Methods and apparatuses for configuring products

US 8,151,110 B2
Filed: 12/22/2005
Issued: 04/03/2012
Est. Priority Date: 08/05/2004
Status: Active Grant

First Claim

Patent Images

1. A method of manufacturing a product, the method comprising:

establishing a connection between a data processing system and the product while the product is being manufactured;

selecting a first executable code for the product, the first executable code being one of a plurality of different executable codes including at least a second executable code, the first executable code comprising first executable instructions to encrypt and decrypt a first product identifier information, the second executable code comprising second executable instructions to encrypt and decrypt a second product identifier information;

encrypting a first set of identifier information according to the first executable code;

encrypting a second set of identifier information according to the second executable code;

loading, while the product is being manufactured, the first set of encrypted identifier information in a format compatible with the first executable code into the product;

loading, while the product is being manufactured, the first executable code into the product, wherein the first set of encrypted identifier information is decryptable by the first executable code, but not decryptable by the second executable code, wherein the first executable code is capable of decrypting, modifying and re-encrypting the first set of identifier information in a manner that is not compatible with the second executable code;

loading, while another product is being manufactured, the second set of encrypted identifier information in a format compatible with the second executable code into the another product; and

loading, while the another product is being manufactured, the second executable code into the another product, wherein the second set of encrypted identifier information is decryptable by the second executable code, but not decryptable by the first executable code, wherein the second executable code is capable of decrypting, modifying and re-encrypting the second set of identifier information in a manner that is not compatible with the first executable code.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Methods and apparatuses for configuring products for security. In one aspect, a method of manufacturing a device, includes: determining a first executable code for the device, the first executable code being one of a plurality of different executable codes that are capable of being executed on the device, the plurality of executable codes having a same overall functionality but different operations which generates different results from same input data; and loading the first executable code into the device. In one embodiment, a connection between a data processing system and the device is established while the device is being manufactured; and the connection is used to load the first executable code and a new set of identifier information in a format compatible with the first executable code into the device. For example, the connection includes a secure authenticated channel established using an initial set of identifier information stored in the device.

17 Citations

View as Search Results

32 Claims

1. A method of manufacturing a product, the method comprising:
- establishing a connection between a data processing system and the product while the product is being manufactured;
  
  selecting a first executable code for the product, the first executable code being one of a plurality of different executable codes including at least a second executable code, the first executable code comprising first executable instructions to encrypt and decrypt a first product identifier information, the second executable code comprising second executable instructions to encrypt and decrypt a second product identifier information;
  
  encrypting a first set of identifier information according to the first executable code;
  
  encrypting a second set of identifier information according to the second executable code;
  
  loading, while the product is being manufactured, the first set of encrypted identifier information in a format compatible with the first executable code into the product;
  
  loading, while the product is being manufactured, the first executable code into the product, wherein the first set of encrypted identifier information is decryptable by the first executable code, but not decryptable by the second executable code, wherein the first executable code is capable of decrypting, modifying and re-encrypting the first set of identifier information in a manner that is not compatible with the second executable code;
  
  loading, while another product is being manufactured, the second set of encrypted identifier information in a format compatible with the second executable code into the another product; and
  
  loading, while the another product is being manufactured, the second executable code into the another product, wherein the second set of encrypted identifier information is decryptable by the second executable code, but not decryptable by the first executable code, wherein the second executable code is capable of decrypting, modifying and re-encrypting the second set of identifier information in a manner that is not compatible with the first executable code.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
- - 2. The method of claim 1, wherein the first set of identifier information is capable of being used to control distribution of media which is received by the product;
    - wherein the first set of identifier information is unique relative to other products which are otherwise the same as the product; and
      
      wherein the first set of identifier information is used to decrypt or descramble media received by the product when in use.
  - 3. The method of claim 1, wherein the determining the first executable code for the product comprises:
    - randomly selecting a first compilation key from a plurality of different compilation keys; and
      
      modifying a reference execution code according to the first compilation key to generate the first executable code.
  - 4. The method of claim 1, wherein the determining the first executable code for the product comprises:
    - randomly selecting a first compilation key from a plurality of different compilation keys; and
      
      selecting the first executable code from the plurality of executable codes according to the first compilation key;
      
