Program development method, program development supporting system, and program installation method

US 7,685,435 B2
Filed: 07/23/2003
Issued: 03/23/2010
Est. Priority Date: 07/24/2002
Status: Active Grant

First Claim

Patent Images

1. A method for developing a program which is to be installed in a system having an LSI device, the LSI device having a secure memory which includes an unrewritable area, the method comprising the steps of:

providing another LSI device having the same structure as that of the LSI device;

setting the provided LSI device to a development mode based on an inherent and permanent key information for the development mode, which is implemented in the unrewritable area of the LSI device in advance, so that the provided LSI device is used as a development LSI device, the development mode being different from a product operation mode employed at the times of program installation and product operation, the inherent and permanent key information for the development mode being different from an inherent and permanent key information for the product operation mode; and

developing the program on the development LSI device.

View all claims

3 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

An development environment of a high security level is provided for a key-installed system. Development of a program for a system having an LSI device which includes a secure memory is performed by providing another LSI device having the same structure and setting the provided LSI device to a development mode which is different from a product operation mode. Alternatively, the provided LSI device is set to an administrator mode to perform development and encryption of a key-generation program. The LSI device is set to a key-generation mode to execute the encrypted key-generation program, thereby generating various keys.

61 Citations

View as Search Results

12 Claims

1. A method for developing a program which is to be installed in a system having an LSI device, the LSI device having a secure memory which includes an unrewritable area, the method comprising the steps of:
- providing another LSI device having the same structure as that of the LSI device;
  
  setting the provided LSI device to a development mode based on an inherent and permanent key information for the development mode, which is implemented in the unrewritable area of the LSI device in advance, so that the provided LSI device is used as a development LSI device, the development mode being different from a product operation mode employed at the times of program installation and product operation, the inherent and permanent key information for the development mode being different from an inherent and permanent key information for the product operation mode; and
  
  developing the program on the development LSI device.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 12)
- - 2. The method of claim 1, wherein the operation of the provided LSI device is restricted such that when being set to the development mode, the provided LSI device can execute a raw (binary) program, and when being set to the product operation mode, the provided LSI device cannot execute a raw (binary) program with an executable form but can execute an encrypted program.
  - 3. The method of claim 1, further comprising the step of encrypting the program developed on the development LSI device at the program development step.
  - 4. The method of claim 1, wherein the operation of the LSI device is restricted such that when being set to the development mode, the LSI device cannot generate a key for encrypting a raw (binary) program.
  - 5. The method of claim 1, further comprising the steps of:
    - providing an LSI device having the same structure as that of the LSI device;
      
      setting the provided LSI device to a key-generation mode so that the provided LSI device is used as an key-generation LSI device, the key-generation mode being different from the development mode and the product operation mode; and
      
      installing an encrypted key-generation program in the key-generation LSI device and executing the key-generation program to generate a key.
  - 6. The method of claim 5, wherein the operation of the LSI device is restricted such that when being set to the key-generation mode, the LSI device cannot execute a raw (binary) program.
  - 7. The method of claim 5, further comprising the steps of:
    - providing an LSI device having the same structure as that of the LSI device;
      
      setting the provided LSI device to an administrator mode so that the provided LSI device is used as an administrator LSI device, the administrator mode being different from the development mode, the product operation mode, and the key-generation mode; and
      
      developing the key-generation program and encrypting the developed key-generation program with any key on the administrator LSI device.
  - 12. The method of claim 1, wherein the inherent and permanent key information is not outputted from the LSI device in both the development mode and the product operation mode.

8. A program development supporting system for supporting development of an encrypted program which is to be installed in a system having an LSI device, the LSI device having a secure memory which includes an unrewritable area, the system comprising:
- a development LSI device having the same structure as that of the LSI device on which the encrypted program runs; and
  
  an external memory for storing a raw (binary) program, whereinthe development LSI device includes a secure memory for storing encrypted common key information regarding a raw common key different from an inherent and permanent key used for product operation mode, which is implemented in the LSI device in advance, andthe development LSI device is capable of executinga first step of obtaining the raw common key from the common key information stored in the secure memory, anda second step of encrypting the raw (binary) program input from the external memory using the raw common key.

9. A program development supporting system for supporting development of an encrypted program, comprising:
- a development LSI device having the same structure as that of an LSI device on which the encrypted program runs; and
  
  an external memory for storing a raw (binary) program, whereinthe development LSI device includes a secure memory for storing common key information regarding a raw common key, andthe development LSI device is capable of executinga first step of obtaining the raw common key from the common key information stored in the secure memory, anda second step of encrypting the raw (binary) program input from the external memory using the raw common key,wherein;
  
  the common key information includes an encrypted common key which is obtained by encrypting the raw common key with a raw first intermediate key and an encrypted first intermediate key which is obtained by encrypting the raw first intermediate key with a second intermediate key; and
  
  the first step includes the step of obtaining the raw common key using the encrypted common key, the encrypted first intermediate key and a program encryption seed.

10. A program development supporting system for supporting development of an encrypted program which is to be installed in a system having an LSI device, the LSI device having a secure memory which includes an unrewritable area, the system comprising:
- a development LSI device having the same structure as that of an LSI device on which the encrypted program runs; and
  
  an external memory for storing a raw (binary) program, whereinthe development LSI device includesa secure memory for storing encrypted common key information regarding a raw common key different from an inherent and permanent key used for product operation mode, which is implemented in the LSI device in advance, anda boot ROM for storing a boot program, andby executing the boot program stored in the boot ROM, the development LSI device executesa first step of obtaining a raw common key from the common key information stored in the secure memory, anda second step of encrypting the raw (binary) program input from the external memory using the raw common key.

11. A program development supporting system for supporting development of an encrypted program, comprising:
- a development LSI device having the same structure as that of an LSI device on which the encrypted program runs; and
  
  an external memory for storing a raw (binary) program, whereinthe development LSI device includesa secure memory for storing common key information regarding a raw common key, anda boot ROM for storing a boot program, andby executing the boot program stored in the boot ROM, the development LSI device executesa first step of obtaining a raw common key from the common key information stored in the secure memory, anda second step of encrypting the raw (binary) program input from the external memory using the raw common key,wherein;
  
  the common key information includes an encrypted common key which is obtained by encrypting the raw common key with a raw first intermediate key and an encrypted first intermediate key which is obtained by encrypting the raw first intermediate key with a second intermediate key; and
  
  the first step includes the step of obtaining the raw common key using the encrypted common key, the encrypted first intermediate key and a program encryption seed.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Panasonic Semiconductor Solutions Co., Ltd. (Winbond Electronics Corporation)
Original Assignee
Panasonic Corporation (Panasonic Holdings Corporation)
Inventors
Inoue, Shinji, Maeda, Takuji, Ito, Takayuki, Nemoto, Yusuke, Yamada, Yasushi, Fujiwara, Makoto, Yasui, Junichi
Primary Examiner(s)
Kim; Jung
Assistant Examiner(s)
Lemma; Samson B

Application Number

US10/624,481
Publication Number

US 20040153657A1
Time in Patent Office

2,435 Days
Field of Search

713/191, 713/193, 726/34
US Class Current

713/191
CPC Class Codes

G06F 21/575   Secure boot

G06F 21/72   in cryptographic circuits

G06F 2221/2105   Dual mode as a secondary as...

G06F 8/60   Software deployment

Program development method, program development supporting system, and program installation method

First Claim

3 Assignments

0 Petitions

Accused Products

Abstract

61 Citations

12 Claims

Specification

Solutions

Use Cases

Quick Links

Program development method, program development supporting system, and program installation method

First Claim

3 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

61 Citations

12 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links