Browse Prior Art Database

Remove Security Keys on System Tamper

IP.com Disclosure Number: IPCOM000123686D
Original Publication Date: 1999-Mar-01
Included in the Prior Art Database: 2005-Apr-05
Document File: 1 page(s) / 44K

Publishing Venue

IBM

Related People

Challener, D: AUTHOR [+6]

Abstract

Problem Solved By This Invention: Future desktop systems will contain a hardware security chip that includes a triple-DES engine, storage for a private keys, a general purpose RISC engine, 32K of ROM, 32K of RAM, and a clock. The hardware security chip contains a state machine which protects the private keys from being read by an application. Keys can only be written into the system and it is impossible to read them. However it it still possible to remove the motherboard from the system and remove the chip and get access to the private keys.

This text was extracted from an ASCII text file.
This is the abbreviated version, containing approximately 75% of the total text.

Remove Security Keys on System Tamper

   Problem Solved By This Invention:

   Future desktop systems will contain a hardware security
chip that includes a triple-DES engine, storage for a private keys, a
general purpose RISC engine, 32K of ROM, 32K of RAM, and a clock.
The hardware security chip contains a state machine which protects
the private keys from being read by an application.  Keys can only be
written into the system and it is impossible to read them.  However
it it still possible to remove the motherboard from the system and
remove the chip and get access to the private keys.

   The invention will automatically erase the private keys
when the system is opened by an unauthorized user.  This is a
further protection of the system private keys.

   Description of Invention:

   Current IBM systems contain a tamper alert mechanical
cover.  When the system is opened a bit is set on the motherboard
indicating the system was opened.  The only way to disable this
function is to go into the system setup and using an authenticated
private/public key (this key can be stored on a smart card reader,
etc.) disable the function.  Therefore an unauthorized user who does
not the correct password can't disable the system.  If the tamper
alert is enabled when the system is opened a bit is set on the
motherboard indicating an unauthorized entry.   The system will
not boot if this bit is set.

   This invention uses the tamper alert logic to also clear
the system priv...