Customer-Owned Trust of Device Firmware
US-2018075242-A1 · Mar 15, 2018 · US
Collated multi-image check in system-on-chips
US10747883B2 · US · B2
| Field | Value |
|---|---|
| Publication number | US-10747883-B2 |
| Application number | US-201715631575-A |
| Country | US |
| Kind code | B2 |
| Filing date | Jun 23, 2017 |
| Priority date | May 11, 2017 |
| Publication date | Aug 18, 2020 |
| Grant date | Aug 18, 2020 |
How to read this patent
A practical reading order for non-experts. Skip the full description unless you need deep technical detail.
- Title
What the patent document calls the invention.
- Abstract
A short plain-language summary of the technical disclosure.
- Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
- Key dates
Filing, priority, publication, and grant dates set the timeline.
- First independent claim
The legal scope of protection — read this for what is actually claimed.
- CPC / IPC classifications
Technology tags used to group this patent with similar filings.
- Citations and related patents
Prior art links and similar publications in this corpus.
Abstract
Official abstract text for this publication.
Various additional and alternative aspects are described herein. In some aspects, the present disclosure provides a method of authenticating executable images in a system-on-chip (SoC), the method comprising: storing a plurality of executable images; storing, as separate from the plurality of executable images, a signed image of hashes comprising a plurality of hashes corresponding to the plurality of executable images and a first signature; authenticating the signed image of hashes based on the first signature; and using a first hash of the plurality of hashes to authenticate a first executable image of the plurality of executable images when the signed image of hashes passes authentication.
First claim
Opening claim text (preview).
What is claimed is: 1. A method of authenticating executable images in a system-on-chip (SoC), the method comprising: storing a plurality of executable images; storing, as separate from the plurality of executable images, a signed image of hashes comprising: i) an image of hashes comprising a plurality of hashes corresponding to the plurality of executable images; and ii) a first signature of the image of hashes; authenticating the signed image of hashes based on the first signature; using a first hash of the plurality of hashes to authenticate a first executable image of the plurality of executable images when the signed image of hashes passes the authentication based on the first signature; and using a second hash appended to the first executable image to authenticate the first executable image when the signed image of hashes does not pass the authentication based on the first signature. 2. The method of claim 1 , further comprising caching the plurality of hashes in secure memory when the signed image of hashes passes the authentication based on the first signature. 3. The method of claim 1 , further comprising using a third hash of the plurality of hashes to authenticate a second executable image of the plurality of executable images when the signed image of hashes passes the authentication based on the first signature. 4. The method of claim 1 , further comprising: updating a second executable image of the plurality of executable images, while not updating the signed image of hashes; determining the signed image of hashes does not pass the authentication based on the first signature; and using hashes appended to each of the plurality of executable images to authenticate the plurality of executable images. 5. The method of claim 1 , further comprising: updating the signed image of hashes based on an updated second executable image of the plurality of executable images, while not updating the second executable image; computing a hash of the second executable image; determining a third hash of the plurality of hashes corresponding to the second executable image does not match the computed hash; and using a hash appended to the second executable image to authenticate the second executable image. 6. The method of claim 1 , further comprising storing a second signed image of hashes comprising: i) a second image of hashes comprising a second plurality of hashes corresponding to a second plurality of executable images; and ii) a second signature of the second image of hashes, wherein the second signature is generated with a different root certificate than the first signature; and authenticating the second signed image of hashes based on the second signature. 7. A system-on-chip (SoC) comprising: an interface to a memory, the memory being configured to store: a plurality of executable images; and separate from the plurality of executable images, a signed image of hashes comprising: i) an image of hashes comprising a plurality of hashes corresponding to the plurality of executable images; and ii) a first signature of the image of hashes; and at least one hardware processor configured to: authenticate the signed image of hashes based on the first signature; use a first hash of the plurality of hashes to authenticate a first executable image of the plurality of executable images when the signed image of hashes passes the authentication based on the first signature; and use a second hash appended to the first executable image to authenticate the first executable image when the signed image of hashes does not pass the authentication based on the first signature. 