PL3631670T3 - Moduł sprzętowy bezpieczeństwa - Google Patents
Moduł sprzętowy bezpieczeństwaInfo
- Publication number
- PL3631670T3 PL3631670T3 PL18809780.2T PL18809780T PL3631670T3 PL 3631670 T3 PL3631670 T3 PL 3631670T3 PL 18809780 T PL18809780 T PL 18809780T PL 3631670 T3 PL3631670 T3 PL 3631670T3
- Authority
- PL
- Poland
- Prior art keywords
- security module
- hardware security
- hardware
- module
- security
- Prior art date
Links
Classifications
-
- G—PHYSICS
- G06—COMPUTING OR CALCULATING; COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/70—Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer
- G06F21/71—Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure computing or processing of information
- G06F21/72—Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure computing or processing of information in cryptographic circuits
-
- G—PHYSICS
- G06—COMPUTING OR CALCULATING; COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/602—Providing cryptographic facilities or services
-
- G—PHYSICS
- G06—COMPUTING OR CALCULATING; COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F15/00—Digital computers in general; Data processing equipment in general
-
- G—PHYSICS
- G06—COMPUTING OR CALCULATING; COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/70—Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer
- G06F21/71—Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure computing or processing of information
- G06F21/74—Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure computing or processing of information operating in dual or compartmented mode, i.e. at least one secure mode
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L12/00—Data switching networks
- H04L12/28—Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
- H04L12/46—Interconnection of networks
- H04L12/4641—Virtual LANs, VLANs, e.g. virtual private networks [VPN]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/04—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
- H04L63/0428—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
- H04L63/0478—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload applying multiple layers of encryption, e.g. nested tunnels or encrypting the content with a first key and then with at least a second key
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/10—Network architectures or network communication protocols for network security for controlling access to devices or network resources
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/08—Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
- H04L9/0894—Escrow, recovery or storing of secret information, e.g. secret key escrow or cryptographic key storage
- H04L9/0897—Escrow, recovery or storing of secret information, e.g. secret key escrow or cryptographic key storage involving additional devices, e.g. trusted platform module [TPM], smartcard or USB
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/321—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving a third party or a trusted authority
-
- G—PHYSICS
- G06—COMPUTING OR CALCULATING; COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/70—Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer
- G06F21/71—Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure computing or processing of information
- G06F21/76—Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure computing or processing of information in application-specific integrated circuits [ASIC] or field-programmable devices, e.g. field-programmable gate arrays [FPGA] or programmable logic devices [PLD]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/04—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
- H04L63/0428—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Hardware Design (AREA)
- Theoretical Computer Science (AREA)
- Physics & Mathematics (AREA)
- General Engineering & Computer Science (AREA)
- General Physics & Mathematics (AREA)
- Software Systems (AREA)
