Information processing apparatus, method and computer-readable storage medium that encrypts and decrypts data using a value calculated from operating-state data
First Claim
1. An information processing apparatus comprising:
- a storage unit that retains contents stored therein;
a control unit that performs hibernation of generating operating-state data that indicates an operating state of the information processing apparatus when the information processing apparatus is powered off to store the operating-state data in the storage unit, and reading the operating-state data from the storage unit to restore the information processing apparatus to the operating state when the information processing apparatus is powered on;
a security chip that encrypts data based on a value calculated from the generated operating-state data when the information processing apparatus is powered off, and decrypts the encrypted data based on a value calculated from the read operating-state data when the information processing apparatus is powered on; and
a verification unit that performs verification at boot-up from the hibernation by determining whether to permit decryption of the data based on the value calculated from the read operating-state data when the information processing apparatus is powered on.
1 Assignment
0 Petitions
Accused Products
Abstract
An information processing apparatus includes a main memory unit storing while on-power; an auxiliary storage unit functionable even off-power; a control unit performing hibernation of generating operating-state data indicating a state when the power is lost, storing the data in the auxiliary storage unit, and, when restored, reading the data from the auxiliary storage unit; and a security chip that including a configuration register, encrypts data, and storing the data in the auxiliary storage unit. The control unit includes: a first registration unit performing, when the data is generated, calculation based thereon to obtain a calculated value; a second registration unit performing, when the data is read from the auxiliary storage unit at the hibernation, calculation based on the data to obtain a calculated value to write it into the configuration register; and a verification unit performing verification at boot-up from the hibernation based on the value written.
-
Citations
12 Claims
-
1. An information processing apparatus comprising:
-
a storage unit that retains contents stored therein; a control unit that performs hibernation of generating operating-state data that indicates an operating state of the information processing apparatus when the information processing apparatus is powered off to store the operating-state data in the storage unit, and reading the operating-state data from the storage unit to restore the information processing apparatus to the operating state when the information processing apparatus is powered on; a security chip that encrypts data based on a value calculated from the generated operating-state data when the information processing apparatus is powered off, and decrypts the encrypted data based on a value calculated from the read operating-state data when the information processing apparatus is powered on; and a verification unit that performs verification at boot-up from the hibernation by determining whether to permit decryption of the data based on the value calculated from the read operating-state data when the information processing apparatus is powered on. - View Dependent Claims (2, 3, 4)
-
-
5. A verification method that is performed in an information processing apparatus that includes
a storage unit that retains contents stored therein; -
a control unit that performs hibernation of generating operating-state data that indicates an operating state of the information processing apparatus when the information processing apparatus is powered off to store the operating-state data in the auxiliary storage unit, and reading the operating-state data from the storage unit to restore the information processing apparatus into the operating state when the information processing apparatus is powered on; and a security chip, the verification method comprising; encrypting, by the security chip, data based on a value calculated from the generated operating-state data when the information processing apparatus is powered off; verifying, which is performed by the control unit, a boot-up from the hibernation by determining whether to permit decryption of the data based on a value calculated from the read operating-state data when the information processing apparatus is powered on; and decrypting, by the security chip based on the determination in the verifying, the encrypted data based on the value calculated from the read operating-state data when the information processing apparatus is powered on. - View Dependent Claims (7, 8, 9)
-
-
6. A non-transitory computer-readable storage medium including computer executable instructions, wherein the instructions, when executed by a computer, cause the computer to perform a method for processing information in an information processing apparatus that includes
a storage unit that retains contents stored therein; -
a control unit that performs hibernation of generating operating-state data that indicates an operating state of the information processing apparatus when the information processing apparatus is powered off to store the operating-state data in the storage unit, and reading the operating-state data from the storage unit to restore the information processing apparatus into the operating state when the information processing apparatus is powered on; and a security chip, the method comprising; encrypting data based on a value calculated from the generated operating-state data when the information processing apparatus is powered off; verifying, which is performed by the control unit, a boot-up from the hibernation by determining whether to permit decryption of the data based on a value calculated from the read operating-state data when the information processing apparatus is powered on; and decrypting, based on the determination in the verifying, the encrypted data based on the value calculated from the read operating-state data when the information processing apparatus is powered on. - View Dependent Claims (10, 11, 12)
-
Specification