Patents by Inventor Srinivas Devadas
Srinivas Devadas has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).
-
Patent number: 7904731Abstract: An integrated circuit has a first component that has a dynamic characteristic that varies among like integrated circuits, for example, among integrated circuits fabricated using the same lithography mask. Operating the first component produces an output that is dependent on the dynamic characteristic of the first component. A digital value associated with the integrated circuit is generated using the output of the first component, and then the generated digital value is used in operation of the integrated circuit.Type: GrantFiled: January 29, 2009Date of Patent: March 8, 2011Assignee: Massachusetts Institute of TechnologyInventors: Srinivas Devadas, Blaise Gassend
-
Publication number: 20110033041Abstract: Outputs from at least one pseudo-random source are used to encode hidden value. The hidden value is encoded using index based quantities, for example, based on numerically ordering a sequence of outputs from pseudo-random source(s). In some examples, the numerical ordering of re-generated device-specific quantities is used to re-generate the hidden value, without necessarily requiring additional error correction mechanisms. Information leak may be reduced by constructing system whose “syndrome” helper bits are random, as measured, for example, by NIST's Statistical Tests for Randomness In some examples, index based coding provides coding gain that exponentially reduces total error correction code complexity, resulting in efficiently realizable PRS-based key generation systems. In some examples, index based coding allows noisy PRS to be robust across conditions where conventional error correction code cannot error correct.Type: ApplicationFiled: August 5, 2010Publication date: February 10, 2011Applicant: Verayo, Inc.Inventors: Meng-Day Yu, Srinivas Devadas
-
Patent number: 7840803Abstract: A group of devices are fabricated based on a common design, each device having a corresponding plurality of measurable characteristics that is unique in the group to that device, each device having a measurement module for measuring the measurable characteristics. Authentication of one of the group of devices is enabled by selective measurement of one or more of the plurality of measurable characteristics of the device.Type: GrantFiled: April 4, 2003Date of Patent: November 23, 2010Assignees: Massachusetts Institute of Technology, Intrinsic ID B.V.Inventors: Dwaine Clarke, Blaise Gassend, Marten Van Dijk, Srinivas Devadas
-
Patent number: 7839278Abstract: A key is determined from a volatile response using circuitry on the device. The volatile response depend on process variation in fabrication of the device. Error control data that depends on the first volatile response can be computed, stored externally to the device, and then used to generate the key using a volatile response using the circuit. Applications of volatile keys include authentication and rights management for content and software.Type: GrantFiled: June 16, 2009Date of Patent: November 23, 2010Assignee: Verayo, Inc.Inventors: Srinivas Devadas, Thomas Ziola
-
Publication number: 20100272255Abstract: A field configurable device, such as an FPGA, supports secure field configuration without using non-volatile storage for cryptographic keys on the device and without requiring a continuous or ongoing power source to maintain a volatile storage on the device. The approach can be used to secure the configuration data such that it can in general be used on a single or a selected set of devices and/or encryption of the configuration data so that the encrypted configuration data can be exposed without compromising information encoded in the configuration data.Type: ApplicationFiled: April 20, 2010Publication date: October 28, 2010Applicant: Verayo, Inc.Inventors: Srinivas Devadas, Thomas Ziola
-
Patent number: 7818569Abstract: A digital value is generated in an integrated circuit such that the generated value substantially depends on circuit parameters that vary among like devices. The generated digital value is then used, for example, to access protected information in the device or to perform a cryptographic function in the integrated circuit.Type: GrantFiled: June 1, 2006Date of Patent: October 19, 2010Assignee: Massachusetts Institute of TechnologyInventors: Srinivas Devadas, Blaise Gassend
-
Patent number: 7757083Abstract: An integrated circuit has a first component that has a dynamic characteristic that varies among like integrated circuits, for example, among integrated circuits fabricated using the same lithography mask. Operating the first component produces an output that is dependent on the dynamic characteristic of the first component. A digital value associated with the integrated circuit is generated using the output of the first component, and then the generated digital value is used in operation of the integrated circuit.Type: GrantFiled: June 1, 2006Date of Patent: July 13, 2010Assignee: Massachusetts Institute of TechnologyInventors: Srinivas Devadas, Blaise Gassend
