CN107025401A - A kind of method that UEKY safety certification functions are realized in video driver - Google Patents

A kind of method that UEKY safety certification functions are realized in video driver Download PDF

Info

Publication number
CN107025401A
CN107025401A CN201710256435.6A CN201710256435A CN107025401A CN 107025401 A CN107025401 A CN 107025401A CN 201710256435 A CN201710256435 A CN 201710256435A CN 107025401 A CN107025401 A CN 107025401A
Authority
CN
China
Prior art keywords
ukey
safety
video driver
video
phase
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN201710256435.6A
Other languages
Chinese (zh)
Inventor
于晓艳
王万强
于治楼
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Jinan Inspur Hi Tech Investment and Development Co Ltd
Original Assignee
Jinan Inspur Hi Tech Investment and Development Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Jinan Inspur Hi Tech Investment and Development Co Ltd filed Critical Jinan Inspur Hi Tech Investment and Development Co Ltd
Priority to CN201710256435.6A priority Critical patent/CN107025401A/en
Publication of CN107025401A publication Critical patent/CN107025401A/en
Pending legal-status Critical Current

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • G06F21/34User authentication involving the use of external additional devices, e.g. dongles or smart cards
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F9/00Arrangements for program control, e.g. control units
    • G06F9/06Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
    • G06F9/44Arrangements for executing specific programs
    • G06F9/4401Bootstrapping
    • G06F9/4411Configuring for operating with peripheral devices; Loading of device drivers

Landscapes

  • Engineering & Computer Science (AREA)
  • Software Systems (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Physics & Mathematics (AREA)
  • General Engineering & Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • Computer Hardware Design (AREA)
  • Storage Device Security (AREA)
  • Measurement Of The Respiration, Hearing Ability, Form, And Blood Characteristics Of Living Organisms (AREA)

Abstract

The present invention is more particularly directed to a kind of method that UEKY safety certification functions are realized in video driver.This realizes the method for UEKY safety certification functions in video driver, UKEY relevant controls and verification process can be arrived in the video driver by UEFI standard implementations with being developed based on the method for UEFI BIOS frameworks, and video driver and VBIOS contents are integrated in video card ROM, corresponding bootload is configured in systems, video card is conveniently applied on any UEFI BIOS systems, and authentication is realized before system loads, the security of system is enhanced, system bios occupancy size is reduced.

Description

A kind of method that UEKY safety certification functions are realized in video driver
Technical field
The present invention relates to computer operating system and information security certification technical field, more particularly to one kind is in video driver The middle method for realizing UEKY safety certification functions.
Background technology
VBIOS is that the BIOS of computer graphics card or integrated graphics controller is used there is provided one group of video relative program Function access vision hardware, the video card of every kind of model has corresponding VBIOS.General video card manufacturer compiles video card VBIOS Into bin binary files, exist and called in video card ROM for system manufacturer.Video driver is hardware and the interface of operating system, is In order to allow operating system more preferably can more fully play its performance, if video driver, on operating system can only work Most basic display resolution(640*480)And color depth(8).
UKEY information security certifications, are the dual keys of the safety certification USB flash disk passed through, realize the process of authentication.
UEFI full name " unified Extensible Firmware Interface "(Unified Extensible Firmware Interface), it is a kind of standard that style interface is described in detail.This interface is used for the automatic behaviour from pretrigger of operating system Make environment, be loaded into a kind of operating system.
UEFI BIOS systems are supported also to have formulated relevant criterion in driving aspect, to realize compatibility.It is every to be marked according to this The driver of quasi- exploitation, it may not be necessary to change driving, directly configured, be applied on UEFI BIOS by simple UEFI. UEFI start-up courses include SEC(Safety verification)、PEI(EFI early stages are initialized)、DXE(Drive performing environment)、BDS(Startup is set Alternative)、TSL(Operating system loads early stage)、RT(Run Time)Several stages.And PEI code is un-compressed, it is Reduction ROM Space is used, and should also try one's best various regarded as output controlling being put into DXE phase and each stage afterwards.
If so be designed into UKEY associated verification processes in the video driver by UEFI standard implementations, and by video card Driving is stored in video card ROM, corresponding bootload is configured in systems, such video card can be conveniently applied to any On UEFI BIOS systems, and authentication is realized before system loads, increase the security of system.
Based on above-mentioned situation, the present invention proposes a kind of method that UEKY safety certification functions are realized in video driver.
The content of the invention
The present invention simply efficiently realizes UEKY there is provided a kind of in order to make up the defect of prior art in video driver The method of safety certification function.
The present invention is achieved through the following technical solutions:
A kind of method that UEKY safety certification functions are realized in video driver, it is characterised in that comprise the following steps:
(1)Video card is arrived into detection operation drivings of the UKEY based on UEFI BIOS frameworks and the exploitation of authentication correlation function first In driving, and video driver and VBIOS compiling files are integrated into video card ROM, to reduce system bios, set in system bios Put video driver bootstrap;
(2)After video card is installed on computer main board, UKEY safety certification USB flash disks are connected to computer main board, starting up;
(3)UEFI BIOS SEC phase, PEI phase, DXE phase and BDS phase are sequentially passed through on mainboard after electricity;When running to During video driver, the function of UKEY association phases can be started;When UKEY control programs detect UKEY and run corresponding UKEY Safety certification process, carries out safety certification, according to whether judging by UKEY safety certifications by UKEY to the information of main frame Whether continuation, which starts, calculates;
(4)If UKEY safety certifications do not pass through, in order to which computer security does not continue to start, automatic shutdown;If UKEY safety certifications Pass through, then continue start-up course, completion system is safely loaded with.
The step(3)In, the SEC phase on mainboard after electricity by UEFI sets CPU protected mode, and PEI phase is Before EFI after initialization PEI, into DXE phase;Then start that each Device handle and protocol are installed, now Video card bootstrap is run, when BDS phase carries out correlation shadow operations, video card equipment is run to, first starts UKEY safety Certification.
The step(4)In, if UKEY safety certifications pass through, need to restart manually after calculating auto-shut-off, in system The UKEY safety certifications of completion system before loading, it is ensured that the safety of system;If UKEY safety certifications pass through, carry out follow-up be System loading and RT stages.
The beneficial effects of the invention are as follows:This realizes the method for UEKY safety certification functions in video driver, can be by UKEY relevant controls and verification process arrive the video driver for pressing UEFI standard implementations to be developed based on the method for UEFI BIOS frameworks In, and video driver and VBIOS contents are integrated in video card ROM, corresponding bootload is configured in systems so that aobvious Card can be conveniently applied on any UEFI BIOS systems, and realizes authentication before system loads, enhance system Security, reduces system bios occupancy size.
Brief description of the drawings
Accompanying drawing 1 realizes the Method And Principle schematic diagram of UEKY safety certification functions for the present invention in video driver.
Accompanying drawing 2 realizes the method flow schematic diagram of UEKY safety certification functions for the present invention in video driver.
Embodiment
In order that technical problems, technical solutions and advantages to be solved are more clearly understood, tie below Drawings and examples are closed, the present invention will be described in detail.It should be noted that specific embodiment described herein is only used To explain the present invention, it is not intended to limit the present invention.
This realizes the method for UEKY safety certification functions in video driver, comprises the following steps:
(1)Video card is arrived into detection operation drivings of the UKEY based on UEFI BIOS frameworks and the exploitation of authentication correlation function first In driving, and video driver and VBIOS compiling files are integrated into video card ROM, to reduce system bios, set in system bios Put video driver bootstrap;
(2)After video card is installed on computer main board, UKEY safety certification USB flash disks are connected to computer main board, starting up;
(3)UEFI BIOS SEC phase, PEI phase, DXE phase and BDS phase are sequentially passed through on mainboard after electricity;When running to During video driver, the function of UKEY association phases can be started;When UKEY control programs detect UKEY and run corresponding UKEY Safety certification process, carries out safety certification, according to whether judging by UKEY safety certifications by UKEY to the information of main frame Whether continuation, which starts, calculates;
(4)If UKEY safety certifications do not pass through, in order to which computer security does not continue to start, automatic shutdown;If UKEY safety certifications Pass through, then continue start-up course, completion system is safely loaded with.
The step(3)In, the SEC phase on mainboard after electricity by UEFI sets CPU protected mode, and PEI phase is Before EFI after initialization PEI, into DXE phase;Then start that each Device handle and protocol are installed, now Video card bootstrap is run, when BDS phase carries out correlation shadow operations, video card equipment is run to, first starts UKEY safety Certification.
The step(4)In, if UKEY safety certifications pass through, need to restart manually after calculating auto-shut-off, in system The UKEY safety certifications of completion system before loading, it is ensured that the safety of system;If UKEY safety certifications pass through, carry out follow-up be System loading and RT stages.

Claims (3)

1. a kind of method that UEKY safety certification functions are realized in video driver, it is characterised in that comprise the following steps:
(1)Video card is arrived into detection operation drivings of the UKEY based on UEFI BIOS frameworks and the exploitation of authentication correlation function first In driving, and video driver and VBIOS compiling files are integrated into video card ROM, to reduce system bios, set in system bios Put video driver bootstrap;
(2)After video card is installed on computer main board, UKEY safety certification USB flash disks are connected to computer main board, starting up;
(3)UEFI BIOS SEC phase, PEI phase, DXE phase and BDS phase are sequentially passed through on mainboard after electricity;When running to During video driver, the function of UKEY association phases can be started;When UKEY control programs are examined to UKEY and run corresponding UKEY peaces Full verification process, safety certification is carried out by UKEY to the information of main frame, according to whether judged by UKEY safety certifications be It is no to continue to start calculating;
(4)If UKEY safety certifications do not pass through, in order to which computer security does not continue to start, automatic shutdown;If UKEY safety certifications Pass through, then continue start-up course, completion system is safely loaded with.
2. the method according to claim 1 that UEKY safety certification functions are realized in video driver, it is characterised in that:Institute State step(3)In, the SEC phase on mainboard after electricity by UEFI sets CPU protected mode, and PEI phase is initialization before EFI After PEI, into DXE phase;Then start that each Device handle and protocol are installed, now run video card and drawn Helical pitch sequence, when BDS phase carries out correlation shadow operations, runs to video card equipment, first starts UKEY safety certifications.
3. the method according to claim 1 that UEKY safety certification functions are realized in video driver, it is characterised in that:Institute State step(4)In, if UKEY safety certifications pass through, need to restart manually after calculating auto-shut-off, completed before system loads The UKEY safety certifications of system, it is ensured that the safety of system;If UKEY safety certifications pass through, follow-up system loads and RT are carried out Stage.
CN201710256435.6A 2017-04-19 2017-04-19 A kind of method that UEKY safety certification functions are realized in video driver Pending CN107025401A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201710256435.6A CN107025401A (en) 2017-04-19 2017-04-19 A kind of method that UEKY safety certification functions are realized in video driver

