公开(公告)号：US20160125201A1

公开(公告)日：2016-05-05

申请号：US14754898

申请日：2015-06-30

Applicant: HEWLETT-PACKARD DEVELOPMENT COMPANY, L.P.

Inventor： Maugan Villatel ,  Boris Balacheff ,  Chris I. Dalton ,  David Plaquin ,  Adrian Shaw ,  Simon Kai-Ying Shiu

IPC: G06F21/62 ,  G06F17/30

CPC classification number: G06F21/74 ,  G06F9/46 ,  G06F17/30 ,  G06F21/53 ,  G06F21/62 ,  G06F21/6281 ,  G06F21/629

Abstract: A data processing system supporting a secure domain and a non-secure domain comprises a hardware component, and a processor device having operating modes in the secure domain and non-secure domain, the processor device to execute a secure application in the secure domain. The hardware component has a property having a secure state. The property of the hardware component in the secure state may only be reconfigured responsive to instructions received from the secure domain. The secure application is operative to implement a configuration service to configure the property of the hardware component in the secure state, responsive to a request received from the non-secure domain according to an application programming interface associated with the secure application.

Abstract translation: 支持安全域和非安全域的数据处理系统包括硬件组件和在安全域和非安全域中具有操作模式的处理器设备，处理器设备在安全域中执行安全应用。 硬件组件具有具有安全状态的属性。 硬件组件处于安全状态的属性可能只能根据从安全域接收到的指令进行重新配置。 响应于根据与安全应用相关联的应用编程接口从非安全域接收的请求，安全应用程序可操作以实现配置服务以配置处于安全状态的硬件组件的属性。

公开(公告)号：US09633231B2

公开(公告)日：2017-04-25

申请号：US14754898

申请日：2015-06-30

Applicant: HEWLETT-PACKARD DEVELOPMENT COMPANY, L.P.

Inventor： Maugan Villatel ,  Boris Balacheff ,  Chris I Dalton ,  David Plaquin ,  Adrian Shaw ,  Simon Kai-Ying Shiu

IPC: G06F21/62 ,  G06F21/74 ,  G06F21/53 ,  G06F9/46 ,  G06F17/30

CPC classification number: G06F21/74 ,  G06F9/46 ,  G06F17/30 ,  G06F21/53 ,  G06F21/62 ,  G06F21/6281 ,  G06F21/629

Abstract: A data processing system supporting a secure domain and a non-secure domain comprises a hardware component, and a processor device having operating modes in the secure domain and non-secure domain, the processor device to execute a secure application in the secure domain. The hardware component has a property having a secure state. The property of the hardware component in the secure state may only be reconfigured responsive to instructions received from the secure domain. The secure application is operative to implement a configuration service to configure the property of the hardware component in the secure state, responsive to a request received from the non-secure domain according to an application programming interface associated with the secure application.

公开(公告)号：US20160127128A1

公开(公告)日：2016-05-05

申请号：US14755125

申请日：2015-06-30

Applicant: HEWLETT-PACKARD DEVELOPMENT COMPANY, L.P.

Inventor： Liqun Chen ,  Fraser John Dickin ,  Martin Sadler ,  Chris I. Dalton ,  Nigel Edwards ,  Simon Kai-Ying Shiu ,  Boris Balacheff

IPC: H04L9/08 ,  G06F21/72 ,  H04L9/32

CPC classification number: H04L9/0897 ,  G06F21/72 ,  H04L9/0866 ,  H04L9/3073 ,  H04L9/3247

Abstract: An electronic device for management of cryptographic keys, and a corresponding method implemented in a computing device comprising a physical processor, transmit feature data of the device to a key generation module, wherein the feature data comprises information corresponding to an identifier or an attribute of the device, and receive, by the device from the key generation module, a digital signature of the transmitted feature data. The device installs the received digital signature as a cryptographic private key for communication, and performs a cryptographic operation using the installed digital signature as the cryptographic private key.

Abstract translation: 一种用于管理加密密钥的电子设备，以及在包括物理处理器的计算设备中实现的相应方法，将设备的特征数据发送到密钥生成模块，其中，特征数据包括与标识符或属性对应的信息 设备，并且由密钥生成模块的设备接收所发送的特征数据的数字签名。 设备将接收到的数字签名作为加密专用密钥进行安装，进行通信，并使用安装的数字签名作为密码私钥进行密码操作。