公开(公告)号：US11789625B2

公开(公告)日：2023-10-17

申请号：US17876960

申请日：2022-07-29

申请人： Cryptography Research, Inc.

发明人： Benjamin Che-Ming Jun ,  William Craig Rawlings ,  Ambuj Kumar ,  Mark Evan Marson

IPC分类号： G06F3/06 ,  G06F21/71 ,  G06F21/76 ,  G11C17/16 ,  G11C17/18

CPC分类号： G06F3/0637 ,  G06F3/0622 ,  G06F3/0688 ,  G06F21/71 ,  G06F21/76 ,  G11C17/16 ,  G11C17/18

摘要： A request associated with one or more privileges assigned to a first entity may be received. Each of the one or more privileges may correspond to an operation of an integrated circuit. Information corresponding to the first entity and stored in a memory that is associated with the integrated circuit may be identified. Furthermore, the memory may be programmed to modify the information stored in the memory that is associated with the integrated circuit in response to the request associated with the one or more privileges assigned to the first entity.

公开(公告)号：US11310227B2

公开(公告)日：2022-04-19

申请号：US16804555

申请日：2020-02-28

申请人： Cryptography Research, Inc.

发明人： Michael Hamburg ,  Benjamin Che-Ming Jun ,  Paul C. Kocher ,  Daniel O'Loughlin ,  Denis Alexandrovich Pochuev

IPC分类号： H04L29/06 ,  H04L67/60 ,  H04W12/06 ,  G06F21/60 ,  G06F21/62 ,  G06F21/72 ,  G06F21/73 ,  G06F21/33 ,  H04W12/30 ,  H04W12/0431

摘要： The embodiments described herein describe technologies for Module management, including Module creation and Module deployment to a target device in an operation phase of a manufacturing lifecycle of the target device in a cryptographic manager (CM) environment. One implementation includes a Root Authority (RA) device that receives a first command to create a Module and executes a Module Template to generate the Module in response to the first command. The RA device receives a second command to create a deployment authorization message. The Module and the deployment authorization message are deployed to an Appliance device. A set of instructions of the Module, when permitted by the deployment authorization message and executed by the Appliance device, results in a secure construction of a sequence of operations to securely provision a data asset to the target device.

公开(公告)号：US10666641B2

公开(公告)日：2020-05-26

申请号：US16138105

申请日：2018-09-21

申请人： Cryptography Research Inc.

发明人： Paul Carl Kocher ,  Benjamin Che-Ming Jun ,  Andrew John Leiserson

IPC分类号： H04L29/06 ,  H04L9/08 ,  H04L9/14 ,  H04L9/32 ,  G06F21/54 ,  G06F21/71

摘要： A mechanism for providing secure feature and key management in integrated circuits is described. An example method includes receiving, by a root authority system, data identifying a command that affects operation of an integrated circuit, singing, by the root authority system, the command using a root authority key to create a root signed block (RSB), and providing the RSB to a security manager of the integrated circuit.

公开(公告)号：US10440000B2

公开(公告)日：2019-10-08

申请号：US15322707

申请日：2015-07-09

申请人： CRYPTOGRAPHY RESEARCH, INC.

发明人： Ambuj Kumar ,  Daniel Beitel ,  Benjamin Che-Ming Jun

IPC分类号： H04L9/00 ,  H04L29/06 ,  H04L9/08 ,  H04L9/32 ,  H04W12/04 ,  G06F21/57 ,  G06F12/14

摘要： A first instruction to store an entity identification (ID) in a memory of a device may be received. The entity ID may be stored in the memory in response to receiving the first instruction. Furthermore, a second instruction to store a value based on a key in the memory of the device may be received. A determination may be made as to whether the value based on the key that is to be stored in the memory corresponds to the entity ID that is stored in the memory. The value based on the key may be stored in the memory of the device when the value based on the key corresponds to the entity ID.

公开(公告)号：US20150312046A1

公开(公告)日：2015-10-29

申请号：US14687840

申请日：2015-04-15

申请人： CRYPTOGRAPHY RESEARCH, INC.

发明人： Ambuj Kumar ,  Benjamin Che-Ming Jun

IPC分类号： H04L9/32 ,  G06F3/06 ,  H04L29/06

CPC分类号： H04L9/3268 ,  G06F3/0619 ,  G06F3/0655 ,  G06F3/0679 ,  H04L9/0891 ,  H04L63/0823

摘要： A request associated with a revocation of a key may be received. A hash value corresponding to the key that is stored in a memory may be identified. Furthermore, the hash value that is stored in the memory may be corrupted in response to the request associated with the revocation of the key.

