公开(公告)号：US20170134390A1

公开(公告)日：2017-05-11

申请号：US15406340

申请日：2017-01-13

Applicant: QUALCOMM Incorporated

Inventor： Michael J.T. CHAN ,  Lu XIAO ,  Rosario CAMMAROTA ,  Olivier Jean BENOIT ,  Saurabh SABNIS ,  Yin Ling LIONG ,  Manish MOHAN

IPC: H04L29/06 ,  G06F21/62 ,  G06F21/64

CPC classification number: G06F21/604 ,  G06F21/6218 ,  G06F21/6245 ,  G06F21/64 ,  G06F2221/2101 ,  H04L63/0823 ,  H04L63/105

Abstract: Techniques for mitigating the transitive data problem using a secure asset manager are provided. These techniques include generating a secure asset manager compliant application by tagging source code for the application with a data tag to indicate that a data element associated with the source code is a sensitive data element, accessing a policy file comprising transitive rules associated with the sensitive data element, and generating one or more object files for the application from the source code. These techniques also include storing a sensitive data element in a secure memory region managed by a secure asset manager, and managing the sensitive data element according to a policy associated with the sensitive data element by an application from which the sensitive data element originates, the policy defining transitive rules associated with the sensitive data element.

公开(公告)号：US20160364573A1

公开(公告)日：2016-12-15

申请号：US14736888

申请日：2015-06-11

Applicant: QUALCOMM Incorporated

Inventor： Michael J.T. CHAN ,  Lu XIAO ,  Rosario CAMMAROTA ,  Olivier Jean BENOIT ,  Saurabh SABNIS ,  Yin Ling LIONG ,  Manish MOHAN

IPC: G06F21/60 ,  G06F21/62

CPC classification number: G06F21/604 ,  G06F21/6218 ,  G06F21/6245 ,  G06F21/64 ,  G06F2221/2101 ,  H04L63/0823 ,  H04L63/105

Abstract: Techniques for mitigating the transitive data problem using a secure asset manager are provided. These techniques include generating a secure asset manager compliant application by tagging source code for the application with a data tag to indicate that a data element associated with the source code is a sensitive data element, accessing a policy file comprising transitive rules associated with the sensitive data element, and generating one or more object files for the application from the source code. These techniques also include storing a sensitive data element in a secure memory region managed by a secure asset manager, and managing the sensitive data element according to a policy associated with the sensitive data element by an application from which the sensitive data element originates, the policy defining transitive rules associated with the sensitive data element.

Abstract translation: 提供了使用安全资产管理器来减轻传递性数据问题的技术。 这些技术包括通过使用数据标签标记应用程序的源代码来指示与源代码相关联的数据元素是敏感数据元素，访问包括与敏感数据相关联的传递规则的策略文件的策略文件，来生成安全资产管理器兼容应用程序 元素，并从源代码生成应用程序的一个或多个目标文件。 这些技术还包括将敏感数据元素存储在由安全资产管理器管理的安全存储器区域中，以及根据与敏感数据元素相关联的策略，通过敏感数据元素来自的应用来管理敏感数据元素，策略 定义与敏感数据元素相关联的传递规则。