Hierarchical bus encryption system

An encryption system and bus technology, applied in the field of system security, can solve the problems of no physical isolation of data transmission between security modules and ordinary modules, no security and rational use of the bus, etc., to achieve enhanced anti-attack capability, high speed, and high security. sexual effect

Active Publication Date: 2016-07-20
HUAWEI TECH CO LTD
View PDF5 Cites 13 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0008] The purpose of the embodiment of the present invention is to provide a bus hierarchical encryption system to solve the problem that the data transmission between the security module and the common module is not physically separated, and the bus is not fully used according to the security of each module.

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Hierarchical bus encryption system
  • Hierarchical bus encryption system
  • Hierarchical bus encryption system

Examples

Experimental program
Comparison scheme
Effect test

Embodiment 1

[0164] refer to Figure 4 As shown, wherein, the two signal processing modules of the storage unit and the cryptographic algorithm 1 unit are the first security level modules, and both are connected with the first security level encryption and decryption system (encryption and decryption system 1) and the first security level bus (AHB) correspond.

[0165] The process of storing the data in the storage unit back to the storage unit after being encrypted by the cryptographic algorithm 1 unit includes:

[0166] The encryption and decryption unit 1 in the encryption and decryption system 1 is coupled with the storage unit, encrypts the first data containing the plaintext 1 in the storage unit based on the encryption algorithm 1 to obtain the first data containing the ciphertext 1, and transmits it to the encryption and decryption unit through the AHB. The encryption and decryption unit 2 in the decryption system 1 .

[0167] The encryption and decryption unit 2 is coupled with ...

Embodiment 2

[0173] refer to Figure 4 As shown, wherein the storage unit is a first security level module, corresponding to the first security level encryption and decryption system (encryption and decryption system 1) and the first security level bus (AHB) respectively. The interface is a module of the second security level, corresponding to the encryption and decryption system of the second security level (encryption and decryption system 2) and the bus (APB) of the second security level respectively.

[0174] The process of sending the data in the storage unit through the interface unit includes:

[0175] The encryption and decryption unit 1 in the encryption and decryption system 1 is coupled with the storage unit, encrypts the first data containing the plaintext 2 in the storage unit based on the encryption algorithm 1 to obtain the first data containing the ciphertext 4, and transmits it to the bus via AHB converter.

[0176] The APB / AHB bus converter converts the first data conta...

Embodiment 3

[0181] refer to Figure 5 As shown, the storage unit is a first security level module, corresponding to the first security level encryption and decryption system (encryption and decryption system 1) and the first security level bus (AHB). The interface unit is a second security level module, corresponding to the second security level encryption and decryption system (encryption and decryption system 2) and the second security level bus (APB) respectively. The APB / AHB bus converter includes an encryption and decryption conversion unit.

[0182] The process of sending the data in the storage unit through the interface unit includes:

[0183] The encryption and decryption unit 1 in the encryption and decryption system 1 is coupled with the storage unit, encrypts the first data containing the plaintext 2 in the storage unit based on the encryption algorithm 1 to obtain the first data containing the ciphertext 4, and transmits it to the bus via AHB converter.

[0184] The APB / AH...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention relates to the technical field of system security, and especially relates to a hierarchical bus encryption system. The system is used for solving the problems that data transmission of a security module and an ordinary module is not physically isolated and buses are not utilized reasonably and fully according to the security of each module. The system comprises at least two buses of a first bus and a second bus, an encryption and decryption system corresponding to each bus, at least one signal processing module corresponding to each bus, and a bus converter coupled between the first bus and the second bus. Through adoption of the system provided by the embodiment of the invention, the data transmitted on the buses is encrypted data, even through an attacker obtains the bus data through a probe attack, a secret key is difficult to break, and the anti-attack capability of the system can be improved.

Description

technical field [0001] The invention relates to the technical field of system security, in particular to a bus hierarchical encryption system. Background technique [0002] The field of mobile payment is developing faster and faster, and the security requirements for embedded security elements (embedded Security Element, eSE) are also getting higher and higher. Neither of the two eSE system models provided in the prior art can better guarantee the security of eSE transmission. [0003] Specifically, the existing scheme 1 refers to figure 1 As shown, all modules are hung on the same high-performance bus, namely (Advanced High-performanceBus, AHB) bus, these modules include security modules, such as cryptographic algorithm unit, storage unit, etc., and common modules, such as interface unit, gatekeeper dog unit etc. There is no physical isolation between security modules and common modules in data transmission. [0004] Because most of the existing solutions do not encrypt...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): H04L9/06H04L29/06
CPCH04L9/065H04L63/02H04L63/0428H04L9/0662H04L9/12G06F21/85G07F7/084G06Q20/3227G06Q2220/00H04L9/06G06F21/602G06F21/606H04L9/0869
Inventor 胡翠檀珠峰孙少杰
Owner HUAWEI TECH CO LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap