公开(公告)号：US09813392B2

公开(公告)日：2017-11-07

申请号：US14640687

申请日：2015-03-06

Applicant: QUALCOMM Incorporated

Inventor： Dean Lorenz ,  Boris Dolgunov ,  Roberto Avanzi ,  Ivan Hugh Mclean

IPC: H04L29/06 ,  H04L9/08 ,  H04L9/32

CPC classification number: H04L63/045 ,  H04L9/0866 ,  H04L9/0877 ,  H04L9/0897 ,  H04L9/3236 ,  H04L9/3263 ,  H04L63/0421 ,  H04L63/061 ,  H04L63/0876

Abstract: Disclosed is a method for providing a public key for authenticating an integrated circuit. In the method, the integrated circuit obtains a hardware key and an integrated circuit identifier. The integrated circuit generates a derived key based on the hardware key using a key derivation function (KDF) shared with a manufacturing machine. The integrated circuit generates a private key and a corresponding public key using the derived key as an input to a deterministic function. The integrated circuit then provides the public key and the integrated circuit identifier to a partner service for authentication of the integrated circuit using an anonymized credential database to be provided to the partner service by a manufacturer.

公开(公告)号：US20170085542A1

公开(公告)日：2017-03-23

申请号：US15053892

申请日：2016-02-25

Applicant: QUALCOMM Incorporated

Inventor： Roberto Avanzi ,  David Hartley ,  Rosario Cammarota

IPC: H04L29/06 ,  G06F11/16 ,  G06F11/30 ,  G06F12/14 ,  G06F11/07

CPC classification number: H04L63/061 ,  G06F11/0727 ,  G06F11/167 ,  G06F11/3037 ,  G06F12/1408 ,  G06F21/6218 ,  G06F21/78 ,  G06F2212/1052

Abstract: In an aspect, a method for protecting software includes obtaining a payload including at least one of instructions or data, establishing a realm in a memory device, encrypting the payload based on an ephemeral encryption key (EEK) associated with the realm, and storing the encrypted payload in the realm of the memory device. In another aspect, a method for protecting software includes receiving a memory transaction associated with the memory device, the memory transaction including at least a realm identifier (RID) and a realm indicator bit, obtaining the EEK associated with the RID when the RID indicates the realm and when the realm indicator bit is enabled, decrypting an instruction and/or data retrieved from the realm based on the EEK when the memory transaction is a read transaction, and encrypting second data for storage in the realm based on the EEK when the memory transaction is a write transaction.

公开(公告)号：US09411440B2

公开(公告)日：2016-08-09

申请号：US14533535

申请日：2014-11-05

Applicant: QUALCOMM Incorporated

Inventor： Roberto Avanzi

IPC: G06F3/033 ,  G06F3/0354 ,  G06F3/01

CPC classification number: G06F3/03545 ,  G06F3/017

Abstract: An acoustic tracking system is provided that includes receivers that detect first acoustic signals from a first set of transmitters disposed on a digital pen and second acoustic signals from a second set of transmitters disposed on a base station. The acoustic tracking system also includes a processing component that defines a two-dimensional plane on which the base station lies and determines a three-dimensional position of the digital pen relative to the base station. The processing component projects the three-dimensional position of the digital pen onto the two-dimensional plane and records, based on the projected three-dimensional position, the three-dimensional position of the digital pen relative to the base station, where the recorded three-dimensional position of the digital pen represents an object representative of movement of the digital pen.

Abstract translation: 提供了一种声学跟踪系统，其包括从设置在数字笔上的第一组发射器检测第一声信号的接收机和来自设置在基站上的第二组发射机的第二声信号。 声学跟踪系统还包括一个处理组件，该处理组件定义了基站所在的二维平面，并确定了数字笔相对于基站的三维位置。 处理组件将数字笔的三维位置投影到二维平面上，并且基于投影的三维位置记录数字笔相对于基站的三维位置，其中记录的三维 数字笔的维度位置代表表示数字笔的运动的对象。

公开(公告)号：US20150006905A1

公开(公告)日：2015-01-01

申请号：US13929589

申请日：2013-06-27

Applicant: QUALCOMM Incorporated

Inventor： Roberto Avanzi

IPC: G06F12/14

CPC classification number: H04L9/0618 ,  H04L2209/08 ,  H04L2209/34

Abstract: Disclosed is an apparatus and method for encrypting plaintext data. The method includes: receiving at least one plaintext data input; applying a Nonce through a function to the at least one plaintext data input to create Nonced plaintext data outputs and/or to intermediate values of a portion of an encryption function applied to the at least one plaintext data input to create intermediate Nonced data outputs; and applying the encryption function to at least one of the Nonced plaintext data outputs and/or the intermediate Nonced data outputs to create encrypted output data. The encrypted output data is then transmitted to memory.

