Virtual machine or hardware processor for IC-card portable electronic devices

摘要

A virtual machine or hardware processor for an IC-card portable electronic device includes a non-volatile memory unit, a remote decryption unit, and associated objects for storing an executable program in an encrypted format in the non-volatile memory. The IC-card stores a licence key to encrypt and decrypt the executable program through an IC-card interface. The IC-card interface extracts and encrypts the operands of the plain executable program into encrypted operands so as to not limit performance. The remote decryption unit detects if an instruction contains encrypted operands, and queries a decryption to the IC-card interface. The IC-card interface decrypts the encrypted operands and re-encrypts the just decrypted operands into obscured operands through a dynamic obscuration key.

主权项

1. An integrated circuit device comprising:
a processor; a non-volatile memory for storing a plurality of executable programs in an encrypted format; a plurality of memory elements for storing a plurality of operands derived by the plurality of executable programs in the encrypted format during execution; a remote decryption unit for decrypting the plurality of executable programs and the plurality of derived operands in the encrypted format, with the encrypted format being derived by an encryption of a set of data of an executable program in a non-encrypted format; a re-encrypting circuit for re-encrypting the decrypted executable programs and the plurality of derived operands, including operands that are a result of an operation, with the re-encrypted executable programs and the plurality of derived operands being returned to said remote decryption unit; and an arithmetic logic unit between said remote decryption unit and said plurality of memory elements and is configured to receive the returned re-encrypted executable programs and the plurality of derived operands before storing said plurality of memory elements.