DE112019003096B4 - Abgesicherte kommunikation aus einer nichtflüchtigen speichervorrichtung heraus - Google Patents

Abgesicherte kommunikation aus einer nichtflüchtigen speichervorrichtung heraus Download PDF

Info

Publication number
DE112019003096B4
DE112019003096B4 DE112019003096.5T DE112019003096T DE112019003096B4 DE 112019003096 B4 DE112019003096 B4 DE 112019003096B4 DE 112019003096 T DE112019003096 T DE 112019003096T DE 112019003096 B4 DE112019003096 B4 DE 112019003096B4
Authority
DE
Germany
Prior art keywords
security protocol
computing system
server
nvm
host computing
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
DE112019003096.5T
Other languages
German (de)
English (en)
Other versions
DE112019003096T5 (de
Inventor
Sergey Ostrikov
Stephan Rosner
Cliff Zitlaw
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Infineon Technologies LLC
Original Assignee
Infineon Technologies LLC
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Infineon Technologies LLC filed Critical Infineon Technologies LLC
Publication of DE112019003096T5 publication Critical patent/DE112019003096T5/de
Application granted granted Critical
Publication of DE112019003096B4 publication Critical patent/DE112019003096B4/de
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • H04L63/0435Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload wherein the sending and receiving network entities apply symmetric encryption, i.e. same key used for encryption and decryption
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F13/00Interconnection of, or transfer of information or other signals between, memories, input/output devices or central processing units
    • G06F13/38Information transfer, e.g. on bus
    • G06F13/42Bus transfer protocol, e.g. handshake; Synchronisation
    • G06F13/4265Bus transfer protocol, e.g. handshake; Synchronisation on a point to point bus
    • G06F13/4269Bus transfer protocol, e.g. handshake; Synchronisation on a point to point bus using a handshaking protocol, e.g. Centronics connection
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/606Protecting data by securing the transmission between two devices or processes
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/70Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer
    • G06F21/78Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure storage of data
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/16Implementing security features at a particular protocol layer
    • H04L63/166Implementing security features at a particular protocol layer at the transport layer

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • General Engineering & Computer Science (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Computing Systems (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Software Systems (AREA)
  • Health & Medical Sciences (AREA)
  • Bioethics (AREA)
  • General Health & Medical Sciences (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)
  • Computer And Data Communications (AREA)
DE112019003096.5T 2018-06-19 2019-06-07 Abgesicherte kommunikation aus einer nichtflüchtigen speichervorrichtung heraus Active DE112019003096B4 (de)

Applications Claiming Priority (5)

Application Number Priority Date Filing Date Title
US201862687146P 2018-06-19 2018-06-19
US62/687,146 2018-06-19
US16/431,548 2019-06-04
US16/431,548 US11258772B2 (en) 2018-06-19 2019-06-04 Secured communication from within non-volatile memory device
PCT/US2019/036100 WO2019245760A1 (en) 2018-06-19 2019-06-07 Secured communication from within non-volatile memory device

Publications (2)

Publication Number Publication Date
DE112019003096T5 DE112019003096T5 (de) 2021-06-02
DE112019003096B4 true DE112019003096B4 (de) 2023-08-17

Family

ID=68840770

Family Applications (1)

Application Number Title Priority Date Filing Date
DE112019003096.5T Active DE112019003096B4 (de) 2018-06-19 2019-06-07 Abgesicherte kommunikation aus einer nichtflüchtigen speichervorrichtung heraus

Country Status (5)

Country Link
US (2) US11258772B2 (https=)
JP (2) JP7121148B2 (https=)
CN (1) CN112400294B (https=)
DE (1) DE112019003096B4 (https=)
WO (1) WO2019245760A1 (https=)

Families Citing this family (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US11281810B1 (en) * 2018-12-11 2022-03-22 Xilinx, Inc. Memory access protection in programmable logic device
US11016755B2 (en) * 2019-07-31 2021-05-25 Dell Products L.P. System and method to secure embedded controller flashing process
US11809566B2 (en) * 2020-10-02 2023-11-07 Infineon Technologies LLC Methods for fast, secure boot from nonvolatile memory device and corresponding systems and devices for the same
US11960434B2 (en) * 2021-04-07 2024-04-16 Sony Semiconductor Solutions Corporation Communication device, communication system, and communication method for transmitting data blocks including signal groups conforming to a serial peripheral interface
US12008416B2 (en) 2021-06-29 2024-06-11 Capital One Services, Llc Systems and methods for choosing an appropriate scaling technique for allocating computational resources to distributed applications
CN115292218B (zh) * 2022-08-09 2026-01-13 山东浪潮科学研究院有限公司 一种支持AHB协议的NorFlash存储控制器
US20250030736A1 (en) * 2023-07-22 2025-01-23 Dell Products, L.P. Systems and methods for transport layer security (tls) concatenation
IL305055A (en) * 2023-08-08 2025-03-01 Qualcomm Inc METHOD FOR GENERATING INITIALIZATION VECTOR FOR NVMe INLINE ENCRYPTION
CN119853935A (zh) * 2023-10-17 2025-04-18 腾讯科技(深圳)有限公司 一种数据传输方法、装置、存储介质及设备

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20050108571A1 (en) 2003-09-29 2005-05-19 Axalto Inc. Secure networking using a resource-constrained device
US20140215111A1 (en) 2009-12-23 2014-07-31 Spansion Llc Variable read latency on a serial memory bus
US20150127930A1 (en) 2013-11-06 2015-05-07 Seagate Technology Llc Authenticated device initialization
US20170310652A1 (en) 2015-12-11 2017-10-26 Amazon Technologies, Inc. Key exchange through partially trusted third party

