CN103858131B - 带有安全运行时环境的微控制器系统 - Google Patents

带有安全运行时环境的微控制器系统 Download PDF

Info

Publication number
CN103858131B
CN103858131B CN201280049509.4A CN201280049509A CN103858131B CN 103858131 B CN103858131 B CN 103858131B CN 201280049509 A CN201280049509 A CN 201280049509A CN 103858131 B CN103858131 B CN 103858131B
Authority
CN
China
Prior art keywords
runtime environment
secure
operating system
access
driver
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN201280049509.4A
Other languages
English (en)
Chinese (zh)
Other versions
CN103858131A (zh
Inventor
斯蒂芬·斯匹兹
马库斯·蔻尔
乌尔里奇·马丁尼
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Giesecke+Devrient GmbH
Original Assignee
Giesecke+Devrient GmbH
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Giesecke+Devrient GmbH filed Critical Giesecke+Devrient GmbH
Publication of CN103858131A publication Critical patent/CN103858131A/zh
Application granted granted Critical
Publication of CN103858131B publication Critical patent/CN103858131B/zh
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/62Protecting access to data via a platform, e.g. using keys or access control rules
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/50Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
    • G06F21/52Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems during program execution, e.g. stack integrity ; Preventing unwanted data erasure; Buffer overflow
    • G06F21/53Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems during program execution, e.g. stack integrity ; Preventing unwanted data erasure; Buffer overflow by executing in a restricted environment, e.g. sandbox or secure virtual machine
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/50Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
    • G06F21/57Certifying or maintaining trusted computer platforms, e.g. secure boots or power-downs, version controls, system software checks, secure updates or assessing vulnerabilities
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F9/00Arrangements for program control, e.g. control units
    • G06F9/06Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
    • G06F9/46Multiprogramming arrangements
    • G06F9/54Interprogram communication

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Theoretical Computer Science (AREA)
  • Software Systems (AREA)
  • Computer Hardware Design (AREA)
  • General Engineering & Computer Science (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Health & Medical Sciences (AREA)
  • Bioethics (AREA)
  • General Health & Medical Sciences (AREA)
  • Storage Device Security (AREA)
CN201280049509.4A 2011-10-07 2012-10-04 带有安全运行时环境的微控制器系统 Active CN103858131B (zh)

Applications Claiming Priority (3)

Application Number Priority Date Filing Date Title
DE102011115135A DE102011115135A1 (de) 2011-10-07 2011-10-07 Mikroprozessorsystem mit gesicherter Laufzeitumgebung
DE102011115135.8 2011-10-07
PCT/EP2012/004159 WO2013050154A1 (de) 2011-10-07 2012-10-04 Mikroprozessorsystem mit gesicherter laufzeitumgebung

Publications (2)

Publication Number Publication Date
CN103858131A CN103858131A (zh) 2014-06-11
CN103858131B true CN103858131B (zh) 2017-03-29

Family

ID=47073399

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201280049509.4A Active CN103858131B (zh) 2011-10-07 2012-10-04 带有安全运行时环境的微控制器系统

Country Status (8)

Country Link
US (1) US9875366B2 (https=)
EP (1) EP2764464B1 (https=)
JP (1) JP2014533395A (https=)
KR (1) KR101843730B1 (https=)
CN (1) CN103858131B (https=)
BR (1) BR112014006543B1 (https=)
DE (1) DE102011115135A1 (https=)
WO (1) WO2013050154A1 (https=)

Families Citing this family (13)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
DE102011018431A1 (de) 2011-04-21 2012-10-25 Giesecke & Devrient Gmbh Verfahren zur Anzeige von Informationen auf einer Anzeigeeinrichtung eines Endgeräts
US9432348B2 (en) 2012-04-20 2016-08-30 Ologn Technologies Ag Secure zone for secure purchases
FR2998694B1 (fr) * 2012-11-27 2016-01-01 Oberthur Technologies Module electronique pour rendre un message accessible par un systeme d'exploitation vise
FR2998747B1 (fr) * 2012-11-27 2015-01-23 Oberthur Technologies Procede d'aiguillage d'un message
US20140281447A1 (en) * 2013-03-12 2014-09-18 Green Hills Software, Inc. Single-Chip Virtualizing and Obfuscating Communications System for Portable Computing Devices
CN104252388B (zh) * 2013-06-27 2018-10-23 中国银联股份有限公司 移动设备中的非可信环境与可信环境之间的切换
US10129242B2 (en) 2013-09-16 2018-11-13 Airwatch Llc Multi-persona devices and management
CN103945385B (zh) * 2014-03-27 2018-02-13 宇龙计算机通信科技(深圳)有限公司 移动终端防盗的方法及其装置
FR3019351A1 (fr) * 2014-03-31 2015-10-02 Orange Procede de configuration securisee d'une application dans un terminal utilisateur
CN104143065A (zh) * 2014-08-28 2014-11-12 北京握奇智能科技有限公司 安全智能终端设备、及信息处理方法
CN105592403B (zh) * 2014-12-29 2020-03-31 中国银联股份有限公司 一种基于nfc的通信装置和方法
CN104866782A (zh) * 2015-05-29 2015-08-26 宇龙计算机通信科技(深圳)有限公司 一种数据处理方法和装置
US10740496B2 (en) 2017-02-13 2020-08-11 Samsung Electronics Co., Ltd. Method and apparatus for operating multi-processor system in electronic device

