US20160134628A1 - Integrity protection for data storage - Google Patents

Integrity protection for data storage Download PDF

Info

Publication number
US20160134628A1
US20160134628A1 US14/535,999 US201414535999A US2016134628A1 US 20160134628 A1 US20160134628 A1 US 20160134628A1 US 201414535999 A US201414535999 A US 201414535999A US 2016134628 A1 US2016134628 A1 US 2016134628A1
Authority
US
United States
Prior art keywords
counter
epoch
sequence number
opportunity
memory block
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
US14/535,999
Other versions
US9350732B1 (en
Inventor
Michael Kenneth Bowler
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Synopsys Inc
Original Assignee
Synopsys Inc
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Synopsys Inc filed Critical Synopsys Inc
Priority to US14/535,999 priority Critical patent/US9350732B1/en
Assigned to Elliptic Technologies Inc. reassignment Elliptic Technologies Inc. ASSIGNMENT OF ASSIGNORS INTEREST (SEE DOCUMENT FOR DETAILS). Assignors: BOWLER, MICHAEL KENNETH
Assigned to SYNOPSYS INC. reassignment SYNOPSYS INC. ASSIGNMENT OF ASSIGNORS INTEREST (SEE DOCUMENT FOR DETAILS). Assignors: Elliptic Technologies Inc.
Publication of US20160134628A1 publication Critical patent/US20160134628A1/en
Priority to US15/161,021 priority patent/US10042780B2/en
Application granted granted Critical
Publication of US9350732B1 publication Critical patent/US9350732B1/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0876Network architectures or network communication protocols for network security for authentication of entities based on the identity of the terminal or configuration, e.g. MAC address, hardware or software configuration or device fingerprint
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F12/00Accessing, addressing or allocating within memory systems or architectures
    • G06F12/14Protection against unauthorised use of memory or access to memory
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/70Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer
    • G06F21/78Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure storage of data
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/70Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer
    • G06F21/78Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure storage of data
    • G06F21/79Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure storage of data in semiconductor storage media, e.g. directly-addressable memories

