| 发明名称 |
SECURELY RECONFIGURING A MULTI-NODE SYSTEM TO PREVENT FIRMWARE ROLLBACK |
| 摘要 |
A method initiates boot of a multi-node system including a first compute node scaled together with a second compute node, wherein the multi-node system boots from a basic input output system of the first compute node that is identified as a primary node by a trusted platform module of the first compute node. The method further includes receiving a request to reconfigure the multi-node system so that the second compute node would become the primary node, and reconfiguring the multi-node system so that the second node is the primary mode only in response to a user manually asserting physical presence to a trusted platform module of the first compute node. A system provides compute nodes that each include a trusted platform module having first and second non-volatile indices for controlling the configuration of the multimode system. |
| 申请公布号 |
US2015186655(A1) |
申请公布日期 |
2015.07.02 |
| 申请号 |
US201414146757 |
申请日期 |
2014.01.03 |
| 申请人 |
International Business Machines Corporation |
发明人 |
Dasari Shiva R.;Gundam Raghuswamyreddy |
| 分类号 |
G06F21/60;G06F9/44;H04L12/24 |
主分类号 |
G06F21/60 |
| 代理机构 |
|
代理人 |
|
| 主权项 |
1. A method, comprising:
initiating boot of a multi-node system including a first compute node scaled together with a second compute node, and wherein the multi-node system boots from a basic input output system of the first compute node that is identified as a primary node by a trusted platform module of the first compute node; receiving a request to reconfigure the multi-node system so that the second compute node would become the primary node; and reconfiguring the multi-node system so that the second node is the primary mode only in response to a user manually asserting physical presence to a trusted platform module of the first compute node. |
| 地址 |
Armonk NY US |
