KR101843730B1 - 보안 런타임 환경을 갖는 마이크로 프로세서 시스템 - Google Patents

보안 런타임 환경을 갖는 마이크로 프로세서 시스템 Download PDF

Info

Publication number
KR101843730B1
KR101843730B1 KR1020147006558A KR20147006558A KR101843730B1 KR 101843730 B1 KR101843730 B1 KR 101843730B1 KR 1020147006558 A KR1020147006558 A KR 1020147006558A KR 20147006558 A KR20147006558 A KR 20147006558A KR 101843730 B1 KR101843730 B1 KR 101843730B1
Authority
KR
South Korea
Prior art keywords
runtime environment
secure
secure runtime
operating system
application
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
KR1020147006558A
Other languages
English (en)
Korean (ko)
Other versions
KR20140074296A (ko
Inventor
슈테판 스피쯔
마르쿠스 ?러
마르쿠스 ??러
울리히 마르티니
Original Assignee
트러스토닉 리미티드
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 트러스토닉 리미티드 filed Critical 트러스토닉 리미티드
Publication of KR20140074296A publication Critical patent/KR20140074296A/ko
Application granted granted Critical
Publication of KR101843730B1 publication Critical patent/KR101843730B1/ko
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/62Protecting access to data via a platform, e.g. using keys or access control rules
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/50Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
    • G06F21/52Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems during program execution, e.g. stack integrity ; Preventing unwanted data erasure; Buffer overflow
    • G06F21/53Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems during program execution, e.g. stack integrity ; Preventing unwanted data erasure; Buffer overflow by executing in a restricted environment, e.g. sandbox or secure virtual machine
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/50Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
    • G06F21/57Certifying or maintaining trusted computer platforms, e.g. secure boots or power-downs, version controls, system software checks, secure updates or assessing vulnerabilities
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F9/00Arrangements for program control, e.g. control units
    • G06F9/06Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
    • G06F9/46Multiprogramming arrangements
    • G06F9/54Interprogram communication

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Theoretical Computer Science (AREA)
  • Software Systems (AREA)
  • Computer Hardware Design (AREA)
  • General Engineering & Computer Science (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Health & Medical Sciences (AREA)
  • Bioethics (AREA)
  • General Health & Medical Sciences (AREA)
  • Storage Device Security (AREA)
KR1020147006558A 2011-10-07 2012-10-04 보안 런타임 환경을 갖는 마이크로 프로세서 시스템 Active KR101843730B1 (ko)

Applications Claiming Priority (3)

Application Number Priority Date Filing Date Title
DE102011115135A DE102011115135A1 (de) 2011-10-07 2011-10-07 Mikroprozessorsystem mit gesicherter Laufzeitumgebung
DE102011115135.8 2011-10-07
PCT/EP2012/004159 WO2013050154A1 (de) 2011-10-07 2012-10-04 Mikroprozessorsystem mit gesicherter laufzeitumgebung

Publications (2)

Publication Number Publication Date
KR20140074296A KR20140074296A (ko) 2014-06-17
KR101843730B1 true KR101843730B1 (ko) 2018-03-30

Family

ID=47073399

Family Applications (1)

Application Number Title Priority Date Filing Date
KR1020147006558A Active KR101843730B1 (ko) 2011-10-07 2012-10-04 보안 런타임 환경을 갖는 마이크로 프로세서 시스템

Country Status (8)

Country Link
US (1) US9875366B2 (https=)
EP (1) EP2764464B1 (https=)
JP (1) JP2014533395A (https=)
KR (1) KR101843730B1 (https=)
CN (1) CN103858131B (https=)
BR (1) BR112014006543B1 (https=)
DE (1) DE102011115135A1 (https=)
WO (1) WO2013050154A1 (https=)

Families Citing this family (13)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
DE102011018431A1 (de) 2011-04-21 2012-10-25 Giesecke & Devrient Gmbh Verfahren zur Anzeige von Informationen auf einer Anzeigeeinrichtung eines Endgeräts
US9432348B2 (en) 2012-04-20 2016-08-30 Ologn Technologies Ag Secure zone for secure purchases
FR2998694B1 (fr) * 2012-11-27 2016-01-01 Oberthur Technologies Module electronique pour rendre un message accessible par un systeme d'exploitation vise
FR2998747B1 (fr) * 2012-11-27 2015-01-23 Oberthur Technologies Procede d'aiguillage d'un message
US20140281447A1 (en) * 2013-03-12 2014-09-18 Green Hills Software, Inc. Single-Chip Virtualizing and Obfuscating Communications System for Portable Computing Devices
CN104252388B (zh) * 2013-06-27 2018-10-23 中国银联股份有限公司 移动设备中的非可信环境与可信环境之间的切换
US10129242B2 (en) 2013-09-16 2018-11-13 Airwatch Llc Multi-persona devices and management
CN103945385B (zh) * 2014-03-27 2018-02-13 宇龙计算机通信科技(深圳)有限公司 移动终端防盗的方法及其装置
FR3019351A1 (fr) * 2014-03-31 2015-10-02 Orange Procede de configuration securisee d'une application dans un terminal utilisateur
CN104143065A (zh) * 2014-08-28 2014-11-12 北京握奇智能科技有限公司 安全智能终端设备、及信息处理方法
CN105592403B (zh) * 2014-12-29 2020-03-31 中国银联股份有限公司 一种基于nfc的通信装置和方法
CN104866782A (zh) * 2015-05-29 2015-08-26 宇龙计算机通信科技(深圳)有限公司 一种数据处理方法和装置
US10740496B2 (en) 2017-02-13 2020-08-11 Samsung Electronics Co., Ltd. Method and apparatus for operating multi-processor system in electronic device

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2006022161A1 (ja) 2004-08-25 2006-03-02 Nec Corporation 情報通信装置及びプログラム実行環境制御方法
US20070226795A1 (en) * 2006-02-09 2007-09-27 Texas Instruments Incorporated Virtual cores and hardware-supported hypervisor integrated circuits, systems, methods and processes of manufacture
US20080005790A1 (en) * 2006-06-30 2008-01-03 Microsoft Corporation Multi-Session Connection Across a Trust Boundary

