Method and apparatus for synchronizing real-time clocks of time stamping cryptographic modules
First Claim
1. A method for updating an on-board clock device to compensate for individual deviation from a time value comprising the steps of:
- a) providing a signal from each of a plurality of modules indicating a time associated with said module and for use by said module in performing time stamping operations;
b) receiving the signal from each of the plurality of modules and determining a synchronization between the modules to detect synchronized modules and modules that are other than synchronized with the synchronized modules; and
, c) when a module is detected as other than synchronized with the synchronized modules, automatically performing one of synchronizing that module with the synchronized modules and disabling that module from performing timestamping operations.
2 Assignments
0 Petitions
Accused Products
Abstract
Disclosed is a method and apparatus for updating an on-board clock device, for instance a clock that is embodied on a time-stamping cipher module, to compensate for individual deviation from an external time-source. Typically, a computer system, such as a network server, is in communication with a cryptographic system comprising a plurality of time-stamping cipher modules that provide dedicated time-stamping and cryptographic functions for the computer system. Due to individual clock drift, the synchronization of time values provided by the on-board clocks of the plurality of modules tends to decrease over time. Periodically, each module provides a signal indicating a time associated with the module to each of other modules of the plurality of modules for determining a synchronization between the modules and for detecting modules that are other than synchronized with the synchronized modules. When a module is detected as other than synchronized with the synchronized modules, that module is automatically deactivated or alternatively that module is synchronized with the synchronized modules.
129 Citations
30 Claims
-
1. A method for updating an on-board clock device to compensate for individual deviation from a time value comprising the steps of:
-
a) providing a signal from each of a plurality of modules indicating a time associated with said module and for use by said module in performing time stamping operations;
b) receiving the signal from each of the plurality of modules and determining a synchronization between the modules to detect synchronized modules and modules that are other than synchronized with the synchronized modules; and
,c) when a module is detected as other than synchronized with the synchronized modules, automatically performing one of synchronizing that module with the synchronized modules and disabling that module from performing timestamping operations. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 20, 21, 22, 24, 25, 27, 28, 30)
-
-
19. A method for verifying an on-board clock device to compensate for individual deviation comprising the steps of:
-
a) receiving a signal including a plurality of time synchronization values at each of a plurality of modules; and
b) each module determining a synchronization status of itself and, upon determining a status other than in synchronization with the other modules, disabling itself.
-
-
23. A method for inserting a new time stamping cryptographic module within an existing cryptographic system comprising the steps of:
-
a) installing a module within a communication bus;
b) detecting the module; and
c) synchronizing the module by setting the real time clock of the module in dependence upon a value indicative of a current time from the real time clocks of other modules, wherein the step of detecting the module is performed in response to the module providing a signal indicative of a non-synchronized status of the module.
-
-
26. A time stamping cryptographic module comprising:
-
a real time clock for providing a time measurement for time stamping functions;
a microprocessor connected to the real time clock for handling at least a processing function for periodically updating the real time clock;
a secure port in electrical communication with the microprocessor for exchanging information with a device external to the module, wherein the secure port is for mating with a corresponding port of a secure communication bus to provide a secure communication channel for exchanging a value which is characteristic of a time of day with a second other module mated with a second other corresponding port of a same secure communication bus for at least a same overlapping period of time; and
,a lock for enabling the module in a first state and for disabling the module in a second other state.
-
-
29. A time stamping cryptographic module comprising:
-
a real time clock for providing a time measurement for time stamping functions;
a microprocessor connected to the real time clock for handling at least a processing function for periodically updating the real time clock;
a secure port in electrical communication with the microprocessor for exchanging information with a device external to the module, wherein the secure port is for mating with a corresponding port of a secure communication bus to provide a secure communication channel for exchanging a value which is characteristic of a time of day with a second other module mated with a second other corresponding port of a same secure communication bus for at least a same overlapping period of time;
means for setting a time of the real time clock in dependence upon a secured time value received from a second other module; and
a tamper detection circuit for detecting unauthorized tampering attempts and for providing a signal in dependence thereon and for deactivating the module in response to the signal indicative of an unauthorized tampering attempt.
-
Specification