公开(公告)号：US11329835B2

公开(公告)日：2022-05-10

申请号：US16855754

申请日：2020-04-22

Applicant: ELECTRONICS AND TELECOMMUNICATIONS RESEARCH INSTITUTE

Inventor： Byoung-Koo Kim ,  Seung-Yong Yoon ,  You-Sung Kang ,  Doo-Ho Choi ,  Ik-Kyun Kim ,  Tae-Sung Kim ,  Mi-Kyung Oh ,  Sang-Jae Lee

IPC: H04L9/32 ,  G06F21/44 ,  H04L9/08 ,  H04L29/06 ,  G06F7/58

Abstract: Disclosed herein are an apparatus and method for authenticating an IoT device. The method, performed by the IoT device authentication apparatus, includes transmitting, by the IoT device authentication apparatus, a random number to the IoT device and encrypting, by the IoT device authentication apparatus, the random number using a previously registered first white-box cryptography value through a white-box cryptography method; generating, by the IoT device, a first device response value from a previously registered first device challenge value using a Physical Unclonable Function (PUF) and encrypting, by the IoT device, the random number, received from the IoT device authentication apparatus, using the first device response value; and performing, by the IoT device authentication apparatus, authentication of the IoT device by checking whether the random number encrypted using the white-box cryptography method matches the random number encrypted using the PUF, which is received from the IoT device.

公开(公告)号：US11726668B2

公开(公告)日：2023-08-15

申请号：US17507727

申请日：2021-10-21

Applicant: ELECTRONICS AND TELECOMMUNICATIONS RESEARCH INSTITUTE

Inventor： Yong-Sung Jeon ,  Doo-Ho Choi ,  Ha-Young Seong ,  Mi-Kyung Oh ,  Sang-Jae Lee ,  Ik-Kyun Kim

IPC: G06F3/06

CPC classification number: G06F3/0619 ,  G06F3/0652 ,  G06F3/0659 ,  G06F3/0673

Abstract: Disclosed herein is a device equipped with flash memory, which includes memory in which at least one program is recorded and a processor for executing the program. The memory includes flash memory including a data area and a backup area, and the program divides data into two or more segments depending on whether the data can be stored in a single page and stores the same in the data area. The first segment is stored in a page along with a segment number, indicating the sequential position of the divided data, a segment offset, indicating the number of pages between the pages in which the current segment and the next segment are stored, the size of a data file name, the size of the data, and the file name. At least one additional segment may be stored in another page along with the segment number and segment offset thereof.

公开(公告)号：US11336444B2

公开(公告)日：2022-05-17

申请号：US16940146

申请日：2020-07-27

Applicant: ELECTRONICS AND TELECOMMUNICATIONS RESEARCH INSTITUTE

Inventor： Yong-Sung Jeon ,  You-Sung Kang ,  Byoung-Koo Kim ,  Sang-Jae Lee ,  Seung-Kwang Lee ,  Doo-Ho Choi

IPC: H04L9/08 ,  H04L9/06

Abstract: Disclosed herein are a hardware security module, a device having the hardware security module, and a method for operating the device. The method for verifying integrity of executable code in a device includes dividing, by a Micro-Control Unit (MCU), executable code into multiple blocks, generating, by the MCU, hash values corresponding to the blocks resulting from the division, storing, by a Hardware Security Module (HSM), the generated hash values, calculating, by the MCU, at least one hash value, among hash values of the multiple blocks when the executable code boots, and comparing, by the HSM, the calculated hash value with a hash value corresponding to the calculated hash value, among the hash values stored in the HSM.