WO2008060733A3 - Bi-processor architecture for secure systems - Google Patents

Bi-processor architecture for secure systems Download PDF

Info

Publication number
WO2008060733A3
WO2008060733A3 PCT/US2007/075933 US2007075933W WO2008060733A3 WO 2008060733 A3 WO2008060733 A3 WO 2008060733A3 US 2007075933 W US2007075933 W US 2007075933W WO 2008060733 A3 WO2008060733 A3 WO 2008060733A3
Authority
WO
WIPO (PCT)
Prior art keywords
cpu
processor architecture
secure systems
sensitive information
systems
Prior art date
Application number
PCT/US2007/075933
Other languages
French (fr)
Other versions
WO2008060733A2 (en
Inventor
Majid Kaabouch
Cocquen Eric Le
Original Assignee
Atmel Corp
Majid Kaabouch
Cocquen Eric Le
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Atmel Corp, Majid Kaabouch, Cocquen Eric Le filed Critical Atmel Corp
Priority to CN2007800305614A priority Critical patent/CN101506815B/en
Priority to EP07868330.7A priority patent/EP2052344B1/en
Priority to KR1020097005441A priority patent/KR101460811B1/en
Publication of WO2008060733A2 publication Critical patent/WO2008060733A2/en
Publication of WO2008060733A3 publication Critical patent/WO2008060733A3/en

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/50Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
    • G06F21/55Detecting local intrusion or implementing counter-measures
    • G06F21/556Detecting local intrusion or implementing counter-measures involving covert channels, i.e. data leakage between processes
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F13/00Interconnection of, or transfer of information or other signals between, memories, input/output devices or central processing units
    • G06F13/10Program control for peripheral devices
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F15/00Digital computers in general; Data processing equipment in general
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/70Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer
    • G06F21/71Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure computing or processing of information
    • G06F21/74Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure computing or processing of information operating in dual or compartmented mode, i.e. at least one secure mode
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/70Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer
    • G06F21/71Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure computing or processing of information
    • G06F21/77Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure computing or processing of information in smart cards
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/14Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols using a plurality of keys or algorithms

Abstract

Systems, methods and program products for a first central processing unit (CPU) configured to perform tasks that do not require manipulation of sensitive information and a second CPU that is configured to perform tasks that manipulate the sensitive information on behalf of the first CPU. The first CPU and the second CPU can communicate through a secure interface. The first CPU cannot access the sensitive information within the second CPU.
PCT/US2007/075933 2006-08-17 2007-08-14 Bi-processor architecture for secure systems WO2008060733A2 (en)

Priority Applications (3)

Application Number Priority Date Filing Date Title
CN2007800305614A CN101506815B (en) 2006-08-17 2007-08-14 Bi-processor architecture for secure systems
EP07868330.7A EP2052344B1 (en) 2006-08-17 2007-08-14 Bi-processor architecture for secure systems
KR1020097005441A KR101460811B1 (en) 2006-08-17 2007-08-14 Bi-processor architecture for secure systems

Applications Claiming Priority (4)

Application Number Priority Date Filing Date Title
US82273506P 2006-08-17 2006-08-17
US60/822,735 2006-08-17
US11/558,367 US7984301B2 (en) 2006-08-17 2006-11-09 Bi-processor architecture for secure systems
US11/558,367 2006-11-09

Publications (2)

Publication Number Publication Date
WO2008060733A2 WO2008060733A2 (en) 2008-05-22
WO2008060733A3 true WO2008060733A3 (en) 2008-08-14

Family

ID=39190070

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/US2007/075933 WO2008060733A2 (en) 2006-08-17 2007-08-14 Bi-processor architecture for secure systems

Country Status (6)

Country Link
US (1) US7984301B2 (en)
EP (1) EP2052344B1 (en)
KR (1) KR101460811B1 (en)
CN (1) CN101506815B (en)
TW (1) TWI431502B (en)
WO (1) WO2008060733A2 (en)

Families Citing this family (35)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7805756B2 (en) 1996-11-29 2010-09-28 Frampton E Ellis Microchips with inner firewalls, faraday cages, and/or photovoltaic cells
US7506020B2 (en) 1996-11-29 2009-03-17 Frampton E Ellis Global network computers
US20050180095A1 (en) 1996-11-29 2005-08-18 Ellis Frampton E. Global network computers
US6167428A (en) 1996-11-29 2000-12-26 Ellis; Frampton E. Personal computer microprocessor firewalls for internet distributed processing
US8225003B2 (en) 1996-11-29 2012-07-17 Ellis Iii Frampton E Computers and microchips with a portion protected by an internal hardware firewall
US6725250B1 (en) * 1996-11-29 2004-04-20 Ellis, Iii Frampton E. Global network computers
US7926097B2 (en) 1996-11-29 2011-04-12 Ellis Iii Frampton E Computer or microchip protected from the internet by internal hardware
US7844253B2 (en) * 2006-10-19 2010-11-30 Future Dial Inc. Method and apparatus for using an electromagnetically shielded enclosure for exchanging secure data
US8125796B2 (en) 2007-11-21 2012-02-28 Frampton E. Ellis Devices with faraday cages and internal flexibility sipes
US8775824B2 (en) * 2008-01-02 2014-07-08 Arm Limited Protecting the security of secure data sent from a central processor for processing by a further processing device
US20100077472A1 (en) * 2008-09-23 2010-03-25 Atmel Corporation Secure Communication Interface for Secure Multi-Processor System
CN102034055B (en) * 2009-10-10 2012-10-17 北京派瑞根科技开发有限公司 High safety information system-based network system platform
CN102034056B (en) * 2009-10-10 2012-12-26 北京派瑞根科技开发有限公司 Network service providing platform based on high safety information system
US20110225645A1 (en) * 2010-01-26 2011-09-15 Ellis Frampton E Basic architecture for secure internet computers
US8171537B2 (en) * 2010-01-29 2012-05-01 Ellis Frampton E Method of securely controlling through one or more separate private networks an internet-connected computer having one or more hardware-based inner firewalls or access barriers
US8429735B2 (en) 2010-01-26 2013-04-23 Frampton E. Ellis Method of using one or more secure private networks to actively configure the hardware of a computer or microchip
US8255986B2 (en) 2010-01-26 2012-08-28 Frampton E. Ellis Methods of securely controlling through one or more separate private networks an internet-connected computer having one or more hardware-based inner firewalls or access barriers
DE102010045328A1 (en) * 2010-09-14 2012-03-15 Giesecke & Devrient Gmbh Portable disk
KR101115358B1 (en) * 2010-10-22 2012-03-06 차보영 The smart working computer including the monitor and the broadcasting system
KR101401382B1 (en) 2011-12-15 2014-06-02 한국전자통신연구원 Method and apparatus for providing side channel analysis in distributed system
US8931082B2 (en) * 2012-08-17 2015-01-06 Broadcom Corporation Multi-security-CPU system
US9928513B2 (en) 2012-09-21 2018-03-27 Visa International Service Association Dynamic object tag and systems and methods relating thereto
TWI490784B (en) * 2013-05-16 2015-07-01 Wistron Neweb Corp Method for functional module management and electronic system
CN103400080B (en) * 2013-07-30 2016-08-24 东莞宇龙通信科技有限公司 A kind of terminal
CN103400081B (en) * 2013-07-30 2016-09-21 东莞宇龙通信科技有限公司 Terminal and the display control method of user interface
CN103401864A (en) * 2013-07-30 2013-11-20 东莞宇龙通信科技有限公司 Terminal and safe login method
CN103390137B (en) * 2013-07-30 2016-09-21 东莞宇龙通信科技有限公司 A kind of terminal
CN103402199A (en) * 2013-07-30 2013-11-20 东莞宇龙通信科技有限公司 Terminal and safe data processing method
CN103390136B (en) * 2013-07-30 2017-03-01 东莞宇龙通信科技有限公司 A kind of terminal
US10121144B2 (en) * 2013-11-04 2018-11-06 Apple Inc. Using biometric authentication for NFC-based payments
EP2930641B1 (en) * 2014-04-07 2019-04-03 Nxp B.V. Method of Programming a Smart Card, Computer Program Product and Programmable Smart Card
US10847242B2 (en) 2014-07-23 2020-11-24 Texas Instruments Incorporated Computing register with non-volatile-logic data storage
US9578054B1 (en) 2015-08-31 2017-02-21 Newman H-R Computer Design, LLC Hacking-resistant computer design
CN106203182A (en) * 2016-06-23 2016-12-07 努比亚技术有限公司 The device and method of storage data
KR102501304B1 (en) * 2018-05-17 2023-02-20 삼성전자주식회사 A control method of secure module connected to a plurality of processors and electronic apparatus implementing the same

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
GB221610A (en) * 1923-07-16 1924-09-18 Frederick Percy Fall Improvements in or relating to gasholders
US6226749B1 (en) * 1995-07-31 2001-05-01 Hewlett-Packard Company Method and apparatus for operating resources under control of a security module or other secure processor
US20030093684A1 (en) * 2001-11-14 2003-05-15 International Business Machines Corporation Device and method with reduced information leakage
US20060075254A1 (en) * 2004-09-27 2006-04-06 Cisco Technology, Inc. (A California Corporation) Smart card functionality from a security co-processor and symmetric key in ROM

