BR112018011231A2 - sistemas de computador e método para inicializar com segurança um sistema de computador - Google Patents
sistemas de computador e método para inicializar com segurança um sistema de computadorInfo
- Publication number
- BR112018011231A2 BR112018011231A2 BR112018011231A BR112018011231A BR112018011231A2 BR 112018011231 A2 BR112018011231 A2 BR 112018011231A2 BR 112018011231 A BR112018011231 A BR 112018011231A BR 112018011231 A BR112018011231 A BR 112018011231A BR 112018011231 A2 BR112018011231 A2 BR 112018011231A2
- Authority
- BR
- Brazil
- Prior art keywords
- logic block
- computer system
- controller
- instructions
- reset
- Prior art date
Links
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/50—Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
- G06F21/57—Certifying or maintaining trusted computer platforms, e.g. secure boots or power-downs, version controls, system software checks, secure updates or assessing vulnerabilities
- G06F21/575—Secure boot
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F8/00—Arrangements for software engineering
- G06F8/60—Software deployment
- G06F8/65—Updates
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F9/00—Arrangements for program control, e.g. control units
- G06F9/06—Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
- G06F9/44—Arrangements for executing specific programs
- G06F9/4401—Bootstrapping
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F9/00—Arrangements for program control, e.g. control units
- G06F9/06—Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
- G06F9/44—Arrangements for executing specific programs
- G06F9/4401—Bootstrapping
- G06F9/4416—Network booting; Remote initial program loading [RIPL]
Landscapes
- Engineering & Computer Science (AREA)
- Software Systems (AREA)
- Theoretical Computer Science (AREA)
- General Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Physics & Mathematics (AREA)
- General Physics & Mathematics (AREA)
- Computer Hardware Design (AREA)
- Stored Programmes (AREA)
Abstract
um sistema de computador de inicialização segura é fornecido. o sistema compreende um bloco lógico (101) compreendendo uma ou mais unidades de processamento (101a, 101b) que executa instruções, sendo o bloco lógico configurado para solicitar instruções de inicialização através de uma primeira interface (102), de acordo com um primeiro protocolo de comunicação na ligação ou redefinição do bloco lógico. um componente de controle (150) é configurado para se comunicar com o bloco lógico através da primeira interface de acordo com o primeiro protocolo de comunicação, sendo o controlador ainda configurado para implementar um link de comunicações (300) para um segundo sistema de computador (200) e para receber as instruções de inicialização do segundo sistema de computador. o bloco lógico é pré-configurado para se comunicar com o controlador através da primeira interface de acordo com o primeiro protocolo de comunicação de uma maneira que não pode ser alterada pelas instruções executadas pelo bloco lógico. o controlador é configurado para impedir a conclusão de quaisquer pedidos de gravação do bloco lógico. o sistema compreende ainda uma conexão de controle (140) entre o bloco lógico e o controlador. o controlador é ainda configurado para usar a conexão de controle para ligar ou redefinir o bloco lógico para colocar o bloco lógico em um estado ativo predeterminado resultante da execução das instruções de inicialização, tal que o software operando no bloco lógico antes da ligação ou da redefinição do bloco lógico não pode afetar o estado ativo predeterminado. um método correspondente e o segundo sistema de computador (200) também são fornecidos.
Applications Claiming Priority (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
GB1521394.5A GB2545010B (en) | 2015-12-03 | 2015-12-03 | Secure boot device |
PCT/EP2016/079667 WO2017093533A1 (en) | 2015-12-03 | 2016-12-02 | Secure boot code cache which may be updated through the network |
Publications (1)
Publication Number | Publication Date |
---|---|
BR112018011231A2 true BR112018011231A2 (pt) | 2018-11-21 |
Family
ID=55234390
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
BR112018011231A BR112018011231A2 (pt) | 2015-12-03 | 2016-12-02 | sistemas de computador e método para inicializar com segurança um sistema de computador |
Country Status (7)
Country | Link |
---|---|
US (1) | US10242198B2 (pt) |
EP (1) | EP3241144B1 (pt) |
JP (1) | JP6968811B2 (pt) |
CN (1) | CN108604276B (pt) |
BR (1) | BR112018011231A2 (pt) |
GB (1) | GB2545010B (pt) |
WO (1) | WO2017093533A1 (pt) |
