-
公开(公告)号:US10992482B2
公开(公告)日:2021-04-27
申请号:US15841894
申请日:2017-12-14
Applicant: Google LLC
Inventor: Alejandro Martin Deymonnaz , Darren David Krahn , David Zeuthen
Abstract: Methods, systems, and apparatus, including computer-readable media, for verified boot and key rotation. In some implementations, a device extracts a public key from a secure data storage area of the device. The device extracts a first certificate for an intermediate key and a second certificate for a signing key, the first certificate and the second certificate being extracted from a system image. The device verifies a signature of the first certificate using the public key. After verifying the signature of the first certificate, the device verifies the second certificate using a public key in the first certificate. In response to verifying the second certificate, the device loads the system image during a boot process of the device.
-
公开(公告)号:US20240381053A1
公开(公告)日:2024-11-14
申请号:US18294042
申请日:2021-08-17
Applicant: Google LLC
Inventor: Liping Liu , Darren David Krahn , Xiangjun Zhao , Ning Zhang , Jian Wang , Roshan Pius
Abstract: An ultra-wideband (UWB) ranging method comprises determining, by a first device, that the first device is within proximity of a second device. Responsive to the determination, the first device negotiates a value to use as a UWB session key for securing UWB communications with the second device. The negotiation occurs via a communication protocol different from a UWB communication protocol. The first device controls a UWB subsystem therein to encrypt information communicated via the UWB subsystem based on the negotiated value of the UWB session key instead of a default value for the UWB session key that is specified in the UWB communication protocol. The information facilitates determining the distance between the first device and the second device.
-
公开(公告)号:US20180198629A1
公开(公告)日:2018-07-12
申请号:US15841894
申请日:2017-12-14
Applicant: Google LLC
Inventor: Alejandro Martin Deymonnaz , Darren David Krahn , David Zeuthen
IPC: H04L9/32 , H04L9/30 , G06F21/57 , G06F9/4401
CPC classification number: H04L9/3263 , G06F9/4401 , G06F21/575 , H04L9/0891 , H04L9/0894 , H04L9/30 , H04L9/3265 , H04L63/0823
Abstract: Methods, systems, and apparatus, including computer-readable media, for verified boot and key rotation. In some implementations, a device extracts a public key from a secure data storage area of the device. The device extracts a first certificate for an intermediate key and a second certificate for a signing key, the first certificate and the second certificate being extracted from a system image. The device verifies a signature of the first certificate using the public key. After verifying the signature of the first certificate, the device verifies the second certificate using a public key in the first certificate. In response to verifying the second certificate, the device loads the system image during a boot process of the device.
-
4.发明公开公开(公告)号:US20240187260A1
公开(公告)日:2024-06-06
申请号:US18553864
申请日:2022-06-17
Applicant: Google LLC
Inventor: Darren David Krahn
CPC classification number: H04L9/3268 , H04L9/0877 , H04L9/3226
Abstract: Apparatus and methods related to receiving, by a secure component and from a client computing device via a secure communication channel, input data for a task associated with the client computing device, wherein the task is based on a device identifier composition engine (DICE) protocol, and wherein the secure component is to perform a cryptographic subtask of the task; receiving, by the secure component and from the client computing device via the secure communication channel, context data associated with the cryptographic subtask; executing, by the secure component, the cryptographic subtask based on the input data and the context data; and providing, by the secure component and to the client computing device via tiie secure communication channel, an output of the cryptographic subtask.
-
-
-
Search Results
4
records
(took 0.011 seconds)
