Creation and distribution of a secret value between two devices
First Claim
Patent Images
1. A method comprising:
- within a first device, generating data for permanent storage in a protected area of internal memory of the first device that prevents subsequent modification of the data; and
within the first device, producing a secret value being a combination of both (1) the data and (2) a short term value generated in response to a periodic event.
1 Assignment
0 Petitions
Accused Products
Abstract
In general, one embodiment of the invention features a method comprising operations performed internally within a device. A first operation involves generating data for permanent storage in a protected area of internal memory of the device. This prevents subsequent modification of the data. A second operation involves producing a secret value being a combination of both the data and a short term value generated in response to a periodic event such as a power-up sequence of a platform employing the device.
117 Citations
28 Claims
-
1. A method comprising:
-
within a first device, generating data for permanent storage in a protected area of internal memory of the first device that prevents subsequent modification of the data; and
within the first device, producing a secret value being a combination of both (1) the data and (2) a short term value generated in response to a periodic event. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A method comprising:
-
generating a long term value within a first device;
permanently storing the long term value within a protected area of an internal memory of the first device;
providing the long term value to a second device communicatively coupled to the first device;
generating a short term value within the first device, the short term value is modified after each periodic event;
providing the short term value to the second device;
generating a secret value within the first device, the secret value being a combination of both the long term value and the short term value; and
generating the secret value within the second device based on the long term value and the short term value. - View Dependent Claims (10, 11, 12, 13, 14, 16, 18, 19)
-
-
15. A platform comprising:
-
a link;
an input/output control hub (ICH) coupled to the link; and
a trusted platform module (TPM) coupled to the link, the TPM including a package, an asymmetric key generation unit contained within the package, the asymmetric key generation unit to generate a long term value and a short term value, and an internal memory contained within the package, the internal memory to permanently store the long term value and to temporarily store the short term value and a secret value being a combination of the long term value and the short term value.
-
-
17. The platform of 16, wherein the TPM transmits the long term value to the ICH over the link during manufacture of the platform and transmits the short term value to the ICH over the link in response to a power-up sequence by the platform.
-
20. A device comprising:
-
an internal memory; and
an asymmetric key generation unit to generate, in response to an initial event, a unique long term value for permanent storage in a protected area of the internal memory and to generate, in response to a periodic event, a short term value for storage in the internal memory; and
a cryptographic engine to produce a secret value by combining both the long term value and the short term value. - View Dependent Claims (21, 22, 23, 24, 26, 27, 28)
-
-
25. A program loaded into platform readable memory for execution by a first device of a platform, the program comprising:
-
code to generate data for permanent storage in a protected area of internal memory of the first device in response to an initial event; and
code to produce a secret value being a combination of both the data and a short term value that is generated in response to a periodic event.
-
Specification