Family Cites Families (29)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JPH02109153A (en) 1988-10-18 1990-04-20 Fujitsu Ltd Inter-processor data transmission system
US6233702B1 (en) 1992-12-17 2001-05-15 Compaq Computer Corporation Self-checked, lock step processor pairs
GB2307783B (en) * 1995-09-30 2000-04-05 Motorola Ltd Enhanced security semiconductor device, semiconductor circuit arrangement, and method of production thereof
US5896499A (en) * 1997-02-21 1999-04-20 International Business Machines Corporation Embedded security processor
US5991519A (en) * 1997-10-03 1999-11-23 Atmel Corporation Secure memory having multiple security levels
US6061449A (en) * 1997-10-10 2000-05-09 General Instrument Corporation Secure processor with external memory using block chaining and block re-ordering
US6094724A (en) * 1997-11-26 2000-07-25 Atmel Corporation Secure memory having anti-wire tapping
US7587044B2 (en) * 1998-01-02 2009-09-08 Cryptography Research, Inc. Differential power analysis method and apparatus
US6327661B1 (en) * 1998-06-03 2001-12-04 Cryptography Research, Inc. Using unpredictable information to minimize leakage from smartcards and other cryptosystems
CA2316227C (en) * 1998-01-02 2009-08-11 Cryptography Research, Inc. Leak-resistant cryptographic method and apparatus
US6032248A (en) * 1998-04-29 2000-02-29 Atmel Corporation Microcontroller including a single memory module having a data memory sector and a code memory sector and supporting simultaneous read/write access to both sectors
ATE418099T1 (en) * 1998-06-03 2009-01-15 Cryptography Res Inc SECURED MODULAR POTENTIATION WITH LEAK MINIMIZATION FOR CHIP CARDS AND OTHER CRYPTO SYSTEMS
EP1088295B1 (en) * 1998-06-03 2007-08-15 Cryptography Research Inc. Balanced cryptographic computational method and apparatus for leak minimization in smartcards and other cryptosystems
CA2333095C (en) 1998-06-03 2005-05-10 Cryptography Research, Inc. Improved des and other cryptographic processes with leak minimization for smartcards and other cryptosystems
EP1092297B1 (en) * 1998-07-02 2007-04-25 Cryptography Research Inc. Leak-resistant cryptographic indexed key update
US7233977B2 (en) 1998-12-18 2007-06-19 Emc Corporation Messaging mechanism employing mailboxes for inter processor communications
US7073069B1 (en) * 1999-05-07 2006-07-04 Infineon Technologies Ag Apparatus and method for a programmable security processor
US6295606B1 (en) * 1999-07-26 2001-09-25 Motorola, Inc. Method and apparatus for preventing information leakage attacks on a microelectronic assembly
US6331784B1 (en) * 2000-07-28 2001-12-18 Atmel Corporation Secure programmable logic device
US6966837B1 (en) * 2001-05-10 2005-11-22 Best Robert M Linked portable and video game systems
US7142670B2 (en) * 2001-08-14 2006-11-28 International Business Machines Corporation Space-efficient, side-channel attack resistant table lookups
JP4045777B2 (en) * 2001-10-30 2008-02-13 株式会社日立製作所 Information processing device
EP1535169B1 (en) 2002-07-23 2012-01-25 ST-Ericsson SA Improved inter-processor communication system for communication between processors
US7313687B2 (en) * 2003-01-10 2007-12-25 Microsoft Corporation Establishing a secure context at an electronic communications end-point
US7940932B2 (en) * 2004-04-08 2011-05-10 Texas Instruments Incorporated Methods, apparatus, and systems for securing SIM (subscriber identity module) personalization and other data on a first processor and secure communication of the SIM data to a second processor
US8296577B2 (en) * 2004-06-08 2012-10-23 Hrl Laboratories, Llc Cryptographic bus architecture for the prevention of differential power analysis
US7689814B2 (en) 2004-12-20 2010-03-30 Sony Computer Entertainment Inc. Methods and apparatus for disabling error countermeasures in a processing system
US20070043667A1 (en) * 2005-09-08 2007-02-22 Bahman Qawami Method for secure storage and delivery of media content
WO2007094857A1 (en) 2006-02-09 2007-08-23 Thomson Licensing Method and apparatus for securing digital content

