JP4945454B2 - モニタを用いてtpmを常に“オン”にロックする方法及びシステム - Google Patents
モニタを用いてtpmを常に“オン”にロックする方法及びシステム Download PDFInfo
- Publication number
- JP4945454B2 JP4945454B2 JP2007548385A JP2007548385A JP4945454B2 JP 4945454 B2 JP4945454 B2 JP 4945454B2 JP 2007548385 A JP2007548385 A JP 2007548385A JP 2007548385 A JP2007548385 A JP 2007548385A JP 4945454 B2 JP4945454 B2 JP 4945454B2
- Authority
- JP
- Japan
- Prior art keywords
- monitor
- computer
- watchdog circuit
- tpm
- trusted environment
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Expired - Fee Related
Links
- 238000000034 method Methods 0.000 title claims description 19
- 238000005259 measurement Methods 0.000 claims description 26
- 238000004891 communication Methods 0.000 claims description 20
- 230000002093 peripheral effect Effects 0.000 claims description 11
- 230000002452 interceptive effect Effects 0.000 claims description 5
- 238000012544 monitoring process Methods 0.000 claims 1
- 230000015654 memory Effects 0.000 description 22
- 238000003860 storage Methods 0.000 description 11
- 238000010586 diagram Methods 0.000 description 9
- 238000012360 testing method Methods 0.000 description 8
- 230000006870 function Effects 0.000 description 6
- 230000008569 process Effects 0.000 description 6
- 230000009471 action Effects 0.000 description 5
- 238000004519 manufacturing process Methods 0.000 description 5
- 230000007246 mechanism Effects 0.000 description 5
- 230000003287 optical effect Effects 0.000 description 5
- 238000012545 processing Methods 0.000 description 5
- 238000005516 engineering process Methods 0.000 description 4
- 230000006855 networking Effects 0.000 description 3
- 230000006399 behavior Effects 0.000 description 2
- 230000005540 biological transmission Effects 0.000 description 2
- 230000000694 effects Effects 0.000 description 2
- 239000002346 layers by function Substances 0.000 description 2
- 230000005055 memory storage Effects 0.000 description 2
- 239000007787 solid Substances 0.000 description 2
- CDFKCKUONRRKJD-UHFFFAOYSA-N 1-(3-chlorophenoxy)-3-[2-[[3-(3-chlorophenoxy)-2-hydroxypropyl]amino]ethylamino]propan-2-ol;methanesulfonic acid Chemical compound CS(O)(=O)=O.CS(O)(=O)=O.C=1C=CC(Cl)=CC=1OCC(O)CNCCNCC(O)COC1=CC=CC(Cl)=C1 CDFKCKUONRRKJD-UHFFFAOYSA-N 0.000 description 1
- 230000002411 adverse Effects 0.000 description 1
- 238000013475 authorization Methods 0.000 description 1
- 230000008859 change Effects 0.000 description 1
- 230000001010 compromised effect Effects 0.000 description 1
- 238000012790 confirmation Methods 0.000 description 1
- 230000008878 coupling Effects 0.000 description 1
- 238000010168 coupling process Methods 0.000 description 1
- 238000005859 coupling reaction Methods 0.000 description 1
- 238000013500 data storage Methods 0.000 description 1
- 238000013461 design Methods 0.000 description 1
- 238000009826 distribution Methods 0.000 description 1
- 238000000802 evaporation-induced self-assembly Methods 0.000 description 1
- 230000000977 initiatory effect Effects 0.000 description 1
- 230000010354 integration Effects 0.000 description 1
- 239000010410 layer Substances 0.000 description 1
- 230000000670 limiting effect Effects 0.000 description 1
- 238000007726 management method Methods 0.000 description 1
- 238000004377 microelectronic Methods 0.000 description 1
- 238000004382 potting Methods 0.000 description 1
- 230000000750 progressive effect Effects 0.000 description 1
- 230000000644 propagated effect Effects 0.000 description 1
- 230000002829 reductive effect Effects 0.000 description 1
- 230000004044 response Effects 0.000 description 1
- 230000011664 signaling Effects 0.000 description 1
- 239000013589 supplement Substances 0.000 description 1