8. The SoC of claim 7 , further comprising a secure memory, and wherein the at least one processor is further configured to cache the plurality of hashes in the secure memory when the signed image of hashes passes the authentication based on the first signature. 9. The SoC of claim 7 , wherein the at least one processor is further configured to use a third hash of the plurality of hashes to authenticate a second executable image of the plurality of executable images when the signed image of hashes passes the authentication based on the first signature. 10. The SoC of claim 7 , wherein the at least one processor is further configured to: update a second executable image of the plurality of executable images, while not updating the signed image of hashes; determine the signed image of hashes does not pass the authentication based on the first signature; and use hashes appended to each of the plurality of executable images to authenticate the plurality of executable images. 11. The SoC of claim 7 , wherein the at least one processor is further configured to: update the signed image of hashes based on an updated second executable image of the plurality of executable images, while not updating the second executable image; compute a hash of the second executable image; determine a third hash of the plurality of hashes corresponding to the second executable image does not match the computed hash; and use a hash appended to the second executable image to authenticate the second executable image. 12. The SoC of claim 7 , wherein the memory is further configured to store a second signed image of hashes comprising: i) a second image of hashes comprising a second plurality of hashes corresponding to a second plurality of executable images; and ii) a second signature of the second image of hashes, wherein the second signature is generated with a different root certificate than the first signature, wherein the at least one processor is further configured to authenticate the second signed image of hashes based on the second signature. 13. A system-on-chip (SoC) comprising: means for storing a plurality of executable images; means for storing, as separate from the plurality of executable images, a signed image of hashes comprising: i) an image of hashes comprising a plurality of hashes corresponding to the plurality of executable images; and ii) a first signature of the image of hashes; means for authenticating the signed image of hashes based on the first signature; means for using a first hash of the plurality of hashes to authenticate a first executable image of the plurality of executable images when the signed image of hashes passes the authentication based on the first signature; and means for using a second hash appended to the first executable image to authenticate the first executable image when the signed image of hashes does not pass the authentication based on the first signature. 14. The SoC of claim 13 , further comprising means for caching the plurality of hashes in secure memory when the signed image of hashes passes the authentication based on the first signature. 15. The SoC of claim 13 , further comprising means for using a third hash of the plurality of hashes to authenticate a second executable image of the plurality of executable images when the signed image of hashes passes the authentication based on the first signature. 16. The SoC of claim 13 , further comprising: means for updating a second executable image of the plurality of executable images, while not updating the signed image of hashes; means for determining the signed image of hashes does not pass the authentication based on the first signature; and means for using hashes appended to each of the plurality of executable images to authenticate the plurality of executable images. 17. The SoC of claim 13 , further comprising: means for updating the signed image of hashes based on an updated second executable image of
Assignees
Inventors
Classifications
Hash functions, e.g. MD5, SHA, HMAC or f9 MAC · CPC title
Details relating to cryptographic hardware or logic circuitry · CPC title
at application loading time, e.g. accepting, rejecting, starting or inhibiting executable software based on integrity or source reliability · CPC title
Revocation or update of secret information, e.g. encryption key update or rekeying · CPC title
Protecting data integrity, e.g. using checksums, certificates or signatures · CPC title
Patent family
Related publications grouped by family.
External sources
Frequently asked questions
Answers are generated from the same data shown on this page.
- What does patent US10747883B2 cover?
- Various additional and alternative aspects are described herein. In some aspects, the present disclosure provides a method of authenticating executable images in a system-on-chip (SoC), the method comprising: storing a plurality of executable images; storing, as separate from the plurality of executable images, a signed image of hashes comprising a plurality of hashes corresponding to the plura…
- Who is the assignee on this patent?
- Qualcomm Inc
- What technology area does this patent fall under?
- Primary CPC classification G06F21/575. Mapped technology areas include Physics.
- When was this patent published?
- Publication date Tue Aug 18 2020 00:00:00 GMT+0000 (Coordinated Universal Time) (B2). Legal status and post-grant events are not shown on this page.
- What related patents are in patentsdb?
- We list 5 related publications on this page (citations in our corpus or others sharing the same primary CPC).