JP5923556B2 - データ処理システム、データ処理システムの初期化方法及びコンピュータプログラムプロダクト - Google Patents
データ処理システム、データ処理システムの初期化方法及びコンピュータプログラムプロダクト Download PDFInfo
- Publication number
- JP5923556B2 JP5923556B2 JP2014128359A JP2014128359A JP5923556B2 JP 5923556 B2 JP5923556 B2 JP 5923556B2 JP 2014128359 A JP2014128359 A JP 2014128359A JP 2014128359 A JP2014128359 A JP 2014128359A JP 5923556 B2 JP5923556 B2 JP 5923556B2
- Authority
- JP
- Japan
- Prior art keywords
- key data
- processing system
- data processing
- security level
- security
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
- 238000012545 processing Methods 0.000 title claims description 52
- 238000004590 computer program Methods 0.000 title description 4
- 238000011423 initialization method Methods 0.000 title description 2
- 238000000034 method Methods 0.000 claims description 16
- 238000004891 communication Methods 0.000 description 5
- 238000013461 design Methods 0.000 description 4
- 230000000694 effects Effects 0.000 description 3
- 238000004519 manufacturing process Methods 0.000 description 3
- 230000008901 benefit Effects 0.000 description 2
- 238000010586 diagram Methods 0.000 description 2
- 230000006870 function Effects 0.000 description 2
- 230000000116 mitigating effect Effects 0.000 description 2
- 239000004065 semiconductor Substances 0.000 description 2
- XUIMIQQOPSSXEZ-UHFFFAOYSA-N Silicon Chemical compound [Si] XUIMIQQOPSSXEZ-UHFFFAOYSA-N 0.000 description 1
- 230000002411 adverse Effects 0.000 description 1
- 230000001419 dependent effect Effects 0.000 description 1
- 238000001514 detection method Methods 0.000 description 1
- 238000011161 development Methods 0.000 description 1
- 238000005516 engineering process Methods 0.000 description 1
- 238000012854 evaluation process Methods 0.000 description 1
- 230000000977 initiatory effect Effects 0.000 description 1
- 238000003780 insertion Methods 0.000 description 1
- 230000037431 insertion Effects 0.000 description 1
- 230000007774 longterm Effects 0.000 description 1
- 238000012423 maintenance Methods 0.000 description 1
- ORQBXQOJMQIAOY-UHFFFAOYSA-N nobelium Chemical compound [No] ORQBXQOJMQIAOY-UHFFFAOYSA-N 0.000 description 1
- 229910052710 silicon Inorganic materials 0.000 description 1
- 239000010703 silicon Substances 0.000 description 1
- 238000012795 verification Methods 0.000 description 1
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/10—Network architectures or network communication protocols for network security for controlling access to devices or network resources
- H04L63/105—Multiple levels of security
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/62—Protecting access to data via a platform, e.g. using keys or access control rules
- G06F21/6209—Protecting access to data via a platform, e.g. using keys or access control rules to a single file or object, e.g. in a secure envelope, encrypted and accessed using a key, or with access control rules appended to the object itself
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/06—Network architectures or network communication protocols for network security for supporting key management in a packet data network
- H04L63/061—Network architectures or network communication protocols for network security for supporting key management in a packet data network for key exchange, e.g. in peer-to-peer networks
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F2221/00—Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F2221/21—Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F2221/2113—Multi-level security, e.g. mandatory access control
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0823—Network architectures or network communication protocols for network security for authentication of entities using certificates
