TAMPER RESISTANCE OF AGGREGATED DATA
8 Assignments
0 Petitions
Accused Products
Abstract
By processing aggregated data in a trusted environment, a system can reduce opportunities for tampering with aggregated data that is processed in a peer-to-peer chain. Each device may pass the predecessor aggregated data to a trusted environment in that device, which obtains local data for that device and aggregates it with the predecessor aggregated data, producing an output aggregated data. Optionally, the system can identify when a device has previously processed the aggregated data, reducing the possibility that the device can be used to aggregate data repeatedly. The aggregated data may be digitally signed or encrypted to enhance the tamper resistance of the data payload.
-
Citations
50 Claims
-
1-25. -25. (canceled)
-
26. A computer-readable medium, on which are stored instructions comprising instructions that, when executed, cause a programmable device to:
-
receive a first collection of data from a predecessor programmable device; generate a second collection of data, corresponding to the first collection of data; aggregate the first collection of data with the second collection of data in a trusted environment of the programmable device, producing a third collection of data; and send the third collection of data to a successor programmable device. - View Dependent Claims (27, 28, 29, 30, 31, 32, 33, 34)
-
-
35. A programmable device, comprising:
-
a processor, an operating system, comprising instructions that, when executed by the processor, controls the processor and provides an untrusted environment for software to execute on the processor; a secure hardware trusted environment separate from the untrusted environment; a memory, in which is stored instructions that when executed by secure hardware trusted environment cause the secure hardware trusted environment to; receive a first collection of data from a predecessor programmable device; generate a second collection of data, corresponding to the first collection of data; aggregate the first collection of data with the second collection of data in, producing a third collection of data; and send the third collection of data to a successor. - View Dependent Claims (36, 37, 38, 39, 40, 41)
-
-
42. A method, comprising:
-
receiving a first collection of data from a first programmable device; obtaining a second collection of data from an untrusted environment of a second programmable device; combining the first collection of data with the second collection of data in a trusted environment of the programmable device to produce a third collection of data; and sending the third collection of data to a third programmable device. - View Dependent Claims (43, 44, 45, 46, 47, 48, 49, 50)
-
Specification