专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明授权

US08473754B2 Hardware-facilitated secure software execution environment 失效
标题翻译：硬件安全软件执行环境
公开(公告)号：US08473754B2
公开(公告)日：2013-06-25
申请号：US11707951
申请日：2007-02-20
申请人： Mark T. Jones , Peter M. Athanas , Cameron D. Patterson , Joshua N. Edmison , Anthony Mahar , Benjamin J. Muzal , Barry L. Polakowski , Jonathan P. Graf
发明人： Mark T. Jones , Peter M. Athanas , Cameron D. Patterson , Joshua N. Edmison , Anthony Mahar , Benjamin J. Muzal , Barry L. Polakowski , Jonathan P. Graf
IPC分类号： G06F11/30 , H04L9/32 , H04L9/00 , H04K1/00
CPC分类号： G06F21/53 , G06F21/72
摘要： A hardware-facilitated secure software execution environment provides protection of both program instructions and data against unauthorized access and/or execution to maintain confidentiality and integrity of the software or the data during distribution, in external memories, and during execution. The secure computing environment is achieved by using a hardware-based security method and apparatus to provide protection against software privacy and tampering. A Harvard architecture CPU core is instantiated on the same silicon chip along with encryption management unit (EMU) circuitry and secure key management unit (SKU) circuitry. Credential information acquired from one or more sources is combined by the SKU circuitry to generate one or more security keys provided to the EMU for use in decrypting encrypted program instructions and/or data that is obtained from a non-secure, off-chip source such as an external RAM, an information storage device or other network source. In a non-limiting illustrative example implementation, the EMU decrypts a single memory page of encrypted instructions or data per a corresponding encryption key provided by the SKU. Although instantiated on the same chip, the CPU core does not have direct access to the SKU circuitry or to encryption key information generated by the SKU.
摘要翻译：硬件便利的安全软件执行环境提供对程序指令和数据的保护，以防止未经授权的访问和/或执行，以在分发，外部存储器和执行期间保持软件或数据的机密性和完整性。安全计算环境通过使用基于硬件的安全方法和装置来提供防止软件隐私和篡改的保护来实现。哈佛架构CPU内核与加密管理单元（EMU）电路和安全密钥管理单元（SKU）电路一起在同一硅芯片上实例化。从一个或多个源获取的凭证信息由SKU电路组合以产生提供给EMU的一个或多个安全密钥，用于解密加密的程序指令和/或从非安全的片外来源获得的数据，例如作为外部RAM，信息存储设备或其他网络源。在非限制性说明性示例实现中，EMU根据由SKU提供的相应加密密钥对加密指令的单个存储器页面或数据进行解密。虽然在同一芯片上实例化，但是CPU内核不能直接访问SKU电路或者由SKU生成的加密密钥信息。

2. 发明申请

US20100122095A1 Hardware-facilitated secure software execution environment 失效
标题翻译：硬件安全软件执行环境
公开(公告)号：US20100122095A1
公开(公告)日：2010-05-13
申请号：US11707951
申请日：2007-02-20
申请人： Mark T. Jones , Peter M. Athanas , Cameron D. Patterson , Joshua N. Edmison , Anthony Mahar , Benjamin J. Muzal , Barry L. Polakowski , Jonathan P. Graf
发明人： Mark T. Jones , Peter M. Athanas , Cameron D. Patterson , Joshua N. Edmison , Anthony Mahar , Benjamin J. Muzal , Barry L. Polakowski , Jonathan P. Graf
IPC分类号： G06F21/22 , G06F12/14 , H04L9/28 , H04L9/14
CPC分类号： G06F21/53 , G06F21/72
摘要： A hardware-facilitated secure software execution environment provides protection of both program instructions and data against unauthorized access and/or execution to maintain confidentiality and integrity of the software or the data during distribution, in external memories, and during execution. The secure computing environment is achieved by using a hardware-based security method and apparatus to provide protection against software privacy and tampering. A Harvard architecture CPU core is instantiated on the same silicon chip along with encryption management unit (EMU) circuitry and secure key management unit (SKU) circuitry. Credential information acquired from one or more sources is combined by the SKU circuitry to generate one or more security keys provided to the EMU for use in decrypting encrypted program instructions and/or data that is obtained from a non-secure, off-chip source such as an external RAM, an information storage device or other network source. In a non-limiting illustrative example implementation, the EMU decrypts a single memory page of encrypted instructions or data per a corresponding encryption key provided by the SKU. Although instantiated on the same chip, the CPU core does not have direct access to the SKU circuitry or to encryption key information generated by the SKU.
摘要翻译：硬件便利的安全软件执行环境提供对程序指令和数据的保护，以防止未经授权的访问和/或执行，以在分发，外部存储器和执行期间保持软件或数据的机密性和完整性。安全计算环境通过使用基于硬件的安全方法和装置来提供防止软件隐私和篡改的保护来实现。哈佛架构CPU内核与加密管理单元（EMU）电路和安全密钥管理单元（SKU）电路一起在同一硅芯片上实例化。从一个或多个源获取的凭证信息由SKU电路组合以产生提供给EMU的一个或多个安全密钥，用于解密加密的程序指令和/或从非安全的片外来源获得的数据，例如作为外部RAM，信息存储设备或其他网络源。在非限制性说明性示例实现中，EMU根据由SKU提供的相应加密密钥对加密指令的单个存储器页面或数据进行解密。虽然在同一芯片上实例化，但是CPU内核不能直接访问SKU电路或者由SKU生成的加密密钥信息。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式