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- General Engineering & Computer Science (AREA)
- Computer Hardware Design (AREA)
- Theoretical Computer Science (AREA)
- Signal Processing (AREA)
- Computer Networks & Wireless Communication (AREA)
- Computing Systems (AREA)
- Software Systems (AREA)
- General Physics & Mathematics (AREA)
- Physics & Mathematics (AREA)
- Health & Medical Sciences (AREA)
- General Health & Medical Sciences (AREA)
- Bioethics (AREA)
- Storage Device Security (AREA)
Description
102 タンパ回避手段
104 タンパセンサ
106 タンパ検出器
108 マイクロコントローラ
110 暗号化アクセラレータ
112 記憶装置
114 通信装置
200 セキュリティレベル
202 セキュリティレベル
204 セキュリティレベル
206 セキュリティレベル
208 セキュリティレベル
300 鍵データ
400 原証明書チェーン
402 拡張証明書チェーン
500 車両
502 データ処理システム
504 ITS通信装置
506 マイクロコントローラ
508 暗号化アクセラレータ
510 セキュアエレメント
Claims (7)
- 少なくとも2つのセキュリティレベル、及び
前記セキュリティレベルの特定の1つに属する鍵データを備え、
前記セキュリティレベルの各々に前記鍵データが属することができ、前記セキュリティレベルの各々が前記鍵データを用いる暗号化処理を提供し、
前記鍵データは、前記鍵データが属し得る最低セキュリティレベルでタグ付けされ、
前記セキュリティレベルのうち最高のセキュリティレベルは、耐タンパセキュアエレメントとして実装され、
前記データ処理システムは、前記鍵データを、当該鍵データが属するセキュリティレベルより低いセキュリティレベルに少なくとも一時的に移動させるように構成され、
前記鍵データが一時的に移動される前記セキュリティレベルは、前記最低セキュリティレベルに等しいかそれより高いレベルである、
データ処理システム。 - 前記鍵データは、前記鍵データに付与された又は前記鍵データに含められた属性によってタグ付けされ、
前記属性は、前記鍵データが属し得る前記最低セキュリティレベルを示す値を有する、
請求項1記載のデータ処理システム。 - 前記セキュリティレベルの1つ、特に中間のセキュリティレベルは、高性能暗号化アクセラレータとして実装される、
請求項1または2に記載のデータ処理システム。 - 前記鍵データはさらに内部セキュリティレベルでタグ付けされ、前記内部セキュリティレベルは前記鍵データが存在した前記最低セキュリティレベルを示す、
請求項1〜3のいずれか1項に記載のデータ処理システム。 - 前記鍵データはさらに前記鍵データが存在したセキュリティレベルの履歴を示すリストでタグ付けされる、
請求項1〜4のいずれか1項に記載のデータ処理システム。 - 請求項1〜5のいずれか1項に記載された鍵データを用いて交換及び検証することができる一時的な鍵データを生成するように構成された、
請求項1〜5のいずれか1項に記載のデータ処理システム。 - 請求項1〜6のいずれか1項に記載のデータ処理システムを備える高度道路交通システム。
Applications Claiming Priority (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
EP13173426.1A EP2819057B1 (en) | 2013-06-24 | 2013-06-24 | Data processing system, method of initializing a data processing system, and computer program product |
EP13173426.1 | 2013-06-24 |
Publications (2)
Publication Number | Publication Date |
---|---|
JP2015007978A JP2015007978A (ja) | 2015-01-15 |
JP5923556B2 true JP5923556B2 (ja) | 2016-05-24 |
Family
ID=48672460
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
JP2014128359A Active JP5923556B2 (ja) | 2013-06-24 | 2014-06-23 | データ処理システム、データ処理システムの初期化方法及びコンピュータプログラムプロダクト |
Country Status (4)
Country | Link |
---|---|
US (1) | US20160119362A1 (ja) |
EP (1) | EP2819057B1 (ja) |
JP (1) | JP5923556B2 (ja) |
CN (1) | CN104243137B (ja) |
Families Citing this family (7)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US11615199B1 (en) * | 2014-12-31 | 2023-03-28 | Idemia Identity & Security USA LLC | User authentication for digital identifications |
US11734678B2 (en) * | 2016-01-25 | 2023-08-22 | Apple Inc. | Document importation into secure element |
US10171452B2 (en) * | 2016-03-31 | 2019-01-01 | International Business Machines Corporation | Server authentication using multiple authentication chains |
JP6919523B2 (ja) * | 2017-11-22 | 2021-08-18 | 大日本印刷株式会社 | セキュアエレメント、クライアント端末、情報処理方法及び情報処理プログラム |
CN109150840B (zh) * | 2018-07-25 | 2021-04-20 | 重庆邮电大学 | 一种车联网中更新包自适应防篡改的数据结构及方法 |
IT201900006242A1 (it) | 2019-04-23 | 2020-10-23 | Italdesign Giugiaro Spa | Perfezionamenti nella trasmissione di dati o messaggi a bordo di un veicolo mediante un protocollo di comunicazione SOME/IP |
US20230385418A1 (en) * | 2020-11-05 | 2023-11-30 | Felica Networks, Inc. | Information processing device, information processing method, program, mobile terminal, and information processing system |
Family Cites Families (28)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CA2018319C (en) * | 1989-06-30 | 1997-01-07 | Larry Alan Wehr | Method of providing mandatory secrecy and integrity file security in a computer system |
US5204663A (en) * | 1990-05-21 | 1993-04-20 | Applied Systems Institute, Inc. | Smart card access control system |
US7334127B2 (en) * | 1995-04-21 | 2008-02-19 | Certicom Corp. | Key agreement and transport protocol |
WO2000045241A2 (en) * | 1999-01-29 | 2000-08-03 | General Instrument Corporation | Self-generation of certificates using a secure microprocessor in a device for transferring digital information |
US6449720B1 (en) * | 1999-05-17 | 2002-09-10 | Wave Systems Corp. | Public cryptographic control unit and system therefor |
US6963980B1 (en) * | 2000-11-16 | 2005-11-08 | Protegrity Corporation | Combined hardware and software based encryption of databases |
US7178027B2 (en) * | 2001-03-30 | 2007-02-13 | Capital One-Financial Corp. | System and method for securely copying a cryptographic key |
GB2384404B (en) * | 2002-01-18 | 2005-02-16 | Sun Microsystems Inc | Key management |
FI115564B (fi) * | 2003-02-03 | 2005-05-31 | Nokia Corp | Menetelmä ja järjestelmä testauksen suorittamiseksi laitteessa ja laite |
GB2406484B (en) * | 2003-08-19 | 2007-01-31 | Certicom Corp | Method and apparatus for synchronizing an adaptable security level in an electronic communication |
ZA200602587B (en) * | 2003-10-14 | 2007-06-27 | Ericsson Telefon Ab L M | Efficient management of cryptographic key generations |
US8139770B2 (en) * | 2003-12-23 | 2012-03-20 | Wells Fargo Bank, N.A. | Cryptographic key backup and escrow system |
GB0404444D0 (en) * | 2004-02-27 | 2004-09-01 | Bae Sys Defence Sys Ltd | Secure computer communication |
JP4487607B2 (ja) * | 2004-03-23 | 2010-06-23 | ソニー株式会社 | 情報処理システム、情報処理装置および方法、記録媒体、並びにプログラム |
JP4606055B2 (ja) * | 2004-04-21 | 2011-01-05 | 株式会社バッファロー | 暗号鍵設定システム、アクセスポイントおよび暗号鍵設定方法 |
GB2419787B (en) * | 2004-10-28 | 2007-07-04 | Hewlett Packard Development Co | Method and apparatus for providing short-term private keys in public-key cryptographic systems |
JP4783159B2 (ja) * | 2006-01-16 | 2011-09-28 | 日本放送協会 | コンテンツ蓄積装置およびコンテンツ再生装置、並びに、コンテンツ蓄積プログラムおよびコンテンツ再生プログラム |
CN101102180B (zh) * | 2006-07-03 | 2010-08-25 | 联想(北京)有限公司 | 基于硬件安全单元的系统间绑定及平台完整性验证方法 |
GB0701518D0 (en) * | 2007-01-26 | 2007-03-07 | Hewlett Packard Development Co | Methods, devices and data structures for protection of data |
WO2008128212A1 (en) * | 2007-04-12 | 2008-10-23 | Ncipher Corporation Ltd. | Method and system for identifying and managing encryption keys |
US8259948B2 (en) * | 2007-12-29 | 2012-09-04 | Intel Corporation | Virtual TPM key migration using hardware keys |
US20090292930A1 (en) * | 2008-04-24 | 2009-11-26 | Marano Robert F | System, method and apparatus for assuring authenticity and permissible use of electronic documents |
EP2293489A1 (en) * | 2008-06-23 | 2011-03-09 | Panasonic Corporation | Key migration device |
US8498418B2 (en) * | 2009-08-31 | 2013-07-30 | International Business Machines Corporation | Conversion of cryptographic key protection |
US8826039B2 (en) * | 2010-02-02 | 2014-09-02 | Broadcom Corporation | Apparatus and method for providing hardware security |
US8675875B2 (en) * | 2010-05-18 | 2014-03-18 | International Business Machines Corporation | Optimizing use of hardware security modules |
WO2012008158A1 (ja) * | 2010-07-13 | 2012-01-19 | 三洋電機株式会社 | 端末装置 |
US8583937B2 (en) * | 2010-12-16 | 2013-11-12 | Blackberry Limited | Method and apparatus for securing a computing device |
-
2013
- 2013-06-24 EP EP13173426.1A patent/EP2819057B1/en active Active
-
2014
- 2014-05-12 US US14/275,722 patent/US20160119362A1/en not_active Abandoned
- 2014-06-11 CN CN201410258996.6A patent/CN104243137B/zh active Active
- 2014-06-23 JP JP2014128359A patent/JP5923556B2/ja active Active
Also Published As
