CA2606981C - Retrofitting authentication onto firmware - Google Patents
Retrofitting authentication onto firmware Download PDFInfo
- Publication number
- CA2606981C CA2606981C CA2606981A CA2606981A CA2606981C CA 2606981 C CA2606981 C CA 2606981C CA 2606981 A CA2606981 A CA 2606981A CA 2606981 A CA2606981 A CA 2606981A CA 2606981 C CA2606981 C CA 2606981C
- Authority
- CA
- Canada
- Prior art keywords
- accessory
- memory
- program code
- value
- host
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Classifications
-
- G—PHYSICS
- G06—COMPUTING OR CALCULATING; COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/50—Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
- G06F21/57—Certifying or maintaining trusted computer platforms, e.g. secure boots or power-downs, version controls, system software checks, secure updates or assessing vulnerabilities
-
- G—PHYSICS
- G06—COMPUTING OR CALCULATING; COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/50—Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
- G06F21/57—Certifying or maintaining trusted computer platforms, e.g. secure boots or power-downs, version controls, system software checks, secure updates or assessing vulnerabilities
- G06F21/572—Secure firmware programming, e.g. of basic input output system [BIOS]
-
- G—PHYSICS
- G06—COMPUTING OR CALCULATING; COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/70—Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer
- G06F21/78—Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure storage of data
- G06F21/79—Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure storage of data in semiconductor storage media, e.g. directly-addressable memories
-
- G—PHYSICS
- G06—COMPUTING OR CALCULATING; COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F2221/00—Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F2221/21—Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F2221/2129—Authenticate client device independently of the user
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Hardware Design (AREA)
- Theoretical Computer Science (AREA)
- Software Systems (AREA)
- General Engineering & Computer Science (AREA)
- Physics & Mathematics (AREA)
- General Physics & Mathematics (AREA)
- Storage Device Security (AREA)
Applications Claiming Priority (3)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| US67781605P | 2005-05-05 | 2005-05-05 | |
| US60/677,816 | 2005-05-05 | ||
| PCT/CA2006/000711 WO2006116871A2 (en) | 2005-05-05 | 2006-05-05 | Retrofitting authentication onto firmware |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CA2606981A1 CA2606981A1 (en) | 2006-11-09 |
| CA2606981C true CA2606981C (en) | 2016-09-06 |
Family
ID=37308333
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CA2606981A Active CA2606981C (en) | 2005-05-05 | 2006-05-05 | Retrofitting authentication onto firmware |
Country Status (6)
| Country | Link |
|---|---|
| US (1) | US8566791B2 (https=) |
| EP (1) | EP1877947A4 (https=) |
| JP (1) | JP4898790B2 (https=) |
| CN (1) | CN101218588B (https=) |
| CA (1) | CA2606981C (https=) |
| WO (1) | WO2006116871A2 (https=) |
Families Citing this family (27)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2006066397A1 (en) * | 2004-12-22 | 2006-06-29 | Certicom Corp. | Partial revocation list |
| US8467528B2 (en) * | 2006-08-31 | 2013-06-18 | Advanced Micro Devices, Inc. | Multimedia content protection |
| JP2008171041A (ja) * | 2007-01-05 | 2008-07-24 | Ricoh Co Ltd | 画像形成装置、画像形成装置の起動方法、制御装置及び拡張ユニットの起動方法 |
| US7841010B2 (en) * | 2007-01-08 | 2010-11-23 | Apple Inc. | Software or other information integrity verification using variable block length and selection |
| CA2618544C (en) * | 2007-01-16 | 2015-07-21 | Bally Gaming, Inc. | Rom bios based trusted encrypted operating system |
| US8171275B2 (en) | 2007-01-16 | 2012-05-01 | Bally Gaming, Inc. | ROM BIOS based trusted encrypted operating system |
| US20100174920A1 (en) * | 2009-01-06 | 2010-07-08 | Jonathan Peter Buckingham | Data processing apparatus |