- Signal Processing (AREA)
- Computer Networks & Wireless Communication (AREA)
- Mathematical Physics (AREA)
- Computing Systems (AREA)
- Health & Medical Sciences (AREA)
- Bioethics (AREA)
- General Health & Medical Sciences (AREA)
- Microelectronics & Electronic Packaging (AREA)
- Storage Device Security (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
Applications Claiming Priority (3)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| US201762513103P | 2017-05-31 | 2017-05-31 | |
| US201762532138P | 2017-07-13 | 2017-07-13 | |
| PCT/CA2018/050630 WO2018218349A1 (en) | 2017-05-31 | 2018-05-30 | Hardware security module |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| PL3631670T3 true PL3631670T3 (pl) | 2023-12-18 |
Family
ID=64454222
Family Applications (2)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| PL18810256.0T PL3635912T3 (pl) | 2017-05-31 | 2018-05-30 | Zintegrowany wielopoziomowy przyrząd sieciowy, platforma i system oraz sposób i system zdalnego zarządzania nimi |
| PL18809780.2T PL3631670T3 (pl) | 2017-05-31 | 2018-05-30 | Moduł sprzętowy bezpieczeństwa |
Family Applications Before (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| PL18810256.0T PL3635912T3 (pl) | 2017-05-31 | 2018-05-30 | Zintegrowany wielopoziomowy przyrząd sieciowy, platforma i system oraz sposób i system zdalnego zarządzania nimi |
Country Status (5)
| Country | Link |
|---|---|
| US (2) | US10417455B2 (pl) |
| EP (2) | EP3635912B1 (pl) |
| CA (1) | CA3063572A1 (pl) |
| PL (2) | PL3635912T3 (pl) |
| WO (2) | WO2018218349A1 (pl) |
Families Citing this family (20)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2019210418A1 (en) | 2018-05-04 | 2019-11-07 | Crypto4A Technologies Inc. | Digital data comparison filter, system and method, and applications therefor |
| US11212257B2 (en) * | 2018-06-22 | 2021-12-28 | Aeronix, Inc. | Multi-level secure ethernet switch |
| CN109347629B (zh) * | 2018-10-12 | 2020-10-16 | 阿里巴巴集团控股有限公司 | 基于共享安全应用的密钥传递方法及系统、存储介质、设备 |
| EP3648430B1 (de) * | 2018-11-05 | 2021-06-02 | Wincor Nixdorf International GmbH | Hardware-sicherheitsmodul |
| US11139969B2 (en) * | 2018-12-04 | 2021-10-05 | Bank Of America Corporation | Centralized system for a hardware security module for access to encryption keys |
| US11654635B2 (en) | 2019-04-18 | 2023-05-23 | The Research Foundation For Suny | Enhanced non-destructive testing in directed energy material processing |
| US11062039B2 (en) * | 2019-04-25 | 2021-07-13 | International Business Machines Corporation | Secure hardware threat protection |
| US20200366476A1 (en) * | 2019-05-17 | 2020-11-19 | Panasonic Avionics Corporation | Transient key negotiation for passenger accessible peripherals |
| US11456867B2 (en) | 2019-10-25 | 2022-09-27 | International Business Machines Corporation | Trust-anchoring of cryptographic objects |
| US11349872B2 (en) * | 2019-11-26 | 2022-05-31 | General Electric Company | Provably secure application-specific cross-domain solutions |
| US11403433B2 (en) | 2020-01-17 | 2022-08-02 | Visa International Service Association | System, method, and computer program product for encrypting sensitive data using a field programmable gate array |
| US11533174B2 (en) | 2020-01-29 | 2022-12-20 | International Business Machines Corporation | Binding secure objects of a security module to a secure guest |
| US11475167B2 (en) | 2020-01-29 | 2022-10-18 | International Business Machines Corporation | Reserving one or more security modules for a secure guest |
| US11968187B2 (en) * | 2020-10-23 | 2024-04-23 | Secturion Systems, Inc. | Multi-independent level security for high performance computing and data storage systems |
| US11861053B2 (en) | 2020-12-16 | 2024-01-02 | Intel Corporation | Techniques for tamper detection and protection of a memory module |
| US12519802B2 (en) * | 2022-06-17 | 2026-01-06 | Corsa Security | Horizontal scaling of virtual network security functions |
