CN107423626B - 一种基于连续Hash值的BIOS更新信任链的方法 - Google Patents
一种基于连续Hash值的BIOS更新信任链的方法 Download PDFInfo
- Publication number
- CN107423626B CN107423626B CN201710588675.6A CN201710588675A CN107423626B CN 107423626 B CN107423626 B CN 107423626B CN 201710588675 A CN201710588675 A CN 201710588675A CN 107423626 B CN107423626 B CN 107423626B
- Authority
- CN
- China
- Prior art keywords
- bios
- hash value
- file
- new
- trust chain
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/50—Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
- G06F21/57—Certifying or maintaining trusted computer platforms, e.g. secure boots or power-downs, version controls, system software checks, secure updates or assessing vulnerabilities
- G06F21/572—Secure firmware programming, e.g. of basic input output system [BIOS]
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/64—Protecting data integrity, e.g. using checksums, certificates or signatures
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Theoretical Computer Science (AREA)
- Computer Hardware Design (AREA)
- Software Systems (AREA)
- General Engineering & Computer Science (AREA)
- Physics & Mathematics (AREA)
- General Physics & Mathematics (AREA)
- Health & Medical Sciences (AREA)
- Bioethics (AREA)
- General Health & Medical Sciences (AREA)
- Storage Device Security (AREA)
Abstract
Description
Claims (3)
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201710588675.6A CN107423626B (zh) | 2017-07-19 | 2017-07-19 | 一种基于连续Hash值的BIOS更新信任链的方法 |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201710588675.6A CN107423626B (zh) | 2017-07-19 | 2017-07-19 | 一种基于连续Hash值的BIOS更新信任链的方法 |
Publications (2)
Publication Number | Publication Date |
---|---|
CN107423626A CN107423626A (zh) | 2017-12-01 |
CN107423626B true CN107423626B (zh) | 2020-07-21 |
Family
ID=60430181
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201710588675.6A Active CN107423626B (zh) | 2017-07-19 | 2017-07-19 | 一种基于连续Hash值的BIOS更新信任链的方法 |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN107423626B (zh) |
Families Citing this family (7)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN108256355A (zh) * | 2018-02-28 | 2018-07-06 | 郑州云海信息技术有限公司 | 一种带外刷新bios时验证bios完整性的方法及装置 |
CN108830086A (zh) * | 2018-06-19 | 2018-11-16 | 郑州云海信息技术有限公司 | 一种bios文件升级方法及相关装置 |
CN109446815B (zh) * | 2018-09-30 | 2020-12-25 | 华为技术有限公司 | 基本输入输出系统固件的管理方法、装置和服务器 |
CN110673861B (zh) * | 2019-08-12 | 2022-03-18 | 深圳市国科亿道科技有限公司 | 基于bios软件的保护方法 |
US11157268B2 (en) | 2020-01-23 | 2021-10-26 | International Business Machines Corporation | Linking copied code |
CN111273952B (zh) * | 2020-02-15 | 2023-08-11 | 超越科技股份有限公司 | 一种可信恢复更新的方法及装置 |
CN112506741B (zh) * | 2020-12-11 | 2023-03-10 | 浪潮电子信息产业股份有限公司 | 一种服务器开机过程中bios与bmc的通信方法、装置及设备 |
Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101122862A (zh) * | 2006-08-11 | 2008-02-13 | 环达电脑(上海)有限公司 | 后启动补丁式安全升级bios的方法 |
CN105323074A (zh) * | 2015-11-17 | 2016-02-10 | 西安电子科技大学 | 终端设备地理位置的可信验证方法 |
CN105429808A (zh) * | 2015-12-31 | 2016-03-23 | 公安部第三研究所 | 基于可信计算的动态管理业务系统及方法 |
Family Cites Families (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN102332070A (zh) * | 2011-09-30 | 2012-01-25 | 中国人民解放军海军计算技术研究所 | 一种可信计算平台的信任链传递方法 |
US9558358B2 (en) * | 2013-06-27 | 2017-01-31 | Visa International Service Association | Random number generator in a virtualized environment |
