-
1.发明授权System and method for secure firmware update of a secure token having a flash memory controller and a smart card 有权具有闪存控制器和智能卡的安全令牌的安全固件更新的系统和方法公开(公告)号:US08898477B2
公开(公告)日:2014-11-25
申请号:US11938769
申请日:2007-11-12
CPC分类号: G06F21/572
摘要: A system and method of operating a device to securely update the control firmware controlling the device. Downloading a firmware update package to a first microcontroller of the device. Determining a firmware update portion and an encrypted hash portion of the firmware update package wherein the encrypted hash portion is cryptographically signed by a signatory. Confirm that the encrypted hash portion conforms to the firmware update by independently computing the hash of the encrypted firmware update portion on the first microcontroller and comparing that value to the signed hash. Other systems and methods are disclosed.
摘要翻译: 一种操作设备以安全地更新控制设备的控制固件的系统和方法。 将固件更新包下载到设备的第一个微控制器。 确定固件更新部分和固件更新包的加密散列部分,其中加密散列部分由签名者进行密码签名。 通过独立地计算第一微控制器上的加密固件更新部分的散列,并将该值与经签名的散列进行比较,确认加密散列部分符合固件更新。 公开了其它系统和方法。
-
2.发明申请SYSTEM AND METHOD FOR UPDATING READ-ONLY MEMORY IN SMART CARD MEMORY MODULES 有权用于在智能卡存储器模块中更新只读存储器的系统和方法公开(公告)号:US20130010519A1
公开(公告)日:2013-01-10
申请号:US13610492
申请日:2012-09-11
IPC分类号: G11C17/00
CPC分类号: H04L9/0877 , G06F3/0619 , G06F3/0655 , G06F3/0679 , G06F12/0238 , G06F12/1425 , G06F21/79 , G06F2206/1014 , H04L9/0863 , H04L9/3234
摘要: A storage device contains a smart-card device and a memory device, both connected to a controller. The storage device may be used in the same manner as a conventional smart-card device, or it may be used to store a relatively large amount of data in various partitions. One of these partitions may be a read-only partition that is normally accessible only for read accesses. However, it may sometimes be necessary to update or supplement the data stored in the read-only partition. This is accomplished by a host issuing an appropriate command to the storage device, which may be accompanied by an identifier for an appropriate level of authorization. The controller then changes the attribute of the read-only partition from “read-only” to “read/write” to allow data to be written to the partition. Upon completion, the controller changes the attribute of the partition back to read-only.
摘要翻译: 存储设备包含智能卡设备和存储设备,两者都连接到控制器。 存储装置可以以与常规智能卡装置相同的方式使用,或者可以用于将相对大量的数据存储在各个分区中。 这些分区中的一个可以是只读分区通常只能访问的只读分区。 然而,有时可能需要更新或补充存储在只读分区中的数据。 这通过主机向存储设备发出适当的命令来实现,该命令可以伴随有适当级别的授权的标识符。 然后,控制器将只读分区的属性从只读更改为读/写,以允许将数据写入分区。 完成后,控制器将分区的属性更改回只读。
-
公开(公告)号:US09111045B2
公开(公告)日:2015-08-18
申请号:US13448172
申请日:2012-04-16
CPC分类号: G06F21/44 , G06F13/387 , G06F21/34 , G06F21/77 , G06F21/79 , G06K19/0715 , G06K19/073
摘要: A storage device contains a smart-card device and a memory device, both of which are accessed though a controller. The storage device may be used in the same manner as a conventional smart-card device, or it may be used to store a relatively large amount of data in various partitions corresponding to the protection level of the data stored therein. The smart-card device stores critical security parameters that are provided to the controller to protect access to some or all of the partitions of the memory device. A host connected to the controller issues commands, and the controller analyzes the commands and responds to them in various ways depending upon the nature of the command. In particular, depending upon the nature of the command, the controller may either pass the command to the smart-card device, or ignore the command either indefinitely or until a predetermined event has occurred.