- 230000007723 transport mechanism Effects 0.000 description 1
- 238000012795 verification Methods 0.000 description 1
- 239000003039 volatile agent Substances 0.000 description 1
- 230000002747 voluntary effect Effects 0.000 description 1
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/50—Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
- G06F21/57—Certifying or maintaining trusted computer platforms, e.g. secure boots or power-downs, version controls, system software checks, secure updates or assessing vulnerabilities
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F11/00—Error detection; Error correction; Monitoring
- G06F11/30—Monitoring
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/3234—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving additional secure or trusted devices, e.g. TPM, smartcard, USB or software token
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/3247—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving digital signatures
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L2209/00—Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
- H04L2209/56—Financial cryptography, e.g. electronic payment or e-cash
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L2209/00—Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
- H04L2209/80—Wireless
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Theoretical Computer Science (AREA)
- General Engineering & Computer Science (AREA)
- Computer Hardware Design (AREA)
- Software Systems (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- General Physics & Mathematics (AREA)
- Physics & Mathematics (AREA)
- Quality & Reliability (AREA)
- Storage Device Security (AREA)
- Debugging And Monitoring (AREA)
Description
Claims (7)
- モニタのオペレーションを行使し、信頼されたコンピューティングベースを実装するコンピュータであって、
前記モニタを実行するプロセッサと、
前記プロセッサに接続され、汎用入出力ポートを備えた信頼された環境であって、所与のモニタ計測値を格納し、当該コンピュータに対する妨害を防ぐためのメッセージを前記モニタから受信すると、前記計測値に基づいて前記モニタを検証して前記汎用入出力ポートへのアクセスが許可されるか判断する、信頼された環境と、
期間を判断するためのタイマを有し、前記信頼された環境に接続されたウォッチドッグ回路であって、前記期間内に、前記信頼された環境または前記モニタから前記タイマをリスタートするためのリスタート信号を受信しない限り、前記期間後に前記コンピュータを妨害するウォッチドッグ回路と
を備え、前記信頼された環境は、前記モニタが前記汎用入出力ポートへのアクセスを許可されると判断したとき、前記リスタート信号を前記汎用入出力ポートから前記ウォッチドッグ回路に送信するか、前記メッセージに署名をして前記モニタに送信するように構成され、前記署名されたメッセージは、前記リスタート信号として前記モニタから前記ウォッチドッグ回路に送信されることを特徴とするコンピュータ。 - 前記信頼された環境は、前記モニタが前記汎用入出力ポートへのアクセスを許可されると判断したとき、前記モニタに前記汎用入出力ポートへのアクセス権を与えることを特徴とする、請求項1に記載のコンピュータ。
- 前記信頼された環境は、前記ウォッチドッグ回路に専用通信線を介して接続されていることを特徴とする、請求項1に記載のコンピュータ。
- 前記ウォッチドッグ回路は、前記コンピュータを妨害するとき、前記コンピュータをリブートさせることを特徴とする、請求項1に記載のコンピュータ。
- 前記ウォッチドッグ回路は、前記コンピュータをリブートさせるための信号を、改ざんから保護された接続を介して送信することを特徴とする、請求項4に記載のコンピュータ。
- 前記モニタは、前記メッセージを送信したあと、少なくとも一回、前記コンピュータが所定のポリシーを満たしているかどうかを判断し、前記所定のポリシーは、前記コンピュータが指定のアプリケーションプログラムを有していること、指定の周辺機器に接続されるべきこと、または指定の周辺機器に接続されていないことのうちの少なくとも1つを規定することを特徴とする、請求項1に記載のコンピュータ。
- コンピュータのオペレーションを制御するための方法であって、前記コンピュータは、プロセッサと、信頼された環境と、ウォッチドッグ回路とを備え、前記信頼された環境は、汎用入出力ポートを備え、および所与のモニタ計測値を格納し、前記ウォッチドッグ回路は、期間を判断するためのタイマを備え、前記方法は、
前記プロセッサがモニタを実行するステップと、
前記コンピュータのオペレーションを妨害するのを防ぐためのメッセージを前記モニタから前記信頼された環境に送るステップと、
前記信頼された環境において、前記メッセージを受信すると、前記計測値に基づいて前記モニタを検証して前記汎用入出力ポートへのアクセスが許可されるか判断するステップと、
前記信頼された環境において前記モニタは前記汎用入出力ポートへのアクセスが許可されると判断したとき、前記タイマをリスタートさせるためのリスタート信号を前記汎用入出力ポートから前記ウォッチドッグ回路に送信するか、前記メッセージに署名をして前記モニタに送信するステップと、
前記モニタが前記信頼された環境から前記署名されたメッセージを受信したとき、該受信した署名されたメッセージを前記リスタート信号として前記ウォッチドッグ回路に送信するステップと、
前記ウォッチドッグ回路が前記期間内に前記信頼された環境または前記モニタから前記リスタート信号を受信したとき、前記タイマをリスタートさせることで前記コンピュータのオペレーションを妨害するのを防ぐステップと
を含むことを特徴とする方法。
Applications Claiming Priority (3)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
US11/021,021 US7360253B2 (en) | 2004-12-23 | 2004-12-23 | System and method to lock TPM always ‘on’ using a monitor |
US11/021,021 | 2004-12-23 | ||
