Saving encryption keys in one-time programmable memory

US 8,286,004 B2
Filed: 04/27/2010
Issued: 10/09/2012
Est. Priority Date: 10/09/2009
Status: Active Grant

First Claim

Patent Images

1. A method of providing encryption/decryption of data transferred between a media controller and a storage device, wherein the media controller providing said encryption/decryption based on a root key (RK), the method comprising:

providing storage in a one-time programmable (OTP) memory as a plurality of un-burned slots to store data, the OTP memory initially provided without the RK;

generating, with a random number generator, the RK;

performing, with a control module, the steps of i) burning the RK to an initial slot of the OTP memory, and ii) validating the burned RK (bRK) stored at the initial slot based on a comparison of the RK and the burned RK;

wherein, when the control module validates the burned RK;

employing the burned RK as the RK by the media controller to provide said encryption/decryption;

otherwise;

burning one or more subsequent slots with the RK and validating each corresponding bRK until the control module validates the corresponding burned RK, and then employing the burned RK as the RK by the media controller to provide said encryption/decryption;

wherein the comparison of the RK and the burned RK (bRK) is based on a maximum threshold of changed bits; and

wherein a number of changed bits between RK and the bRK is determined by an exclusive-or (XOR) operation.

View all claims

10 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Described embodiments provide encryption/decryption of data transferred between a media controller and a storage device. The media controller provides encryption/decryption based on a root key (RK). Storage in a one-time programmable (OTP) memory is provided as a plurality of un-burned slots. The OTP memory is initially provided without the RK, which is generated with a random number generator. A control module performs the steps of i) burning the RK to an initial slot of the OTP memory, and ii) validating the burned RK (bRK) stored at the initial slot based on a comparison of the RK and the burned RK. If the control module validates the burned RK, the burned RK is employed by the media controller. Otherwise, one or more subsequent slots of the OTP memory are burned with the RK until the control module validates the corresponding burned RK.

Citations

13 Claims

1. A method of providing encryption/decryption of data transferred between a media controller and a storage device, wherein the media controller providing said encryption/decryption based on a root key (RK), the method comprising:
- providing storage in a one-time programmable (OTP) memory as a plurality of un-burned slots to store data, the OTP memory initially provided without the RK;
  
  generating, with a random number generator, the RK;
  
  performing, with a control module, the steps of i) burning the RK to an initial slot of the OTP memory, and ii) validating the burned RK (bRK) stored at the initial slot based on a comparison of the RK and the burned RK;
  
  wherein, when the control module validates the burned RK;
  
  employing the burned RK as the RK by the media controller to provide said encryption/decryption;
  
  otherwise;
  
  burning one or more subsequent slots with the RK and validating each corresponding bRK until the control module validates the corresponding burned RK, and then employing the burned RK as the RK by the media controller to provide said encryption/decryption;
  
  wherein the comparison of the RK and the burned RK (bRK) is based on a maximum threshold of changed bits; and
  
  wherein a number of changed bits between RK and the bRK is determined by an exclusive-or (XOR) operation.
- View Dependent Claims (2, 3, 4)
- - 2. The method of claim 1, further comprising:
    - burning a checksum (cbRK) of the burned RK to the corresponding slot of OTP memory.
  - 3. The method of claim 1, further comprising:
    - if the control module validates the burned RK;
      
      employing the burned RK as the RK by the media controller to provide said encryption/decryption;
      
      otherwise;
      
      burning one or more subsequent slots with the RK and validating each corresponding bRK until either i) the control module validates the corresponding burned RK, and then employing the burned RK as the RK by the media controller to provide said encryption/decryption, or ii) all slots of the OTP memory are used.
  - 4. The method of claim 2, further comprising:
    - comparing, by a comparator, the checksum of the burned RK (cbRK) and a value, read from the OTP memory, of the checksum of the burned RK (rcbRK);
      
      wherein, if the cbRK and the rcbRK are substantially equal;
      
      employing the burned RK as the RK by the media controller to provide said encryption/decryption;
      
      otherwise;
      
      burning one or more subsequent slots with the RK and validating each corresponding bRK until the control module validates the corresponding burned RK, and then employing the burned RK as the RK by the media controller to provide said encryption/decryption.

5. A non-transitory machine-readable storage medium, having encoded thereon program code, wherein, when the program code is executed by a machine, the machine implements a method of providing encryption/decryption of data transferred between a media controller and a storage device, wherein the media controller providing said encryption/decryption based on a root key (RK), the method comprising:
- providing storage in a one-time programmable (OTP) memory as a plurality of un-burned slots to store data, the OTP memory initially provided without the RK;
  
  generating, with a random number generator, the RK;
  
  performing, with a control module, the steps of i) burning the RK to an initial slot of the OTP memory, and ii) validating the burned RK (bRK) stored at the initial slot based on a comparison of the RK and the burned RK;
  
  wherein, when the control module validates the burned RK;
  
  employing the burned RK as the RK by the media controller to provide said encryption/decryption;
  
  otherwise;
  
  burning one or more subsequent slots with the RK and validating each corresponding bRK until the control module validates the corresponding burned RK, and then employing the burned RK as the RK by the media controller to provide said encryption/decryption;
  
  wherein the comparison of the RK and the burned RK (bRK) is based on a maximum threshold of changed bits; and
  
  wherein a number of changed bits between RK and the bRK is determined by an exclusive-or (XOR) operation.
- View Dependent Claims (6, 7, 8)
- - 6. The computer readable medium of claim 5, further comprising:
    - burning a checksum (cbRK) of the burned RK to the corresponding slot of OTP memory.
  - 7. The computer readable medium of claim 5, further comprising:
    - if the control module validates the burned RK;
      
      employing the burned RK as the RK by the media controller to provide said encryption/decryption;
      
      otherwise;
      
      burning one or more subsequent slots with the RK and validating each corresponding bRK until either i) the control module validates the corresponding burned RK, and then employing the burned RK as the RK by the media controller to provide said encryption/decryption, or ii) all slots of the OTP memory are used.
  - 8. The computer readable medium of claim 6, further comprising:
    - comparing, by a comparator, the checksum of the burned RK (cbRK) and a value, read from the OTP memory, of the checksum of the burned RK (rcbRK);
      
      wherein, if the cbRK and the rcbRK are substantially equal;
      
      employing the burned RK as the RK by the media controller to provide said encryption/decryption;
      
      otherwise;
      
      burning one or more subsequent slots with the RK and validating each corresponding bRK until the control module validates the corresponding burned RK, and then employing the burned RK as the RK by the media controller to provide said encryption/decryption.

9. An apparatus comprising a media controller configured to provide encryption/decryption of data transferred between the media controller and a storage device, wherein the media controller provides said encryption/decryption based on a root key (RK), the apparatus comprising:
- a one-time programmable (OTP) memory having a plurality of un-burned slots to store data, wherein the OTP memory is initially provided without the RK;
  
  a random number generator configured to generate the RK;
  
  a control module configured to i) burn the RK to an initial slot of the OTP memory, and ii) validate the burned RK (bRK) stored at the initial slot based on a comparison of the RK and the burned RK,wherein, when the control module validates the burned RK;
  
  the burned RK is employed as the RK by the media controller to provide said encryption/decryption;
  
  otherwise;
  
  the control module is configured to burn one or more subsequent slots with the RK and validate each corresponding bRK until the control module validates the corresponding burned RK, the burned RK employed as the RK by the media controller to provide said encryption/decryption;
  
  wherein the comparison of the RK and the burned RK (bRK) is based on a maximum threshold of changed bits; and
  
  wherein a number of changed bits between RK and the bRK is determined by an exclusive-or (XOR) operation.
- View Dependent Claims (10, 11, 12, 13)
- - 10. The apparatus of claim 9, wherein the control module is adapted to burn a checksum (cbRK) of the burned RK to the corresponding slot of OTP memory.
  - 11. The apparatus of claim 9, wherein the control module is configured to burn one or more subsequent slots with the RK and validate each corresponding bRK until either i) the control module validates the corresponding burned RK, and then employing the burned RK as the RK by the media controller to provide said encryption/decryption, or ii) all slots of the OTP memory are used.
  - 12. The apparatus of claim 9, wherein the comparator is adapted to compare a checksum of the burned RK (cbRK) and a value, read from the OTP memory, of the checksum of the burned RK (rcbRK), whereinif the cbRK and the rcbRK are substantially equal, the burned RK is employed as the RK by the media controller to provide said encryption/decryption;
    - otherwise;
      
      one or more subsequent slots are burned with the RK until the control module validates the corresponding burned RK, and then employing the burned RK as the RK by the media controller to provide said encryption/decryption.
  - 13. The apparatus of claim 9, wherein the apparatus is implemented in a monolithic integrated circuit chip.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Avago Technologies International Sales Pte Limited (Broadcom, Inc.)
Original Assignee
LSI Corporation (Broadcom, Inc.)
Inventors
Williams, Jeffrey L.
Primary Examiner(s)
Dada, Beemnet

Application Number

US12/767,985
Publication Number

US 20110087898A1
Time in Patent Office

896 Days
Field of Search

713/162, 713/164, 713/165, 713/189, 713/190, 713/193, 380/44, 380/46, 380/278
US Class Current

713/193
CPC Class Codes

G06F 21/31   User authentication

G06F 21/78   to assure secure storage of...

H04L 2209/12   Details relating to cryptog...

H04L 9/0866   involving user or device id...

H04L 9/3226   using a predetermined code,...

H04L 9/3236   using cryptographic hash fu...

Saving encryption keys in one-time programmable memory

First Claim

10 Assignments

0 Petitions

Accused Products

Abstract

Citations

13 Claims

Specification

Solutions

Use Cases

Quick Links

Saving encryption keys in one-time programmable memory

First Claim

10 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

13 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links