System and method for cryptographic control of system configurations

US 7,469,338 B2
Filed: 07/29/2002
Issued: 12/23/2008
Est. Priority Date: 07/29/2002
Status: Active Grant

First Claim

Patent Images

1. A method of configuring a system, comprising the steps of:

authenticating configuration information comprising one or more indications denoting export or domestic key encryption;

storing the configuration information; and

configuring the security of the system according to the configuration information, by designating one of at least two available modes of encryption, the modes comprising strong encryption and weak encryption,wherein the ability to configure the security of the system according to the configuration information comprises the ability to (a) modify a processing power of the system by enabling or disabling one or more parallel computational components in response to the configuration information and (b) adjust a clock speed in response to the configuration information.

View all claims

7 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Systems and methods are disclosed for using cryptographic techniques to configure data processing systems. A configuration manager cryptographically controls the configuration of a system by ensuring that only authorized users or applications can change the configuration. For example, requests to change configuration information may include authenticated and/or encrypted data. These cryptographic techniques are employed to enable and/or disable functions, features and capabilities of a system. For example, a system may be reconfigured to provide strong or weak encryption based on parameters in the configuration information.

33 Citations

View as Search Results

13 Claims

1. A method of configuring a system, comprising the steps of:
- authenticating configuration information comprising one or more indications denoting export or domestic key encryption;
  
  storing the configuration information; and
  
  configuring the security of the system according to the configuration information, by designating one of at least two available modes of encryption, the modes comprising strong encryption and weak encryption,wherein the ability to configure the security of the system according to the configuration information comprises the ability to (a) modify a processing power of the system by enabling or disabling one or more parallel computational components in response to the configuration information and (b) adjust a clock speed in response to the configuration information.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
- - 2. The method of claim 1 wherein the step of configuring the system comprises the step of enabling a process component in the system.
  - 3. The method of claim 1 further comprises the step of decrypting the configuration information.
  - 4. The method of claim 1 wherein the step of configuring the system comprises the step of modifying a processing speed of the system.
  - 5. The method of claim 1 wherein the step of configuring the system comprises the step of disabling modifications of the configured information.
  - 6. The method of claim 1 wherein the the strong encryption is one of the group consisting of triple Data Encryption Standard and Advanced Encryption Standard.
  - 7. The method of claim 1 wherein the strong encryption is associated with at least one key comprising at least 65 bits.
  - 8. The method of claim 1 further comprising the step of encrypting data using at least one key comprising at least 65 bits.
  - 9. The method of claim 1 wherein said configuring comprises:
    - defining an upgrade utility for generating at least one message comprising the configuration information, the configuration information comprising one or more indications denoting one of the export or domestic key encryption, the message encrypted with a cipher key;
      
      receiving registration information from at least one requester;
      
      sending the registration information to an export compliance authority;
      
      verifying the registration information; and
      
      sending the upgrade utility to the at least one requesterwherein said upgrade utility is used for enabling a strong encryption on the system.

10. A method of configuring a system, comprising the steps of:
- defining at least one cipher key;
  
  encrypting, using the at least one cipher key, data associated with configuration information;
  
  decrypting, using the at least one cipher key, the data associated with configuration information comprising one or more indications denoting export or domestic key encryption;
  
  storing the configuration information; and
  
  configuring the security of the system according to the configuration information, by designating one of at least two available modes of encryption, the modes comprising strong encryption and weak encryption,wherein the ability to configure the security of the system according to the configuration information comprises the ability to (a) modify a processing power of the system by enabling ot disabling one or more parallel computational components in response to the configuration information and (b) adjust a clock speed in response to the configuration information.
- View Dependent Claims (11, 12, 13)
- - 11. A method of claim 10 wherein the steps of defining at least one cipher key comprises the step of defining at least one symmetric key.
  - 12. The method of claim 10 wherein the step of defining at least one cipher key comprises the step of defining at least one asymmetric key.
  - 13. The method of claim 10 further comprising the step of storing the at least one cipher key in a non-volatile data memory.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Avago Technologies International Sales Pte Limited (Broadcom, Inc.)
Original Assignee
Broadcom Corporation (Broadcom, Inc.)
Inventors
Buer, Mark L.
Primary Examiner(s)
Revak; Christopher A
Assistant Examiner(s)
Sherkat; Arezoo

Application Number

US10/207,332
Publication Number

US 20040019789A1
Time in Patent Office

2,339 Days
Field of Search

None
US Class Current

713/170
CPC Class Codes

G06F 21/57 Certifying or maintaining t...

System and method for cryptographic control of system configurations

First Claim

7 Assignments

0 Petitions

Accused Products

Abstract

33 Citations

13 Claims

Specification

Solutions

Use Cases

Quick Links

System and method for cryptographic control of system configurations

First Claim

7 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

33 Citations

13 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links