PCT/US2005/046091 WO2006071630A2 (en) | 2004-12-23 | 2005-12-20 | System and method to lock tpm always 'on' using a monitor |
Publications (3)
Publication Number | Publication Date |
---|---|
JP2008525892A JP2008525892A (ja) | 2008-07-17 |
JP2008525892A5 JP2008525892A5 (ja) | 2009-02-12 |
JP4945454B2 true JP4945454B2 (ja) | 2012-06-06 |
Family
ID=36613166
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
JP2007548385A Expired - Fee Related JP4945454B2 (ja) | 2004-12-23 | 2005-12-20 | モニタを用いてtpmを常に“オン”にロックする方法及びシステム |
Country Status (9)
Country | Link |
---|---|
US (1) | US7360253B2 (ja) |
EP (1) | EP1829274A4 (ja) |
JP (1) | JP4945454B2 (ja) |
KR (1) | KR101213807B1 (ja) |
CN (1) | CN101116070B (ja) |
BR (1) | BRPI0519080A2 (ja) |
MX (1) | MX2007006143A (ja) |
RU (1) | RU2007123617A (ja) |
WO (1) | WO2006071630A2 (ja) |
Families Citing this family (52)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US7370212B2 (en) | 2003-02-25 | 2008-05-06 | Microsoft Corporation | Issuing a publisher use license off-line in a digital rights management (DRM) system |
US20060242406A1 (en) | 2005-04-22 | 2006-10-26 | Microsoft Corporation | Protected computing environment |
US8347078B2 (en) | 2004-10-18 | 2013-01-01 | Microsoft Corporation | Device certificate individualization |
US8176564B2 (en) | 2004-11-15 | 2012-05-08 | Microsoft Corporation | Special PC mode entered upon detection of undesired state |
US8464348B2 (en) | 2004-11-15 | 2013-06-11 | Microsoft Corporation | Isolated computing environment anchored into CPU and motherboard |
US8336085B2 (en) | 2004-11-15 | 2012-12-18 | Microsoft Corporation | Tuning product policy using observed evidence of customer behavior |
US8438645B2 (en) | 2005-04-27 | 2013-05-07 | Microsoft Corporation | Secure clock with grace periods |
US8725646B2 (en) | 2005-04-15 | 2014-05-13 | Microsoft Corporation | Output protection levels |
US9436804B2 (en) | 2005-04-22 | 2016-09-06 | Microsoft Technology Licensing, Llc | Establishing a unique session key using a hardware functionality scan |
US9363481B2 (en) | 2005-04-22 | 2016-06-07 | Microsoft Technology Licensing, Llc | Protected media pipeline |
US20060265758A1 (en) | 2005-05-20 | 2006-11-23 | Microsoft Corporation | Extensible media rights |
US8353046B2 (en) | 2005-06-08 | 2013-01-08 | Microsoft Corporation | System and method for delivery of a modular operating system |
US7908483B2 (en) * | 2005-06-30 | 2011-03-15 | Intel Corporation | Method and apparatus for binding TPM keys to execution entities |
US20070168574A1 (en) * | 2005-09-28 | 2007-07-19 | Dell Products L.P. | System and method for securing access to general purpose input/output ports in a computer system |
JP2007242207A (ja) * | 2006-03-13 | 2007-09-20 | Fujitsu Ltd | ディスク装置の媒体スキャン方法 |
JP4769608B2 (ja) * | 2006-03-22 | 2011-09-07 | 富士通株式会社 | 起動検証機能を有する情報処理装置 |
US7984283B2 (en) * | 2006-05-22 | 2011-07-19 | Hewlett-Packard Development Company, L.P. | System and method for secure operating system boot |
US8122258B2 (en) | 2006-05-22 | 2012-02-21 | Hewlett-Packard Development Company, L.P. | System and method for secure operating system boot |
JP4048382B1 (ja) * | 2006-09-01 | 2008-02-20 | 富士ゼロックス株式会社 | 情報処理システムおよびプログラム |
US20080077420A1 (en) * | 2006-09-27 | 2008-03-27 | Daryl Cromer | System and Method for Securely Updating Remaining Time or Subscription Data for a Rental Computer |
US7971056B2 (en) * | 2006-12-18 | 2011-06-28 | Microsoft Corporation | Direct memory access for compliance checking |
US20080147555A1 (en) * | 2006-12-18 | 2008-06-19 | Daryl Carvis Cromer | System and Method for Using a Hypervisor to Control Access to a Rental Computer |
US7631169B2 (en) * | 2007-02-02 | 2009-12-08 | International Business Machines Corporation | Fault recovery on a massively parallel computer system to handle node failures without ending an executing job |
US8522043B2 (en) * | 2007-06-21 | 2013-08-27 | Microsoft Corporation | Hardware-based computer theft deterrence |
US20100212021A1 (en) * | 2009-02-18 | 2010-08-19 | Harris Technology, Llc | Decrement software |
US9805196B2 (en) * | 2009-02-27 | 2017-10-31 | Microsoft Technology Licensing, Llc | Trusted entity based anti-cheating mechanism |
JP4743297B2 (ja) * | 2009-03-16 | 2011-08-10 | コニカミノルタビジネステクノロジーズ株式会社 | 画像形成装置、機能拡張方法およびユーザ認証システム |
EP2393007B1 (en) * | 2010-06-03 | 2013-03-27 | Telefonaktiebolaget LM Ericsson (publ) | Processing device |
CN101984575B (zh) * | 2010-10-14 | 2015-06-03 | 中兴通讯股份有限公司 | 一种保护移动终端软件的方法和装置 |
CN102063593B (zh) * | 2011-01-07 | 2013-01-09 | 北京工业大学 | 主动控制功能的可信设备及其认证方法 |
US8375221B1 (en) | 2011-07-29 | 2013-02-12 | Microsoft Corporation | Firmware-based trusted platform module for arm processor architectures and trustzone security extensions |
US9256734B2 (en) * | 2012-04-27 | 2016-02-09 | Broadcom Corporation | Security controlled multi-processor system |
WO2013166278A1 (en) * | 2012-05-02 | 2013-11-07 | Visa International Service Association | Small form-factor cryptographic expansion device |
US9633210B2 (en) | 2013-09-13 | 2017-04-25 | Microsoft Technology Licensing, Llc | Keying infrastructure |
US9542568B2 (en) * | 2013-09-25 | 2017-01-10 | Max Planck Gesellschaft Zur Foerderung Der Wissenschaften E.V. | Systems and methods for enforcing third party oversight of data anonymization |
WO2015047258A1 (en) * | 2013-09-25 | 2015-04-02 | Intel Corporation | Method, apparatus and system for providing transaction indemnification |
EP2955872B1 (en) * | 2014-06-12 | 2016-10-12 | Nxp B.V. | Method for configuring a secure element, key derivation program, computer program product and configurable secure element |
US10097513B2 (en) | 2014-09-14 | 2018-10-09 | Microsoft Technology Licensing, Llc | Trusted execution environment extensible computing device interface |
US20170116432A1 (en) * | 2015-01-22 | 2017-04-27 | Daniel Minoli | System and methods for cyber-and-physically-secure high grade weaponry |
CN105989283B (zh) | 2015-02-06 | 2019-08-09 | 阿里巴巴集团控股有限公司 | 一种识别病毒变种的方法及装置 |
US9612893B2 (en) | 2015-05-11 | 2017-04-04 | Silicon Laboratories Inc. | Peripheral watchdog timer |
EP3270321B1 (en) * | 2016-07-14 | 2020-02-19 | Kontron Modular Computers SAS | Technique for securely performing an operation in an iot environment |
US10402566B2 (en) * | 2016-08-01 | 2019-09-03 | The Aerospace Corporation | High assurance configuration security processor (HACSP) for computing devices |
US11379593B2 (en) | 2017-08-16 | 2022-07-05 | Hewlett-Packard Development Company, L.P. | Storage monitoring |
US10659054B2 (en) * | 2018-02-23 | 2020-05-19 | Nxp B.V. | Trusted monotonic counter using internal and external non-volatile memory |
JP7322233B2 (ja) * | 2018-06-26 | 2023-08-07 | キヤノン株式会社 | 起動時に実行されるソフトウェアの改ざんを検知する情報処理装置及び改ざん検知方法 |
JP7059127B2 (ja) * | 2018-06-26 | 2022-04-25 | キヤノン株式会社 | 起動時に実行されるソフトウェアの改ざんを検知する情報処理装置及びその制御方法 |
US10965551B2 (en) * | 2018-11-21 | 2021-03-30 | Microsoft Technology Licensing, Llc | Secure count in cloud computing networks |
US11232217B2 (en) * | 2018-12-06 | 2022-01-25 | Oracle International Corporation | Managing a security policy for a device |
US11316694B2 (en) * | 2019-03-27 | 2022-04-26 | Microsoft Technology Licensing, Llc | Cryptographic hardware watchdog |
JP7522547B2 (ja) | 2019-09-20 | 2024-07-25 | キヤノン株式会社 | 情報処理装置及びリセット制御方法 |
DE102020114199A1 (de) * | 2020-05-27 | 2021-12-02 | Basler Aktiengesellschaft | Absicherung von Computersystemen gegen Manipulationen und Funktionsanomalien |