摘要翻译: 存储设备包含智能卡设备和存储设备,两者均通过控制器访问。 存储装置可以以与常规智能卡装置相同的方式使用,或者可以用于将相对大量的数据存储在与其中存储的数据的保护级别相对应的各个分区中。 智能卡设备存储提供给控制器的关键安全参数,以保护对存储设备的某些或所有分区的访问。 连接到控制器的主机发出命令,并且控制器根据命令的性质以各种方式分析命令并对其进行响应。 特别地,根据命令的性质,控制器可以将命令传递到智能卡设备,或者无限期地忽略该命令,或直到发生预定事件。
-
4.发明授权Critical security parameter generation and exchange system and method for smart-card memory modules 有权智能卡内存模块的关键安全参数生成与交换系统及方法公开(公告)号:US08930711B2
公开(公告)日:2015-01-06
申请号:US13437613
申请日:2012-04-02
IPC分类号: G06F21/00 , H04L29/06 , G06Q20/34 , G06F21/77 , G06F21/79 , H04W12/10 , G06F12/14 , G06F21/34
CPC分类号: H04L9/3234 , G06F21/34 , G06F21/77 , G06F21/79 , G06Q20/3563
摘要: A storage device contains a smart-card device and a memory device, which is connected to a controller. The storage device may be used in the same manner as a conventional smart-card device, or it may be used to store a relatively large amount of data. The memory device may also be used to store data or instructions for use by the smart-card device. The controller includes a security engine that uses critical security parameters stored in, and received from, the smart-card device. The critical security parameters may be sent to the controller in a manner that protects them from being discovered. The critical security parameters may be encryption and/or decryption keys that may encrypt data written to the memory device and/or decrypt data read from the memory device, respectively. Data and instructions used by the smart-card device may therefore stored in the memory device in encrypted form.
摘要翻译: 存储设备包含智能卡设备和连接到控制器的存储设备。 存储装置可以以与常规智能卡装置相同的方式使用,或者可以用于存储相对大量的数据。 存储器装置还可以用于存储由智能卡装置使用的数据或指令。 控制器包括使用存储在智能卡设备中并从智能卡设备接收的关键安全参数的安全引擎。 关键的安全参数可以以保护它们免受发现的方式发送到控制器。 关键的安全参数可以是加密和/或解密密钥,其可以分别加密写入存储器件的数据和/或解密从存储器件读取的数据。 因此,智能卡设备使用的数据和指令可以以加密形式存储在存储设备中。
-
5.发明申请SYSTEM AND METHOD FOR SUPPORTING MULTIPLE TOKENS HAVING A SMART CARD TO CONTROL PARAMETERS OF A FLASH MEMORY DEVICE 审中-公开用于支持具有智能卡以控制闪存存储器件的参数的多个功能的系统和方法公开(公告)号:US20090125645A1
公开(公告)日:2009-05-14
申请号:US11938777
申请日:2007-11-12
IPC分类号: G06F3/00
CPC分类号: G06F3/0644 , G06F3/0623 , G06F3/0632 , G06F3/0679 , G06F21/78 , G06F2221/2153
摘要: A system and method to control a device having at least one configurable parameter. Enumerating the device as a first peripheral device and as a second peripheral device wherein the first peripheral device corresponds to a first microcontroller connected to a storage medium and the second peripheral device corresponds to a second microcontroller. Controlling the at least one configurable parameter of the first microcontroller with respect to the storage medium by the second microcontroller. On initialization of the device, transmitting the at least one configurable parameter from the second microcontroller to the first microcontroller. Other systems and methods are disclosed.