Definitions

  • the present disclosure relates to integrity protection of data storage, memory caching and cryptography.
  • a method for protecting the integrity of a memory system divided in a plurality of memory blocks each of which has a local sequence number.
  • the method maintains an age counter for each of the memory blocks; maintains an opportunity counter for each of the memory blocks; maintains an epoch counter for the memory system; writes data in a selected memory block; increases the local sequence number of the selected memory block; updates the opportunity counter for the selected memory block if the local sequence number of the selected memory block rolls over; computes a message authentication code (MAC) in the selected memory block based on a global sequence number and the local sequence number; updates the age counter and the opportunity counter for any non-selected memory blocks if the opportunity counter for the non-selected memory blocks does not match the LSB of the epoch counter for the non-selected memory blocks; and computes a new MAC for any memory block for which the updating is performed.
  • MAC message authentication code
  • each of the MACs is updated opportunistically (1) after the corresponding age counter rolls over and (2) during the writing of data to the corresponding memory block.
  • FIG. 1 is a diagram of a global sequence number.
  • FIG. 2 is a flow chart of an example of the use of a local sequence number with an opportunity counter.
  • Integrity protection of memory systems located on insecure devices is generally done by computing a cryptographic integrity protection value or Message Authentication Code (MAC) and storing it along with the data. Therefore an unauthorized third party cannot modify the information written in memory.
  • MAC Message Authentication Code
  • a MAC algorithm sometimes called a keyed (cryptographic) hash function (however, a cryptographic hash function is only one of the possible ways to generate MACs), accepts as input a secret key and arbitrary-length data to be authenticated, and outputs a MAC (sometimes known as a tag).
  • the MAC value protects the data integrity as well as its authenticity, by allowing verifiers (who also possess the secret key) to detect any changes to the data content.
  • the MAC When the memory is authentically updated, the MAC is recomputed. To prevent replays of previously authentic values, a unique value, such as a counter or a sequence number, is added to the authentication input.
  • a MAC is also used when data cache writes out cache-lines to external memory.
  • a sequence number is associated to each and every cache line in the memory. Therefore, an attacker cannot capture an image of the external memory and after the memory has been updated, replace the cache-lines within the memory with a previously captured version.
  • the memory is segmented into memory blocks, and a MAC is stored along with each memory block.
  • a block can be one cache line or a larger memory space. Therefore, the authentication algorithm only needs to be performed over an individual, smaller memory block.
  • a separate sequence number needs to be maintained for every memory block. The sequence number needs to be sufficiently large to prevent it from expiring (rolling over) too often.
  • the cryptographic integrity algorithm needs to be re-keyed, which results in re-computing the MAC for all data blocks.
  • the memory system is not accessible, leading to access delays. Large sequence numbers are therefore preferable, but with a large number of blocks, a substantial amount of sequence number data needs to be stored and maintained.
  • An existing solution is to maintain a small local sequence number per memory block and a global epoch counter.
  • the epoch counter and the local sequence number are concatenated to form the sequence number applied to the integrity algorithm.
  • any time the epoch counter is updated each MAC needs to be updated.
  • the memory system is not accessible during the refresh process.
  • a global sequence number 100 comprises a local sequence number 101 and a global epoch counter 102 .
  • the local sequence number 101 is subdivided into two fields: an opportunity counter 110 and an age counter 115 .
  • An instance of the local sequence number 101 is maintained for every external cache line or memory block. All local sequence numbers reset to zero on key initialization.
  • the global epoch counter 102 is a counter global to all blocks.
  • the opportunity counter 110 allows the MAC to be updated opportunistically after the age counter 115 rolls over, during normal updates (writes) of the data block. It also allows the MAC to be refreshed to new epoch values off-line.
  • the width of the age, opportunity, and epoch counters can be tuned to trade-off the frequency of epoch update, off-line integrity check refresh to new epoch values, and opportunistic epoch updates versus memory storage requirements for the counter values.
  • a 32-bit global sequence number can include a 4-bit age counter and a 2-bit opportunity counter.
  • the epoch counter 102 and the age counter are concatenated to form the full sequence number used in computing the integrity protection value.
