Device and method with reduced information leakage

Abstract

The invention is directed to a data-processing system comprising a processor and first encrypted information in a first persistent memory whose level of information leakage is higher than that of a second persistent memory. In the second persistent memory is stored a first cryptographic key for decrypting the first encrypted information, thereby generating therefrom first unencrypted information that is usable by the processor for executing an operation. The same cryptographic key may also be used for encrypting the first unencrypted information, thereby generating the first encrypted information. It is also directed to a method of processing such a data-processing system with an operating system, comprising a writing step for writing first unencrypted information into the first persistent memory, an encryption step for encrypting the first unencrypted information under use of the first cryptographic key, creating therefrom first encrypted information in the first persistent memory, and an access-limitation step for setting the data-processing system to a state in which writing into the first persistent memory is controlled by the operating system. It also relates to a method of executing an operation on such a data-processing system comprising a decryption step for decrypting the first encrypted information under use of the first cryptographic key, thereby generating therefrom first unencrypted information and an execution step for executing an operation by the processor, using the first unencrypted information.

Description

[0001]The invention relates to a data-processing system, a method for processing the same, and a method for executing an operation on the same. More particularly the invention relates to a smartcard, a method of processing the smartcard under use of a cryptographic key, and a method for executing an operation on the smartcard under use of the cryptographic key.TECHNICAL FIELD AND BACKGROUND OF THE INVENTION[0002]Cryptographic operations are used for a variety of processes such as data encryption and authentication. In a typical symmetric cryptographic process, a secret key is known to two or more participants, who use it to secure their communications. In systems using asymmetric or public-key cryptography, one party typically performs operations using a secret key, e.g., the so-called private key, while the other performs complementary operations using only non-secret parameters, e.g., the so-called public key. In both, symmetric and asymmetric, cryptosystems, the secret parameters...

AI Technical Summary

Benefits of technology

"The invention proposes a data-processing system with a cryptographic key stored in a memory that is less prone to information leakage than other memories. This is achieved by using a two-stage encryption process with the cryptographic key, which is unique to the data-processing system and not known to external entities. The system also includes a personalization step that allows for the customization of the system by writing unencrypted information to its target memory location and executing the encryption on it. The invention addresses the vulnerability of data-processing systems to attacks through differential power analysis and provides a solution to protect sensitive information."

Problems solved by technology

If such EEPROM content is a secret key guarding an electronic transaction for example, the security of the whole electronic transaction system is in peril.

Images