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201710256435.6A CN107025401A (en) 2017-04-19 2017-04-19 A kind of method that UEKY safety certification functions are realized in video driver

Publications (1)

Publication Number Publication Date
CN107025401A true CN107025401A (en) 2017-08-08

Family

ID=59527050

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201710256435.6A Pending CN107025401A (en) 2017-04-19 2017-04-19 A kind of method that UEKY safety certification functions are realized in video driver

Country Status (1)

Country Link
CN (1) CN107025401A (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN108776595A (en) * 2018-06-11 2018-11-09 郑州云海信息技术有限公司 A kind of recognition methods, device, equipment and the medium of the video card of GPU servers

Citations (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1609748A (en) * 2004-10-14 2005-04-27 苏州超锐微电子有限公司 Method for realizing starting up lock function in network card bootstrap zone

Patent Citations (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1609748A (en) * 2004-10-14 2005-04-27 苏州超锐微电子有限公司 Method for realizing starting up lock function in network card bootstrap zone

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
王晓箴 等: "EFI BIOS安全隐患分析及基于Ukey的可信防护策略", 《全国计算机、网络在现代科学技术领域的应用学术会议2009》 *

Cited By (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN108776595A (en) * 2018-06-11 2018-11-09 郑州云海信息技术有限公司 A kind of recognition methods, device, equipment and the medium of the video card of GPU servers
WO2019237710A1 (en) * 2018-06-11 2019-12-19 郑州云海信息技术有限公司 Method, device and equipment for recognizing video cards of gpu servers, and medium
CN108776595B (en) * 2018-06-11 2021-06-29 郑州云海信息技术有限公司 Method, device, equipment and medium for identifying display card of GPU (graphics processing Unit) server
US11422827B2 (en) 2018-06-11 2022-08-23 Zhengzhou Yunhai Information Technology Co., Ltd. Method, device, apparatus for identifying graphics card of GPU server and medium

Similar Documents

Publication Publication Date Title
CN103034510B (en) Can the UEFI BIOS fast and safely starting method of dynamic conditioning on demand
US7752428B2 (en) System and method for trusted early boot flow
US8468342B2 (en) Computer system and method for performing integrity detection on the same
US9003175B2 (en) System and method for accelerated boot performance
US7660979B2 (en) Multi-mode computer systems and operating methods thereof
US20120191960A1 (en) Booting computing devices
CN107291510B (en) Rapid starting method for Linux vehicle-mounted information system
TW201506788A (en) Secure boot override in a computing device equipped with unified-extensible firmware interface (UEFI)-compliant firmware
CN109408122B (en) Equipment starting method, electronic equipment and computer storage medium
CN105825131B (en) A kind of computer safety start means of defence based on UEFI
CN102184111B (en) The equipment of operating system online upgrading method and tape operation system
CN107329792B (en) Docker container starting method and device
CN106210877A (en) The method for upgrading system of intelligent television and device
CN110688235B (en) System and method for sharing wireless connection information between UEFI firmware and OS
CN103729219B (en) A kind of UEFI BIOS framework methods and system
CN107194264A (en) A kind of network interface card with safety certification function based on UEFI
CN107025401A (en) A kind of method that UEKY safety certification functions are realized in video driver
CN105094911B (en) A key upgrade method and a key upgrading tool for wireless communication module
CN106325868A (en) Method for binding starting equipment with shortcut keys in UEFI (unified extensible firmware interface)
CN105893076A (en) Over the air upgrade method and device
CN100399281C (en) Hardware driving and software updating method based on multiplexed embedded system with expandable form
CN107423068A (en) The method that a variety of file system are realized in UEFI BIOS
CN104915598A (en) Monitoring method and monitoring system for C/S client side
WO2009034316A2 (en) Boot loading
CN112395015A (en) Optimization method and device for accelerating startup based on Android system

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
RJ01 Rejection of invention patent application after publication

Application publication date: 20170808

RJ01 Rejection of invention patent application after publication