CN108604276B - 可通过网络更新的安全启动代码缓存 - Google Patents

可通过网络更新的安全启动代码缓存 Download PDF

Info

Publication number
CN108604276B
CN108604276B CN201680080848.7A CN201680080848A CN108604276B CN 108604276 B CN108604276 B CN 108604276B CN 201680080848 A CN201680080848 A CN 201680080848A CN 108604276 B CN108604276 B CN 108604276B
Authority
CN
China
Prior art keywords
interface
logic block
controller
computer system
boot
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN201680080848.7A
Other languages
English (en)
Chinese (zh)
Other versions
CN108604276A (zh
Inventor
H·哈里森
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Garrison Technology Ltd
Original Assignee
Garrison Technology Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Garrison Technology Ltd filed Critical Garrison Technology Ltd
Publication of CN108604276A publication Critical patent/CN108604276A/zh
Application granted granted Critical
Publication of CN108604276B publication Critical patent/CN108604276B/zh
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/50Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
    • G06F21/57Certifying or maintaining trusted computer platforms, e.g. secure boots or power-downs, version controls, system software checks, secure updates or assessing vulnerabilities
    • G06F21/575Secure boot
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F8/00Arrangements for software engineering
    • G06F8/60Software deployment
    • G06F8/65Updates
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F9/00Arrangements for program control, e.g. control units
    • G06F9/06Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
    • G06F9/44Arrangements for executing specific programs
    • G06F9/4401Bootstrapping
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F9/00Arrangements for program control, e.g. control units
    • G06F9/06Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
    • G06F9/44Arrangements for executing specific programs
    • G06F9/4401Bootstrapping
    • G06F9/4416Network booting; Remote initial program loading [RIPL]

Landscapes

  • Engineering & Computer Science (AREA)
  • Software Systems (AREA)
  • Theoretical Computer Science (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Computer Hardware Design (AREA)
  • Stored Programmes (AREA)
CN201680080848.7A 2015-12-03 2016-12-02 可通过网络更新的安全启动代码缓存 Active CN108604276B (zh)

Applications Claiming Priority (3)

Application Number Priority Date Filing Date Title
GB1521394.5 2015-12-03
GB1521394.5A GB2545010B (en) 2015-12-03 2015-12-03 Secure boot device
PCT/EP2016/079667 WO2017093533A1 (en) 2015-12-03 2016-12-02 Secure boot code cache which may be updated through the network

Publications (2)

Publication Number Publication Date
CN108604276A CN108604276A (zh) 2018-09-28
CN108604276B true CN108604276B (zh) 2022-04-29

Family

ID=55234390

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201680080848.7A Active CN108604276B (zh) 2015-12-03 2016-12-02 可通过网络更新的安全启动代码缓存

Country Status (7)

Country Link
US (1) US10242198B2 (enExample)
EP (1) EP3241144B1 (enExample)
JP (1) JP6968811B2 (enExample)
CN (1) CN108604276B (enExample)
BR (1) BR112018011231A2 (enExample)
GB (1) GB2545010B (enExample)
WO (1) WO2017093533A1 (enExample)

Families Citing this family (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US10831897B2 (en) * 2017-07-14 2020-11-10 Dell Products, L.P. Selective enforcement of secure boot database entries in an information handling system
US10430225B1 (en) * 2017-09-29 2019-10-01 Amazon Technologies, Inc. Traffic management on an interconnect
GB2570143B (en) * 2018-01-12 2020-04-08 Garrison Tech Ltd Secure sharing of storage resources
US10916274B2 (en) 2019-04-19 2021-02-09 Samsung Electronics Co., Ltd. Power management integrated circuits and semiconductor memory modules including power management integrated circuits
US11657156B2 (en) * 2020-02-15 2023-05-23 Lenovo (Singapore) Pte. Ltd. Malware scan in response to power change
GB2592379B (en) 2020-02-25 2022-06-22 Garrison Tech Ltd Connection of computers over networks
CN111858428B (zh) * 2020-06-24 2022-03-22 山东云海国创云计算装备产业创新中心有限公司 一种服务器及其bios的通信管理电路

