CL2019000507A1 - Preservación de secretos protegidos a través de una actualización de arranque seguro - Google Patents
Preservación de secretos protegidos a través de una actualización de arranque seguroInfo
- Publication number
- CL2019000507A1 CL2019000507A1 CL2019000507A CL2019000507A CL2019000507A1 CL 2019000507 A1 CL2019000507 A1 CL 2019000507A1 CL 2019000507 A CL2019000507 A CL 2019000507A CL 2019000507 A CL2019000507 A CL 2019000507A CL 2019000507 A1 CL2019000507 A1 CL 2019000507A1
- Authority
- CL
- Chile
- Prior art keywords
- blobs
- conditions
- preservation
- secure boot
- secret
- Prior art date
Links
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F11/00—Error detection; Error correction; Monitoring
- G06F11/07—Responding to the occurrence of a fault, e.g. fault tolerance
- G06F11/14—Error detection or correction of the data by redundancy in operation
- G06F11/1402—Saving, restoring, recovering or retrying
- G06F11/1415—Saving, restoring, recovering or retrying at system level
- G06F11/1417—Boot up procedures
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F11/00—Error detection; Error correction; Monitoring
- G06F11/07—Responding to the occurrence of a fault, e.g. fault tolerance
- G06F11/14—Error detection or correction of the data by redundancy in operation
- G06F11/1402—Saving, restoring, recovering or retrying
- G06F11/1415—Saving, restoring, recovering or retrying at system level
- G06F11/1433—Saving, restoring, recovering or retrying at system level during software upgrading
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/50—Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
- G06F21/57—Certifying or maintaining trusted computer platforms, e.g. secure boots or power-downs, version controls, system software checks, secure updates or assessing vulnerabilities
- G06F21/572—Secure firmware programming, e.g. of basic input output system [BIOS]
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/50—Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
- G06F21/57—Certifying or maintaining trusted computer platforms, e.g. secure boots or power-downs, version controls, system software checks, secure updates or assessing vulnerabilities
- G06F21/575—Secure boot
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/08—Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
- H04L9/0816—Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
- H04L9/085—Secret sharing or secret splitting, e.g. threshold schemes
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L2209/00—Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
- H04L2209/12—Details relating to cryptographic hardware or logic circuitry
- H04L2209/127—Trusted platform modules [TPM]
Landscapes
- Engineering & Computer Science (AREA)
- Theoretical Computer Science (AREA)
- General Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Hardware Design (AREA)
- Software Systems (AREA)
- General Physics & Mathematics (AREA)
- Physics & Mathematics (AREA)
- Quality & Reliability (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Storage Device Security (AREA)
- Stored Programmes (AREA)
- Information Retrieval, Db Structures And Fs Structures Therefor (AREA)
Abstract
La presente se refiere a un método para la obtención de un secreto sellado. El método incluye descodificar crípticamente uno o más BLOB en un sistema de cómputo de entre una pluralidad de diferentes BLOB. Cada uno de los BLOB en la pluralidad de BLOB contiene el secreto. Cada uno de los BLOB en la pluralidad de BLOB está sellado a una condición diferente de entre una pluralidad de condiciones. Una condición dada es una reflexión de un estado del sistema, en donde el estado del sistema es indicativo de si el sistema puede ser o no confiable para recibir el secreto. El método además incluye evaluar una o más de las condiciones para determinar si al menos una de las una o más condiciones se cumple. El método además incluye, si al menos una de las una o más condiciones se cumple, entonces proporcionar el secreto a una entidad externa; Dispositivo; Sistema; Método.
