NXP Assigned Two Patents
Secure storage, using secure key storage to bind white-box implementation to one platform
By Francis Pelletier | September 18, 2019 at 2:20 pmSecure data storage
NXP B.V., Eindhoven, The Netherlands, has been assigned a patent (10,389,522) developed by Riou, Sebastien, Hamburg, Germany, for “secure data storage.“
The abstract of the patent published by the U.S. Patent and Trademark Office states: ”The disclosure relates to secure data storage and retrieval, in particular to methods and circuits for securely storing data to reduce the possibility of leakage via side channel attacks. Embodiments disclosed include a method of storing a value comprising a series of words, the method comprising: (i) combining in a series of XOR operations a word of a first portion of the value, a word of a second portion of the value and an output word of a first random number generator to provide a first combined word, (ii) storing the first combined word in a shift register, and (iii) repeating steps (i) and (ii) for each successive word of the first and second portions of the value.”
The patent application was filed on February 4, 2017 (15/424,842).
Using secure key storage to bind white-box implementation to one platform
NXP B.V., Eindhoven, The Netherlands, has been assigned a patent (10,389,517) developed by Michiels, Wilhelmus Petrus Adrianus Johannus, Hoogerbrugge, Jan, Reusel, The Netherlands, and Bos, Joppe Willem, Wijgmaal, Belgium, for “using secure key storage to bind a white-box implementation to one platform.“
The abstract of the patent published by the U.S. Patent and Trademark Office states: ”A method for performing a secure function in a data processing system is provided. In accordance with one embodiment, the method includes generating and encoding an encryption key. The encoded encryption key may be encrypted in a key store in a trusted execution environment, (TEE) of the data processing system. The encrypted encryption key may encrypted, stored, and decrypted in the key store in the TEE, but used in a white-box implementation to perform a secure function. The secure function may include encrypting a value in the white-box implementation for securing a monetary value on, for example, a smart card. In one embodiment, each time an encryption key or decryption key is used, it is changed to a new key. The method makes code lifting and rollback attacks more difficult for an attacker because the key is stored separately from, for example, a white-box implementation in secure storage.”
The patent application was filed on June 27, 2016 (15/194,001).