专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明授权

US10936719B2 Preserving trust data during operating system updates of a secure element of an electronic device 有权
公开(公告)号：US10936719B2
公开(公告)日：2021-03-02
申请号：US15712097
申请日：2017-09-21
申请人： Apple Inc.
发明人： Hervé Sibert , Matthias Lerch , Oren M. Elrad , Peng Liu , Rahul Narayan Singh
IPC分类号： G06F9/44 , G06F21/57 , H04L29/06 , H04W12/08
摘要： Systems, methods, and computer-readable media for preserving trust data during operating system updates of a secure element of an electronic device are provide. An update package is received to update an existing secure element operating system to a new secure element operating system by exporting trust data from the existing secure element operating system, after the exporting, uninstalling the existing secure element operating system, migrating the exported trust data using a migration operating system when a data format version of the existing secure element operating system is different than a data format version of the new secure element operating system, installing the new secure element operating system, and importing the migrated trust data into the installed new secure element operating system.

2. 发明申请

US20160232343A1 BASEBAND SECURE BOOT WITH REMOTE STORAGE 有权
标题翻译：基带安全引导带远程存储
公开(公告)号：US20160232343A1
公开(公告)日：2016-08-11
申请号：US14632917
申请日：2015-02-26
申请人： APPLE INC.
发明人： Samuel D. Post , Onur E. Tackin , Yannick L. Sierra , Peng Liu
IPC分类号： G06F21/44 , G06F9/44 , H04W40/06
CPC分类号： G06F21/44 , G06F9/4401 , G06F21/57 , G06F21/572 , G06F21/575 , H04W40/06
摘要： In order to simplify and reduce the cost of an electronic device, the size of a first non-volatile memory associated with an integrated circuit is significantly reduced. Instead of using the first non-volatile memory, a second non-volatile memory associated with a processor in the electronic device is used to store an embedded operating system of the integrated circuit, as well as associated data and a configuration of the integrated circuit. To reduce the security risks associated with using this remote second non-volatile memory, the first non-volatile memory may store authorization information and anti-replay information. During a secure boot of the integrated circuit, the authorization information is used to verify that the embedded operating system, the data and the configuration are authorized. In addition, the anti-replay information is used to determine that the embedded operating system, the data and the configuration are different than previously received versions of these items.
摘要翻译：为了简化和降低电子设备的成本，与集成电路相关联的第一非易失性存储器的尺寸显着降低。代替使用第一非易失性存储器，与电子设备中的处理器相关联的第二非易失性存储器用于存储集成电路的嵌入式操作系统，以及相关联的数据和集成电路的配置。为了减少与使用该远程第二非易失性存储器相关联的安全风险，第一非易失性存储器可以存储授权信息和反重放信息。在集成电路的安全启动期间，授权信息用于验证嵌入式操作系统，数据和配置是否被授权。此外，反重放信息用于确定嵌入式操作系统，数据和配置与先前接收到的这些项目的版本不同。

3. 发明授权

US10303884B2 Countersigning updates for multi-chip devices 有权
公开(公告)号：US10303884B2
公开(公告)日：2019-05-28
申请号：US15588547
申请日：2017-05-05
申请人： Apple Inc.
发明人： Peng Liu , Ahmer A. Khan , Onur E. Tackin , Oren M. Elrad
IPC分类号： G06F1/00 , G06F21/57 , H04L9/32 , H04L29/06
摘要： A device facilitating countersigning updates for multi-chip devices includes at least one processor configured to receive, from a collocated chip, a data item and a software update, the data item being signed using a private key corresponding to a primary entity associated with the collocated chip and the data item comprising an authentication code generated using a symmetric key corresponding to a secondary entity associated with the software update. At least one processor is further configured to verify the data item using a public key associated with the primary entity. At least one processor is further configured to verify the software update based at least in part on the authentication code and using the symmetric key corresponding to the primary entity. At least one processor is further configured to install the software update when both the data item and the software update are verified, otherwise discard the software update.

4. 发明申请

US20180089434A1 PRESERVING TRUST DATA DURING OPERATING SYSTEM UPDATES OF A SECURE ELEMENT OF AN ELECTRONIC DEVICE 审中-公开
公开(公告)号：US20180089434A1
公开(公告)日：2018-03-29
申请号：US15712097
申请日：2017-09-21
申请人： Apple Inc.
发明人： Hervé Sibert , Matthias Lerch , Oren M. Elrad , Peng Liu , Rahul Narayan Singh
IPC分类号： G06F21/57 , H04L29/06
CPC分类号： G06F21/57 , H04L63/0853 , H04L63/107 , H04W12/08
摘要： Systems, methods, and computer-readable media for preserving trust data during operating system updates of a secure element of an electronic device are provided.

5. 发明授权

US09563765B2 Baseband secure boot with remote storage 有权
标题翻译：带有远程存储的基带安全引导
公开(公告)号：US09563765B2
公开(公告)日：2017-02-07
申请号：US14632917
申请日：2015-02-26
申请人： Apple Inc.
发明人： Samuel D. Post , Onur E. Tackin , Yannick L. Sierra , Peng Liu
IPC分类号： G06F7/04 , G06F12/14 , G06F17/30 , G11C7/00 , G06F21/44 , H04W40/06 , G06F9/44 , G06F21/57
CPC分类号： G06F21/44 , G06F9/4401 , G06F21/57 , G06F21/572 , G06F21/575 , H04W40/06
摘要： In order to simplify and reduce the cost of an electronic device, the size of a first non-volatile memory associated with an integrated circuit is significantly reduced. Instead of using the first non-volatile memory, a second non-volatile memory associated with a processor in the electronic device is used to store an embedded operating system of the integrated circuit, as well as associated data and a configuration of the integrated circuit. To reduce the security risks associated with using this remote second non-volatile memory, the first non-volatile memory may store authorization information and anti-replay information. During a secure boot of the integrated circuit, the authorization information is used to verify that the embedded operating system, the data and the configuration are authorized. In addition, the anti-replay information is used to determine that the embedded operating system, the data and the configuration are different than previously received versions of these items.
摘要翻译：为了简化和降低电子设备的成本，与集成电路相关联的第一非易失性存储器的尺寸显着降低。代替使用第一非易失性存储器，与电子设备中的处理器相关联的第二非易失性存储器用于存储集成电路的嵌入式操作系统，以及相关联的数据和集成电路的配置。为了减少与使用该远程第二非易失性存储器相关联的安全风险，第一非易失性存储器可以存储授权信息和反重放信息。在集成电路的安全启动期间，授权信息用于验证嵌入式操作系统，数据和配置是否被授权。此外，反重放信息用于确定嵌入式操作系统，数据和配置与先前接收到的这些项目的版本不同。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式