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1813244A (zh) * 2003-06-27 2006-08-02 迪斯尼实业公司 下一代媒体播放器的双虚拟机以及信任平台
CN101078922A (zh) * 2006-01-19 2007-11-28 菲尼克斯电气公司 用于将多信道消息转换成单信道安全消息的方法和设备
CN101211277A (zh) * 2006-12-27 2008-07-02 株式会社东芝 选择子os的一个执行计划的方法与使用该方法的虚拟机监视器

Family Cites Families (63)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JPH01185734A (ja) 1988-01-20 1989-07-25 Fujitsu Ltd バッファメモリ管理方式
US5001742A (en) 1990-01-29 1991-03-19 At&T Bell Laboratories Baseband signal processing unit and method of operating the same
JPH05265779A (ja) 1992-03-23 1993-10-15 Nec Corp タスク間通信システム
US7089214B2 (en) 1998-04-27 2006-08-08 Esignx Corporation Method for utilizing a portable electronic authorization device to approve transactions between a user and an electronic transaction system
US6298446B1 (en) 1998-06-14 2001-10-02 Alchemedia Ltd. Method and system for copyright protection of digital images transmitted over networks
US6633984B2 (en) 1999-01-22 2003-10-14 Sun Microsystems, Inc. Techniques for permitting access across a context barrier on a small footprint device using an entry point object
SE515327C2 (sv) 1999-08-27 2001-07-16 Ericsson Telefon Ab L M Anordning för att utföra säkra transaktioner i en kommunikationsanordning
US6795905B1 (en) 2000-03-31 2004-09-21 Intel Corporation Controlling accesses to isolated memory using a memory controller for isolated execution
JP4812989B2 (ja) 2001-09-17 2011-11-09 株式会社リコー ディスプレイ装置、及びプログラム
EP1329787B1 (en) 2002-01-16 2019-08-28 Texas Instruments Incorporated Secure mode indicator for smart phone or PDA
RU2005115083A (ru) 2002-11-18 2006-01-20 Арм Лимитед (Gb) Переключение процессора между защищенным и незащищенным режимами
GB2396930B (en) 2002-11-18 2005-09-07 Advanced Risc Mach Ltd Apparatus and method for managing access to a memory
GB0226874D0 (en) 2002-11-18 2002-12-24 Advanced Risc Mach Ltd Switching between secure and non-secure processing modes
KR100950007B1 (ko) * 2003-06-27 2010-03-29 디즈니엔터프라이지즈,인크. 차세대 미디어 플레이어층에 대한 이중 가상 머신 및 신뢰플랫폼 모듈 아키텍쳐
GB2406403B (en) 2003-09-26 2006-06-07 Advanced Risc Mach Ltd Data processing apparatus and method for merging secure and non-secure data into an output data stream
US8122361B2 (en) 2003-10-23 2012-02-21 Microsoft Corporation Providing a graphical user interface in a system with a high-assurance execution environment
ATE339742T1 (de) 2003-11-07 2006-10-15 Cit Alcatel Verfahren zur unterstützung bargeldloser zahlung
EP1870814B1 (en) * 2006-06-19 2014-08-13 Texas Instruments France Method and apparatus for secure demand paging for processor devices
JP2006018745A (ja) 2004-07-05 2006-01-19 Hitachi Ltd 電子データ認証システム、認証マーク偽造検証方法、認証マーク偽造検証プログラム、閲覧者用端末、及び認証マーク生成サーバ
JP4811271B2 (ja) 2004-08-25 2011-11-09 日本電気株式会社 情報通信装置及びプログラム実行環境制御方法
DE102005005378A1 (de) 2004-09-14 2006-03-30 Wincor Nixdorf International Gmbh Vorrichtung zur Eingabe und Übertragung von verschlüsselten Signalen
DE102004054571B4 (de) 2004-11-11 2007-01-25 Sysgo Ag Verfahren zur Verteilung von Rechenzeit in einem Rechnersystem
DE102004062203B4 (de) 2004-12-23 2007-03-08 Infineon Technologies Ag Datenverarbeitungseinrichtung, Telekommunikations-Endgerät und Verfahren zur Datenverarbeitung mittels einer Datenverarbeitungseinrichtung
US7627807B2 (en) 2005-04-26 2009-12-01 Arm Limited Monitoring a data processor to detect abnormal operation
US20070079111A1 (en) 2005-09-30 2007-04-05 Chiu-Fu Chen Activating method of computer multimedia function
JP2007188216A (ja) 2006-01-12 2007-07-26 Ntt Advanced Technology Corp 秘匿情報入力システムおよび秘匿情報入力方法
US20070226795A1 (en) * 2006-02-09 2007-09-27 Texas Instruments Incorporated Virtual cores and hardware-supported hypervisor integrated circuits, systems, methods and processes of manufacture
US7765399B2 (en) 2006-02-22 2010-07-27 Harris Corporation Computer architecture for a handheld electronic device
US7950020B2 (en) 2006-03-16 2011-05-24 Ntt Docomo, Inc. Secure operating system switching
WO2007125911A1 (ja) 2006-04-24 2007-11-08 Panasonic Corporation データ処理装置、方法、プログラム、集積回路、プログラム生成装置
