发明名称 |
Staged Control Release in Boot Process |
摘要 |
Integrity validation of a network device may be performed. A network device comprising a secure hardware module, may receive a root key. The secure hardware module may also receive a first code measurement. The secure hardware module may provide a first key based on the root key and the first code measurement. The secure hardware module may receive a second code measurement and provide a second key based on the first key and the second code measurement. The release of keys based on code measurements may provide authentication in stages. |
申请公布号 |
US2015026471(A1) |
申请公布日期 |
2015.01.22 |
申请号 |
US201414507205 |
申请日期 |
2014.10.06 |
申请人 |
InterDigital Patent Holdings, Inc. |
发明人 |
Cha Inhyok;Shah Yogendra C.;Case Lawrence |
分类号 |
G06F21/57;H04L9/08;H04L29/06 |
主分类号 |
G06F21/57 |
代理机构 |
|
代理人 |
|
主权项 |
1. A method to perform integrity validation of a network device, the method comprising:
receiving a measurement of first code stored in a memory of the network device; generating a first key based on a root key stored in a secure memory of the network device and the first code measurement, and wherein the first key relates to a first stage of trust associated with a first function of the network device, and wherein the first key is capable of being used by a first stakeholder to access the first function; receiving a measurement of second code stored in the memory of the network device; and generating a second key based on the first key and the second code measurement, wherein the second key relates to a second stage of trust associated with a second function of the network device, and wherein the second key is capable of being used by a second stakeholder to access the second function. |
地址 |
Wilmington DE US |