公开(公告)号：US20130125207A1

公开(公告)日：2013-05-16

申请号：US13711424

申请日：2012-12-11

Applicant: AT&T Corp.

Inventor： Sandra Lynn Carrico ,  Philippe Hebrais

IPC: H04L29/06

CPC classification number: H04L63/08 ,  H04L63/0272 ,  H04L63/04 ,  H04L63/164

Abstract: The invention describes a method for hardening a security mechanism against physical intrusion and substitution attacks. A user establishes a connection between a network peripheral device and a network via a security mechanism. The security mechanism includes read only memory (ROM) that contains code that initiates operation of the mechanism and performs authentication functions. A persistent memory contains configuration information. A volatile memory stores user and device identification information that remains valid only for a given session and is erased thereafter to prevent a future security breach. A tamper-evident enclosure surrounds the memory elements, which if breached, becomes readily apparent to the user.

Abstract translation: 本发明描述了一种用于硬化安全机制以抵御物理入侵和替代攻击的方法。 用户通过安全机制建立网络外围设备与网络之间的连接。 安全机制包括只读存储器（ROM），其包含启动机制的操作并执行认证功能的代码。 持久性内存包含配置信息。 易失性存储器存储用户和设备识别信息，其仅在给定会话中保持有效，并且之后被擦除以防止将来的安全漏洞。 一个防拆封装围绕着存储器元件，如果被破坏的话，对于用户来说变得容易显现。