-
公开(公告)号:US06950523B1
公开(公告)日:2005-09-27
申请号:US09672496
申请日:2000-09-29
申请人: Ernie Brickell , Matthew D. Wood
发明人: Ernie Brickell , Matthew D. Wood
CPC分类号: H04L63/06 , H04L9/0822 , H04L9/3226 , H04L9/3236 , Y10S707/99939
摘要: To protect a private cryptographic key, two values are derived. The two values together can reconstruct the key. One value is sent to a server and deleted from the local machine. The other value is held by the local machine. To use the key, the user will enter a password, which will be used to authenticate the user to the server, and retrieve the value from the server. The password is also used to unlock the value held by the local machine. The private cryptographic key is thus protected against brute force password attacks without changing the behavior of the user.
摘要翻译: 为了保护私密密钥,导出了两个值。 这两个值可以重建密钥。 一个值被发送到服务器并从本地机器中删除。 另一个值由本地机器持有。 要使用该密钥,用户将输入一个密码,用于向服务器认证用户,并从服务器检索该值。 该密码也用于解锁本机所持有的值。 因此,私有加密密钥被防止暴力密码攻击,而不改变用户的行为。
-
公开(公告)号:US20110307704A1
公开(公告)日:2011-12-15
申请号:US13217151
申请日:2011-08-24
申请人: Matthew D. Wood , Ernie Brickell
发明人: Matthew D. Wood , Ernie Brickell
IPC分类号: H04L9/32
CPC分类号: H04L9/0891 , G06F21/33 , G06F21/72 , G06F2221/2151 , H04L9/3257 , H04L9/3297
摘要: A manufacturing entity provides a blinded signature to a secure device and associates a time with the blinded signature. If a signing key is compromised, the manufacturing entity provides a time of the compromise and the time associated with the blinded signature to the replacement authority.
摘要翻译: 制造实体向安全设备提供盲目签名,并将时间与盲人签名相关联。 如果一个签名密钥被泄露,制造实体提供了一个妥协的时间和与被替换机构的盲人签名相关联的时间。
-
公开(公告)号:US07526649B2
公开(公告)日:2009-04-28
申请号:US10748773
申请日:2003-12-30
CPC分类号: H04L63/061 , H04L9/321 , H04L9/3263 , H04L63/067 , H04L63/0823 , H04L2209/127 , H04L2209/56
摘要: According to an embodiment of the invention, a method and apparatus for session key exchange are described. An embodiment of a method comprises requesting a service for a platform; certifying the use of the service for one or more acceptable configurations of the platform; and receiving a session key for a session of the service, the service being limited to the one or more acceptable configurations of the platform.
摘要翻译: 根据本发明的实施例,描述了用于会话密钥交换的方法和装置。 一种方法的实施例包括请求一个平台的服务; 证明使用该服务的平台的一个或多个可接受的配置; 以及接收所述服务的会话的会话密钥,所述服务被限制为所述平台的所述一个或多个可接受的配置。
-
公开(公告)号:US09009483B2
公开(公告)日:2015-04-14
申请号:US13217151
申请日:2011-08-24
申请人: Matthew D. Wood , Ernie Brickell
发明人: Matthew D. Wood , Ernie Brickell
CPC分类号: H04L9/0891 , G06F21/33 , G06F21/72 , G06F2221/2151 , H04L9/3257 , H04L9/3297
摘要: A manufacturing entity provides a blinded signature to a secure device and associates a time with the blinded signature. If a signing key is compromised, the manufacturing entity provides a time of the compromise and the time associated with the blinded signature to the replacement authority.
摘要翻译: 制造实体向安全设备提供盲目签名,并将时间与盲人签名相关联。 如果一个签名密钥被泄露,制造实体提供了一个妥协的时间和与被替换机构的盲人签名相关联的时间。
-
公开(公告)号:US08037314B2
公开(公告)日:2011-10-11
申请号:US10744193
申请日:2003-12-22
申请人: Matthew D. Wood , Ernie Brickell
发明人: Matthew D. Wood , Ernie Brickell
CPC分类号: H04L9/0891 , G06F21/33 , G06F21/72 , G06F2221/2151 , H04L9/3257 , H04L9/3297
摘要: A manufacturing entity provides a blinded signature to a secure device and associates a time with the blinded signature. If a signing key is compromised, the manufacturing entity provides a time of the compromise and the time associated with the blinded signature to the replacement authority.
摘要翻译: 制造实体向安全设备提供盲目签名,并将时间与盲人签名相关联。 如果一个签名密钥被泄露,制造实体提供了一个妥协的时间和与被替换机构的盲人签名相关联的时间。
-
公开(公告)号:US09544141B2
公开(公告)日:2017-01-10
申请号:US13996544
申请日:2011-12-29
申请人: Jiangtao Li , Anand Rajan , Roel Maes , Sanu K Mathew , Ram Krishnamurthy , Ernie Brickell
发明人: Jiangtao Li , Anand Rajan , Roel Maes , Sanu K Mathew , Ram Krishnamurthy , Ernie Brickell
CPC分类号: H04L9/0891 , G09C1/00 , H04L9/0822 , H04L9/0861 , H04L9/0866 , H04L9/0894 , H04L2209/12
摘要: Some implementations disclosed herein provide techniques and arrangements for provisioning keys to integrated circuits/processors. A processor may include physically unclonable functions component, which may generate a unique hardware key based at least on at least one physical characteristic of the processor. The hardware key may be employed in encrypting a key such as a secret key. The encrypted key may be stored in a memory of the processor. The encrypted key may be validated. The integrity of the key may be protected by communicatively isolating at least one component of the processor.
摘要翻译: 本文公开的一些实施例提供了用于向集成电路/处理器供应密钥的技术和布置。 处理器可以包括物理上不可克隆的功能组件,其可以至少基于处理器的至少一个物理特性来生成唯一的硬件密钥。 硬件密钥可用于加密诸如秘密密钥的密钥。 加密密钥可以存储在处理器的存储器中。 可以验证加密的密钥。 可以通过通信地隔离处理器的至少一个组件来保护密钥的完整性。
-
公开(公告)号:US20110161672A1
公开(公告)日:2011-06-30
申请号:US12655579
申请日:2009-12-31
IPC分类号: H04L9/32 , G06F15/177 , H04L9/00 , G06F21/00
CPC分类号: H04L63/08 , G06F21/57 , H04L9/3249 , H04L63/06 , H04L2209/56
摘要: In some embodiments a secure permit request to change a hardware configuration is created. The secure permit request is sent to a remote location, and a permit sent from the remote location in response to the permit request is received. The hardware configuration is changed in response to the received permit. Other embodiments are described and claimed.
摘要翻译: 在一些实施例中,创建了用于改变硬件配置的安全许可证请求。 安全许可请求被发送到远程位置,并且接收到响应于许可请求从远程位置发送的许可证。 硬件配置根据接收到的许可证而改变。 描述和要求保护其他实施例。
-
公开(公告)号:US20100299479A1
公开(公告)日:2010-11-25
申请号:US12562041
申请日:2009-09-17
申请人: Mark Buxton , Ernie Brickell , Quinn A. Jacobson , Hong Wang , Baiju Patel
发明人: Mark Buxton , Ernie Brickell , Quinn A. Jacobson , Hong Wang , Baiju Patel
IPC分类号: G06F12/08
CPC分类号: G06F12/0842 , G06F9/30047 , G06F12/1458 , G06F21/52 , G06F21/78
摘要: For each memory location in a set of memory locations associated with a thread, setting an indication associated with the memory location to request a signal if data from the memory location is evicted from a cache; and in response to the signal, reloading the set of memory locations into the cache.
摘要翻译: 对于与线程相关联的一组存储器位置中的每个存储器位置,设置与存储器位置相关联的指示,以便如果来自存储器位置的数据被从高速缓存中移出,则请求信号; 并且响应于该信号,将该组存储器位置重新加载到高速缓存中。
-
公开(公告)号:US20090172639A1
公开(公告)日:2009-07-02
申请号:US11965295
申请日:2007-12-27
申请人: Mahesh Natu , Sham Datta , Ernie Brickell
发明人: Mahesh Natu , Sham Datta , Ernie Brickell
IPC分类号: G06F9/44
CPC分类号: G06F21/57
摘要: In some embodiments, the integrity of firmware stored in a non-volatile memory is verified prior to initiation of a firmware reset vector. Other embodiments are described and claimed.
摘要翻译: 在一些实施例中,在启动固件复位向量之前验证存储在非易失性存储器中的固件的完整性。 描述和要求保护其他实施例。
-
公开(公告)号:US20080163331A1
公开(公告)日:2008-07-03
申请号:US11618649
申请日:2006-12-29
CPC分类号: G06F21/57
摘要: Apparatuses, methods, and systems for reconfiguring a secure system are disclosed. In one embodiment, an apparatus includes a configuration storage location, a lock, and lock override logic. The configuration storage location is to store information to configure the apparatus. The lock is to prevent writes to the configuration storage location. The lock override logic is to allow instructions executed from sub-operating mode code to override the lock.
摘要翻译: 公开了用于重新配置安全系统的装置,方法和系统。 在一个实施例中,装置包括配置存储位置,锁定和锁定超驰逻辑。 配置存储位置是存储信息以配置设备。 该锁是为了防止写入配置存储位置。 锁定覆盖逻辑是允许从子操作模式代码执行的指令覆盖锁定。
-
-
-
-
-
-
-
-
-
搜索结果
56 条记录 (耗时 0.024 秒)