-
Publication number: 20100127822Abstract: An integrated circuit includes a sequence generator configured to generate a series of challenges; a hidden output generator configured to generate a series of hidden outputs, each hidden output a function of a corresponding challenge in the series of challenges; and bit reduction circuitry configured to generate a response sequence including a plurality of response parts, each response part a function of a corresponding plurality of hidden outputs.Type: ApplicationFiled: November 20, 2009Publication date: May 27, 2010Applicant: Verayo, Inc.Inventor: Srinivas Devadas
-
Patent number: 7724760Abstract: A method for selecting a queue for service across a shared link. The method includes classifying each queue from a group of queues within a plurality of ingresses into one tier of a number “N” of tiers. The number “N” is greater than or equal to 2. Information about allocated bandwidth is used to classify at least some of the queues into the tiers. Each tier is assigned a different priority. The method also includes matching queues to available egresses by matching queues classified within tiers with higher priorities before matching queues classified within tiers with lower priorities.Type: GrantFiled: August 12, 2003Date of Patent: May 25, 2010Assignee: Broadcom CorporationInventors: Hari Balakrishnan, Srinivas Devadas, Arvind Mithal
-
Patent number: 7702927Abstract: A field configurable device, such as an FPGA, supports secure field configuration without using non-volatile storage for cryptographic keys on the device and without requiring a continuous or ongoing power source to maintain a volatile storage on the device. The approach can be used to secure the configuration data such that it can in general be used on a single or a selected set of devices and/or encryption of the configuration data so that the encrypted configuration data can be exposed without compromising information encoded in the configuration data.Type: GrantFiled: November 14, 2005Date of Patent: April 20, 2010Assignee: Verayo, Inc.Inventors: Srinivas Devadas, Thomas J. Ziola
-
Patent number: 7681103Abstract: A device-specific value is reliably generated in a device. In a first component of the device, a first digital value is generated that is substantially dependent fabrication variation among like device. Redundancy information is computed based on the first digital value. A subsequent digital value is later generated in the first component of the device. The first digital value is then determined in a second component of the device from the subsequent digital value and the redundancy information.Type: GrantFiled: June 1, 2006Date of Patent: March 16, 2010Assignee: Massachusetts Institute of TechnologyInventors: Srinivas Devadas, Blaise Gassend
-
Publication number: 20090254981Abstract: A key is determined from a volatile response using circuitry on the device. The volatile response depend on process variation in fabrication of the device. Error control data that depends on the first volatile response can be computed, stored externally to the device, and then used to generate the key using a volatile response using the circuit. Applications of volatile keys include authentication and rights management for content and software.Type: ApplicationFiled: June 16, 2009Publication date: October 8, 2009Applicant: Verayo, Inc.Inventors: Srinivas Devadas, Thomas Ziola
-
Publication number: 20090222672Abstract: An integrated circuit has a first component that has a dynamic characteristic that varies among like integrated circuits, for example, among integrated circuits fabricated using the same lithography mask. Operating the first component produces an output that is dependent on the dynamic characteristic of the first component. A digital value associated with the integrated circuit is generated using the output of the first component, and then the generated digital value is used in operation of the integrated circuit.Type: ApplicationFiled: January 29, 2009Publication date: September 3, 2009Applicant: Massachusetts Institute of TechnologyInventors: Dwaine Clarke, Blaise Gassend, Marten Van Dijk, Srinivas Devadas
-
Patent number: 7564345Abstract: A key is determined from a volatile response using circuitry on the device. The volatile response depend on process variation in fabrication of the device. Error control data that depends on the first volatile response can be computed, stored externally to the device, and then used to generate the key using a volatile response using the circuit. Applications of volatile keys include authentication and rights management for content and software.Type: GrantFiled: November 14, 2005Date of Patent: July 21, 2009Assignee: Verayo, Inc.Inventors: Srinivas Devadas, Thomas Ziola
-
