公开(公告)号：US20180198604A1

公开(公告)日：2018-07-12

申请号：US15819294

申请日：2017-11-21

申请人： Trustonic Limited

发明人： Richard HAYTON ,  Chris LORESKAR ,  Donald Kenneth FELTON

IPC分类号： H04L9/08 ,  G06F15/02 ,  H04L9/32 ,  H04W12/08

摘要： A method for validating an electronic device 2 comprises receiving attestation information provided by the electronic device 2 attesting that the electronic device 2 has received a plurality of event attestations, each event attestation providing a cryptographically authenticated attestation to the occurrence of a respective event during a lifecycle of the electronic device, and determining a validation result indicating whether the attestation information is valid. By providing separate cryptographically authenticated attestations for respective events in the lifecycle of the device, this can simplify manufacturing of the devices in a multistage manufacture process compared to an approach using a single device-specific attestation attesting that the entire process is trusted.

公开(公告)号：US20170116438A1

公开(公告)日：2017-04-27

申请号：US15259315

申请日：2016-09-08

申请人： TRUSTONIC LIMITED

发明人： Jan-Erik Gustav EKBERG ,  Donald Kenneth FELTON

IPC分类号： G06F21/71 ,  G06F21/14 ,  G06F21/53

CPC分类号： G06F21/71 ,  G06F21/14 ,  G06F21/53 ,  G06F21/606 ,  G06F2221/033 ,  G06F2221/0704 ,  G06F2221/2149 ,  H04L63/0435 ,  H04L63/0876

摘要： A device has an installed cryptographic program that performs cryptographic operations in dependence upon a received diversification value. The diversification value is generated by an obfuscated personalisation program installed in the device and is dependent upon a personalisation input to the personalisation program. The personalisation input is characteristic of the particular execution environment provided by the device, and may take the form of a proper subset selected from among variables characterising the device, such as hardware properties, static software configuration and results from processing dynamic variables to check that they have expected properties. The diversification value generated by the personalisation program is returned (in encrypted form) to a server which also has a copy of the cryptographic program. Thus, the server and the device may communicate using a secure channel provided by the combination of the cryptographic program and the diversification value. The personalisation program installed may be obfuscated by code flattening, reordering and variable fragmentation.