-
公开(公告)号:US20090158054A1
公开(公告)日:2009-06-18
申请号:US12335083
申请日:2008-12-15
申请人: Marten Van Dijk , Jing Chen , Srinivas Devadas
发明人: Marten Van Dijk , Jing Chen , Srinivas Devadas
CPC分类号: G06F7/72 , H04L63/0442
摘要: A method for processing one or more terms includes, at a first computation facility, computing an obfuscated numerical representation for each of the terms. The computed obfuscated representations are provided from the first facility to a second computation facility. A result of an arithmetic computation based on the provided obfuscated values is received at the first facility. This received result represents an obfuscation of a result of application of a first function to the terms. The received result is processed to determine the result of application of the first function to the terms.
摘要翻译: 一种用于处理一个或多个术语的方法包括在第一计算设施处计算每个术语的混淆数字表示。 所计算的混淆表示从第一设施提供给第二计算设施。 在第一设施处接收基于所提供的混淆值的算术运算的结果。 这个收到的结果表示对这个术语应用第一个功能的结果的混淆。 处理接收到的结果以确定第一个功能对该术语的应用结果。
-
公开(公告)号:US20090222672A1
公开(公告)日:2009-09-03
申请号:US12361811
申请日:2009-01-29
CPC分类号: G06F21/31 , G06F21/72 , G06F21/73 , G06F21/77 , G06F21/79 , G06F21/86 , G06F2221/2103 , G06F2221/2121 , G06F2221/2129 , G06F2221/2153 , G06Q20/3674 , G09C1/00 , H01L23/544 , H01L23/576 , H01L2223/54433 , H01L2223/5444 , H01L2223/54473 , H01L2924/0002 , H04L9/0897 , H04L9/3278 , H04L2209/34 , H04L2209/42 , H01L2924/00
摘要: An integrated circuit has a first component that has a dynamic characteristic that varies among like integrated circuits, for example, among integrated circuits fabricated using the same lithography mask. Operating the first component produces an output that is dependent on the dynamic characteristic of the first component. A digital value associated with the integrated circuit is generated using the output of the first component, and then the generated digital value is used in operation of the integrated circuit.
摘要翻译: 集成电路具有第一部件,其具有在类似的集成电路之间变化的动态特性,例如在使用相同的光刻掩模制造的集成电路中。 操作第一组件产生取决于第一组件的动态特性的输出。 使用第一分量的输出产生与集成电路相关联的数字值,然后在集成电路的操作中使用所生成的数字值。
-
公开(公告)号:US20070183194A1
公开(公告)日:2007-08-09
申请号:US11421609
申请日:2006-06-01
IPC分类号: G11C16/04
CPC分类号: G06F21/31 , G06F21/72 , G06F21/73 , G06F21/77 , G06F21/79 , G06F21/86 , G06F2221/2103 , G06F2221/2121 , G06F2221/2129 , G06F2221/2153 , G06Q20/3674 , G09C1/00 , H01L23/544 , H01L23/576 , H01L2223/54433 , H01L2223/5444 , H01L2223/54473 , H01L2924/0002 , H04L9/0897 , H04L9/3278 , H04L2209/34 , H04L2209/42 , H01L2924/00
摘要: A method for providing access to device-specific information includes providing a first value to the device, and then, in the device, using a second value that is a first one-way function of the provided first value to determine a third value such that the third value is a device-specific function of the second value. The third value is then accepted from the device and stored outside the device. Subsequent to accepting the third value from the device, the second value is provided to the device. In the device, the provided second value is used to determine the third value once again and a fourth value is determined that is a second one-way function of the third value. This determining of the fourth value is performed without disclosing the third value outside the device. The fourth value is accepted from the device.
摘要翻译: 用于提供对设备特定信息的访问的方法包括向设备提供第一值,然后在设备中使用作为所提供的第一值的第一单向函数的第二值来确定第三值,使得 第三个值是第二个值的特定于设备的功能。 然后第三个值从设备接受并存储在设备外部。 在从设备接受第三值之后,将第二值提供给设备。 在设备中,所提供的第二值被再次用于确定第三值,并且确定第四值是第三值的第二单向函数。 执行第四值的确定而不在设备外部公开第三值。 从设备接受第四个值。
-
公开(公告)号:US07840803B2
公开(公告)日:2010-11-23
申请号:US10407603
申请日:2003-04-04
CPC分类号: G06F21/31 , G06F21/72 , G06F21/73 , G06F21/77 , G06F21/79 , G06F21/86 , G06F2221/2103 , G06F2221/2121 , G06F2221/2129 , G06F2221/2153 , G06Q20/3674 , G09C1/00 , H01L23/544 , H01L23/576 , H01L2223/54433 , H01L2223/5444 , H01L2223/54473 , H01L2924/0002 , H04L9/0897 , H04L9/3278 , H04L2209/34 , H04L2209/42 , H01L2924/00
摘要: A group of devices are fabricated based on a common design, each device having a corresponding plurality of measurable characteristics that is unique in the group to that device, each device having a measurement module for measuring the measurable characteristics. Authentication of one of the group of devices is enabled by selective measurement of one or more of the plurality of measurable characteristics of the device.
