公开(公告)号：US20220311594A1

公开(公告)日：2022-09-29

申请号：US17569488

申请日：2022-01-05

Applicant: Intel Corporation

Inventor： Akshay Kadam ,  Sivakumar B ,  Lawrence Booth, JR. ,  Niraj Gupta ,  Steven Tu ,  Ricardo Becker ,  Subba Mungara ,  Tuyet-Trang Piel ,  Mitul Shah ,  Raynald Lim ,  Mihai Bogdan Bucsa ,  Cliodhna Ni Scanaill ,  Roman Zubarev ,  Dmitry Budnikov ,  Lingyun Zhu ,  Yi Qian ,  Stewart Taylor

IPC: H04L9/06 ,  H04L9/08 ,  G06F9/455

Abstract: An accelerator includes a memory, a compute zone to receive an encrypted workload downloaded from a tenant application running in a virtual machine on a host computing system attached to the accelerator, and a processor subsystem to execute a cryptographic key exchange protocol with the tenant application to derive a session key for the compute zone and to program the session key into the compute zone. The compute zone is to decrypt the encrypted workload using the session key, receive an encrypted data stream from the tenant application, decrypt the encrypted data stream using the session key, and process the decrypted data stream by executing the workload to produce metadata.

公开(公告)号：US20240396711A1

公开(公告)日：2024-11-28

申请号：US18785435

申请日：2024-07-26

Applicant: Intel Corporation

Inventor： Akshay Kadam ,  Sivakumar B ,  Lawrence Booth, JR. ,  Niraj Gupta ,  Steven Tu ,  Ricardo Becker ,  Subba Mungara ,  Tuyet-Trang Piel ,  Mitul Shah ,  Raynald Lim ,  Mihai Bogdan Bucsa ,  Cliodhna Ni Scanaill ,  Roman Zubarev ,  Dmitry Budnikov ,  Lingyun Zhu ,  Yi Qian ,  Stewart Taylor

IPC: H04L9/06 ,  G06F9/455 ,  H04L9/08

Abstract: An accelerator includes a memory, a compute zone to receive an encrypted workload downloaded from a tenant application running in a virtual machine on a host computing system attached to the accelerator, and a processor subsystem to execute a cryptographic key exchange protocol with the tenant application to derive a session key for the compute zone and to program the session key into the compute zone. The compute zone is to decrypt the encrypted workload using the session key, receive an encrypted data stream from the tenant application, decrypt the encrypted data stream using the session key, and process the decrypted data stream by executing the workload to produce metadata.