专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明申请

WO2009057091A1 SECURE DATA PROCESSING FOR UNALIGNED DATA 审中-公开
标题翻译：安全数据处理用于输入数据
公开(公告)号：WO2009057091A1
公开(公告)日：2009-05-07
申请号：PCT/IL2008/001384
申请日：2008-10-22
申请人： SANDISK IL LTD , DOLGUNOV, Boris , MINZ, Leonid , KROTMAN, Roy
发明人： DOLGUNOV, Boris , MINZ, Leonid , KROTMAN, Roy
IPC分类号： G06F13/28 , G06F21/00
CPC分类号： G06F13/28 , G06F21/602 , G06F21/72 , H04L9/0618 , Y02D10/14
摘要： A method for data cryptography includes accepting input data, which contains a section that is to undergo a cryptographic operation and starts at an offset with respect to a beginning of the input data, by a Direct Memory Access (DMA) module. The input data is aligned by the DMA module to cancel out the offset. The aligned input data is read out of the DMA module, and the cryptographic operation is performed on the section.
摘要翻译：一种用于数据加密的方法包括：接受直接存储器访问（DMA）模块的输入数据，该输入数据包含要进行密码操作并且相对于输入数据的开始以偏移开始的部分。输入数据由DMA模块对齐，以抵消偏移量。从DMA模块中读取对齐的输入数据，并对该部分执行加密操作。

2. 发明申请

WO2009057089A1 FAST SECURE BOOT IMPLEMENTATION 审中-公开
标题翻译：快速安全启动
公开(公告)号：WO2009057089A1
公开(公告)日：2009-05-07
申请号：PCT/IL2008/001382
申请日：2008-10-22
申请人： SANDISK IL LTD , DOLGUNOV, Boris , MINZ, Leonid
发明人： DOLGUNOV, Boris , MINZ, Leonid
IPC分类号： G06F21/00
CPC分类号： G06F9/4403 , G06F21/575
摘要： A method for data storage includes employing a first CPU to execute code from a ROM associated therewith. A second CPU is employed to upload code from a flash memory to a code RAM associated with the first CPU, while the first CPU is available to perform other tasks.
摘要翻译：一种用于数据存储的方法包括采用第一CPU从与其相关联的ROM执行代码。使用第二CPU将代码从闪存上传到与第一CPU相关联的代码RAM，而第一个CPU可用于执行其他任务。

3. 发明申请

WO2009109959A1 DIGITAL RANDOM NUMBER GENERATOR BASED ON DIGITALLY-CONTROLLED OSCILLATORS 审中-公开
标题翻译：基于数字控制振荡器的数字随机数发生器
公开(公告)号：WO2009109959A1
公开(公告)日：2009-09-11
申请号：PCT/IL2009/000216
申请日：2009-02-25
申请人： SANDISK IL LTD. , DROR, Itai , MINZ, Leonid , DOLGUNOV, Boris , KOUN, Michael
发明人： DROR, Itai , MINZ, Leonid , DOLGUNOV, Boris , KOUN, Michael
IPC分类号： G06F7/58
CPC分类号： G06F7/588
摘要： A system for random number generation includes a digital oscillator circuit, which has a set of available configurations and is operative to generate a random number sequence in accordance with a current configuration selected from the set. The system further includes a randomization circuit, which is operative to produce a pseudo-random stream of values corresponding to the available configurations of the digital oscillator circuit, and to control the digital oscillator circuit to alternate among the available configurations in accordance with the pseudo-random stream of values.
摘要翻译：用于随机数生成的系统包括数字振荡器电路，其具有一组可用配置，并且可操作以根据从组中选择的当前配置来生成随机数序列。该系统还包括随机化电路，其可操作地产生对应于数字振荡器电路的可用配置的值的伪随机流，并且根据伪随机电路控制数字振荡器电路在可用配置之间交替，随机流的值。