      wherein the plurality of executable codes are generated according to the plurality of compilation keys respectively.
  - 5. The method of claim 1, wherein the plurality of executable codes have a same overall functionality but different operations which generate different results from same input data.
  - 6. The method of claim 1, wherein the plurality of different executable codes have different instructions to perform different algorithmic operations.
  - 7. The method of claim 1, wherein the plurality of different executable codes have differences in multiple locations in instruction sequences.
  - 8. The method of claim 1, wherein each of the plurality of executable codes computes a key for decrypting identifier information stored on a product using a different algorithm which generates a different result from same input data;
    - and the first set of identifier information in the format is decryptable with a key computed using the first executable code but not decryptable using a key computed using one of the plurality of executable codes that is different from the first executable code.
  - 9. The method of claim 2, further comprising:
    - verifying that an initial set of identifier information stored within the product is valid to establish a secure authenticated channel;
      
      wherein the loading the first set of identifier information is in response to validly verifying the initial set of identifier information; and
      
      wherein the loading the first set of identifier information is secured through the verifying of the initial set of identifier information.
  - 10. The method of claim 3, wherein the modifying includes modifying multiple separate locations in the second execution code according to the first compilation key.

11. A method to configure a device, the method comprising:
- selecting a first executable code for the device, the first executable code being one of a plurality of different executable codes including at least a second executable code that are capable of being executed on the device, the plurality of executable codes having a same overall functionality but different operations which generate different results from same input data, the first executable code comprising first executable instructions to encrypt and decrypt a first product identifier information, the second executable code comprising second executable instructions to encrypt and decrypt a second product identifier information;
  
  encrypting a first set of identifier information according to the first executable code;
  
  encrypting a second set of identifier information according to the second executable code;
  
  loading, while the device is being manufactured, the first executable code into the device, wherein the first set of encrypted identifier information is decryptable by the first executable code, but not decryptable by the second executable code, wherein the first executable code is capable of decrypting, modifying, and re-encrypting the first set of identifier information in a manner that is not compatible with the second executable code;
  
  loading, while another product is being manufactured, the second set of encrypted identifier information in a format compatible with the second executable code into the another product; and
  
  loading, while the another product is being manufactured, the second executable code into the another product, wherein the second set of encrypted identifier information is decryptable by the second executable code, but not decryptable by the first executable code, wherein the second executable code is capable of decrypting, modifying and re-encrypting the second set of identifier information in a manner that is not compatible with the first executable code.
- View Dependent Claims (12, 13, 14, 15, 16)
- - 12. The method of claim 11, wherein the first executable code is a random one from the plurality of different executable codes.
  - 13. The method of claim 11, further comprising:
    - verifying that an initial set of identifier information stored within the device is valid to establish a secure authenticated channel; and
      
      loading a new set of identifier information in a first format compatible with the first executable code into the device over the secure authenticated channel;
      
      wherein the first executable code is loaded into the device over the secure authenticated channel.
  - 14. The method of claim 11, further comprising:
    - loading data in a first format into the device, the first format being one of a plurality of different formats, the first executable code being compatible with the first format, any of the plurality of different executable codes other than the first executable being not compatible with the first format.
  - 15. The method of claim 12, further comprising:
    - randomly selecting a first set of information from a plurality of sets of information;
      
      wherein the first executable code is generated based on the first set of information; and
      
      wherein the plurality of different executable codes are generated based on the plurality of sets of information respectively.
  - 16. The method of claim 13, wherein any one of the plurality of different executable codes other than the first executable code is not compatible with the first format;
    - and the first format is an encrypted format.

17. A machine readable storage medium storing executable computer program instructions which when executed by a data processing system cause said system to perform a method for manufacturing a product, the method comprising:
- establishing a connection between the data processing system and the product while the product is being manufactured;
  
  selecting a first executable code for the product, the first executable code being one of a plurality of different executable codes including at least a second executable code, the first executable code comprising first executable instructions to encrypt and decrypt a first product identifier information, the second executable code comprising second executable instructions to encrypt and decrypt a second product identifier information;
  
  encrypting a first set of identifier information according to the first executable code;
  
  encrypting a second set of identifier information according to the second executable code;
  
  loading, while the product is being manufactured, the first set of identifier information in a format compatible with the first executable code into the product; and
  
  loading, while the product is being manufactured, the first executable code into the product, wherein the first set of encrypted identifier information is decryptable by the first executable code, but not decryptable by the second executable code, wherein the first executable code is capable of decrypting, modifying, and re-encrypting the first set of identifier information in a manner that is not compatible with the second executable codeloading, while another product is being manufactured, the second set of encrypted identifier information in a format compatible with the second executable code into the another product; and
  
  loading, while the another product is being manufactured, the second executable code into the another product, wherein the second set of encrypted identifier information is decryptable by the second executable code, but not decryptable by the first executable code, wherein the second executable code is capable of decrypting, modifying and re-encrypting the second set of identifier information in a manner that is not compatible with the first executable code.
- View Dependent Claims (18, 19, 20, 21)
- - 18. The medium of claim 17, wherein the first set of identifier information is capable of being used to control distribution of media which is received by the product;
    - wherein the first set of identifier information is unique relative to other products which are otherwise the same as the product; and
      
      wherein the first set of identifier information is used to decrypt or descramble media received by the product when in use.
  - 19. The medium of claim 17, wherein the determining the first executable code for the product comprises:
    - randomly selecting a first compilation key from a plurality of different compilation keys;
      
      wherein the plurality of executable codes are generated according to the plurality of compilation keys respectively; and
      
      wherein the plurality of executable codes have a same overall functionality but different operations which generate different results from same input data.
  - 20. The medium of claim 19, wherein the determining the first executable code for the product further comprises:
    - modifying multiple separate locations in a second execution code according to the first compilation key to generate the first executable code.
  - 21. The medium of claim 19, wherein the determining the first executable code for the product further comprises:
    - selecting the first executable code from the plurality of executable codes according to the first compilation key.

22. A machine readable storage medium storing executable computer program instructions which when executed by a data processing system cause said system to perform a method to configure a device, the method comprising:
- selecting a first executable code for the device, the first executable code being one of a plurality of different executable codes including at least a second executable code that are capable of being executed on the device, the plurality of executable codes having a same overall functionality but different operations which generate different results from same input data, the first executable code comprising first executable instructions to encrypt and decrypt a first product identifier information, the second executable code comprising second executable instructions to encrypt and decrypt a second product identifier information;
  
  encrypting a first set of identifier information according to the first executable code;
  
  encrypting a second set of identifier information according to the second executable code;
  
  andloading, while the device is being manufactured, the first executable code into the device, wherein the first set of encrypted identifier information is decryptable by the first executable code, but not decryptable by the second executable code, wherein the first executable code is capable of decrypting, modifying, and re-encrypting the first set of identifier information in a manner that is not compatible with the second executable code.
- View Dependent Claims (23, 24)
- - 23. The medium of claim 22, wherein the first executable code is a random one from the plurality of different executable codes;
    - and wherein the method further comprises;
      
      randomly selecting a first set of information from a plurality of sets of information;
      
      wherein the first executable code is generated based on the first set of information;
      
      wherein the plurality of different executable codes are generated based on the plurality of sets of information respectively; and
      
      the plurality of different executable codes occupy a substantially same size of storage space.
  - 24. The medium of claim 22, wherein the method further comprises:
    - verifying that an initial set of identifier information stored within the device is valid to establish a secure authenticated channel; and
      
      loading a new set of identifier information in a first format compatible with the first executable code into the device over the secure authenticated channel;
      
      wherein the first executable code is loaded into the device over the secure authenticated channel; and
      
      wherein any one of the plurality of different executable codes other than the first executable code is not compatible with the first format.

25. A system for manufacturing a product, the system comprising:
- means for establishing a connection between a data processing system and the product while the product is being manufactured, wherein the means for establishing includes a processor;
  
  means for selecting a first executable code for the product, the first executable code being one of a plurality of different executable codes including at least a second executable code, the first executable code comprising first executable instructions to encrypt and decrypt a first product identifier information, the second executable code comprising second executable instructions to encrypt and decrypt a second product identifier information;
  
  means for encrypting a first set of identifier information according to the first executable code;
  
  encrypting a second set of identifier information according to the second executable code;
  
  means for loading, while the product is being manufactured, the first set of encrypted identifier information in a format compatible with the first executable code into the product; and
  
  means for loading, while the product is being manufactured, the first executable code into the product over the connection, wherein the first set of encrypted identifier information is decryptable by the first executable code, but not decryptable by the second executable code, wherein the first executable code is capable of decrypting, modifying and re-encrypting the first set of identifier information in a manner that is not compatible with the second executable codemeans for loading, while another product is being manufactured, the second set of encrypted identifier information in a format compatible with the second executable code into the another product; and
  
