公开(公告)号：US20250045420A1

公开(公告)日：2025-02-06

申请号：US18362122

申请日：2023-07-31

Applicant: QUALCOMM Incorporated

Inventor： Yashavantha RAO ,  Debasish MANDAL ,  Manohar KALLUTLA

IPC: G06F21/60 ,  G06F21/72 ,  G06F21/79

Abstract: Methods and apparatuses directed to providing multi-key support within die architectures, such as System-on-a-Chips. In some examples, a die package includes key activation fuses, key revocation fuses, and key fuses for multiple keys. The die package also includes a processor electrically coupled to the key activation fuses, the key revocation fuses, and the plurality of key fuses. Further, the processor can generate a first key value and write the first key value to the key fuses to generate a first key. The processor can also write to the key activation fuses to activate the first key. The processor can further provision the first key to a first memory device. When the first memory device is replaced with a second memory device, the processor can write to the key revocation fuses to revoke the first key, and can provision a second key to the second memory device.

公开(公告)号：US20240202340A1

公开(公告)日：2024-06-20

申请号：US18082889

申请日：2022-12-16

Applicant: QUALCOMM Incorporated

Inventor： Yashavantha RAO ,  Tanya MAHAJAN ,  Benish BABU ,  Prashanth MAYYA

IPC: G06F21/57

CPC classification number: G06F21/575 ,  G06F21/577

Abstract: Systems and techniques are described herein for image authentication for secure boot. For example, a process the image authentication can include: receiving, a request to load an image during a secure boot process; performing, at the secure entity, a secure boot configuration action set in response to receiving the request; requesting the image from a storage device; transmitting the image to a cryptographic hardware component; obtaining, at the cryptographic hardware component, a digest corresponding to at least a portion of the image; storing the digest in the secured register of the cryptographic hardware component; storing the image in a secured memory device portion; obtaining, at the secure entity, a previously calculated digest corresponding to the image from the secured memory device portion; obtaining, at the secure entity, the digest from the secured register; and performing a comparison to determine whether the digest and the previously calculated digest match.