专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明授权

US11412373B2 Client privacy preserving session resumption 有权
公开(公告)号：US11412373B2
公开(公告)日：2022-08-09
申请号：US16839719
申请日：2020-04-03
申请人： NXP B.V.
发明人： Marcel Medwed , Stefan Lemsitzer
IPC分类号： H04W12/02 , H04W12/0433 , H04W12/069 , H04L9/32 , H04L9/40
摘要： Various embodiments relate to a method and system for resuming a secure communication session with a server by a device, including: sending a message to the server requesting the resumption of a secure communication session; receiving from the server a server identifier, a server nonce, and a salt; determining that the device has a shared key with the server based upon the server identifier; determining that the received salt is valid; calculating a salted identifier based upon the shared key and the salt; sending the salted identifier to the server; and resuming the secure communication session with the server.

2. 发明授权

US11272363B2 Authentication method in a communication system 有权
公开(公告)号：US11272363B2
公开(公告)日：2022-03-08
申请号：US16829401
申请日：2020-03-25
申请人： NXP B.V.
发明人： Marcel Medwed , Pim Vullers , Joost Roland Renes , Stefan Lemsitzer
IPC分类号： H04L29/06 , H04L9/32 , H04W12/06 , H04W12/037
摘要： A method is provided for authenticating one device to another device. In the method, a first device proves to a second device that a first credential comprising multiple first attributes is valid. The second device proves to the first device that a second credential comprising multiple second attributes is valid. The first device reveals a first attribute of the multiple first attributes to the second device. The second device verifies the first attribute and decides whether to continue revealing attributes. If continuing, the second device reveals to the first device a first attribute of the multiple second attributes. The first device verifies the first attribute of the multiple second attributes. The first device decides whether to continue revealing attributes. Attributes can be revealed until one of the first or second devices end the method or until no attributes of the multiple first and second attributes remain to be revealed.

3. 发明授权

US11295025B2 Probabilistic memory safety using cryptography 有权
公开(公告)号：US11295025B2
公开(公告)日：2022-04-05
申请号：US16427977
申请日：2019-05-31
申请人： NXP B.V.
发明人： Marcel Medwed , Jan Hoogerbrugge , Ventzislav Nikov , Asier Goikoetxea Yanci
IPC分类号： G06F21/60 , G06F17/18 , G06F21/62
摘要： A chip for securing storage of information includes a manager to access a pointer and a cipher engine to decrypt stored data. The pointer includes a first area and a second area. The first area includes an address indicating a storage location of the data and the second area includes a safety tag. The cipher engine decrypts the data output from the storage location based on a key and the safety tag in the second area of the pointer. These and other operations may be performed based on metadata that indicate probabilities that a correct safety tag was used to decrypt the data. In another embodiment, the manager may be replaced with an L1 cache.

4. 发明申请

US20210306852A1 AUTHENTICATION METHOD IN A COMMUNICATION SYSTEM 有权
公开(公告)号：US20210306852A1
公开(公告)日：2021-09-30
申请号：US16829401
申请日：2020-03-25
申请人： NXP B.V
发明人： Marcel Medwed , Pim Vullers , Joost Roland Renes , Stefan Lemsitzer
IPC分类号： H04W12/06 , H04L9/32 , H04W12/00
摘要： A method is provided for authenticating one device to another device. In the method, a first device proves to a second device that a first credential comprising multiple first attributes is valid. The second device proves to the first device that a second credential comprising multiple second attributes is valid. The first device reveals a first attribute of the multiple first attributes to the second device. The second device verifies the first attribute and decides whether to continue revealing attributes. If continuing, the second device reveals to the first device a first attribute of the multiple second attributes. The first device verifies the first attribute of the multiple second attributes. The first device decides whether to continue revealing attributes. Attributes can be revealed until one of the first or second devices end the method or until no attributes of the multiple first and second attributes remain to be revealed.

5. 发明授权

US10824560B2 Using a memory safety violation indicator to detect accesses to an out-of-bounds or unallocated memory area 有权
公开(公告)号：US10824560B2
公开(公告)日：2020-11-03
申请号：US16278246
申请日：2019-02-18
申请人： NXP B.V.
发明人： Jan Hoogerbrugge , Marcel Medwed , Ventzislav Nikov , Asier Goikoetxea Yanci
IPC分类号： G06F12/0802 , G06F12/0804 , G06F21/78 , G06F21/79
摘要： A data processing system and method for protecting a memory from unauthorized accesses are provided. The data processing system includes a system bus, a memory coupled to the system bus through a memory controller, and a processing core including a cache system. The memory controller is coupled to the system bus for controlling accesses to the memory that are requested by the processing core. A memory protection circuit uses one or more memory safety violation (MSV) indicators stored in out-of-bounds areas of the memory for detecting when the processing core attempts to access an out-of-bounds area of the memory. The processing core generates an error signal, such as an interrupt, when an attempt to access the out-of-bounds area is detected. The out-of-bounds area may be an unallocated area of the memory. The MSV indicator may be written to the memory by executing a flush instruction of the cache system, and may include the same number of bits as a cache line of the cache system. A data value of the MSV indicator may be a secret data value.

6. 发明申请

US20160072779A1 SECURING A CRYPTOGRAPHIC DEVICE AGAINST IMPLEMENTATION ATTACKS 有权
标题翻译：保护实施违规行为的制裁手段
公开(公告)号：US20160072779A1
公开(公告)日：2016-03-10
申请号：US14850886
申请日：2015-09-10
申请人： NXP B.V.
发明人： Marcel Medwed , Martin Feldhofer , Ventzislav Nikov
IPC分类号： H04L29/06
CPC分类号： H04L63/068 , H04L9/003 , H04L9/0618 , H04L63/062 , H04L2209/805
摘要： Methods of securing a cryptographic device against implementation attacks, are described. A disclosed method comprises the steps of obtaining a key (230) from memory of the cryptographic device; providing the key and a constant input (210) to an encryption module (240); deriving an output (250) of encrypted data bits using the encryption module (240); providing the output (250), the key (230) and an input vector (270) to a key update module (260); and using said key update module (260) to modify the key based on at least a part (270a) of the input vector (270) to derive an updated key (230a). This prevents the value of the key from being derived using the updated key or by using side-channel attacks because the input is constant for all keys. Additionally, by altering the input vector, the updated key is also altered.
摘要翻译：描述了保护加密设备免遭实施攻击的方法。所公开的方法包括从密码装置的存储器获取密钥（230）的步骤; 向加密模块（240）提供密钥和恒定输入（210）; 使用加密模块（240）导出加密数据比特的输出（250）; 向密钥更新模块（260）提供输出（250），密钥（230）和输入向量（270）; 以及使用所述密钥更新模块（260）基于所述输入向量（270）的至少一部分（270a）来修改所述密钥以导出更新的密钥（230a）。这样可以防止使用更新的密钥或通过使用侧信道攻击来导出密钥的值，因为所有密钥的输入是不变的。另外，通过改变输入向量，更新的密钥也被改变。

7. 发明申请

US20220330016A1 CLIENT PRIVACY PRESERVING SESSION RESUMPTION 有权
公开(公告)号：US20220330016A1
公开(公告)日：2022-10-13
申请号：US17851609
申请日：2022-06-28
申请人： NXP B.V.
发明人： Marcel Medwed , Stefan Lemsitzer
IPC分类号： H04W12/02 , H04W12/0433 , H04W12/069 , H04L9/32 , H04L9/40
摘要： Various embodiments relate to a method and system for resuming a secure communication session with a server by a device, including: sending a message to the server requesting the resumption of a secure communication session; receiving from the server a server identifier, a server nonce, and a salt; determining that the device has a shared key with the server based upon the server identifier; determining that the received salt is valid; calculating a salted identifier based upon the shared key and the salt; sending the salted identifier to the server; and resuming the secure communication session with the server.

8. 发明授权

US11055202B1 Compilation scheme for tagged global variables 有权
公开(公告)号：US11055202B1
公开(公告)日：2021-07-06
申请号：US16715656
申请日：2019-12-16
申请人： NXP B.V.
发明人： Jan Hoogerbrugge , Marcel Medwed
IPC分类号： G06F8/35 , G06F8/41 , G06F11/36
摘要： A system and method for accessing a tagged global variable in software, including: randomly generating tags for global variables in the software; tagging the global variables with the random tags; creating a pointer to each global variable with the random tags in unused bits of the pointer wherein the pointer points to the associated global variable; accessing one global variable indirectly using the tagged pointer; determining whether tag on the accessed global variable matches the tag on the accessed pointer; and indicating a fault when the tag on the accessed global variable does not match the tag on the accessed pointer.

9. 发明授权

US10567155B2 Securing a cryptographic device 有权
公开(公告)号：US10567155B2
公开(公告)日：2020-02-18
申请号：US15143259
申请日：2016-04-29
申请人： NXP B.V.
发明人： Marcel Medwed , Ventzislav Nikov , Martin Feldhofer
IPC分类号： H04L9/00 , H04L9/08 , G06F7/58 , H04L29/06 , H04L9/06
摘要： Methods of securing a cryptographic device against implementation attacks are described. A disclosed method comprises the steps of: generating secret values (324) using a pseudorandom generator (510); providing a key (330), an input (324) having a number of chunks and the secret values to an encryption module (340); indexing the chunks and the secret values (324); processing the input chunk wise by encrypting the secret values (324) indexed by the chunks using the key (330) and the encryption module (340); generating for each chunk a pseudorandom output (330′) of the encryption module (340), providing the pseudorandom output as the key (330′) when processing the next chunk; and performing a final transformation on the last pseudorandom output (330′) from the previous step by using it as a key to encrypt a fixed plaintext.

10. 发明申请

US20160323097A1 SECURING A CRYPTOGRAPHIC DEVICE 审中-公开
标题翻译：保护CRYPTOGRAPHIC设备
公开(公告)号：US20160323097A1
公开(公告)日：2016-11-03
申请号：US15143259
申请日：2016-04-29
申请人： NXP B.V.
发明人： Marcel Medwed , Ventzislav Nikov , Martin Feldhofer
IPC分类号： H04L9/00 , H04L9/06 , H04L29/06 , H04L9/08 , G06F7/58
CPC分类号： H04L9/002 , G06F7/582 , H04L9/003 , H04L9/0662 , H04L9/0869 , H04L9/0891 , H04L63/0457 , H04L63/08 , H04L63/123
摘要： Methods of securing a cryptographic device against implementation attacks are described. A disclosed method comprises the steps of: generating secret values (324) using a pseudorandom generator (510); providing a key (330), an input (324) having a number of chunks and the secret values to an encryption module (340); indexing the chunks and the secret values (324); processing the input chunk wise by encrypting the secret values (324) indexed by the chunks using the key (330) and the encryption module (340); generating for each chunk a pseudorandom output (330′) of the encryption module (340), providing the pseudorandom output as the key (330′) when processing the next chunk; and performing a final transformation on the last pseudorandom output (330′) from the previous step by using it as a key to encrypt a fixed plaintext.
摘要翻译：描述了保护加密设备免遭实施攻击的方法。所公开的方法包括以下步骤：使用伪随机发生器（510）产生秘密值（324）; 提供密钥（330），具有多个块的输入（324）和秘密值给加密模块（340）; 索引大块和秘密值（324）; 通过使用密钥（330）和加密模块（340）加密由块索引的秘密值（324）来处理输入块; 为每个块生成加密模块（340）的伪随机输出（330'），在处理下一个块时提供伪随机输出作为密钥（330'）; 并且通过使用它作为加密固定明文的密钥，对前一步骤的最后伪随机输出（330'）执行最终变换。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式