公开(公告)号：US20170134390A1

公开(公告)日：2017-05-11

申请号：US15406340

申请日：2017-01-13

Applicant: QUALCOMM Incorporated

Inventor： Michael J.T. CHAN ,  Lu XIAO ,  Rosario CAMMAROTA ,  Olivier Jean BENOIT ,  Saurabh SABNIS ,  Yin Ling LIONG ,  Manish MOHAN

IPC: H04L29/06 ,  G06F21/62 ,  G06F21/64

CPC classification number: G06F21/604 ,  G06F21/6218 ,  G06F21/6245 ,  G06F21/64 ,  G06F2221/2101 ,  H04L63/0823 ,  H04L63/105

Abstract: Techniques for mitigating the transitive data problem using a secure asset manager are provided. These techniques include generating a secure asset manager compliant application by tagging source code for the application with a data tag to indicate that a data element associated with the source code is a sensitive data element, accessing a policy file comprising transitive rules associated with the sensitive data element, and generating one or more object files for the application from the source code. These techniques also include storing a sensitive data element in a secure memory region managed by a secure asset manager, and managing the sensitive data element according to a policy associated with the sensitive data element by an application from which the sensitive data element originates, the policy defining transitive rules associated with the sensitive data element.

公开(公告)号：US20160364573A1

公开(公告)日：2016-12-15

申请号：US14736888

申请日：2015-06-11

Applicant: QUALCOMM Incorporated

Inventor： Michael J.T. CHAN ,  Lu XIAO ,  Rosario CAMMAROTA ,  Olivier Jean BENOIT ,  Saurabh SABNIS ,  Yin Ling LIONG ,  Manish MOHAN

IPC: G06F21/60 ,  G06F21/62

CPC classification number: G06F21/604 ,  G06F21/6218 ,  G06F21/6245 ,  G06F21/64 ,  G06F2221/2101 ,  H04L63/0823 ,  H04L63/105

Abstract: Techniques for mitigating the transitive data problem using a secure asset manager are provided. These techniques include generating a secure asset manager compliant application by tagging source code for the application with a data tag to indicate that a data element associated with the source code is a sensitive data element, accessing a policy file comprising transitive rules associated with the sensitive data element, and generating one or more object files for the application from the source code. These techniques also include storing a sensitive data element in a secure memory region managed by a secure asset manager, and managing the sensitive data element according to a policy associated with the sensitive data element by an application from which the sensitive data element originates, the policy defining transitive rules associated with the sensitive data element.

Abstract translation: 提供了使用安全资产管理器来减轻传递性数据问题的技术。 这些技术包括通过使用数据标签标记应用程序的源代码来指示与源代码相关联的数据元素是敏感数据元素，访问包括与敏感数据相关联的传递规则的策略文件的策略文件，来生成安全资产管理器兼容应用程序 元素，并从源代码生成应用程序的一个或多个目标文件。 这些技术还包括将敏感数据元素存储在由安全资产管理器管理的安全存储器区域中，以及根据与敏感数据元素相关联的策略，通过敏感数据元素来自的应用来管理敏感数据元素，策略 定义与敏感数据元素相关联的传递规则。

公开(公告)号：US20180129826A1

公开(公告)日：2018-05-10

申请号：US15344397

申请日：2016-11-04

Applicant: QUALCOMM Incorporated

Inventor： Justin Yongjin KIM ,  Lu XIAO ,  Shenghu LIU

IPC: G06F21/64 ,  H04L9/32 ,  H04L9/06

CPC classification number: G06F21/64 ,  H04L9/0637 ,  H04L9/0643 ,  H04L9/14 ,  H04L9/3242 ,  H04L2209/12

Abstract: Techniques for authenticating data on a computing device are provided. An example method according to these techniques includes generating a first cryptographic output by applying a first cryptographic algorithm to each block of a first subset of the plurality of blocks of data to be authenticated, combining a last block of the first cryptographic output with a second subset of the plurality of blocks of data to generate an intermediate result, and generating an authentication output by applying a second cryptographic algorithm to the intermediate result, the second cryptographic algorithm being different than the first cryptographic algorithm.

公开(公告)号：US20140258353A1

公开(公告)日：2014-09-11

申请号：US13791514

申请日：2013-03-08

Applicant: QUALCOMM INCORPORATED

Inventor： Lu XIAO ,  Binjan Ansari

IPC: G06F7/58

CPC classification number: G06F7/58 ,  G06F7/586 ,  G06F7/72 ,  G06F2207/7204 ,  H04L9/3033

Abstract: One feature pertains to a method that reduces the computational delay associated with generating prime numbers. The method includes generating a first random number having a plurality of bits. A first primality test is then executed on the first random number. Then, it is determined whether the first random number generated fails or passes the first primality test. If the first random number fails the primality test then a portion but not all of the plurality of bits of the first random number are replaced with an equal number of randomly generated bits to generate a second random number. Next, a primality test is again executed on the second random number. This process is repeated until a prime number is detected.

Abstract translation: 一个特征涉及减少与产生素数相关联的计算延迟的方法。 该方法包括生成具有多个比特的第一随机数。 然后对第一个随机数执行第一个原始测试。 然后，确定所生成的第一个随机数是否失败或通过第一个原始测试。 如果第一随机数失败了原语测试，则第一随机数的多个比特的一部分而不是全部被相等数量的随机生成的比特替换，以产生第二随机数。 接下来，对第二随机数再次执行原语测试。 重复该过程，直到检测到素数。

公开(公告)号：US20160294802A1

公开(公告)日：2016-10-06

申请号：US14673561

申请日：2015-03-30

Applicant: QUALCOMM Incorporated

Inventor： Lu XIAO ,  Satyajit PATNE

IPC: H04L29/06

CPC classification number: H04L63/083 ,  G06F21/31 ,  G06F2221/2103 ,  G06F2221/2111 ,  H04L9/3226

Abstract: Systems and methods for providing accelerated passphrase verification are disclosed. In one embodiment, a method includes receiving a full security string, generating a full security string hash code, storing the full security string hash code in a memory, determining at least one substring based on an entropy value associated with one or more leading characters in the full security string, generating at least one substring hash code and at least one corresponding character count value, such that the corresponding character count value equals a number of characters in the at least one substring, and storing the at least one substring hash code and the at least one corresponding character count value in the memory.

Abstract translation: 公开了用于提供加密密码验证的系统和方法。 在一个实施例中，一种方法包括接收完整的安全性字符串，生成完整的安全字符串哈希码，将完整的安全字符串哈希码存储在存储器中，基于与一个或多个主要字符相关联的熵值确定至少一个子字符串 完整的安全字符串，产生至少一个子串哈希码和至少一个对应的字符计数值，使得相应的字符计数值等于至少一个子字符串中的字符数，并存储至少一个子串哈希码和 存储器中的至少一个对应的字符计数值。