Abstract translation: 公开了一种用于加密明文数据的装置和方法。 该方法包括：接收至少一个明文数据输入; 将至少一个明文数据输入应用于所述至少一个明文数据输入，以产生未加密明文数据输出和/或应用于所述至少一个明文数据输入的加密函数的一部分的中间值，以创建中间非数据输出; 以及将所述加密函数应用于所述无源明文数据输出和/或所述中间非数据输出中的至少一个以创建加密的输出数据。 然后将加密的输出数据发送到存储器。

公开(公告)号：US20140223182A1

公开(公告)日：2014-08-07

申请号：US13912045

申请日：2013-06-06

Applicant: QUALCOMM Incorporated

Inventor： Roberto Avanzi ,  Boris Dolgunov

IPC: H04L9/32 ,  H04L9/08

CPC classification number: H04L9/3271 ,  H04L9/0838 ,  H04L9/3273 ,  H04L63/061 ,  H04L63/0869

Abstract: One feature pertains to a content accessing device for securing content. The content accessing device is provisioned with a cryptographic algorithm, and generates a symmetric key also known to a content storage device. The content accessing device sends a first authentication challenge to the content storage device, where the first authentication challenge is based on the cryptographic algorithm and the symmetric key. The content accessing device receives a second authentication challenge from the content storage device in response to sending the first authentication challenge, and determines whether the first authentication challenge is different from the second authentication challenge. If the second authentication challenge is different from the first authentication challenge the content accessing device sends a first response to the content storage device in response to the second authentication challenge.

Abstract translation: 一个特征涉及用于保护内容的内容访问设备。 内容访问设备被配置有加密算法，并且生成内容存储设备也已知的对称密钥。 内容访问设备向内容存储设备发送第一认证挑战，其中第一认证挑战基于密码算法和对称密钥。 内容访问装置响应于发送第一认证挑战从内容存储装置接收第二认证挑战，并且确定第一认证挑战是否与第二认证挑战不同。 如果第二认证挑战与第一认证挑战不同，则内容访问设备响应于第二认证挑战向内容存储设备发送第一响应。

公开(公告)号：US20230409492A1

公开(公告)日：2023-12-21

申请号：US18456683

申请日：2023-08-28

Applicant: QUALCOMM Incorporated

Inventor： Darren Lasko ,  Roberto Avanzi ,  Thomas Philip Speier ,  Harb Abdulhamid ,  Vikramjit Sethi

IPC: G06F12/14 ,  H04L9/14 ,  G06F21/72 ,  H04L9/06

CPC classification number: G06F12/1408 ,  H04L9/14 ,  G06F21/72 ,  H04L9/0643 ,  G06F2212/402

Abstract: A method, apparatus, and system for storing memory encryption realm key IDs is disclosed. A method comprises accessing a memory ownership table with a physical address to determine a realm ID associated with the physical address, accessing a key ID association structure with the realm ID to determine a realm key IS associated with the realm ID, and initiating a memory transaction based on the realm key ID. Once retrieved, the realm key ID may be stored in a translation lookaside buffer.

公开(公告)号：US11789874B2

公开(公告)日：2023-10-17

申请号：US16547527

申请日：2019-08-21

Applicant: QUALCOMM Incorporated

Inventor： Darren Lasko ,  Roberto Avanzi ,  Thomas Philip Speier ,  Harb Abdulhamid ,  Vikramjit Sethi

IPC: G06F12/14 ,  H04L9/14 ,  G06F21/72 ,  H04L9/06

CPC classification number: G06F12/1408 ,  G06F21/72 ,  H04L9/0643 ,  H04L9/14 ,  G06F2212/402

Abstract: A method, apparatus, and system for storing memory encryption realm key IDs is disclosed. A method comprises accessing a memory ownership table with a physical address to determine a realm ID associated with the physical address, accessing a key ID association structure with the realm ID to determine a realm key IS associated with the realm ID, and initiating a memory transaction based on the realm key ID. Once retrieved, the realm key ID may be stored in a translation lookaside buffer.

