Root of trust of geolocation
First Claim
1. An apparatus comprising:
- a network interface unit configured to enable network communications;
a trust anchor module including a cryptographic processor and a secure memory; and
a main processor coupled to the network interface unit and the trust anchor module and configured to;
receive, via the network interface unit, a digital geolocation certificate for the apparatus, the digital geolocation certificate including information identifying the apparatus, information regarding a physical location of the apparatus, information identifying an authorized entity that has verified the physical location of the apparatus, and a digital signature of the authorized entity;
cause the trust anchor module to store the digital geolocation certificate in the secure memory such that the digital geolocation certificate is cryptographically bound to the apparatus in a manner that renders the digital geolocation certificate immutable; and
measure a location of the apparatus based on communications with external sources;
wherein the trust anchor module is configured to store a log of location measurements based on the communications with external sources in the secure memory, wherein the location measurements stored in the log are protected from tampering by only allowing additional location measurements stored in the log to be added, and not to be removed or modified, using a privileged process that is executed by the cryptographic processor, and wherein a trustworthiness associated with a location measurement of the log of location measurements is determined based on a weighted sum of positive weighted values for each external source that agrees with the information regarding the physical location of the apparatus in the digital geolocation certificate and negative weighted values for each external source that disagrees with the information regarding the physical location of the apparatus in the digital geolocation certificate; and
wherein a configuration of the apparatus is attested to external entities by providing the digital geolocation certificate from the trust anchor module.
1 Assignment
0 Petitions
Accused Products
Abstract
A root-of-trust of geolocation is provided for an apparatus that includes a trust anchor module with a cryptographic processor and a secure memory. The apparatus further includes a main processor coupled to the trust anchor module and configured to receive a digital geolocation certificate, the geolocation certificate including information identifying the apparatus, information regarding a physical location of the apparatus, information identifying an authorized entity that has verified the physical location of the apparatus, and a digital signature of the authorized entity. The main processor is further configured to cause the trust anchor module to store the digital geolocation certificate in the secure memory such that the digital geolocation certificate is cryptographically bound to the apparatus. The trust anchor module may also include, or otherwise communicate over a secure channel with, a movement sensor associated with the apparatus.
20 Citations
21 Claims
-
1. An apparatus comprising:
-
a network interface unit configured to enable network communications; a trust anchor module including a cryptographic processor and a secure memory; and a main processor coupled to the network interface unit and the trust anchor module and configured to; receive, via the network interface unit, a digital geolocation certificate for the apparatus, the digital geolocation certificate including information identifying the apparatus, information regarding a physical location of the apparatus, information identifying an authorized entity that has verified the physical location of the apparatus, and a digital signature of the authorized entity; cause the trust anchor module to store the digital geolocation certificate in the secure memory such that the digital geolocation certificate is cryptographically bound to the apparatus in a manner that renders the digital geolocation certificate immutable; and measure a location of the apparatus based on communications with external sources; wherein the trust anchor module is configured to store a log of location measurements based on the communications with external sources in the secure memory, wherein the location measurements stored in the log are protected from tampering by only allowing additional location measurements stored in the log to be added, and not to be removed or modified, using a privileged process that is executed by the cryptographic processor, and wherein a trustworthiness associated with a location measurement of the log of location measurements is determined based on a weighted sum of positive weighted values for each external source that agrees with the information regarding the physical location of the apparatus in the digital geolocation certificate and negative weighted values for each external source that disagrees with the information regarding the physical location of the apparatus in the digital geolocation certificate; and wherein a configuration of the apparatus is attested to external entities by providing the digital geolocation certificate from the trust anchor module. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 19)
-
-
11. A method of establishing a root of trust of geolocation for an apparatus including a trust anchor module having a cryptographic processor and a secure memory, the method comprising:
-
receiving, at the apparatus, a digital geolocation certificate for the apparatus, the digital geolocation certificate including information identifying the apparatus, information regarding a physical location of the apparatus, information identifying an authorized entity that has verified the physical location of the apparatus, and a digital signature of the authorized entity; storing the digital geolocation certificate in the secure memory of the apparatus such that the digital geolocation certificate is cryptographically bound to the apparatus in a manner that renders the digital geolocation certificate immutable; measuring a location of the apparatus based on communications with external sources;
storing a log of location measurements based on the communications with external sources in the secure memory, wherein the location measurements stored in the log are protected from tampering by only allowing additional location measurements stored in the log to be added, and not to be removed or modified, using a privileged process that is executed by the cryptographic processor, and wherein a trustworthiness associated with a location measurement of the log of location measurements is determined based on a weighted sum of positive weighted values for each external source that agrees with the information regarding the physical location of the apparatus in the digital geolocation certificate and negative weighted values for each external source that disagrees with the information regarding the physical location of the apparatus in the digital geolocation certificate; andattesting to a configuration of the apparatus to external entities by providing the digital geolocation certificate from the trust anchor module. - View Dependent Claims (12, 13, 14, 20)
-
-
15. A non-transitory computer-readable storage media encoded with software comprising computer executable instructions and when the software is executed operable to:
-
receive, at an apparatus including a trust anchor module having a cryptographic processor and a secure memory, a digital geolocation certificate for the apparatus, the digital geolocation certificate including information identifying the apparatus, information regarding a physical location of the apparatus, information identifying an authorized entity that has verified the physical location of the apparatus, and a digital signature of the authorized entity; store the digital geolocation certificate in the secure memory of the apparatus such that the digital geolocation certificate is cryptographically bound to the apparatus in a manner that renders the digital geolocation certificate immutable; measure a location of the apparatus based on communications with external sources;
store a log of location measurements based on the communications with external sources in the secure memory, wherein the location measurements stored in the log are protected from tampering by only allowing additional location measurements stored in the log to be added, and not to be removed or modified, using a privileged process that is executed by the cryptographic processor, and wherein a trustworthiness associated with a location measurement of the log of location measurements is determined based on a weighted sum of positive weighted values for each external source that agrees with the information regarding the physical location of the apparatus in the digital geolocation certificate and negative weighted values for each external source that disagrees with the information regarding the physical location of the apparatus in the digital geolocation certificate; andattest to a configuration of the apparatus to external entities by providing the digital geolocation certificate from the trust anchor module. - View Dependent Claims (16, 17, 18, 21)
-
Specification