4. 发明申请

WO2009057097A1 SECURE PIPELINE MANAGER 审中-公开
标题翻译：安全管道经理
公开(公告)号：WO2009057097A1
公开(公告)日：2009-05-07
申请号：PCT/IL2008/001392
申请日：2008-10-22
申请人： SANDISK IL LTD , MINZ, Leonid , MEIR, Avraham , DOLGUNOV, Boris , KROTMAN, Roy
发明人： MINZ, Leonid , MEIR, Avraham , DOLGUNOV, Boris , KROTMAN, Roy
IPC分类号： G06F21/02
CPC分类号： G06F21/85 , G06F21/72
摘要： A method for data storage includes supplying data to and from a host to a storage memory via a secure data path. A first CPU is employed to control operation of the storage memory and a second CPU is employed to control operation of the secure data path.
摘要翻译：一种用于数据存储的方法包括经由安全数据路径向主机提供数据和从主机向存储存储器提供数据。采用第一CPU来控制存储存储器的操作，并且采用第二CPU来控制安全数据路径的操作。

5. 发明申请

WO2009057090A2 CONFIGURABLE RANDOM NUMBER GENERATOR 审中-公开
标题翻译：可配置随机数发生器
公开(公告)号：WO2009057090A2
公开(公告)日：2009-05-07
申请号：PCT/IL2008/001383
申请日：2008-10-22
申请人： SANDISK IL LTD. , DOLGUNOV, Boris , MINZ, Leonid , KROTMAN, Roy , DROR, Itai , KUN, Michael
发明人： DOLGUNOV, Boris , MINZ, Leonid , KROTMAN, Roy , DROR, Itai , KUN, Michael
IPC分类号： G06F7/58
CPC分类号： G06F7/588 , G06F7/58 , H04L9/0861
摘要： A method for random number generation includes generating random number sequences using a Random Number Generator (RNG) circuit having an externally-modifiable configuration. The RNG circuit generates a first random number sequence having a first measure of randomness. The configuration of the RNG circuit is modified, causing the RNG circuit to generate a second random number sequence having a second measure of the randomness, indicating a degree of the randomness that is no less than the first measure.
摘要翻译：用于随机数生成的方法包括使用具有外部可修改配置的随机数生成器（RNG）电路来生成随机数序列。 RNG电路产生具有第一随机度量的第一随机数序列。 RNG电路的配置被修改，导致RNG电路产生具有随机性的第二测量的第二随机数序列，指示不小于第一测量的随机程度。

6. 发明申请

WO2012127266A1 STORAGE DEVICE AND METHOD FOR UPDATING DATA IN A PARTITION OF THE STORAGE DEVICE 审中-公开
标题翻译：用于在存储设备的分区中更新数据的存储设备和方法
公开(公告)号：WO2012127266A1
公开(公告)日：2012-09-27
申请号：PCT/IB2011/000917
申请日：2011-04-28
申请人： SANDISK IL LTD. , DOLGUNOV, Boris , EKHAUZ, Nir , PAZ, Nir
发明人： DOLGUNOV, Boris , EKHAUZ, Nir , PAZ, Nir
IPC分类号： G06F21/00 , G06F21/02 , G06F3/06 , G06F11/14 , G06F9/445
CPC分类号： G06F21/78 , G06F3/0619 , G06F3/0644 , G06F3/0674 , G06F3/0679 , G06F8/656 , G06F11/1415 , G06F21/57
摘要： A storage device and method for updating data stored in a partition of the storage device are provided. In one embodiment, a storage device is provided that contains a logical-to-physical address map and a memory with a first partition storing original data and a second partition. The storage device receives from a host device (i) a command to write updated data to a first logical address and (ii) a signature for verifying integrity of the updated data, wherein the first logical address is mapped to a physical address of the first partition. The storage device then stores the updated data in the second partition instead of the first partition and attempts to verify the signature of the updated data. If the attempt to verify the signature is successful, the storage device updates the logical-to-physical address map to map the first logical address to a physical address of the second partition.
摘要翻译：提供一种用于更新存储在存储装置的分区中的数据的存储装置和方法。在一个实施例中，提供了一种包含逻辑到物理地址映射的存储设备和具有存储原始数据的第一分区和第二分区的存储器。存储设备从主机设备接收（i）将更新的数据写入第一逻辑地址的命令和（ii）用于验证更新的数据的完整性的签名，其中第一逻辑地址映射到第一逻辑地址的物理地址划分。然后，存储设备将更新的数据存储在第二分区中而不是第一分区中，并尝试验证更新的数据的签名。如果验证签名的尝试成功，则存储设备更新逻辑到物理地址映射以将第一逻辑地址映射到第二分区的物理地址。

7. 发明申请

WO2009057099A1 WRITE FAILURE PROTECTION FOR HIERARCHICAL INTEGRITY SCHEMES 审中-公开
标题翻译：用于分层整合方案的写失败保护
公开(公告)号：WO2009057099A1
公开(公告)日：2009-05-07
申请号：PCT/IL2008/001394
申请日：2008-10-22
申请人： SANDISK IL LTD. , AHARONOV, Arseniy , DOLGUNOV, Boris
发明人： AHARONOV, Arseniy , DOLGUNOV, Boris
IPC分类号： G06F21/24
CPC分类号： G06F21/64 , G06F21/78
摘要： A method for data integrity protection includes arranging in an integrity hierarchy a plurality of data blocks, which contain data. The integrity hierarchy includes multiple levels of signature blocks containing signatures computed respectively over lower levels in the hierarchy, wherein the levels culminate in a top-level block containing a top-level signature computed over the hierarchy. Blocks are stored in respective first locations in a storage medium. A modification to be made in the date stored in a given data block is received. One or more of the signatures is recomputed in response to the modification, including the top-level signature. Copies of the given data block, and of the signature blocks, including a copy of the top-level block, are stored in respective second locations in the storage medium. An indication that the copy is a valid version of the top-level block is recorded in the copy of the top-level block.
摘要翻译：一种用于数据完整性保护的方法包括在完整性层级中布置包含数据的多个数据块。完整性层次结构包括多个级别的签名块，其包含分别在层次结构中的较低级别上计算的签名，其中级别最终导致包含在层次结构上计算的顶级签名的顶级块。块存储在存储介质中的相应的第一位置。接收在存储在给定数据块中的日期进行的修改。响应于修改重新计算一个或多个签名，包括顶级签名。给定数据块和包括顶级块的副本的签名块的副本被存储在存储介质中的相应的第二位置中。该副本是顶级块的有效版本的指示被记录在顶级块的副本中。

8. 发明申请

WO2009057095A1 SECURE OVERLAY MANAGER PROTECTION 审中-公开
标题翻译：安全覆盖管理者保护
公开(公告)号：WO2009057095A1
公开(公告)日：2009-05-07
申请号：PCT/IL2008/001388
申请日：2008-10-22
申请人： SANDISK IL LTD. , DOLGUNOV, Boris , HALEVI, Yonatan , SHEN, Eran , SAMUELOV, Amir , COHEN, Niv , HOLTZMAN, Michael , SELA, Rotem
发明人： DOLGUNOV, Boris , HALEVI, Yonatan , SHEN, Eran , SAMUELOV, Amir , COHEN, Niv , HOLTZMAN, Michael , SELA, Rotem
IPC分类号： G06F21/00
CPC分类号： G06F21/57 , G06F21/572
摘要： A method for protection of data includes maintaining a control parameter indicative of a current version of the data. The data is partitioned into multiple segments. Respective signatures of the segments are computed, responsively to the control parameter, the segments and respective signatures forming respective signed input segments, which are stored in a memory. After the signed input segments are stored, a signed output segment is fetched from the memory. The signature of the signed output segment is verified responsively to the control parameter, and the data in the signed output segment is processed responsively to verifying the signature.
摘要翻译：用于保护数据的方法包括维护指示数据的当前版本的控制参数。数据被分割成多个段。响应于控制参数，形成分别存储在存储器中的相应带符号输入段的段和相应签名来计算段的相应签名。在有符号输入段被存储之后，从存储器中取出带符号的输出段。响应于控制参数验证有符号输出段的签名，并且响应地处理签名输出段中的数据以验证签名。

