-
公开(公告)号:US09792089B2
公开(公告)日:2017-10-17
申请号:US14483111
申请日:2014-09-10
申请人: Verayo, Inc.
CPC分类号: G06F7/588 , H04L9/0662 , H04L9/0866
摘要: A random number generator uses a looped circuit that produces pulses dependent on manufacturing variations and noise, and fed into a counting circuit. In certain embodiments, the technology can be merged with a Physical Unclonable Function (PUF) such that a single circuit provides both 1) bits that are unique to each chip that remain fairly similar each time they are queried on the same chip; as well as 2) bits that are random, i.e., different each time the randomness is queried, even on the same device.
-
公开(公告)号:US20160127346A1
公开(公告)日:2016-05-05
申请号:US14294142
申请日:2014-06-02
申请人: Verayo, Inc.
发明人: William Henry BARES , David M'RAIHI , Eric DUPRAT
IPC分类号: H04L29/06
CPC分类号: H04L63/0853 , H04L2463/082
摘要: The disclosed invention is a system and method that allows for authentication of a user to a network using a token. The user can use movements or gesture that are recorded by an accelerometer and the token interacts with a device and authenticates the user to the system. The token may be part of the device or stand alone. The various aspects of the present invention capture a novel design for an authentication token that authenticated the token and the user of the token.
摘要翻译: 所公开的发明是一种系统和方法,其允许使用令牌向网络认证用户。 用户可以使用由加速度计记录的运动或手势,并且令牌与设备进行交互并向系统认证用户。 令牌可以是设备的一部分或独立的。 本发明的各个方面捕获认证令牌和令牌的用户的认证令牌的新颖设计。
-
公开(公告)号:US08667283B2
公开(公告)日:2014-03-04
申请号:US13103451
申请日:2011-05-09
申请人: William Henry Bares , Srinivas Devadas , Vivek Khandelwal , Zdenek Paral , Richard Sowell , Tonghang Zhou
发明人: William Henry Bares , Srinivas Devadas , Vivek Khandelwal , Zdenek Paral , Richard Sowell , Tonghang Zhou
IPC分类号: H04L29/06
CPC分类号: H04L9/3278 , H04L9/3247 , H04L2209/805
摘要: A message is signed using a PUF without having to exactly regenerate a cryptographic key. Another party that shares information about the PUF is able to verify the signature to a high degree of accuracy (i.e., high probability of rejection of a forged signature and a low probably of false rejection of a true signature). In some examples, the information shared by a recipient of a message signature includes a parametric model of operational characteristics of the PUF used to form the signature.
摘要翻译: 使用PUF签名消息,而不必完全重新生成加密密钥。 共享关于PUF的信息的另一方能够以高精确度验证签名(即,拒绝伪造签名的可能性很高,并且可能是真正签名的错误拒绝)。 在一些示例中,消息签名的接收方共享的信息包括用于形成签名的PUF的操作特征的参数模型。
-
公开(公告)号:US20130298211A1
公开(公告)日:2013-11-07
申请号:US13855704
申请日:2013-04-02
申请人: David M'Raihi , Srinivas Devadas , WILLIAM HENRY BARES , Meng-Day Mandel Yu , ZDENEK SIDNEY PARAL
发明人: David M'Raihi , Srinivas Devadas , WILLIAM HENRY BARES , Meng-Day Mandel Yu , ZDENEK SIDNEY PARAL
IPC分类号: H04L29/06
CPC分类号: H04L63/08 , H04L9/3278
摘要: The disclosed invention is a system and method that allows for authentication of a user to a network using a token. The token interacts with a device and authenticates the user to the system. The token may be part of the device or stand alone. The various aspects of the present invention capture a novel design for an authentication token that eliminates the need for user interaction with the token.
