CN105706048B - 使用硬件信任根的媒体客户端装置鉴权 - Google Patents

使用硬件信任根的媒体客户端装置鉴权 Download PDF

Info

Publication number
CN105706048B
CN105706048B CN201480052380.1A CN201480052380A CN105706048B CN 105706048 B CN105706048 B CN 105706048B CN 201480052380 A CN201480052380 A CN 201480052380A CN 105706048 B CN105706048 B CN 105706048B
Authority
CN
China
Prior art keywords
client device
firmware
signature
client
key
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN201480052380.1A
Other languages
English (en)
Chinese (zh)
Other versions
CN105706048A (zh
Inventor
M.米克海洛夫
R.奈尔
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Ericsson AB
Original Assignee
Ericsson AB
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Ericsson AB filed Critical Ericsson AB
Priority to CN201910408869.2A priority Critical patent/CN110287654B/zh
Publication of CN105706048A publication Critical patent/CN105706048A/zh
Application granted granted Critical
Publication of CN105706048B publication Critical patent/CN105706048B/zh
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/10Protecting distributed programs or content, e.g. vending or licensing of copyrighted material ; Digital rights management [DRM]
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/10Protecting distributed programs or content, e.g. vending or licensing of copyrighted material ; Digital rights management [DRM]
    • G06F21/106Enforcing content protection by specific content processing
    • G06F21/1064Restricting content processing at operating system level
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/10Protecting distributed programs or content, e.g. vending or licensing of copyrighted material ; Digital rights management [DRM]
    • G06F21/12Protecting executable software
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/44Program or device authentication
    • G06F21/445Program or device authentication by mutual authentication, e.g. between devices or programs
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/50Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
    • G06F21/57Certifying or maintaining trusted computer platforms, e.g. secure boots or power-downs, version controls, system software checks, secure updates or assessing vulnerabilities
    • G06F21/575Secure boot
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3247Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving digital signatures
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2221/00Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/03Indexing scheme relating to G06F21/50, monitoring users, programs or devices to maintain the integrity of platforms
    • G06F2221/034Test or assess a computer or a system

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Theoretical Computer Science (AREA)
  • Software Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Technology Law (AREA)
  • Multimedia (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Storage Device Security (AREA)
  • Stored Programmes (AREA)
CN201480052380.1A 2013-07-23 2014-07-23 使用硬件信任根的媒体客户端装置鉴权 Active CN105706048B (zh)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201910408869.2A CN110287654B (zh) 2013-07-23 2014-07-23 使用硬件信任根的媒体客户端装置鉴权

Applications Claiming Priority (3)

Application Number Priority Date Filing Date Title
US201361857656P 2013-07-23 2013-07-23
US61/857656 2013-07-23
PCT/US2014/047830 WO2015013412A1 (en) 2013-07-23 2014-07-23 Media client device authentication using hardware root of trust

Related Child Applications (1)

Application Number Title Priority Date Filing Date
CN201910408869.2A Division CN110287654B (zh) 2013-07-23 2014-07-23 使用硬件信任根的媒体客户端装置鉴权

Publications (2)

Publication Number Publication Date
CN105706048A CN105706048A (zh) 2016-06-22
CN105706048B true CN105706048B (zh) 2019-06-04

Family

ID=52393816

Family Applications (2)

Application Number Title Priority Date Filing Date
CN201480052380.1A Active CN105706048B (zh) 2013-07-23 2014-07-23 使用硬件信任根的媒体客户端装置鉴权
CN201910408869.2A Active CN110287654B (zh) 2013-07-23 2014-07-23 使用硬件信任根的媒体客户端装置鉴权

Family Applications After (1)

Application Number Title Priority Date Filing Date
CN201910408869.2A Active CN110287654B (zh) 2013-07-23 2014-07-23 使用硬件信任根的媒体客户端装置鉴权

Country Status (8)

Country Link
US (2) US9922178B2 (enExample)
EP (1) EP3025226B1 (enExample)
KR (1) KR101763084B1 (enExample)
CN (2) CN105706048B (enExample)
BR (1) BR112016001608B1 (enExample)
CA (1) CA2919106C (enExample)
MX (1) MX359837B (enExample)
WO (1) WO2015013412A1 (enExample)

Families Citing this family (23)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20150288659A1 (en) * 2014-04-03 2015-10-08 Bitdefender IPR Management Ltd. Systems and Methods for Mutual Integrity Attestation Between A Network Endpoint And A Network Appliance
US9830479B2 (en) * 2014-09-16 2017-11-28 Nxp Usa, Inc. Key storage and revocation in a secure memory system
US10474823B2 (en) * 2016-02-16 2019-11-12 Atmel Corporation Controlled secure code authentication
US10305885B2 (en) * 2016-03-03 2019-05-28 Blackberry Limited Accessing enterprise resources using provisioned certificates
US20180176192A1 (en) * 2016-12-16 2018-06-21 Amazon Technologies, Inc. Secure data egress for sensitive data across networks
US10365908B2 (en) * 2017-03-24 2019-07-30 Flexera Software Llc Secure reprogramming of smart devices to alter device functionality based on license rights
US11025627B2 (en) * 2017-07-10 2021-06-01 Intel Corporation Scalable and secure resource isolation and sharing for IoT networks
US11159498B1 (en) 2018-03-21 2021-10-26 Amazon Technologies, Inc. Information security proxy service
US11347861B2 (en) 2018-04-10 2022-05-31 Raytheon Company Controlling security state of commercial off the shelf (COTS) system
US10887634B2 (en) * 2018-07-26 2021-01-05 Wangsu Science & Technology Co., Ltd. Video resource file acquisition method and management system
US11423150B2 (en) * 2018-09-07 2022-08-23 Raytheon Company System and method for booting processors with encrypted boot image
US11178159B2 (en) 2018-09-07 2021-11-16 Raytheon Company Cross-domain solution using network-connected hardware root-of-trust device
EP3696698A1 (en) * 2019-02-18 2020-08-19 Verimatrix Method of protecting a software program against tampering
US11513698B2 (en) 2019-04-01 2022-11-29 Raytheon Company Root of trust assisted access control of secure encrypted drives
WO2020205507A1 (en) 2019-04-01 2020-10-08 Raytheon Company Adaptive, multi-layer enterprise data protection & resiliency platform
US11397816B2 (en) * 2019-07-08 2022-07-26 Dell Products L.P. Authenticated boot to protect storage system data by restricting image deployment
US11379588B2 (en) 2019-12-20 2022-07-05 Raytheon Company System validation by hardware root of trust (HRoT) device and system management mode (SMM)
CN112232814B (zh) * 2020-10-14 2023-10-27 深圳市百富智能新技术有限公司 支付密钥的加密和解密方法、支付认证方法及终端设备
US11775690B2 (en) * 2020-12-02 2023-10-03 Dell Products L.P. System and method for supporting multiple independent silicon-rooted trusts per system-on-a-chip
US12452072B2 (en) * 2021-09-22 2025-10-21 Hewlett-Packard Development Company, L.P. Encrypted storage
WO2023136829A1 (en) * 2022-01-13 2023-07-20 Hewlett-Packard Development Company,L.P. Firmware authentication
EP4221295A1 (en) * 2022-01-31 2023-08-02 Thales Dis France SAS Injection of cryptographic material during application delivery
US12238392B2 (en) * 2022-01-31 2025-02-25 Roku, Inc. Computing system with device attestation feature

Citations (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20050144439A1 (en) * 2003-12-26 2005-06-30 Nam Je Park System and method of managing encryption key management system for mobile terminals
US20080082828A1 (en) * 2006-09-29 2008-04-03 Infineon Technologies Ag Circuit arrangement and method for starting up a circuit arrangement
US20090276617A1 (en) * 2008-04-30 2009-11-05 Michael Grell Computer system comprising a secure boot mechanism on the basis of symmetric key encryption
US20120096560A1 (en) * 2008-06-19 2012-04-19 Telefonaktiebolaget Lm Ericsson (Publ) Method and a Device for Protecting Private Content
WO2012106097A2 (en) * 2011-02-04 2012-08-09 Motorola Mobility, Inc. Method and apparatus for managing security state transitions
US20120303951A1 (en) * 2011-05-27 2012-11-29 General Instrument Corporation Method and system for registering a drm client
CN102982257A (zh) * 2006-05-05 2013-03-20 交互数字技术公司 在re和te间执行平台完整性和drm软件完整性检查的方法
US20130152180A1 (en) * 2011-12-07 2013-06-13 Azuki Systems, Inc. Device using secure processing zone to establish trust for digital rights management

