Unlock instant, AI-driven research and patent intelligence for your innovation.

Device unit suitable for operation in a protected and/or open operating state and associated method

A technology of operating status and equipment unit, applied in the direction of platform integrity maintenance, instrument, electronic digital data processing, etc., can solve the problem that the security level depends on the security of BIOS password and does not run.

Pending Publication Date: 2019-07-16
SIEMENS AG
View PDF5 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

However, this is not possible on embedded platforms where the key is burned in a so-called fuse (combustible fuse)
This UEFI-BIOS variant also has the disadvantage that the security level of Secure Boot basically depends on the security of the BIOS password
Then although the user has the right to obtain the source code according to the license and modify it according to his vision, he has no technical possibility to run the modified software on the manufacturer's equipment

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Device unit suitable for operation in a protected and/or open operating state and associated method
  • Device unit suitable for operation in a protected and/or open operating state and associated method
  • Device unit suitable for operation in a protected and/or open operating state and associated method

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0052] figure 1 A device unit GE is shown, which can be designed as a device or integrated into a device. In the following exemplary embodiment, the device unit GE is used for a Linux-based embedded device (Embedded Device), preferably a field device or a so-called IoT device. The embedded device can implement multiple applications, eg A1, A2. Control algorithms DMA (Device Management Agent) and / or BIST (Built-in Selbst Test) can also be implemented. In Kernel K, which in this example is the Linux kernel, typically runs hardware or firmware or software based modules such as the Mandatory Access Control Module (MAC) and the Runtime Integrity Monitor Module (Runtime Integrity Monitor Modul) RIM. There is also a key module KM based on hardware or firmware or software for storing and managing encryption keys, and an integrity monitoring module I (Integrity Watchdog) based on hardware or firmware or software on the equipment unit And a device mode manager (DeviceMode Manager) b...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention relates to a device unit (GE), comprising a module (M), which can configure the device unit (GE) with an operating state from among different operating states during the start-up processand / or during ongoing operation of the device unit, wherein a first protected operating state of the different operating states is designed to allow the execution of at least one operating process which can be predefined and to optionally protect said operating process by means of defined cryptographic means, wherein at least one second operating state of the different operating states is designed to deactivate the first protected operating state and to allow at least one other changeable operating process and to optionally protect said operating process by means of specifiable cryptographicmeans, and wherein, if the configured operating state corresponds to the first operating state, the module (M) maintains the first operating state, or, if the configured operating state corresponds tothe at least second operating state, the module (M) deactivates the first operating state and initiates and / or maintains the at least second operating state.

Description

technical field [0001] The invention relates to a device unit suitable for operating in a protected and / or open operating state, as well as an associated method and an associated computer program (product). Background technique [0002] Embedded systems (Embedded Systems or Devices) are often used in the context of Industry 4.0, in the Industrial Internet and in automation systems. These embedded systems can in individual cases be based on similar hardware, such as workstation computers. However, for these embedded systems, strict boundary conditions such as minimum cost, small space footprint, low power consumption and small memory footprint are usually required. Individual components such as processors and working memories are often based on further developments of older components. This facilitates long-term availability and procurement of spare parts. New embedded systems are often based on processor platforms that are highly integrated relative to peripheral modules ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Applications(China)
IPC IPC(8): G06F21/57
CPCG06F21/572G06F21/575G06F2221/2105G06F21/577G06F21/107
Inventor H.阿绍尔R.法尔克S.弗里斯M.海因特尔D.梅尔利
Owner SIEMENS AG