Invention Grant
- Patent Title: System and method for booting using HSM integrated chain of trust certificates
-
Application No.: US17443979Application Date: 2021-07-29
-
Publication No.: US11748485B2Publication Date: 2023-09-05
- Inventor: Christopher Campetti , Huijun Xie , Antonio L. Fontes , Azzam Tannous , Anoop Gulati
- Applicant: Dell Products L.P.
- Applicant Address: US TX Round Rock
- Assignee: Dell Products L.P.
- Current Assignee: Dell Products L.P.
- Current Assignee Address: US TX Round Rock
- Agency: McDermott Will & Emery LLP
- Main IPC: G06F21/57
- IPC: G06F21/57 ; H04L9/32 ; H04L9/08 ; H04L9/00
Abstract:
A system for secure booting of an information handling system stores a Root of Trust private key in a hardware security module (HSM). A HSM-Integrated certificate creation utility receives inputs such as bin files for each firmware volume associated with a boot sequence. The HSM-Integrated certificate creation utility loads the correct extensions for the firmware volume, generates a certificate signing request (CSR) and generates a certificate based on the CSR. The certificates can be provided to a boot sequence for processing in a trusted firmware implementation without a certificate creation utility consuming the Hardware Root of Trust private key as a file that could be compromised.
Public/Granted literature
- US20230035801A1 SYSTEM AND METHOD FOR BOOTING USING HSM INTEGRATED CHAIN OF TRUST CERTIFICATES Public/Granted day:2023-02-02
Information query
