-
Patent Agency Ranking
公开(公告)号:US09953167B2
公开(公告)日:2018-04-24
申请号:US14880746
申请日:2015-10-12
Applicant: Microsoft Technology Licensing, LLC
Inventor: David R Wooten , Andrey Marochko , Dennis Mattoon , Paul England
CPC classification number: G06F21/575 , G06F9/4406 , G06F11/1417 , G06F21/51 , H04L9/0861 , H04L9/0866 , H04L9/0891 , H04L9/3263
Abstract: Systems and methods facilitating a framework that provides a core trusted computing base (TCB) of an electronic device with various security capabilities. The framework can include a low-resource device and at least one distributed resource. The low-resource device can be configured to generate sealing keys, migration keys, and attestation keys that are based on a device secret associated with the low-resource device and one or more software modules. The low-resource device can further be configured to use the migration keys and the sealing keys to both verify a software update and migrate secrets from a previous version of the software to a newer version of the software. Additionally, the low-resource device can be configured to generate an attestation statement using the attestation keys and perform attestation using the attestation statement and the at least one distributed resource.
-
公开(公告)号:US09917687B2
公开(公告)日:2018-03-13
申请号:US14880813
申请日:2015-10-12
Applicant: Microsoft Technology Licensing, LLC
Inventor: David R Wooten , Andrey Marochko , Dennis Mattoon , Paul England
CPC classification number: H04L9/002 , G06F8/65 , G06F21/57 , G06F21/575 , G06F21/71 , G06F2221/034 , H04L9/0869
Abstract: Systems and methods facilitating a framework that provides a core trusted computing base (TCB) of an electronic device with various security capabilities. The framework can include a low-resource device and at least one distributed resource. The low-resource device can be configured to generate sealing keys, migration keys, and attestation keys that are based on a device secret associated with the low-resource device and one or more software modules. The low-resource device can further be configured to use the migration keys and the sealing keys to both verify a software update and migrate secrets from a previous version of the software to a newer version of the software. Additionally, the low-resource device can be configured to generate an attestation statement using the attestation keys and perform attestation using the attestation statement and the at least one distributed resource.
-
公开(公告)号:US10440006B2
公开(公告)日:2019-10-08
申请号:US15629139
申请日:2017-06-21
Applicant: Microsoft Technology Licensing, LLC
Inventor: Stefan Thom , Robert Karl Spiger , Dennis Mattoon , Paul England
Abstract: A smart device, connected device, Internet of Things (IoT) device, etc. is configured with an embedded certificate authority. The embedded certificate authority generates a compound certificate that is signed at least by a manufacturer certificate securely stored on the device. The compound certificate includes a representation of a state of the device, which is based on one or more measurements of code executable on the device. The compound certificate may be used by an external device communicating with the smart device to determine whether the device is in a trusted state. Because the compound certificate is chained to a manufacturer certificate, the external device can communicate with the manufacturer (or an employed party) to determine whether the state of the device should be trusted.
-
公开(公告)号:US20170104580A1
公开(公告)日:2017-04-13
申请号:US14880813
申请日:2015-10-12
Applicant: Microsoft Technology Licensing, LLC
Inventor: David R. Wooten , Andrey Marochko , Dennis Mattoon , Paul England
CPC classification number: H04L9/002 , G06F8/65 , G06F21/57 , G06F21/575 , G06F21/71 , G06F2221/034 , H04L9/0869
Abstract: Systems and methods facilitating a framework that provides a core trusted computing base (TCB) of an electronic device with various security capabilities. The framework can include a low-resource device and at least one distributed resource. The low-resource device can be configured to generate sealing keys, migration keys, and attestation keys that are based on a device secret associated with the low-resource device and one or more software modules. The low-resource device can further be configured to use the migration keys and the sealing keys to both verify a software update and migrate secrets from a previous version of the software to a newer version of the software. Additionally, the low-resource device can be configured to generate an attestation statement using the attestation keys and perform attestation using the attestation statement and the at least one distributed resource.
-
公开(公告)号:US20170103209A1
公开(公告)日:2017-04-13
申请号:US14880746
申请日:2015-10-12
Applicant: Microsoft Technology Licensing, LLC
Inventor: David R. Wooten , Andrey Marochko , Dennis Mattoon , Paul England
CPC classification number: G06F21/575 , G06F9/4406 , G06F11/1417 , G06F21/51 , H04L9/0861 , H04L9/0866 , H04L9/0891 , H04L9/3263
Abstract: Systems and methods facilitating a framework that provides a core trusted computing base (TCB) of an electronic device with various security capabilities. The framework can include a low-resource device and at least one distributed resource. The low-resource device can be configured to generate sealing keys, migration keys, and attestation keys that are based on a device secret associated with the low-resource device and one or more software modules. The low-resource device can further be configured to use the migration keys and the sealing keys to both verify a software update and migrate secrets from a previous version of the software to a newer version of the software. Additionally, the low-resource device can be configured to generate an attestation statement using the attestation keys and perform attestation using the attestation statement and the at least one distributed resource.
-
-
-
-
Search Results
5
records
(took 0.019 seconds)
