Methods and apparatuses for configuring products
First Claim
1. A method of manufacturing a product, the method comprising:
- establishing a connection between a data processing system and the product while the product is being manufactured;
selecting a first executable code for the product, the first executable code being one of a plurality of different executable codes including at least a second executable code, the first executable code comprising first executable instructions to encrypt and decrypt a first product identifier information, the second executable code comprising second executable instructions to encrypt and decrypt a second product identifier information;
encrypting a first set of identifier information according to the first executable code;
encrypting a second set of identifier information according to the second executable code;
loading, while the product is being manufactured, the first set of encrypted identifier information in a format compatible with the first executable code into the product;
loading, while the product is being manufactured, the first executable code into the product, wherein the first set of encrypted identifier information is decryptable by the first executable code, but not decryptable by the second executable code, wherein the first executable code is capable of decrypting, modifying and re-encrypting the first set of identifier information in a manner that is not compatible with the second executable code;
loading, while another product is being manufactured, the second set of encrypted identifier information in a format compatible with the second executable code into the another product; and
loading, while the another product is being manufactured, the second executable code into the another product, wherein the second set of encrypted identifier information is decryptable by the second executable code, but not decryptable by the first executable code, wherein the second executable code is capable of decrypting, modifying and re-encrypting the second set of identifier information in a manner that is not compatible with the first executable code.
1 Assignment
0 Petitions
Accused Products
Abstract
Methods and apparatuses for configuring products for security. In one aspect, a method of manufacturing a device, includes: determining a first executable code for the device, the first executable code being one of a plurality of different executable codes that are capable of being executed on the device, the plurality of executable codes having a same overall functionality but different operations which generates different results from same input data; and loading the first executable code into the device. In one embodiment, a connection between a data processing system and the device is established while the device is being manufactured; and the connection is used to load the first executable code and a new set of identifier information in a format compatible with the first executable code into the device. For example, the connection includes a secure authenticated channel established using an initial set of identifier information stored in the device.
17 Citations
32 Claims
-
1. A method of manufacturing a product, the method comprising:
-
establishing a connection between a data processing system and the product while the product is being manufactured; selecting a first executable code for the product, the first executable code being one of a plurality of different executable codes including at least a second executable code, the first executable code comprising first executable instructions to encrypt and decrypt a first product identifier information, the second executable code comprising second executable instructions to encrypt and decrypt a second product identifier information; encrypting a first set of identifier information according to the first executable code; encrypting a second set of identifier information according to the second executable code; loading, while the product is being manufactured, the first set of encrypted identifier information in a format compatible with the first executable code into the product; loading, while the product is being manufactured, the first executable code into the product, wherein the first set of encrypted identifier information is decryptable by the first executable code, but not decryptable by the second executable code, wherein the first executable code is capable of decrypting, modifying and re-encrypting the first set of identifier information in a manner that is not compatible with the second executable code; loading, while another product is being manufactured, the second set of encrypted identifier information in a format compatible with the second executable code into the another product; and loading, while the another product is being manufactured, the second executable code into the another product, wherein the second set of encrypted identifier information is decryptable by the second executable code, but not decryptable by the first executable code, wherein the second executable code is capable of decrypting, modifying and re-encrypting the second set of identifier information in a manner that is not compatible with the first executable code. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A method to configure a device, the method comprising:
-
selecting a first executable code for the device, the first executable code being one of a plurality of different executable codes including at least a second executable code that are capable of being executed on the device, the plurality of executable codes having a same overall functionality but different operations which generate different results from same input data, the first executable code comprising first executable instructions to encrypt and decrypt a first product identifier information, the second executable code comprising second executable instructions to encrypt and decrypt a second product identifier information; encrypting a first set of identifier information according to the first executable code; encrypting a second set of identifier information according to the second executable code; loading, while the device is being manufactured, the first executable code into the device, wherein the first set of encrypted identifier information is decryptable by the first executable code, but not decryptable by the second executable code, wherein the first executable code is capable of decrypting, modifying, and re-encrypting the first set of identifier information in a manner that is not compatible with the second executable code;
loading, while another product is being manufactured, the second set of encrypted identifier information in a format compatible with the second executable code into the another product; andloading, while the another product is being manufactured, the second executable code into the another product, wherein the second set of encrypted identifier information is decryptable by the second executable code, but not decryptable by the first executable code, wherein the second executable code is capable of decrypting, modifying and re-encrypting the second set of identifier information in a manner that is not compatible with the first executable code. - View Dependent Claims (12, 13, 14, 15, 16)
-
-
17. A machine readable storage medium storing executable computer program instructions which when executed by a data processing system cause said system to perform a method for manufacturing a product, the method comprising:
-
establishing a connection between the data processing system and the product while the product is being manufactured; selecting a first executable code for the product, the first executable code being one of a plurality of different executable codes including at least a second executable code, the first executable code comprising first executable instructions to encrypt and decrypt a first product identifier information, the second executable code comprising second executable instructions to encrypt and decrypt a second product identifier information; encrypting a first set of identifier information according to the first executable code; encrypting a second set of identifier information according to the second executable code; loading, while the product is being manufactured, the first set of identifier information in a format compatible with the first executable code into the product; and loading, while the product is being manufactured, the first executable code into the product, wherein the first set of encrypted identifier information is decryptable by the first executable code, but not decryptable by the second executable code, wherein the first executable code is capable of decrypting, modifying, and re-encrypting the first set of identifier information in a manner that is not compatible with the second executable code loading, while another product is being manufactured, the second set of encrypted identifier information in a format compatible with the second executable code into the another product; and loading, while the another product is being manufactured, the second executable code into the another product, wherein the second set of encrypted identifier information is decryptable by the second executable code, but not decryptable by the first executable code, wherein the second executable code is capable of decrypting, modifying and re-encrypting the second set of identifier information in a manner that is not compatible with the first executable code. - View Dependent Claims (18, 19, 20, 21)
-
-
22. A machine readable storage medium storing executable computer program instructions which when executed by a data processing system cause said system to perform a method to configure a device, the method comprising:
-
selecting a first executable code for the device, the first executable code being one of a plurality of different executable codes including at least a second executable code that are capable of being executed on the device, the plurality of executable codes having a same overall functionality but different operations which generate different results from same input data, the first executable code comprising first executable instructions to encrypt and decrypt a first product identifier information, the second executable code comprising second executable instructions to encrypt and decrypt a second product identifier information; encrypting a first set of identifier information according to the first executable code; encrypting a second set of identifier information according to the second executable code; and loading, while the device is being manufactured, the first executable code into the device, wherein the first set of encrypted identifier information is decryptable by the first executable code, but not decryptable by the second executable code, wherein the first executable code is capable of decrypting, modifying, and re-encrypting the first set of identifier information in a manner that is not compatible with the second executable code. - View Dependent Claims (23, 24)
-
-
25. A system for manufacturing a product, the system comprising:
-
means for establishing a connection between a data processing system and the product while the product is being manufactured, wherein the means for establishing includes a processor; means for selecting a first executable code for the product, the first executable code being one of a plurality of different executable codes including at least a second executable code, the first executable code comprising first executable instructions to encrypt and decrypt a first product identifier information, the second executable code comprising second executable instructions to encrypt and decrypt a second product identifier information; means for encrypting a first set of identifier information according to the first executable code; encrypting a second set of identifier information according to the second executable code; means for loading, while the product is being manufactured, the first set of encrypted identifier information in a format compatible with the first executable code into the product; and means for loading, while the product is being manufactured, the first executable code into the product over the connection, wherein the first set of encrypted identifier information is decryptable by the first executable code, but not decryptable by the second executable code, wherein the first executable code is capable of decrypting, modifying and re-encrypting the first set of identifier information in a manner that is not compatible with the second executable code means for loading, while another product is being manufactured, the second set of encrypted identifier information in a format compatible with the second executable code into the another product; and means for loading, while the another product is being manufactured, the second executable code into the another product, wherein the second set of encrypted identifier information is decryptable by the second executable code, but not decryptable by the first executable code, wherein the second executable code is capable of decrypting, modifying and re-encrypting the second set of identifier information in a manner that is not compatible with the first executable code. - View Dependent Claims (26, 27, 28)
-
-
29. A data processing system to configure a device, the data processing system comprising:
-
means for selecting a first executable code for the device, the first executable code being one of a plurality of different executable codes including at least a second executable code that are capable of being executed on the device, the plurality of executable codes having a same overall functionality but different operations which generate different results from same input data, the first executable code comprising first executable instructions to encrypt and decrypt a first product identifier information, the second executable code comprising second executable instructions to encrypt and decrypt a second product identifier information wherein the means for determining includes a processor; means for encrypting a first set of identifier information according to the first executable code; encrypting a second set of identifier information according to the second executable code; means for loading, while the device is being manufactured, the first executable code into the device, wherein the first set of encrypted identifier information is decryptable by the first executable code, but not decryptable by the second executable code, wherein the first executable code is capable of decrypting, modifying, and re-encrypting the first set of identifier information in a manner that is not compatible with the second executable code means for loading, while another product is being manufactured, the second set of encrypted identifier information in a format compatible with the second executable code into the another product; and means for loading, while the another product is being manufactured, the second executable code into the another product, wherein the second set of encrypted identifier information is decryptable by the second executable code, but not decryptable by the first executable code, wherein the second executable code is capable of decrypting, modifying and re-encrypting the second set of identifier information in a manner that is not compatible with the first executable code. - View Dependent Claims (30, 31, 32)
-
Specification