	US 12,425,205 B2
	Deriving identity and root keys for embedded systems
Miguel Angel Osorio Lozano, El Dorado Hills, CA (US); and Timothy Jay Chen, Pleasanton, CA (US)
Assigned to Google LLC, Mountain View, CA (US)
Filed by Google LLC, Mountain View, CA (US)
Filed on Jun. 28, 2024, as Appl. No. 18/758,091.
Application 18/758,091 is a continuation of application No. 17/495,719, filed on Oct. 6, 2021, granted, now 12,061,702.
Claims priority of provisional application 63/088,756, filed on Oct. 7, 2020.
Prior Publication US 2024/0354417 A1, Oct. 24, 2024
This patent is subject to a terminal disclaimer.
Int. Cl. H04L 9/08 (2006.01); G06F 9/4401 (2018.01); G06F 21/57 (2013.01); H04L 9/30 (2006.01); H04L 9/32 (2006.01)

CPC H04L 9/0866 (2013.01) [G06F 9/4403 (2013.01); G06F 21/575 (2013.01); H04L 9/0838 (2013.01); H04L 9/0894 (2013.01); H04L 9/30 (2013.01); H04L 9/3226 (2013.01); G06F 2221/034 (2013.01)]

20 Claims

1. A method for booting an integrated circuit, the method comprising:

initiating execution of first code from a read-only memory (ROM) of the integrated circuit;

in response to the execution of the first code:

verifying a signature of second code of a ROM extension image stored in a non-volatile memory of the integrated circuit;

retrieving a root key from one-time programmable (OTP) memory of the integrated circuit;

retrieving a device identifier from the OTP memory of the integrated circuit;

obtaining a security descriptor of the second code of the ROM extension image; and

providing the root key, the device identifier, and the security descriptor of the second code to a key manager of the integrated circuit to generate a silicon-specific root key; and

responsive to verifying the signature of the second code, transferring execution from the first code to the second code of the ROM extension image, the second code of the ROM extension image configured to use the silicon-specific root key.