Family Cites Families (69)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US4817094A (en) * | 1986-12-31 | 1989-03-28 | International Business Machines Corporation | Fault tolerant switch with selectable operating modes |
US4855922A (en) * | 1987-03-20 | 1989-08-08 | Scientific-Atlanta, Inc. | Apparatus and method for monitoring an energy management system |
US6507909B1 (en) * | 1990-02-13 | 2003-01-14 | Compaq Information Technologies Group, L.P. | Method for executing trusted-path commands |
DE4039355C2 (de) * | 1990-12-10 | 1998-07-30 | Bosch Gmbh Robert | Vorrichtung zur Funktionsüberprüfung einer Watchdog-Schaltung |
JPH0635718A (ja) * | 1992-07-15 | 1994-02-10 | Matsushita Electric Works Ltd | システム異常時のシステム縮退方式 |
US5563799A (en) * | 1994-11-10 | 1996-10-08 | United Technologies Automotive, Inc. | Low cost/low current watchdog circuit for microprocessor |
CN1153348A (zh) * | 1995-12-25 | 1997-07-02 | 合泰半导体股份有限公司 | 微处理器旗标设定电路 |
DE19712375A1 (de) * | 1997-03-25 | 1998-10-01 | Bosch Gmbh Robert | Watchdog-Schaltung |
DE19744375A1 (de) * | 1997-10-08 | 1999-04-15 | Philips Patentverwaltung | Steuerschaltung für einen Microcontroller |
US6385727B1 (en) * | 1998-09-25 | 2002-05-07 | Hughes Electronics Corporation | Apparatus for providing a secure processing environment |
CN1107920C (zh) * | 1998-11-27 | 2003-05-07 | 中国科学院空间科学与应用研究中心 | 一种通用的数据采集装置及其数据采集方法 |
WO2000048062A1 (en) * | 1999-02-15 | 2000-08-17 | Hewlett-Packard Company | Communications between modules of a computing apparatus |
US6874087B1 (en) * | 1999-07-13 | 2005-03-29 | International Business Machines Corporation | Integrity checking an executable module and associated protected service provider module |
EP1076279A1 (en) * | 1999-08-13 | 2001-02-14 | Hewlett-Packard Company | Computer platforms and their methods of operation |
JP2001101033A (ja) * | 1999-09-27 | 2001-04-13 | Hitachi Ltd | オペレーティングシステム及びアプリケーションプログラムの障害監視方法 |
GB0020488D0 (en) * | 2000-08-18 | 2000-10-11 | Hewlett Packard Co | Trusted status rollback |
GB0020441D0 (en) * | 2000-08-18 | 2000-10-04 | Hewlett Packard Co | Performance of a service on a computing platform |
US7000100B2 (en) * | 2001-05-31 | 2006-02-14 | Hewlett-Packard Development Company, L.P. | Application-level software watchdog timer |
AU2002337809A1 (en) * | 2001-10-03 | 2003-04-14 | Shield One, Llc | Remotely controlled failsafe boot mechanism and remote manager for a network device |
US7490250B2 (en) * | 2001-10-26 | 2009-02-10 | Lenovo (Singapore) Pte Ltd. | Method and system for detecting a tamper event in a trusted computing environment |
US6744616B2 (en) * | 2001-12-28 | 2004-06-01 | General Electric Company | Method and apparatus for controlling an electronic control |
US7013384B2 (en) * | 2002-01-15 | 2006-03-14 | Lenovo (Singapore) Pte. Ltd. | Computer system with selectively available immutable boot block code |
JP2003208314A (ja) * | 2002-01-15 | 2003-07-25 | Mitsubishi Electric Corp | オペレーティングシステムの自動入れ替え可能な計算機システムおよびそのシステムを利用したオペレーションシステムの自動入れ替え方法 |
US7127579B2 (en) * | 2002-03-26 | 2006-10-24 | Intel Corporation | Hardened extended firmware interface framework |
US7028149B2 (en) * | 2002-03-29 | 2006-04-11 | Intel Corporation | System and method for resetting a platform configuration register |
US7069442B2 (en) * | 2002-03-29 | 2006-06-27 | Intel Corporation | System and method for execution of a secured environment initialization instruction |
US7130951B1 (en) * | 2002-04-18 | 2006-10-31 | Advanced Micro Devices, Inc. | Method for selectively disabling interrupts on a secure execution mode-capable processor |
CA2491447C (en) * | 2002-07-05 | 2008-07-15 | Cyberscan Technology, Inc. | Secure game download |
