| 发明名称 |
SEPARATION OF SOFTWARE MODULES BY CONTROLLED ENCRYPTION KEY MANAGEMENT |
| 摘要 |
In an aspect, a method for protecting software includes obtaining a payload including at least one of instructions or data, establishing a realm in a memory device, encrypting the payload based on an ephemeral encryption key (EEK) associated with the realm, and storing the encrypted payload in the realm of the memory device. In another aspect, a method for protecting software includes receiving a memory transaction associated with the memory device, the memory transaction including at least a realm identifier (RID) and a realm indicator bit, obtaining the EEK associated with the RID when the RID indicates the realm and when the realm indicator bit is enabled, decrypting an instruction and/or data retrieved from the realm based on the EEK when the memory transaction is a read transaction, and encrypting second data for storage in the realm based on the EEK when the memory transaction is a write transaction. |
| 申请公布号 |
US2017085542(A1) |
申请公布日期 |
2017.03.23 |
| 申请号 |
US201615053892 |
申请日期 |
2016.02.25 |
| 申请人 |
QUALCOMM Incorporated |
发明人 |
Avanzi Roberto;Hartley David;Cammarota Rosario |
| 分类号 |
H04L29/06;G06F11/16;G06F11/30;G06F12/14;G06F11/07 |
主分类号 |
H04L29/06 |
| 代理机构 |
|
代理人 |
|
| 主权项 |
1. A method for protecting software, comprising:
obtaining a payload including at least one of instructions or data; establishing a realm in a memory device, the realm including one or more selected regions in the memory device; encrypting the payload based on an ephemeral encryption key associated with the realm; and storing the encrypted payload in the realm of the memory device. |
| 地址 |
San Diego CA US |
