System and method for protected operating system boot using state validation
摘要
A validation technique for ensuring security of a computer operating system during the loading process is described. A validator 550 evaluates the operating system loader 410 for compliance with a known set of standards and also evaluates the state of the machine 502 on which the operating system is loading. Machine validation involves ensuring that the machine 502 is in a state known to be secure following initial loading of the BIOS, option ROMS and boot sector. If validation of the machine and loader is correct key 204 is provided to the loader which in turn will supply it to the operating system for later use.