Family Cites Families (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20040193722A1 (en) 1999-08-30 2004-09-30 Donovan Kevin Remington Joseph Bartholomew Universal instant messaging system for the internet
US20050154889A1 (en) * 2004-01-08 2005-07-14 International Business Machines Corporation Method and system for a flexible lightweight public-key-based mechanism for the GSS protocol
GB0514492D0 (en) * 2005-07-14 2005-08-17 Ntnu Technology Transfer As Secure media streaming
US20100082960A1 (en) * 2008-09-30 2010-04-01 Steve Grobman Protected network boot of operating system

Patent Citations (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20050144439A1 (en) * 2003-12-26 2005-06-30 Nam Je Park System and method of managing encryption key management system for mobile terminals
CN102982257A (zh) * 2006-05-05 2013-03-20 交互数字技术公司 在re和te间执行平台完整性和drm软件完整性检查的方法
US20080082828A1 (en) * 2006-09-29 2008-04-03 Infineon Technologies Ag Circuit arrangement and method for starting up a circuit arrangement
US20090276617A1 (en) * 2008-04-30 2009-11-05 Michael Grell Computer system comprising a secure boot mechanism on the basis of symmetric key encryption
US20120096560A1 (en) * 2008-06-19 2012-04-19 Telefonaktiebolaget Lm Ericsson (Publ) Method and a Device for Protecting Private Content
WO2012106097A2 (en) * 2011-02-04 2012-08-09 Motorola Mobility, Inc. Method and apparatus for managing security state transitions
US20120303951A1 (en) * 2011-05-27 2012-11-29 General Instrument Corporation Method and system for registering a drm client
US20130152180A1 (en) * 2011-12-07 2013-06-13 Azuki Systems, Inc. Device using secure processing zone to establish trust for digital rights management

Also Published As

Publication number Publication date
MX359837B (es) 2018-10-12
CA2919106A1 (en) 2015-01-29
WO2015013412A1 (en) 2015-01-29
CN105706048A (zh) 2016-06-22
CN110287654A (zh) 2019-09-27
EP3025226B1 (en) 2019-12-04
US20180211016A1 (en) 2018-07-26
CA2919106C (en) 2018-07-17
US9922178B2 (en) 2018-03-20
MX2016000881A (es) 2016-07-18
US10395012B2 (en) 2019-08-27
EP3025226A1 (en) 2016-06-01
BR112016001608B1 (pt) 2022-11-01
CN110287654B (zh) 2023-09-05
BR112016001608A2 (enExample) 2017-08-29
US20160162669A1 (en) 2016-06-09
EP3025226A4 (en) 2017-04-05
KR20160105380A (ko) 2016-09-06
KR101763084B1 (ko) 2017-07-28

Similar Documents

Publication Publication Date Title
CN105706048B (zh) 使用硬件信任根的媒体客户端装置鉴权
US11824847B2 (en) Device programming with system generation
US10496811B2 (en) Counterfeit prevention
US10673638B2 (en) Unified programming environment for programmable devices
US10268844B2 (en) Embedding foundational root of trust using security algorithms
CN109328352B (zh) 靶向安全软件部署
JP5314016B2 (ja) 情報処理装置、暗号鍵の管理方法、コンピュータプログラム及び集積回路
ES2692900T3 (es) Certificación criptográfica de entornos de ejecución alojados seguros
WO2020042778A1 (zh) 固件升级方法及装置
EP3772008A1 (en) Device programming with system generation
CN115664659B (zh) 一种区块链交易数据的监管方法、装置、设备和介质
JP2025529791A (ja) データ処理方法、装置、デバイス及び記憶媒体
CN114223176A (zh) 一种证书管理方法及装置
WO2022170973A1 (zh) 密钥灌装方法、系统、装置、设备以及存储介质
CN114840883A (zh) 一种基于硬件密码设备的应用安全启动方法
CN115174063A (zh) 软件许可生成、验证方法及装置
Ammattikorkeakoulu Secure Web Service for a Windows Phone Application

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant