专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明申请

WO2014105129A1 FUSE ATTESTATION TO SECURE THE PROVISIONING OF SECRET KEYS DURING INTEGRATED CIRCUIT MANUFACTURING 审中-公开
标题翻译：保险丝在集成电路制造过程中确保保护钥匙的安装
公开(公告)号：WO2014105129A1
公开(公告)日：2014-07-03
申请号：PCT/US2013/046187
申请日：2013-06-17
申请人： INTEL CORPORATION , GOTZE, Kevin C. , LI, Jiangtao , LOVINO, Gregory M.
发明人： GOTZE, Kevin C. , LI, Jiangtao , LOVINO, Gregory M.
IPC分类号： H04L9/30 , H04L9/14 , H04L9/08
CPC分类号： G06F21/73 , G06F21/44 , G09C1/00 , H04L9/0861 , H04L9/0866 , H04L9/3278
摘要： Embodiments of an invention for fuse attestation to secure the provisioning of secret keys during integrated circuit manufacturing are disclosed. In one embodiment, an apparatus includes a storage location, a physically unclonable function (PUF) circuit, a PUF key generator, an encryption unit, and a plurality of fuses. The storage location is to store a configuration fuse value. The PUF circuit is to provide a PUF value. The PUF key generator is to generate a PUF key based on the PUF value. The encryption unit is to encrypt the configuration fuse value using the PUF key. The PUF key and the configuration fuse value are to be provided to a key server. The key server is to determine that the configuration fuse value indicates that the apparatus is a production component, and, in response, provide a fuse key to be stored in the plurality of fuses.
摘要翻译：公开了用于在集成电路制造期间确保秘密密钥供应的熔丝证明的发明的实施例。在一个实施例中，一种装置包括存储位置，物理上不可克隆功能（PUF）电路，PUF密钥发生器，加密单元和多个保险丝。存储位置是存储配置熔丝值。 PUF电路提供PUF值。 PUF密钥生成器基于PUF值生成PUF密钥。加密单元使用PUF密钥加密配置熔丝值。 PUF键和配置保险丝值将提供给密钥服务器。密钥服务器是确定配置熔丝值表示该设备是生产部件，并且作为响应，提供要存储在多个保险丝中的熔丝钥匙。

2. 发明申请

WO2012018528A3 METHODS FOR ANONYMOUS AUTHENTICATION AND KEY AGREEMENT 审中-公开
标题翻译：匿名认证和密钥协议的方法
公开(公告)号：WO2012018528A3
公开(公告)日：2012-04-05
申请号：PCT/US2011044733
申请日：2011-07-20
申请人： INTEL CORP , BRICKELL ERNEST F , LI JIANGTAO , WALKER JESSE
发明人： BRICKELL ERNEST F , LI JIANGTAO , WALKER JESSE
IPC分类号： H04L9/32 , H04L9/14
CPC分类号： H04L9/0844 , H04L9/0891 , H04L9/3255 , H04L9/3273 , H04L2209/42
摘要： Methods for anonymous authentication and key exchange are presented. In one embodiment, a method includes initiating a two-way mutual authentication between a device and a remote entity. The device remains anonymous to the remote entity after performing the authentication. The method also includes establishing a mutually shared session key for use in secure communication, wherein the initiating and the establishing are in conjunction with direct anonymous attestation (DAA).
摘要翻译：介绍了匿名认证和密钥交换的方法。在一个实施例中，一种方法包括发起设备与远程实体之间的双向相互认证。在执行认证后，设备对远程实体保持匿名。该方法还包括建立用于安全通信的相互共享的会话密钥，其中发起和建立与直接匿名证明（DAA）结合。

3. 发明申请

WO2011078855A1 METHOD AND APPARATUS TO PROVIDE SECURE APPLICATION EXECUTION 审中-公开
标题翻译：提供安全应用执行的方法和设备
公开(公告)号：WO2011078855A1
公开(公告)日：2011-06-30
申请号：PCT/US2009069212
申请日：2009-12-22
申请人： INTEL CORP , MCKEEN FRANCIS X , ROZAS CARLOS V , SAVAGANKAR UDAY R , JOHNSON SIMON P , SCARLATA VINCENT R , GOLDSMITH MICHAEL A , BRICKELL ERNIE , LI JIANGTAO , HERBERT HOWARD C , DEWAN PRASHANT , TOLOPKA STEPHEN J , NEIGER GILBERT , DURHAM DAVID , GRAUNKE GARY , LINT BERNARD , VAN DYKE DON A , CIHULA JOSEPH , JEYASINGH STALINSELVARAJ , VAN DOREN STEPHEN R , RODGERS DION , GARNEY JOHN
发明人： MCKEEN FRANCIS X , ROZAS CARLOS V , SAVAGANKAR UDAY R , JOHNSON SIMON P , SCARLATA VINCENT R , GOLDSMITH MICHAEL A , BRICKELL ERNIE , LI JIANGTAO , HERBERT HOWARD C , DEWAN PRASHANT , TOLOPKA STEPHEN J , NEIGER GILBERT , DURHAM DAVID , GRAUNKE GARY , LINT BERNARD , VAN DYKE DON A , CIHULA JOSEPH , JEYASINGH STALINSELVARAJ , VAN DOREN STEPHEN R , RODGERS DION , GARNEY JOHN
IPC分类号： G06F9/44 , G06F12/02 , G06F13/14 , G06F21/72 , G06F21/74
CPC分类号： G06F12/1491 , G06F12/0802 , G06F12/10 , G06F21/72 , G06F21/74 , G06F2221/2105
摘要： A technique to enable secure application and data integrity within a computer system. In one embodiment, one or more secure enclaves are established in which an application and data may be stored and executed.
摘要翻译：一种在计算机系统内实现安全应用和数据完整性的技术。在一个实施例中，建立一个或多个安全空间，其中可以存储和执行应用和数据。

4. 发明申请

WO2013101085A1 SECURE KEY STORAGE USING PHYSICALLY UNCLONABLE FUNCTIONS 审中-公开
标题翻译：使用物理不可靠函数确保关键存储
公开(公告)号：WO2013101085A1
公开(公告)日：2013-07-04
申请号：PCT/US2011/067881
申请日：2011-12-29
申请人： INTEL CORPORATION , LI, Jiangtao , RAJAN, Anand , MAES, Roel , MATHEW, Sanu, K. , KRISHNAMURTHY, Ram, K. , BRICKELL, Ernie
发明人： LI, Jiangtao , RAJAN, Anand , MAES, Roel , MATHEW, Sanu, K. , KRISHNAMURTHY, Ram, K. , BRICKELL, Ernie
IPC分类号： H04L9/14
CPC分类号： H04L9/0891 , G09C1/00 , H04L9/0822 , H04L9/0861 , H04L9/0866 , H04L9/0894 , H04L2209/12
摘要： Some implementations disclosed herein provide techniques and arrangements for provisioning keys to integrated circuits/processors. A processor may include physically unclonable functions component, which may generate a unique hardware key based at least on at least one physical characteristic of the processor. The hardware key may be employed in encrypting a key such as a secret key. The encrypted key may be stored in a memory of the processor. The encrypted key may be validated. The integrity of the key may be protected by communicatively isolating at least one component of the processor.
摘要翻译：本文公开的一些实施例提供了用于向集成电路/处理器供应密钥的技术和布置。处理器可以包括物理上不可克隆的功能组件，其可以至少基于处理器的至少一个物理特性来生成唯一的硬件密钥。硬件密钥可用于加密诸如秘密密钥的密钥。加密密钥可以存储在处理器的存储器中。可以验证加密的密钥。可以通过通信地隔离处理器的至少一个组件来保护密钥的完整性。

5. 发明申请

WO2012074720A1 METHOD AND APPARATUS FOR KEY PROVISIONING OF HARDWARE DEVICES 审中-公开
标题翻译：关键提供硬件设备的方法和装置
公开(公告)号：WO2012074720A1
公开(公告)日：2012-06-07
申请号：PCT/US2011/060345
申请日：2011-11-11
申请人： INTEL CORPORATION , BRICKELL, Ernie F. , GUERON, Shay , LI, Jiangtao , ROZAS, Carlos V. , NEMIROFF, Daniel , SCARLATA, Vincent R. , SAVAGAONKAR, Uday R. , JOHNSON, Simon P.
发明人： BRICKELL, Ernie F. , GUERON, Shay , LI, Jiangtao , ROZAS, Carlos V. , NEMIROFF, Daniel , SCARLATA, Vincent R. , SAVAGAONKAR, Uday R. , JOHNSON, Simon P.
IPC分类号： H04L9/08 , H04L9/14
CPC分类号： H04L9/0816 , G06F21/572 , G06F21/73
摘要： Keying materials used for providing security in a platform are securely provisioned both online and offline to devices in a remote platform. The secure provisioning of the keying materials is based on a revision of firmware installed in the platform.
摘要翻译：用于在平台中提供安全性的键控材料可以安全地在线和离线地配置到远程平台中的设备。密钥材料的安全配置基于安装在平台中的固件的修订版本。

6. 发明申请

WO2014112999A1 GROUPING OF PHYSICALLY UNCLONABLE FUNCTIONS 审中-公开
标题翻译：物理不可分割函数的分组
公开(公告)号：WO2014112999A1
公开(公告)日：2014-07-24
申请号：PCT/US2013/021765
申请日：2013-01-16
申请人： INTEL CORPORATION , LI, Jiangtao , KOEBERL, Patrick , MATHEW, Sanu K. , WU, Wei
发明人： LI, Jiangtao , KOEBERL, Patrick , MATHEW, Sanu K. , WU, Wei
IPC分类号： G06F17/00 , G06F9/06 , G06F13/14
CPC分类号： H03K19/17768 , G06F21/72 , H04L9/3247 , H04L9/3278
摘要： A physically unclonable function (PUF) includes a plurality of PUF elements to generate an N-bit PUF signature. For each bit in the N-bit PUF signature, a PUF group of K number of individual PUF elements indicating a single-bit PUF value is used to generate a group bit. The group bits are more repeatable than the individual PUF elements. The value K may be selected such that (K+1)/2 is an odd number.
摘要翻译：物理上不可克隆的功能（PUF）包括多个PUF元件以产生N位PUF签名。对于N位PUF签名中的每个比特，使用指示单位PUF值的K个个体PUF元素的PUF组来生成组比特。组位比PUF单个元件更可重复。可以选择值K使得（K + 1）/ 2是奇数。

7. 发明申请

WO2013100903A1 METHOD AND SYSTEM FOR SECURELY COMPUTING A BASE POINT IN DIRECT ANONYMOUS ATTESTATION 审中-公开
标题翻译：用于安全地计算直接无声指示中的基点的方法和系统
公开(公告)号：WO2013100903A1
公开(公告)日：2013-07-04
申请号：PCT/US2011/067384
申请日：2011-12-27
申请人： INTEL CORPORATION , LI, Jiangtao , BRICKELL, Ernie , WISEMAN, Willard Monten
发明人： LI, Jiangtao , BRICKELL, Ernie , WISEMAN, Willard Monten
IPC分类号： H04L9/32 , H04L9/08
CPC分类号： H04L9/0816 , H04L9/3066 , H04L9/3252 , H04L2209/127
摘要： A method and system computes a basepoint for use in a signing operation of a direct anonymous attestation scheme. The method and system includes computing a basepoint at a host computing device and verifying the base point at a trusted platform module (TPM) device.
摘要翻译：方法和系统计算用于直接匿名证明方案的签名操作的基点。该方法和系统包括在主计算设备处计算基点并验证可信平台模块（TPM）设备处的基点。

8. 发明申请

WO2014200496A1 SECURE PAIRING FOR COMMUNICATION ACROSS DEVICES 审中-公开
标题翻译：安全交付用于通信设备
公开(公告)号：WO2014200496A1
公开(公告)日：2014-12-18
申请号：PCT/US2013/045690
申请日：2013-06-13
申请人： INTEL CORPORATION , NEGI, Anusya , JOHNSON, Erik , LI, Jiangtao
发明人： NEGI, Anusya , JOHNSON, Erik , LI, Jiangtao
IPC分类号： H04L9/30
CPC分类号： H04L9/3268 , H04L9/0841
摘要： Technologies for securely pairing a first computing device with a second computing device include the first computing device to generate a session message key based on a key exchange with the second computing device. The first computing device receives a message including a hardware key certificate, 5 a cryptographically-signed communication, and a message authentication code from the second computing device. The cryptographically-signed communication is signed with a private hardware key of the second computing device. The first computing device validates the message authentication code, the certificate, and the signature received from the second computing device. After validation, the first computing device 10 identifies a user of the second computing device based on user-identifying data received from the second computing device.
摘要翻译：用于将第一计算设备与第二计算设备安全地配对的技术包括：第一计算设备，用于基于与第二计算设备的密钥交换来生成会话消息密钥。第一计算设备从第二计算设备接收包括硬件密钥证书，密码签名的通信和消息认证码的消息。密码签名的通信使用第二计算设备的专用硬件密钥进行签名。第一计算设备验证从第二计算设备接收的消息认证码，证书和签名。在验证之后，第一计算设备10基于从第二计算设备接收的用户识别数据来识别第二计算设备的用户。

9. 发明申请

WO2014105310A1 DEVICE AUTHENTICATION USING A PHYSICALLY UNCLONABLE FUNCTIONS BASED KEY GENERATION SYSTEM 审中-公开
标题翻译：使用基于物理不可靠函数的密钥生成系统的设备认证
公开(公告)号：WO2014105310A1
公开(公告)日：2014-07-03
申请号：PCT/US2013/071346
申请日：2013-11-21
申请人： INTEL CORPORATION , KOEBERL, Patrick , LI, Jiangtao
发明人： KOEBERL, Patrick , LI, Jiangtao
IPC分类号： G06F21/30
CPC分类号： G06F21/70 , G06F21/44 , G06F21/73
摘要： At least one machine accessible medium having instructions stored thereon for authenticating a hardware device is provided. When executed by a processor, the instructions cause the processor to receive two or more device keys from a physically unclonable function (PUF) on the hardware device, generate a device identifier from the two or more device keys, obtain a device certificate from the hardware device, perform a verification of the device identifier, and provide a result of the device identifier verification. In a more specific embodiment, the instructions cause the processor to perform a verification of a digital signature in the device certificate and to provide a result of the digital signature verification. The hardware device may be rejected if at least one of the device identifier verification and the digital signature verification fails.
摘要翻译：提供了至少一个具有存储在其上用于认证硬件设备的指令的机器可访问介质。当处理器执行时，指令使处理器从硬件设备上的物理不可克隆功能（PUF）接收两个或多个设备密钥，从两个或多个设备密钥生成设备标识符，从硬件获得设备证书设备，执行设备标识符的验证，并提供设备标识符验证的结果。在更具体的实施例中，指令使处理器执行设备证书中的数字签名的验证并提供数字签名验证的结果。如果设备标识符验证和数字签名验证中的至少一个失败，则硬件设备可能被拒绝。

10. 发明申请

WO2012018528A2 METHODS FOR ANONYMOUS AUTHENTICATION AND KEY AGREEMENT 审中-公开
标题翻译：非正式认证和关键协议的方法
公开(公告)号：WO2012018528A2
公开(公告)日：2012-02-09
申请号：PCT/US2011/044733
申请日：2011-07-20
申请人： INTEL CORPORATION , BRICKELL, Ernest F. , LI, Jiangtao , WALKER, Jesse
发明人： BRICKELL, Ernest F. , LI, Jiangtao , WALKER, Jesse
IPC分类号： H04L9/32 , H04L9/14
CPC分类号： H04L9/0844 , H04L9/0891 , H04L9/3255 , H04L9/3273 , H04L2209/42
摘要： Methods for anonymous authentication and key exchange are presented. In one embodiment, a method includes initiating a two-way mutual authentication between a device and a remote entity. The device remains anonymous to the remote entity after performing the authentication. The method also includes establishing a mutually shared session key for use in secure communication, wherein the initiating and the establishing are in conjunction with direct anonymous attestation (DAA).
摘要翻译：提出匿名认证和密钥交换的方法。在一个实施例中，一种方法包括启动设备和远程实体之间的双向相互认证。执行身份验证后，设备对远程实体保持匿名。该方法还包括建立用于安全通信的相互共享的会话密钥，其中启动和建立与直接匿名认证（DAA）结合。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式