US 11,057,207 B2
Systems and methods of trusted ownership re-key with attestation
David Wheeler, Chandler, AZ (US); and Geoffrey Cooper, Palo Alto, CA (US)
Assigned to Intel Corporation, Santa Clara, CA (US)
Filed by Intel Corporation, Santa Clara, CA (US)
Filed on Dec. 28, 2018, as Appl. No. 16/235,507.
Prior Publication US 2019/0140828 A1, May 9, 2019
Int. Cl. H04L 9/32 (2006.01); H04L 9/08 (2006.01); H04L 9/00 (2006.01); H04L 9/06 (2006.01)
CPC H04L 9/0891 (2013.01) [H04L 9/006 (2013.01); H04L 9/0662 (2013.01); H04L 9/0897 (2013.01); H04L 9/3242 (2013.01); H04L 9/3247 (2013.01); H04L 9/3297 (2013.01); H04L 2209/80 (2013.01)] 25 Claims
OG exemplary drawing
 
1. A host device attestation system, comprising:
input/output interface circuitry;
communications interface circuitry;
processor circuitry that includes trusted execution environment (TEE) circuitry, the TEE circuitry to:
generate an anonymous attestation identification key (AAIK);
generate an attestation claim message that includes:
data based, at least in part, on the anonymous AAIK; and
data representative of a manufacturer assigned, private, device attestation key (DAK) stored in the TEE, the manufacturer assigned, private, DAK uniquely identifying the host device
generate, responsive to receipt of an attestation verification message from the manufacturer, a transfer credential message that includes:
the data based, at least in part, on the anonymous AAIK; and
data representative of an attestation verification by the manufacturer, wherein the attestation verification message from the manufacturer includes:
data representative of the manufacturer device attestation verification; and
data representative of a manufacturer signature.