 如果认证成功，则GPE检索明文密钥或使用KEK生成明文，使用明文密钥加密处理数据并发送处理的数据。 该系统包括安全地向主机提供加密密钥和/或密钥句柄的密钥服务器以及GPE的密钥加密密钥和/或明文密钥。

公开(公告)号：US20140310826A1

公开(公告)日：2014-10-16

申请号：US14317359

申请日：2014-06-27

Applicant: Broadcom Corporation

Inventor： Kambiz RAHIMI ,  Mark Buer ,  Rolando Ogot

IPC: G06F21/87

CPC classification number: G06F21/87 ,  G06F21/86 ,  G09C1/00 ,  H04L9/0618 ,  H04L2209/12 ,  H04L2209/127

Abstract: A mesh grid protection system is provided. The system includes assertion logic configured to transmit a first set of signals on a first set of grid lines and a second set of grid. lines. The system also includes transformation logic to transform the first set of signals to generate a second set of signals, to transmit the second set of signals on a third set of grid lines that are coupled to the first set of grid lines, and to transmit the second set of signals on a fourth set of grid lines that are coupled to the second set of grid lines. In addition, the system includes verification logic; to compare the second set of signals on the third and fourth set of grid lines to an expected set of signals.

Abstract translation: 提供网格保护系统。 该系统包括被配置为在第一组网格线和第二组网格上发送第一组信号的断言逻辑。 线条。 该系统还包括变换逻辑以变换第一组信号以产生第二组信号，以将第二组信号传输到耦合到第一组网格线的第三组网格线上，并且传输 耦合到第二组网格线的第四组网格线上的第二组信号。 另外，系统包括验证逻辑; 将第三组和第四组网格线上的第二组信号与期望的一组信号进行比较。

公开(公告)号：US08776260B2

公开(公告)日：2014-07-08

申请号：US13626394

申请日：2012-09-25

Applicant: Broadcom Corporation

Inventor： Kambiz Rahimi ,  Mark Buer ,  Rolando Ogot

IPC: G06F21/00 ,  G06F21/86

CPC classification number: G06F21/87 ,  G06F21/86 ,  G09C1/00 ,  H04L9/0618 ,  H04L2209/12 ,  H04L2209/127

Abstract: A mesh grid protection system is provided. The system includes grid lines forming a mesh grid proximate to operational logic and assertion logic configured to transmit a first set of signals on a first set of grid lines. The system also includes transformation logic coupled to the grid lines and configured to receive the first set of signals and transform the first set of signals to generate a second set of signals and transmit the second set of signals on a second set of grid lines. The system further includes verification logic coupled to the transformation logic and configured to compare the second set of signals to an expected set of signals.

Abstract translation: 提供网格保护系统。 该系统包括形成接近操作逻辑的网格网格和被配置为在第一组网格线上传送第一组信号的断言逻辑的网格线。 该系统还包括耦合到网格线并且被配置为接收第一组信号并且变换第一组信号以产生第二组信号并且在第二组网格线上发送第二组信号的变换逻辑。 该系统还包括耦合到变换逻辑并被配置为将第二组信号与期望的一组信号进行比较的验证逻辑。

公开(公告)号：US08711824B2

公开(公告)日：2014-04-29

申请号：US13713709

申请日：2012-12-13

Applicant: Broadcom Corporation

Inventor： Mark Buer ,  Arya Behzad ,  Jeyhan Karaoguz ,  Alexander MacInnis ,  Thomas Quigley ,  John Walley

IPC: H04L12/28 ,  H04W4/00 ,  G06F15/16

CPC classification number: H04L65/601 ,  G09G5/005 ,  H04L65/60 ,  H04L2463/101 ,  H04W12/08 ,  H04W84/12 ,  H04W84/18

Abstract: A handheld wireless communication device (HWCD) establishes an ad hoc network comprising interconnected networks for a user. The HWCD gains access to content on a first device and controls communication of the content from the first device via the HWCD to a second device. The HWCD enables the second device to consume the content. The content may be streamed from the first device via the HWCD to the second device. The first device is a service provider network device or other network device. The access may be authenticated and/or secure. Secure access to the content is extended from the first device to the second device. The ad hoc network is configured and/or reconfigured until communication is complete. The HWCD comprises multiple wireless interfaces. The ad hoc network comprises a PAN, WLAN, WAN and/or cellular network. The HWCD may hand-off among base stations during communication of the content.

Abstract translation: 手持无线通信设备（HWCD）建立包括用户的互连网络的自组织网络。 HWCD获得对第一设备上的内容的访问，并且控制内容从第一设备经由HWCD到第二设备的通信。 HWCD使第二个设备能够使用内容。 内容可以从第一设备经由HWCD流传输到第二设备。 第一设备是服务提供商网络设备或其他网络设备。 访问可以被认证和/或安全。 对内容的安全访问从第一个设备扩展到第二个设备。 ad hoc网络被配置和/或重新配置直到通信完成。 HWCD包括多个无线接口。 该自组织网络包括PAN，WLAN，WAN和/或蜂窝网络。 在通信内容时，HWCD可能会在基站之间切换。

公开(公告)号：US20130344808A1

公开(公告)日：2013-12-26

申请号：US14011416

申请日：2013-08-27

Applicant: BROADCOM CORPORATION

Inventor： Dave Murray ,  Charles Abraham ,  Mark Buer ,  David Garrett ,  Jeyhan Karaoguz ,  David Lundgren

IPC: H04B5/00

CPC classification number: H04B5/0062 ,  G01S5/02 ,  H04W4/023 ,  H04W4/80 ,  H04W8/08

Abstract: A mobile device may be operable to determine, based on a known location of the mobile device, a location for a RF communication device that communicates with the mobile device, whenever the mobile device is within proximate range of the RF communication device. The determined location for the RF communication device may be stored in a location database in a location server and/or a memory in the RF communication device. The stored location of the RF communication device may then be used to determine a location for other mobile devices that may communicate with the RF communication device and are within proximate range of the RF communication device. The RF communication device may comprise a radio-frequency identification (RFID) device and/or a near field communication (NFC) device. The determined location for the RF communication device may comprise the known location of the mobile device.

Abstract translation: 每当移动设备处于RF通信设备的接近范围内时，移动设备可操作以基于移动设备的已知位置来确定与移动设备进行通信的RF通信设备的位置。 RF通信设备的确定位置可以存储在RF通信设备中的位置服务器和/或存储器中的位置数据库中。 然后可以将RF通信设备的存储位置用于确定可以与RF通信设备通信并且在RF通信设备的接近范围内的其他移动设备的位置。 RF通信设备可以包括射频识别（RFID）设备和/或近场通信（NFC）设备。 用于RF通信设备的确定位置可以包括移动设备的已知位置。

公开(公告)号：US20130262491A1

公开(公告)日：2013-10-03

申请号：US13903606

申请日：2013-05-28

Applicant: BROADCOM CORPORATION

Inventor： Alexander MacInnis ,  Arya Behzad ,  Mark Buer ,  Jeyhan Karaoguz ,  Thomas Quigley ,  John Walley

IPC: G06F17/30

CPC classification number: G06F17/30598 ,  A61B3/112 ,  A61B3/113 ,  A61B5/002 ,  A61B5/0022 ,  A61B5/0024 ,  A61B5/02055 ,  A61B5/024 ,  A61B5/0402 ,  A61B5/0476 ,  A61B5/0488 ,  A61B5/0531 ,  A61B5/0816 ,  A61B5/1112 ,  A61B5/117 ,  A61B5/16 ,  A61B5/165 ,  A61B5/4803 ,  A61B5/681 ,  A61B5/6814 ,  G01D9/005 ,  G01D21/00 ,  G06F17/30377 ,  G06F17/30914 ,  G06F19/00 ,  G06K9/00892 ,  G06K9/00979 ,  H04L63/0861 ,  H04M1/7253 ,  H04M1/72569 ,  H04M2250/10 ,  H04M2250/12 ,  H04W12/06 ,  H04W88/02

Abstract: A system and method is provided for processing and storing captured data in a wireless communication device based on detected biometric event data. The captured data may be acquired through a data acquisition system with devices or sensors in an integrated or distributed configuration. The captured data may include multimedia data of an event with time, date and/or location stamping, and captured physiological and behavioral biometric event data in response to the event. The captured data may be dynamically stored in a data binding format or as raw data in a local host device or communicated externally to be stored in a remote host or storage. At least one user preference may be specified for linking a biometric event data to the mapped, analyzed, categorized and stored captured data in a database. Captured data may be retrieved by matching biometric event data to at least one user preference from the database.

公开(公告)号：US09690721B2

公开(公告)日：2017-06-27

申请号：US14609046

申请日：2015-01-29

Applicant: Broadcom Corporation

Inventor： Mark Buer

IPC: G06F13/00 ,  G06F13/16

CPC classification number: G06F13/1663 ,  G06F13/00 ,  G06F13/16 ,  G06F2213/0038 ,  Y02D10/14

Abstract: One or more methods and systems of sharing an external memory between functional modules of an integrated circuit chip are presented. The invention provides a system and method of reducing the amount of off-chip memory utilized by one or more integrated circuit chips. In one embodiment, a method for sharing an off-chip memory among one or more on-chip functional modules comprises arbitrating the communication of data between one or more on-chip functional modules and the off-chip memory. In one embodiment, the arbitration is facilitated by using an internal data bus that is controlled by a bus arbiter control unit. In one embodiment, a system for sharing an off-chip memory between functional modules of an integrated circuit comprises a security processing module, a media access controller module, a data interface, and a data bus.