首页>
外国专利>
Trust Zone Support in System on a Chip Having Security Enclave Processor
Trust Zone Support in System on a Chip Having Security Enclave Processor
展开▼
机译:具有安全区域处理器的片上系统中的信任区支持
展开▼
页面导航
摘要
著录项
相似文献
摘要
An SOC implements a security enclave processor (SEP). The SEP may include a processor and one or more security peripherals. The SEP may be isolated from the rest of the SOC (e.g. one or more central processing units (CPUs) in the SOC, or application processors (APs) in the SOC). Access to the SEP may be strictly controlled by hardware. For example, a mechanism in which the CPUs/APs can only access a mailbox location in the SEP is described. The CPU/AP may write a message to the mailbox, which the SEP may read and respond to. The SEP may include one or more of the following in some embodiments: secure key management using wrapping keys, SEP control of boot and/or power management, and separate trust zones in memory.
展开▼
机译:SOC实现了安全区域处理器(SEP)。 SEP可以包括处理器和一个或多个安全外围设备。 SEP可以与其余SOC(例如SOC中的一个或多个中央处理单元(CPU)或SOC中的应用处理器(AP))隔离开来。对SEP的访问可能受硬件严格控制。例如,描述了一种机制,其中CPU / AP只能访问SEP中的邮箱位置。 CPU / AP可以将消息写入邮箱,SEP可以读取并响应该消息。在一些实施例中,SEP可以包括以下一项或多项:使用包装密钥的安全密钥管理,引导和/或电源管理的SEP控制以及内存中的单独信任区。
展开▼