US10025576B2 (en) * | 2015-07-10 | 2018-07-17 | Dell Products, Lp | Method for deploying BIOS integrity measurement via BIOS update package and system therefor |
CN106648591A (zh) * | 2016-09-29 | 2017-05-10 | 济南浪潮高新科技投资发展有限公司 | 一种基于硬件加密的uefi bios系统安全升级方法 |
-
2017
- 2017-07-19 CN CN201710588675.6A patent/CN107423626B/zh active Active
Patent Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101122862A (zh) * | 2006-08-11 | 2008-02-13 | 环达电脑(上海)有限公司 | 后启动补丁式安全升级bios的方法 |
CN105323074A (zh) * | 2015-11-17 | 2016-02-10 | 西安电子科技大学 | 终端设备地理位置的可信验证方法 |
CN105429808A (zh) * | 2015-12-31 | 2016-03-23 | 公安部第三研究所 | 基于可信计算的动态管理业务系统及方法 |
Non-Patent Citations (2)
Title |
---|
A New Approach to Protect the OS from Off-line Attacks Using the Smart Card;Hossein Rezaei Ghaleh等;《2009 Third International Conference on Emerging Security Information, Systems and Technologies》;20090821;全文 * |
太行安全BIOS可信体系结构与实现研究;周振柳等;《计算机工程与应用》;20080813;第44卷(第18期);全文 * |
Also Published As
Publication number | Publication date |
---|---|
CN107423626A (zh) | 2017-12-01 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN107423626B (zh) | 一种基于连续Hash值的BIOS更新信任链的方法 | |
EP2634960B1 (en) | Method and apparatus for incremental code signing | |
US11204999B1 (en) | Method and apparatus of performing data executable integrity verification | |
JP5703391B2 (ja) | 耐タンパー性ブート処理のためのシステム及び方法 | |
EP2659373B1 (en) | System and method for secure software update | |
CN112514321B (zh) | 共享秘密建立 | |
JP6371919B2 (ja) | セキュアなソフトウェアの認証と検証 | |
US8732445B2 (en) | Information processing device, information processing method, information processing program, and integrated circuit | |
US9058504B1 (en) | Anti-malware digital-signature verification | |
JP2008537224A (ja) | 安全な起動方法およびシステム | |
US20150095652A1 (en) | Encryption and decryption processing method, apparatus, and device | |
EP3343424B1 (en) | Control board secure start method, and software package upgrade method and device | |
CN110378104A (zh) | 一种升级防纂改的方法 | |
KR101968382B1 (ko) | Tpm 기반의 사용자 장치 및 이를 이용한 부팅 방법 | |
US20160212104A1 (en) | Preventing Misuse of Code Signing Certificates | |
CN109067709B (zh) | 一种漏洞管理方法、装置、电子设备及存储介质 | |
CN104899524A (zh) | 中央处理器和验证主机板数据的方法 | |
US8499357B1 (en) | Signing a library file to verify a callback function | |
KR102053493B1 (ko) | 화이트 리스트의 안전 패치 시스템 및 방법 | |
CN112270010A (zh) | 可执行文件远程安全加载的方法 | |
US20170193205A1 (en) | Incrementally polymorphing code for enhanced resistance to reverse engineering | |
TWI782678B (zh) | 應用於數位簽署元件的認證系統及方法 | |
CN118259947A (zh) | Ota升级包保护方法、装置、设备及可读存储介质 | |
CN116011043A (zh) | 基于ssd的固件安全启动方法、装置、设备及存储介质 |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
CB02 | Change of applicant information |
Address after: 210061 11/F, Block A, Chuangzhi Building, 17 Xinghuo Road, Nanjing High-tech Zone, Jiangsu Province Applicant after: NANJING BYOSOFT CO., LTD. Applicant after: JIANGSU ZHUOYI INFORMATION TECHNOLOGY CO., LTD. Applicant after: Kunshan one hundred Ao Electronic Technology Co., Ltd. Address before: 210061 10th Floor, Block B, 9 Software Building, Xinghuo Road, Nanjing High-tech Zone, Jiangsu Province Applicant before: NANJING BYOSOFT CO., LTD. Applicant before: JIANGSU ZHUOYI INFORMATION TECHNOLOGY CO., LTD. Applicant before: Kunshan one hundred Ao Electronic Technology Co., Ltd. |
|
CB02 | Change of applicant information | ||
GR01 | Patent grant | ||
GR01 | Patent grant |