公开(公告)号：BRPI0501783B1

公开(公告)日：2017-05-02

申请号：BRPI0501783

申请日：2005-05-23

Applicant: MICROSOFT CORP ,  MICROSOFT TECHNOLOGY LICENSING LLC

Inventor： BRYAN MARK WILLMAN ,  DEREK NORMAN LASALLE ,  DAVID B CROSS ,  JAMIE HUNTER ,  KENNETH D RAY ,  LONNY DEAN MCMICHAEL ,  MARK ELIOT PALEY ,  PAUL ENGLAND ,  PIERRE JACOMET ,  THEKKTHALACKAL VARUGIS KURIEN

IPC: G06F9/48 ,  G06F9/445 ,  G06F11/00 ,  G06F21/00 ,  G06N20060101

Abstract: "sistema e processo para inicialização de sistema operacional protegido usando validação de estado". descreve-se um mecanismo para inicialização de sistema operacional protegido, que impede componentes invasores de serem carregados com o sistema operacional e, assim, impede a divulgação da chave do sistema sob circunstâncias inadequadas. após uma parte do procedimento de partida da máquina ter ocorrido, o carregador do sistema operacional é executado, o carregador é validado, e a existência de um estado de máquina correta é verificada e/ou criada. após o carregador ter sido verificado, como sendo um carregador legítimo, e o estado da máquina, no qual ela está rodando, é verificado como sendo correto, o comportamento futuro do carregador é conhecido para proteção contra o carregamento de componentes invasores, que podem provocar a divulgação da chave do sistema. com o comportamento do carregador sendo conhecido como seguro para a chave do sistema, o validador pode deslacrar a chave do sistema e fornecê-la ao carregador.

公开(公告)号：ZA200504397B

公开(公告)日：2007-03-28

申请号：ZA200504397

申请日：2005-05-30

Applicant: MICROSOFT CORP

Inventor： MARK WILLMAN BRYAN ,  PAUL ENGLAND ,  RAY KENNETH D ,  JAMIE HUNTER ,  DEAN MCMICHAEL LONNY ,  NORMAN LASALLE DEREK ,  PIERRE JACOMET ,  ELIOT PALEY MARK ,  VARUGIS KURIEN THEKKTHALACKAI ,  CROSS DAVID B

IPC: G06F9/445 ,  G06F11/00 ,  G06F21/00 ,  G06N20060101

Abstract: A mechanism for protected operating system boot that prevents rogue components from being loaded with the operating system, and thus prevents divulgence of the system key under inappropriate circumstances. After a portion of the machine startup procedure has occurred, the operating system loader is run, the loader is validated, and a correct machine state is either verified to exist and/or created. Once the loader has been verified to be a legitimate loader, and the machine state under which it is running is verified to be correct, the loader's future behavior is known to protect against the loading of rogue components that could cause divulgence of the system key With the loader's behavior being known to be safe for the system key, the validator may unseal the system key and provides it to the loader.

公开(公告)号：SG118327A1

公开(公告)日：2006-01-27

申请号：SG200503030

申请日：2005-05-09

Applicant: MICROSOFT CORP

Inventor： BRYAN MARK WILLMAN ,  PAUL ENGLAND ,  RAY KENNETH D ,  JAMIE HUNTER ,  LONNY DEAN MCMICHAEL ,  DEREK NORMAN LASALLE ,  PIERRE JACOMET ,  MARK ELIOT PALEY ,  THEKKTHALACKAL VARUGIS KURIEN ,  CROSS DAVID B

IPC: G06F9/445 ,  G06F11/00 ,  G06F21/00 ,  G06N20060101

Abstract: A mechanism for protected operating system boot that prevents rogue components from being loaded with the operating system, and thus prevents divulgence of the system key under inappropriate circumstances. After a portion of the machine startup procedure has occurred, the operating system loader is run, the loader is validated, and a correct machine state is either verified to exist and/or created. Once the loader has been verified to be a legitimate loader, and the machine state under which it is running is verified to be correct, the loader's future behavior is known to protect against the loading of rogue components that could cause divulgence of the system key With the loader's behavior being known to be safe for the system key, the validator may unseal the system key and provides it to the loader.