USING A TOFU (TRUST ON FIRST USE) SCHEME TO PROVIDE A SECURE INTERFACE BETWEEN TWO MODULES
An architecture is provided that enables a trust on first use (TOFU) scheme to be realized for two modules (such as an SoC and a companion module) that comprise part of a hardware platform. The architecture leverages symmetric encryption schemes and relies upon an initial setup process in a controll...
Saved in:
Main Authors | , |
---|---|
Format | Patent |
Language | English |
Published |
23.05.2024
|
Subjects | |
Online Access | Get full text |
Cover
Loading…
Summary: | An architecture is provided that enables a trust on first use (TOFU) scheme to be realized for two modules (such as an SoC and a companion module) that comprise part of a hardware platform. The architecture leverages symmetric encryption schemes and relies upon an initial setup process in a controlled environment, during which time unencrypted communications may initially be used until the SoC and companion module each store a security key that is generated by the SoC. The key may be a bit string that is generated via a random number generator, thereby obviating the need to utilize hardware secure module (HSM) provisioning and complex encryption hardware. Moreover, the disclosure is directed to supporting additional phases of the manufacturing process, such as debugging and a restoration process that functions to delete or invalidate the keys stored in the SoC and companion module. |
---|---|
Bibliography: | Application Number: US202218057303 |