US7000829B1 (en) * | 2002-07-16 | 2006-02-21 | Diebold, Incorporated | Automated banking machine key loading system and method |
US7121460B1 (en) * | 2002-07-16 | 2006-10-17 | Diebold Self-Service Systems Division Of Diebold, Incorporated | Automated banking machine component authentication system and method |
EP1429224A1 (en) | 2002-12-10 | 2004-06-16 | Texas Instruments Incorporated | Firmware run-time authentication |
DE10235564A1 (de) * | 2002-08-03 | 2004-02-12 | Robert Bosch Gmbh | Verfahren zum Überwachen eines Mikroprozessors und Schaltungsanordnung mit einem Mikroprozessor |
US7171539B2 (en) * | 2002-11-18 | 2007-01-30 | Arm Limited | Apparatus and method for controlling access to a memory |
CN2599652Y (zh) * | 2002-12-04 | 2004-01-14 | 华为技术有限公司 | 一种看门狗清狗电路 |
GB2400461B (en) * | 2003-04-07 | 2006-05-31 | Hewlett Packard Development Co | Control of access to of commands to computing apparatus |
TWI319147B (en) * | 2003-04-10 | 2010-01-01 | Lenovo Singapore Pte Ltd | Apparatus, motherboard, method and computer-readable storage medium recording instructions capable of determinging physical presence in a trusted platform in a computer system |
US7444667B2 (en) * | 2003-07-28 | 2008-10-28 | Intel Corporation | Method and apparatus for trusted blade device computing |
US7275263B2 (en) * | 2003-08-11 | 2007-09-25 | Intel Corporation | Method and system and authenticating a user of a computer system that has a trusted platform module (TPM) |
US7533274B2 (en) * | 2003-11-13 | 2009-05-12 | International Business Machines Corporation | Reducing the boot time of a TCPA based computing system when the core root of trust measurement is embedded in the boot block code |
US7222062B2 (en) * | 2003-12-23 | 2007-05-22 | Intel Corporation | Method and system to support a trusted set of operational environments using emulated trusted hardware |
US20050138389A1 (en) * | 2003-12-23 | 2005-06-23 | International Business Machines Corporation | System and method for making password token portable in trusted platform module (TPM) |
US7207039B2 (en) * | 2003-12-24 | 2007-04-17 | Intel Corporation | Secure booting and provisioning |
US7421588B2 (en) * | 2003-12-30 | 2008-09-02 | Lenovo Pte Ltd | Apparatus, system, and method for sealing a data repository to a trusted computing platform |
US20050166051A1 (en) * | 2004-01-26 | 2005-07-28 | Mark Buer | System and method for certification of a secure platform |
US7653727B2 (en) * | 2004-03-24 | 2010-01-26 | Intel Corporation | Cooperative embedded agents |
US20050221766A1 (en) * | 2004-03-31 | 2005-10-06 | Brizek John P | Method and apparatus to perform dynamic attestation |
US8271783B2 (en) * | 2004-04-19 | 2012-09-18 | Hewlett-Packard Development Company, L.P. | Subordinate trusted platform module |
US7484091B2 (en) * | 2004-04-29 | 2009-01-27 | International Business Machines Corporation | Method and system for providing a trusted platform module in a hypervisor environment |
US7480804B2 (en) * | 2004-04-29 | 2009-01-20 | International Business Machines Corporation | Method and system for hierarchical platform boot measurements in a trusted computing environment |
US7380119B2 (en) * | 2004-04-29 | 2008-05-27 | International Business Machines Corporation | Method and system for virtualization of trusted platform modules |
US7664965B2 (en) * | 2004-04-29 | 2010-02-16 | International Business Machines Corporation | Method and system for bootstrapping a trusted server having redundant trusted platform modules |
US20060010326A1 (en) * | 2004-07-08 | 2006-01-12 | International Business Machines Corporation | Method for extending the CRTM in a trusted platform |
US7552326B2 (en) * | 2004-07-15 | 2009-06-23 | Sony Corporation | Use of kernel authorization data to maintain security in a digital processing system |
