Patent · US Active

Method and device for secure communications over a network using a hardware security engine

US9887838B2 · kind B2 · utility

3Cited by

28References

24Claims

0Family size

Assignee

Intel Corporation · US

Inventors

Hormuzd M. Khosravi · Hillsboro, US
Edward C. Epp · Portland, US
Farhana Kabir · Camas, US

Key dates

Filing date	Dec 15, 2011
Grant date	Feb 6, 2018
Priority date	—
Expiry date	Dec 15, 2031

Classification

Technology area (CPC H)Electricity
CPC primaryH04L63/061
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

A method, device, and system for establishing a secure communication session with a server includes initiating a request for a secure communication session, such as a Secure Sockets Layer (SLL) communication session with a server using a nonce value generated in a security engine of a system-on-a-chip (SOC) of a client device. Additionally, a cryptographic key exchange is performed between the client and the server to generate a symmetric session key, which is stored in a secure storage of the security engine. The cryptographic key exchange may be, for example, a Rivest-Shamir-Adleman (RSA) key exchange or a Diffie-Hellman key exchange. Private keys and other data generated during the cryptographic key exchange may be generated and/or stored in the security engine.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.