Publication number | Publication date |
---|---|
US20160119362A1 (en) | 2016-04-28 |
EP2819057A1 (en) | 2014-12-31 |
JP2015007978A (ja) | 2015-01-15 |
EP2819057B1 (en) | 2017-08-09 |
CN104243137B (zh) | 2018-05-08 |
CN104243137A (zh) | 2014-12-24 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
JP5923556B2 (ja) | データ処理システム、データ処理システムの初期化方法及びコンピュータプログラムプロダクト | |
RU2728524C1 (ru) | Способ и устройство консенсусной верификации | |
US6233685B1 (en) | Establishing and employing the provable untampered state of a device | |
US10733291B1 (en) | Bi-directional communication protocol based device security | |
CN106687980B (zh) | 管理程序和虚拟机保护 | |
KR20190105027A (ko) | 데이터 공유 방법 및 데이터 공유 시스템 | |
CN111724150A (zh) | 一种业务请求的处理方法及装置 | |
KR102144614B1 (ko) | 비밀 선거가 보장된 블록 체인 기반의 전자 투표를 수행하는 단말 장치 및 서버와, 전자 투표 방법 | |
US11824967B2 (en) | Electronic device using homomorphic encryption and encrypted data processing method thereof | |
US20220019676A1 (en) | Threat analysis and risk assessment for cyber-physical systems based on physical architecture and asset-centric threat modeling | |
JP2017063401A (ja) | 集積回路、集積回路を保護する方法及びコンピュータプログラム製品 | |
Yilmaz et al. | ARMOR: An anti-counterfeit security Mechanism for lOw cost Radio frequency identification systems | |
CN109445705A (zh) | 固件认证方法及固态硬盘 | |
BR112013012216B1 (pt) | proteção contra as escutas passivas | |
JP6780771B2 (ja) | 検証情報付与装置、検証装置、情報管理システム、方法およびプログラム | |
US20200117795A1 (en) | System and method for generating and authenticating a trusted polymorphic and distributed unique hardware identifier | |
EP3214567A1 (en) | Secure external update of memory content for a certain system on chip | |
EP3616360A2 (en) | Managing cryptographic keys based on identity information | |
US11615188B2 (en) | Executing software | |
US8422683B2 (en) | Appraising systems with zero knowledge proofs | |
CN109684871A (zh) | 基于区块链的文件存储方法及系统 | |
CN113901502A (zh) | 一种数据处理方法、装置、电子设备以及存储介质 | |
Anagnostopoulos | Practical lightweight security: Physical unclonable functions and the internet of things | |
US20230113906A1 (en) | An apparatus and method of controlling access to data stored in a non-trusted memory | |
Maleki et al. | Lightsource: Ultra lightweight clone detection of rfid tags from software unclonable responses |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
A977 | Report on retrieval |
Free format text: JAPANESE INTERMEDIATE CODE: A971007 Effective date: 20150728 |
|
A131 | Notification of reasons for refusal |
Free format text: JAPANESE INTERMEDIATE CODE: A131 Effective date: 20150818 |
|
A521 | Request for written amendment filed |
Free format text: JAPANESE INTERMEDIATE CODE: A523 Effective date: 20151020 |
|
TRDD | Decision of grant or rejection written | ||
A01 | Written decision to grant a patent or to grant a registration (utility model) |
Free format text: JAPANESE INTERMEDIATE CODE: A01 Effective date: 20160322 |
|
A61 | First payment of annual fees (during grant procedure) |
Free format text: JAPANESE INTERMEDIATE CODE: A61 Effective date: 20160418 |
|
R150 | Certificate of patent or registration of utility model |
Ref document number: 5923556 Country of ref document: JP Free format text: JAPANESE INTERMEDIATE CODE: R150 |
|
R250 | Receipt of annual fees |
Free format text: JAPANESE INTERMEDIATE CODE: R250 |
|
R250 | Receipt of annual fees |
Free format text: JAPANESE INTERMEDIATE CODE: R250 |
|
R250 | Receipt of annual fees |
Free format text: JAPANESE INTERMEDIATE CODE: R250 |
|
R250 | Receipt of annual fees |
Free format text: JAPANESE INTERMEDIATE CODE: R250 |
|
R250 | Receipt of annual fees |
Free format text: JAPANESE INTERMEDIATE CODE: R250 |
|
R250 | Receipt of annual fees |
Free format text: JAPANESE INTERMEDIATE CODE: R250 |