US7752658B2 (en) * 2006-06-30 2010-07-06 Microsoft Corporation Multi-session connection across a trust boundary
US8194088B1 (en) 2006-08-03 2012-06-05 Apple Inc. Selective composite rendering
EP2095345A4 (en) 2006-10-23 2011-04-27 Behruz Nader Daroga DIGITAL TRANSMISSION SYSTEM (DTS) FOR THE SECURITY OF BANK ATMOSPHERES (ATM)
US8190885B2 (en) 2006-12-21 2012-05-29 Spansion Llc Non-volatile memory sub-system integrated with security for storing near field transactions
US8996864B2 (en) * 2006-12-22 2015-03-31 Virtuallogix Sa System for enabling multiple execution environments to share a device
JP2008211332A (ja) 2007-02-23 2008-09-11 Canon Inc 画像形成装置及びその制御方法、並びにプログラム及び記憶媒体
US8261064B2 (en) 2007-02-27 2012-09-04 L-3 Communications Corporation Integrated secure and non-secure display for a handheld communications device
US8190778B2 (en) * 2007-03-06 2012-05-29 Intel Corporation Method and apparatus for network filtering and firewall protection on a secure partition
FR2914457B1 (fr) 2007-03-30 2009-09-04 Ingenico Sa Procede et dispositif de visualisation securitaire
US8712474B2 (en) 2007-04-20 2014-04-29 Telefonaktiebolaget L M Ericsson (Publ) Secure soft SIM credential transfer
GB2453518A (en) 2007-08-31 2009-04-15 Vodafone Plc Telecommunications device security
DE102007052826A1 (de) 2007-11-06 2009-05-07 Giesecke & Devrient Gmbh Daten verarbeitende Vorrichtung und Verfahren zum Betreiben einer Daten verarbeitenden Vorrichtung
CN101868953A (zh) 2007-12-07 2010-10-20 诺基亚公司 事务处理认证
CN101299228B (zh) 2008-01-26 2010-09-01 青岛大学 一种基于单cpu双总线的安全网络终端
GB2459097B (en) 2008-04-08 2012-03-28 Advanced Risc Mach Ltd A method and apparatus for processing and displaying secure and non-secure data
US8522354B2 (en) 2008-05-24 2013-08-27 Via Technologies, Inc. Microprocessor apparatus for secure on-die real-time clock
US7809875B2 (en) 2008-06-30 2010-10-05 Wind River Systems, Inc. Method and system for secure communication between processor partitions
JP5157726B2 (ja) 2008-07-31 2013-03-06 富士通モバイルコミュニケーションズ株式会社 電子機器
JP2010062823A (ja) 2008-09-03 2010-03-18 Nippon Telegr & Teleph Corp <Ntt> 現金自動支払機のための認証システム
US8528041B1 (en) * 2008-11-07 2013-09-03 Sprint Communications Company L.P. Out-of-band network security management
US8595491B2 (en) 2008-11-14 2013-11-26 Microsoft Corporation Combining a mobile device and computer to create a secure personalized environment
KR101540798B1 (ko) 2008-11-21 2015-07-31 삼성전자 주식회사 가상화 환경에서 보안 정보를 제공하기 위한 장치 및 방법
JP4698724B2 (ja) 2008-12-01 2011-06-08 株式会社エヌ・ティ・ティ・ドコモ プログラム実行装置
US8490176B2 (en) 2009-04-07 2013-07-16 Juniper Networks, Inc. System and method for controlling a mobile device
US9003517B2 (en) 2009-10-28 2015-04-07 Microsoft Technology Licensing, Llc Isolation and presentation of untrusted data
US9207968B2 (en) 2009-11-03 2015-12-08 Mediatek Inc. Computing system using single operating system to provide normal security services and high security services, and methods thereof
AU2011202838B2 (en) 2010-12-21 2014-04-10 Lg Electronics Inc. Mobile terminal and method of controlling a mode screen display therein
DE102011012227A1 (de) 2011-02-24 2012-08-30 Giesecke & Devrient Gmbh Verfahren zum Datenaustausch in einer gesicherten Laufzeitumgebung
DE102011012226A1 (de) 2011-02-24 2012-08-30 Giesecke & Devrient Gmbh Verfahren zum Betrieb einer Mikroprozessoreinheit, insbesondere in einem mobilen Endgerät
US20130046697A1 (en) 2011-03-17 2013-02-21 Suridx, Inc. Using Mobile Device to Prevent Theft of User Credentials
DE102011018431A1 (de) 2011-04-21 2012-10-25 Giesecke & Devrient Gmbh Verfahren zur Anzeige von Informationen auf einer Anzeigeeinrichtung eines Endgeräts
US9183373B2 (en) 2011-05-27 2015-11-10 Qualcomm Incorporated Secure input via a touchscreen
DE102011116489A1 (de) 2011-10-20 2013-04-25 Giesecke & Devrient Gmbh Mobiles Endgerät, Transaktionsterminal und Verfahren zur Durchführung einer Transaktion an einem Transaktionsterminal mittels eines mobilen Endgeräts

