-
Patent Agency Ranking
公开(公告)号:WO2019112971A1
公开(公告)日:2019-06-13
申请号:PCT/US2018/063685
申请日:2018-12-03
Applicant: APPLE INC.
Inventor: DE CESARE, Joshua P. , PAASKE, Timothy R. , KOVAH, Xeno S. , SCHLEJ, Nikolaj , WILCOX, Jeffrey R. , RUNYON, Ezekiel T. , DOSHI, Hardik K. , ALDERFER, Kevin H. , KALLENBERG, Corey T.
CPC classification number: G06F21/575 , G06F21/44
Abstract: A method and apparatus for performing a secure boot of a computer system is disclosed. A computer system according to the disclosure includes an auxiliary processor and a main processor. The boot process includes initially booting the auxiliary processor. The auxiliary processor is associated with a non-volatile memory storing boot code for the main processor. The auxiliary processor may perform a verification of the boot code. Subsequent to verifying the boot code, the main processor may be released from a reset state. Once the main processor is no longer in the reset state, the boot code may be provided thereto. Thereafter, the boot procedure may continue with the main processor executing the boot code.
-
公开(公告)号:WO2018222673A1
公开(公告)日:2018-12-06
申请号:PCT/US2018/035067
申请日:2018-05-30
Applicant: APPLE INC.
Inventor: MARTEL, Pierre-Olivier J. , WILCOX, Jeffrey R. , SHAEFFFER, Ian P. , MYRICK, Andrew D. , HILL, Robert W. , SCHAAP, Tristan F.
CPC classification number: G06F21/76 , G06F1/3237 , G06F1/3287 , G06F21/57 , G06F21/62 , G06F21/71 , G06F21/74 , G06F21/81 , G06F2221/2111 , G06F2221/2141 , G06F2221/2151 , H04L63/0861 , H04L63/107 , H04L63/108
Abstract: Techniques are disclosed in which a secure circuit controls a gating circuit to enable or disable other circuity of a device (e.g., one or more input sensors). For example, the gating circuit may be a power gating circuit and the secure circuit may be configured to disable power to an input sensor in certain situations. As another example, the gating circuit may be a clock gating circuit and the secure circuit may be configured to disable the clock to an input sensor. As yet another example, the gating circuit may be configured to gate a control bus and the secure circuit may be configured to disable control signals to an input sensor. In some embodiments, hardware resources included in or controlled by the secure circuit are not accessible by other elements of the device, other than by sending requests to a predetermined set of memory locations (e.g., a secure mailbox).
-
公开(公告)号:WO2018222666A1
公开(公告)日:2018-12-06
申请号:PCT/US2018/035057
申请日:2018-05-30
Applicant: APPLE INC.
Inventor: DE CESARE, Joshua P. , PAASKE, Timothy R. , KOVAH, Xeno S. , SCHLEJ, Nikolaj , WILCOX, Jeffrey R. , RUNYON, Ezekiel T. , DOSHI, Hardik K. , ALDERFER, Kevin H. , KALLENBERG, Corey T.
IPC: G06F21/57
Abstract: A method and apparatus for performing a secure boot of a computer system is disclosed. A computer system according to the disclosure includes an auxiliary processor and a main processor. The boot process includes initially booting the auxiliary processor. The auxiliary processor includes a non-volatile memory storing boot code for the main processor. The auxiliary processor may perform a verification of the boot code. Subsequent to verifying the boot code, the main processor may be released from a reset state. Once the main processor is no longer in the reset state, the boot code may be provided thereto. Thereafter, the boot procedure may continue with the main processor executing the boot code.
-
公开(公告)号:WO2019112972A1
公开(公告)日:2019-06-13
申请号:PCT/US2018/063686
申请日:2018-12-03
Applicant: APPLE INC.
Inventor: DE CESARE, Joshua P. , PAASKE, Timothy R. , KOVAH, Xeno S. , SCHLEJ, Nikolaj , WILCOX, Jeffrey R. , DOSHI, Hardik K. , ALDERFER, Kevin H. , KALLENBERG, Corey T.
IPC: G06F21/57
CPC classification number: G06F21/575
Abstract: A method and apparatus for protecting boot variables is disclosed. A computer system includes a main processor and an auxiliary processor. The auxiliary processor is associated with a non-volatile memory that stores variables associated with boot code that is also stored thereon. The main processor may send a request to the auxiliary processor to alter one of the variables stored in the non-volatile memory. Responsive to receiving the request, the auxiliary processor may execute a security policy to determine if the main processor meets the criteria for altering the variable. If the auxiliary processor determines that the main processor meets the criteria, it may grant permission to alter the variable.
-
公开(公告)号:WO2017058414A1
公开(公告)日:2017-04-06
申请号:PCT/US2016/048697
申请日:2016-08-25
Applicant: APPLE INC.
Inventor: GULATI, Manu , SOKOL Jr., Joseph , WILCOX, Jeffrey R. , SEMERIA, Bernard J. , SMITH, Michael J.
CPC classification number: G06F12/0246 , G06F21/78 , G06F2212/7206 , G06F2212/7208 , G06F2221/2143
Abstract: In one embodiment, a system includes a non-volatile memory that may serve as both the main memory system and the backing store (or persistent storage). In some embodiments, the non-volatile memory is divided into a main memory portion and a persistent portion. Data in the main memory operation may be encrypted using one or more first keys, and data in the persistent portion may be encrypted using one or more second keys, in an embodiment. The volatile behavior of main memory may be implemented by discarding the one or more first keys in a power down event or other event that indicates a loss of main memory data, while the one or more second keys may be retained. In one embodiment, the physical address space of the non-volatile memory may be a mapping from a second physical address space that is used within the system.
Abstract translation: 在一个实施例中,系统包括可用作主存储器系统和后备存储器(或持久存储器)两者的非易失性存储器。 在一些实施例中,非易失性存储器被分成主存储器部分和持久部分。 在一个实施例中,主存储器操作中的数据可以使用一个或多个第一密钥加密,并且持久部分中的数据可以使用一个或多个第二密钥进行加密。 主存储器的易失性行为可以通过在功率下降事件中丢弃一个或多个第一密钥或指示主存储器数据丢失的其他事件来实现,同时可以保留一个或多个第二密钥。 在一个实施例中,非易失性存储器的物理地址空间可以是来自在系统内使用的第二物理地址空间的映射。
-
-
-
-
Search Results
5
records
(took 0.022 seconds)
