Mobile communication device and method of operating thereof
First Claim
1. A mobile communication device comprising:
- a first trusted platform module;
a second trusted platform module;
a processor; and
a non-transitory storage medium comprising instructions that cause said processor to;
establish a first root of trust for a first persona, the first persona comprising a first operating system and a first trusted execution environment;
establish a second root of trust for a second persona, the second persona comprising a second operating system and a second trusted execution environment, wherein the first root of trust is separate from the second root of trust;
store measurements defining the first root of trust for the first persona in the first trusted platform module;
store measurements defining the second root of trust for the second persona in the second trusted platform module; and
load the first persona and the second persona using the roots of trust for the first and second personas, wherein the first persona can access components of the mobile communication device according to the first root of trust and the second persona can access components of the mobile communication device according to the second root of trust.
1 Assignment
0 Petitions
Accused Products
Abstract
A mobile communication device is provided. The mobile communication device includes a first trusted platform module, a second trusted platform module, a processor, and a storage medium. The storage medium includes instructions that cause the processor to establish a root of trust for a first persona and a second persona, wherein the first persona includes a first operating system and a first trusted execution environment, and the second persona includes a second operating system and a second trusted execution environment. The instructions also cause the processor to store measurements defining the root of trust for the first persona in the first trusted platform module, store measurements defining the root of trust for the second persona in the second trusted platform module, and load the first persona and the second persona using the roots of trust for the first and second personas.
-
Citations
20 Claims
-
1. A mobile communication device comprising:
-
a first trusted platform module; a second trusted platform module; a processor; and a non-transitory storage medium comprising instructions that cause said processor to; establish a first root of trust for a first persona, the first persona comprising a first operating system and a first trusted execution environment; establish a second root of trust for a second persona, the second persona comprising a second operating system and a second trusted execution environment, wherein the first root of trust is separate from the second root of trust; store measurements defining the first root of trust for the first persona in the first trusted platform module; store measurements defining the second root of trust for the second persona in the second trusted platform module; and load the first persona and the second persona using the roots of trust for the first and second personas, wherein the first persona can access components of the mobile communication device according to the first root of trust and the second persona can access components of the mobile communication device according to the second root of trust. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A method of operating a mobile communication device, said method comprising:
-
establishing a first root of trust for a first persona, the first persona including a first operating system and a first trusted execution environment; establishing a second root of trust for a second persona, the second persona including a second operating system and a second trusted execution environment, wherein the first root of trust is separate from the second root of trust; storing measurements defining the first root of trust for the first persona in a first trusted platform module; storing measurements defining the second root of trust for the second persona in a second trusted platform module; and loading the first persona and the second persona using the roots of trust for the first and second personas, wherein the first persona can access components of the mobile communication device according to the first root of trust and the second persona can access components of the mobile communication device according to the second root of trust. - View Dependent Claims (9, 10, 11, 12, 13, 14, 15)
-
-
16. A non-transitory computer readable medium storing computer-executable instructions thereon for operating a mobile communication device that includes a processor, a first trusted platform module, and a second trusted platform module, the computer-executable instructions cause the processor to:
-
establish a first root of trust for a first persona, the first persona including a first operating system and a first trusted execution environment; establish a second root of trust for a second persona, the second persona including a second operating system and a second trusted execution environment, wherein the first root of trust is separate from the second root of trust; store measurements defining the root of trust for the first persona in the first trusted platform module; store measurements defining the second root of trust for the second persona in the second trusted platform module; and load the first persona and the second persona using the roots of trust for the first and second personas, wherein the first persona can access components of the mobile communication device according to the first root of trust and the second persona can access components of the mobile communication device according to the second root of trust. - View Dependent Claims (17, 18, 19, 20)
-
Specification