Tamper resistant module certification authority
First Claim
1. Apparatus comprising:
- at least one tamper resistant module (TRM), a software application to be loaded onto a TRM, and means for determining whether a TRM is qualified to accept the loading of said application onto said TRM, wherein each TRM comprises TRM personalization data, and said application is assigned application permissions data representing at least one TRM upon which said application is permitted to be loaded.
4 Assignments
0 Petitions
Accused Products
Abstract
Methods and apparati for securely loading one or more computer software applications onto a tamper resistant module (TRM) (107) and for securely deleting one or more applications from the TRM. An embodiment of the invention comprises a method for determining, based at least upon an encrypted personalization data block, whether a TRM (107) is part of a qualified set of TRM'"'"'s to accept loading of an application. Thereafter, the method provides for loading the application onto the TRM (107) only after the first step determines that the TRM (107) is qualified to accept the loading of the application. Another embodiment comprises a method for determining, based at least upon an encrypted personalization data block, whether a TRM (107) is part of a qualified set of TRM'"'"'s to accept deleting of an application. Thereafter, the method provides for deleting the application from the TRM (107) only when the first step determines that the TRM (107) is qualified to accept the deleting of the application.
157 Citations
25 Claims
-
1. Apparatus comprising:
at least one tamper resistant module (TRM), a software application to be loaded onto a TRM, and means for determining whether a TRM is qualified to accept the loading of said application onto said TRM, wherein each TRM comprises TRM personalization data, and said application is assigned application permissions data representing at least one TRM upon which said application is permitted to be loaded. - View Dependent Claims (2, 3, 4, 5, 6)
-
7. A method for loading a software application onto a TRM, said method comprising:
determining whether said TRM is qualified to accept the loading of said application onto said TRM, wherein said determining step comprises the substeps of; providing said TRM with personalization data; assigning to said application permissions data representing at least one set of TRM'"'"'s upon which said application is permitted to be loaded; comparing said personalization data with said permissions data; and loading said application onto said TRM, provided said personalization data falls within said set of TRM'"'"'s upon which said application is permitted to be loaded. - View Dependent Claims (8, 9, 10, 11, 12, 13, 14, 15, 16)
-
17. A method for deleting a software application from a TRM, said method comprising the steps of:
determining whether said TRM is qualified to delete said application based upon permissions data associated with said application, wherein said determining step comprises the substeps of; providing said TRM with personalization data; assigning to said application permissions data representing at least one set of TRM'"'"'s from which said application is permitted to be deleted; comparing said personalization data with said permissions data; and deleting said application from said TRM provided said personalization data falls within said set of TRM'"'"'s from which said application is permitted to be deleted. - View Dependent Claims (18, 19, 20, 21)
-
22. Apparatus comprising:
-
at least one tamper resistant module (TRM); a software application to be deleted from said TRM; and means for determining whether a TRM is qualified to delete said application from said TRM, wherein each TRM comprises TRM personalization data, and said application is assigned application permissions data representing at least one TRM from which said application is permitted to be deleted. - View Dependent Claims (23, 24)
-
-
25. Apparatus comprising:
a personal computer (PC) having at least one tamper resistant module (TRM), a software application to be loaded onto a PC and TRM combination (PC/TRM), and means for determining whether a PC/TRM is qualified to accept the loading of said application onto said PC/TRM, wherein each PC/TRM comprises PC/TRM personalization data, and said application is assigned application permissions data representing at least one PC/TRM upon which said application is permitted to be loaded.
Specification