摘要翻译: 基于共同设计制造一组设备,每个设备具有对于该设备的组中唯一的相应多个可测量特性,每个设备具有用于测量可测量特性的测量模块。 通过选择性地测量设备的多个可测量特性中的一个或多个来启用该组设备之一的认证。
-
5.发明授权公开(公告)号:US07818569B2
公开(公告)日:2010-10-19
申请号:US11421582
申请日:2006-06-01
申请人: Srinivas Devadas , Blaise Gassend
发明人: Srinivas Devadas , Blaise Gassend
CPC分类号: G06F21/31 , G06F21/72 , G06F21/73 , G06F21/77 , G06F21/79 , G06F21/86 , G06F2221/2103 , G06F2221/2121 , G06F2221/2129 , G06F2221/2153 , G06Q20/3674 , G09C1/00 , H01L23/544 , H01L23/576 , H01L2223/54433 , H01L2223/5444 , H01L2223/54473 , H01L2924/0002 , H04L9/0897 , H04L9/3278 , H04L2209/34 , H04L2209/42 , H01L2924/00
摘要: A digital value is generated in an integrated circuit such that the generated value substantially depends on circuit parameters that vary among like devices. The generated digital value is then used, for example, to access protected information in the device or to perform a cryptographic function in the integrated circuit.
摘要翻译: 在集成电路中产生数字值,使得所产生的值基本上取决于在类似的装置之间变化的电路参数。 所产生的数字值例如用于访问设备中的受保护信息或在集成电路中执行加密功能。
-
6.发明授权Method and apparatus for bandwidth guarantee and overload protection in a network switch 有权网络交换机带宽保障和过载保护的方法和装置公开(公告)号:US07724760B2
公开(公告)日:2010-05-25
申请号:US10639269
申请日:2003-08-12
IPC分类号: H04L12/56
CPC分类号: H04L47/10 , H04L47/24 , H04L47/39 , H04L47/50 , H04L47/52 , H04L47/6215 , H04L47/6255 , H04L49/101 , H04L49/254 , H04L49/30 , H04L49/3045
摘要: A method for selecting a queue for service across a shared link. The method includes classifying each queue from a group of queues within a plurality of ingresses into one tier of a number “N” of tiers. The number “N” is greater than or equal to 2. Information about allocated bandwidth is used to classify at least some of the queues into the tiers. Each tier is assigned a different priority. The method also includes matching queues to available egresses by matching queues classified within tiers with higher priorities before matching queues classified within tiers with lower priorities.
摘要翻译: 一种用于通过共享链路选择服务队列的方法。 该方法包括将来自多个入口内的一组队列中的每个队列分成层数“N”的一层。 数字“N”大于或等于2.关于分配的带宽的信息用于将至少一些队列分类到层级中。 每个层都有不同的优先级。 该方法还包括通过匹配在具有较低优先级的层级中分类的队列之前匹配在具有较高优先级的层级中分类的队列来匹配队列到可用出口。
-
公开(公告)号:US07681103B2
公开(公告)日:2010-03-16
申请号:US11421588
申请日:2006-06-01
申请人: Srinivas Devadas , Blaise Gassend
发明人: Srinivas Devadas , Blaise Gassend
IPC分类号: G06F11/00
CPC分类号: G06F21/31 , G06F21/72 , G06F21/73 , G06F21/77 , G06F21/79 , G06F21/86 , G06F2221/2103 , G06F2221/2121 , G06F2221/2129 , G06F2221/2153 , G06Q20/3674 , G09C1/00 , H01L23/544 , H01L23/576 , H01L2223/54433 , H01L2223/5444 , H01L2223/54473 , H01L2924/0002 , H04L9/0897 , H04L9/3278 , H04L2209/34 , H04L2209/42 , H01L2924/00
摘要: A device-specific value is reliably generated in a device. In a first component of the device, a first digital value is generated that is substantially dependent fabrication variation among like device. Redundancy information is computed based on the first digital value. A subsequent digital value is later generated in the first component of the device. The first digital value is then determined in a second component of the device from the subsequent digital value and the redundancy information.