摘要翻译: 一种用于控制具有至少一个可配置参数的设备的系统和方法。 将设备列举为第一外围设备和第二外围设备,其中第一外围设备对应于连接到存储介质的第一微控制器,而第二外围设备对应于第二微控制器。 通过第二微控制器控制第一微控制器相对于存储介质的至少一个可配置参数。 在初始化装置时,将至少一个可配置参数从第二微控制器发送到第一微控制器。 公开了其它系统和方法。
-
6.发明申请公开(公告)号:US20090121029A1
公开(公告)日:2009-05-14
申请号:US11938734
申请日:2007-11-12
IPC分类号: G06K19/067
CPC分类号: G06F21/44 , G06F13/387 , G06F21/34 , G06F21/77 , G06F21/79 , G06K19/0715 , G06K19/073
摘要: A storage device contains a smart-card device and a memory device, both of which are accessed though a controller. The storage device may be used in the same manner as a conventional smart-card device, or it may be used to store a relatively large amount of data in various partitions corresponding to the protection level of the data stored therein. The smart-card device stores critical security parameters that are provided to the controller to protect access to some or all of the partitions of the memory device. A host connected to the controller issues commands, and the controller analyzes the commands and responds to them in various ways depending upon the nature of the command. In particular, depending upon the nature of the command, the controller may either pass the command to the smart-card device, or ignore the command either indefinitely or until a predetermined event has occurred.
摘要翻译: 存储设备包含智能卡设备和存储设备,两者均通过控制器访问。 存储装置可以以与常规智能卡装置相同的方式使用,或者可以用于将相对大量的数据存储在与其中存储的数据的保护级别相对应的各个分区中。 智能卡设备存储提供给控制器的关键安全参数,以保护对存储设备的某些或所有分区的访问。 连接到控制器的主机发出命令,并且控制器根据命令的性质以各种方式分析命令并对其进行响应。 特别地,根据命令的性质,控制器可以将命令传递到智能卡设备,或者无限期地忽略该命令,或直到发生预定事件。
-
7.发明申请公开(公告)号:US20120204018A1
公开(公告)日:2012-08-09
申请号:US13448172
申请日:2012-04-16
CPC分类号: G06F21/44 , G06F13/387 , G06F21/34 , G06F21/77 , G06F21/79 , G06K19/0715 , G06K19/073
摘要: A storage device contains a smart-card device and a memory device, both of which are accessed though a controller. The storage device may be used in the same manner as a conventional smart-card device, or it may be used to store a relatively large amount of data in various partitions corresponding to the protection level of the data stored therein. The smart-card device stores critical security parameters that are provided to the controller to protect access to some or all of the partitions of the memory device. A host connected to the controller issues commands, and the controller analyzes the commands and responds to them in various ways depending upon the nature of the command. In particular, depending upon the nature of the command, the controller may either pass the command to the smart-card device, or ignore the command either indefinitely or until a predetermined event has occurred.
摘要翻译: 存储设备包含智能卡设备和存储设备,两者均通过控制器访问。 存储装置可以以与常规智能卡装置相同的方式使用,或者可以用于将相对大量的数据存储在与其中存储的数据的保护级别相对应的各个分区中。 智能卡设备存储提供给控制器的关键安全参数,以保护对存储设备的某些或所有分区的访问。 连接到控制器的主机发出命令,并且控制器根据命令的性质以各种方式分析命令并对其进行响应。 特别地,根据命令的性质,控制器可以将命令传递到智能卡设备,或者无限期地忽略该命令,或直到发生预定事件。
-
8.发明申请SYSTEM AND METHOD FOR SECURE FIRMWARE UPDATE OF A SECURE TOKEN HAVING A FLASH MEMORY CONTROLLER AND A SMART CARD 有权用于安全存储闪存控制器和智能卡的安全硬盘的固件更新的系统和方法公开(公告)号:US20100023777A1
公开(公告)日:2010-01-28
申请号:US11938769
申请日:2007-11-12
CPC分类号: G06F21/572
摘要: A system and method of operating a device to securely update the control firmware controlling the device. Downloading a firmware update package to a first microcontroller of the device. Determining a firmware update portion and an encrypted hash portion of the firmware update package wherein the encrypted hash portion is cryptographically signed by a signatory. Confirm that the encrypted hash portion conforms to the firmware update by independently computing the hash of the encrypted firmware update portion on the first microcontroller and comparing that value to the signed hash. Other systems and methods are disclosed.
摘要翻译: 一种操作设备以安全地更新控制设备的控制固件的系统和方法。 将固件更新包下载到设备的第一个微控制器。 确定固件更新部分和固件更新包的加密散列部分,其中加密散列部分由签名者进行密码签名。 通过独立地计算第一微控制器上的加密固件更新部分的散列,并将该值与经签名的散列进行比较,确认加密散列部分符合固件更新。 公开了其它系统和方法。
-
9.发明申请SYSTEM AND METHOD FOR USING A SMART CARD IN CONJUNCTION WITH A FLASH MEMORY CONTROLLER TO DETECT LOGON AUTHENTICATION 审中-公开用于与闪存控制器一起使用智能卡以检测登录认证的系统和方法公开(公告)号:US20100023650A1
公开(公告)日:2010-01-28
申请号:US11938772
申请日:2007-11-12
CPC分类号: G06F21/34
摘要: A system and method of operating a device connected to a host computer in a manner to preserve knowledge of logon authentication status to the host computer. Upon initialization of the device perform a pattern matching operation of an instruction sequence received by the second microcontroller. When the instruction sequence matches a prestored sequence indicative of performance of a logon process on the host computer tracking a logon state by the second microcontroller. Exchanging the logon state between the second and first microcontrollers such that when the second microcontroller resets, the second microcontroller may recover the logon state from the first microcontroller. Other systems and methods are disclosed.
摘要翻译: 一种操作连接到主计算机的设备的方法,以便保持对主计算机登录认证状态的知识。 在初始化设备时,执行由第二微控制器接收的指令序列的模式匹配操作。 当指令序列与指示在主计算机上执行登录过程的性能的预先存储的序列匹配由第二微控制器跟踪登录状态时。 交换第二和第一微控制器之间的登录状态使得当第二微控制器复位时,第二微控制器可以从第一微控制器恢复登录状态。 公开了其它系统和方法。
-
10.发明授权System and method for updating read-only memory in smart card memory modules 有权用于更新智能卡存储器模块中的只读存储器的系统和方法公开(公告)号:US08746578B2
公开(公告)日:2014-06-10
申请号:US13610492
申请日:2012-09-11
IPC分类号: G06K19/00
CPC分类号: H04L9/0877 , G06F3/0619 , G06F3/0655 , G06F3/0679 , G06F12/0238 , G06F12/1425 , G06F21/79 , G06F2206/1014 , H04L9/0863 , H04L9/3234
摘要: A storage device contains a smart-card device and a memory device, both connected to a controller. The storage device may be used in the same manner as a conventional smart-card device, or it may be used to store a relatively large amount of data in various partitions. One of these partitions may be a read-only partition that is normally accessible only for read accesses. However, it may sometimes be necessary to update or supplement the data stored in the read-only partition. This is accomplished by a host issuing an appropriate command to the storage device, which may be accompanied by an identifier for an appropriate level of authorization. The controller then changes the attribute of the read-only partition from “read-only” to “read/write” to allow data to be written to the partition. Upon completion, the controller changes the attribute of the partition back to read-only.
摘要翻译: 存储设备包含智能卡设备和存储设备,两者都连接到控制器。 存储装置可以以与常规智能卡装置相同的方式使用,或者可以用于将相对大量的数据存储在各个分区中。 这些分区中的一个可以是只读分区通常只能访问的只读分区。 然而,有时可能需要更新或补充存储在只读分区中的数据。 这通过主机向存储设备发出适当的命令来实现,该命令可以伴随有适当级别的授权的标识符。 然后,控制器将只读分区的属性从“只读”更改为“读/写”,以允许将数据写入分区。 完成后,控制器将分区的属性更改回只读。
-
-
-
-
-
-
-
-
-
搜索结果
34 条记录 (耗时 0.039 秒)
