公开(公告)号：EP1832996A1

公开(公告)日：2007-09-12

申请号：EP06251192.8

申请日：2006-03-06

Applicant: STMicroelectronics Limited

Inventor： Ryan, Stuart Andrew ,  Jones, Andrew Michael

IPC: G06F21/00

CPC classification number: G06F21/51

Abstract: A system is provided in which a first circuit is protected by security features provided by a second circuit. The first circuit comprises a processor which retrieves content from a memory. Initially, the contents of the memory are authenticated using security features of the second circuit to check that the processor is accessing authenticated content. To maintain security during use, the second circuit checks that the processor is accessing content from valid regions of the memory, being those that have been authenticated, and re-checks the authenticity of the content of the valid regions of memory. The combination of checking that the processor is accessing from valid regions of the memory and authenticating the content stored in the valid regions maximises the security of the system. If any of the checking or authentication steps fail then operation of the system is impaired. The first circuit is thus protected by security features provided by the second circuit.

Abstract translation: 提供了一种系统，其中由第二电路提供的安全特征来保护第一电路。 第一电路包括从存储器检索内容的处理器。 最初，使用第二电路的安全特征对存储器的内容进行认证，以检查处理器是否访问认证的内容。 为了在使用期间保持安全性，第二电路检查处理器是否从存储器的有效区域访问内容，即已经被认证的那些内容，并重新检查存储器的有效区域的内容的真实性。 检查处理器从存储器的有效区域进行访问并认证存储在有效区域中的内容的组合使得系统的安全性最大化。 如果任何检查或认证步骤失败，则系统的操作受损。 因此，第一电路由第二电路提供的安全特性来保护。

公开(公告)号：EP1830268A1

公开(公告)日：2007-09-05

申请号：EP06251162.1

申请日：2006-03-03

Applicant: STMicroelectronics Limited

Inventor： Ryan, Stuart Andrew ,  Jones, Andrew Michael

IPC: G06F11/07 ,  G06F1/32

CPC classification number: G06F11/004 ,  Y10T307/911

Abstract: An integrated circuit comprises a plurality of units that may act as initiators and targets. At least some of the units being for a first purpose such as a cable modem function and others being for a second purpose such as television data processing. The units are connected together by a bus comprising a number of nodes. One of the nodes is configurable such that requests made from initiator units on one side of the node to target units on the other side of the node are not sent to the target units. The units for the first purpose are arranged on the opposite side of the node from those of the second purpose, so that the circuit is effectively configurable into two separate logical partitions, one partition for television data processing and the other partition for cable modem functions.

Abstract translation: 集成电路包括可充当发起者和目标的多个单元。 至少一些单元是用于诸如电缆调制解调器功能的第一目的，而其他单元用于第二目的，例如电视数据处理。 这些单元通过包括多个节点的总线连接在一起。 节点之一是可配置的，使得从节点一侧的发起者单元到节点另一侧的目标单元的请求不发送到目标单元。 用于第一目的的单元被布置在与第二目的的节点的相对侧上，使得电路被有效地配置成两个单独的逻辑分区，用于电视数据处理的一个分区和用于电缆调制解调器功能的另一个分区。