Apparatus and method for distributing private keys to an entity with minimal secret, unique information
First Claim
Patent Images
1. A method comprising:
- programming a chip secret key into a manufactured chip;
sending the manufactured chip to a system original equipment manufacturer (OEM); and
generating at least one private key for the manufactured chip in response to a received key update request, issued by the manufactured chip, if the received key update request is authenticated, to enable authentication of the manufactured chip without disclosure of the private key or any unique device identification information of the manufactured chip,wherein the key update request is issued by the manufactured chip in response to chip initialization.
1 Assignment
0 Petitions
Accused Products
Abstract
In some embodiments, a method and apparatus for distributing private keys to an entity with minimal secret, unique information are described. In one embodiment, the method includes the storage of a chip secret key within a manufactured chip. Once the chip secret key is stored or programmed within the chip, the chip is sent to a system original equipment manufacturer (OEM) in order to integrate the chip within a system or device. Subsequently, a private key is generated for the chip by a key distribution facility (KDF) according to a key request received from the system OEM. In one embodiment, the KDF is the chip manufacturer. Other embodiments are described and claims.
-
Citations
14 Claims
-
1. A method comprising:
-
programming a chip secret key into a manufactured chip; sending the manufactured chip to a system original equipment manufacturer (OEM); and generating at least one private key for the manufactured chip in response to a received key update request, issued by the manufactured chip, if the received key update request is authenticated, to enable authentication of the manufactured chip without disclosure of the private key or any unique device identification information of the manufactured chip, wherein the key update request is issued by the manufactured chip in response to chip initialization. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. An article of manufacture including a computer readable storage medium having stored thereon instructions which may be used to program a system to perform a method, comprising:
-
programming a chip secret key into a manufactured chip; sending the manufactured chip to a system original equipment manufacturer (OEM); and generating at least one private key for the manufactured chip in response to a received key update request, issued by the manufactured chip, if the received key update request is authenticated, to enable authentication of the manufactured chip without disclosure of the private key or any unique device identification information of the manufactured chip, wherein the key update request is issued by the manufactured chip in response to chip initialization. - View Dependent Claims (9, 10, 11)
-
-
12. An integrated chip, comprising:
- key request logic to generate a key update request using a preprogrammed chip secret key stored within the integrated chip to receive at least one private key from a key distribution facility (KDF) if the key update request is authenticated by the KDF; and
authentication logic to perform authentication with a content protection application to receive protected content using a received digital certificate to avoid disclosing the identity of the integrated chip during the authentication; and
a first cryptographic block to decrypt received initialization cipher text using the chip secret key to form a chip ID, the at least one private key and a digital certificate. - View Dependent Claims (13, 14)
- key request logic to generate a key update request using a preprogrammed chip secret key stored within the integrated chip to receive at least one private key from a key distribution facility (KDF) if the key update request is authenticated by the KDF; and
Specification