公开(公告)号：US20140223192A1

公开(公告)日：2014-08-07

申请号：US13762195

申请日：2013-02-07

Applicant: QUALCOMM INCORPORATED

Inventor： Alexander W. DENT ,  Can Erkin Acar ,  Billy B. Brumley

IPC: G06F21/71

CPC classification number: G06F21/71 ,  G06F21/52 ,  G06F21/64 ,  H04L9/0643 ,  H04L9/3242 ,  H04L63/123

Abstract: One feature pertains to a mechanism to secure a data structure by using a computationally efficient algorithm. A plurality of keys and/or masks may be pre-generated upon boot-up or initiation of a session. An authentication code may be computed for each data structure (e.g., memory block or header block) by selecting a subset of the plurality of pre-generated keys and/or a mask from the plurality of pre-generated masks. The authentication code may be stored within the data structure for future verification of the integrity of the data structure. The keys and/or masks used for all authentication codes (e.g., for other data structures) may be selected from the same plurality of keys and/or masks during the same cycle or session.

Abstract translation: 一个特征涉及通过使用计算有效的算法来保护数据结构的机制。 可以在启动或启动会话时预先生成多个键和/或掩码。 可以通过从多个预生成的掩模中选择多个预先生成的密钥的子集和/或掩码来为每个数据结构（例如，存储块或头块）计算认证码。 认证码可以存储在数据结构中，以便将来验证数据结构的完整性。 用于所有认证码（例如，对于其他数据结构）的密钥和/或掩码可以在相同周期或会话期间从相同的多个密钥和/或掩码中选择。

公开(公告)号：US09298947B2

公开(公告)日：2016-03-29

申请号：US13762195

申请日：2013-02-07

Applicant: QUALCOMM Incorporated

Inventor： Alexander W. Dent ,  Can Erkin Acar ,  Billy B. Brumley

IPC: G06F21/00 ,  H04L9/00 ,  G06F21/71 ,  G06F21/52 ,  H04L9/06 ,  H04L9/32 ,  G06F21/64 ,  H04L29/06

CPC classification number: G06F21/71 ,  G06F21/52 ,  G06F21/64 ,  H04L9/0643 ,  H04L9/3242 ,  H04L63/123

Abstract: One feature pertains to a mechanism to secure a data structure by using a computationally efficient algorithm. A plurality of keys and/or masks may be pre-generated upon boot-up or initiation of a session. An authentication code may be computed for each data structure (e.g., memory block or header block) by selecting a subset of the plurality of pre-generated keys and/or a mask from the plurality of pre-generated masks. The authentication code may be stored within the data structure for future verification of the integrity of the data structure. The keys and/or masks used for all authentication codes (e.g., for other data structures) may be selected from the same plurality of keys and/or masks during the same cycle or session.

Abstract translation: 一个特征涉及通过使用计算有效的算法来保护数据结构的机制。 可以在启动或启动会话时预先生成多个键和/或掩码。 可以通过从多个预生成的掩模中选择多个预先生成的密钥的子集和/或掩码来为每个数据结构（例如，存储块或头块）计算认证码。 认证码可以存储在数据结构中，以便将来验证数据结构的完整性。 用于所有认证码（例如，对于其他数据结构）的密钥和/或掩码可以在相同周期或会话期间从相同的多个密钥和/或掩码中选择。

公开(公告)号：US09390264B2

公开(公告)日：2016-07-12

申请号：US14256681

申请日：2014-04-18

Applicant: QUALCOMM Incorporated

Inventor： Can Erkin Acar ,  Erich James Plondke ,  Robert J. Turner ,  Billy B. Brumley

IPC: G06F21/56 ,  G06F21/54 ,  G06F21/52

CPC classification number: G06F21/56 ,  G06F21/52 ,  G06F21/54

Abstract: Techniques for protecting contents of a stack associated with a processor are provided. The techniques include a method including receiving a store instruction from a software program being executed by the processor, the store instruction including control information associated with a subroutine, altering the control information to generate secured control information responsive to receiving the store instruction from the software program, storing the secured control information on the stack, receiving a load instruction from the software program; and responsive to receiving the load instruction from the software program, loading the secured control information from the stack, altering the secured control information to recover the control information, and returning the control information to the software program.

Abstract translation: 提供了用于保护与处理器相关联的堆栈的内容的技术。 这些技术包括一种方法，包括从由处理器执行的软件程序接收存储指令，存储指令包括与子程序相关的控制信息，改变控制信息以产生响应于从软件程序接收存储指令的安全控制信息 将所述安全控制信息存储在所述堆栈上，从所述软件程序接收加载指令; 并且响应于从所述软件程序接收到所述加载指令，从所述堆栈加载所述安全控制信息，改变所述安全控制信息以恢复所述控制信息，以及将所述控制信息返回给所述软件程序。