Family Cites Families (45)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP1214638A2 (en) 1999-09-21 2002-06-19 Discovery Communications, Inc. Electronic book security and copyright protection system
US20020162009A1 (en) * 2000-10-27 2002-10-31 Shimon Shmueli Privacy assurance for portable computing
US7908472B2 (en) * 2001-07-06 2011-03-15 Juniper Networks, Inc. Secure sockets layer cut through architecture
US20030072451A1 (en) 2001-10-16 2003-04-17 Pimentel Roberto J. Method and apparatus for securely transferring wireless data
US7392534B2 (en) 2003-09-29 2008-06-24 Gemalto, Inc System and method for preventing identity theft using a secure computing device
US8112787B2 (en) 2005-12-31 2012-02-07 Broadcom Corporation System and method for securing a credential via user and server verification
US20080052770A1 (en) * 2006-03-31 2008-02-28 Axalto Inc Method and system of providing security services using a secure device
US20080189554A1 (en) * 2007-02-05 2008-08-07 Asad Ali Method and system for securing communication between a host computer and a secure portable device
US8788805B2 (en) * 2008-02-29 2014-07-22 Cisco Technology, Inc. Application-level service access to encrypted data streams
WO2009137946A1 (en) 2008-05-14 2009-11-19 Crealogix Holding Ag Portable device and method for exchanging data securely with a remote computer
US8418168B2 (en) 2008-05-29 2013-04-09 Research In Motion Limited Method and system for performing a software upgrade on an electronic device connected to a computer
EP2394465A1 (en) 2009-01-09 2011-12-14 Interdigital Patent Holdings, Inc. Data flow mobility
US8411867B2 (en) * 2009-04-06 2013-04-02 Broadcom Corporation Scalable and secure key management for cryptographic data processing
US8479011B2 (en) * 2009-10-07 2013-07-02 Gemalto Sa Method and apparatus for using cryptographic mechanisms to provide access to a portable device using integrated authentication using another portable device
US8972723B2 (en) * 2010-07-14 2015-03-03 Sandisk Technologies Inc. Storage device and method for providing a partially-encrypted content file to a host device
US9152815B2 (en) 2010-10-29 2015-10-06 International Business Machines Corporation Method, secure device, system and computer program product for securely managing user access to a file system
US8887022B2 (en) * 2011-03-04 2014-11-11 Infineon Technologies Austria Ag Reliable data transmission with reduced bit error rate
KR101537973B1 (ko) * 2011-07-27 2015-07-20 엘에스아이 코포레이션 보안 스토리지 하이잭킹 보호를 위한 기법들
EP3518458B1 (en) * 2011-12-15 2022-04-06 INTEL Corporation Method and device for secure communications over a network using a hardware security engine
US8726298B1 (en) * 2012-03-29 2014-05-13 The Mathworks, Inc. Cloud-based instrument driver system
US9304941B2 (en) 2014-02-27 2016-04-05 Mangstor, Inc. Self-encrypting flash drive
US10169618B2 (en) * 2014-06-20 2019-01-01 Cypress Semiconductor Corporation Encryption method for execute-in-place memories
GB201413836D0 (en) * 2014-08-05 2014-09-17 Arm Ip Ltd Device security apparatus and methods
CN104702611B (zh) * 2015-03-15 2018-05-25 西安电子科技大学 一种保护安全套接层会话密钥的设备及方法
US9838201B2 (en) 2015-10-13 2017-12-05 Sony Interactive Entertainment America Llc Secure key store derivation and management from a single secure root key
US10034171B2 (en) 2015-10-14 2018-07-24 Sony Interactive Entertainment America Llc Secure device pairing
US10339317B2 (en) * 2015-12-18 2019-07-02 Intel Corporation Computing devices
CN105933106B (zh) 2016-04-08 2019-03-05 广东工业大学 基于aes的网络信息加密ip核的设计与实现方法
US10171478B2 (en) * 2016-06-30 2019-01-01 Faraday & Future Inc. Efficient and secure method and apparatus for firmware update
ES2616116B1 (es) 2016-07-13 2018-04-02 Álvaro DÍAZ BAÑO Dispositivo portátil de cifrado de audio mediante protocolo tls
US10754988B2 (en) * 2016-08-30 2020-08-25 Winbond Electronics Corporation Anti-rollback version upgrade in secured memory chip
EP3291087A1 (en) * 2016-09-01 2018-03-07 Nxp B.V. Apparatus and associated method for authenticating firmware
US10482036B2 (en) * 2016-09-18 2019-11-19 Winbond Electronics Corporation Securely binding between memory chip and host
US10242197B2 (en) * 2016-09-23 2019-03-26 Intel Corporation Methods and apparatus to use a security coprocessor for firmware protection
KR102617354B1 (ko) * 2017-01-05 2023-12-26 삼성전자주식회사 보안 부트 시퀀서 및 보안 부트 장치
US10621127B2 (en) 2017-03-31 2020-04-14 International Business Machines Corporation Communication channel for reconfigurable devices
US20180302228A1 (en) * 2017-04-04 2018-10-18 Calamp Corp. Systems and methods for secure communications in vehicle telematics systems
WO2019006640A1 (zh) 2017-07-04 2019-01-10 深圳齐心集团股份有限公司 一种大数据管理系统
US10757087B2 (en) * 2018-01-02 2020-08-25 Winbond Electronics Corporation Secure client authentication based on conditional provisioning of code signature
CN110087236B (zh) * 2018-01-25 2022-10-18 苹果公司 用于通过无线网络与匿名主机建立安全通信会话的协议
EP3746879B1 (en) * 2018-01-29 2023-06-21 Shi, Alexander Secure blockchain integrated circuit
US11880436B2 (en) * 2018-03-23 2024-01-23 Nanolock Security Inc. Remote access control for digital hardware
US10924282B2 (en) * 2018-05-24 2021-02-16 Cyber Pack Ventures, Inc. System and method for measuring and reporting IoT boot integrity
US10951403B2 (en) * 2018-12-03 2021-03-16 Winbond Electronics Corporation Updating cryptographic keys stored in non-volatile memory
US10809944B1 (en) * 2020-01-22 2020-10-20 Cypress Semiconductor Corporation Memory device resilient to cyber-attacks and malfunction

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20050108571A1 (en) 2003-09-29 2005-05-19 Axalto Inc. Secure networking using a resource-constrained device
US20140215111A1 (en) 2009-12-23 2014-07-31 Spansion Llc Variable read latency on a serial memory bus
US20150127930A1 (en) 2013-11-06 2015-05-07 Seagate Technology Llc Authenticated device initialization
US20170310652A1 (en) 2015-12-11 2017-10-26 Amazon Technologies, Inc. Key exchange through partially trusted third party