9. 发明申请

WO2009057093A1 RE-FLASH PROTECTION FOR FLASH MEMORY 审中-公开
标题翻译：闪存保护
公开(公告)号：WO2009057093A1
公开(公告)日：2009-05-07
申请号：PCT/IL2008/001386
申请日：2008-10-22
申请人： SANDISK IL LTD. , DOLGUNOV, Boris , AHARONOV, Arseniy
发明人： DOLGUNOV, Boris , AHARONOV, Arseniy
IPC分类号： G06F21/00
CPC分类号： G06F21/554 , G06F21/64 , G06F21/79
摘要： A method for storing data includes providing a memory package including an integrated circuit containing a non-volatile memory and counter circuitry. The data is written to the non-volatile memory. The counter circuitry is operated to maintain a count of write operations performed on the non-volatile memory. The data and the count from the memory package are received at a controller, separate from the memory package, and the data is authenticated in response to the count.
摘要翻译：一种用于存储数据的方法包括提供包括包含非易失性存储器和计数器电路的集成电路的存储器包。数据被写入非易失性存储器。操作计数器电路以维持对非易失性存储器执行的写入操作的计数。来自存储器包的数据和计数在与存储器包分开的控制器处被接收，并且数据被认证以响应于计数。

10. 发明申请

WO2011161494A1 STORAGE DEVICE, HOST DEVICE, AND METHOD FOR COMMUNICATING A PASSWORD BETWEEN FIRST AND SECOND STORAGE DEVICES USING A DOUBLE-ENCRYPTION SCHEME 审中-公开
标题翻译：存储设备，主机设备以及使用双重加密方案来传送第一和第二存储设备之间的密码的方法
公开(公告)号：WO2011161494A1
公开(公告)日：2011-12-29
申请号：PCT/IB2010/002077
申请日：2010-08-25
申请人： SANDISK IL LTD. , DOLGUNOV, Boris , SOBOL, Eyal , MATOT, David , BABAYOV, Vered
发明人： DOLGUNOV, Boris , SOBOL, Eyal , MATOT, David , BABAYOV, Vered
IPC分类号： G06F21/00 , G06F21/20
CPC分类号： G06F21/34 , G06F21/31
摘要： A first storage device provides a host device with access to a private memory area by communicating a password between the first storage device and a second storage device via the host device using a double-encryption scheme. In one embodiment, a host device receives a twice-encrypted password from a first storage device, sends the twice- encrypted password to a second storage device, receives a once-encrypted password from the second storage device, decrypts the once-encrypted password to obtain the password, and sends the password to the first storage device. In another embodiment, a first storage device sends a twice-encrypted password to a host device, receives the password from the host device after the twice-encrypted password is decrypted by a second storage device and the host device, and provides the host device with access to the private memory area only if the password matches one that is stored in the first storage device.
摘要翻译：第一存储设备通过使用双加密方案经由主机设备在第一存储设备和第二存储设备之间传送密码来向主机设备提供对专用存储器区域的访问。在一个实施例中，主机设备从第一存储设备接收两次加密的密码，将二次加密的密码发送到第二存储设备，从第二存储设备接收一次加密的密码，将一次加密的密码解密为获取密码，并将密码发送到第一个存储设备。在另一个实施例中，第一存储设备向主机设备发送两次加密的密码，在由第二存储设备和主设备解密两次加密的密码之后从主机设备接收密码，并向主机设备提供仅当密码与存储在第一存储设备中的密码匹配时，才能访问私有内存区域。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式