摘要翻译： 可以接收与撤销密钥相关联的请求。 可以识别与存储在存储器中的密钥对应的散列值。 此外，存储在存储器中的哈希值可以响应于与钥匙的撤销相关联的请求而被破坏。

公开(公告)号：US11308196B2

公开(公告)日：2022-04-19

申请号：US16804563

申请日：2020-02-28

申请人： Cryptography Research, Inc.

发明人： Benjamin Che-Ming Jun ,  Matthew Evan Orzen ,  Joel Patrick Wittenauer ,  Steven C. Woo

IPC分类号： G06F21/44 ,  H04L29/06 ,  H04L9/32

摘要： Pairing data associated with a second device may be received at a first device. The pairing data may be received from a server. A first authentication proof may be generated based on the pairing data received from the server. A second authentication proof may be received from the second device. Furthermore, an authentication status of the second device may be updated based on a comparison of the first authentication proof that is based on the pairing data received from the server and the second authentication proof that is received from the second device.

公开(公告)号：US20200304287A1

公开(公告)日：2020-09-24

申请号：US16786796

申请日：2020-02-10

申请人： Cryptography Research, Inc.

发明人： Megan Anneke Wachs ,  Ambuj Kumar ,  Benjamin Che-Ming Jun

IPC分类号： H04L9/06 ,  H04L9/08 ,  H04L29/06 ,  H04L9/32

摘要： Values and a sequence of operations associated with generating a key may be received. A determination may be made as to whether the sequence of operations associated with the key matches an authorized sequence of operations. The key may be outputted when the received sequence of operations matches the authorized sequence of operations and the key may not be outputted when the received sequence of operations does not match the authorized sequence of operations.

公开(公告)号：US20200272725A1

公开(公告)日：2020-08-27

申请号：US16804563

申请日：2020-02-28

申请人： Cryptography Research, Inc.

发明人： Benjamin Che-Ming Jun ,  Matthew Evan Orzen ,  Joel Patrick Wittenauer ,  Steven C. Woo

IPC分类号： G06F21/44 ,  H04L29/06 ,  H04L9/32

摘要： Pairing data associated with a second device may be received at a first device. The pairing data may be received from a server. A first authentication proof may be generated based on the pairing data received from the server. A second authentication proof may be received from the second device. Furthermore, an authentication status of the second device may be updated based on a comparison of the first authentication proof that is based on the pairing data received from the server and the second authentication proof that is received from the second device.

公开(公告)号：US20190087567A1

公开(公告)日：2019-03-21

申请号：US16015107

申请日：2018-06-21

申请人： Cryptography Research, Inc.

发明人： Benjamin Che-Ming Jun ,  Matthew Evan Orzen ,  Joel Patrick Wittenauer ,  Steven C. Woo

IPC分类号： G06F21/44 ,  H04L29/06 ,  H04L9/32

CPC分类号： G06F21/44 ,  H04L9/321 ,  H04L9/3271 ,  H04L63/08

摘要： Pairing data associated with a second device may be received at a first device. The pairing data may be received from a server. A first authentication proof may be generated based on the pairing data received from the server. A second authentication proof may be received from the second device. Furthermore, an authentication status of the second device may be updated based on a comparison of the first authentication proof that is based on the pairing data received from the server and the second authentication proof that is received from the second device.

公开(公告)号：US10084771B2

公开(公告)日：2018-09-25

申请号：US14871951

申请日：2015-09-30

申请人： Cryptography Research, Inc.

发明人： Paul Carl Kocher ,  Benjamin Che-Ming Jun ,  Andrew John Leiserson

IPC分类号： H04L29/06 ,  H04L9/08 ,  H04L9/32 ,  G06F21/54 ,  G06F21/71 ,  H04L9/14

CPC分类号： H04L63/0823 ,  G06F21/54 ,  G06F21/71 ,  G06F2221/2101 ,  H04L9/083 ,  H04L9/0897 ,  H04L9/14 ,  H04L9/3247 ,  H04L63/061 ,  H04L63/083

摘要： A mechanism for providing secure feature and key management in integrated circuits is described. An example method includes receiving, by a root authority system, data identifying a command that affects operation of an integrated circuit, singing, by the root authority system, the command using a root authority key to create a root signed block (RSB), and providing the RSB to a security manager of the integrated circuit.