Patent · US Active

Method and apparatus for protecting encryption keys in a logically partitioned computer system environment

US8477946B2 · kind B2 · utility

5Cited by

9References

17Claims

0Family size

Assignee

International Business Machines Corporation · US

Inventors

Mark Robert Funk · Mantorville, US
Jeffrey Earl Remfert · Rochester, US

Key dates

Filing date	Feb 27, 2008
Grant date	Jul 2, 2013
Priority date	—
Expiry date	Jun 4, 2031

Classification

Technology area (CPC G)Physics
CPC primaryG06F12/1408
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

In a logically partitioned computer system, a partition manager maintains and controls master encryption keys for the different partitions. Preferably, processes executing within a partition have no direct access to real memory, addresses in the partition's memory space being mapped to real memory by the partition manager. The partition manager maintains master keys at real memory addresses inaccessible to processes executing in the partitions. Preferably, a special hardware register stores a pointer to the current key, and is read only by a hardware crypto-engine to encrypt/decrypt data. The crypto-engine returns the encrypted/decrypted data, but does not output the key itself or its location.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.