-
1.发明授权Apparatus and method for provisioning an endorsement key certificate for a firmware trusted platform module 有权用于为固件可信平台模块提供认可密钥证书的设备和方法公开(公告)号:US09100192B2
公开(公告)日:2015-08-04
申请号:US14037050
申请日:2013-09-25
Applicant: QUALCOMM Incorporated
Inventor: Bollapragada Venkata Janaki Manohar , Ashish Grover , Eamonn Coleman
CPC classification number: H04L9/3263 , G06F21/53 , G06F21/572 , G06F21/72 , H04L9/0866 , H04L9/0869 , H04L9/0877 , H04L9/0897
Abstract: Disclosed is a method for provisioning an endorsement key (EK) certificate for a firmware trusted platform module (fTPM). In the method, the fTPM receives a derived key (DK) from a hardware trusted platform (HWTP). The fTPM is implemented in the HWTP, the DK is derived from a hardware key (HWK) securely stored in the HWTP, the HWK is unique to the HWTP, and the HWK is not available to the fTPM. The fTPM generates an endorsement primary seed (EPS) based on the DK, and generates a hashed endorsement primary seed (HEPS) based on a hash of the EPS. The fTPM forwards the HEPS to a provisioning station, and receives, from the provisioning station, an EK certificate corresponding to the HEPS.
Abstract translation: 公开了一种用于为固件可信平台模块(fTPM)提供认可密钥(EK)证书的方法。 在该方法中,fTPM从硬件可信平台(HWTP)接收导出密钥(DK)。 在HWTP中实现了fTPM,DK是从HWTP中安全存储的硬件密钥(HWK)派生出来的,HWK是HWTP唯一的,HWK不能用于fTPM。 基于DK,fTPM生成认证主要种子(EPS),并且基于EPS的散列生成散列认证主要种子(HEPS)。 fTPM将HEPS转发到供应站,并从供应站接收与HEPS相对应的EK证书。
-
2.发明申请APPARATUS AND METHOD FOR PROVISIONING AN ENDORSEMENT KEY CERTIFICATE FOR A FIRMWARE TRUSTED PLATFORM MODULE 有权用于提供固件认证平台模块的认可关键证书的装置和方法公开(公告)号:US20140365763A1
公开(公告)日:2014-12-11
申请号:US14037050
申请日:2013-09-25
Applicant: QUALCOMM Incorporated
Inventor: Bollapragada Venkata Janaki Manohar , Ashish Grover , Eamonn Coleman
IPC: H04L9/32
CPC classification number: H04L9/3263 , G06F21/53 , G06F21/572 , G06F21/72 , H04L9/0866 , H04L9/0869 , H04L9/0877 , H04L9/0897
Abstract: Disclosed is a method for provisioning an endorsement key (EK) certificate for a firmware trusted platform module (fTPM). In the method, the fTPM receives a derived key (DK) from a hardware trusted platform (HWTP). The fTPM is implemented in the HWTP, the DK is derived from a hardware key (HWK) securely stored in the HWTP, the HWK is unique to the HWTP, and the HWK is not available to the fTPM. The fTPM generates an endorsement primary seed (EPS) based on the DK, and generates a hashed endorsement primary seed (HEPS) based on a hash of the EPS. The fTPM forwards the HEPS to a provisioning station, and receives, from the provisioning station, an EK certificate corresponding to the HEPS.
Abstract translation: 公开了一种用于为固件可信平台模块(fTPM)提供认可密钥(EK)证书的方法。 在该方法中,fTPM从硬件可信平台(HWTP)接收导出密钥(DK)。 在HWTP中实现了fTPM,DK是从HWTP中安全存储的硬件密钥(HWK)派生出来的,HWK是HWTP唯一的,HWK不能用于fTPM。 基于DK,fTPM生成认证主要种子(EPS),并且基于EPS的散列生成散列认证主要种子(HEPS)。 fTPM将HEPS转发到供应站,并从供应站接收与HEPS相对应的EK证书。
-
Search Results
2
records
(took 0.009 seconds)