  • the Least Significant Bits (LSB) of the epoch counter are inferred by comparing the global epoch counter 102 to the local opportunity counter 110 .
  • the opportunity counter 110 is compared to the LSB of the epoch counter 102 . If they match, the age counter is incremented by 1. If the age counter wraps (carries into the opportunity counter), the epoch counter is incremented by 1. When the epoch counter increments, all local sequence numbers need to be checked, and every line that has an opportunity counter matching the LSB of the new epoch, needs to immediately have its MAC recomputed with the new sequence number.
  • the opportunity counter allows an offline update or refresh of the MAC when the epoch counter changes.
  • a background process or thread may update the local sequence numbers so that the opportunity counters are in sync with the current epoch. This can occur when the cache is not busy, i.e., on a low priority process.
  • the age counter resets to zero, to minimize the need for epoch updates.
  • the opportunity counter is set to match prior to computing the MAC, and the age counter is reset to zero.
  • the MAC corresponding to the line is therefore refreshed opportunistically.
  • the refresh process of an external cache line MAC value is performed by reading in the cache-line and validating the MAC.
  • the new MAC is computed using the updated global sequence number.
  • interrupts are optionally generated to the processor at various thresholds to prompt a proactive rekey operation before the counter expires.
  • a background process checks the opportunity counters and updates the MAC for any opportunity counter that is about to expire (for example the memory blocks that are 1 bit away from the LSB of the epoch.
  • any memory block MAC can be updated based on a pre-determined policy. This maximizes the time a cache-line can be opportunistically updated before getting hit with a refresh, and still allows the refresh to run as a background process.
  • FIG. 2 shows an example flow chart of an embodiment when an authentication code is updated for a memory block i is initiated at step 201 . If step 203 determines that the opportunity counter for block i is different from the LSB of the epoch counter at step 203 , the local sequence number is from a different epoch, then step 205 sets the opportunity counter for block i to the LSB of the epoch counter and resets the age counter for block i to zero. Otherwise, the local sequence number is in the current epoch, and step 207 increments the age counter for block i is incremented. If the age does not roll (i.e., there is no carry) at step 209 , the memory block i is updated with the new sequence number at step 211 .
  • the epoch counter needs to be updated at step 213 , the opportunity counter for block i is set to the LSB of the epoch counter and the age is reset to 0.
  • the memory block i is updated accordingly. All memory blocks j are checked at step 219 except for the one that was just updated at step 213 which is skipped by the If step 215 .
  • the opportunity counter for block j is equal to the LSB of the epoch counter at step 219 , then the opportunity counter has fallen behind by a number of epochs represented by the number of bits in the opportunity counter (in this example, four epochs, because the opportunity counter is 2 bits), and the MAC of memory block j needs to be refreshed at step 221 . If the opportunity counter for block j is not equal to the LSB of the epoch counter at step 219 , then no update is necessary for block j, and the next block is checked by incrementing the value of j at step 217 .
  • the above embodiment can also be used for encrypted memory systems.
  • Any of the methods, algorithms, implementations, or procedures described herein can include machine-readable instructions for execution by: (a) a processor, (b) a controller, and/or (c) any other suitable processing device.
  • Any algorithm, software, or method disclosed herein can be embodied in software stored on a non-transitory tangible medium such as, for example, a flash memory, a CD-ROM, a floppy disk, a hard drive, a digital versatile disk (DVD), or other memory devices, but persons of ordinary skill in the art will readily appreciate that the entire algorithm and/or parts thereof could alternatively be executed by a device other than a controller and/or embodied in firmware or dedicated hardware in a well known manner (e.g., it may be implemented by an application specific integrated circuit (ASIC), a programmable logic device (PLD), a field programmable logic device (FPLD), discrete logic, etc.).
  • ASIC application specific integrated circuit
  • PLD programmable logic device
  • FPLD field programmable logic device
  • machine-readable instructions represented in any flowchart depicted herein can be implemented manually as opposed to automatically by a controller, processor, or similar computing device or machine.
  • specific algorithms are described with reference to flowcharts depicted herein, persons of ordinary skill in the art will readily appreciate that many other methods of implementing the example machine readable instructions may alternatively be used. For example, the order of execution of the blocks may be changed, and/or some of the blocks described may be changed, eliminated, or combined.