Citations (10)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1506813A (zh) * 2002-10-21 2004-06-23 从海量存储设备中可靠和安全地更新和恢复固件
US7007077B1 (en) * 2000-09-06 2006-02-28 Hitachi, Ltd. Remote maintenance method of an information processing apparatus
CN101361077A (zh) * 2006-02-07 2009-02-04 国际商业机器公司 用于预防连接了因特网的计算机上的恶意软件安装的方法
US7664984B2 (en) * 2002-10-09 2010-02-16 Xpoint Technologies, Inc. Method and system for updating a software image
CN102081534A (zh) * 2009-11-30 2011-06-01 英特尔公司 自动模块化且安全的引导固件更新
CN102693379A (zh) * 2011-03-01 2012-09-26 微软公司 保护操作系统配置值
CN102971742A (zh) * 2010-02-12 2013-03-13 辉达技术英国有限公司 处理器安全
CN103870745A (zh) * 2014-04-01 2014-06-18 联想(北京)有限公司 电子设备和安全启动电子设备的方法
CN103914658A (zh) * 2013-01-05 2014-07-09 展讯通信(上海)有限公司 终端设备的安全启动方法及终端设备
US8812830B2 (en) * 2011-08-31 2014-08-19 Microsoft Corporation Attestation protocol for securely booting a guest operating system

Family Cites Families (22)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6539480B1 (en) 1998-12-31 2003-03-25 Intel Corporation Secure transfer of trust in a computing system
US6546489B1 (en) 1999-03-04 2003-04-08 Western Digital Ventures, Inc. Disk drive which provides a secure boot of a host computer system from a protected area of a disk
US7293165B1 (en) 2003-04-03 2007-11-06 Advanced Micro Devices, Inc. BMC-hosted boot ROM interface
US8839417B1 (en) 2003-11-17 2014-09-16 Mcafee, Inc. Device, system and method for defending a computer network
US20050172280A1 (en) * 2004-01-29 2005-08-04 Ziegler Jeremy R. System and method for preintegration of updates to an operating system
WO2007003836A2 (fr) 2005-06-30 2007-01-11 France Telecom Procede et dispositif de codage video
US20070226478A1 (en) * 2006-03-23 2007-09-27 John Rudelic Secure boot from secure non-volatile memory
US8024788B2 (en) 2007-05-31 2011-09-20 The Boeing Company Method and apparatus for reliable, high speed data transfers in a high assurance multiple level secure environment
US8265171B2 (en) 2008-02-26 2012-09-11 Richwave Technology Corp. Error resilient video transmission using instantaneous receiver feedback and channel quality adaptive packet retransmission
US8104083B1 (en) 2008-03-31 2012-01-24 Symantec Corporation Virtual machine file system content protection system and method
US8406296B2 (en) 2008-04-07 2013-03-26 Qualcomm Incorporated Video refresh adaptation algorithms responsive to error feedback
US8806607B2 (en) 2008-08-12 2014-08-12 Verizon Patent And Licensing Inc. Unauthorized data transfer detection and prevention
CN101360243A (zh) 2008-09-24 2009-02-04 腾讯科技(深圳)有限公司 基于反馈参考帧的视频通信系统及方法
US20110035808A1 (en) 2009-08-05 2011-02-10 The Penn State Research Foundation Rootkit-resistant storage disks
US8413253B2 (en) * 2009-12-30 2013-04-02 Intel Corporation Protecting persistent secondary platform storage against attack from malicious or unauthorized programs
GB2495468B (en) 2011-09-02 2017-12-13 Skype Video coding
WO2013126284A2 (en) 2012-02-24 2013-08-29 Vid Scale, Inc. Video coding using packet loss detection
US8745713B1 (en) 2012-08-31 2014-06-03 Cloud Cover Safety, Inc. Method and service for securing a system networked to a cloud computing environment from malicious code attacks
US9047471B2 (en) 2012-09-25 2015-06-02 Apple Inc. Security enclave processor boot control
US9235724B2 (en) 2014-03-17 2016-01-12 Saudi Arabian Oil Company Systems, methods, and computer medium to securely transfer backup data between physically isolated networks having different levels of network protection
CN103955648B (zh) 2014-05-15 2017-02-01 乐视致新电子科技(天津)有限公司 校验系统镜像合法性的方法及装置
CN104363231B (zh) 2014-11-17 2017-09-19 北京锐驰信安技术有限公司 一种基于单向通道的网络安全隔离与信息交换方法及系统

