Processing

Please wait...

PATENTSCOPE will be unavailable a few hours for maintenance reason on Tuesday 27.07.2021 at 12:00 PM CEST
Settings

Settings

Goto Application

1. WO2020140265 - DATA PROCESSING ACCELERATOR HAVING SECURITY UNIT TO PROVIDE ROOT TRUST SERVICES

Publication Number WO/2020/140265
Publication Date 09.07.2020
International Application No. PCT/CN2019/070412
International Filing Date 04.01.2019
IPC
H04L 9/32 2006.1
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
9Arrangements for secret or secure communication
32including means for verifying the identity or authority of a user of the system
H04L 9/08 2006.1
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
9Arrangements for secret or secure communication
08Key distribution
CPC
H04L 9/003
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
9Cryptographic mechanisms or cryptographic; arrangements for secret or secure communication
002Countermeasures against attacks on cryptographic mechanisms
003for power analysis, e.g. differential power analysis [DPA] or simple power analysis [SPA]
H04L 9/0662
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
9Cryptographic mechanisms or cryptographic; arrangements for secret or secure communication
06the encryption apparatus using shift registers or memories for block-wise ; or stream; coding, e.g. DES systems ; or RC4; Hash functions; Pseudorandom sequence generators
065Encryption by serially and continuously modifying data stream elements, e.g. stream cipher systems, RC4, SEAL or A5/3
0656Pseudorandom key sequence combined element-for-element with data sequence, e.g. one-time-pad [OTP] or Vernam's cipher
0662with particular pseudorandom sequence generator
H04L 9/0897
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
9Cryptographic mechanisms or cryptographic; arrangements for secret or secure communication
08Key distribution ; or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
0894Escrow, recovery or storing of secret information, e.g. secret key escrow or cryptographic key storage
0897involving additional devices, e.g. trusted platform module [TPM], smartcard or USB
H04L 9/12
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
9Cryptographic mechanisms or cryptographic; arrangements for secret or secure communication
12Transmitting and receiving encryption devices synchronised or initially set up in a particular manner
H04L 9/3236
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
9Cryptographic mechanisms or cryptographic; arrangements for secret or secure communication
32including means for verifying the identity or authority of a user of the system ; or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
3236using cryptographic hash functions
H04L 9/3247
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
9Cryptographic mechanisms or cryptographic; arrangements for secret or secure communication
32including means for verifying the identity or authority of a user of the system ; or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
3247involving digital signatures
Applicants
  • BAIDU.COM TIMES TECHNOLOGY (BEIJING) CO., LTD. [CN]/[CN]
  • BAIDU USA LLC [US]/[US]
Inventors
  • LIU, Yong
  • CHENG, Yueqiang
  • OUYANG, Jian
  • WEI, Tao
Agents
  • INSIGHT INTELLECTUAL PROPERTY LIMITED
Priority Data
Publication Language English (EN)
Filing Language English (EN)
Designated States
Title
(EN) DATA PROCESSING ACCELERATOR HAVING SECURITY UNIT TO PROVIDE ROOT TRUST SERVICES
(FR) ACCÉLÉRATEUR DE TRAITEMENT DE DONNÉES DOTÉ D'UNE UNITÉ DE SÉCURITÉ POUR FOURNIR DES SERVICES DE CONFIANCE RACINE
Abstract
(EN)
A DP accelerator includes one or more execution units (EUs) configured to perform data processing operations in response to an instruction received from a host system coupled over a bus. The DP accelerator includes a time unit (TU) coupled to the security unit to provide timestamp services. The DP accelerator includes a security unit (SU) configured to establish and maintain a secure channel with the host system to exchange commands and data associated with the data processing operations, where the security unit includes a secure storage area to store a private root key associated with the DP accelerator, where the private root key is utilized for authentication. The SU includes a random number generator to generate a random number, and a cryptographic engine to perform cryptographic operations on data exchanged with the host system over the bus using a session key derived based on the random number.
(FR)
L'invention concerne un accélérateur DP comprenant une ou plusieurs unités d'exécution (EU) configurées pour effectuer des opérations de traitement de données en réponse à une instruction reçue d'un système hôte couplé via un bus. L'accélérateur DP comprend une unité de temps (TU) couplée à l'unité de sécurité pour fournir des services d'horodatage. L'accélérateur DP comprend une unité de sécurité (SU) configurée pour établir et maintenir un canal sécurisé avec le système hôte afin d'échanger des commandes et des données associées aux opérations de traitement de données, l'unité de sécurité comprenant une zone de stockage sécurisée pour stocker une clé racine privée associée à l'accélérateur DP, la clé racine privée étant utilisée pour une authentification. La SU comprend un générateur de nombre aléatoire pour générer un nombre aléatoire, et un moteur cryptographique pour effectuer des opérations cryptographiques sur des données échangées avec le système hôte via le bus à l'aide d'une clé de session déduite sur la base du nombre aléatoire.
Also published as
Latest bibliographic data on file with the International Bureau