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
US15/253,521 US10177910B2 (en) | 2016-08-31 | 2016-08-31 | Preserving protected secrets across a secure boot update |
Publications (1)
Publication Number | Publication Date |
---|---|
CL2019000507A1 true CL2019000507A1 (es) | 2019-07-05 |
Family
ID=59791182
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CL2019000507A CL2019000507A1 (es) | 2016-08-31 | 2019-02-26 | Preservación de secretos protegidos a través de una actualización de arranque seguro |
Country Status (19)
Country | Link |
---|---|
US (1) | US10177910B2 (es) |
EP (1) | EP3507737B1 (es) |
JP (1) | JP6994022B2 (es) |
KR (1) | KR102386111B1 (es) |
CN (1) | CN109643352B (es) |
AU (1) | AU2017318962B2 (es) |
BR (1) | BR112019000763A8 (es) |
CA (1) | CA3030983A1 (es) |
CL (1) | CL2019000507A1 (es) |
CO (1) | CO2019001414A2 (es) |
IL (1) | IL264706B (es) |
MX (1) | MX2019002063A (es) |
MY (1) | MY202112A (es) |
NZ (1) | NZ749830A (es) |
PH (1) | PH12019550006A1 (es) |
RU (1) | RU2748392C2 (es) |
SG (1) | SG11201901127YA (es) |
WO (1) | WO2018044696A1 (es) |
ZA (1) | ZA201900424B (es) |
Families Citing this family (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
JP7367471B2 (ja) * | 2019-11-07 | 2023-10-24 | 株式会社リコー | 情報処理装置、ファイル保証方法、及びファイル保証プログラム |
KR20220154879A (ko) * | 2021-05-14 | 2022-11-22 | 현대자동차주식회사 | 차량 제어 장치 및 방법 |
Family Cites Families (32)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US7058807B2 (en) * | 2002-04-15 | 2006-06-06 | Intel Corporation | Validation of inclusion of a platform within a data center |
US7890771B2 (en) * | 2002-04-17 | 2011-02-15 | Microsoft Corporation | Saving and retrieving data based on public key encryption |
US7062764B2 (en) * | 2002-06-17 | 2006-06-13 | Microsoft Corporation | System and method for manipulating offline software |
US7694121B2 (en) * | 2004-06-30 | 2010-04-06 | Microsoft Corporation | System and method for protected operating system boot using state validation |
US20060095505A1 (en) * | 2004-09-30 | 2006-05-04 | Zimmer Vincent J | Providing a trustworthy configuration server |
US7725703B2 (en) * | 2005-01-07 | 2010-05-25 | Microsoft Corporation | Systems and methods for securely booting a computer with a trusted processing module |
US7565553B2 (en) | 2005-01-14 | 2009-07-21 | Microsoft Corporation | Systems and methods for controlling access to data on a computer with a secure boot process |
US8539587B2 (en) * | 2005-03-22 | 2013-09-17 | Hewlett-Packard Development Company, L.P. | Methods, devices and data structures for trusted data |
US7809957B2 (en) | 2005-09-29 | 2010-10-05 | Intel Corporation | Trusted platform module for generating sealed data |
US8631507B2 (en) * | 2006-03-27 | 2014-01-14 | Intel Corporation | Method of using signatures for measurement in a trusted computing environment |
US8190916B1 (en) * | 2006-07-27 | 2012-05-29 | Hewlett-Packard Development Company, L.P. | Methods and systems for modifying an integrity measurement based on user authentication |
US8108940B2 (en) | 2006-12-19 | 2012-01-31 | International Business Machines Corporation | Method for protecting data from unauthorised access |
JP4903071B2 (ja) * | 2007-03-15 | 2012-03-21 | 株式会社リコー | 情報処理装置、ソフトウェア更新方法及び画像処理装置 |
JP2009169841A (ja) * | 2008-01-18 | 2009-07-30 | Panasonic Corp | 情報処理装置および携帯電話装置 |
US8732445B2 (en) | 2008-10-10 | 2014-05-20 | Panasonic Corporation | Information processing device, information processing method, information processing program, and integrated circuit |
US8495036B2 (en) * | 2008-10-24 | 2013-07-23 | Microsoft Corporation | Blob manipulation in an integrated structured storage system |