| US20110268265A1 (en) * | 2010-04-30 | 2011-11-03 | Lathrop Alexander M | Disk media security system and method |
| US8918907B2 (en) * | 2011-04-13 | 2014-12-23 | Phoenix Technologies Ltd. | Approaches for firmware to trust an application |
| US9081954B2 (en) * | 2011-09-07 | 2015-07-14 | Intel Corporation | Verifying firmware integrity of a device |
| WO2014056515A1 (en) * | 2012-10-11 | 2014-04-17 | Irdeto B.V. | Chip verification |
| EP2808818B1 (en) * | 2013-05-29 | 2016-07-13 | Nxp B.V. | Processing system |
| CN104376276B (zh) * | 2013-08-16 | 2017-12-29 | 昆达电脑科技(昆山)有限公司 | 嵌入式Linux设备映像文件验证方法 |
| JP6181493B2 (ja) | 2013-09-20 | 2017-08-16 | 国立大学法人名古屋大学 | 書換検出システム、書換検出装置及び情報処理装置 |
| JP6342281B2 (ja) * | 2014-09-26 | 2018-06-13 | 国立大学法人名古屋大学 | 書換検出システム及び情報処理装置 |
| US10657262B1 (en) * | 2014-09-28 | 2020-05-19 | Red Balloon Security, Inc. | Method and apparatus for securing embedded device firmware |
| US10044654B2 (en) * | 2014-10-30 | 2018-08-07 | Oracle International Corporation | Operating a match cooperative without handling personally identifiable information |
| JP6338540B2 (ja) * | 2015-03-02 | 2018-06-06 | 日本電信電話株式会社 | 認証システム、認証結果利用サーバ及び認証方法 |
| US10616197B2 (en) * | 2016-04-18 | 2020-04-07 | Atmel Corporation | Message authentication with secure code verification |
| US10114941B2 (en) | 2016-08-24 | 2018-10-30 | Altera Corporation | Systems and methods for authenticating firmware stored on an integrated circuit |
| US10268823B2 (en) * | 2016-10-27 | 2019-04-23 | Wind River Systems, Inc. | Device, system, and method for securing executable operations |
| CN107451468A (zh) * | 2017-07-14 | 2017-12-08 | 杭州谷逸网络科技有限公司 | 一种控制设备的在线安全检测实现方法 |
| US11036863B2 (en) | 2017-08-01 | 2021-06-15 | Dell Products, L.P. | Validating an image using an embedded hash in an information handling system |
| US11720674B2 (en) | 2021-01-28 | 2023-08-08 | Northrop Grumman Systems Corporation | Systems and methods for malware detection |
| CN115220743A (zh) * | 2021-04-15 | 2022-10-21 | 玄甲微电子(北京)有限责任公司 | 处理器的微码更新方法、系统及存储介质 |
| CN113360177A (zh) * | 2021-06-07 | 2021-09-07 | 中电科思仪科技股份有限公司 | 一种用于矢量网络分析仪固件程序在线升级的装置及方法 |
| US20250165581A1 (en) * | 2022-02-22 | 2025-05-22 | Nippon Telegraph And Telephone Corporation | Authentication system, generation device, generation method, and generation program |
Family Cites Families (19)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| GB2205667B (en) * | 1987-06-12 | 1991-11-06 | Ncr Co | Method of controlling the operation of security modules |
| US6138236A (en) * | 1996-07-01 | 2000-10-24 | Sun Microsystems, Inc. | Method and apparatus for firmware authentication |
| US6026293A (en) * | 1996-09-05 | 2000-02-15 | Ericsson Inc. | System for preventing electronic memory tampering |
| GB9626241D0 (en) | 1996-12-18 | 1997-02-05 | Ncr Int Inc | Secure data processing method and system |
| US5954817A (en) | 1996-12-31 | 1999-09-21 | Motorola, Inc. | Apparatus and method for securing electronic information in a wireless communication device |
| JP3793629B2 (ja) | 1997-10-30 | 2006-07-05 | 沖電気工業株式会社 | メモリカードとメモリカード装置 |
| WO2000018162A1 (en) | 1998-09-18 | 2000-03-30 | Qualcomm Incorporated | Method and apparatus for authenticating embedded software in a remote unit over a communications channel |
| US6480800B1 (en) * | 1999-02-08 | 2002-11-12 | International Business Machines Corp. | Method and system for generating self-testing and random input stimuli for testing digital systems |
| US6571335B1 (en) | 1999-04-01 | 2003-05-27 | Intel Corporation | System and method for authentication of off-chip processor firmware code |
| WO2002008873A1 (en) * | 2000-07-25 | 2002-01-31 | Macrovision Coporation | System and method of verifying the authenticity of dynamically connectable executable images |
| WO2002021243A2 (en) | 2000-09-08 | 2002-03-14 | International Business Machines Corporation | Software secure authenticated channel |
