公开(公告)号：US20230020838A1

公开(公告)日：2023-01-19

申请号：US17374900

申请日：2021-07-13

Applicant: Microsoft Technology Licensing, LLC

Inventor： Stavros VOLOS ,  Colin DOAK ,  Simon Douglas CHAMBERS ,  David RUGGLES ,  Richard NEAL ,  Cédric Alain Marie FOURNET ,  Kapil VASWANI ,  Balaji VEMBU

IPC: G06F21/57 ,  G06F9/4401

Abstract: In various examples there is a computing device comprising: a first microcontroller comprising a first immutable bootloader and first mutable firmware. The first immutable bootloader uses a unique device secret burnt into hardware of the computing device in order to generate an attestation of the first mutable firmware. The computing device has a second microcontroller. There is second mutable firmware at the second microcontroller. There is a second immutable bootloader at the second microcontroller which sends a measurement of the second mutable firmware to the first immutable bootloader whenever the second microcontroller restarts, such that the first microcontroller is able to include the measurement in the attestation.

公开(公告)号：US20230342121A1

公开(公告)日：2023-10-26

申请号：US18005246

申请日：2021-07-13

Applicant: Microsoft Technology Licensing, LLC

Inventor： Daniel John Pelham WILKINSON ,  Richard OSBORNE ,  Graham Bernard CUNNINGHAM ,  Kenneth GORDON ,  Samuel Alexander WEBSTER ,  Stavros VOLOS ,  Kapil VASWANI ,  Balaji VEMBU ,  Cédric Alain Marie FOURNET

IPC: G06F8/41

CPC classification number: G06F8/41

Abstract: A processing system comprising one or more chips, each comprising a plurality of tiles is described. Each tile comprises a respective processing unit and memory, the memory storing a codelet. The processing system has at least one encryption unit configured to encrypt and decrypt data transferred between the tiles and a trusted computing entity via an external computing device. The codelets are configured to instruct the tiles to transfer the encrypted data by reading from and writing to a plurality of memory regions at the external memory such that a plurality of streams of encrypted data are formed, each stream using an individual one of the memory regions at the external computing device.

公开(公告)号：US20240086542A1

公开(公告)日：2024-03-14

申请号：US18508208

申请日：2023-11-13

Applicant: Microsoft Technology Licensing, LLC

Inventor： Stavros VOLOS ,  Colin DOAK ,  Simon Douglas CHAMBERS ,  David RUGGLES ,  Richard NEAL ,  Cedric Alain Marie FOURNET ,  Kapil VASWANI ,  Balaji VEMBU

IPC: G06F21/57 ,  G06F9/4401

CPC classification number: G06F21/572 ,  G06F9/4405 ,  G06F2221/033

Abstract: In various examples there is a computing device comprising: a first microcontroller comprising a first immutable bootloader and first mutable firmware. The first immutable bootloader uses a unique device secret burnt into hardware of the computing device in order to generate an attestation of the first mutable firmware. The computing device has a second microcontroller. There is second mutable firmware at the second microcontroller. There is a second immutable bootloader at the second microcontroller which sends a measurement of the second mutable firmware to the first immutable bootloader whenever the second microcontroller restarts, such that the first microcontroller is able to include the measurement in the attestation.