Secure factory data generation and restoration

US 9,542,558 B2
Filed: 03/12/2014
Issued: 01/10/2017
Est. Priority Date: 03/12/2014
Status: Active Grant

First Claim

Patent Images

1. A networked system for managing factory-generated data for an electronic device, the system comprising:

a first factory server device coupled to one or more non-volatile storage systems via a network, to persistently store a production version of calibration data generated for one or more sensor modules of the electronic device, each of the one or more sensor modules associated with a hardware component of the electronic device, the calibration data associated with the one or more sensor modules via a module identifier that is unique to each individual sensor module, wherein the first factory server device is further to transmit the calibration data to the one or more non-volatile storage systems via the network;

a second factory server device coupled to the one or more non-volatile storage systems, to retrieve the production version of the calibration data associated with the one or more sensor modules from the one or more storage systems and to assemble a set of factory data for the electronic device, the factory data including the calibration data, the factory data associated with the electronic device via a device identifier that is unique to the electronic device; and

a sealing server device coupled to the one or more non-volatile storage systems, the sealing server to, in response to a request from the electronic device, authenticate the set of factory data for the electronic device via the module identifier of each sensor module and to create a cryptographic association between the set of factory data and the electronic device after the authentication, wherein a manifest of the cryptographic association is stored on the electronic device.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

In various embodiments, methods, devices and systems for securely generating, sealing, and restoring factory-generated calibration and provisioning data for an electronic device are described, in which calibration and provisioning data for an electronic device are generated in a distributed manner and stored on a storage system. The calibration data can be retrieved from the storage system during device assembly and finalized calibration and provisioning data for each electronic device can be stored to the storage system. In one embodiment, a sealing server, to attest to the authenticity of the factory-generated data, seals the finalized calibration data. In one embodiment, an electronic device can access a data store containing the factory-generated data and can update or restore calibration or provisioning data for the device from the data store.

37 Citations

View as Search Results

24 Claims

1. A networked system for managing factory-generated data for an electronic device, the system comprising:
- a first factory server device coupled to one or more non-volatile storage systems via a network, to persistently store a production version of calibration data generated for one or more sensor modules of the electronic device, each of the one or more sensor modules associated with a hardware component of the electronic device, the calibration data associated with the one or more sensor modules via a module identifier that is unique to each individual sensor module, wherein the first factory server device is further to transmit the calibration data to the one or more non-volatile storage systems via the network;
  
  a second factory server device coupled to the one or more non-volatile storage systems, to retrieve the production version of the calibration data associated with the one or more sensor modules from the one or more storage systems and to assemble a set of factory data for the electronic device, the factory data including the calibration data, the factory data associated with the electronic device via a device identifier that is unique to the electronic device; and
  
  a sealing server device coupled to the one or more non-volatile storage systems, the sealing server to, in response to a request from the electronic device, authenticate the set of factory data for the electronic device via the module identifier of each sensor module and to create a cryptographic association between the set of factory data and the electronic device after the authentication, wherein a manifest of the cryptographic association is stored on the electronic device.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
- - 2. The system as in claim 1, further comprising a data store to store the set of factory data, wherein the set of factory data and the manifest of the cryptographic association between the set of factory data and the electronic device are received by the data store after the authentication and the one or more sensor modules include a touch sensor module and a pressure sensor module.
  - 3. The system as in claim 2, further comprising a migration service, to facilitate transmission of the calibration data from the first factory server device to the second factory server device via the one or more non-volatile storage systems, and to facilitate the transmission of the set of factory data to the data store.
  - 4. The system as in claim 1, wherein the first factory server device and the second factory server device are each configured to couple with at least one test station.
  - 5. The system as in claim 4, wherein the first factory server device is to couple with a first test station to receive calibration data generated for one or more sensor modules and wherein the first test station is within a data security domain that differs from the first factory server device.
  - 6. The system as in claim 1, wherein the sealing server device is to authenticate the set of factory data based on an authentication policy.
  - 7. The system as in claim 6, wherein the authentication policy includes to authenticate the set of factory data only if authentication is attempted while the electronic device is in a factory environment.
  - 8. The system as in claim 6, wherein the authentication policy includes to authenticate the set of factory data in response to receiving a user authentication token.
  - 9. The system as in claim 6, wherein to authenticate the set of factory data includes to validate the set of factory data based on a validation policy.
  - 10. The system of claim 9, wherein the validation policy includes to validate the set of factory data only if the set of factory data is complete.

