MEMORY CONTROLLER, NONVOLATILE MEMORY DEVICE, NONVOLATILE MEMORY SYSTEM, AND ACCESS DEVICE

US 20100083006A1
Filed: 05/23/2008
Published: 04/01/2010
Est. Priority Date: 05/24/2007
Status: Abandoned Application

First Claim

Patent Images

1. A nonvolatile memory device comprising:

a memory means for retaining an application identifier used for identification of an application and a management state of application determined based on;

existence of said application; and

existence of individual data that is data used for individually customizing said application;

a communication means for communicating with an outside;

an interpretation means for interpreting data related to installation, the data including the application identifier and being received from the outside;

a state judgment means for obtaining said application identifier from said data received from the outside, obtaining the management state of said application from said application identifier, and judging necessity of signature verification on the basis of said management state;

a hash generation means for upon receiving a result from said state judgment means, obtaining a piece of data to be signed and a signature from said data received from the outside in said interpretation means and carrying out a hash process to said data to be signed;

an encryption-decryption means for decrypting said signature; and

a check means for comparing a hash generated by said hash generation means with a hash obtained in decrypting said signature, whereinthe nonvolatile memory device notifies the outside of the result judged by said check means by using said communication means.

View all claims

4 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A memory controller receives an application identifier for identifying an application from an outside, an application, reference data to be referenced by the application, and a signature for the application and writes the application and the reference data. After receiving the application identifier from the outside, the memory controller accesses memory means which manages the application identifier and the application management state and reads out the management state of the target application. According to the management state, necessary data is decided. Since the judgment result is informed to the outside, there is no need of receiving applications more than necessary and it is possible to reduce the load on the signature process and the application reception process.

29 Citations

View as Search Results

19 Claims

1. A nonvolatile memory device comprising:
- a memory means for retaining an application identifier used for identification of an application and a management state of application determined based on;
  
  existence of said application; and
  
  existence of individual data that is data used for individually customizing said application;
  
  a communication means for communicating with an outside;
  
  an interpretation means for interpreting data related to installation, the data including the application identifier and being received from the outside;
  
  a state judgment means for obtaining said application identifier from said data received from the outside, obtaining the management state of said application from said application identifier, and judging necessity of signature verification on the basis of said management state;
  
  a hash generation means for upon receiving a result from said state judgment means, obtaining a piece of data to be signed and a signature from said data received from the outside in said interpretation means and carrying out a hash process to said data to be signed;
  
  an encryption-decryption means for decrypting said signature; and
  
  a check means for comparing a hash generated by said hash generation means with a hash obtained in decrypting said signature, whereinthe nonvolatile memory device notifies the outside of the result judged by said check means by using said communication means.
- View Dependent Claims (2, 3, 8, 9)
- - 2. The nonvolatile memory device according to claim 1, further comprising:
    - a registration means for changing the management state of said application, the registration means, based on verification of validity of said data to be signed in said check means, retaining said data to be signed as being operable in said memory means in a case where the data is proper.
  - 3. The nonvolatile memory device according to claim 2, whereindata received by said communication means is sent being divided into at least two, said signature is included in first data, said data to be signed is included in second data, said encryption-decryption means decrypts said signature, and the nonvolatile memory device informs to the outside not to send said second data in a case where said decrypted data does not include an adequate padding result.
  - 8. An access device used by connecting to the nonvolatile memory device according to claim 1, whereinsaid access device includes:
    - a communication means for communicating with said nonvolatile memory device;
      
      a memory means for storing data to be sent to said nonvolatile memory device, the data being related to installation and including the application identifier; and
      
      a protocol conversion means for reading data to be sent to said nonvolatile memory device from said memory means and converting the data into data said nonvolatile memory device can receive, whereinthe access device receives a result regarding whether or not verification of a signature informed from said nonvolatile memory device is required and controls the communication with said nonvolatile memory device on the basis of said result.
  - 9. The access device according to claim 8, whereinsaid memory means is included in a second access device, the second access device being outside said access device and being connected to said access device by a communication path.

4. A memory controller comprising:
- a memory control means for accessing a memory means for retaining an application identifier used for identification of an application and a management state of application determined based on;
  
  existence of said application; and
  
  existence of individual data that is data used for individually customizing said application;
  
  a communication means for communicating with an outside;
  
  an interpretation means for interpreting data related to installation, the data including the application identifier and being received from the outside;
  
  a state judgment means for obtaining said application identifier from said data received from the outside, obtaining the management state of said application from said application identifier, and judging necessity of signature verification on the basis of said management state;
  
  a hash generation means for upon receiving a result from said state judgment means, obtaining a piece of data to be signed and a signature from said data received from the outside in said interpretation means and carrying out a hash process to said data to be signed;
  
  an encryption-decryption means for decrypting said signature; and
  
  a check means for comparing a hash generated by said hash generation means with a hash obtained in decrypting said signature, whereinthe memory controller notifies the outside of the result judged by said check means by using said communication means.
- View Dependent Claims (5, 6)
- - 5. The memory controller according to claim 4, further comprising:
    - a registration means for changing the management state of said application, the registration means, based on verification of validity of said data to be signed in said check means, retaining said data to be signed as being operable in said memory means in a case where the data is proper.
  - 6. The memory controller according to claim 5, whereindata received by said communication means is sent being divided into at least two, said signature is included in first data, said data to be signed is included in second data, said encryption-decryption means decrypts said signature, and the memory controller informs to the outside not to send said second data in a case where said decrypted data does not include an adequate padding result.

7. A nonvolatile memory system comprising:
- an access device; and
  
  a nonvolatile memory device for reading and writing data on the basis of an access command from said access device, whereinsaid nonvolatile memory device includes;
  
  a nonvolatile memory; and
  
  a memory controller having;
  
  a memory control means for accessing said nonvolatile memory device for retaining an application identifier used for identification of an application and a management state of application determined based on;
  
  existence of said application; and
  
  existence of individual data that is data used for individually customizing said application;
  
  a communication means for communicating with an outside;
  
  an interpretation means for interpreting data related to installation, the data including the application identifier and being received from the outside;
  
  a state judgment means for obtaining said application identifier from said data received from the outside, obtaining the management state of said application from said application identifier, and judging necessity of signature verification on the basis of said management state;
  
  a hash generation means for upon receiving a result from said state judgment means, obtaining a piece of data to be signed and a signature from said data received from the outside in said interpretation means and carrying out a hash process to said data to be signed;
  
  an encryption-decryption means for decrypting said signature; and
  
  a check means for comparing a hash generated by said hash generation means with a hash obtained in decrypting said signature, whereinthe nonvolatile memory device notifies the outside of the result judged by said check means by using said communication means.

10. A nonvolatile memory device comprising:
- a communication means for receiving encrypted management data from an outside;
  
  an encryption-decryption means for decrypting said encrypted management data;
  
  a memory means for storing a management state of application in the device;
  
  a check means for checking validity of data;
  
  a numerical calculation means for determining data to be extracted from said management data on the basis of said management state of application, checks validity of the extracted data in said check means, and notifies the outside of a normal end in said communication means in a case where the validity is authenticated in said check means.
- View Dependent Claims (11, 12, 13)
- - 11. The nonvolatile memory device according to claim 10, whereinsaid numerical calculation means extracts signature data from said management data in a case where said management state of application is in an uninstalled state or in an application deleted state and checks validity of the signature data in said check means.
  - 12. The nonvolatile memory device according to claim 11, whereinsaid encryption-decryption means decrypts said signature data andsaid check means authenticates validity in a case where said decrypted signature data has an adequate padding data.
  - 13. The nonvolatile memory device according to claim 10, whereinsaid numerical calculation means notifies said communication means of an external error and cancels reception of an application in a case where said check means does not authenticate validity of data.

14. A nonvolatile memory device comprising:
- a communication means for receiving encrypted management data and an encrypted application from an outside;
  
  an encryption-decryption means for decrypting said encrypted data;
  
  a memory means for storing a management state of application in the device;
  
  a check means for checking validity of data; and
  
  a numerical calculation means for in a case where said communication means has received said encrypted management data, decrypting the encrypted management data in said encryption-decryption means, determining data to be extracted from the management data on the basis of said management state of application, and notifying the outside of a normal end in said notification means if said check means authenticates validity of the extracted data andfor in a case where said communication means has received said encrypted application from the outside, decrypting the encrypted application in said encryption-decryption means and storing the application in said memory means if said check means authenticates validity of the application.
- View Dependent Claims (15, 16, 17, 18, 19)
- - 15. The nonvolatile memory device according to claim 14, whereinin a case where said communication means receives said encrypted management data, data extracted in an uninstalled state or in an application deleted state of said management state of application from said encrypted management data by said numerical calculation means is signature data of said application.
  - 16. The nonvolatile memory device according to claim 15, whereinsaid encryption-decryption means decrypts said signature data, andsaid check means authenticates validity in a case where said decrypted signature data has an adequate padding data.
  - 17. The nonvolatile memory device according to claim 16, whereinsaid signature data is made by encrypting a hash value obtained by carrying out a hash calculation to the application and adequate padding data added to the hash value, andsaid numerical calculation means stores said hash value in said memory means in a case where said check means authenticates validity of said signature data.
  - 18. The nonvolatile memory device according to claim 17, whereinin a case where said communication means has received an encrypted application from the outside,said check means checks validity of said application by comparing a hash value stored in said memory means with a hash value calculated from said decrypted application, andsaid numerical calculation means stores said application in said memory means on the basis of said validity.
  - 19. The nonvolatile memory device according to claim 14, whereinsaid numerical calculation means notifies the outside via said communication means of an error and cancels reception of said encrypted application if said check means does not authenticate validity of data in a case where said communication means has received said encrypted management data.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Panasonic Intellectual Property Management Co., Ltd. (Panasonic Holdings Corporation)
Original Assignee
Panasonic Corporation (Panasonic Holdings Corporation)
Inventors
Sasaki, Osamu, Takagi, Yoshihiko, So, Hirokazu, Takeuchi, Yasuo

Application Number

US12/601,349
Publication Number

US 20100083006A1
Time in Patent Office

Days
Field of Search
US Class Current

713/193
CPC Class Codes

G06F 21/70 Protecting specific interna...

G06F 8/61 Installation

MEMORY CONTROLLER, NONVOLATILE MEMORY DEVICE, NONVOLATILE MEMORY SYSTEM, AND ACCESS DEVICE

First Claim

4 Assignments

0 Petitions

Accused Products

Abstract

29 Citations

19 Claims

Specification

Use Cases

Quick Links

Others

MEMORY CONTROLLER, NONVOLATILE MEMORY DEVICE, NONVOLATILE MEMORY SYSTEM, AND ACCESS DEVICE

First Claim

4 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

29 Citations

19 Claims

Specification

Subscription Required

Use Cases

Quick Links

Others