Families Citing this family (7)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US10831897B2 (en) * | 2017-07-14 | 2020-11-10 | Dell Products, L.P. | Selective enforcement of secure boot database entries in an information handling system |
US10430225B1 (en) * | 2017-09-29 | 2019-10-01 | Amazon Technologies, Inc. | Traffic management on an interconnect |
GB2570143B (en) | 2018-01-12 | 2020-04-08 | Garrison Tech Ltd | Secure sharing of storage resources |
US10916274B2 (en) | 2019-04-19 | 2021-02-09 | Samsung Electronics Co., Ltd. | Power management integrated circuits and semiconductor memory modules including power management integrated circuits |
US11657156B2 (en) * | 2020-02-15 | 2023-05-23 | Lenovo (Singapore) Pte. Ltd. | Malware scan in response to power change |
GB2592379B (en) | 2020-02-25 | 2022-06-22 | Garrison Tech Ltd | Connection of computers over networks |
CN111858428B (zh) * | 2020-06-24 | 2022-03-22 | 山东云海国创云计算装备产业创新中心有限公司 | 一种服务器及其bios的通信管理电路 |
Family Cites Families (32)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US6539480B1 (en) | 1998-12-31 | 2003-03-25 | Intel Corporation | Secure transfer of trust in a computing system |
US6546489B1 (en) | 1999-03-04 | 2003-04-08 | Western Digital Ventures, Inc. | Disk drive which provides a secure boot of a host computer system from a protected area of a disk |
US7007077B1 (en) * | 2000-09-06 | 2006-02-28 | Hitachi, Ltd. | Remote maintenance method of an information processing apparatus |
US7664984B2 (en) * | 2002-10-09 | 2010-02-16 | Xpoint Technologies, Inc. | Method and system for updating a software image |
US20040076043A1 (en) * | 2002-10-21 | 2004-04-22 | Phoenix Technologies Ltd. | Reliable and secure updating and recovery of firmware from a mass storage device |
US7293165B1 (en) | 2003-04-03 | 2007-11-06 | Advanced Micro Devices, Inc. | BMC-hosted boot ROM interface |
US8839417B1 (en) | 2003-11-17 | 2014-09-16 | Mcafee, Inc. | Device, system and method for defending a computer network |
US20050172280A1 (en) * | 2004-01-29 | 2005-08-04 | Ziegler Jeremy R. | System and method for preintegration of updates to an operating system |
JP5122448B2 (ja) | 2005-06-30 | 2013-01-16 | フランス・テレコム | ビデオ符号化方法及び装置 |
US7845005B2 (en) | 2006-02-07 | 2010-11-30 | International Business Machines Corporation | Method for preventing malicious software installation on an internet-connected computer |
US20070226478A1 (en) * | 2006-03-23 | 2007-09-27 | John Rudelic | Secure boot from secure non-volatile memory |
US8024788B2 (en) | 2007-05-31 | 2011-09-20 | The Boeing Company | Method and apparatus for reliable, high speed data transfers in a high assurance multiple level secure environment |
US8265171B2 (en) | 2008-02-26 | 2012-09-11 | Richwave Technology Corp. | Error resilient video transmission using instantaneous receiver feedback and channel quality adaptive packet retransmission |
US8104083B1 (en) | 2008-03-31 | 2012-01-24 | Symantec Corporation | Virtual machine file system content protection system and method |
US8406296B2 (en) | 2008-04-07 | 2013-03-26 | Qualcomm Incorporated | Video refresh adaptation algorithms responsive to error feedback |
US8806607B2 (en) | 2008-08-12 | 2014-08-12 | Verizon Patent And Licensing Inc. | Unauthorized data transfer detection and prevention |
CN101360243A (zh) | 2008-09-24 | 2009-02-04 | 腾讯科技(深圳)有限公司 | 基于反馈参考帧的视频通信系统及方法 |
US20110035808A1 (en) | 2009-08-05 | 2011-02-10 | The Penn State Research Foundation | Rootkit-resistant storage disks |
US8589302B2 (en) | 2009-11-30 | 2013-11-19 | Intel Corporation | Automated modular and secure boot firmware update |
US8413253B2 (en) * | 2009-12-30 | 2013-04-02 | Intel Corporation | Protecting persistent secondary platform storage against attack from malicious or unauthorized programs |
GB2477774A (en) * | 2010-02-12 | 2011-08-17 | Icera Inc | Overriding production processor authentication restrictions through remote security unit for development code testing |
US9256745B2 (en) | 2011-03-01 | 2016-02-09 | Microsoft Technology Licensing, Llc | Protecting operating system configuration values using a policy identifying operating system configuration settings |
US8812830B2 (en) | 2011-08-31 | 2014-08-19 | Microsoft Corporation | Attestation protocol for securely booting a guest operating system |
GB2495468B (en) | 2011-09-02 | 2017-12-13 | Skype | Video coding |
CN104137554A (zh) | 2012-02-24 | 2014-11-05 | Vid拓展公司 | 使用分组损耗检测的视频编码 |
US8745713B1 (en) | 2012-08-31 | 2014-06-03 | Cloud Cover Safety, Inc. | Method and service for securing a system networked to a cloud computing environment from malicious code attacks |
US9047471B2 (en) | 2012-09-25 | 2015-06-02 | Apple Inc. | Security enclave processor boot control |
CN103914658B (zh) * | 2013-01-05 | 2017-02-22 | 展讯通信(上海)有限公司 | 终端设备的安全启动方法及终端设备 |
