发明名称 |
Method and apparatus for providing seamless file system encryption from a pre-boot environment into a firmware interface aware operating system |
摘要 |
Methods and apparatus for providing seamless functionality in a computer are disclosed. For example, an encrypted file system manager is included to layer an encoded File Allocation Table on top of a disk and to pass to the operating system an Embedded Root Key to provide access to an encrypted Firmware Interface System Partition. |
申请公布号 |
US8842837(B2) |
申请公布日期 |
2014.09.23 |
申请号 |
US201213412614 |
申请日期 |
2012.03.05 |
申请人 |
Intel Corporation |
发明人 |
Zimmer Vincent J.;Rothman Michael A. |
分类号 |
G06F21/00;G06F3/06;G06F21/78;G06F21/85;G06F9/44;G06F21/57 |
主分类号 |
G06F21/00 |
代理机构 |
Stoel Rives, LLP. |
代理人 |
Stoel Rives, LLP. |
主权项 |
1. A method for providing a file system encryption in a computer system with a firmware interface comprising:
determining if a pre-boot access request to an encrypted system is from a trusted source; allowing the firmware interface to use a key to access the encrypted system in response to the pre-boot access request, if the pre-boot access request is from a trusted source; passing the key to an operating system (OS) of the computer system, for continuing use of the key by the OS during runtime; determining if a runtime access request is from a trusted source; and allowing the OS to use the key to access the encrypted system corresponding to the runtime access request, if the runtime access request is from a trusted source, where the encrypted system has remained encrypted during runtime. |
地址 |
Santa Clara CA US |