| EP4332808A1 (en) * | 2022-08-31 | 2024-03-06 | Thales Dis Cpl Usa, Inc. | End to end trusted hsm setup using secure device |
| US12255980B2 (en) | 2023-01-03 | 2025-03-18 | International Business Machines Corporation | Homomorphic encryption key management |
| GB2630336A (en) | 2023-05-24 | 2024-11-27 | Ibm | Identity based hierarchical sessions |
| US12132807B2 (en) * | 2023-08-28 | 2024-10-29 | Lemon Inc. | Third party gateway |
Family Cites Families (40)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US5088091A (en) * | 1989-06-22 | 1992-02-11 | Digital Equipment Corporation | High-speed mesh connected local area network |
| US5521909A (en) * | 1994-07-22 | 1996-05-28 | Newbridge Networks Corporation | Frame relay management system |
| US20020103921A1 (en) * | 2001-01-31 | 2002-08-01 | Shekar Nair | Method and system for routing broadband internet traffic |
| US7111102B2 (en) * | 2003-10-06 | 2006-09-19 | Cisco Technology, Inc. | Port adapter for high-bandwidth bus |
| GB0413034D0 (en) * | 2004-06-10 | 2004-07-14 | Scient Generics Ltd | Secure workflow engine |
| US20060059372A1 (en) * | 2004-09-10 | 2006-03-16 | International Business Machines Corporation | Integrated circuit chip for encryption and decryption having a secure mechanism for programming on-chip hardware |
| US20060072748A1 (en) | 2004-10-01 | 2006-04-06 | Mark Buer | CMOS-based stateless hardware security module |
| US8160244B2 (en) * | 2004-10-01 | 2012-04-17 | Broadcom Corporation | Stateless hardware security module |
| WO2007010333A1 (en) * | 2005-07-20 | 2007-01-25 | Hani Girgis | Host security module using a collection of smartcards |
| JP2007102387A (ja) * | 2005-10-03 | 2007-04-19 | Fujitsu Ltd | ストレージシステム,暗号化パス切替え方法,暗号化パス切替え用プログラムおよびそのプログラムを記録した記録媒体 |
| EP1793322A1 (fr) * | 2005-11-30 | 2007-06-06 | Nagracard S.A. | Module de sécurité évolutif |
| US8065517B2 (en) * | 2007-11-01 | 2011-11-22 | Infineon Technologies Ag | Method and system for transferring information to a device |
| SG171730A1 (en) * | 2008-11-24 | 2011-07-28 | Certicom Corp | System and method for hardware based security |
| US20100177885A1 (en) * | 2009-01-09 | 2010-07-15 | Ibm Corporation | Methods to facilitate encryption in data storage devices |
| US8826039B2 (en) | 2010-02-02 | 2014-09-02 | Broadcom Corporation | Apparatus and method for providing hardware security |
| US8745386B2 (en) * | 2010-06-21 | 2014-06-03 | Microsoft Corporation | Single-use authentication methods for accessing encrypted data |
| CN103229165A (zh) | 2010-08-12 | 2013-07-31 | 安全第一公司 | 用于数据的安全远程存储的系统和方法 |
| US20120216052A1 (en) * | 2011-01-11 | 2012-08-23 | Safenet, Inc. | Efficient volume encryption |
| WO2012122994A1 (en) | 2011-03-11 | 2012-09-20 | Kreft Heinz | Off-line transfer of electronic tokens between peer-devices |
| US8761187B2 (en) * | 2011-06-14 | 2014-06-24 | Futurewei Technologies, Inc. | System and method for an in-server virtual switch |
| US20130061310A1 (en) | 2011-09-06 | 2013-03-07 | Wesley W. Whitmyer, Jr. | Security server for cloud computing |
| US20130219164A1 (en) * | 2011-12-29 | 2013-08-22 | Imation Corp. | Cloud-based hardware security modules |
| US9705854B2 (en) * | 2012-07-09 | 2017-07-11 | Massachusetts Institute Of Technology | Cryptography and key management device and architecture |
| WO2014020523A1 (en) * | 2012-08-02 | 2014-02-06 | Visa International Service Association | Issuing and storing of payment credentials |
| US9740583B1 (en) * | 2012-09-24 | 2017-08-22 | Amazon Technologies, Inc. | Layered keys for storage volumes |
| US9224235B2 (en) * | 2013-03-20 | 2015-12-29 | Nvidia Corporation | System, method, and computer program product for compression of a bounding volume hierarchy |
| US9355279B1 (en) * | 2013-03-29 | 2016-05-31 | Secturion Systems, Inc. | Multi-tenancy architecture |
| US9524399B1 (en) | 2013-04-01 | 2016-12-20 | Secturion Systems, Inc. | Multi-level independent security architecture |
| US9584488B2 (en) * | 2013-08-09 | 2017-02-28 | Introspective Power, Inc. | Data encryption cipher using rotating ports |