| GB0116568D0 (en) * | 2001-07-06 | 2001-08-29 | Ncipher Corp Ltd | Firmware validation |
| JP4676724B2 (ja) * | 2003-08-12 | 2011-04-27 | 株式会社リコー | 情報処理装置、情報処理方法、情報処理プログラム、及び記録媒体 |
| US7142891B2 (en) * | 2003-10-10 | 2006-11-28 | Texas Instruments Incorporated | Device bound flashing/booting for cloning prevention |
| US20060101310A1 (en) * | 2004-10-22 | 2006-05-11 | Nimrod Diamant | Device, system and method for verifying integrity of software programs |
| US7818585B2 (en) * | 2004-12-22 | 2010-10-19 | Sap Aktiengesellschaft | Secure license management |
| US20060143600A1 (en) | 2004-12-29 | 2006-06-29 | Andrew Cottrell | Secure firmware update |
| JP2006191491A (ja) | 2005-01-07 | 2006-07-20 | Canon Inc | 情報処理装置及びその方法並びにプログラム及び記憶媒体 |
| US7490352B2 (en) * | 2005-04-07 | 2009-02-10 | Microsoft Corporation | Systems and methods for verifying trust of executable files |
-
2006
- 2006-05-05 CN CN2006800245939A patent/CN101218588B/zh active Active
- 2006-05-05 EP EP06721877A patent/EP1877947A4/en not_active Ceased
- 2006-05-05 WO PCT/CA2006/000711 patent/WO2006116871A2/en not_active Ceased
- 2006-05-05 CA CA2606981A patent/CA2606981C/en active Active
- 2006-05-05 US US11/418,462 patent/US8566791B2/en active Active
- 2006-05-05 JP JP2008509281A patent/JP4898790B2/ja active Active
Also Published As
| Publication number | Publication date |
|---|---|
| EP1877947A2 (en) | 2008-01-16 |
| EP1877947A4 (en) | 2009-11-25 |
| WO2006116871A2 (en) | 2006-11-09 |
| CN101218588A (zh) | 2008-07-09 |
| US8566791B2 (en) | 2013-10-22 |
| JP2008541211A (ja) | 2008-11-20 |
| US20070156638A1 (en) | 2007-07-05 |
| CA2606981A1 (en) | 2006-11-09 |
| CN101218588B (zh) | 2010-05-19 |
| WO2006116871A3 (en) | 2006-12-21 |
| JP4898790B2 (ja) | 2012-03-21 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CA2606981C (en) | Retrofitting authentication onto firmware | |
| US8250373B2 (en) | Authenticating and verifying an authenticable and verifiable module | |
| US8510570B2 (en) | System and method for authenticating a gaming device | |
| KR101795457B1 (ko) | 보안 기능이 강화된 디바이스의 초기화 방법 및 디바이스의 펌웨어 업데이트 방법 | |
| EP2294529A1 (en) | Electronic device and method of software or firmware updating of an electronic device | |
| US20190266331A1 (en) | Security processor for an embedded system | |
| JP4856080B2 (ja) | データ処理装置へのデータのセキュリティ上安全なロード及び格納 | |
| US20090327728A1 (en) | Methods for Supplying Cryptographic Algorithm Constants to a Storage-Constrained Target | |
| EP2270706B1 (en) | Loading secure code into a memory | |
| US20230273977A1 (en) | Managing ownership of an electronic device | |
| US20210064734A1 (en) | Cross authentication method for computer system security | |
| EP2270707B1 (en) | Loading secure code into a memory | |
| US20170060775A1 (en) | Methods and architecture for encrypting and decrypting data | |
| CN109586898B (zh) | 双系统通信密钥生成方法及计算机可读存储介质 | |
| KR100973733B1 (ko) | 메모리 카드 제어기 펌웨어의 하드웨어 드라이버 무결성체크 | |
| JP7268529B2 (ja) | 電子機器 | |
| EP4488863A1 (en) | Extended storage for a trusted platform module | |
| US20250322041A1 (en) | Managing ownership of an electronic device | |
| AU2013200551B2 (en) | System and method for authenticating a gaming device | |
| CN119622778A (zh) | 软件升级方法、计算设备及矿用设备 | |
| KR20070017455A (ko) | 프로세서 내에서의 보호된 리소스들로의 억세스에 대한안전한 보호 방법 |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| EEER | Examination request | ||
| H11 | Ip right ceased following rejected request for revival |
Free format text: ST27 STATUS EVENT CODE: T-6-6-H10-H11-H101 (AS PROVIDED BY THE NATIONAL OFFICE); EVENT TEXT: TIME LIMIT FOR REVERSAL EXPIRED Effective date: 20251106 |
|
| H13 | Ip right lapsed |
Free format text: ST27 STATUS EVENT CODE: N-4-6-H10-H13-H100 (AS PROVIDED BY THE NATIONAL OFFICE); EVENT TEXT: MAINTENANCE FEE AND LATE FEE NOT PAID BY DEADLINE OF NOTICE Effective date: 20251106 |
|
| W00 | Other event occurred |
Free format text: ST27 STATUS EVENT CODE: N-6-6-W10-W00-W100 (AS PROVIDED BY THE NATIONAL OFFICE); EVENT TEXT: LETTER SENT Effective date: 20251110 |