Title:
DATA PROCESSING METHOD AND SYSTEM
Document Type and Number:
WIPO Patent Application WO/2023/133862
Kind Code:
A1
Abstract:
Embodiments of the present application provide a data processing method and system. The system comprises a first hardware engine, a second hardware engine, and an AO storage unit in a hard line connection to each hardware engine. The first hardware engine can encrypt a key plaintext by using a root key read from the AO storage unit in a TEE or SEE. The second hardware engine can decrypt a key ciphertext by using the root key in the REE, and perform encryption and decryption operations on data of an application by using the decrypted key plaintext. According to the system, the key plaintext of the application is stored in the hardware in the whole process, the hardware-level security is achieved, the AO storage unit is software unreadable, and the first root key is written into the AO storage unit once only when the data processing system is initialized, so that the decryption difficulty of the key ciphertext can be improved. In addition, the decrypted key plaintext can be used in the REE to encrypt and decrypt the data of the application, the operation environment does not need to be switched, and the data encryption and decryption performance can be improved.
Inventors:
GUO YONGWEI (CN)
XIE MEILUN (CN)
XIE MEILUN (CN)
Application Number:
PCT/CN2022/072190
Publication Date:
July 20, 2023
Filing Date:
January 14, 2022
Export Citation:
Assignee:
HUAWEI TECH CO LTD (CN)
International Classes:
G06F21/72; G06F21/74; H04L9/08
Foreign References:
| US9064135B1 | 2015-06-23 | |||
| US20210200882A1 | 2021-07-01 | |||
| CN106529308A | 2017-03-22 | |||
| CN113821835A | 2021-12-21 | |||
| CN104081712A | 2014-10-01 | |||
| CN113704835A | 2021-11-26 | |||
| US20070180515A1 | 2007-08-02 |
Attorney, Agent or Firm:
BEIJING RUN ZEHENG INTELLECTUAL PROPERTY LAW FIRM (CN)
Download PDF: