Dynamically loaded measured environment for secure code launch

摘要

A “Secure Code Launcher” establishes platform trustworthiness, i.e., a trusted computing base (TCB), and uses hardware or firmware based components to securely launch one or more software components. The Secure Code Launcher measures and loads software components by interfacing with security extension functionality integral to one or more hardware or firmware-based components in the computing device. For example, various embodiments of the Secure Code Launcher include firmware-based components that interface with security extension functionality integral to the computing device to measure and load boot managers, operating system (OS) loaders, or other OS components including OS kernels. Similarly, the Secure Code Launcher is capable of measuring and loading software components responsible for installing an instance of an OS. In addition, various embodiments of the Secure Code Launcher provide a hypervisor loader that measures and loads a hypervisor which in turn measures and loads operating system components including virtual machines.

主权项

1. A method for providing secure program launch, comprising:
instantiate an event handler in a pre-boot environment of the computing device; instantiate a boot initializer in the pre-boot environment of the computing device; using the event handler to intercept software load commands issued by the boot initializer; for each intercepted load command, initiating a software measurement of a corresponding software component; and following each measurement, performing a secure program launch of the corresponding measured software component.