Family Cites Families (63)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JPH01185734A (ja) 1988-01-20 1989-07-25 Fujitsu Ltd バッファメモリ管理方式
US5001742A (en) 1990-01-29 1991-03-19 At&T Bell Laboratories Baseband signal processing unit and method of operating the same
JPH05265779A (ja) 1992-03-23 1993-10-15 Nec Corp タスク間通信システム
US7089214B2 (en) 1998-04-27 2006-08-08 Esignx Corporation Method for utilizing a portable electronic authorization device to approve transactions between a user and an electronic transaction system
US6298446B1 (en) 1998-06-14 2001-10-02 Alchemedia Ltd. Method and system for copyright protection of digital images transmitted over networks
US6633984B2 (en) 1999-01-22 2003-10-14 Sun Microsystems, Inc. Techniques for permitting access across a context barrier on a small footprint device using an entry point object
SE515327C2 (sv) 1999-08-27 2001-07-16 Ericsson Telefon Ab L M Anordning för att utföra säkra transaktioner i en kommunikationsanordning
US6795905B1 (en) 2000-03-31 2004-09-21 Intel Corporation Controlling accesses to isolated memory using a memory controller for isolated execution
JP4812989B2 (ja) 2001-09-17 2011-11-09 株式会社リコー ディスプレイ装置、及びプログラム
EP1329787B1 (en) 2002-01-16 2019-08-28 Texas Instruments Incorporated Secure mode indicator for smart phone or PDA
RU2005115083A (ru) 2002-11-18 2006-01-20 Арм Лимитед (Gb) Переключение процессора между защищенным и незащищенным режимами
GB2396930B (en) 2002-11-18 2005-09-07 Advanced Risc Mach Ltd Apparatus and method for managing access to a memory
GB0226874D0 (en) 2002-11-18 2002-12-24 Advanced Risc Mach Ltd Switching between secure and non-secure processing modes
KR100950007B1 (ko) * 2003-06-27 2010-03-29 디즈니엔터프라이지즈,인크. 차세대 미디어 플레이어층에 대한 이중 가상 머신 및 신뢰플랫폼 모듈 아키텍쳐
CN100451983C (zh) 2003-06-27 2009-01-14 迪斯尼实业公司 下一代媒体播放器的双虚拟机以及信任平台
GB2406403B (en) 2003-09-26 2006-06-07 Advanced Risc Mach Ltd Data processing apparatus and method for merging secure and non-secure data into an output data stream
US8122361B2 (en) 2003-10-23 2012-02-21 Microsoft Corporation Providing a graphical user interface in a system with a high-assurance execution environment
ATE339742T1 (de) 2003-11-07 2006-10-15 Cit Alcatel Verfahren zur unterstützung bargeldloser zahlung
EP1870814B1 (en) * 2006-06-19 2014-08-13 Texas Instruments France Method and apparatus for secure demand paging for processor devices
JP2006018745A (ja) 2004-07-05 2006-01-19 Hitachi Ltd 電子データ認証システム、認証マーク偽造検証方法、認証マーク偽造検証プログラム、閲覧者用端末、及び認証マーク生成サーバ
DE102005005378A1 (de) 2004-09-14 2006-03-30 Wincor Nixdorf International Gmbh Vorrichtung zur Eingabe und Übertragung von verschlüsselten Signalen
DE102004054571B4 (de) 2004-11-11 2007-01-25 Sysgo Ag Verfahren zur Verteilung von Rechenzeit in einem Rechnersystem
DE102004062203B4 (de) 2004-12-23 2007-03-08 Infineon Technologies Ag Datenverarbeitungseinrichtung, Telekommunikations-Endgerät und Verfahren zur Datenverarbeitung mittels einer Datenverarbeitungseinrichtung
US7627807B2 (en) 2005-04-26 2009-12-01 Arm Limited Monitoring a data processor to detect abnormal operation
US20070079111A1 (en) 2005-09-30 2007-04-05 Chiu-Fu Chen Activating method of computer multimedia function
JP2007188216A (ja) 2006-01-12 2007-07-26 Ntt Advanced Technology Corp 秘匿情報入力システムおよび秘匿情報入力方法
DE102006002824B4 (de) 2006-01-19 2008-10-09 Phoenix Contact Gmbh & Co. Kg Verfahren und Vorrichtung zur Umwandlung mehrkanalig vorliegender Nachrichten in eine einkanalige sichere Nachricht
US7765399B2 (en) 2006-02-22 2010-07-27 Harris Corporation Computer architecture for a handheld electronic device
US7950020B2 (en) 2006-03-16 2011-05-24 Ntt Docomo, Inc. Secure operating system switching
WO2007125911A1 (ja) 2006-04-24 2007-11-08 Panasonic Corporation データ処理装置、方法、プログラム、集積回路、プログラム生成装置
US8194088B1 (en) 2006-08-03 2012-06-05 Apple Inc. Selective composite rendering
