Method and apparatus for secure processing of cryptographic keys

Assignee

• Phoenix Technologies Ltd. · US

Inventors

• Son Trung Vu · Tecate Mission Road, US
• Quang Phan · Tustin, US

Key dates

Classification

• Technology area (CPC G)Physics
• CPC primaryG06F2211/1097
• WIPO fieldComputer technology
• WIPO sectorElectrical engineering

Abstract

A method and apparatus for secure processing of cryptographic keys, wherein a cryptographic key stored on a token is processed in a secure processor mode using a secure memory. A main system processor is initialized into a secure processing mode, which cannot be interrupted by other interrupts, during a power-on sequence. A user enters a Personal Identification Number (PIN) to unlock the cryptographic key stored on the token. The cryptographic key and associated cryptographic program are then loaded into the secure memory. The secure memory is locked to prevent access to the stored data from any other processes. The user is then prompted to remove the token and the processor exits the secure mode and the system continues normal boot-up operations. When an application requests security processing, the cryptographic program is executed by the processor in the secure mode such that no other programs or processes can observe the execution of the program. Two-factor authentication is thus obtained without the need for any additional hardware.