Also Published As

Publication number Publication date
DE112019003096T5 (de) 2021-06-02
US11722467B2 (en) 2023-08-08
WO2019245760A1 (en) 2019-12-26
JP7121148B2 (ja) 2022-08-17
JP2022153639A (ja) 2022-10-12
US20220231995A1 (en) 2022-07-21
CN112400294A (zh) 2021-02-23
JP7443433B2 (ja) 2024-03-05
CN112400294B (zh) 2024-04-19
JP2021527894A (ja) 2021-10-14
US20190386966A1 (en) 2019-12-19
US11258772B2 (en) 2022-02-22

Similar Documents

Publication Publication Date Title
DE112019003096B4 (de) Abgesicherte kommunikation aus einer nichtflüchtigen speichervorrichtung heraus
EP2899714B1 (de) Gesichertes Bereitstellen eines Schlüssels
DE112005001672B4 (de) Verfahren zum Liefern eines geheimen Direktnachweisschlüssels an Vorrichtungen unter Verwendung eines Onlinedienstes
DE60314060T2 (de) Verfahren und Vorrichtung zur Schlüsselverwaltung für gesicherte Datenübertragung
DE60202605T2 (de) Verfahren zur sicherung eines elektronischen geräts, sicherheitssystem und elektronisches gerät
DE112005001666T5 (de) Verfahren zum Bereitstellen von privaten Direktbeweis-Schlüsseln in signierten Gruppen für Vorrichtungen mit Hilfe einer Verteilungs-CD
DE102014204713A1 (de) Erzeugung von Schlüsseln unter Verwendung sicherer Hardware
EP3259698A1 (de) Autonom bootendes system mit einem sicherheitsmodul
DE112004000015T5 (de) Verfahren und Systeme zum effizienten Integrieren eines kryptografischen Koprozessors
DE102007046476A1 (de) Verfahren zum Bereitstellen von Credentials und Softwarebildern in sicheren Netzwerkumgebungen
WO2015144764A1 (de) Verfahren und system zur verbesserung der datensicherheit bei einem kommunikationsvorgang
DE102020119389A1 (de) Vorrichtung und Verfahren zum sicheren Verwalten von Schlüsseln
DE112023003881T5 (de) Verifizieren der Authentizität einer elektronischen Vorrichtung mittels Nahfeld-Kommunikation
DE112005001654T5 (de) Verfahren zum Übermitteln von Direct-Proof-Privatschlüsseln an Geräte mittels einer Verteilungs-CD
EP3811261B1 (de) Kryptografiemodul und betriebsverfahren hierfür
EP2442251B9 (de) Individuelle Aktualisierung von Computerprogrammen
DE102022203797A1 (de) Netzvorrichtung, ausgelegt für eine kryptografisch geschützte Kommunikation mit Unterstützung mehrerer Ausführungsumgebungen
DE102022202691A1 (de) Verfahren zur Durchführung einer abgesicherten Startsequenz einer Recheneinheit
DE102015202215A1 (de) Vorrichtung und Verfahren zum sicheren Betreiben der Vorrichtung
DE102024121059A1 (de) Bereitstellen einer sicheren Trace-Nachricht-Kommunikation durch symmetrische Verschlüsselung und Authentifizierung
DE102023134455A1 (de) Skalierbarer schlüsselstatus für die netzverschlüsselung
DE102022202688A1 (de) Verfahren zur Validierung von Daten in einer Recheneinheit
DE102014209037B4 (de) Vorrichtung und Verfahren zum Schutz der Integrität von Betriebssysteminstanzen
DE102023210873A1 (de) Flexible kryptografische architektur in einer netzwerkvorrichtung
WO2025131631A1 (de) Verfahren zum durchführen eines geräte-onboarding-prozesses gestützt auf basis symmetrischer kryptographie bei einem gerät, computerprogrammprodukt, computerlesbares speichermedium sowie onboarding-system

Legal Events

Date Code Title Description
R081 Change of applicant/patentee

Owner name: INFINEON TECHNOLOGIES LLC, SAN JOSE, US

Free format text: FORMER OWNER: CYPRESS SEMICONDUCTOR CORPORATION, SAN JOSE, CALIF., US

R012 Request for examination validly filed
R016 Response to examination communication
R018 Grant decision by examination section/examining division
R020 Patent grant now final
R082 Change of representative