Processing

Please wait...

Settings

Settings

Goto Application

1. WO2020140259 - METHOD AND SYSTEM FOR KEY DISTRIBUTION AND EXCHANGE FOR DATA PROCESSING ACCELERATORS

Publication Number WO/2020/140259
Publication Date 09.07.2020
International Application No. PCT/CN2019/070399
International Filing Date 04.01.2019
IPC
H04L 9/32 2006.01
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
9Arrangements for secret or secure communication
32including means for verifying the identity or authority of a user of the system
CPC
H04L 9/0662
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
9Cryptographic mechanisms or cryptographic; arrangements for secret or secure communication
06the encryption apparatus using shift registers or memories for block-wise ; or stream; coding, e.g. DES systems ; or RC4; Hash functions; Pseudorandom sequence generators
065Encryption by serially and continuously modifying data stream elements, e.g. stream cipher systems, RC4, SEAL or A5/3
0656Pseudorandom key sequence combined element-for-element with data sequence, e.g. one-time-pad [OTP] or Vernam's cipher
0662with particular pseudorandom sequence generator
H04L 9/0897
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
9Cryptographic mechanisms or cryptographic; arrangements for secret or secure communication
08Key distribution ; or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
0894Escrow, recovery or storing of secret information, e.g. secret key escrow or cryptographic key storage
0897involving additional devices, e.g. trusted platform module [TPM], smartcard or USB
H04L 9/12
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
9Cryptographic mechanisms or cryptographic; arrangements for secret or secure communication
12Transmitting and receiving encryption devices synchronised or initially set up in a particular manner
H04L 9/3247
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
9Cryptographic mechanisms or cryptographic; arrangements for secret or secure communication
32including means for verifying the identity or authority of a user of the system ; or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
3247involving digital signatures
H04L 9/3265
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
9Cryptographic mechanisms or cryptographic; arrangements for secret or secure communication
32including means for verifying the identity or authority of a user of the system ; or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
3263involving certificates, e.g. public key certificate [PKC] or attribute certificate [AC]; Public key infrastructure [PKI] arrangements
3265using certificate chains, trees or paths; Hierarchical trust model
H04L 9/3297
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
9Cryptographic mechanisms or cryptographic; arrangements for secret or secure communication
32including means for verifying the identity or authority of a user of the system ; or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
3297involving time stamps, e.g. generation of time stamps
Applicants
  • BAIDU.COM TIMES TECHNOLOGY (BEIJING) CO., LTD. [CN]/[CN]
  • BAIDU USA LLC [US]/[US]
Inventors
  • CHENG, Yueqiang
  • LIU, Yong
  • WEI, Tao
  • OUYANG, Jian
Agents
  • INSIGHT INTELLECTUAL PROPERTY LIMITED
Priority Data
Publication Language English (EN)
Filing Language English (EN)
Designated States
Title
(EN) METHOD AND SYSTEM FOR KEY DISTRIBUTION AND EXCHANGE FOR DATA PROCESSING ACCELERATORS
(FR) PROCÉDÉ ET SYSTÈME DE DISTRIBUTION ET D'ÉCHANGE DE CLÉS POUR ACCÉLÉRATEURS DE TRAITEMENT DE DONNÉES
Abstract
(EN)
According to one embodiment, a system receives, at a host system from a data processing (DP) accelerator, an accelerator identifier (ID) that uniquely identifies the DP accelerator), wherein the host system is coupled to the DP accelerator over a bus. The system transmits the accelerator ID to a predetermined trusted server over a network. The system receives a certificate from the predetermined trusted server over the network, the certificate certifying the DP accelerator. The system extracts a public root key (PK_RK) from the certificate for verification, the PK_RK corresponding to a private root key (SK_RK) associated with the DP accelerator. The system establishes a secure channel with the DP accelerator using the PK_RK based on the verification to exchange data securely between the host system and the DP accelerator.
(FR)
Selon un mode de réalisation, un système exécute les opérations consistant à : recevoir, au niveau d'un système hôte et en provenance d'un accélérateur de traitement de données (DP), un identifiant (ID) de l'accélérateur qui identifie l'accélérateur de DP de manière unique, le système hôte étant couplé à l'accélérateur de DP sur un bus ; transmettre l'ID de l'accélérateur à un serveur de confiance prédéterminé sur un réseau ; recevoir un certificat provenant du serveur de confiance prédéterminé sur le réseau, le certificat certifiant l'accélérateur de DP ; extraire une clé racine publique (PK_RK) du certificat à des fins de vérification, PK_RK correspondant à une clé racine privée (SK_RK) associée à l'accélérateur de DP ; et établir un canal sécurisé avec l'accélérateur de DP en utilisant PK_RK sur la base de la vérification de façon à échanger des données de manière sécurisée entre le système hôte et l'accélérateur de DP.
Also published as
Latest bibliographic data on file with the International Bureau