×

Securing data transmission between processor packages

  • US 9,729,309 B2
  • Filed: 12/19/2012
  • Issued: 08/08/2017
  • Est. Priority Date: 12/19/2012
  • Status: Active Grant
First Claim
Patent Images

1. A first processor package comprising:

  • first encryption proxy agent hardware including a first key storage in which secure software is to store a key, encryption circuitry to generate encrypted data by using the key to encrypt unencrypted data, and replay protection circuitry to append an anti-replay value to the encrypted data;

    a cache;

    a caching agent including processor circuitry to determine whether a memory address is within the cache, to determine whether the memory address is within a secure memory address range, and, if the memory address is not within the cache or the secure memory address range, to route the unencrypted data to a first link unit, and, if the memory address is not within the cache but is within the secure memory address range, to route the unencrypted data to the first encryption proxy agent hardware; and

    the first link unit including link circuitry to, if the memory address is not within the cache or the secure memory address range, receive the unencrypted data from the caching unit and generate a first plurality of packets to be transmitted directly to a second link unit of a second processor package through a point-to-point link, and to, if the memory address is not within the cache but is within the secure memory address range, receive the encrypted data from the first encryption proxy agent hardware and generate a second plurality of packets to be transmitted directly to the second link unit of the second processor package through the point-to-point link and to be decrypted by second encryption proxy agent hardware in the second processor package, wherein the second encryption proxy agent hardware includes a second key storage in which the secure software is to store the key.

View all claims
  • 0 Assignments
Timeline View
Assignment View
    ×
    ×