Remote system integrity verification
First Claim
1. A method for use in verifying the integrity of a remote unit in a communication system, said method comprising:
- generating a random value;
determining memory range information identifying a range of memory space within the remote unit having data to be hashed by a hashing function;
determining position information indicative of a position within a data stream to be generated within the remote unit at which said random value is to be located;
delivering said random value, said memory range information, and said position information to the remote unit for use by the remote unit in performing a hashing operation; and
receiving a hash value from said remote unit, said hash value being a result of a hashing operation performed within said remote unit based upon said random value, said memory range information, and said position information delivered to the remote unit.
3 Assignments
0 Petitions
Accused Products
Abstract
The integrity of a remote communication unit (14) in a communication system is verified by comparing a hash value generated within the remote unit (14) to a hash value generated within a local unit (24). An interrogation message is generated within an interrogating entity (10) that includes a random seed value, memory range information identifying a memory range within the remote unit that is to be hashed, and position information identifying a position at which the random seed value is to be located within a data stream generated within the remote unit (14). The interrogation message is then delivered to the remote unit (14) which then performs a hashing operation based upon the parameters within the interrogation message to generate a hash value. The hash value is then returned to the interrogating entity (10) for comparison with a control value.
-
Citations
16 Claims
-
1. A method for use in verifying the integrity of a remote unit in a communication system, said method comprising:
-
generating a random value;
determining memory range information identifying a range of memory space within the remote unit having data to be hashed by a hashing function;
determining position information indicative of a position within a data stream to be generated within the remote unit at which said random value is to be located;
delivering said random value, said memory range information, and said position information to the remote unit for use by the remote unit in performing a hashing operation; and
receiving a hash value from said remote unit, said hash value being a result of a hashing operation performed within said remote unit based upon said random value, said memory range information, and said position information delivered to the remote unit. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. A communication apparatus for use in verifying the integrity of a remote unit in a communication system, comprising:
-
a random value generator for generating a random value;
a memory range determination unit for determining memory range information identifying a memory range within the remote unit for use in generating a data stream that will be processed by a hashing function within the remote unit;
a location determination unit for determining location information that is indicative of a position within the data stream generated within the remote unit at which said random value is located;
a transmitter for transmitting said random value, said memory range information, and said location information to the remote unit for use in performing a hashing operator therein;
a local memory storing information that is representative of information that should be stored in the remote unit; and
a hash unit for performing a hashing operation on information stored within said local memory to generate a control value, said hashing operation being performed using said random value, said memory range information, and said location information. - View Dependent Claims (8, 9, 10, 11, 12)
-
-
13. A communication unit for use within a communication system comprising:
-
means for receiving an integrity verification request from a requesting entity, said integrity verification request including a random value, placement information indicating a desired position for said random value within a data stream, and memory range information identifying a memory range within the communication unit that is to be processed using a hashing function;
means for generating a data stream using data from said memory range and said random value, said random value being located within said data stream at a position indicated by said placement information;
means for performing a hashing operation on said data stream to generate a hash value; and
means for transmitting said hash value to said requesting entity. - View Dependent Claims (14, 15, 16)
-
Specification