Abstract

A system for protecting the integrity of a memory system maintains an age counter and an opportunity counter for each of multiple memory blocks; maintains an epoch counter for the memory system; writes data in a selected memory block; increases the local sequence number of the selected memory block; updates the opportunity counter for the selected memory block if the local sequence number of the selected memory block rolls over; computes a message authentication code (MAC) in the selected memory block based on a global sequence number and the local sequence number; updates the age counter and the opportunity counter for any non-selected memory blocks if the opportunity counter for the non-selected memory blocks does not match the LSB of the epoch counter for the non-selected memory blocks; and computes a new MAC for any memory block for which the updating is performed.

Description

    FIELD OF THE INVENTION
  • The present disclosure relates to integrity protection of data storage, memory caching and cryptography.
    • BRIEF SUMMARY
  • In accordance with one embodiment, a method is provided for protecting the integrity of a memory system divided in a plurality of memory blocks each of which has a local sequence number. The method maintains an age counter for each of the memory blocks; maintains an opportunity counter for each of the memory blocks; maintains an epoch counter for the memory system; writes data in a selected memory block; increases the local sequence number of the selected memory block; updates the opportunity counter for the selected memory block if the local sequence number of the selected memory block rolls over; computes a message authentication code (MAC) in the selected memory block based on a global sequence number and the local sequence number; updates the age counter and the opportunity counter for any non-selected memory blocks if the opportunity counter for the non-selected memory blocks does not match the LSB of the epoch counter for the non-selected memory blocks; and computes a new MAC for any memory block for which the updating is performed.
  • In one implementation, each of the MACs is updated opportunistically (1) after the corresponding age counter rolls over and (2) during the writing of data to the corresponding memory block.
  • The foregoing and additional aspects and embodiments of the present disclosure will be apparent to those of ordinary skill in the art in view of the detailed description of various embodiments and/or aspects, which is made with reference to the drawings, a brief description of which is provided next.
    • BRIEF DESCRIPTION OF THE DRAWINGS
  • The foregoing and other advantages of the disclosure will become apparent upon reading the following detailed description and upon reference to the drawings.
  • FIG. 1 is a diagram of a global sequence number.
  • FIG. 2 is a flow chart of an example of the use of a local sequence number with an opportunity counter.
    •
  • While the present disclosure is susceptible to various modifications and alternative forms, specific embodiments or implementations have been shown by way of example in the drawings and will be described in detail herein. It should be understood, however, that the disclosure is not intended to be limited to the particular forms disclosed. Rather, the disclosure is to cover all modifications, equivalents, and alternatives falling within the spirit and scope of an invention as defined by the appended claims.
    • DETAILED DESCRIPTION
  • Integrity protection of memory systems located on insecure devices is generally done by computing a cryptographic integrity protection value or Message Authentication Code (MAC) and storing it along with the data. Therefore an unauthorized third party cannot modify the information written in memory.
  • A MAC algorithm, sometimes called a keyed (cryptographic) hash function (however, a cryptographic hash function is only one of the possible ways to generate MACs), accepts as input a secret key and arbitrary-length data to be authenticated, and outputs a MAC (sometimes known as a tag). The MAC value protects the data integrity as well as its authenticity, by allowing verifiers (who also possess the secret key) to detect any changes to the data content.
  • When the memory is authentically updated, the MAC is recomputed. To prevent replays of previously authentic values, a unique value, such as a counter or a sequence number, is added to the authentication input.
  • A MAC is also used when data cache writes out cache-lines to external memory. In this case, to prevent an attacker from replaying previous segments of data, a sequence number is associated to each and every cache line in the memory. Therefore, an attacker cannot capture an image of the external memory and after the memory has been updated, replace the cache-lines within the memory with a previously captured version.
  • Generally, to avoid long delays when writing new data to memory, the memory is segmented into memory blocks, and a MAC is stored along with each memory block. A block can be one cache line or a larger memory space. Therefore, the authentication algorithm only needs to be performed over an individual, smaller memory block. However, a separate sequence number needs to be maintained for every memory block. The sequence number needs to be sufficiently large to prevent it from expiring (rolling over) too often. When a sequence number expires, the cryptographic integrity algorithm needs to be re-keyed, which results in re-computing the MAC for all data blocks. During the refresh process, the memory system is not accessible, leading to access delays. Large sequence numbers are therefore preferable, but with a large number of blocks, a substantial amount of sequence number data needs to be stored and maintained.
  • An existing solution is to maintain a small local sequence number per memory block and a global epoch counter. The epoch counter and the local sequence number are concatenated to form the sequence number applied to the integrity algorithm. However, any time the epoch counter is updated, each MAC needs to be updated. The memory system is not accessible during the refresh process.
  • There is a need to reduce the storage requirements to maintain the sequence numbers while minimizing refresh events and access delays. There is a need to update MAC opportunistically during normal data updates or in the background such that the memory is still accessible when the epoch counter is updated.
  • In one embodiment, referring to FIG. 1, a global sequence number 100 comprises a local sequence number 101 and a global epoch counter 102. The local sequence number 101 is subdivided into two fields: an opportunity counter 110 and an age counter 115. An instance of the local sequence number 101 is maintained for every external cache line or memory block. All local sequence numbers reset to zero on key initialization.
  • The global epoch counter 102 is a counter global to all blocks. The opportunity counter 110 allows the MAC to be updated opportunistically after the age counter 115 rolls over, during normal updates (writes) of the data block. It also allows the MAC to be refreshed to new epoch values off-line.
