Non-volatile memory operations
First Claim
1. A non-volatile memory chip, comprising:
- an interface module;
a controller that is operably coupled to the interface module;
a key storage module that is operably coupled to the controller, the key storage module being configured to store a key;
a non-volatile storage module that is operably coupled to the controller and configured to store data, the non-volatile storage module having a first partition and a second partition, wherein;
the first partition is designated as a read-only storage area for the data,the second partition is designated as a write-only storage area for new data received through the interface module, andthe first partition is re-designated as the write-only storage area for other new data and the second partition is re-designated as the read-only storage area for the new data in response to the new data being written to the second partition with a signature and the controller verifying the signature using the key stored in the key storage module; and
a policy module that is operably coupled to the controller and configured to;
store version information related to the new data in the second partition, andreceive and store policy information using a bitmask, wherein the bitmask is used as a permissions mask and the bitmask is used to assign unique identifier information to uniquely identify the non-volatile memory chip.
2 Assignments
0 Petitions
Accused Products
Abstract
An apparatus includes an interface module, a controller, a key storage module, where the key storage module is configured to store a key, and a non-volatile storage module that is configured to store data. The non-volatile storage module has a first partition and a second partition, where the first partition is designated as a read-only storage area for the data and the second partition is designated as a write-only storage area for new data. The first partition is re-designated as the write-only storage area for other new data and the second partition is re-designated as the read-only storage area for the new data in response to the new data being written to the second partition with a signature and the controller verifying the signature using the key stored in the key storage module.
25 Citations
27 Claims
-
1. A non-volatile memory chip, comprising:
-
an interface module; a controller that is operably coupled to the interface module; a key storage module that is operably coupled to the controller, the key storage module being configured to store a key; a non-volatile storage module that is operably coupled to the controller and configured to store data, the non-volatile storage module having a first partition and a second partition, wherein; the first partition is designated as a read-only storage area for the data, the second partition is designated as a write-only storage area for new data received through the interface module, and the first partition is re-designated as the write-only storage area for other new data and the second partition is re-designated as the read-only storage area for the new data in response to the new data being written to the second partition with a signature and the controller verifying the signature using the key stored in the key storage module; and a policy module that is operably coupled to the controller and configured to; store version information related to the new data in the second partition, and receive and store policy information using a bitmask, wherein the bitmask is used as a permissions mask and the bitmask is used to assign unique identifier information to uniquely identify the non-volatile memory chip. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13)
-
-
14. A non-volatile security chip, comprising:
-
an interface module; a key storage module that is configured to store a key; and a controller that is operably coupled to the interface module and to the key storage module, the controller being configured to interface with an external non-volatile memory chip for storing data and the controller being configured to; partition the external non-volatile memory chip into a first partition and a second partition, the first partition being designated as a read-only storage area for the data and the second partition being designated as a write-only storage area for new data received through the interface module, receive the new data having a signature through the interface module and write the new data to the second partition, verify the signature using the key stored in the key storage module, re-designate the first partition as the write-only storage area for other new data and re-designate the second partition as the read-only storage area for the new data in response to verifying the signature using the key stored in the key storage module; and store version information related to the new data in the second partition in a policy module and store policy information using a bitmask in the policy module, wherein the bitmask is used as a permissions mask and is used to assign unique identifier information to uniquely identify the external non-volatile memory chip. - View Dependent Claims (15, 16, 17, 18, 19, 20, 21, 22, 23, 24)
-
-
25. A method, comprising:
-
partitioning a non-volatile memory chip into a first partition and a second partition, the first partition being designated as a read-only storage area for data and the second partition being designated as a write-only storage area for new data received through an interface module; receiving the new data having a signature through the interface module and writing the new data to the second partition; verifying, by a controller, the signature with a key stored in a key storage module; re-designating the first partition as the write-only storage area for other new data and re-designating the second partition as the read-only storage area for the new data in response to verifying the signature with the key stored in the key storage module; storing version information related to the new data in the second partition in a policy module; and storing policy information using a bitmask in the policy module, wherein the bitmask is used as a permissions mask and is used to assign unique identifier information to uniquely identify the non-volatile memory chip. - View Dependent Claims (26, 27)
-
Specification