Accelerating integrity checks of code and data stored in non-volatile memory

US 7,743,239 B2
Filed: 06/30/2006
Issued: 06/22/2010
Est. Priority Date: 06/30/2006
Status: Active Grant

First Claim

Patent Images

1. A method comprising:

receiving in a host a list of protected and unprotected ranges of non-volatile memory; and

reducing the processing to determine authenticity when accessing a protected memory range of the non-volatile memory compared to when accessing an unprotected range of said memory by using a measurement done for data in the past to authenticate different data thereafter.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

In some embodiments, a command may be used by a host processor to access certain information from a non-volatile memory, together with a message authentication code. That information may be utilized to generate a message authentication code on the processor. Then, in any future accesses, the message authentication code generated by the host processor may be compared to the message authentication code from the non-volatile memory to determine the integrity of data or code that is received from the non-volatile memory.

6 Citations

View as Search Results

19 Claims

1. A method comprising:
- receiving in a host a list of protected and unprotected ranges of non-volatile memory; and
  
  reducing the processing to determine authenticity when accessing a protected memory range of the non-volatile memory compared to when accessing an unprotected range of said memory by using a measurement done for data in the past to authenticate different data thereafter.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
- - 2. The method of claim 1 comprising:
    - authenticating data from the non-volatile memory using a host that receives information from the non-volatile memory together with a message authentication code;
      
      calculating a message authentication code on the host; and
      
      comparing the host generated message authentication code to the non-volatile memory generated authentication code.
  - 3. The method of claim 1 including generating access control information including information about whether particular ranges of the memory are write protected.
  - 4. The method of claim 3 including maintaining a table of the write protection status of different memory ranges.
  - 5. The method of claim 4 including initially providing write protection status information to a host processor.
  - 6. The method of claim 5 including providing write protection status information only once and reusing the information thereafter.
  - 7. The method of claim 6 including providing the access control information in response to a special command received from a host.
  - 8. The method of claim 7 including maintaining the access control information in a limited access region within the non-volatile memory.
  - 9. The method of claim 1 including maintaining a non-volatile memory having some regions which are write protected and other regions which are not write protected and keeping the write protection status of said regions within access control information.

10. A computer readable medium storing instructions that, when executed, enable a host processor-based system to:
- receive a list of protected and unprotected ranges of non-volatile memory; and
  
  reduce the processing to determine authenticity when accessing a protected memory range of the non-volatile memory compared to when accessing an unprotected range of said memory by using a previous measurement done for data in the past to authenticate different data thereafter.
- View Dependent Claims (11, 12, 13, 14, 15)
- - 11. The medium of claim 10 further storing instructions to:
    - authenticate data from the non-volatile memory using information from the non-volatile memory together with a message authentication code;
      
      calculate a message authentication code; and
      
      compare the host generated message authentication code to the non-volatile memory generated authentication code.
  - 12. The medium of claim 10 further storing instructions to generate access control information including information about whether particular ranges of tbe memory are write protected.
  - 13. The medium of claim 12 further storing instructions to maintain a table of the write protection status of different memory ranges.
  - 14. The medium of claim 13 further storing instructions to reuse previously provided write protection status information.
  - 15. The medium of claim 14 further storing instructions to obtain the access control information by sending a special command to the non-volatile memory.

16. A system comprising:
- a host processor;
  
  a non-volatile memory;
  
  a memory bus coupled between the host processor and the non-volatile memory; and
  
  the non-volatile memory to store a list of protected and unprotected ranges within said memory, said protected ranges being protected against writes and said unprotected ranges being unprotected against writes, wherein said non-volatile memory to store access control information including information about whether a particular range of memory is write protected.
- View Dependent Claims (17, 18, 19)
- - 17. The system of claim 16 wherein said host processor to authenticate data from the non-volatile memory using information from the non-volatile memory together with a message authentication code, calculate a method of authentication code, and compare a host generated message authentication code to a non-volatile memory generated at the authentication code.
  - 18. The system of claim 16 wherein said access control information is maintained as a table that indicates the write protection status of different non-volatile memory ranges.
  - 19. The system of claim 18 wherein said access control information is accessible only in response to a special command received from said host processor.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Intel NDTM US LLC (Intel Corporation)
Original Assignee
Intel Corporation
Inventors
Ahlquist, Brent M.
Primary Examiner(s)
ELAMIN, ABDELMONIEM I

Application Number

US11/480,308
Publication Number

US 20080005587A1
Time in Patent Office

1,453 Days
Field of Search

713/1, 713/165, 713/189, 713/190, 717/114, 726/27, 726/32, 710/260, 705/1, 711/103
US Class Current

713/1
CPC Class Codes

G06F 12/1441 for a range

G06F 2212/2022 Flash memory

Accelerating integrity checks of code and data stored in non-volatile memory

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

6 Citations

19 Claims

Specification

Solutions

Use Cases

Quick Links

Accelerating integrity checks of code and data stored in non-volatile memory

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

6 Citations

19 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links