EP2095345A4 (en) 2006-10-23 2011-04-27 Behruz Nader Daroga DIGITAL TRANSMISSION SYSTEM (DTS) FOR THE SECURITY OF BANK ATMOSPHERES (ATM)
US8190885B2 (en) 2006-12-21 2012-05-29 Spansion Llc Non-volatile memory sub-system integrated with security for storing near field transactions
US8996864B2 (en) * 2006-12-22 2015-03-31 Virtuallogix Sa System for enabling multiple execution environments to share a device
JP4358224B2 (ja) 2006-12-27 2009-11-04 株式会社東芝 ゲストosスケジューリング方法及び仮想計算機モニタ
JP2008211332A (ja) 2007-02-23 2008-09-11 Canon Inc 画像形成装置及びその制御方法、並びにプログラム及び記憶媒体
US8261064B2 (en) 2007-02-27 2012-09-04 L-3 Communications Corporation Integrated secure and non-secure display for a handheld communications device
US8190778B2 (en) * 2007-03-06 2012-05-29 Intel Corporation Method and apparatus for network filtering and firewall protection on a secure partition
FR2914457B1 (fr) 2007-03-30 2009-09-04 Ingenico Sa Procede et dispositif de visualisation securitaire
US8712474B2 (en) 2007-04-20 2014-04-29 Telefonaktiebolaget L M Ericsson (Publ) Secure soft SIM credential transfer
GB2453518A (en) 2007-08-31 2009-04-15 Vodafone Plc Telecommunications device security
DE102007052826A1 (de) 2007-11-06 2009-05-07 Giesecke & Devrient Gmbh Daten verarbeitende Vorrichtung und Verfahren zum Betreiben einer Daten verarbeitenden Vorrichtung
CN101868953A (zh) 2007-12-07 2010-10-20 诺基亚公司 事务处理认证
CN101299228B (zh) 2008-01-26 2010-09-01 青岛大学 一种基于单cpu双总线的安全网络终端
GB2459097B (en) 2008-04-08 2012-03-28 Advanced Risc Mach Ltd A method and apparatus for processing and displaying secure and non-secure data
US8522354B2 (en) 2008-05-24 2013-08-27 Via Technologies, Inc. Microprocessor apparatus for secure on-die real-time clock
US7809875B2 (en) 2008-06-30 2010-10-05 Wind River Systems, Inc. Method and system for secure communication between processor partitions
JP5157726B2 (ja) 2008-07-31 2013-03-06 富士通モバイルコミュニケーションズ株式会社 電子機器
JP2010062823A (ja) 2008-09-03 2010-03-18 Nippon Telegr & Teleph Corp <Ntt> 現金自動支払機のための認証システム
US8528041B1 (en) * 2008-11-07 2013-09-03 Sprint Communications Company L.P. Out-of-band network security management
US8595491B2 (en) 2008-11-14 2013-11-26 Microsoft Corporation Combining a mobile device and computer to create a secure personalized environment
KR101540798B1 (ko) 2008-11-21 2015-07-31 삼성전자 주식회사 가상화 환경에서 보안 정보를 제공하기 위한 장치 및 방법
JP4698724B2 (ja) 2008-12-01 2011-06-08 株式会社エヌ・ティ・ティ・ドコモ プログラム実行装置
US8490176B2 (en) 2009-04-07 2013-07-16 Juniper Networks, Inc. System and method for controlling a mobile device
US9003517B2 (en) 2009-10-28 2015-04-07 Microsoft Technology Licensing, Llc Isolation and presentation of untrusted data
US9207968B2 (en) 2009-11-03 2015-12-08 Mediatek Inc. Computing system using single operating system to provide normal security services and high security services, and methods thereof
AU2011202838B2 (en) 2010-12-21 2014-04-10 Lg Electronics Inc. Mobile terminal and method of controlling a mode screen display therein
DE102011012227A1 (de) 2011-02-24 2012-08-30 Giesecke & Devrient Gmbh Verfahren zum Datenaustausch in einer gesicherten Laufzeitumgebung
DE102011012226A1 (de) 2011-02-24 2012-08-30 Giesecke & Devrient Gmbh Verfahren zum Betrieb einer Mikroprozessoreinheit, insbesondere in einem mobilen Endgerät
US20130046697A1 (en) 2011-03-17 2013-02-21 Suridx, Inc. Using Mobile Device to Prevent Theft of User Credentials
DE102011018431A1 (de) 2011-04-21 2012-10-25 Giesecke & Devrient Gmbh Verfahren zur Anzeige von Informationen auf einer Anzeigeeinrichtung eines Endgeräts
US9183373B2 (en) 2011-05-27 2015-11-10 Qualcomm Incorporated Secure input via a touchscreen
DE102011116489A1 (de) 2011-10-20 2013-04-25 Giesecke & Devrient Gmbh Mobiles Endgerät, Transaktionsterminal und Verfahren zur Durchführung einer Transaktion an einem Transaktionsterminal mittels eines mobilen Endgeräts

