CN103765429B - 数字签名机构相关的平台秘密 - Google Patents

数字签名机构相关的平台秘密 Download PDF

Info

Publication number
CN103765429B
CN103765429B CN201280041444.9A CN201280041444A CN103765429B CN 103765429 B CN103765429 B CN 103765429B CN 201280041444 A CN201280041444 A CN 201280041444A CN 103765429 B CN103765429 B CN 103765429B
Authority
CN
China
Prior art keywords
firmware
components
secret
list
authorities
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN201280041444.9A
Other languages
English (en)
Chinese (zh)
Other versions
CN103765429A (zh
Inventor
S.托姆
R.K.斯皮格
M.B.G.尼斯特伦
D.R.伍滕
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Microsoft Technology Licensing LLC
Original Assignee
Microsoft Corp
Microsoft Technology Licensing LLC
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Microsoft Corp, Microsoft Technology Licensing LLC filed Critical Microsoft Corp
Publication of CN103765429A publication Critical patent/CN103765429A/zh
Application granted granted Critical
Publication of CN103765429B publication Critical patent/CN103765429B/zh
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/50Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
    • G06F21/57Certifying or maintaining trusted computer platforms, e.g. secure boots or power-downs, version controls, system software checks, secure updates or assessing vulnerabilities
    • G06F21/575Secure boot
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/602Providing cryptographic facilities or services
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/70Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer
    • G06F21/71Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure computing or processing of information
    • G06F21/73Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure computing or processing of information by creating or determining hardware identification, e.g. serial numbers

Landscapes

  • Engineering & Computer Science (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • Software Systems (AREA)
  • Computer Security & Cryptography (AREA)
  • General Engineering & Computer Science (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • General Health & Medical Sciences (AREA)
  • Health & Medical Sciences (AREA)
  • Bioethics (AREA)
  • Mathematical Physics (AREA)
  • Storage Device Security (AREA)
  • Stored Programmes (AREA)
CN201280041444.9A 2011-08-25 2012-08-08 数字签名机构相关的平台秘密 Active CN103765429B (zh)

Applications Claiming Priority (4)

Application Number Priority Date Filing Date Title
US13/218,029 2011-08-25
US13/218029 2011-08-25
US13/218,029 US8924737B2 (en) 2011-08-25 2011-08-25 Digital signing authority dependent platform secret
PCT/US2012/049880 WO2013028353A1 (en) 2011-08-25 2012-08-08 Digital signing authority dependent platform secret

Publications (2)

Publication Number Publication Date
CN103765429A CN103765429A (zh) 2014-04-30
CN103765429B true CN103765429B (zh) 2016-08-31

Family

ID=47745392

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201280041444.9A Active CN103765429B (zh) 2011-08-25 2012-08-08 数字签名机构相关的平台秘密

Country Status (6)

Country Link
US (1) US8924737B2 (enExample)
EP (1) EP2748752B1 (enExample)
JP (1) JP6073320B2 (enExample)
KR (1) KR102030858B1 (enExample)
CN (1) CN103765429B (enExample)
WO (1) WO2013028353A1 (enExample)

Families Citing this family (13)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2014150478A1 (en) * 2013-03-15 2014-09-25 Insyde Software Corp. System and method for managing and diagnosing a computing device equipped with unified extensible firmware interface (uefi)-compliant firmware
US9384351B2 (en) * 2013-03-15 2016-07-05 Intel Corporation Method and apparatus for implementing a secure boot using multiple firmware sources
KR20140136166A (ko) * 2013-05-20 2014-11-28 삼성전자주식회사 관리자 권한 획득 방지 방법 및 장치
US10360370B2 (en) * 2016-07-22 2019-07-23 Hewlett Packard Enterprise Development Lp Authenticated access to manageability hardware components
CN108933788B (zh) * 2018-07-03 2020-11-06 西南交通大学 一种基于fpga的rssp-ii协议mac码快速验证装置
US11218330B2 (en) 2019-03-25 2022-01-04 Micron Technology, Inc. Generating an identity for a computing device using a physical unclonable function
US11233650B2 (en) 2019-03-25 2022-01-25 Micron Technology, Inc. Verifying identity of a vehicle entering a trust zone
US11361660B2 (en) * 2019-03-25 2022-06-14 Micron Technology, Inc. Verifying identity of an emergency vehicle during operation
US11323275B2 (en) 2019-03-25 2022-05-03 Micron Technology, Inc. Verification of identity using a secret key
US11025422B2 (en) * 2019-07-23 2021-06-01 Nasuni Corporation Cloud-native global file system with constant-time rekeying
GB201913144D0 (en) * 2019-09-12 2019-10-30 Nchain Holdings Ltd Sharing data via transactions of a blockchain
US11340797B2 (en) * 2019-10-04 2022-05-24 Zettaset, Inc. Dedicated encrypted container storage
US11893118B2 (en) * 2021-05-25 2024-02-06 Microsoft Technology Licensing, Llc Transfer of ownership of a computing device via a security processor

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1678968A (zh) * 2002-06-28 2005-10-05 英特尔公司 可信计算机平台
US20060143472A1 (en) * 2002-08-21 2006-06-29 Oliver Feilen Method for protecting against manipulation of a controller for at least one motor vehicle component and controller
US20070127719A1 (en) * 2003-10-14 2007-06-07 Goran Selander Efficient management of cryptographic key generations
US20110307712A1 (en) * 2010-06-11 2011-12-15 Palsamy Sakthikumar Multi-owner deployment of firmware images

Family Cites Families (22)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP3581001B2 (ja) * 1998-01-20 2004-10-27 富士通株式会社 記憶装置、記憶媒体及び識別情報記録方法
EP1030237A1 (en) * 1999-02-15 2000-08-23 Hewlett-Packard Company Trusted hardware device in a computer
DE19935286A1 (de) * 1999-07-27 2001-02-01 Deutsche Telekom Ag Verfahren zur sicheren verteilten Generierung eines Chiffrierschlüssels
EP1429224A1 (en) 2002-12-10 2004-06-16 Texas Instruments Incorporated Firmware run-time authentication
US20050010811A1 (en) 2003-06-16 2005-01-13 Zimmer Vincent J. Method and system to support network port authentication from out-of-band firmware
JP2005038411A (ja) * 2003-06-30 2005-02-10 Sony Corp 機器認証情報組込システム、端末機器、機器認証情報処理方法、機器認証情報処理プログラム、提供サーバ、機器認証情報提供方法、機器認証情報提供プログラム、及び記憶媒体
DE10338032B4 (de) * 2003-08-19 2009-12-17 Infineon Technologies Ag Prozessor mit elektronischen Sicherungen zum Speichern von Geheimdaten
US7318150B2 (en) 2004-02-25 2008-01-08 Intel Corporation System and method to support platform firmware as a trusted process
US7490245B2 (en) * 2004-07-24 2009-02-10 Lenovo (Singapore) Pte. Ltd. System and method for data processing system planar authentication
US7603562B2 (en) 2005-02-02 2009-10-13 Insyde Software Corporation System and method for reducing memory requirements of firmware
US8738822B2 (en) * 2005-05-03 2014-05-27 Flexera Software Llc System and method for controlling operation of a component on a computer system
US7908483B2 (en) * 2005-06-30 2011-03-15 Intel Corporation Method and apparatus for binding TPM keys to execution entities
US8429724B2 (en) * 2006-04-25 2013-04-23 Seagate Technology Llc Versatile access control system
JP2008055849A (ja) * 2006-09-01 2008-03-13 Ricoh Co Ltd 画像形成装置及びその管理方法
JP5096022B2 (ja) * 2007-03-15 2012-12-12 株式会社リコー 情報処理装置、ソフトウェア検証方法及びソフトウェア検証プログラム
US7836309B2 (en) 2007-07-20 2010-11-16 Microsoft Corporation Generic extensible pre-operating system cryptographic infrastructure
JP4991592B2 (ja) * 2008-02-18 2012-08-01 株式会社リコー ソフトウェア改ざん検知方法、ソフトウェア改ざん検知プログラム及び機器
JP2009244827A (ja) * 2008-03-13 2009-10-22 Ricoh Co Ltd 画像記録装置、画像表示装置及び画像暗号化システム
US8201239B2 (en) 2008-06-23 2012-06-12 Intel Corporation Extensible pre-boot authentication
US20090327741A1 (en) 2008-06-30 2009-12-31 Zimmer Vincent J System and method to secure boot uefi firmware and uefi-aware operating systems on a mobile internet device (mid)
GB2466071B (en) 2008-12-15 2013-11-13 Hewlett Packard Development Co Associating a signing key with a software component of a computing platform
US8086839B2 (en) 2008-12-30 2011-12-27 Intel Corporation Authentication for resume boot path