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1813244A (zh) * 2003-06-27 2006-08-02 迪斯尼实业公司 下一代媒体播放器的双虚拟机以及信任平台
CN101078922A (zh) * 2006-01-19 2007-11-28 菲尼克斯电气公司 用于将多信道消息转换成单信道安全消息的方法和设备
CN101211277A (zh) * 2006-12-27 2008-07-02 株式会社东芝 选择子os的一个执行计划的方法与使用该方法的虚拟机监视器

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
Vitual Machine Aware Communication Libraries for High Performance Computing;Wei Huang等;《proceedings of the 2007 ACM/IEEE conference on supercomputing》;20071110;正文第2-3页,附图1 *

Also Published As

Publication number Publication date
BR112014006543A2 (pt) 2017-04-25
US20140237621A1 (en) 2014-08-21
EP2764464B1 (de) 2018-11-28
US9875366B2 (en) 2018-01-23
KR101843730B1 (ko) 2018-03-30
KR20140074296A (ko) 2014-06-17
BR112014006543B1 (pt) 2021-07-06
JP2014533395A (ja) 2014-12-11
EP2764464A1 (de) 2014-08-13
DE102011115135A1 (de) 2013-04-11
CN103858131A (zh) 2014-06-11
WO2013050154A1 (de) 2013-04-11

Similar Documents

Publication Publication Date Title
CN103858131B (zh) 带有安全运行时环境的微控制器系统
US11748737B2 (en) Bank card adding method, and apparatus
US9172538B2 (en) Secure lock for mobile device
US8322610B2 (en) Secure access module for integrated circuit card applications
TWI483204B (zh) 多重用戶電子錢包及其管理
US10826893B2 (en) One-time-password generated on reader device using key read from personal security device
EP3706019B1 (en) Hardware-enforced access protection
US20140317686A1 (en) System with a trusted execution environment component executed on a secure element
EP2713304A1 (en) Secure User Authentication Using a Master Secure Element
KR20170042344A (ko) 모바일 결제 장치 및 방법
CN106850503B (zh) 一种免登录身份认证方法及装置
JP4616013B2 (ja) セキュリティを確保した決済対応アプリケーション
CN107422838A (zh) 一种穿戴式设备、解锁控制系统及解锁控制方法
CN104573591A (zh) 一种安全读卡器及其工作方法
CN111125705A (zh) 一种能力开放方法及装置
CN106951771B (zh) 一种安卓操作系统的移动终端使用方法
KR101075792B1 (ko) Usb 보안토큰, 이를 포함하는 보안인증 시스템 및 이를 포함하는 보안인증 방법
US10042990B2 (en) Field revisions for a personal security device
Lepojevic et al. Implementing NFC service security—SE VS TEE VS HCE
JP2016038779A (ja) 情報処理装置、情報処理システム及び処理プログラム
CN118246040A (zh) 电子设备的保护
CN118246039A (zh) 电子设备的保护
JP2017097659A (ja) Icカード、データ保護方法、セキュリティ関連プログラム、及び通信システム
KR101513162B1 (ko) 보안 어플리케이션 구동 시스템
KR20150075987A (ko) 보안 처리 방법 및 그 전자 장치

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant