公开(公告)号：US10075296B2

公开(公告)日：2018-09-11

申请号：US14791203

申请日：2015-07-02

Applicant: Intel Corporation

Inventor： Jason W Brandt ,  Vedvyas Shanbhogue

IPC: H04L9/08 ,  G06F21/53 ,  G06F9/455

CPC classification number: H04L9/0894 ,  G06F9/45533 ,  G06F21/53 ,  G06F2009/45587

Abstract: Embodiments of an invention for loading and virtualizing cryptographic keys are disclosed. In one embodiment, a processor includes a local key storage location, a backup key storage location, and execution hardware. Neither the local key storage location nor the backup key storage location is readable by software. The execution hardware is to perform a first operation and a second operation. The first operation includes loading a cryptographic key into the local key storage location. The second operation includes copying the cryptographic key from the local key storage location to the backup key storage location.

公开(公告)号：US10142101B2

公开(公告)日：2018-11-27

申请号：US14868579

申请日：2015-09-29

Applicant: Intel Corporation

Inventor： Vinodh Gopal ,  Jason W Brandt

IPC: H04L9/08 ,  H04L9/32 ,  G06F21/00 ,  H04L9/06 ,  G06F21/60

Abstract: Embodiments of an invention for hardware enforced one-way cryptography are disclosed. In one embodiment, a processor includes a processor key location, instruction hardware, and execution hardware. The processor key location is to hold a processor key. The instruction hardware is to receive a first instruction in an instruction set of the processor. The first instruction is to encrypt input data with the processor key and return a handle. The instruction set lacks a second instruction corresponding to the first instruction to decrypt the handle with the processor key to return the input data. The execution hardware is to perform, in response to receipt of the first instruction by the instruction hardware, encryption of the input data with the processor key and to return the handle.

公开(公告)号：US08788790B2

公开(公告)日：2014-07-22

申请号：US13708547

申请日：2012-12-07

Applicant: Intel Corporation

Inventor： Jason W Brandt ,  Sanjoy K Mondal ,  Richard A Uhlig ,  Gilbert Neiger ,  Robert T George

IPC: G06F12/10 ,  G06F12/02 ,  G06F9/455

CPC classification number: G06F12/1036 ,  G06F9/45533 ,  G06F9/45558 ,  G06F9/4843 ,  G06F12/0292 ,  G06F12/0804 ,  G06F12/0891 ,  G06F12/1027 ,  G06F12/1063 ,  G06F12/109 ,  G06F12/12 ,  G06F12/123 ,  G06F2009/45583 ,  G06F2009/45591 ,  G06F2212/1016 ,  G06F2212/152 ,  G06F2212/30 ,  G06F2212/50 ,  G06F2212/604 ,  G06F2212/657 ,  G06F2212/68 ,  G06F2212/683 ,  G06F2212/684 ,  G06F2212/69 ,  G06F2212/70

Abstract: In one embodiment of the present invention, a method includes switching between a first address space and a second address space, determining if the second address space exists in a list of address spaces; and maintaining entries of the first address space in a translation buffer after the switching. In such manner, overhead associated with such a context switch may be reduced.

公开(公告)号：US20170063547A1

公开(公告)日：2017-03-02

申请号：US14791203

申请日：2015-07-02

Applicant: Intel Corporation

Inventor： Jason W Brandt ,  Vedvyas Shanbhogue

IPC: H04L9/08

CPC classification number: H04L9/0894 ,  G06F9/45533 ,  G06F21/53 ,  G06F2009/45587

Abstract: Embodiments of an invention for loading and virtualizing cryptographic keys are disclosed. In one embodiment, a processor includes a local key storage location, a backup key storage location, and execution hardware. Neither the local key storage location nor the backup key storage location is readable by software. The execution hardware is to perform a first operation and a second operation. The first operation includes loading a cryptographic key into the local key storage location. The second operation includes copying the cryptographic key from the local key storage location to the backup key storage location.

Abstract translation: 公开了用于加载和虚拟化密码密钥的发明的实施例。 在一个实施例中，处理器包括本地密钥存储位置，备份密钥存储位置和执行硬件。 本地密钥存储位置和备份密钥存储位置都不被软件读取。 执行硬件是执行第一操作和第二操作。 第一操作包括将加密密钥加载到本地密钥存储位置。 第二操作包括将加密密钥从本地密钥存储位置复制到备份密钥存储位置。