发明名称 |
Method for secure self-booting of an electronic device |
摘要 |
The present invention relates to a method for a self-boot of an electronic device, wherein an external component is accessible through an interface of the electronic device (101), the method comprising, determining a boot mode for booting the electronic device, wherein the determined boot mode is defined as a secure boot mode; disabling the interface, thereby prohibiting access to the component through the interface, thereby defining a secure state of the electronic device; loading a first code comprising a sequence of executable instructions to be executed for booting the electronic device; loading a second code, the second code being encrypted; and decrypting the second code and executing the second code, thereby enabling the interface, and switching the electronic device from the secure state to a debugging state. |
申请公布号 |
US9202060(B2) |
申请公布日期 |
2015.12.01 |
申请号 |
US201213706803 |
申请日期 |
2012.12.06 |
申请人 |
INTERNATIONAL BUSINESS MACHINES CORPORATION |
发明人 |
Geukes Benedikt;Michel Heiko;Michel Matteo;Walz Manfred |
分类号 |
G06F9/00;G06F15/177;G06F21/57;G06F21/74;G06F21/85 |
主分类号 |
G06F9/00 |
代理机构 |
|
代理人 |
Zehrer Matthew C. |
主权项 |
1. A method for a self-boot of an electronic device, wherein an external component is accessible through an interface of the electronic device, the method comprising:
determining a boot mode for booting the electronic device, wherein the determined boot mode is evaluated and defined as a secure boot mode, wherein determining the boot mode for booting the electronic device further comprises: reading the boot mode from an eFuse, wherein the boot mode comprises a regular boot mode and the secure boot mode, and wherein electronic device data is not accessible through the interface in secure boot mode; disabling the interface, thereby prohibiting access to the component through the interface, thereby defining a secure state of the electronic device; loading a first code comprising a sequence of executable instructions to be executed for booting the electronic device; loading a second code, the second code being encrypted; and decrypting the second code and executing the second code, thereby enabling the interface, and switching the electronic device from the secure state to a debugging state. |
地址 |
Armonk NY US |