公开(公告)号：US20240305447A1

公开(公告)日：2024-09-12

申请号：US18186442

申请日：2023-03-20

Applicant: Nvidia Corporation

Inventor： Ron Keidar ,  Xinxing Hu ,  Hye Su Lee

IPC: H04L9/08 ,  H04L9/14

CPC classification number: H04L9/0822 ,  H04L9/0825 ,  H04L9/14

Abstract: Approaches in accordance with various illustrative embodiments provide for the encryption of communications going into and out of a device, such as a chip or proprietary bus. The encryption can occur in a central Root-of-Trust (ROT), which can include agents for individual communication protocols to generate session keys used to encrypt communications for individual sessions, and the data can be sent to a crypto engine for the respective communication protocol. A key tunnel unit can be used to receive a wrapped session key over the public bus and then unwrap the key in hardware, then able to then transmit the unwrapped session key to the corresponding crypto engine without exposing the session key to software executing on the device outside the RoT. The receiving inline crypto engine can then use that session key to encrypt session data to be transmitted to a separate device or destination.

公开(公告)号：US20250148110A1

公开(公告)日：2025-05-08

申请号：US18825826

申请日：2024-09-05

Applicant: Nvidia Corporation

Inventor： Ron Keidar ,  Akash Singh ,  DurgaPrasad Potnuru

IPC: G06F21/62

Abstract: Systems and methods are directed toward key distribution systems and methods. A key distribution system may include a policy table and a key table to develop different policy regions for various associated managers and then map memory address locations to table locations for the policy regions. The policy regions may be established using different parameters and then locked after activation to prevent further editing or modification after creation. When activated, users and owners may then access the associated memory addresses associated with authorized active policy regions.