  • The width of the age, opportunity, and epoch counters can be tuned to trade-off the frequency of epoch update, off-line integrity check refresh to new epoch values, and opportunistic epoch updates versus memory storage requirements for the counter values.
  • As an example, a 32-bit global sequence number can include a 4-bit age counter and a 2-bit opportunity counter.
  • The epoch counter 102 and the age counter are concatenated to form the full sequence number used in computing the integrity protection value. The Least Significant Bits (LSB) of the epoch counter are inferred by comparing the global epoch counter 102 to the local opportunity counter 110.
  • Every time a cache line is written to external memory, the opportunity counter 110 is compared to the LSB of the epoch counter 102. If they match, the age counter is incremented by 1. If the age counter wraps (carries into the opportunity counter), the epoch counter is incremented by 1. When the epoch counter increments, all local sequence numbers need to be checked, and every line that has an opportunity counter matching the LSB of the new epoch, needs to immediately have its MAC recomputed with the new sequence number.
  • The opportunity counter allows an offline update or refresh of the MAC when the epoch counter changes. A background process or thread may update the local sequence numbers so that the opportunity counters are in sync with the current epoch. This can occur when the cache is not busy, i.e., on a low priority process. Whenever a MAC refresh operation is performed, the age counter resets to zero, to minimize the need for epoch updates. When a line is to be written back into memory, and the opportunity counter does not match the current epoch, the opportunity counter is set to match prior to computing the MAC, and the age counter is reset to zero. The MAC corresponding to the line is therefore refreshed opportunistically.
  • The refresh process of an external cache line MAC value is performed by reading in the cache-line and validating the MAC. The new MAC is computed using the updated global sequence number.
  • As the epoch counter exceeds predetermined thresholds, interrupts are optionally generated to the processor at various thresholds to prompt a proactive rekey operation before the counter expires.
  • Optionally, a background process checks the opportunity counters and updates the MAC for any opportunity counter that is about to expire (for example the memory blocks that are 1 bit away from the LSB of the epoch. During the background process any memory block MAC can be updated based on a pre-determined policy. This maximizes the time a cache-line can be opportunistically updated before getting hit with a refresh, and still allows the refresh to run as a background process.
  • FIG. 2 shows an example flow chart of an embodiment when an authentication code is updated for a memory block i is initiated at step 201. If step 203 determines that the opportunity counter for block i is different from the LSB of the epoch counter at step 203, the local sequence number is from a different epoch, then step 205 sets the opportunity counter for block i to the LSB of the epoch counter and resets the age counter for block i to zero. Otherwise, the local sequence number is in the current epoch, and step 207 increments the age counter for block i is incremented. If the age does not roll (i.e., there is no carry) at step 209, the memory block i is updated with the new sequence number at step 211. If the age rolls (i.e. resets to zero) at step 209, the epoch counter needs to be updated at step 213, the opportunity counter for block i is set to the LSB of the epoch counter and the age is reset to 0. The memory block i is updated accordingly. All memory blocks j are checked at step 219 except for the one that was just updated at step 213 which is skipped by the If step 215. If the opportunity counter for block j is equal to the LSB of the epoch counter at step 219, then the opportunity counter has fallen behind by a number of epochs represented by the number of bits in the opportunity counter (in this example, four epochs, because the opportunity counter is 2 bits), and the MAC of memory block j needs to be refreshed at step 221. If the opportunity counter for block j is not equal to the LSB of the epoch counter at step 219, then no update is necessary for block j, and the next block is checked by incrementing the value of j at step 217.
  • The above embodiment can also be used for encrypted memory systems.
  • Although the algorithms described above including those with reference to the foregoing flow charts have been described separately, it should be understood that any two or more of the algorithms disclosed herein can be combined in any combination. Any of the methods, algorithms, implementations, or procedures described herein can include machine-readable instructions for execution by: (a) a processor, (b) a controller, and/or (c) any other suitable processing device. Any algorithm, software, or method disclosed herein can be embodied in software stored on a non-transitory tangible medium such as, for example, a flash memory, a CD-ROM, a floppy disk, a hard drive, a digital versatile disk (DVD), or other memory devices, but persons of ordinary skill in the art will readily appreciate that the entire algorithm and/or parts thereof could alternatively be executed by a device other than a controller and/or embodied in firmware or dedicated hardware in a well known manner (e.g., it may be implemented by an application specific integrated circuit (ASIC), a programmable logic device (PLD), a field programmable logic device (FPLD), discrete logic, etc.). Also, some or all of the machine-readable instructions represented in any flowchart depicted herein can be implemented manually as opposed to automatically by a controller, processor, or similar computing device or machine. Further, although specific algorithms are described with reference to flowcharts depicted herein, persons of ordinary skill in the art will readily appreciate that many other methods of implementing the example machine readable instructions may alternatively be used. For example, the order of execution of the blocks may be changed, and/or some of the blocks described may be changed, eliminated, or combined.
  • It should be noted that the algorithms illustrated and discussed herein as having various modules which perform particular functions and interact with one another. It should be understood that these modules are merely segregated based on their function for the sake of description and represent computer hardware and/or executable software code which is stored on a computer-readable medium for execution on appropriate computing hardware. The various functions of the different modules and units can be combined or segregated as hardware and/or software stored on a non-transitory computer-readable medium as above as modules in any manner, and can be used separately or in combination.
  • While particular implementations and applications of the present disclosure have been illustrated and described, it is to be understood that the present disclosure is not limited to the precise construction and compositions disclosed herein and that various modifications, changes, and variations can be apparent from the foregoing descriptions without departing from the spirit and scope of an invention as defined in the appended claims.

