| 发明名称 |
CONTINUATION OF TRUST FOR PLATFORM BOOT FIRMWARE |
| 摘要 |
This disclosure is directed to continuation of trust for platform boot firmware. A device may comprise a processing module and a memory module including read-only memory (ROM) on which is stored platform boot firmware. On activation, the processing module may load the platform boot firmware. The platform boot firmware may cause the processing module to first load a trusted pre-verifier file to load and verify the signature of a hash table loaded from the platform boot firmware. The processing module may then load firmware program files from the platform boot firmware, calculate a hash for each file, and verify whether each program hash is in the hash table. Firmware program files with hashes in the hash table may be allowed to execute. If any firmware program file hash is not in the hash table, the processing module may perform platform specific security actions to prevent the device from being compromised. |
| 申请公布号 |
US2014250291(A1) |
申请公布日期 |
2014.09.04 |
| 申请号 |
US201313782512 |
申请日期 |
2013.03.01 |
| 申请人 |
ADAMS Nicholas J.;WISEMAN Willard M. |
发明人 |
ADAMS Nicholas J.;WISEMAN Willard M. |
| 分类号 |
G06F21/57 |
主分类号 |
G06F21/57 |
| 代理机构 |
|
代理人 |
|
| 主权项 |
1. A device, comprising:
a memory module including at least platform boot firmware; and a processing module to load the platform boot firmware when the device is activated, the platform boot firmware causing the processing module to load a hash table, to calculate hashes for platform boot firmware files loaded subsequent to the hash table and to determine whether the calculated platform boot firmware file hashes are in the hash table. |
| 地址 |
Beaverton OR US |