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1678968A (zh) * 2002-06-28 2005-10-05 英特尔公司 可信计算机平台
US20060143472A1 (en) * 2002-08-21 2006-06-29 Oliver Feilen Method for protecting against manipulation of a controller for at least one motor vehicle component and controller
US20070127719A1 (en) * 2003-10-14 2007-06-07 Goran Selander Efficient management of cryptographic key generations
US20110307712A1 (en) * 2010-06-11 2011-12-15 Palsamy Sakthikumar Multi-owner deployment of firmware images

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
Hades - Hardware Assisted Document Security;P.Roder等;《Second Workshop on Advances in Trusted Computing(WATC’06 Fall)》;20061130;第4-5页 *

Also Published As

Publication number Publication date
KR102030858B1 (ko) 2019-10-10
JP2014524628A (ja) 2014-09-22
KR20140051350A (ko) 2014-04-30
US20130054946A1 (en) 2013-02-28
EP2748752A4 (en) 2015-04-22
US8924737B2 (en) 2014-12-30
EP2748752B1 (en) 2017-09-27
CN103765429A (zh) 2014-04-30
JP6073320B2 (ja) 2017-02-01
EP2748752A1 (en) 2014-07-02
WO2013028353A1 (en) 2013-02-28

Similar Documents

Publication Publication Date Title
CN103765429B (zh) 数字签名机构相关的平台秘密
EP2681689B1 (en) Protecting operating system configuration values
CN109313690B (zh) 自包含的加密引导策略验证
US8375437B2 (en) Hardware supported virtualized cryptographic service
CN109416720B (zh) 跨重置维护操作系统秘密
US10803175B2 (en) Device attestation through security hardened management agent
EP2583410B1 (en) Single-use authentication methods for accessing encrypted data
US8549313B2 (en) Method and system for integrated securing and managing of virtual machines and virtual appliances
KR101190479B1 (ko) 티켓 인증 보안 설치 및 부트
JP7406013B2 (ja) 構成設定の安全な署名
CN114651253B (zh) 用于策略强制实施的虚拟环境类型验证
US9836601B2 (en) Protecting anti-malware processes
US11909882B2 (en) Systems and methods to cryptographically verify an identity of an information handling system
JP2008537224A (ja) 安全な起動方法およびシステム
US8607071B2 (en) Preventing replay attacks in encrypted file systems
CN111723383A (zh) 数据存储、验证方法及装置
CN110390201A (zh) 计算机系统以及初始化计算机系统的方法
CN116089967B (zh) 数据防回滚方法和电子设备
CN108595981A (zh) 加密安卓系统的方法
CN118520439A (zh) 一种基于硬件指纹的防复制保护方法、设备、系统及介质
CN120342584A (zh) 数据保护
HK40038542B (zh) 安全数据处理

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
ASS Succession or assignment of patent right

Owner name: MICROSOFT TECHNOLOGY LICENSING LLC

Free format text: FORMER OWNER: MICROSOFT CORP.

Effective date: 20150611

C41 Transfer of patent application or patent right or utility model
TA01 Transfer of patent application right

Effective date of registration: 20150611

Address after: Washington State

Applicant after: Micro soft technique license Co., Ltd

Address before: Washington State

Applicant before: Microsoft Corp.

C14 Grant of patent or utility model
GR01 Patent grant