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2006022161A1 (ja) 2004-08-25 2006-03-02 Nec Corporation 情報通信装置及びプログラム実行環境制御方法
US20070226795A1 (en) * 2006-02-09 2007-09-27 Texas Instruments Incorporated Virtual cores and hardware-supported hypervisor integrated circuits, systems, methods and processes of manufacture
US20080005790A1 (en) * 2006-06-30 2008-01-03 Microsoft Corporation Multi-Session Connection Across a Trust Boundary

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
간행물

Also Published As

Publication number Publication date
CN103858131B (zh) 2017-03-29
BR112014006543A2 (pt) 2017-04-25
US20140237621A1 (en) 2014-08-21
EP2764464B1 (de) 2018-11-28
US9875366B2 (en) 2018-01-23
KR20140074296A (ko) 2014-06-17
BR112014006543B1 (pt) 2021-07-06
JP2014533395A (ja) 2014-12-11
EP2764464A1 (de) 2014-08-13
DE102011115135A1 (de) 2013-04-11
CN103858131A (zh) 2014-06-11
WO2013050154A1 (de) 2013-04-11

Similar Documents

Publication Publication Date Title
KR101843730B1 (ko) 보안 런타임 환경을 갖는 마이크로 프로세서 시스템
JP7086908B2 (ja) 対象のコンピューティング装置で実施される動作を認証する方法
US10244578B2 (en) Mobile communication device and method of operating thereof
US8935746B2 (en) System with a trusted execution environment component executed on a secure element
KR101952226B1 (ko) 보안 인터렉션 방법 및 장치
JP4556144B2 (ja) 情報処理装置、復旧装置、プログラム及び復旧方法
CN104412242B (zh) 内存保护
EP3370449B1 (en) Method and device for configuring security indication information
US20080005794A1 (en) Information Communication Device and Program Execution Environment Control Method
EP3188065A1 (en) Secure intelligent terminal device and information processing method
US11138027B2 (en) Method and terminal for implementing host card emulation, and data routing method and apparatus
US20170317832A1 (en) Virtual Secure Elements in Computing Systems based on ARM Processors
JP2015524128A5 (https=)
WO2018085183A1 (en) Exclusive execution environment within a system-on-a-chip computing system
KR102324328B1 (ko) 보안 요소
CN101047701B (zh) 保证应用程序安全运行的系统和方法
JP2014109882A (ja) 情報処理装置、情報処理方法及びプログラム
Iannillo et al. An REE-independent approach to identify callers of TEEs in TrustZone-enabled cortex-M devices
US11847203B2 (en) Method, system and device for managing an execution of a program relating to part or all of a first application
CN109906454B (zh) Java卡平台和小程序安全
CN118246040A (zh) 电子设备的保护
CN118246039A (zh) 电子设备的保护
KR101513162B1 (ko) 보안 어플리케이션 구동 시스템
CN115357901A (zh) 基于可信硬件平台的系统及方法
Kursawe Trusted platforms

Legal Events

Date Code Title Description
PA0105 International application

Patent event date: 20140312

Patent event code: PA01051R01D

Comment text: International Patent Application

PG1501 Laying open of application
A201 Request for examination
A302 Request for accelerated examination
PA0201 Request for examination

Patent event code: PA02012R01D

Patent event date: 20170623

Comment text: Request for Examination of Application

PA0302 Request for accelerated examination

Patent event date: 20170623

Patent event code: PA03022R01D

Comment text: Request for Accelerated Examination

E902 Notification of reason for refusal
PE0902 Notice of grounds for rejection

Comment text: Notification of reason for refusal

Patent event date: 20170908

Patent event code: PE09021S01D

E701 Decision to grant or registration of patent right
PE0701 Decision of registration

Patent event code: PE07011S01D

Comment text: Decision to Grant Registration

Patent event date: 20180102

GRNT Written decision to grant
PR0701 Registration of establishment

Comment text: Registration of Establishment

Patent event date: 20180326

Patent event code: PR07011E01D

PR1002 Payment of registration fee

Payment date: 20180327

End annual number: 3

Start annual number: 1

PG1601 Publication of registration
PR1001 Payment of annual fee

Payment date: 20220315

Start annual number: 5

End annual number: 5

PR1001 Payment of annual fee

Payment date: 20230323

Start annual number: 6

End annual number: 6

PR1001 Payment of annual fee

Payment date: 20240312

Start annual number: 7

End annual number: 7