公开(公告)号：US12261691B2

公开(公告)日：2025-03-25

申请号：US18317494

申请日：2023-05-15

Applicant: NXP B.V.

Inventor： Loic Leconte ,  Mark Norman Fullerton ,  Mathieu Blazy-Winning

IPC: H04L1/00 ,  G06F11/10 ,  G06F13/40 ,  G06F15/78

Abstract: A system-on-chip (SoC) method and apparatus are disclosed for checking end-to-end integrity of communications over an network interconnect, where the SoC includes an initiator subsystem connected over the network interconnect to a target subsystem, wherein a first integrity module is configured to compute a first integrity value based on regular transaction messages sent or received by the initiator subsystem and to send a protecting information transaction (PIT) message over the network interconnect to the target subsystem, wherein a second integrity module is configured to compute a second integrity value based on regular transaction messages sent or received by the destination subsystem and to send a PIT response message over the network interconnect to the initiator subsystem, and wherein a compatibility module compares the first and second integrity values to verify the end-to-end integrity of the regular transaction messages sent or received over the network interconnect.

公开(公告)号：US11023591B2

公开(公告)日：2021-06-01

申请号：US16246633

申请日：2019-01-14

Applicant: NXP B.V.

Inventor： Lawrence Loren Case ,  Mark Norman Fullerton ,  Thomas Ernst Friedrich Wille ,  Sebastian Stappert

IPC: G06F21/57 ,  G06F21/55

Abstract: A data processing system includes a plurality of subsystems, a plurality of local security controllers, and a central security controller. Each subsystem of the plurality of subsystems has a security component for providing a security function. A local security controller corresponds to each one of the subsystems. Each local security controller ensures compliance of the security component with local security policies of the subsystem to which the local security controller corresponds. The central security controller is coupled to the local security controller of each of the plurality of subsystems. The central security controller ensures data processing system compliance with system wide security policies. In the event of a detected security violation, the local security controller may respond automatically, without involvement of the central security controller. A method for securing the data processing system is also provided.

公开(公告)号：US20240070018A1

公开(公告)日：2024-02-29

申请号：US18317494

申请日：2023-05-15

Applicant: NXP B.V.

Inventor： Loic Leconte ,  Mark Norman Fullerton ,  Mathieu Blazy-Winning

IPC: G06F11/10 ,  G06F13/40 ,  G06F15/78

CPC classification number: G06F11/1048 ,  G06F13/4004 ,  G06F15/7825

Abstract: A system-on-chip (SoC) method and apparatus are disclosed for checking end-to-end integrity of communications over an network interconnect, where the SoC includes an initiator subsystem connected over the network interconnect to a target subsystem, wherein a first integrity module is configured to compute a first integrity value based on regular transaction messages sent or received by the initiator subsystem and to send a protecting information transaction (PIT) message over the network interconnect to the target subsystem, wherein a second integrity module is configured to compute a second integrity value based on regular transaction messages sent or received by the destination subsystem and to send a PIT response message over the network interconnect to the initiator subsystem, and wherein a compatibility module compares the first and second integrity values to verify the end-to-end integrity of the regular transaction messages sent or received over the network interconnect.