Device and method for secure memory access

摘要

In a secure computing environment, a method, system and device are provided for loading stored encryption key data from a protected non-volatile memory of a portable device. A boot loader program is initiated after the portable device is powered on, encryption key data is loaded from the protected non-volatile memory of the portable device, and access to the protected non-volatile memory is disabled after a predetermined time after the portable device is powered on. In this way, the encryption key data is loaded from the protected non-volatile memory of a portable device before the boot operating system is loaded.

主权项

1. A computer-implemented method of loading stored
encryption key data from a protected non-volatile memory of an electronic device, comprising the steps of:
executing boot loader code after the electronic device is powered on, then loading the stored encryption key data from the protected non-volatile memory of the electronic device;after said loading, determining that a pre-defined number of clock cycles has elapsed from the time the electronic device is powered on;disabling access to the stored encryption key data and the protected non-volatile memory of the electronic device after it is determined that the pre-defined number of clock cycles has elapsed; andprocessing routine boot loading operations after the encryption key data is loaded to working memory, the routine boot loading operations including initiating at least one external communication interface of the electronic device, whereby the at least one external communication interface cannot be operated prior to the loading of the encryption key, the disabling of access to the stored encryption key, and the disabling of the protected non-volatile memory.