Invention Grant
- Patent Title: Hardware rooted attestation
- Patent Title (中): 硬件根植证明
-
Application No.: US14080284Application Date: 2013-11-14
-
Publication No.: US09405912B2Publication Date: 2016-08-02
- Inventor: Mark Novak , Paul England , Stefan Thom
- Applicant: Microsoft Corporation
- Applicant Address: US WA Redmond
- Assignee: MICROSOFT TECHNOLOGY LICENSING, LLC
- Current Assignee: MICROSOFT TECHNOLOGY LICENSING, LLC
- Current Assignee Address: US WA Redmond
- Agent Timothy Churna; Kate Drakos; Micky Minhas
- Main IPC: G06F9/24
- IPC: G06F9/24 ; G06F15/177 ; G06F21/57 ; G06F21/31 ; G06F21/72 ; H04L29/06 ; H04L9/08 ; H04L9/32 ; H04L9/16
Abstract:
Computing devices that perform hardware rooted attestation are described, as are methods for use therewith, wherein such devices include a system integrated TPM (e.g., a firmware-based TPM), with m boot chain components loaded and executed prior to the system integrated TPM. Between powering-up of a device and the system integrated TPM being loaded and executed, seed morphing is performed for n=0 to m. This involves an nth encryption seed (ESn) being morphed into an n+1th encryption seed (ESn+1), under control of an nth boot chain component, by extending the nth encryption seed (ESn) with a measurement of the n+1th boot chain component to thereby generate the n+1th encryption seed (ESn+1). In a similar manner, an nth identity seed (ISn) is morphed into an n+1th identity seed (ISn+1). Such techniques establish trust in the system integrated TPM despite it not being the first component loaded and executed after powering-up.
Public/Granted literature
- US20150134942A1 HARDWARE ROOTED ATTESTATION Public/Granted day:2015-05-14
Information query
