Secure system-on-chip
DCFirst Claim
1. A secure system-on-chip for processing data, the system-on-chip comprising:
- at least a central processing unit;
an input channel;
an output channel;
an encryption/decryption engine; and
a memory;
wherein said input channel comprises a virtual input encryption module configured to pass all incoming data to the encryption/decryption engine to add an internal encryption layer to all incoming data, said output channel comprises a virtual output decryption module which is configured to pass all outgoing data to the encryption/decryption engine to remove the internal encryption layer on all outgoing data, and said central processing unit is configured to perform the steps of receiving the encrypted data from the input encryption module and storing them in the memory, and while processing the stored data, reading the stored data from the memory, requesting the removal of the internal encryption layer of same in the encryption/decryption engine, processing the data and requesting encryption of the result by the encryption/decryption engine to add the internal encryption layer and storing the encrypted result, outputting the result to the output decryption module for removing the internal encryption layer and outputting the result via the output channel wherein data encrypted with the internal encryption layer is never present outside the system-on-chip.
2 Assignments
Litigations
0 Petitions
Accused Products
Abstract
The aim of the present invention is to provide a secure system-on-chip for processing data, this system-on-chip comprising at least a central processing unit, an input and an output channel, an encryption/decryption engine and a memory, characterized in that, said input channel comprises an input encryption module to encrypt all incoming data, said output channel comprising an output decryption module to decrypt all outgoing data, said central processing unit receiving the encrypted data from the input encryption module and storing them in the memory, and while processing the stored data, said central processing unit reading the stored data from the memory, requesting decryption of same in the encryption/decryption engine, processing the data and requesting encryption of the result by the encryption/decryption engine and storing the encrypted result, outputting the result to the output decryption module for decryption purpose and exiting the decrypted result via the output channel.
45 Citations
14 Claims
-
1. A secure system-on-chip for processing data, the system-on-chip comprising:
-
at least a central processing unit; an input channel; an output channel; an encryption/decryption engine; and a memory; wherein said input channel comprises a virtual input encryption module configured to pass all incoming data to the encryption/decryption engine to add an internal encryption layer to all incoming data, said output channel comprises a virtual output decryption module which is configured to pass all outgoing data to the encryption/decryption engine to remove the internal encryption layer on all outgoing data, and said central processing unit is configured to perform the steps of receiving the encrypted data from the input encryption module and storing them in the memory, and while processing the stored data, reading the stored data from the memory, requesting the removal of the internal encryption layer of same in the encryption/decryption engine, processing the data and requesting encryption of the result by the encryption/decryption engine to add the internal encryption layer and storing the encrypted result, outputting the result to the output decryption module for removing the internal encryption layer and outputting the result via the output channel wherein data encrypted with the internal encryption layer is never present outside the system-on-chip. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A method for processing data on a secure system-on-chip, the system-on-chip comprising a central processing unit, an input channel, an output channel, an encryption/decryption engine and a memory, the method comprising the steps of:
-
passing input data received via the input channel through a virtual encryption module to the encryption/decryption engine to add a first internal encryption layer to the input data; storing the input data with the first internal encryption layer in the memory; retrieving the input data with the first internal encryption layer from the memory; passing the input data retrieved from the memory through a virtual encryption module to the encryption/decryption engine to remove the first internal encryption layer from the input data retrieved from the memory; processing the data after the first internal encryption layer has been removed to form processed data; and outputting the processed data without the first internal encryption layer via the output channel wherein data encrypted with the internal encryption layer is never present outside the system-on-chip. - View Dependent Claims (10, 11, 12, 13)
-
-
14. A method for processing data within a secure system-on-chip comprising the steps of:
-
processing data to form processed data; passing the processed data through a virtual encryption module to an encryption/decryption engine to add an internal encryption layer to the processed data; storing the processed data with the internal encryption layer in the memory; retrieving the processed data with the internal encryption layer from the memory; passing the processed data retrieved from the memory through the virtual encryption module to the encryption/decryption engine to remove the internal encryption layer from the processed data within the system on chip; and outputting the processed data from the system on chip without the internal encryption layer via the output channel wherein data encrypted with the internal encryption layer is never present outside the system-on-chip.
-
Specification