公开(公告)号：US11765302B2

公开(公告)日：2023-09-19

申请号：US17703154

申请日：2022-03-24

Applicant: KYOCERA Document Solutions Inc.

Inventor： Masaki Sone

IPC: H04N1/44 ,  G06F21/62 ,  H04L9/32

CPC classification number: H04N1/4433 ,  G06F21/629 ,  H04L9/3247 ,  H04N2201/0094

Abstract: An image forming apparatus includes a signature verification unit, an execution propriety determination unit, an image forming unit, and a control unit. The signature verification unit decrypts encrypted data with a preset public key in accordance with acquisition of the encrypted data, and uses the decrypted data to verify a digital signature representing authenticity and integrity of a program contained in the decrypted data; the execution propriety determination unit permits execution of a program registered in a preset permission list and the program in which digital signature is verified; the image forming unit forms an image on an image forming medium; and the control unit controls the image forming unit by executing the program permitted to be executed.

公开(公告)号：US09224011B2

公开(公告)日：2015-12-29

申请号：US14479555

申请日：2014-09-08

Applicant: KYOCERA Document Solutions Inc.

Inventor： Masaki Sone

IPC: H04L9/32 ,  G06F21/64 ,  G06F9/445

CPC classification number: G06F21/64 ,  G06F8/65 ,  G06F8/654 ,  G06F21/572 ,  H04L9/0891 ,  H04L9/3236 ,  H04L9/3247

Abstract: An embedded system includes a nonvolatile memory, a control section, and a firmware update section. The nonvolatile memory stores firmware and a public key in a normal area, and stores a hash value concerning the public key in an access restricted area. The control section reads and executes the firmware from the nonvolatile memory. The firmware update section receives new firmware in which the hash value is encrypted and given as an electronic signature, and updates the firmware to the new firmware. The firmware update section is configured to: read the public key from the nonvolatile memory to calculate the hash value concerning the public key; when the hash value is identical to the hash value stored in the nonvolatile memory, calculate a hash value of the new firmware; decrypt the electronic signature with the public key to restore the hash value; and when these hash values are identical to each other, update the firmware.

Abstract translation: 嵌入式系统包括非易失性存储器，控制部分和固件更新部分。 非易失性存储器将固件和公钥存储在正常区域中，并且将关于公钥的散列值存储在访问受限区域中。 控制部分从非易失性存储器读取并执行固件。 固件更新部分接收其中哈希值被加密并作为电子签名给出的新固件，并将固件更新为新的固件。 所述固件更新部分被配置为：从所述非易失性存储器读取所述公共密钥以计算关于所述公共密钥的散列值; 当哈希值与存储在非易失性存储器中的哈希值相同时，计算新固件的哈希值; 用公钥解密电子签名，恢复哈希值; 并且当这些哈希值彼此相同时，更新固件。

公开(公告)号：US09609146B2

公开(公告)日：2017-03-28

申请号：US15182000

申请日：2016-06-14

Applicant: KYOCERA Document Solutions Inc.

Inventor： Masaki Sone

IPC: H04N1/00 ,  G06F3/12

CPC classification number: H04N1/00084 ,  G06F3/121 ,  G06F3/1222 ,  G06F3/1238 ,  G06F21/31 ,  G06F21/55 ,  G06F21/74 ,  H04N1/00015 ,  H04N1/00042 ,  H04N1/00411 ,  H04N1/00477 ,  H04N2201/0081 ,  H04N2201/0094

Abstract: A management device performs any one of first processing where an image forming apparatus whose operation set as a mode transfer operation is the same as an unauthorized operation detecting image forming apparatus is made to change the presently set mode transfer operation, second processing where image forming apparatuses which belong to a group that the unauthorized operation detecting image forming apparatus belongs to are made to change the presently set mode transfer operation and third processing where the image forming apparatuses which belong to the group that the unauthorized operation detecting image forming apparatus belongs to are prevented from being transferred to a maintenance mode.

公开(公告)号：US20150074420A1

公开(公告)日：2015-03-12

申请号：US14479555

申请日：2014-09-08

Applicant: KYOCERA Document Solutions Inc.

Inventor： Masaki Sone

IPC: G06F21/64 ,  H04L9/32 ,  G06F9/445

CPC classification number: G06F21/64 ,  G06F8/65 ,  G06F8/654 ,  G06F21/572 ,  H04L9/0891 ,  H04L9/3236 ,  H04L9/3247

Abstract: An embedded system includes a nonvolatile memory, a control section, and a firmware update section. The nonvolatile memory stores firmware and a public key in a normal area, and stores a hash value concerning the public key in an access restricted area. The control section reads and executes the firmware from the nonvolatile memory. The firmware update section receives new firmware in which the hash value is encrypted and given as an electronic signature, and updates the firmware to the new firmware. The firmware update section is configured to: read the public key from the nonvolatile memory to calculate the hash value concerning the public key; when the hash value is identical to the hash value stored in the nonvolatile memory, calculate a hash value of the new firmware; decrypt the electronic signature with the public key to restore the hash value; and when these hash values are identical to each other, update the firmware.

Abstract translation: 嵌入式系统包括非易失性存储器，控制部分和固件更新部分。 非易失性存储器将固件和公钥存储在正常区域中，并且将关于公钥的散列值存储在访问受限区域中。 控制部分从非易失性存储器读取并执行固件。 固件更新部分接收其中哈希值被加密并作为电子签名给出的新固件，并将固件更新为新的固件。 所述固件更新部分被配置为：从所述非易失性存储器读取所述公共密钥以计算关于所述公共密钥的散列值; 当哈希值与存储在非易失性存储器中的哈希值相同时，计算新固件的哈希值; 用公钥解密电子签名，恢复哈希值; 并且当这些哈希值彼此相同时，更新固件。

公开(公告)号：US08842311B2

公开(公告)日：2014-09-23

申请号：US13850223

申请日：2013-03-25

Applicant: KYOCERA Document Solutions Inc.

Inventor： Koto Takasu ,  Masaru Sato ,  Shigeki Kimura ,  Masaki Sone

IPC: G06K15/00 ,  G06F3/12 ,  H04N1/40 ,  H04N1/00 ,  H04L29/06 ,  H04N1/44 ,  G06F21/00 ,  G06F21/60

CPC classification number: H04N1/00838 ,  G06F3/1222 ,  G06F21/00 ,  G06F21/608 ,  G06F2221/2141 ,  H04L63/20 ,  H04N1/00068 ,  H04N1/44 ,  H04N2201/0094

Abstract: An electronic apparatus includes a security storage unit, a security information acquisition unit, a calculation unit, a determination unit, a notification unit, and an operation control unit. The security storage unit is configured to store a plurality of securities together with respective security levels associated with the securities. The security information acquisition unit is configured to acquire security information concerning the apparatus. The calculation unit is configured to calculate a total of the security level or levels of the security or securities applied to the apparatus, using the security levels of the securities stored in the security storage unit. The determination unit is configured to determine whether or not the calculated total has reached a predetermined threshold.

Abstract translation: 电子设备包括安全存储单元，安全信息获取单元，计算单元，确定单元，通知单元和操作控制单元。 安全存储单元被配置为存储多个证券以及与证券相关联的各自的安全级别。 安全信息获取单元被配置为获取关于该装置的安全信息。 计算单元被配置为使用存储在安全存储单元中的证券的安全级别来计算应用于设备的证券或证券的安全级别或级别的总和。 确定单元被配置为确定所计算的总计是否已经达到预定阈值。