US8266448B2 (en) * | 2008-12-09 | 2012-09-11 | Nvidia Corporation | Apparatus, system, method, and computer program product for generating and securing a program capable of being executed utilizing a processor to decrypt content |
JP5493951B2 (ja) * | 2009-04-17 | 2014-05-14 | 株式会社リコー | 情報処理装置、正当性検証方法及びプログラム |
US8588422B2 (en) | 2009-05-28 | 2013-11-19 | Novell, Inc. | Key management to protect encrypted data of an endpoint computing device |
US8490179B2 (en) * | 2009-10-27 | 2013-07-16 | Hewlett-Packard Development Company, L.P. | Computing platform |
GB2482652B (en) * | 2010-05-21 | 2016-08-24 | Hewlett Packard Development Co Lp | Extending integrity measurements in a trusted device using a policy register |
MY150362A (en) | 2010-11-02 | 2013-12-31 | Mimos Berhad | A system and method for securing data storage |
US8762742B2 (en) * | 2011-05-16 | 2014-06-24 | Broadcom Corporation | Security architecture for using host memory in the design of a secure element |
US8612766B2 (en) * | 2011-07-05 | 2013-12-17 | Microsoft Corporation | Secure credential unlock using trusted execution environments |
US8694786B2 (en) * | 2011-10-04 | 2014-04-08 | International Business Machines Corporation | Virtual machine images encryption using trusted computing group sealing |
CN102650947B (zh) * | 2012-04-01 | 2015-06-24 | 广东欧珀移动通信有限公司 | 一种Android手持设备连续增量的空中升级方法 |
US20150134965A1 (en) | 2012-05-24 | 2015-05-14 | Telefonaktiebolaget L M Ericsson (Publ) | Enhanced Secure Virtual Machine Provisioning |
JP5980050B2 (ja) | 2012-08-29 | 2016-08-31 | キヤノン株式会社 | 情報処理装置 |
EP3008653A4 (en) * | 2013-06-13 | 2017-01-25 | Intel Corporation | Secure battery authentication |
US9652631B2 (en) * | 2014-05-05 | 2017-05-16 | Microsoft Technology Licensing, Llc | Secure transport of encrypted virtual machines with continuous owner access |
US9264410B2 (en) * | 2014-06-05 | 2016-02-16 | Sony Corporation | Dynamic configuration of trusted executed environment resources |
US9519787B2 (en) | 2014-11-14 | 2016-12-13 | Microsoft Technology Licensing, Llc | Secure creation of encrypted virtual machines from encrypted templates |
-
2016
- 2016-08-31 US US15/253,521 patent/US10177910B2/en active Active
-
2017
- 2017-08-25 RU RU2019105575A patent/RU2748392C2/ru active
- 2017-08-25 AU AU2017318962A patent/AU2017318962B2/en active Active
- 2017-08-25 MX MX2019002063A patent/MX2019002063A/es unknown
- 2017-08-25 KR KR1020197006214A patent/KR102386111B1/ko active IP Right Grant
- 2017-08-25 JP JP2019511846A patent/JP6994022B2/ja active Active
- 2017-08-25 NZ NZ749830A patent/NZ749830A/en unknown
- 2017-08-25 CN CN201780053248.6A patent/CN109643352B/zh active Active
- 2017-08-25 CA CA3030983A patent/CA3030983A1/en active Pending
- 2017-08-25 MY MYPI2019001024A patent/MY202112A/en unknown
- 2017-08-25 EP EP17762008.5A patent/EP3507737B1/en active Active
- 2017-08-25 BR BR112019000763A patent/BR112019000763A8/pt unknown
- 2017-08-25 WO PCT/US2017/048517 patent/WO2018044696A1/en unknown
- 2017-08-25 SG SG11201901127YA patent/SG11201901127YA/en unknown
-
2019
- 2019-01-08 PH PH12019550006A patent/PH12019550006A1/en unknown
- 2019-01-21 ZA ZA2019/00424A patent/ZA201900424B/en unknown
- 2019-02-07 IL IL264706A patent/IL264706B/en unknown
- 2019-02-18 CO CONC2019/0001414A patent/CO2019001414A2/es unknown
- 2019-02-26 CL CL2019000507A patent/CL2019000507A1/es unknown
Also Published As
Publication number | Publication date |
---|---|
KR102386111B1 (ko) | 2022-04-12 |
KR20190042018A (ko) | 2019-04-23 |
AU2017318962A1 (en) | 2019-01-24 |
NZ749830A (en) | 2022-09-30 |
CN109643352B (zh) | 2023-07-18 |
JP6994022B2 (ja) | 2022-01-14 |
RU2019105575A3 (es) | 2020-11-02 |
