Mobile platform software update with secure authentication
First Claim
1. A communication device having a memory and a processor coupled to said memory, said communication device comprising:
- an image update system to receive a software update image from an update server, said image update system executing at an operating system (OS) level; and
a trusted execution environment (TEE) operating on said device to restrict control access and data access, by an OS and applications executing on said OS level, to systems operating within said TEE, said TEE including;
a critical component database including data identifying critical software components associated with secure operation of said device, wherein said identifying data is included in said critical component database prior to said software update image being received from said update server; and
a secure update application system to verify, using the identifying data, the inclusion of said critical software components in said software update image prior to installation of said software update image on said device.
3 Assignments
0 Petitions
Accused Products
Abstract
Generally, this disclosure describes devices, methods and systems and for securely updating software on a mobile platform using trusted hardware based authentication. The device may include an image update module configured to receive a software update image from an update server, the image update module executing at an operating system (OS) level; a critical component database configured to identify critical software components associated with the secure operation of the device; a secure update application module configured to verify the inclusion of the critical software components in the software update image prior to installation of the software update image on the device; and a trusted execution environment (TEE) configured to restrict control access and data access to the secure update application module and the critical component database, the restriction enforced against the OS and against modules executing at the OS level.
26 Citations
29 Claims
-
1. A communication device having a memory and a processor coupled to said memory, said communication device comprising:
-
an image update system to receive a software update image from an update server, said image update system executing at an operating system (OS) level; and a trusted execution environment (TEE) operating on said device to restrict control access and data access, by an OS and applications executing on said OS level, to systems operating within said TEE, said TEE including; a critical component database including data identifying critical software components associated with secure operation of said device, wherein said identifying data is included in said critical component database prior to said software update image being received from said update server; and a secure update application system to verify, using the identifying data, the inclusion of said critical software components in said software update image prior to installation of said software update image on said device. - View Dependent Claims (2, 3, 4, 5, 6, 26)
-
-
7. A method for securely updating a software image for a communication device, said method comprising:
-
receiving said software image from an update server, wherein said software image comprises one or more downloaded software components; matching said downloaded software components to identifying data identifying critical software components associated with secure operations of said device included in a critical component database, wherein said critical component database is maintained in a trusted execution environment (TEE) operating on said device and said identifying data is included in said critical component database prior to said software image being received from said update server, wherein said TEE is to enforce control access and data access restrictions against software running at an operating system level on said device, said matching performed in said TEE to verify, using said identifying data, the inclusion of said critical software components in said software image prior to installation of said software image on said device; and installing said software image on said device based on the results of said matching. - View Dependent Claims (8, 9, 10, 11, 12, 27)
-
-
13. One or more computer-readable storage memories having instructions stored thereon which when executed by a processor result in the following operations for securely updating a software image for a communication device, said operations comprising:
-
causing said software image to be received from an update server, wherein said software image comprises one or more downloaded software components; matching said downloaded software components to identifying data identifying critical software components associated with secure operations of said device included in a critical component database, wherein said critical component database is maintained in a trusted execution environment (TEE) operating on said device and said identifying data is included in said critical component database prior to said software image being received from said update server, wherein said TEE is to enforce control access and data access restrictions against software running at an operating system level on said device, said matching performed in said TEE to verify, using said identifying data, the inclusion of said critical software components in said software image prior to installation of said software image on said device; and causing said software image to be installed on said device based on the results of said matching. - View Dependent Claims (14, 15, 16, 17, 18, 28)
-
-
19. A mobile communication platform comprising:
-
a processor; a memory coupled to said processor; an input/output (I/O) system coupled to said processor; a user interface coupled to said I/O system; an image update system to receive a software update image from an update server, said image update system executing at an operating system (OS) level; and a trusted execution environment (TEE) operating on said platform to restrict control access and data access, by an OS and applications executing on said OS level, to systems operating within said TEE, said TEE including; a critical component database including data identifying critical software components associated with secure operation of said device, wherein said identifying data is included in said critical component database prior to said software update image being received from said update server; and a secure update application system to verify, using the identifying data, the inclusion of said critical software components in said software update image prior to installation of said software update image on said device. - View Dependent Claims (20, 21, 22, 23, 24, 25, 29)
-
Specification