公开(公告)号：US20190196984A1

公开(公告)日：2019-06-27

申请号：US15855184

申请日：2017-12-27

Applicant: QUALCOMM Incorporated

Inventor： Darren LASKO ,  Roberto Avanzi

IPC: G06F12/14

CPC classification number: G06F12/1433 ,  G06F12/1441 ,  G06F21/64 ,  G06F21/79 ,  G06F2212/1052 ,  G11C7/24 ,  G11C29/52

Abstract: In certain aspects of the disclosure, an apparatus, comprises a first memory having a plurality of bits. Each bit of the plurality of bits of the first memory is associated with a region of a second memory, and each bit indicates whether the associated region of the second memory is to be integrity-protected. The first memory further stores a first minimum set of data necessary for integrity protection (MSD) of an associated first integrity protection tree when a first bit of the plurality of bits is set to a value indicating that the first associated region of the second memory is to be integrity-protected. Regions of the second memory that are integrity-protected may be non-contiguous, and may be adjusted during run-time.

公开(公告)号：US09531531B2

公开(公告)日：2016-12-27

申请号：US14705686

申请日：2015-05-06

Applicant: QUALCOMM Incorporated

Inventor： Roberto Avanzi ,  David Jacobson

IPC: H04L9/00 ,  H04L9/06 ,  G06F7/48

CPC classification number: H04L9/0693 ,  G06F7/4812 ,  H04L9/003 ,  H04L9/004 ,  H04L9/3066

Abstract: One feature pertains to an electronic device that includes a memory circuit and a processing circuit. The processing circuit computes a scalar multiplication output Z where Z=k·P by receiving an input multiplier k and a base P, and adds a modifier s to the input multiplier k to generate k′. The processing circuit also computes an intermediate scalar multiplication output Z′ where Z′=k′·P by using a digit expansion of k′ that includes a sequence of digits ki belonging to a digit set D. Additionally, the processing circuit subtracts s·P from Z′ to obtain the scalar multiplication output Z if k′ is odd or subtracts (s+1)·P from Z′ to obtain the scalar multiplication output Z if k′ is even. The scalar multiplier output Z may be used in a cryptographic security algorithm to secure data.

Abstract translation: 一个特征涉及包括存储器电路和处理电路的电子设备。 处理电路通过接收输入乘法器k和基数P来计算标量乘法输出Z，其中Z = k·P，并将修正符s加到输入乘法器k以产生k'。 处理电路还通过使用包括属于数字集D的数位ki的序列的k'的数字展开来计算Z'= k'·P的中间标量乘法输出Z'。另外，处理电路减去s· P从Z'获得标量乘法输出Z，如果k'为奇数，则从Z'中减去（s + 1）·P，以获得如果k'为偶数的标量乘法输出Z。 标量乘法器输出Z可用于加密安全算法中以保护数据。

公开(公告)号：US20160349864A1

公开(公告)日：2016-12-01

申请号：US15231231

申请日：2016-08-08

Applicant: QUALCOMM Incorporated

Inventor： Roberto Avanzi

IPC: G06F3/0354 ,  G06F3/01

CPC classification number: G06F3/03545 ,  G06F3/017

Abstract: An acoustic tracking system is provided that includes receivers that detect first acoustic signals from a first set of transmitters disposed on a digital pen and second acoustic signals from a second set of transmitters disposed on a base station. The acoustic tracking system also includes a processing component that defines a two-dimensional plane on which the base station lies and determines a three-dimensional position of the digital pen relative to the base station. The processing component projects the three-dimensional position of the digital pen onto the two-dimensional plane and records, based on the projected three-dimensional position, the three-dimensional position of the digital pen relative to the base station, where the recorded three-dimensional position of the digital pen represents an object representative of movement of the digital pen.

Abstract translation: 提供了一种声学跟踪系统，其包括从设置在数字笔上的第一组发射器检测第一声信号的接收机和来自设置在基站上的第二组发射机的第二声信号。 声学跟踪系统还包括一个处理组件，该处理组件定义了基站所在的二维平面，并确定数字笔相对于基站的三维位置。 处理组件将数字笔的三维位置投影到二维平面上，并且基于投影的三维位置记录数字笔相对于基站的三维位置，其中记录的三维 数字笔的维度位置代表表示数字笔的运动的对象。