| US10491568B1 (en) * | 2014-05-21 | 2019-11-26 | Amazon Technologies, Inc. | Management of encrypted data storage |
| TW201546649A (zh) | 2014-06-05 | 2015-12-16 | Cavium Inc | 用於基於硬體安全模組的基於雲端的web服務安全管理的系統和方法 |
| US9571279B2 (en) | 2014-06-05 | 2017-02-14 | Cavium, Inc. | Systems and methods for secured backup of hardware security modules for cloud-based web services |
| US20160149877A1 (en) | 2014-06-05 | 2016-05-26 | Cavium, Inc. | Systems and methods for cloud-based web service security management basedon hardware security module |
| GB2531248B (en) * | 2014-10-08 | 2017-02-22 | Ibm | Controlled use of a hardware security module |
| US10706182B2 (en) | 2014-12-19 | 2020-07-07 | Private Machines Inc. | Systems and methods for using extended hardware security modules |
| US9948579B1 (en) * | 2015-03-30 | 2018-04-17 | Juniper Networks, Inc. | NIC-based packet assignment for virtual networks |
| US9674158B2 (en) | 2015-07-28 | 2017-06-06 | International Business Machines Corporation | User authentication over networks |
| GB2546740A (en) * | 2016-01-26 | 2017-08-02 | Worldpay Ltd | Electronic payment system and method |
| US10733305B2 (en) * | 2016-11-15 | 2020-08-04 | StorageOS Limited | System and method for implementing cryptography in a storage system |
| US10263832B1 (en) * | 2016-12-29 | 2019-04-16 | Juniper Networks, Inc. | Physical interface to virtual interface fault propagation |
-
2018
- 2018-05-30 PL PL18810256.0T patent/PL3635912T3/pl unknown
- 2018-05-30 PL PL18809780.2T patent/PL3631670T3/pl unknown
- 2018-05-30 WO PCT/CA2018/050630 patent/WO2018218349A1/en not_active Ceased
- 2018-05-30 EP EP18810256.0A patent/EP3635912B1/en active Active
- 2018-05-30 WO PCT/CA2018/050635 patent/WO2018218353A1/en not_active Ceased
- 2018-05-30 EP EP18809780.2A patent/EP3631670B1/en active Active
- 2018-05-30 CA CA3063572A patent/CA3063572A1/en active Pending
-
2019
- 2019-03-06 US US16/294,178 patent/US10417455B2/en active Active
- 2019-03-06 US US16/294,238 patent/US10467437B2/en active Active
Also Published As
| Publication number | Publication date |
|---|---|
| US10417455B2 (en) | 2019-09-17 |
| CA3063572A1 (en) | 2018-12-06 |
| EP3631670A4 (en) | 2021-03-03 |
| US20190205573A1 (en) | 2019-07-04 |
| EP3631670A1 (en) | 2020-04-08 |
| US10467437B2 (en) | 2019-11-05 |
| EP3631670C0 (en) | 2023-07-26 |
| PL3635912T3 (pl) | 2023-12-04 |
| EP3635912C0 (en) | 2023-06-28 |
| EP3635912A4 (en) | 2021-03-03 |
| WO2018218353A1 (en) | 2018-12-06 |
| EP3635912A1 (en) | 2020-04-15 |
| EP3631670B1 (en) | 2023-07-26 |
| WO2018218349A1 (en) | 2018-12-06 |
| EP3635912B1 (en) | 2023-06-28 |
| US20190207916A1 (en) | 2019-07-04 |
| CA3063568A1 (en) | 2018-12-06 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| PL3631670T3 (pl) | Moduł sprzętowy bezpieczeństwa | |
| GB2567914B (en) | Tokenized hardware security modules | |
| GB201809489D0 (en) | Improved hardware security module management | |
| GB2557167B (en) | Security devices | |
| GB201602412D0 (en) | Security system | |
| GB2551243B (en) | Security | |
| GB201706015D0 (en) | Data security | |
| ZA201906824B (en) | Security door system | |
| GB201913273D0 (en) | Security credentials | |
| ZA202004504B (en) | Security enclosure | |
| ZA201905310B (en) | Security system | |
| GB2562583B (en) | Security device | |
| GB201715073D0 (en) | Data security | |
| GB201704662D0 (en) | Security devices | |
| GB201718428D0 (en) | Security configuration determination | |
| GB201713097D0 (en) | Document security | |
| GB2555780B (en) | Two way door arrangement | |
| GB201521189D0 (en) | Security panel | |
| GB201709276D0 (en) | Improved hardware security module management | |
| GB2562821B (en) | Security device | |
| GB2566004B (en) | Security gates | |
| GB201804298D0 (en) | Security device | |
| GB201702011D0 (en) | IT security framework | |
| GB201722297D0 (en) | Security device | |
| GB201716567D0 (en) | Security device |