摘要翻译: 所公开的发明是一种系统和方法,其允许使用令牌向网络认证用户。 令牌与设备进行交互,并将用户认证给系统。 令牌可以是设备的一部分或独立的。 本发明的各个方面捕获了用于认证令牌的新颖设计,其消除了与令牌的用户交互的需要。
-
公开(公告)号:US20100127822A1
公开(公告)日:2010-05-27
申请号:US12623045
申请日:2009-11-20
申请人: Srinivas Devadas
发明人: Srinivas Devadas
CPC分类号: H04L9/3278 , H04L2209/805
摘要: An integrated circuit includes a sequence generator configured to generate a series of challenges; a hidden output generator configured to generate a series of hidden outputs, each hidden output a function of a corresponding challenge in the series of challenges; and bit reduction circuitry configured to generate a response sequence including a plurality of response parts, each response part a function of a corresponding plurality of hidden outputs.
摘要翻译: 集成电路包括被配置为产生一系列挑战的序列发生器; 隐藏的输出发生器被配置为产生一系列隐藏的输出,每个隐藏的输出都是一系列挑战中的相应挑战的功能; 以及比特缩减电路,被配置为生成包括多个响应部分的响应序列,每个响应部分是对应的多个隐藏输出的功能。
-
公开(公告)号:US08782396B2
公开(公告)日:2014-07-15
申请号:US12234095
申请日:2008-09-19
IPC分类号: H04L9/32
CPC分类号: H04L9/3271 , G06F21/31 , G06F2221/2129 , H04L9/3278 , H04L2209/12 , H04L2209/805 , H04W4/80 , H04W12/06
摘要: Physical Unclonable Functions (PUFs) for authentication can be implemented in a variety of electronic devices including FPGAs, RFIDs, and ASICs. In some implementations, challenge-response pairs corresponding to individual PUFs can be enrolled and used to determine authentication data, which may be managed in a database. Later when a target object with a PUF is intended to be authenticated a set (or subset) of challenges are applied to each PUF device to authenticate it and thus distinguish it from others. In some examples, authentication is achieved without requiring complex cryptography circuitry implemented on the device. Furthermore, an authentication station does not necessarily have to be in communication with an authority holding the authentication data when a particular device is to be authenticated.
摘要翻译: 用于认证的物理不可克隆功能(PUF)可以在包括FPGA,RFID和ASIC的各种电子设备中实现。 在一些实现中,对应于各个PUF的挑战 - 响应对可以被注册并用于确定可以在数据库中管理的认证数据。 之后当具有PUF的目标对象旨在被认证时,将对每个PUF设备应用一组(或子集)的挑战来对其进行认证,从而将其与其他人区分开。 在一些示例中,实现认证,而不需要在设备上实现复杂的加密电路。 此外,当特定设备要被认证时,认证站不一定必须与保存认证数据的机构进行通信。
-
公开(公告)号:US08630410B2
公开(公告)日:2014-01-14
申请号:US11626639
申请日:2007-01-24
IPC分类号: G06F21/00
CPC分类号: G06F21/31 , G06F21/73 , G06F2221/2129 , H04L9/0866 , H04L2209/12
摘要: Subsets of multiple signal generator circuits embodied in a device are selected, and then a volatile value for the device is generated from the selected subsets. The volatile value may be used for authentication of the device and/or for cryptographic procedures performed on the device. The signal generator circuits may each comprise an oscillator circuit, and the selection of the subsets may be according to a comparison of the outputs of the subsets of circuits, for example, according to a comparison of output oscillation frequencies.
摘要翻译: 选择体现在设备中的多个信号发生器电路的子集,然后从所选择的子集产生装置的易失性值。 易失性值可以用于设备的认证和/或用于在设备上执行的密码过程。 信号发生器电路可以各自包括振荡器电路,并且子集的选择可以根据电路子集的输出的比较,例如根据输出振荡频率的比较。
-
公开(公告)号:US20110033041A1
公开(公告)日:2011-02-10
申请号:US12850693
申请日:2010-08-05
申请人: Meng-Day Yu , Srinivas Devadas
发明人: Meng-Day Yu , Srinivas Devadas
CPC分类号: G06F11/10 , H04L9/0662 , H04L9/3278 , H04L2209/34
摘要: Outputs from at least one pseudo-random source are used to encode hidden value. The hidden value is encoded using index based quantities, for example, based on numerically ordering a sequence of outputs from pseudo-random source(s). In some examples, the numerical ordering of re-generated device-specific quantities is used to re-generate the hidden value, without necessarily requiring additional error correction mechanisms. Information leak may be reduced by constructing system whose “syndrome” helper bits are random, as measured, for example, by NIST's Statistical Tests for Randomness In some examples, index based coding provides coding gain that exponentially reduces total error correction code complexity, resulting in efficiently realizable PRS-based key generation systems. In some examples, index based coding allows noisy PRS to be robust across conditions where conventional error correction code cannot error correct.
