Method and apparatus for providing secure processing and data storage for a wireless communication device
First Claim
1. A remote terminal in a wireless communication system, comprising:
- a data processing unit configured to process data for a communication over a wireless link;
a main processor coupled to the data processing unit and configured to provide control for the remote terminal, wherein the data processing unit and main processor are unsecured units vulnerable to being spoofed by external entities; and
a secure unit operatively coupled to the main processor and includinga secure processor configured to perform secure processing for the remote terminal, anda secure memory configured to provide secure storage of data, andwherein the secure unit is physically encapsulated within a secure module and further configured to prevents unauthorized accesses to the secure memory via hardcoded protocols.
1 Assignment
0 Petitions
Accused Products
Abstract
Techniques for providing secure processing and data storage for a wireless communication device. In one specific design, a remote terminal includes a data processing unit, a main processor, and a secure unit. The data processing unit processes data for a communication over a wireless link. The main processor provides control for the remote terminal. The secure unit includes a secure processor that performs the secure processing for the remote terminal (e.g., using public-key cryptography) and a memory that provides secure storage of data (e.g., electronics funds, personal data, certificates, and so on). The secure processor may include an embedded ROM that stores program instructions and parameters used for the secure processing. For enhanced security, the secure processor and memory may be implemented within a single integrated circuit. Messaging and data may be exchanged with the secure unit via a single entry point provided by a bus.
78 Citations
26 Claims
-
1. A remote terminal in a wireless communication system, comprising:
-
a data processing unit configured to process data for a communication over a wireless link; a main processor coupled to the data processing unit and configured to provide control for the remote terminal, wherein the data processing unit and main processor are unsecured units vulnerable to being spoofed by external entities; and a secure unit operatively coupled to the main processor and including a secure processor configured to perform secure processing for the remote terminal, and a secure memory configured to provide secure storage of data, and wherein the secure unit is physically encapsulated within a secure module and further configured to prevents unauthorized accesses to the secure memory via hardcoded protocols. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19)
-
-
20. A remote terminal in a wireless communication system, comprising:
-
a data processing unit configured to process data for a communication over a wireless link; a main processor coupled to the data processing unit and configured to provide control for the remote terminal, wherein the data processing unit and main processor are unsecured units vulnerable to being spoofed by external entities; and a secure unit embedded within the main processor and configured to perform secure processing for the remote terminal and provide secure storage of data, wherein the secure unit is further configured to implement public-key cryptography for the secure processing, and wherein the secure unit is further configured to prevents unauthorized accesses to securely stored data via hardcoded protocols.
-
-
21. A method for providing secure processing and data storage for a wireless communication device, comprising:
-
defining a main processor within the communication device for providing control to the remote terminal; defining a secure processor within the communication device for performing secure processing; defining a secure storage within the communication device for providing secure data storage; storing program instructions and parameters used for the secure processing within the secure processor or secure storage, wherein the stored program instructions implement hardcoded protocols; and physically encapsulating the secure processor and secure storage within a secure unit. - View Dependent Claims (22, 23)
-
-
24. A method for providing secure processing and data storage for a wireless communication device, comprising:
-
receiving a first message to initiate a secure transaction with a foreign entity; authenticating the foreign entity through a secure processor located within the communication device; and if the foreign entity is authenticated, performing securing processing for the secure transaction through the secure processor, wherein the secure unit is physically encapsulated within a secure module and further configured to prevents unauthorized accesses to the secure memory via hardcoded protocols, and providing control for the communication device through a main processor. - View Dependent Claims (25, 26)
-
Specification