US9189637B2 (en) | 2014-03-17 | 2015-11-17 | Saudi Arabian Oil Company | Systems, methods, and computer medium to securely transfer business transactional data between physically isolated networks having different levels of network protection utilizing barcode technology |
CN103870745B (zh) * | 2014-04-01 | 2017-08-29 | 联想(北京)有限公司 | 电子设备和安全启动电子设备的方法 |
CN103955648B (zh) | 2014-05-15 | 2017-02-01 | 乐视致新电子科技(天津)有限公司 | 校验系统镜像合法性的方法及装置 |
CN104363231B (zh) | 2014-11-17 | 2017-09-19 | 北京锐驰信安技术有限公司 | 一种基于单向通道的网络安全隔离与信息交换方法及系统 |
-
2015
- 2015-12-03 GB GB1521394.5A patent/GB2545010B/en active Active
-
2016
- 2016-12-02 JP JP2018548281A patent/JP6968811B2/ja active Active
- 2016-12-02 CN CN201680080848.7A patent/CN108604276B/zh active Active
- 2016-12-02 US US15/502,315 patent/US10242198B2/en active Active
- 2016-12-02 WO PCT/EP2016/079667 patent/WO2017093533A1/en active Application Filing
- 2016-12-02 BR BR112018011231A patent/BR112018011231A2/pt not_active Application Discontinuation
- 2016-12-02 EP EP16805161.3A patent/EP3241144B1/en active Active
Also Published As
Publication number | Publication date |
---|---|
GB2545010B (en) | 2018-01-03 |
US20180314828A1 (en) | 2018-11-01 |
US10242198B2 (en) | 2019-03-26 |
EP3241144A1 (en) | 2017-11-08 |
JP2018536958A (ja) | 2018-12-13 |
WO2017093533A1 (en) | 2017-06-08 |
GB2545010A (en) | 2017-06-07 |
CN108604276A (zh) | 2018-09-28 |
GB201521394D0 (en) | 2016-01-20 |
CN108604276B (zh) | 2022-04-29 |
EP3241144B1 (en) | 2022-07-06 |
JP6968811B2 (ja) | 2021-11-17 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
BR112018011231A2 (pt) | sistemas de computador e método para inicializar com segurança um sistema de computador | |
US11200080B1 (en) | Late load technique for deploying a virtualization layer underneath a running operating system | |
US20190087159A1 (en) | System and method for executing native client code in a storage device | |
US10235515B2 (en) | Method and apparatus for on-demand isolated I/O channels for secure applications | |
US9607351B2 (en) | Systems and methods for GPU virtualization | |
BR112018002515A2 (pt) | proteção de conteúdo aplicado em hardware para unidades de processamento gráfico | |
US20180165224A1 (en) | Secure encrypted virtualization | |
ES2928753T3 (es) | Método y aparato para ejecutar una interrupción no enmascarable | |
BR112018004665A2 (pt) | formação de ponte de sinal de entrada/saída e virtualização em uma rede de múltiplos nós | |
WO2015081308A3 (en) | Dynamic i/o virtualization | |
BR112015020884A2 (pt) | método e aparelho para ajustar estado de execução de dispositivo de casa inteligente | |
US20180068134A1 (en) | Method to isolate real-time or safety-critical software and operating system from non-critical software and operating system | |
BR112013024883B8 (pt) | Frameworks e interfaces para processamento de pacote à base de dispositivo de descarga | |
WO2009039376A3 (en) | Computer system with tunneling | |
BR112013033792A2 (pt) | sistema de computador, método para acessar um dispositivo de ponto de extremidade de interconexão de componentes periféricos expressos e aparelho | |
BR112018076689A2 (pt) | métodos de processamento de dados e dispositivos de processamento de dados | |
BR112012021102A2 (pt) | aparelho de processamento de dados, método para operar um aparelho de processamento de dados. | |
BR112015030158A2 (pt) | preempção de armazenamento temporário de comando intermediário para cargas de trabalho gráficas | |
RU2016141987A (ru) | Способ и устройство изменения ресурса виртуальной вычислительной машины и устройство для функционирования виртуальной сети передачи данных | |
JP2016524257A5 (pt) | ||
US20150121377A1 (en) | Method for implementing inter-virtual processor interrupt, related apparatus, and system | |
BR112019005604A2 (pt) | chip de processador e dispositivo terminal | |
BR112018071643A2 (pt) | métodos e sistemas para detectar inteligentemente malware e ataques em dispositivos de computação de cliente e redes corporativas | |
BR112015029296A2 (pt) | plataforma de driver restrita que executa drivers em área de segurança em modo de usuário | |
BR112015018459A2 (pt) | mecanismo para fornecer suporte para fluxos de confiabilidade, disponibilidade e capacidade de serviço (ras) em monitor de ponto |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
B06U | Preliminary requirement: requests with searches performed by other patent offices: procedure suspended [chapter 6.21 patent gazette] | ||
B11B | Dismissal acc. art. 36, par 1 of ipl - no reply within 90 days to fullfil the necessary requirements | ||
B350 | Update of information on the portal [chapter 15.35 patent gazette] |