| 发明名称 | System and method for secure firmware update of a secure token having a flash memory controller and a smart card | ||
| 摘要 | A system and method of operating a device to securely update the control firmware controlling the device. Downloading a firmware update package to a first microcontroller of the device. Determining a firmware update portion and an encrypted hash portion of the firmware update package wherein the encrypted hash portion is cryptographically signed by a signatory. Confirm that the encrypted hash portion conforms to the firmware update by independently computing the hash of the encrypted firmware update portion on the first microcontroller and comparing that value to the signed hash. Other systems and methods are disclosed. | ||
| 申请公布号 | US8898477(B2) | 申请公布日期 | 2014.11.25 |
| 申请号 | US200711938769 | 申请日期 | 2007.11.12 |
| 申请人 | Gemalto Inc. | 发明人 | Prevost Sylvain;Krishna Ksheerabdhi;Shah Ruchirkumar D;Asnaashari Mehdi |
| 分类号 | G06F11/30;G06F21/57 | 主分类号 | G06F11/30 |
| 代理机构 | The Jansson Firm | 代理人 | The Jansson Firm ;Jansson Pehr B. |
| 主权项 | 1. A method of operating a device to securely update the control firmware controlling the device, the method comprising: downloading a firmware update package to a first microcontroller of the device; operating the first microcontroller to: determine a firmware update portion and an encrypted hash portion of the firmware update package wherein the encrypted hash portion is cryptographically signed by a signatory;calculate a hash of the firmware update portion;transmit the calculated hash and the signed andencrypted hash portion to a second microcontroller; operating the second microcontroller to: decrypt the encrypted hash and verifying that the signatory of the encrypted hash portion is an entity entrusted with certifying firmware updates for the device;transmit a message denying permission to install the firmware update to the first microcontroller if the computed hash and the encrypted hash do not match or if the signatory of the encrypted hash was not verified as an authorized signatory for firmware updates; andtransmit a message granting permission to install the firmware update to the first microcontroller if the computed hash and the encrypted hash match and if signatory of the encrypted hash was verified as an authorized signatory for firmware updates; and upon receiving a message granting permission to install the firmware update, operating the first microcontroller to update the firmware of the device. | ||
| 地址 | Austin TX US | ||