USING A TOFU (TRUST ON FIRST USE) SCHEME TO PROVIDE A SECURE INTERFACE BETWEEN TWO MODULES

An architecture is provided that enables a trust on first use (TOFU) scheme to be realized for two modules (such as an SoC and a companion module) that comprise part of a hardware platform. The architecture leverages symmetric encryption schemes and relies upon an initial setup process in a controll...

Full description

Saved in:
Bibliographic Details
Main Authors Kahana, Yoni, Mann, Eytan
Format Patent
LanguageEnglish
Published 23.05.2024
Subjects
ELECTRIC COMMUNICATION TECHNIQUE
ELECTRICITY
TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION
Online AccessGet full text

Cover

More Information
Summary:An architecture is provided that enables a trust on first use (TOFU) scheme to be realized for two modules (such as an SoC and a companion module) that comprise part of a hardware platform. The architecture leverages symmetric encryption schemes and relies upon an initial setup process in a controlled environment, during which time unencrypted communications may initially be used until the SoC and companion module each store a security key that is generated by the SoC. The key may be a bit string that is generated via a random number generator, thereby obviating the need to utilize hardware secure module (HSM) provisioning and complex encryption hardware. Moreover, the disclosure is directed to supporting additional phases of the manufacturing process, such as debugging and a restoration process that functions to delete or invalidate the keys stored in the SoC and companion module.
Bibliography:Application Number: US202218057303