US7716494B2 (en) * | 2004-07-15 | 2010-05-11 | Sony Corporation | Establishing a trusted platform in a digital processing system |
US20060015732A1 (en) * | 2004-07-15 | 2006-01-19 | Sony Corporation | Processing system using internal digital signatures |
US20060026418A1 (en) * | 2004-07-29 | 2006-02-02 | International Business Machines Corporation | Method, apparatus, and product for providing a multi-tiered trust architecture |
US20060026422A1 (en) * | 2004-07-29 | 2006-02-02 | International Business Machines Corporation | Method, apparatus, and product for providing a backup hardware trusted platform module in a hypervisor environment |
US7478246B2 (en) * | 2004-07-29 | 2009-01-13 | International Business Machines Corporation | Method for providing a scalable trusted platform module in a hypervisor environment |
US7653819B2 (en) * | 2004-10-01 | 2010-01-26 | Lenovo Singapore Pte Ltd. | Scalable paging of platform configuration registers |
US20060072748A1 (en) * | 2004-10-01 | 2006-04-06 | Mark Buer | CMOS-based stateless hardware security module |
US8160244B2 (en) * | 2004-10-01 | 2012-04-17 | Broadcom Corporation | Stateless hardware security module |
US7516326B2 (en) * | 2004-10-15 | 2009-04-07 | Hewlett-Packard Development Company, L.P. | Authentication system and method |
US8166296B2 (en) * | 2004-10-20 | 2012-04-24 | Broadcom Corporation | User authentication system |
US8332653B2 (en) * | 2004-10-22 | 2012-12-11 | Broadcom Corporation | Secure processing environment |
US20060112267A1 (en) * | 2004-11-23 | 2006-05-25 | Zimmer Vincent J | Trusted platform storage controller |
US7987356B2 (en) * | 2004-11-29 | 2011-07-26 | Broadcom Corporation | Programmable security platform |
US20060129824A1 (en) * | 2004-12-15 | 2006-06-15 | Hoff James P | Systems, methods, and media for accessing TPM keys |
US20060136717A1 (en) * | 2004-12-20 | 2006-06-22 | Mark Buer | System and method for authentication via a proximate device |
US7373551B2 (en) * | 2004-12-21 | 2008-05-13 | Intel Corporation | Method to provide autonomic boot recovery |
-
2004
- 2004-12-23 US US11/021,021 patent/US7360253B2/en not_active Expired - Fee Related
-
2005
- 2005-12-20 CN CN2005800407642A patent/CN101116070B/zh not_active Expired - Fee Related
- 2005-12-20 EP EP05854752A patent/EP1829274A4/en not_active Ceased
- 2005-12-20 JP JP2007548385A patent/JP4945454B2/ja not_active Expired - Fee Related
- 2005-12-20 KR KR1020077012294A patent/KR101213807B1/ko active IP Right Grant
- 2005-12-20 RU RU2007123617/09A patent/RU2007123617A/ru not_active Application Discontinuation
- 2005-12-20 MX MX2007006143A patent/MX2007006143A/es active IP Right Grant
- 2005-12-20 WO PCT/US2005/046091 patent/WO2006071630A2/en active Application Filing
- 2005-12-20 BR BRPI0519080-0A patent/BRPI0519080A2/pt not_active IP Right Cessation
Also Published As
Publication number | Publication date |
---|---|
CN101116070B (zh) | 2010-06-09 |
US20060143446A1 (en) | 2006-06-29 |
MX2007006143A (es) | 2007-07-19 |
JP2008525892A (ja) | 2008-07-17 |
RU2007123617A (ru) | 2008-12-27 |
KR20070097031A (ko) | 2007-10-02 |
CN101116070A (zh) | 2008-01-30 |
KR101213807B1 (ko) | 2012-12-18 |
US7360253B2 (en) | 2008-04-15 |
EP1829274A2 (en) | 2007-09-05 |
WO2006071630A3 (en) | 2007-08-02 |
EP1829274A4 (en) | 2012-01-18 |
BRPI0519080A2 (pt) | 2008-12-23 |
WO2006071630A2 (en) | 2006-07-06 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
JP4945454B2 (ja) | モニタを用いてtpmを常に“オン”にロックする方法及びシステム | |
US8438621B2 (en) | Method and apparatus for secure management of debugging processes within communication devices | |
JP4981051B2 (ja) | ライセンスに従う製品の挙動変更 | |
US7565553B2 (en) | Systems and methods for controlling access to data on a computer with a secure boot process | |