Claims (11)

1. A method of protecting the integrity of a memory system divided in a plurality of memory blocks each of which has a local sequence number, said method comprising:
maintaining an age counter for each of said memory blocks;
maintaining an opportunity counter for each of said memory blocks;
maintaining an epoch counter for the memory system;
writing data in a selected memory block;
increasing said local sequence number of said selected memory block;
incrementing said epoch counter if said age counter of said selected memory block rolls over;
computing a message authentication code (MAC) in said selected memory blocks-based on a portion of a global sequence number and said local sequence number;
updating said age counter and said opportunity counter for any non-selected memory blocks if the opportunity counter for said non-selected memory blocks match the LSB of the epoch counter for said non-selected memory blocks; and
updating said epoch counter, where said epoch counter is updated while said memory system remains accessible, and
computing a new MAC for any memory block for which said updating is performed.
2. The method of claim 1 in which each of said MACs is updated after the corresponding age counter rolls over and during the writing of data to the corresponding memory block.
3. The method of claim 1 in which all local sequence numbers are reset to zero on key initialization.
4. (canceled)
5. The method of claim 1 in which said local sequence number for a memory block includes the values of the opportunity counter and the age counter associated with that memory block.
6. The method of claim 1 in which said MACs are refreshed to new epoch values off-line.
7. The method of claim 1 in which the epoch counter and the age counter for a selected memory block are concatenated to form a sequence number.
8. The method of claim 1 which includes comparing the value of the opportunity counter with the least significant bits of the epoch counter, and incrementing the age counter if they are equal.
9. The method of claim 1 which includes updating or refreshing a MAC when the corresponding epoch counter changes.
10. The method of claim 1 which includes updating the local sequence number so that the corresponding opportunity counters are synchronized with the corresponding epoch counters.
11. The method of claim 1 which includes refreshing a MAC when the corresponding age counter resets to zero.
US14/535,999 2014-11-07 2014-11-07 Integrity protection for data storage Active US9350732B1 (en)

Priority Applications (2)

Application Number Priority Date Filing Date Title
US14/535,999 US9350732B1 (en) 2014-11-07 2014-11-07 Integrity protection for data storage
US15/161,021 US10042780B2 (en) 2014-11-07 2016-05-20 Integrity protection for data storage

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
US14/535,999 US9350732B1 (en) 2014-11-07 2014-11-07 Integrity protection for data storage

Related Child Applications (1)

Application Number Title Priority Date Filing Date
US15/161,021 Continuation-In-Part US10042780B2 (en) 2014-11-07 2016-05-20 Integrity protection for data storage

Publications (2)

Publication Number Publication Date
US20160134628A1 true US20160134628A1 (en) 2016-05-12
US9350732B1 US9350732B1 (en) 2016-05-24

Family

ID=55913164

Family Applications (1)

Application Number Title Priority Date Filing Date
US14/535,999 Active US9350732B1 (en) 2014-11-07 2014-11-07 Integrity protection for data storage

Country Status (1)

Country Link
US (1) US9350732B1 (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US10412069B2 (en) * 2015-01-19 2019-09-10 Mitsubishi Electric Corporation Packet transmitting apparatus, packet receiving apparatus, and computer readable medium

Families Citing this family (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US10042780B2 (en) * 2014-11-07 2018-08-07 Synopsys, Inc. Integrity protection for data storage
US9881682B1 (en) 2016-11-23 2018-01-30 Seagate Technology Llc Fine grained data retention monitoring in solid state drives

