Invention Grant
- Patent Title: Securing and changing immutable data in secure bootup
-
Application No.: US15685481Application Date: 2017-08-24
-
Publication No.: US11074348B2Publication Date: 2021-07-27
- Inventor: Timothy V. Bolan , Patrick J. Callaghan , Pu Liu , Timothy R. Seeger
- Applicant: International Business Machines Corporation
- Applicant Address: US NY Armonk
- Assignee: International Business Machines Corporation
- Current Assignee: International Business Machines Corporation
- Current Assignee Address: US NY Armonk
- Agency: Garg Law Firm, PLLC
- Agent Rakesh Garg; Edward Wixted
- Main IPC: G06F21/00
- IPC: G06F21/00 ; H04L29/06 ; G06F21/57 ; H04L9/08 ; H04L9/32 ; G06F21/64 ; G06F9/4401 ; G06F12/14 ; G06F21/78
Abstract:
A set of root keys is loaded as a first part of a secure boot process of a secure system. a first trusted key from a set of trusted keys is verified using a first root key from the set of root keys as a second part of the secure boot process. The set of trusted keys is loaded when an affirmative verification for a subset of trusted keys is received. The subset of trusted keys includes the first trusted key. As a third part of the secure boot process, an immutable portion of a file is validated using the first trusted key. As a fourth part of the secure boot process, the file is loaded when each portion of the file is successfully validated. The first, second, third, and fourth parts of the secure boot process occur before an integrity management configuration takes over the secure boot process.
Public/Granted literature
- US20190065750A1 SECURING AND CHANGING IMMUTABLE DATA IN SECURE BOOTUP Public/Granted day:2019-02-28
Information query