Publication number: 20090158054Abstract: A method for processing one or more terms includes, at a first computation facility, computing an obfuscated numerical representation for each of the terms. The computed obfuscated representations are provided from the first facility to a second computation facility. A result of an arithmetic computation based on the provided obfuscated values is received at the first facility. This received result represents an obfuscation of a result of application of a first function to the terms. The received result is processed to determine the result of application of the first function to the terms.Type: ApplicationFiled: December 15, 2008Publication date: June 18, 2009Applicant: Massachusetts Institute of TechnologyInventors: Marten Van Dijk, Jing Chen, Srinivas Devadas
-
Publication number: 20090083833Abstract: Physical Unclonable Functions (PUFs) for authentication can be implemented in a variety of electronic devices including FPGAs, RFIDs, and ASICs. In some implementations, challenge-response pairs corresponding to individual PUFs can be enrolled and used to determine authentication data, which may be managed in a database. Later when a target object with a PUF is intended to be authenticated a set (or subset) of challenges are applied to each PUF device to authenticate it and thus distinguish it from others. In some examples, authentication is achieved without requiring complex cryptography circuitry implemented on the device. Furthermore, an authentication station does not necessarily have to be in communication with an authority holding the authentication data when a particular device is to be authenticated.Type: ApplicationFiled: September 19, 2008Publication date: March 26, 2009Applicant: Verayo, Inc.Inventors: Thomas Ziola, Zdenek Paral, Srinivas Devadas, Gookwon Edward Suh, Vivek Khandelwal
-
Patent number: 7415477Abstract: A method and apparatus for selecting a queue for service across a shared link. The method includes determining a priority for each queue (202) within a plurality of ingresses (102), wherein the priority is instantaneous for a given timeslot for data transfer, selecting a queue having a first priority for each group of queues within each ingress (104) having packets destined for a particular egress (104), selecting a queue having a second priority for each subset of queues having first priorities and having packets destined for the particular egress (104), and selecting the queue having the second priority for service across the shared link in the given timeslot.Type: GrantFiled: July 5, 2001Date of Patent: August 19, 2008Assignee: Broadcom CorporationInventors: Srinivas Devadas, Hari Balakrishnan, Daniel Rosenband
-
Publication number: 20070250938Abstract: Subsets of multiple signal generator circuits embodied in a device are selected, and then a volatile value for the device is generated from the selected subsets. The volatile value may be used for authentication of the device and/or for cryptographic procedures performed on the device. The signal generator circuits may each comprise an oscillator circuit, and the selection of the subsets may be according to a comparison of the outputs of the subsets of circuits, for example, according to a comparison of output oscillation frequencies.Type: ApplicationFiled: January 24, 2007Publication date: October 25, 2007Inventors: Gookwon Suh, Srinivas Devadas
-
Publication number: 20070183194Abstract: A method for providing access to device-specific information includes providing a first value to the device, and then, in the device, using a second value that is a first one-way function of the provided first value to determine a third value such that the third value is a device-specific function of the second value. The third value is then accepted from the device and stored outside the device. Subsequent to accepting the third value from the device, the second value is provided to the device. In the device, the provided second value is used to determine the third value once again and a fourth value is determined that is a second one-way function of the third value. This determining of the fourth value is performed without disclosing the third value outside the device. The fourth value is accepted from the device.Type: ApplicationFiled: June 1, 2006Publication date: August 9, 2007Inventors: Srinivas Devadas, Blaise Gassend, Dwaine Clarke, Marten Van Dijk
-
Publication number: 20060271793Abstract: A device-specific value is reliably generated in a device. In a first component of the device, a first digital value is generated that is substantially dependent fabrication variation among like device. Redundancy information is computed based on the first digital value. A subsequent digital value is later generated in the first component of the device. The first digital value is then determined in a second component of the device from the subsequent digital value and the redundancy information.Type: ApplicationFiled: June 1, 2006Publication date: November 30, 2006Inventors: Srinivas Devadas, Blaise Gassend