Family Cites Families (17)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6629198B2 (en) * 2000-12-08 2003-09-30 Sun Microsystems, Inc. Data storage system and method employing a write-ahead hash log
US7380082B2 (en) * 2003-03-25 2008-05-27 Emc Corporation Reading virtual ordered writes at local storage device
US7360069B2 (en) * 2004-01-13 2008-04-15 Hewlett-Packard Development Company, L.P. Systems and methods for executing across at least one memory barrier employing speculative fills
US8189586B2 (en) * 2006-04-12 2012-05-29 Telefonaktiebolaget Lm Ericsson (Publ) Plural telecommunications functions having sharing transaction(s)
US8443341B2 (en) * 2006-11-09 2013-05-14 Rogue Wave Software, Inc. System for and method of capturing application characteristics data from a computer system and modeling target system
US8136124B2 (en) * 2007-01-18 2012-03-13 Oracle America, Inc. Method and apparatus for synthesizing hardware counters from performance sampling
US8539455B2 (en) * 2007-03-26 2013-09-17 Rogue Wave Software, Inc. System for and method of capturing performance characteristics data from a computer system and modeling target system performance
US8909601B2 (en) * 2007-11-13 2014-12-09 Oracle America, Inc. System and method for implementing shared scalable nonzero indicators
US9128750B1 (en) * 2008-03-03 2015-09-08 Parakinetics Inc. System and method for supporting multi-threaded transactions
US8359316B2 (en) * 2010-03-01 2013-01-22 International Business Machines Corporation Database table look-up
US8554851B2 (en) * 2010-09-24 2013-10-08 Intel Corporation Apparatus, system, and methods for facilitating one-way ordering of messages
US8819700B2 (en) * 2010-12-22 2014-08-26 Lsi Corporation System and method for synchronous inter-thread communication
US8848731B2 (en) * 2011-01-31 2014-09-30 Qualcomm Incorporated System and method for facilitating data transfer using a shared non-deterministic bus
US9293187B2 (en) * 2011-09-26 2016-03-22 Cisco Technology, Inc. Methods and apparatus for refreshing digital memory circuits
US10453123B2 (en) * 2011-10-26 2019-10-22 Chicago Mercantile Exchange Inc. Market driven implied trade resolution
US9077772B2 (en) * 2012-04-20 2015-07-07 Cisco Technology, Inc. Scalable replay counters for network security
US10205640B2 (en) * 2013-04-11 2019-02-12 Oracle International Corporation Seasonal trending, forecasting, anomaly detection, and endpoint prediction of java heap usage

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US10412069B2 (en) * 2015-01-19 2019-09-10 Mitsubishi Electric Corporation Packet transmitting apparatus, packet receiving apparatus, and computer readable medium

Also Published As

Publication number Publication date
US9350732B1 (en) 2016-05-24

Similar Documents

Publication Publication Date Title
US20210124820A1 (en) Application program integrity verification method and network device
US8516271B2 (en) Securing non-volatile memory regions
US9495111B2 (en) System and method for reducing information leakage from memory
US11184164B2 (en) Secure crypto system attributes
US11269786B2 (en) Memory data protection based on authenticated encryption
US11658808B2 (en) Re-encryption following an OTP update event
US10042780B2 (en) Integrity protection for data storage
US11134377B2 (en) Encrypting/decrypting data on mobile terminal
GB2583243A (en) Blockchain validation system
US20090067618A1 (en) Random number generator
JP2015191670A5 (en) Storage device and operation method thereof
US9350732B1 (en) Integrity protection for data storage
US20170085540A1 (en) Secure data re-encryption
ES2754266T3 (en) Procedure to protect security-relevant data in a cache
WO2016071743A1 (en) Integrity protection for data storage
US10862669B2 (en) Encryption/description method protected against side-channel attacks
US11121867B2 (en) Encryption methods based on plaintext length
EP3214567A1 (en) Secure external update of memory content for a certain system on chip
CN108154042B (en) File system encryption method and device
CN117692134A (en) Key update management system and key update management method
WO2020036887A1 (en) Authentication of files
US20200249912A1 (en) Information processing apparatus, information processing method, and storage medium
WO2018233321A1 (en) Data determination method applied to distributed storage system and distributed storage system
EP3832945B1 (en) System and method for protecting memory encryption against template attacks
US20220284088A1 (en) Authentication of write requests

Legal Events

Date Code Title Description
AS Assignment

Owner name: ELLIPTIC TECHNOLOGIES INC., CANADA

Free format text: ASSIGNMENT OF ASSIGNORS INTEREST;ASSIGNOR:BOWLER, MICHAEL KENNETH;REEL/FRAME:034128/0557

Effective date: 20141107

AS Assignment

Owner name: SYNOPSYS INC., CALIFORNIA

Free format text: ASSIGNMENT OF ASSIGNORS INTEREST;ASSIGNOR:ELLIPTIC TECHNOLOGIES INC.;REEL/FRAME:036761/0474

Effective date: 20151008

STCF Information on status: patent grant

Free format text: PATENTED CASE

MAFP Maintenance fee payment

Free format text: PAYMENT OF MAINTENANCE FEE, 4TH YEAR, LARGE ENTITY (ORIGINAL EVENT CODE: M1551); ENTITY STATUS OF PATENT OWNER: LARGE ENTITY

Year of fee payment: 4

MAFP Maintenance fee payment

Free format text: PAYMENT OF MAINTENANCE FEE, 8TH YEAR, LARGE ENTITY (ORIGINAL EVENT CODE: M1552); ENTITY STATUS OF PATENT OWNER: LARGE ENTITY

Year of fee payment: 8