Hardware-generated dynamic identifier
First Claim
Patent Images
1. An electronic apparatus, comprising:
- a hardware-encoded internal private key, comprising a hardware-encoded fuse array not reasonably directly readable without destructively examining the electronic apparatus; and
one or more logic elements comprising a passive key generation engine, the key generation engine having write permission only to one or more special-purpose memory locations for storing pseudo-unique hardware-generated dynamic identifiers (HGDIs), the key generation engine comprising;
circuitry to receive an unencrypted third-party key from a third party;
function circuitry to apply a one-directional operation to the third-party key and the internal private key to generate a pseudo-unique HGDI, wherein the HGDI is unique and persistent with respect to the third party key; and
derivation circuitry to derive a cypher of the public key and the function circuitry.
10 Assignments
0 Petitions
Accused Products
Abstract
In an example, there is disclosed an electronic apparatus, comprising: a hardware-encoded internal private key; and one or more logic elements comprising a key generation engine to: receive an third-party key; and operate on the third-party key and the internal private key to generate a hardware-generated dynamic identifier (HGDI). There is also disclosed a method of providing an HGDI engine, and one or more computer-readable mediums having stored thereon executable instructions for providing an HGDI.
-
Citations
21 Claims
-
1. An electronic apparatus, comprising:
-
a hardware-encoded internal private key, comprising a hardware-encoded fuse array not reasonably directly readable without destructively examining the electronic apparatus; and one or more logic elements comprising a passive key generation engine, the key generation engine having write permission only to one or more special-purpose memory locations for storing pseudo-unique hardware-generated dynamic identifiers (HGDIs), the key generation engine comprising; circuitry to receive an unencrypted third-party key from a third party; function circuitry to apply a one-directional operation to the third-party key and the internal private key to generate a pseudo-unique HGDI, wherein the HGDI is unique and persistent with respect to the third party key; and derivation circuitry to derive a cypher of the public key and the function circuitry. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. One or more tangible, non-transitory computer-readable storage mediums having stored thereon executable instructions for a processor of a hardware platform to provide passive key generation, wherein the instructions are to write only to one or more special-purpose memory locations for storing pseudo-unique hardware-generated dynamic identifiers (HGDIs), further operable to:
-
provide an internal private key, comprising a hardware-encoded fuse array not reasonably directly readable without destructively examining the hardware platform; receive an unencrypted third-party key from a third party; and apply a one-directional operation to the third-party key and the internal private key to generate a pseudo-unique HGDI, wherein the HGDI is unique and persistent with respect to the third party key; and derive a cypher of the public key and the function circuitry. - View Dependent Claims (11, 12, 13, 14, 15, 16, 17, 18)
-
-
19. A method of providing a hardware-generated device identifier (HGDI) engine within immutable hardware of an electronic apparatus, the HGDI engine having write permission only to one or more special-purpose memory locations for storing pseudo-unique HGDIs, comprising providing passive key generation, and further comprising:
-
providing a hardware-encoded internal private key, comprising a hardware-encoded fuse array not reasonably directly readable without destructively examining the electronic apparatus; receiving an unencrypted third-party key from a third party; and applying a one-directional operation to the third-party key and the internal private key to generate a pseudo-unique HGDI, wherein the HGDI is unique and persistent with respect to the third party key; and deriving a cypher of the public key and the function circuitry. - View Dependent Claims (20, 21)
-
Specification