EP3507737A1 (en) | 2019-07-10 |
SG11201901127YA (en) | 2019-03-28 |
MY202112A (en) | 2024-04-04 |
PH12019550006A1 (en) | 2020-01-20 |
BR112019000763A8 (pt) | 2023-01-31 |
WO2018044696A1 (en) | 2018-03-08 |
EP3507737B1 (en) | 2021-06-02 |
IL264706B (en) | 2021-12-01 |
MX2019002063A (es) | 2019-06-06 |
BR112019000763A2 (pt) | 2019-04-24 |
US10177910B2 (en) | 2019-01-08 |
CA3030983A1 (en) | 2018-03-08 |
US20180062833A1 (en) | 2018-03-01 |
RU2019105575A (ru) | 2020-08-27 |
ZA201900424B (en) | 2020-05-27 |
CO2019001414A2 (es) | 2019-02-28 |
CN109643352A (zh) | 2019-04-16 |
JP2019532402A (ja) | 2019-11-07 |
RU2748392C2 (ru) | 2021-05-25 |
AU2017318962B2 (en) | 2021-10-28 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CL2017003377A1 (es) | Método combinado para detectar anomalías en un sistema de distribución de agua | |
AR110005A1 (es) | Método y sistema para el mapeo de rendimientos de los cultivos | |
BR112017012637A2 (pt) | método para exibir características termográficas em uma difusão, e, sistema para exibir características termográficas e efeitos em uma difusão | |
BR112016006445A2 (pt) | método para proteger mensagens de transação transitando entre um aplicativo móvel em um dispositivo móvel e um gateway (ponte de ligação), e sistema processador de transações | |
AR099172A1 (es) | Sistemas y métodos de fracturación | |
CO2017007201A2 (es) | Sistema y método para procesar solicitudes de transacciones electrónicas | |
AR094460A1 (es) | Sistemas y métodos de monitoreo de formación de hidratos de gas en tiempo real | |
AR100290A1 (es) | Método y dispositivo para la toma de imagen y orientación de semillas | |
BR112017008904A2 (pt) | sistema e método para detecção de unidades de recursos ativos | |
FR3021784B1 (fr) | Procede de projection de donnees virtuelles et dispositif permettant cette projection | |
AR105576A1 (es) | Proceso de reestimulación con tubería flexible y fibra óptica | |
CL2019000507A1 (es) | Preservación de secretos protegidos a través de una actualización de arranque seguro | |
CL2016003255A1 (es) | Sistema para una máquina excavadora que comprende: un sistema de control que hace funcionar aspectos de la máquina excavadora; y un sistema de monitorización que recibe entradas de uno a más sensores portados por o en las cercanías de la máquina excavadora | |
CL2014002975A1 (es) | Método in vitro para el diagnostico y vigilancia del cáncer, que comprende determinar la razón entre las células treg y otro grupo de células t, seleccionadas de th17, th1 y/o th2. | |
ES2618305T3 (es) | Sistema y procedimiento para mejorar la comunicación en una red inalámbrica | |
ES2570536T3 (es) | Método de detección de datos relativos a energía térmica radiada en un ambiente usando tratamiento de imágenes en radiación infrarroja | |
AR109008A1 (es) | Decisión de estimulación permanente del pozo en tiempo real | |
BR112017001840A2 (pt) | método e aparelho para desenvolvimento de operação, administração e manutenção virtual, e sistema de rede virtualizada | |
CO7160075A2 (es) | Manejo basado en red de conjuntos de datos protegidos | |
CL2018000873A1 (es) | Un sistema y procedimiento para monitorear un dispositivo de seguridad vial, para detectar el impacto de un vehiculo contra el dispositivo de seguridad vial y un juego de dispositivo de seguridad vial. | |
CL2015002824A1 (es) | Procesamiento de material extraído de una mina | |
DK3704829T3 (da) | Kryptografisk nøglegenereringssystem og -fremgangsmåde | |
DK3094933T3 (da) | Apparat og fremgangsmåde til afkøling eller nedfrysning | |
CO2017011614A2 (es) | Autenticación de envasado | |
BR112017014331A2 (pt) | método, aparelho e sistema |