Methods and apparatus for accelerating secure session processing

US 7,007,163 B2
Filed: 05/31/2002
Issued: 02/28/2006
Est. Priority Date: 05/31/2002
Status: Active Grant

First Claim

Patent Images

1. A method for deriving key information in a cryptography accelerator, the method comprising:

receiving random information and protocol information associated with an initialize session input message;

generating master secret information using the random information and the protocol information from the initialize session input message;

generating a plurality of sessions keys using processed protocol information and the master secret information; and

sending an initialize session output message corresponding to the input message, wherein a plurality of session keys are associated with the initialize session output message.

View all claims

6 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Methods and apparatus are provided for an entity such as a CPU to efficiently call a cryptography accelerator to perform cryptographic operations. A function call causes the cryptography accelerator to execute multiple cryptographic operations in a manner tailored for specific processing steps, such as steps during a handshake phase of a secured session. The techniques provide efficient use of hardware processing resources, data interfaces, and memory interfaces.

49 Citations

View as Search Results

45 Claims

1. A method for deriving key information in a cryptography accelerator, the method comprising:
- receiving random information and protocol information associated with an initialize session input message;
  
  generating master secret information using the random information and the protocol information from the initialize session input message;
  
  generating a plurality of sessions keys using processed protocol information and the master secret information; and
  
  sending an initialize session output message corresponding to the input message, wherein a plurality of session keys are associated with the initialize session output message.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
- - 2. The method of claim 1, wherein the random information includes client random data and server random data.
  - 3. The method of claim 1, wherein the initialize session output message includes master secret information.
  - 4. The method of claim 1, wherein the initialize session output message does not include master secret information.
  - 5. The method of claim 1, wherein the initialize session input message is an initialize connection state input message.
  - 6. The method of claim 1, wherein the initialize session output message is an initialize connection state output message.
  - 7. The method of claim 1, wherein the plurality of keys comprise a client encryption key, a server encryption key, a client authentication key, and a server authentication key.
  - 8. The method of claim 7, wherein one or more keys are stored in memory managed directly by the cryptography accelerator.
  - 9. The method of claim 8, wherein the one or more keys are not returned in the initialize session output message.
  - 10. The method of claim 1, further comprising processing protocol information after the master secret information is generated to derive processed protocol information.
  - 11. The method of claim 10, wherein processing protocol information comprises changing the order of arguments.
  - 12. The method of claim 11, wherein the protocol information is associated with SSL.

13. A cryptography accelerator for deriving key information, the cryptography accelerator comprising:
- an interface operable to receive random information and protocol information associated with an initialize session input message; and
  
  a cryptographic core configured to generate master secret information using the random information and the protocol information from the initialize session input message and generate a plurality of sessions keys using processed protocol information and the master secret information,wherein the interface is further operable to send an initialize session output message corresponding to the input message, and wherein a plurality of session keys are associated with the initialize session output message.
- View Dependent Claims (14, 15, 16, 17, 18, 19, 20, 21)
- - 14. The cryptography accelerator of claim 13, wherein the random information includes client random data and server random data.
  - 15. The cryptography accelerator of claim 13, wherein the initialize session output message includes master secret information.
  - 16. The cryptography accelerator of claim 13, wherein the initialize session output message does not include master secret information.
  - 17. The cryptography accelerator of claim 13, wherein the initialize session input message is an initialize connection state input message.
  - 18. The cryptography accelerator of claim 13, wherein the initialize session output message is an initialize connection state output message.
  - 19. The cryptography accelerator of claim 13, wherein the plurality of keys comprise a client encryption key, a server encryption key, a client authentication key, and a server authentication key.
  - 20. The cryptography accelerator of claim 19, wherein one or more keys are stored in memory managed directly by the cryptography accelerator.
  - 21. The cryptography accelerator of claim 20, wherein the one or more keys are not returned in the initialize session output message.

22. A cryptography accelerator for deriving key information, the cryptography accelerator comprising:
- means for receiving random information and protocol information associated with an initialize session input message;
  
  means for generating master secret information using the random information and the protocol information from the initialize session input message;
  
  means for generating a plurality of sessions keys using processed protocol information and the master secret information; and
  
  means for sending an initialize session output message corresponding to the input message, wherein a plurality of session keys are associated with the initialize session output message.

23. A method for performing cryptography processing in a cryptography accelerator during a secured session between a client and a server, the method comprising:
- receiving handshake information from a first entity associated with the cryptography accelerator;
  
  performing a first set of authentication operations to generate client verification information using the handshake information from the client;
  
  performing a second set of authentication operations to generate server verification information; and
  
  providing the client verification information and the server verification information in a response corresponding to the handshake information received from the first entity associated with the cryptography accelerator.
- View Dependent Claims (24, 25, 26, 27, 28, 29, 30, 31, 32, 33)
- - 24. The method of claim 23, wherein the first entity is a central processing unit.
  - 25. The method of claim 23, wherein the first entity is a processing core on a programmable chip.
  - 26. The method of claim 25, wherein the cryptography accelerator is a functional core on a programmable chip.
  - 27. The method of claim 23, wherein the first set of authentication operations comprises:
    - performing a hash on the verification information, the protocol information, and the master secret information to derive a first intermediate value; and
      
      performing a hash on the first intermediate value to derive the client verification information.
  - 28. The method of claim 27, wherein the second set of authentication operations comprises:
    - performing a hash on the verification information and the first entity finished message to derive a second intermediate value; and
      
      performing a hash on the second intermediate value to derive the server verification information.
  - 29. The method of claim 28, wherein the hash operation is associated with SHA1 or MD5.
  - 30. The method of claim 28, wherein the client verification information is compared to a client finished message.
  - 31. The method of claim 29, wherein the server verification information is transmitted to the client.
  - 32. The method of claim 23, wherein one or more keys are stored in memory managed directly by the cryptography accelerator.
  - 33. The method of claim 32, wherein the one or more keys are not returned in the response.

34. A cryptography accelerator for performing cryptography processing during a secured session between a client and a server, the cryptography accelerator comprising:
- an interface operable to receive handshake information from a first entity associated with the cryptography accelerator; and
  
  a cryptographic core configured to perform a first set of authentication operations to generate client verification information using the handshake information from the client and perform a second set of authentication operations to generate server verification information,wherein the interface is further operable to provide the client verification information and the server verification information in a response corresponding to the handshake information received from the first entity.
- View Dependent Claims (35, 36, 37, 38, 39, 40, 41, 42, 43, 44)
- - 35. The cryptography accelerator of claim 34, wherein the first entity is a central processing unit.
  - 36. The cryptography accelerator of claim 34, wherein the first entity is a processing core on a programmable chip.
  - 37. The cryptography accelerator of claim 36, wherein the cryptography accelerator is a functional core on a programmable chip.
  - 38. The cryptography accelerator of claim 34, wherein the first set of authentication operations comprises:
    - performing a hash on the verification information, the protocol information, and the master secret information to derive a first intermediate value; and
      
      performing a hash on the first intermediate value to derive the client verification information.
  - 39. The cryptography accelerator of claim 38, wherein the second set of authentication operations comprises:
    - performing a hash on the verification information and the first entity finished message to derive a second intermediate value; and
      
      performing a hash on the second intermediate value to derive the server verification information.
  - 40. The cryptography accelerator of claim 39, wherein the hash operation is associated with SHA1 or MD5.
  - 41. The cryptography accelerator of claim 39, wherein the client verification information is compared to a client finished message.
  - 42. The cryptography accelerator of claim 40, wherein the server verification information is transmitted to the client.
  - 43. The cryptography accelerator of claim 34, wherein one or more keys are stored in memory managed directly by the cryptography accelerator.
  - 44. The cryptography accelerator of claim 43, wherein the one or more keys are not returned in the response.

45. A cryptography accelerator for performing cryptography processing, the cryptography accelerator comprising:
- means for receiving handshake information from a first entity associated with the cryptography accelerator;
  
  means for performing a first set of authentication operations to generate client verification information using the handshake information from the client;
  
  means for performing a second set of authentication operations to generate server verification information; and
  
  means for providing the client verification information and the server verification information in a response corresponding to the handshake information received from the first entity associated with the cryptography accelerator.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Avago Technologies International Sales Pte Limited (Broadcom, Inc.)
Original Assignee
Broadcom Corporation (Broadcom, Inc.)
Inventors
Luo, Jianjun, Qi, Zheng, Buer, Mark, Tardo, Joseph, Squires, Ronald, Matthews, Don
Primary Examiner(s)
Peeso, Thomas R.

Application Number

US10/160,143
Publication Number

US 20030233539A1
Time in Patent Office

1,369 Days
Field of Search

713/164, 713/168, 713/151, 713/200, 713/201
US Class Current

713/164
CPC Class Codes

H04L 9/0838 Key agreement, i.e. key est...

Methods and apparatus for accelerating secure session processing

First Claim

6 Assignments

0 Petitions

Accused Products

Abstract

49 Citations

45 Claims

Specification

Solutions

Use Cases

Quick Links

Methods and apparatus for accelerating secure session processing

First Claim

6 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

49 Citations

45 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links