摘要翻译: 设备特定的值在设备中可靠地生成。 在器件的第一部件中,产生第一数字值,其基本上依赖于相似器件之间的制造变化。 基于第一数字值计算冗余信息。 稍后在设备的第一个组件中生成后续的数字值。 然后,在随后的数字值和冗余信息中,在设备的第二分量中确定第一数字值。
-
公开(公告)号:US07415477B2
公开(公告)日:2008-08-19
申请号:US10482864
申请日:2001-07-05
IPC分类号: G06F15/16 , G06F15/173 , G06F17/00
CPC分类号: H04L47/10 , H04L47/2433 , H04L47/2458 , H04L47/30 , H04L47/39 , H04L47/50 , H04L47/521 , H04L47/6215 , H04L49/30 , H04L49/90 , Y10S707/99942
摘要: A method and apparatus for selecting a queue for service across a shared link. The method includes determining a priority for each queue (202) within a plurality of ingresses (102), wherein the priority is instantaneous for a given timeslot for data transfer, selecting a queue having a first priority for each group of queues within each ingress (104) having packets destined for a particular egress (104), selecting a queue having a second priority for each subset of queues having first priorities and having packets destined for the particular egress (104), and selecting the queue having the second priority for service across the shared link in the given timeslot.
摘要翻译: 一种用于通过共享链路选择用于服务的队列的方法和装置。 该方法包括确定多个入口(102)内的每个队列(202)的优先级,其中优先级对于给定的时隙用于数据传输是瞬时的,为每个入口内的每组队列选择具有第一优先级的队列( 104),具有去往特定出口(104)的分组,为具有第一优先级的队列的每个子集选择具有第二优先级的队列并且具有去往特定出口(104)的分组,以及选择具有服务的第二优先级的队列 跨越给定时间段的共享链路。
-
公开(公告)号:US20060210082A1
公开(公告)日:2006-09-21
申请号:US11273920
申请日:2005-11-14
申请人: Srinivas Devadas , Thomas Ziola
发明人: Srinivas Devadas , Thomas Ziola
IPC分类号: H04L9/00
CPC分类号: H04L9/3278 , G06F21/31 , G06F21/445 , G06F21/602 , G06F21/76 , G06F2221/2129 , G11C7/24 , G11C16/20 , G11C16/22 , G11C2029/4402 , G11C2029/5002 , H04L9/0838 , H04L9/0877 , H04L9/304 , H04L2209/56 , H04L2209/603 , H04L2209/805
摘要: A key is determined from a volatile response using circuitry on the device. The volatile response depend on process variation in fabrication of the device. Error control data that depends on the first volatile response can be computed, stored externally to the device, and then used to generate the key using a volatile response using the circuit. Applications of volatile keys include authentication and rights management for content and software.
-
公开(公告)号:US20060209584A1
公开(公告)日:2006-09-21
申请号:US11272995
申请日:2005-11-14
申请人: Srinivas Devadas , Thomas Ziola
发明人: Srinivas Devadas , Thomas Ziola
IPC分类号: G11C5/00
CPC分类号: H04L9/3278 , G06F21/31 , G06F21/445 , G06F21/602 , G06F21/76 , G06F2221/2129 , G11C7/24 , G11C16/20 , G11C16/22 , G11C2029/4402 , G11C2029/5002 , H04L9/0838 , H04L9/0877 , H04L9/304 , H04L2209/56 , H04L2209/603 , H04L2209/805
摘要: A field configurable device, such as an FPGA, supports secure field configuration without using non-volatile storage for cryptographic keys on the device and without requiring a continuous or ongoing power source to maintain a volatile storage on the device. The approach can be used to secure the configuration data such that it can in general be used on a single or a selected set of devices and/or encryption of the configuration data so that the encrypted configuration data can be exposed without compromising information encoded in the configuration data.
摘要翻译: 诸如FPGA的现场可配置设备支持安全的现场配置,而不需要在设备上使用非易失性存储器用于加密密钥,而不需要连续或正在进行的电源来维护设备上的易失性存储。 该方法可以用于保护配置数据,使得其通常可以在单个或所选择的设备集合上使用和/或配置数据的加密,使得加密的配置数据可以在不损害在 配置数据。
-
-
-
-
-
-
-
-
-
搜索结果
41 条记录 (耗时 0.037 秒)