Generating a key hieararchy for use in an isolated execution environment

Assignee

• Intel Corporation · US

Inventors

• Carl M. Ellison · Portland, US
• Roger Golliver · Beaverton, US
• Howard C. Herbert · Phoenix, US
• Derrick C. Lin · San Mateo, US
• Francis X. McKeen · Portland, US
• Gilbert Neiger · Hillsboro, US
• Ken Reneris · Wilbraham, US
• James A. Sutton · Portland, US
• Shreekant S. Thakkar · Portland, US
• Millind Mittal · Palo Alto, US

Key dates

Classification

• Technology area (CPC G)Physics
• CPC primaryG06F2221/2105
• WIPO fieldComputer technology
• WIPO sectorElectrical engineering

Abstract

The present invention is a method, apparatus, and system to generate a key hierarchy for use in an isolated execution environment of a protected platform. In order to bind secrets to particular code operating in isolated execution, a key hierarchy comprising a series of symmetric keys for a standard symmetric cipher is utilized. The protected platform includes a processor that is configured in one of a normal execution mode and an isolated execution mode. A key storage stores an initial key that is unique for the platform. A cipher key creator located in the protected platform creates the hierarchy of keys based upon the initial key. The cipher key creator creates a series of symmetric cipher keys to protect the secrets of loaded software code.