11. One or more non-transitory machine readable media storing instructions which, when executed by one or more processors, cause the one or more processors to perform operations for managing factory-generated data for an electronic device, the operations comprising:
- persistently storing a production version of calibration data generated for one or more sensor modules of the electronic device via a first networked server device, each of the one or more sensor modules associated with a hardware component of the electronic device, the calibration data associated with the one or more sensor modules via a module identifier that is unique to each individual sensor module;
  
  transmitting the calibration data to one or more non-volatile storage systems via a network connection of the first networked server device;
  
  retrieving, via a network connection of a second networked server device, the production version of the calibration data associated with the one or more sensor modules from the one or more non-volatile storage systems;
  
  assembling a set of factory data for the electronic device, the factory data including the calibration data and associated with the electronic device via a device identifier that is unique to the electronic device;
  
  authenticating, at a sealing server device in response to a request from the electronic device, the set of factory data for the electronic device, the authenticating performed via the module identifier of each sensor module;
  
  creating a cryptographic association between the set of factory data and the electronic device after the authentication; and
  
  storing a manifest of the cryptographic association on the electronic device.
- View Dependent Claims (12, 13, 14, 15, 16, 17)
- - 12. The one or more non-transitory machine readable media as in claim 11, the operations additionally comprising storing the set of factory data and the manifest of the cryptographic association between the set of factory data and the electronic device on a data store after authenticating the set of factory data for the electronic device.
  - 13. The one or more non-transitory machine readable media as in claim 12, wherein the one or more sensor modules of the electronic device include a touch sensor module and a pressure sensor module.
  - 14. The one or more non-transitory machine readable media as in claim 12, the operations additionally including providing a migration service to facilitate transmission of the calibration data from the first networked server device to the second networked server device and to facilitate the transmission of the set of factory data to the data store.
  - 15. The one or more non-transitory machine readable media as in claim 11, the operations additionally comprising receiving calibration data generated for the one or more sensor modules from a first test station, the first test station within a data security domain that differs from the first networked server device.
  - 16. The one or more non-transitory machine readable media as in claim 11, the operations additionally comprising authenticating the set of factory data based on an authentication policy, wherein authenticating the set of factory data based on an authentication policy includes validating the set of factory data based on a validation policy, the validation policy including validating the set of factory data only if the set of factory data is complete.
  - 17. The one or more non-transitory machine readable media as in claim 16, the operations additionally including authenticating the set of factory data only if authentication is attempted while the electronic device is in a factory environment or in response to receiving an authentication token.

18. A method of managing factory-generated data for an electronic device, the method comprising:
- persistently storing a production version of calibration data generated for one or more sensor modules of the electronic device via a first networked server device, each of the one or more sensor modules associated with a hardware component of the electronic device, the calibration data associated with the one or more sensor modules via a module identifier that is unique to each individual sensor module;
  
  transmitting the calibration data to one or more non-volatile storage systems via a network connection of the first networked server device;
  
  retrieving, via a network connection of a second networked server device, the production version of the calibration data associated with the one or more sensor modules from the one or more non-volatile storage systems;
  
  assembling a set of factory data for the electronic device, the factory data including the calibration data and associated with the electronic device via a device identifier that is unique to the electronic device;
  
  authenticating, at a sealing server device in response to a request from the electronic device, the set of factory data for the electronic device, the authenticating performed via the module identifier of each sensor module;
  
  creating a cryptographic association between the set of factory data and the electronic device after the authentication; and
  
  storing a manifest of the cryptographic association on the electronic device.
- View Dependent Claims (19, 20, 21, 22, 23, 24)
- - 19. The method as in claim 18, additionally comprising storing the set of factory data and the manifest of the cryptographic association between the set of factory data and the electronic device on a data store after authenticating the set of factory data for the electronic device.
  - 20. The method as in claim 19, wherein the one or more sensor modules of the electronic device include a touch sensor module and a pressure sensor module.
  - 21. The method as in claim 19, additionally including providing a migration service to facilitate transmission of the calibration data from the first networked server device to the second networked server device and to facilitate the transmission of the set of factory data to the data store.
  - 22. The method as in claim 18, additionally comprising receiving calibration data generated for the one or more sensor modules from a first test station, the first test station within a data security domain that differs from the first networked server device.
  - 23. The method as in claim 18, additionally comprising authenticating the set of factory data based on an authentication policy, wherein authenticating the set of factory data based on an authentication policy includes validating the set of factory data based on a validation policy, the validation policy including validating the set of factory data only if the set of factory data is complete.
  - 24. The method as in claim 23, additionally including authenticating the set of factory data only if authentication is attempted while the electronic device is in a factory environment or in response to receiving an authentication token.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Apple Inc.
Original Assignee
Apple Inc.
Inventors
Mensch, Thomas P., Gosnell, Jason D., Hauck, Jerrold V., Vempaty, Muralidhar S., De Atley, Dallas B.
Primary Examiner(s)
Hirl, Joseph P
Assistant Examiner(s)
GUNDRY, STEPHEN T

Application Number

US14/207,361
Publication Number

US 20150261966A1
Time in Patent Office

1,035 Days
Field of Search
US Class Current

1/1
CPC Class Codes

G06F 21/57   Certifying or maintaining t...

G06F 21/572   Secure firmware programming...

G06F 21/577   Assessing vulnerabilities a...

G06F 21/602   Providing cryptographic fac...

G06F 21/6218   to a system of files or obj...

H04L 63/0428   wherein the data content is...

H04L 63/083   using passwords cryptograph...

H04L 63/0876   based on the identity of th...

H04L 9/3247   involving digital signatures

Secure factory data generation and restoration

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

37 Citations

24 Claims

Specification

Solutions

Use Cases

Quick Links

Secure factory data generation and restoration

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

37 Citations

24 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links