Apparatus, system and method for providing cryptographic key information with physically unclonable function circuitry
| DWPI Title: Apparatus for operating security module coupled to computer system for providing cryptographic key information, has physically unclonable function circuitry for outputting value to bus independent of value being exchanged by signal line |
| Abstract: Techniques and mechanisms for providing a value from physically unclonable function (PUF) circuitry for a cryptographic operation of a security module. In an embodiment, a cryptographic engine receives a value from PUF circuitry and based on the value, outputs a result of a cryptographic operation to a bus of the security module. The bus couples the cryptographic engine to control logic or interface logic of the security module. In another embodiment, the value is provided to the cryptographic engine from the PUF circuitry via a signal line which is distinct from the bus, where any exchange of the value by either of the cryptographic engine and the PUF circuitry is for communication of the first value independent of the bus. |
| Use: Apparatus for operating a security module coupled to a host i.e. computer system, for providing cryptographic key information for protection against subversion by wholesale component substitution. Uses include but are not limited to a personal computer (PC), a tablet PC, a set-top box (STB), a personal digital assistant (PDA), a cellular telephone and a web appliance. |
| Advantage: The method enables providing PUF functionality with a cryptographic logic to provide protection of sensitive data on a device and/or support secure communications between devices. The method enables allowing a platform hardware architecture to support partitioning of access based upon two execution environments, provide security the data and instructions stored in a RAM or other data storage, specify execution environments accessing peripherals and/or provide various access control mechanisms. The method enables adapting the security module to provide cryptography functionality to support authentication of software for providing a trusted execution environment of a platform. |
| Novelty: The apparatus has a bus for coupling a cryptographic engine to a control circuitry or interface. The cryptographic engine is coupled to output a result of cryptographic operation to the bus, where exchange of a first value by the cryptographic engine and exchange of a first value by a physically unclonable function (PUF) circuitry is performed for communication of the first value independent of the bus. The bus is coupled to the PUF circuitry independent of a signal line. The PUF circuitry outputs a second value to the bus independent of a second value being exchanged by the signal line. |
| Filed: 5/28/2013 |
| Application Number: US13903813A |
| Tech ID: SD 12209.0 |
| This invention was made with Government support under Contract No. DE-NA0003525 awarded by the United States Department of Energy/National Nuclear Security Administration. The Government has certain rights in the invention. |
| Data from Derwent World Patents Index, provided by Clarivate All rights reserved. Republication or redistribution of Clarivate content, including by framing or similar means, is prohibited without the prior written consent of Clarivate. Clarivate and its logo, as well as all other trademarks used herein are trademarks of their respective owners and used under license. |