Authenticated process switching on a microprocessor
First Claim
1. A microprocessor executing a program including a plurality of processes, the microprocessor comprising:
- a first information acquiring unit which acquires, from outside the microprocessor, second process identification information for identifying a second process to be executed by a first process and first authentication information for authenticating the second process;
a first information holding unit which holds the second process identification information, the first authentication information and a program key so that the second process identification information, the first authentication information and the program key are associated with each other;
a second information acquiring unit which acquires the second process identification information from the first information holding unit, and which acquires the first authentication information as second authentication information for authenticating the second process, which is associated with the program key or is calculated by using the program key, from the first information holding unit, when the first process is executed;
a second information holding unit which denies access from outside the microprocessor, and holds the second process identification information and the second authentication information so that the second process identification information and the second authentication information are associated with each other; and
a switching authorization unit which compares, upon issuance of an instruction for switching from the first process to the second process, the first authentication information held on the first information holding unit at the time when the instruction is issued with the second authentication information, and allows, when the first authentication information and the second authentication information match, switching from the first process to the second process.
1 Assignment
0 Petitions
Accused Products
Abstract
A microprocessor includes a first information holding unit, a second information holding unit, and a switching authorization unit. The first information holding unit holds process identification information and authentication information which are associated with each other. The second information holding unit denies access from outside, and holds entry information of a process and the authentication information which are associated with each other. The switching authorization unit allows switching process when the authentication information held in the first information holding unit with the authentication information held in the second information holding unit match.
32 Citations
19 Claims
-
1. A microprocessor executing a program including a plurality of processes, the microprocessor comprising:
-
a first information acquiring unit which acquires, from outside the microprocessor, second process identification information for identifying a second process to be executed by a first process and first authentication information for authenticating the second process; a first information holding unit which holds the second process identification information, the first authentication information and a program key so that the second process identification information, the first authentication information and the program key are associated with each other; a second information acquiring unit which acquires the second process identification information from the first information holding unit, and which acquires the first authentication information as second authentication information for authenticating the second process, which is associated with the program key or is calculated by using the program key, from the first information holding unit, when the first process is executed; a second information holding unit which denies access from outside the microprocessor, and holds the second process identification information and the second authentication information so that the second process identification information and the second authentication information are associated with each other; and a switching authorization unit which compares, upon issuance of an instruction for switching from the first process to the second process, the first authentication information held on the first information holding unit at the time when the instruction is issued with the second authentication information, and allows, when the first authentication information and the second authentication information match, switching from the first process to the second process. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. A method of executing a program including a plurality of processes, the method comprising:
-
acquiring, from outside the microprocessor, second process identification information for identifying a second process to be executed by a first process and first authentication information for authenticating the second process; storing, in a first information holding unit, the second process identification Information, the first authentication information and a program key so that the second process identification information, the first authentication information and the program key are associated with each other; acquiring, from the first information holding unit, the first authentication information as second authentication information for authenticating the second process, which is associated with the program key or is calculated by using the program key and the second process identification information, when the first process is executed; storing, in a second information holding unit which denies access from outside the microprocessor, the second process identification information and the second authentication information so that the second process identification information and the second authentication information are associated with each other; and comparing, upon issuance of an instruction for switching from the first process to the second process, the first authentication information held on the first information holding unit at the time when the instruction is issued with the second authentication information; and allowing, when the first authentication information and the second authentication information match, switching from the first process to the second process. - View Dependent Claims (11, 12, 13, 14, 15, 16, 17, 18)
-
-
19. A microprocessor executing a program including a plurality of processes, the microprocessor comprising:
-
first information acquiring means for acquiring, from outside the microprocessor, second process identification information for identifying a second process to be executed by a first process and first authentication information for authenticating the second process; first information holding means for holding the second process identification Information, the first authentication information and a program key so that the second process identification information, the first authentication information and the program key are associated with each other; second information acquiring means for acquiring the second process identification information from the first information holding means, and for acquiring the first authentication information as second authentication information for authenticating the second process, which is associated with the program key or is calculated by using the program key, from the first information holding means, when the first process is executed; second information holding means, which denies access from outside the microprocessor, for holding the second process identification information and the second authentication information so that the second process identification information and the second authentication information are associated with each other; and switching authorization means for comparing, upon issuance of an instruction for switching from the first process to the second process, the first authentication information held on the first information holding means at the time when the instruction is issued with the second authentication information, and for allowing, when the first authentication information and the second authentication information match, switching from the first process to the second process.
-
Specification