摘要翻译: 来自至少一个伪随机源的输出用于对隐藏值进行编码。 隐藏值使用基于索引的量来编码,例如,基于从伪随机源的输出序列的数值排序。 在一些示例中,重新生成的设备特定量的数值排序用于重新生成隐藏值,而不需要额外的纠错机制。 信息泄漏可以通过构建其“综合征”辅助位是随机的系统来减少,例如,通过NIST的随机统计测试来测量。在一些示例中,基于索引的编码提供指数地降低总纠错码复杂度的编码增益,导致 有效实现的基于PRS的密钥生成系统。 在一些示例中,基于索引的编码允许有噪声的PRS在常规纠错码不能正确错误的情况下是稳健的。
-
公开(公告)号:US07839278B2
公开(公告)日:2010-11-23
申请号:US12485479
申请日:2009-06-16
申请人: Srinivas Devadas , Thomas Ziola
发明人: Srinivas Devadas , Thomas Ziola
IPC分类号: G08B1/08
CPC分类号: H04L9/3278 , G06F21/31 , G06F21/445 , G06F21/602 , G06F21/76 , G06F2221/2129 , G11C7/24 , G11C16/20 , G11C16/22 , G11C2029/4402 , G11C2029/5002 , H04L9/0838 , H04L9/0877 , H04L9/304 , H04L2209/56 , H04L2209/603 , H04L2209/805
摘要: A key is determined from a volatile response using circuitry on the device. The volatile response depend on process variation in fabrication of the device. Error control data that depends on the first volatile response can be computed, stored externally to the device, and then used to generate the key using a volatile response using the circuit. Applications of volatile keys include authentication and rights management for content and software.
摘要翻译: 使用设备上的电路从易失性响应中确定密钥。 挥发性响应取决于器件制造过程的变化。 可以计算取决于第一易失性响应的错误控制数据,存储在设备的外部,然后用于使用电路的易失性响应生成密钥。 易失性密钥的应用包括对内容和软件的认证和权限管理。
-
公开(公告)号:US07702927B2
公开(公告)日:2010-04-20
申请号:US11272995
申请日:2005-11-14
申请人: Srinivas Devadas , Thomas J. Ziola
发明人: Srinivas Devadas , Thomas J. Ziola
IPC分类号: G06F12/14
CPC分类号: H04L9/3278 , G06F21/31 , G06F21/445 , G06F21/602 , G06F21/76 , G06F2221/2129 , G11C7/24 , G11C16/20 , G11C16/22 , G11C2029/4402 , G11C2029/5002 , H04L9/0838 , H04L9/0877 , H04L9/304 , H04L2209/56 , H04L2209/603 , H04L2209/805
摘要: A field configurable device, such as an FPGA, supports secure field configuration without using non-volatile storage for cryptographic keys on the device and without requiring a continuous or ongoing power source to maintain a volatile storage on the device. The approach can be used to secure the configuration data such that it can in general be used on a single or a selected set of devices and/or encryption of the configuration data so that the encrypted configuration data can be exposed without compromising information encoded in the configuration data.
摘要翻译: 诸如FPGA的现场可配置设备支持安全的现场配置,而不需要在设备上使用非易失性存储器用于加密密钥,而不需要连续或正在进行的电源来维护设备上的易失性存储。 该方法可以用于保护配置数据,使得其通常可以在单个或所选择的设备集合上使用和/或配置数据的加密,使得加密的配置数据可以在不损害在 配置数据。
-
-
-
-
-
-
-
-
-
搜索结果
25 条记录 (耗时 0.018 秒)
