MY151311A - Method of performing secure documents with a security token on a trusted compartment - Google Patents

Abstract

A PLATFORM HAVING A PREFERRED ARCHITECTURE COMPRISING OF HARDWARE (101), VIRTUALIZATION LAYER (102), AND A TRUSTED SOFTWARE LAYER (103). THE TRUSTED COMPARTMENT (200) IS FOUNDED ON THE VIRTUALIZATION (102) AND TRUSTED SOFTWARE LAYER (103). THIS ENABLES ANY APPLICATION TO RUN ON A SEPARATE COMPARTMENT FROM THE OTHER DOMAIN THAT HOUSES THE HOST OPERATING SYSTEM (104). WHEREIN, A USER INTERFACE MODULE (240) PROVIDES THE INTERFACE FOR THE USER TO PERFORM SECURITY METHODS ON A DOCUMENT. A COMMON INTERFACE MODULE (220) PROVIDES THE COMMON APPLICATION INTERFACES FOR CRYPTOGRAPHIC FUNCTION TO COMMUNICATE BETWEEN THE USER INTERFACE (240) AND TRUSTED COMPARTMENT (200) AND PASS THROUGH THE OPERATING SYSTEM (104). A TOKEN INTERFACE (230) PROVIDES AN INTERFACE FOR THE TRUSTED COMPARTMENT (200) TO COMMUNICATE WITH THE REAL TOKEN HARDWARE. AN CRYPTOGRAPHIC ENGINE MODULE (210) PROVIDES CRYPTOGRAPHIC FUNCTIONS TO SECURE DIGITAL DOCUMENT WITHIN THE TRUSTED COMPARTMENT (200). MOST ILLUSTRATIVE DRAWING: