Microprocessor apparatus for secure on-die real-time clock

US 8,522,354 B2
Filed: 10/31/2008
Issued: 08/27/2013
Est. Priority Date: 05/24/2008
Status: Active Grant

First Claim

Patent Images

1. An apparatus providing for a secure execution environment, comprising:

a microprocessor, configured to execute non-secure application programs and a secure application program, wherein said secure application program comprises instructions from a host architecture instruction set, and wherein said microprocessor encrypts said secure application program using a processor unique key to store an encrypted version of said secure application program in a secure non-volatile memory that is coupled to said microprocessor via a private bus, and wherein said non-secure application programs are accessed from a system memory via a system bus and said secure application program is accessed from said secure non-volatile memory, said microprocessor comprising;

a secure real time clock, configured to provide a persistent time, wherein said secure real time clock is only visible and accessible by said secure application program when said microprocessor is executing in a secure mode; and

an external crystal, coupled to said secure real time clock within said microprocessor, configured to cause an oscillator within said secure real time clock to generate an oscillating output voltage that is proportional to the frequency of said external crystal.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

An apparatus including a microprocessor and an external crystal. The microprocessor executes non-secure application programs and a secure application program, where the secure application program comprises instructions from a host architecture instruction set, and where the non-secure application programs are accessed from a system memory via a system bus and the secure application program is accessed from a secure non-volatile memory via a private bus coupled to the microprocessor. The microprocessor has a secure real time clock that provides a persistent time, where the secure real time clock is only visible and accessible by the secure application program when the microprocessor is executing in a secure mode. The external crystal is coupled to the secure real time clock within the microprocessor and is configured to cause an oscillator within the secure real time clock to generate an oscillating output voltage that is proportional to the frequency of the external crystal.

Citations

25 Claims

1. An apparatus providing for a secure execution environment, comprising:
- a microprocessor, configured to execute non-secure application programs and a secure application program, wherein said secure application program comprises instructions from a host architecture instruction set, and wherein said microprocessor encrypts said secure application program using a processor unique key to store an encrypted version of said secure application program in a secure non-volatile memory that is coupled to said microprocessor via a private bus, and wherein said non-secure application programs are accessed from a system memory via a system bus and said secure application program is accessed from said secure non-volatile memory, said microprocessor comprising;
  
  a secure real time clock, configured to provide a persistent time, wherein said secure real time clock is only visible and accessible by said secure application program when said microprocessor is executing in a secure mode; and
  
  an external crystal, coupled to said secure real time clock within said microprocessor, configured to cause an oscillator within said secure real time clock to generate an oscillating output voltage that is proportional to the frequency of said external crystal.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
- - 2. The apparatus as recited in claim 1, wherein said secure real time clock comprises a counter, coupled to said oscillator, configured to count a number of cycles of said oscillating output voltage, and configured to convert said number of cycles to a count value.
  - 3. The apparatus as recited in claim 1, further comprising:
    - an external battery, coupled to said secure real time clock, configured to provide a voltage to power said secure real time clock, thereby providing for persistent operation of said secure real time clock as long as said voltage is within an acceptable range.
  - 4. The apparatus as recited in claim 3, wherein said secure real time clock comprises:
    - conversion logic, configured to receive a count value from a counter within said secure real time clock, and configured to convert said count value to said persistent time value.
  - 5. The apparatus as recited in claim 4, wherein said conversion logic is configured to detect a significant variation of said voltage.
  - 6. The apparatus as recited in claim 4, wherein said conversion logic is configured to detect a significant variation of the frequency of said external crystal.
  - 7. The apparatus as recited in claim 4, wherein said conversion logic is configured to assert signals to interrupt said secure application program to indicate tampering with said external crystal or said external battery.
  - 8. The apparatus as recited in claim 4, wherein said conversion logic is configured to evaluate a signal indicating die temperature to determine temperature excursions that may cause said persistent time to be inaccurate, and configured to generate an secure interrupt signal to interrupt said secure application program.
  - 9. The apparatus as recited in claim 4, further comprising:
    - a motherboard, configured to provide for mounting and interconnection of said microprocessor, said external crystal, and said external battery.

10. A microprocessor apparatus, for executing secure code within a secure execution environment, the microprocessor apparatus comprising:
- a secure non-volatile memory, configured to store an encrypted version of a secure application program, wherein said secure application program comprises instructions from a host architecture instruction set;
  
  a microprocessor, coupled to said secure non-volatile memory via a private bus, configured to encrypt said secure application program using a processor unique key to store said encrypted version of said secure application program in said secure non-volatile memory, and configured to execute non-secure application programs and said secure application program, said microprocessor comprising;
  
  a secure real time clock, configured to provide a persistent time, wherein said secure real time clock is only visible and accessible by said secure application program when said microprocessor is executing in a secure mode; and
  
  an external crystal, coupled to said secure real time clock within said microprocessor, configured to cause an oscillator within said secure real time clock to generate an oscillating output voltage that is proportional to the frequency of said external crystal.
- View Dependent Claims (11, 12, 13, 14, 15, 16, 17)
- - 11. The microprocessor apparatus as recited in claim 10, wherein said secure real time clock comprises a counter, coupled to said oscillator, configured to count a number of cycles of said oscillating output voltage, and configured to convert said number of cycles to a count value.
  - 12. The microprocessor apparatus as recited in claim 10, further comprising:
    - an external battery, coupled to said secure real time clock, configured to provide a voltage to power said secure real time clock, thereby providing for persistent operation of said secure real time clock as long as said voltage is within an acceptable range.
  - 13. The microprocessor apparatus as recited in claim 12, wherein said secure real time clock comprises:
    - conversion logic, configured to receive a count value from a counter within said secure real time clock, and configured to convert said count value to said persistent time value.
  - 14. The microprocessor apparatus as recited in claim 13, wherein said conversion logic is configured to detect a significant variation of said voltage.
  - 15. The microprocessor apparatus as recited in claim 13, wherein said conversion logic is configured to detect a significant variation of the frequency of said external crystal.
  - 16. The microprocessor apparatus as recited in claim 13, wherein said conversion logic is configured to assert signals to interrupt said secure application program to indicate tampering with said external crystal or said external battery.
  - 17. The microprocessor apparatus as recited in claim 13, wherein said conversion logic is configured to evaluate a signal indicating die temperature to determine temperature excursions that may cause said persistent time to be inaccurate, and configured to generate an secure interrupt signal to interrupt said secure application program.

18. A method for executing secure code within a secure execution environment, the method comprising:
- encrypting the secure code using a processor unique key;
  
  storing the secure code in a secure non-volatile memory over a private bus for execution by a microprocessor that is coupled to the secure non-volatile memory, wherein the secure code comprises instructions from a host architecture instruction set, and wherein the private bus is isolated from all system bus resources within the microprocessor and external to the microprocessor, and wherein the private bus is observable and accessible exclusively by secure execution logic within the microprocessor;
  
  fetching the secure code from a secure non-volatile memory;
  
  via a secure real time clock within the microprocessor, providing a persistent time, wherein the secure real time clock is only visible and accessible by the secure code; and
  
  coupling an external crystal to the microprocessor that causes an oscillator within the real time clock to generate an oscillating output voltage that is proportional to the frequency of the external crystal.
- View Dependent Claims (19, 20, 21, 22, 23, 24, 25)
- - 19. The method as recited in claim 18, wherein the secure real time clock comprises a counter, coupled to the oscillator, configured to count a number of cycles of the oscillating output voltage, and configured to convert the number of cycles to a count value.
  - 20. The method as recited in claim 18, further comprising:
    - coupling an external battery to the microprocessor that provides a voltage to power the secure real time clock, thereby providing for persistent operation of the secure real time clock as long as the voltage is within an acceptable range.
  - 21. The method as recited in claim 20, wherein said secure real time clock comprises:
    - conversion logic, configured to receive a count value from a counter within the secure real time clock, and configured to convert the count value to the persistent time value.
  - 22. The method as recited in claim 21, wherein the conversion logic is configured to detect a significant variation of the voltage.
  - 23. The method as recited in claim 21, wherein the conversion logic is configured to detect a significant variation of the frequency of the external crystal.
  - 24. The method as recited in claim 21, wherein the conversion logic is configured to assert signals to interrupt the secure code to indicate tampering with the external crystal or the external battery.
  - 25. The method as recited in claim 21, wherein the conversion logic is configured to evaluate a signal indicating die temperature to determine temperature excursions that may cause the persistent time to be inaccurate, and configured to generate an secure interrupt signal to interrupt the secure code.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
VIA Technologies Incorporated (VIA Technologies)
Original Assignee
VIA Technologies Incorporated (VIA Technologies)
Inventors
Henry, G. Glenn, Parks, Terry
Primary Examiner(s)
Augustin, Evens J

Application Number

US12/263,168
Publication Number

US 20090293132A1
Time in Patent Office

1,761 Days
Field of Search

705/51, 705/53, 705/56, 726/26
US Class Current

726/26
CPC Class Codes

G06F 12/1408   by using cryptography for d...

G06F 21/12   Protecting executable software

G06F 21/14   against software analysis o...

G06F 21/554   involving event detection a...

G06F 21/70   Protecting specific interna...

G06F 21/71   to assure secure computing ...

G06F 21/72   in cryptographic circuits

G06F 21/73   by creating or determining ...

G06F 21/74   operating in dual or compar...

G06F 21/82   Protecting input, output or...

Microprocessor apparatus for secure on-die real-time clock

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

25 Claims

Specification

Solutions

Use Cases

Quick Links

Microprocessor apparatus for secure on-die real-time clock

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

25 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links