Secure boot with resistance to differential power analysis and other external monitoring attacks
US9569623B2 · kind B2 · utility
Assignee
Inventors
Key dates
| Filing date | Feb 9, 2015 |
| Grant date | Feb 14, 2017 |
| Priority date | — |
| Expiry date | Apr 18, 2035 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04L2463/061
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
A computing device includes a secure storage hardware to store a secret value and processing hardware comprising at least one of a cache or a memory. During a secure boot process the processing hardware loads untrusted data into at least one of the cache or the memory of the processing hardware, the untrusted data comprising an encrypted data segment and a validator, retrieves the secret value from the secure storage hardware, derives an initial key based at least in part on an identifier associated with the encrypted data segment and the secret value, verifies, using the validator, whether the encrypted data segment has been modified, and decrypts the encrypted data segment using a first decryption key derived from the initial key to produce a decrypted data segment responsive to verifying that the encrypted data segment has not been modified.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.