Semiconductor memory device

US 8,732,466 B2
Filed: 06/15/2012
Issued: 05/20/2014
Est. Priority Date: 12/02/2011
Status: Active Grant

First Claim

Patent Images

1. A host device which can execute an authentication process with a memory device provided with a first area where read is restricted and readable second area and third area, whereinthe host device has first key data recorded as a set and is configured to:

read encrypted secret data stored in the second area;

decrypt the encrypted secret data with family key data obtained based on family key block data read from the third area;

read key index data stored in the second area and select, from the set, the first key data corresponding to the key index data;

generate session key data by executing an AES (Advanced Encryption Standard) encryption process with number data and the selected first key data;

execute a conversion process using a one-way function with, as input values, the session key data and secret data generated by decrypting the encrypted secret data to thereby generate verification data; and

execute a conversion process using a one-way function with the secret data as an input value to thereby generate EMID.

View all claims

5 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

According to one embodiment, a device includes a first memory area to store a first key. A second memory area stores encrypted secret identification (ID) information generated from secret ID information with a family key. A third memory area stores a family key block including data generated from the family key with an ID key. An authentication module performs authentication. A second key is generated from a first number with the first key, a session key is generated from a random number with the second key, and authentication information is generated from the secret ID information with the session key. The encrypted secret ID information, family key block and the authentication information is output.

57 Citations

View as Search Results

16 Claims

1. A host device which can execute an authentication process with a memory device provided with a first area where read is restricted and readable second area and third area, whereinthe host device has first key data recorded as a set and is configured to:
- read encrypted secret data stored in the second area;
  
  decrypt the encrypted secret data with family key data obtained based on family key block data read from the third area;
  
  read key index data stored in the second area and select, from the set, the first key data corresponding to the key index data;
  
  generate session key data by executing an AES (Advanced Encryption Standard) encryption process with number data and the selected first key data;
  
  execute a conversion process using a one-way function with, as input values, the session key data and secret data generated by decrypting the encrypted secret data to thereby generate verification data; and
  
  execute a conversion process using a one-way function with the secret data as an input value to thereby generate EMID.
- View Dependent Claims (2, 3, 4, 5, 6, 7)
- - 2. The device of claim 1, wherein the EMID is identification information, and is configured to be able to be generated based on the secret data and information stored in the host device.
  - 3. The device of claim 2, wherein the host device is configured to be able to transmit number data assigned to the host device along with an authentication request to the memory device.
  - 4. The device of claim 3, wherein the host device has means to execute verification to authentication information received from the memory device with the verification data.
  - 5. The device of claim 1, wherein the host device is configured to be able to transmit number data assigned to the host device along with an authentication request to the memory device.
  - 6. The device of claim 5, wherein the host device has means to execute verification to authentication information received from the memory device with the verification data.
  - 7. The device of claim 1, wherein the host device has means to execute verification to authentication information received from the memory device with the verification data.

8. A device which can execute an authentication process with an external device which has secret information stored in an unreadable manner, and encrypted secret information, family key block information and index information stored in a readable manner, whereinthe device has first key information recorded as a set and is configured to:
- read the encrypted secret information, the family key block information, and the index information from the external device;
  
  decrypt the encrypted secret information with family key information obtained based on the family key block information;
  
  select, from the set, the first key information corresponding to the index information;
  
  generate session key information with number information and the selected first key information;
  
  execute a conversion process using a one-way function with, as input values, the session key information and new secret information generated by decrypting the encrypted secret information to thereby generate verification information; and
  
  execute a conversion process using a one-way function with the new secret information as an input value to thereby generate identification information.
- View Dependent Claims (9, 10, 11, 12, 13, 14)
- - 9. The device of claim 8, wherein the device is configured to generate random number information different each time in an authentication process with the external device, generate the session key information with that random number information, and transmit the random number information to the external device.
  - 10. The device of claim 9, wherein the device is configured to verify authentication information received from the external device with the verification information, and generate the identification information after the verification.
  - 11. The device of claim 10, wherein the device is configured to transmit information on a slot number to the external device in the course of proceeding in the authentication process.
  - 12. The device of claim 8, wherein the device is configured to verify authentication information received from the external device with the verification information, and generate the identification information after the verification.
  - 13. The device of claim 12, wherein the device is configured to transmit information on a slot number to the external device in the course of proceeding in the authentication process.
  - 14. The device of claim 8, wherein the device is configured to transmit information on a slot number to the external device in the course of proceeding in the authentication process.

15. A system host device, which executes an authentication process with an external memory device, having first key information and secret information stored in an unreadable manner, and encrypted secret information, family key block information and index information stored in a readable manner, whereinthe external memory is configured to:
- generate second key information with the first key information;
  
  generate third key information with the second key information; and
  
  generate authentication information with the third key information and the secret information; and
  
  the host device has fourth key information recorded as a set and is configured to;
  
  read the encrypted secret information, the family key block information, and the index information from the memory device;
  
  decrypt the encrypted secret information with family key information obtained based on the family key block information;
  
  select, from the set, the fourth key information corresponding to the index information;
  
  generate fifth key information with number information and the selected fourth key information;
  
  execute a conversion process using a one-way function with, as input values, the fifth key information and new secret information generated by decrypting the encrypted secret information to thereby generate verification information; and
  
  execute a conversion process using a one-way function with the new secret information as an input value to thereby generate identification information.

16. A memory device which executes an authentication process with an external host device, whereinthe memory card has first key information and secret information stored in an unreadable manner in a first area, and encrypted secret information, family key block information and index information stored in a readable manner, and is configured to:
- generate second key information by executing an encryption process with the first key information;
  
  generate third key information by executing an encryption process with the second key information; and
  
  generate authentication information used for an authentication with the host device with the third key information and the secret information read from the first area; and
  
  the external host device has fourth key information and is configured to;
  
  decrypt the encrypted secret information with family key information obtained based on the family key block information;
  
  generate fifth key information with and the fourth key information; and
  
  generate identification information with the fifth key information.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Kioxia Corporation
Original Assignee
Kabushiki Kaisha Toshiba (Toshiba Corporation)
Inventors
Nagai, Yuji, Suzuki, Toshihiro, Shibata, Noboru, Kato, Taku, Matsushita, Tatsuyuki
Primary Examiner(s)
Zand, Kambiz
Assistant Examiner(s)
KAPLAN, BENJAMIN A

Application Number

US13/524,894
Publication Number

US 20130145164A1
Time in Patent Office

704 Days
Field of Search

713/168, 713/171
US Class Current

713/168
CPC Class Codes

G11B 20/00086   Circuits for prevention of ...

G11B 20/00115   wherein the record carrier ...

G11B 20/0021   involving encryption or dec...

G11B 2220/2516   Hard disks

G11B 2220/60   Solid state media details o...

H04L 2209/601   Broadcast encryption

H04L 9/0816   Key establishment, i.e. cry...

H04L 9/0822   using key encryption key

H04L 9/0833   involving conference or gro...

H04L 9/0897   involving additional device...

H04L 9/32   including means for verifyi...

Semiconductor memory device

First Claim

5 Assignments

0 Petitions

Accused Products

Abstract

57 Citations

16 Claims

Specification

Solutions

Use Cases

Quick Links

Semiconductor memory device

First Claim

5 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

57 Citations

16 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links