US7322042B2 (en) | Secure and backward-compatible processor and secure software execution thereon | |
US7984283B2 (en) | System and method for secure operating system boot | |
JP4883459B2 (ja) | ポイントツーポイント相互接続システム上のセキュアな環境初期化命令の実行 | |
US7975288B2 (en) | Method and apparatus for imposing quorum-based access control in a computer system | |
EP2727040B1 (en) | A secure hosted execution architecture | |
US8250630B2 (en) | Detecting unauthorized computer access | |
CN111552434B (zh) | 保护计算系统的存储器设备的方法、计算系统及存储介质 | |
KR20070084258A (ko) | 원하지 않은 상태의 검출시에 진입되는 특수한 pc 모드 | |
US8516565B2 (en) | IC chip, information processing apparatus, system, method, and program | |
US7890756B2 (en) | Verification system and method for accessing resources in a computing environment | |
JP2010182196A (ja) | 情報処理装置およびファイル検証システム | |
US11816252B2 (en) | Managing control of a security processor in a supply chain | |
US20230010319A1 (en) | Deriving independent symmetric encryption keys based upon a type of secure boot using a security processor | |
US11977639B2 (en) | Indicating a type of secure boot to endpoint devices by a security processor | |
US20230015334A1 (en) | Deriving dependent symmetric encryption keys based upon a type of secure boot using a security processor | |
US20240236149A1 (en) | Certificate based security for declarative operations | |
US20240235853A1 (en) | Certificate based security for declarative operations |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
A521 | Request for written amendment filed |
Free format text: JAPANESE INTERMEDIATE CODE: A523 Effective date: 20081218 |
|
A621 | Written request for application examination |
Free format text: JAPANESE INTERMEDIATE CODE: A621 Effective date: 20081218 |
|
A131 | Notification of reasons for refusal |
Free format text: JAPANESE INTERMEDIATE CODE: A131 Effective date: 20110909 |
|
A977 | Report on retrieval |
Free format text: JAPANESE INTERMEDIATE CODE: A971007 Effective date: 20110914 |
|
A521 | Request for written amendment filed |
Free format text: JAPANESE INTERMEDIATE CODE: A523 Effective date: 20111209 |
|
TRDD | Decision of grant or rejection written | ||
A01 | Written decision to grant a patent or to grant a registration (utility model) |
Free format text: JAPANESE INTERMEDIATE CODE: A01 Effective date: 20120228 |
|
A01 | Written decision to grant a patent or to grant a registration (utility model) |
Free format text: JAPANESE INTERMEDIATE CODE: A01 |
|
A61 | First payment of annual fees (during grant procedure) |
Free format text: JAPANESE INTERMEDIATE CODE: A61 Effective date: 20120305 |
|
R150 | Certificate of patent or registration of utility model |
Ref document number: 4945454 Country of ref document: JP Free format text: JAPANESE INTERMEDIATE CODE: R150 Free format text: JAPANESE INTERMEDIATE CODE: R150 |
|
FPAY | Renewal fee payment (event date is renewal date of database) |
Free format text: PAYMENT UNTIL: 20150309 Year of fee payment: 3 |
|
R250 | Receipt of annual fees |
Free format text: JAPANESE INTERMEDIATE CODE: R250 |
|
S111 | Request for change of ownership or part of ownership |
Free format text: JAPANESE INTERMEDIATE CODE: R313113 |
|
R350 | Written notification of registration of transfer |
Free format text: JAPANESE INTERMEDIATE CODE: R350 |
|
R250 | Receipt of annual fees |
Free format text: JAPANESE INTERMEDIATE CODE: R250 |
|
R250 | Receipt of annual fees |
Free format text: JAPANESE INTERMEDIATE CODE: R250 |
|
R250 | Receipt of annual fees |
Free format text: JAPANESE INTERMEDIATE CODE: R250 |
|
R250 | Receipt of annual fees |
Free format text: JAPANESE INTERMEDIATE CODE: R250 |
|
LAPS | Cancellation because of no payment of annual fees |