专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明申请

US20120166781A1 SINGLE SECURITY MODEL IN BOOTING A COMPUTING DEVICE 有权
标题翻译：打击计算机设备的单一安全模型
公开(公告)号：US20120166781A1
公开(公告)日：2012-06-28
申请号：US13411355
申请日：2012-03-02
申请人： Joshua de Cesare , Dallas Blake De Atley , Jonathan Jay Andrews , Michael John Smith
发明人： Joshua de Cesare , Dallas Blake De Atley , Jonathan Jay Andrews , Michael John Smith
IPC分类号： G06F21/00 , G06F9/44
CPC分类号： G06F21/575 , H04N7/162 , H04N21/4432
摘要： A method and apparatus for securely booting software components in an electronic device to establish an operating environment are described herein. According to an aspect of the invention, software components are to be executed in sequence in order to establish an operating environment of a device. For each software component, a security code is executed to authenticate and verify an executable code image associated with each software component using one or more keys embedded within a secure ROM (read-only memory) of the device and one or more hardware configuration settings of the device. The security code for each software component includes a common functionality to authenticate and verify the executable code image associated with each software component. In response to successfully authenticating and verifying the executable code image, the executable code image is then executed in a main memory of the device to launch the associated software component.
摘要翻译：这里描述了用于安全地引导电子设备中的软件组件以建立操作环境的方法和装置。根据本发明的一个方面，软件组件将按顺序执行，以便建立设备的操作环境。对于每个软件组件，执行安全代码以使用嵌入在设备的安全ROM（只读存储器）中的一个或多个密钥来验证和验证与每个软件组件相关联的可执行代码图像，以及一个或多个硬件配置设置装置。每个软件组件的安全代码包括用于认证和验证与每个软件组件相关联的可执行代码映像的通用功能。响应于成功地认证和验证可执行代码图像，然后在设备的主存储器中执行可执行代码图像以启动相关联的软件组件。

2. 发明授权

US08150039B2 Single security model in booting a computing device 有权
标题翻译：启动计算设备时的单一安全模型
公开(公告)号：US08150039B2
公开(公告)日：2012-04-03
申请号：US12103685
申请日：2008-04-15
申请人： Joshua de Cesare , Dallas Blake De Atley , Jonathan Jay Andrews , Michael John Smith
发明人： Joshua de Cesare , Dallas Blake De Atley , Jonathan Jay Andrews , Michael John Smith
IPC分类号： H04L9/00
CPC分类号： G06F21/575 , H04N7/162 , H04N21/4432
摘要： A method and apparatus for securely booting software components in an electronic device to establish an operating environment are described herein. According to an aspect of the invention, software components are to be executed in sequence in order to establish an operating environment of a device. For each software component, a security code is executed to authenticate and verify an executable code image associated with each software component using one or more keys embedded within a secure ROM (read-only memory) of the device and one or more hardware configuration settings of the device. The security code for each software component includes a common functionality to authenticate and verify the executable code image associated with each software component. In response to successfully authenticating and verifying the executable code image, the executable code image is then executed in a main memory of the device to launch the associated software component.
摘要翻译：这里描述了用于安全地引导电子设备中的软件组件以建立操作环境的方法和装置。根据本发明的一个方面，软件组件将按顺序执行，以便建立设备的操作环境。对于每个软件组件，执行安全代码以使用嵌入在设备的安全ROM（只读存储器）中的一个或多个密钥来验证和验证与每个软件组件相关联的可执行代码图像，以及一个或多个硬件配置设置装置。每个软件组件的安全代码包括用于认证和验证与每个软件组件相关联的可执行代码映像的通用功能。响应于成功地认证和验证可执行代码图像，然后在设备的主存储器中执行可执行代码图像以启动相关联的软件组件。

3. 发明申请

US20090257595A1 Single Security Model In Booting A Computing Device 有权
标题翻译：单个安全模型引导计算设备
公开(公告)号：US20090257595A1
公开(公告)日：2009-10-15
申请号：US12103685
申请日：2008-04-15
申请人： Joshua de Cesare , Dallas Blake De Atley , Jonathan Jay Andrews , Michael John Smith
发明人： Joshua de Cesare , Dallas Blake De Atley , Jonathan Jay Andrews , Michael John Smith
IPC分类号： G06F21/00 , H04L9/00
CPC分类号： G06F21/575 , H04N7/162 , H04N21/4432
摘要： A method and apparatus for securely booting software components in an electronic device to establish an operating environment are described herein. According to an aspect of the invention, software components are to be executed in sequence in order to establish an operating environment of a device. For each software component, a security code is executed to authenticate and verify an executable code image associated with each software component using one or more keys embedded within a secure ROM (read-only memory) of the device and one or more hardware configuration settings of the device. The security code for each software component includes a common functionality to authenticate and verify the executable code image associated with each software component. In response to successfully authenticating and verifying the executable code image, the executable code image is then executed in a main memory of the device to launch the associated software component.
摘要翻译：这里描述了用于安全地引导电子设备中的软件组件以建立操作环境的方法和装置。根据本发明的一个方面，软件组件将按顺序执行，以便建立设备的操作环境。对于每个软件组件，执行安全代码以使用嵌入在设备的安全ROM（只读存储器）中的一个或多个密钥来验证和验证与每个软件组件相关联的可执行代码图像，以及一个或多个硬件配置设置装置。每个软件组件的安全代码包括用于认证和验证与每个软件组件相关联的可执行代码映像的通用功能。响应于成功地认证和验证可执行代码图像，然后在设备的主存储器中执行可执行代码图像以启动相关联的软件组件。

4. 发明授权

US08560820B2 Single security model in booting a computing device 有权
标题翻译：启动计算设备时的单一安全模型
公开(公告)号：US08560820B2
公开(公告)日：2013-10-15
申请号：US13411355
申请日：2012-03-02
申请人： Joshua de Cesare , Dallas Blake De Atley , Jonathan Jay Andrews , Michael John Smith
发明人： Joshua de Cesare , Dallas Blake De Atley , Jonathan Jay Andrews , Michael John Smith
IPC分类号： G06F9/00
CPC分类号： G06F21/575 , H04N7/162 , H04N21/4432
摘要： A method and apparatus for securely booting software components in an electronic device to establish an operating environment are described herein. According to an aspect of the invention, software components are to be executed in sequence in order to establish an operating environment of a device. For each software component, a security code is executed to authenticate and verify an executable code image associated with each software component using one or more keys embedded within a secure ROM (read-only memory) of the device and one or more hardware configuration settings of the device. The security code for each software component includes a common functionality to authenticate and verify the executable code image associated with each software component. In response to successfully authenticating and verifying the executable code image, the executable code image is then executed in a main memory of the device to launch the associated software component.
摘要翻译：这里描述了用于安全地引导电子设备中的软件组件以建立操作环境的方法和装置。根据本发明的一个方面，软件组件将按顺序执行，以便建立设备的操作环境。对于每个软件组件，执行安全代码以使用嵌入在设备的安全ROM（只读存储器）中的一个或多个密钥来验证和验证与每个软件组件相关联的可执行代码图像，以及一个或多个硬件配置设置装置。每个软件组件的安全代码包括用于认证和验证与每个软件组件相关联的可执行代码映像的通用功能。响应于成功地认证和验证可执行代码图像，然后在设备的主存储器中执行可执行代码图像以启动相关联的软件组件。

5. 发明申请

US20090259855A1 Code Image Personalization For A Computing Device 审中-公开
标题翻译：计算设备的代码图像个性化
公开(公告)号：US20090259855A1
公开(公告)日：2009-10-15
申请号：US12103696
申请日：2008-04-15
申请人： Joshua de Cesare , Dallas Blake De Atley , Jonathan Jay Andrews , Michael Smith
发明人： Joshua de Cesare , Dallas Blake De Atley , Jonathan Jay Andrews , Michael Smith
IPC分类号： G06F21/00
CPC分类号： G06F21/575 , G06F21/51 , G06F2221/0704
摘要： A method and apparatus for personalizing a software component to be executed in particular environment are described herein. According to an aspect of the invention, in response to an executable code image representing a software component to be installed in an electronic device, the executable code image is encrypted using an encryption key. The encryption key is then wrapped with a UID that uniquely identifies the electronic device, where the UID is embedded within a secure ROM of the electronic device. The wrapped encryption key and the encrypted executable code image are then encapsulated into a data object to be stored in a storage of the electronic device, such that when the electronic device is subsequently initialized for operation, the executable code image can only be recovered using the UID of the electronic device to retrieve a decryption key in order to decrypt the executable code image.
摘要翻译：本文描述了用于个性化要在特定环境中执行的软件组件的方法和装置。根据本发明的一个方面，响应于表示要安装在电子设备中的软件组件的可执行代码图像，使用加密密钥对可执行代码图像进行加密。加密密钥然后用唯一标识电子设备的UID包裹，其中UID嵌入在电子设备的安全ROM内。然后将包裹的加密密钥和加密的可执行代码图像封装到要存储在电子设备的存储器中的数据对象中，使得当电子设备随后被初始化以进行操作时，可以仅使用用于检索解密密钥以便解密可执行代码图像的电子设备的UID。

6. 发明授权

US08291480B2 Trusting an unverified code image in a computing device 有权
标题翻译：信任计算设备中未验证的代码映像
公开(公告)号：US08291480B2
公开(公告)日：2012-10-16
申请号：US11620699
申请日：2007-01-07
申请人： Joshua de Cesare , Michael Smith , Dallas Blake De Atley , John Andrew Wright
发明人： Joshua de Cesare , Michael Smith , Dallas Blake De Atley , John Andrew Wright
IPC分类号： G06F7/04
CPC分类号： G06F21/00 , G06F21/575
摘要： A method and an apparatus for configuring a key stored within a secure storage area (e.g., ROM) of a device including one of enabling and disabling the key according to a predetermined condition to execute a code image are described. The key may uniquely identify the device. The code image may be loaded from a provider satisfying a predetermined condition to set up at least one component of an operating environment of the device. Verification of the code image may be optional according to the configuration of the key. Secure execution of an unverified code image may be based on a configuration that disables the key.
摘要翻译：描述了一种用于配置存储在装置的安全存储区域（例如，ROM）中的密钥的方法和装置，包括根据预定条件启用和禁用密钥以执行代码图像之一的设备。密钥可以唯一标识设备。可以从满足预定条件的提供商加载代码图像以建立设备的操作环境的至少一个组件。根据密钥的配置，验证码图像可以是可选的。未经验证的代码图像的安全执行可能基于禁用该键的配置。

7. 发明授权

US08230412B2 Compatible trust in a computing device 有权
标题翻译：兼容计算设备的信任
公开(公告)号：US08230412B2
公开(公告)日：2012-07-24
申请号：US11897655
申请日：2007-08-31
申请人： Dallas Blake De Atley , Joshua de Cesare , Michael Smith , Jerry Hauck , Jeffrey Bush
发明人： Dallas Blake De Atley , Joshua de Cesare , Michael Smith , Jerry Hauck , Jeffrey Bush
IPC分类号： G06F9/44 , G06F9/00 , G06F7/04
CPC分类号： G06F21/577 , G06F21/575
摘要： A method and apparatus for executing a first executable code image having a first version number into a memory of a device in an attempt to establish an operating environment of the device are described. The first executable code image retrieves a second version number from the second executable code image after successfully authenticating the second executable code image. If the first version number and the second version number do not satisfy a predetermined relationship, the second executable code image is prevented from being loaded by the first executable code image.
摘要翻译：描述了用于执行具有第一版本号的第一可执行代码图像到设备的存储器中以尝试建立该设备的操作环境的方法和装置。第一可执行代码图像在成功验证第二可执行代码图像之后从第二可执行代码图像检索第二版本号。如果第一版本号和第二版本号不满足预定关系，则防止第二可执行代码图像被第一可执行代码图像加载。

8. 发明申请

US20080168275A1 Securely Recovering a Computing Device 有权
标题翻译：安全地恢复计算设备
公开(公告)号：US20080168275A1
公开(公告)日：2008-07-10
申请号：US11620697
申请日：2007-01-07
申请人： Dallas Blake De Atley , Joshua de Cesare , Michael Smith , Matthew Reda , Shantonu Sen , John Andrew Wright
发明人： Dallas Blake De Atley , Joshua de Cesare , Michael Smith , Matthew Reda , Shantonu Sen , John Andrew Wright
IPC分类号： H04L9/30 , G06F15/16
CPC分类号： H04L9/302 , G06F11/1417 , G06F21/51 , G06F21/572 , G06F21/575 , G06F21/64 , H04L9/14 , H04L9/3239 , H04L9/3247 , H04L9/3249 , H04L63/06 , H04L63/08
摘要： A method and an apparatus for establishing an operating environment by certifying a code image received from a host over a communication link are described. The code image may be digitally signed through a central authority server. Certification of the code image may be determined by a fingerprint embedded within a secure storage area such as a ROM (read only memory) of the portable device based on a public key certification process. A certified code image may be assigned a hash signature to be stored in a storage of the portable device. An operating environment of the portable device may be established after executing the certified code.
摘要翻译：描述了通过通过通信链路验证从主机接收的代码图像来建立操作环境的方法和装置。代码图像可以通过中央授权服务器进行数字签名。代码图像的认证可以由嵌入在诸如便携式设备的ROM（只读存储器）的安全存储区域内的指纹基于公开密钥认证过程来确定。可以向经认证的代码图像分配要存储在便携式设备的存储器中的散列签名。可以在执行认证代码之后建立便携式设备的操作环境。

9. 发明申请

US20080165971A1 Trusting an Unverified Code Image in a Computing Device 有权
标题翻译：信任计算设备中未验证的代码图像
公开(公告)号：US20080165971A1
公开(公告)日：2008-07-10
申请号：US11620699
申请日：2007-01-07
申请人： Joshua de Cesare , Michael Smith , Dallas Blake De Atley , John Andrew Wright
发明人： Joshua de Cesare , Michael Smith , Dallas Blake De Atley , John Andrew Wright
IPC分类号： H04L9/00
CPC分类号： G06F21/00 , G06F21/575
摘要： A method and an apparatus for configuring a key stored within a secure storage area (e.g., ROM) of a device including one of enabling and disabling the key according to a predetermined condition to execute a code image are described. The key may uniquely identify the device. The code image may be loaded from a provider satisfying a predetermined condition to set up at least one component of an operating environment of the device. Verification of the code image may be optional according to the configuration of the key. Secure execution of an unverified code image may be based on a configuration that disables the key.
摘要翻译：描述了一种用于配置存储在装置的安全存储区域（例如，ROM）中的密钥的方法和装置，包括根据预定条件启用和禁用密钥以执行代码图像之一的设备。密钥可以唯一标识设备。可以从满足预定条件的提供商加载代码图像以建立设备的操作环境的至少一个组件。根据密钥的配置，验证码图像可以是可选的。未经验证的代码图像的安全执行可能基于禁用该键的配置。

10. 发明申请

US20080165952A1 Secure Booting A Computing Device 有权
标题翻译：安全引导计算设备
公开(公告)号：US20080165952A1
公开(公告)日：2008-07-10
申请号：US11620689
申请日：2007-01-07
申请人： Michael Smith , Joshua de Cesare , Dallas Blake De Atley , John Andrew Wright
发明人： Michael Smith , Joshua de Cesare , Dallas Blake De Atley , John Andrew Wright
IPC分类号： H04L9/28 , G06F21/00 , H04L9/00 , G06F15/177
CPC分类号： G06F21/57 , G06F21/575 , G06F2221/2129
摘要： A method and an apparatus for executing codes embedded inside a device to verify a code image loaded in a memory of the device are described. A code image may be executed after being verified as a trusted code image. The embedded codes may be stored in a secure ROM (read only memory) chip of the device. In one embodiment, the verification of the code image is based on a key stored within the secure ROM chip. The key may be unique to each device. Access to the key may be controlled by the associated secure ROM chip. The device may complete establishing an operating environment subsequent to executing the verified code image.
摘要翻译：描述用于执行嵌入在设备内的代码以验证加载在设备的存储器中的代码图像的方法和装置。可以在验证为可信代码图像之后执行代码图像。嵌入代码可以存储在设备的安全ROM（只读存储器）芯片中。在一个实施例中，代码图像的验证基于存储在安全ROM芯片内的密钥。每个设备的密钥可能是唯一的。访问密钥可以由相关的安全ROM芯片来控制。设备可以在执行验证的代码图像之后完成建立操作环境。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式