Patent Citations (10)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7007077B1 (en) * 2000-09-06 2006-02-28 Hitachi, Ltd. Remote maintenance method of an information processing apparatus
US7664984B2 (en) * 2002-10-09 2010-02-16 Xpoint Technologies, Inc. Method and system for updating a software image
CN1506813A (zh) * 2002-10-21 2004-06-23 从海量存储设备中可靠和安全地更新和恢复固件
CN101361077A (zh) * 2006-02-07 2009-02-04 国际商业机器公司 用于预防连接了因特网的计算机上的恶意软件安装的方法
CN102081534A (zh) * 2009-11-30 2011-06-01 英特尔公司 自动模块化且安全的引导固件更新
CN102971742A (zh) * 2010-02-12 2013-03-13 辉达技术英国有限公司 处理器安全
CN102693379A (zh) * 2011-03-01 2012-09-26 微软公司 保护操作系统配置值
US8812830B2 (en) * 2011-08-31 2014-08-19 Microsoft Corporation Attestation protocol for securely booting a guest operating system
CN103914658A (zh) * 2013-01-05 2014-07-09 展讯通信(上海)有限公司 终端设备的安全启动方法及终端设备
CN103870745A (zh) * 2014-04-01 2014-06-18 联想(北京)有限公司 电子设备和安全启动电子设备的方法

Also Published As

Publication number Publication date
JP2018536958A (ja) 2018-12-13
EP3241144B1 (en) 2022-07-06
US20180314828A1 (en) 2018-11-01
GB2545010A (en) 2017-06-07
EP3241144A1 (en) 2017-11-08
CN108604276A (zh) 2018-09-28
BR112018011231A2 (pt) 2018-11-21
GB201521394D0 (en) 2016-01-20
GB2545010B (en) 2018-01-03
WO2017093533A1 (en) 2017-06-08
JP6968811B2 (ja) 2021-11-17
US10242198B2 (en) 2019-03-26

Similar Documents

Publication Publication Date Title
CN108604276B (zh) 可通过网络更新的安全启动代码缓存
TWI570592B (zh) 更新電腦韌體的系統、方法與電腦可讀取儲存媒體
EP3522059B1 (en) Perform security action based on inventory comparison
CN103718165B (zh) Bios闪存攻击保护和通知
US10395039B2 (en) Customer-owned trust of device firmware
US10592670B2 (en) Technologies for provisioning and managing secure launch enclave with platform firmware
US11030347B2 (en) Protect computing device using hash based on power event
Heasman Implementing and detecting a pci rootkit
CN109791515B (zh) 用于安全恢复主机系统代码的系统和方法
US12069184B2 (en) Embedded MMC device with secure boot updates by loading golden boot image from write-protected partition and validating self-recovery using public key
WO2018222666A1 (en) Method and apparatus for secure system boot
US11615190B2 (en) Secure boot policy for platform security using neutral processors in an information handling system
US11989305B2 (en) Automated update of a customized secure boot policy
US12321459B2 (en) Automated update of a customized secure boot policy
CN114787808A (zh) 安全的嵌入式微控制器映像加载
CN118627076B (en) BIOS firmware security verification method and server
CN119861985B (zh) 服务器的启动方法、设备、存储介质及程序产品
US12204887B2 (en) Seamless and secure motherboard replacement system and method
US20250356020A1 (en) Technologies to track firmware sources
CN118627076A (zh) 一种bios固件的安全校验方法及服务器

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant