公开(公告)号：US20240333488A1

公开(公告)日：2024-10-03

申请号：US18193582

申请日：2023-03-30

Applicant: QUALCOMM Incorporated

Inventor： Joona Verneri KANNISTO ,  Aseem BRAHMA

IPC: H04L9/08

CPC classification number: H04L9/0861 ,  H04L9/0894

Abstract: Systems and techniques are described for key establishment. For instance, a process can, during a first cryptographic key derivation, store a first trusted measurement value of a first entity in a first storage location, store an expected measurement value of a second entity in a second storage location, and generate a first instance of a cryptographic key using the first trusted measurement value, the expected measurement value, and a key derivation function (KDF). The process can, during a second cryptographic key derivation, obtain the expected measurement value as a second trusted measurement value of the second entity and store it in the second storage location, obtain the first trusted measurement value as a second expected measurement value and store it in the first storage location, and generate a second instance of the cryptographic key using the second expected measurement value, the second trusted measurement value, and the key derivation function.

公开(公告)号：US20250053659A1

公开(公告)日：2025-02-13

申请号：US18447888

申请日：2023-08-10

Applicant: QUALCOMM Incorporated

Inventor： Samar ASBE ,  Aseem BRAHMA ,  Shivaprasad HONGAL

IPC: G06F21/57 ,  G06F9/4401 ,  G06F21/44 ,  H04L9/30

Abstract: Disclosed are systems, apparatuses, methods, and computer-readable media for booting a device with independent stage keys. In one illustrative example, a computing device can generate a first stage key for a first stage of a current boot operation of the device based on a private key associated with the device. The computing device can authenticate a first firmware of the first stage using a first authentication tag and the first stage key, wherein the first authentication tag is generated during a previous boot operation. computing device can execute the first firmware based on authenticating the first firmware.

公开(公告)号：US20250097019A1

公开(公告)日：2025-03-20

申请号：US18468666

申请日：2023-09-15

Applicant: QUALCOMM Incorporated

Inventor： Rengarajan RAGAVAN ,  Arun MENON ,  Samar ASBE ,  Aseem BRAHMA ,  Shivaprasad HONGAL ,  Changjian GAO ,  Denis POCHUEV

IPC: H04L9/08 ,  G06F21/72

Abstract: Systems and techniques are provided for establishing a connection. For instance, a process may include receiving, at a first chiplet root of trust (C-ROT) of a first chiplet of a plurality of chiplets, a request for a cryptographic key; generating, by the first C-ROT, the cryptographic key; wrapping, by the first C-ROT, the cryptographic key using a wrapping key to generate a wrapped cryptographic key; outputting, by the first C-ROT, the wrapped cryptographic key; receiving the wrapped cryptographic key at a second C-ROT of a second chiplet of the plurality of chiplets; unwrapping, by the second C-ROT, the wrapped cryptographic key using the wrapping key; and performing, by the second C-ROT, an operation based on the cryptographic key.