| 发明名称 | Automatic recovery of TPM keys | ||
| 摘要 | A trusted platform module (TPM) is a silicon chip that constitutes a secure encryption key-pair generator and key management device. A TPM provides a hardware-based root-of-trust contingent on the generation of the first key-pair that the device creates: the SRK (storage root key). Each SRK is unique, making each TPM unique, and an SRK is never exported from a TPM. Broadly contemplated herein is an arrangement for determining automatically whether a TPM has been replaced or cleared via loading a TPM blob into the TPM prior to the first time it is to be used (e.g. when a security-related software application runs). If the TPM blob loads successfully, then it can be concluded that the TPM is the same TPM that was used previously. If the TPM blob cannot be loaded, then corrective action will preferably take place automatically to configure the new TPM. | ||
| 申请公布号 | US8908867(B2) | 申请公布日期 | 2014.12.09 |
| 申请号 | US201213652138 | 申请日期 | 2012.10.15 |
| 申请人 | Lenovo (Singapore) Pte. Ltd. | 发明人 | Lietzke, Jr. Matthew P.;Hoff James P.;Rivera David |
| 分类号 | H04L9/00 | 主分类号 | H04L9/00 |
| 代理机构 | Ference & Associates LLC | 代理人 | Ference & Associates LLC |
| 主权项 | 1. An apparatus comprising: a security module that imports a generated base key; and acting to produce a first security module blob; a storage unit that stores a backup key; a circuit that ascertains the first security module is not usable in further operations via employing the security module blob; the security module acting to import the backup key; and the security module acting to produce a new security module blob; wherein the new security module blob has the same owner authentication as the first security module blob. | ||
| 地址 | Singapore SG | ||