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
GB221610A (en) * 1923-07-16 1924-09-18 Frederick Percy Fall Improvements in or relating to gasholders
US6226749B1 (en) * 1995-07-31 2001-05-01 Hewlett-Packard Company Method and apparatus for operating resources under control of a security module or other secure processor
US20030093684A1 (en) * 2001-11-14 2003-05-15 International Business Machines Corporation Device and method with reduced information leakage
US20060075254A1 (en) * 2004-09-27 2006-04-06 Cisco Technology, Inc. (A California Corporation) Smart card functionality from a security co-processor and symmetric key in ROM

Non-Patent Citations (3)

* Cited by examiner, † Cited by third party
Title
ANDERSON R ET AL: "Cryptographic Processors-a survey", PROCEEDINGS OF THE IEEE IEEE USA, vol. 94, no. 2, February 2006 (2006-02-01), pages 357 - 369, XP002480357, ISSN: 0018-9219 *
DHEM J -F ET AL: "Hardware and software symbiosis helps smart card evolution", IEEE MICRO IEEE USA, vol. 21, no. 6, November 2001 (2001-11-01), pages 14 - 25, XP002480355, ISSN: 0272-1732 *
RAVI S ET AL: "Tamper resistance mechanisms for secure embedded systems", PROCEEDINGS. 17TH INTERNATIONAL CONFERENCE ON VLSI DESIGN IEEE COMPUT. SOC LOS ALAMITOS, CA, USA, 2004, pages 605 - 611, XP002480356, ISBN: 0-7695-2072-3 *

Also Published As

Publication number Publication date
US7984301B2 (en) 2011-07-19
KR101460811B1 (en) 2014-11-11
WO2008060733A2 (en) 2008-05-22
CN101506815A (en) 2009-08-12
TWI431502B (en) 2014-03-21
EP2052344B1 (en) 2017-09-27
TW200817968A (en) 2008-04-16
US20080072051A1 (en) 2008-03-20
CN101506815B (en) 2012-05-09
KR20090041438A (en) 2009-04-28
EP2052344A2 (en) 2009-04-29

Similar Documents

Publication Publication Date Title
WO2008060733A3 (en) Bi-processor architecture for secure systems
WO2004099971A3 (en) Methods and systems for efficiently integrating a cryptographic co-processor
WO2005114405A3 (en) Sharing objects in runtime systems
WO2008016489A3 (en) Methods and systems for modifying an integrity measurement based on user athentication
WO2005114406A3 (en) Sharing objects in runtime systems
SG144103A1 (en) Systems, methods, and computer program products for supporting multiple applications and multiple instances of the same application on a wireless smart device
WO2004012417A3 (en) Storage management bridges
WO2008085788A3 (en) Detecting and interpreting real-world and security gestures on touch and hover sensitive devices
WO2009052026A3 (en) Software factory specification and execution model
WO2008005948A3 (en) A method and system for determining and sharing a user's web presence
WO2009149084A3 (en) Graphical management of building devices
WO2008106400A3 (en) Integrated secure and non-secure display for a handheld communications device
TW200705190A (en) Virtualizing uart interfaces
WO2008006958A3 (en) Method of application control in an nfc chip set comprising several host processors
WO2008051842A3 (en) Methods and systems for accessing remote user files associated with local resources
WO2007143148A3 (en) Methods and devices for detecting linkable objects
IL159565A0 (en) System and method for providing dialog management and arbitration in a multi-modal environment
WO2007136446A3 (en) Device social-control system
WO2011011356A3 (en) System and method for initiating a multi-environment operating system
WO2006108061A3 (en) Methods, software, and systems for knowledge base coordination
WO2006083926A3 (en) Rules-based system
WO2001082075A3 (en) System and method for scheduling execution of cross-platform computer processes
WO2012088109A3 (en) Providing a security boundary
WO2007117414A3 (en) Method and apparatus for operating computer processor array
WO2008033391A3 (en) System and method for using stream objects to perform stream processing in a text-based computing environment

Legal Events

Date Code Title Description
WWE Wipo information: entry into national phase

Ref document number: 200780030561.4

Country of ref document: CN

REEP Request for entry into the european phase

Ref document number: 2007868330

Country of ref document: EP

WWE Wipo information: entry into national phase

Ref document number: 2007868330

Country of ref document: EP

NENP Non-entry into the national phase

Ref country code: DE

WWE Wipo information: entry into national phase

Ref document number: 1020097005441

Country of ref document: KR

NENP Non-entry into the national phase

Ref country code: RU

121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 07868330

Country of ref document: EP

Kind code of ref document: A2