  means for loading, while the another product is being manufactured, the second executable code into the another product, wherein the second set of encrypted identifier information is decryptable by the second executable code, but not decryptable by the first executable code, wherein the second executable code is capable of decrypting, modifying and re-encrypting the second set of identifier information in a manner that is not compatible with the first executable code.
- View Dependent Claims (26, 27, 28)
- - 26. The system of claim 25, further comprising:
    - means for verifying that an initial set of identifier information stored within the product is valid to establish a secure authenticated channel over the connection;
      
      wherein loading the first set of identifier information into the product is in response to validly verifying the initial set of identifier information;
      
      wherein loading the first set of identifier information into the product is secured through the verifying of the initial set of identifier information; and
      
      wherein the plurality of executable codes have a same overall functionality but different operations which generate different results from same input data.
  - 27. The system of claim 25, wherein the means for determining the first executable code for the product comprises:
    - means for randomly selecting a first compilation key from a plurality of different compilation keys; and
      
      means for patching at multiple separate locations in a second execution code according to the first compilation key to generate the first executable code.
  - 28. The system of claim 25, wherein the means for determining the first executable code for the product comprises:
    - means for randomly selecting a first compilation key from a plurality of different compilation keys; and
      
      means for selecting the first executable code from the plurality of executable codes according to the first compilation key;
      
      wherein the plurality of executable codes are generated according to the plurality of compilation keys respectively.

29. A data processing system to configure a device, the data processing system comprising:
- means for selecting a first executable code for the device, the first executable code being one of a plurality of different executable codes including at least a second executable code that are capable of being executed on the device, the plurality of executable codes having a same overall functionality but different operations which generate different results from same input data, the first executable code comprising first executable instructions to encrypt and decrypt a first product identifier information, the second executable code comprising second executable instructions to encrypt and decrypt a second product identifier information wherein the means for determining includes a processor;
  
  means for encrypting a first set of identifier information according to the first executable code;
  
  encrypting a second set of identifier information according to the second executable code;
  
  means for loading, while the device is being manufactured, the first executable code into the device, wherein the first set of encrypted identifier information is decryptable by the first executable code, but not decryptable by the second executable code, wherein the first executable code is capable of decrypting, modifying, and re-encrypting the first set of identifier information in a manner that is not compatible with the second executable codemeans for loading, while another product is being manufactured, the second set of encrypted identifier information in a format compatible with the second executable code into the another product; and
  
  means for loading, while the another product is being manufactured, the second executable code into the another product, wherein the second set of encrypted identifier information is decryptable by the second executable code, but not decryptable by the first executable code, wherein the second executable code is capable of decrypting, modifying and re-encrypting the second set of identifier information in a manner that is not compatible with the first executable code.
- View Dependent Claims (30, 31, 32)
- - 30. The data processing system of claim 29, further comprising:
    - means for randomly selecting a first set of information from a plurality of sets of information;
      
      wherein the first executable code is generated based on the first set of information; and
      
      wherein the plurality of different executable codes are generated based on the plurality of sets of information respectively.
  - 31. The data processing system of claim 29, further comprising:
    - means for verifying that an initial set of identifier information stored within the device is valid to establish a secure authenticated channel; and
      
      means for loading a new set of identifier information in a first format compatible with the first executable code into the device over the secure authenticated channel;
      
      wherein the first executable code is loaded into the device over the secure authenticated channel.
  - 32. The data processing system of claim 29, further comprising:
    - means for loading data in a first format into the device, the first format being one of a plurality of different formats, the first executable code being compatible with the first format, any of the plurality of different executable codes other than the first executable being not compatible with the first format;
      
      wherein the plurality of different executable codes have substantially same code sizes; and
      
      wherein the plurality of different executable codes are cryptographically different.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Digital Keystone Incorporated
Original Assignee
Digital Keystone Incorporated
Inventors
Vantalon, Luc, Siccardo, Paolo
Primary Examiner(s)
Hoffman, Brandon
Assistant Examiner(s)
Salehi, Helai

Application Number

US11/316,849
Publication Number

US 20060136702A1
Time in Patent Office

2,294 Days
Field of Search

713/1, 713/168, 713/169, 713/181, 713/189
US Class Current

713/168
CPC Class Codes

G06F 21/16   Program or content traceabi...

G06F 21/572   Secure firmware programming...

G06F 21/606   by securing the transmissio...

G06F 21/73   by creating or determining ...

G06F 2221/2129   Authenticate client device ...

G06Q 10/02   Reservations, e.g. for tick...

Methods and apparatuses for configuring products

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

17 Citations

32 Claims

Specification

Solutions

Use Cases

Quick Links

Methods and apparatuses for configuring products

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

17 Citations

32 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links