-
1.
公开(公告)号:US07502946B2
公开(公告)日:2009-03-10
申请号:US11038969
申请日:2005-01-20
IPC分类号: G06F11/30
CPC分类号: G06F21/6245 , H04L9/321 , H04L9/3226 , H04L9/3236 , H04L2209/80
摘要: A system includes long-term storage (e.g., flash memory) for storing sensitive data and critical components of a consumer electronic (CE) device such as an operating system (OS) kernel, private cryptographic key values, security applications, and firmware configurations, for example. Security hardware/software designates and restricts access to secured portions of long-term storage that contain the critical components. Requests for access to these secured portions are addressed by the security hardware/software, which authenticates a cryptographic authorization code received with the request. Read-write access to the secured portions is allowed for download and installation of, for example, a software or firmware upgrade if the cryptographic authorization code is authenticated.
摘要翻译: 系统包括用于存储敏感数据的长期存储(例如闪速存储器)和诸如操作系统(OS)内核,专用密码值,安全应用和固件配置的消费电子(CE)设备的关键组件, 例如。 安全硬件/软件指定并限制对包含关键组件的长期存储的安全部分的访问。 访问这些安全部分的请求由安全硬件/软件来解决,安全硬件/软件对用该请求接收的密码授权码进行认证。 如果加密授权码被认证,允许对安全部分的读写访问进行下载和安装,例如软件或固件升级。