公开(公告)号：US20250045398A1

公开(公告)日：2025-02-06

申请号：US18362151

申请日：2023-07-31

Applicant: HEWLETT PACKARD ENTERPRISE DEVELOPMENT LP

Inventor： Dilip Kumar Ramakrishna Reddy ,  Kenneth J. Geer ,  Stephen B. Lyle ,  Shiva R. Dasari

IPC: G06F21/57 ,  G06F21/12 ,  G06F21/60

Abstract: In some examples, a security processor receives, from a first management device, measurement data of one or more second management devices. The measurement data is computed at the one or more second management devices based on information in the one or more second management devices and sent from the one or more second management devices to the first management device. The security processor stores the measurement data in a secure storage of the security processor, and provides a representation of the measurement data to validate an integrity of the information in the one or more second management devices.

公开(公告)号：US20230342446A1

公开(公告)日：2023-10-26

申请号：US17660437

申请日：2022-04-25

Applicant: HEWLETT PACKARD ENTERPRISE DEVELOPMENT LP

Inventor： Dilip Kumar Ramakrishna Reddy ,  Kenneth J. Geer ,  Shiva R. Dasari

IPC: G06F21/33 ,  G06F21/57 ,  G06F21/64 ,  G06F21/60

CPC classification number: G06F21/33 ,  G06F21/572 ,  G06F21/64 ,  G06F21/602 ,  G06F2221/0751

Abstract: A process includes accessing by a management controller of a computer platform, a platform certificate that is stored in a secure memory. The platform certificate includes data representing a reference inventory for the computer platform. The platform certificate includes data representing information designated to bind the platform certificate to a security processor. The security processor is accessible by the management controller. The security processor is inaccessible by an operating system of the computer platform. The process includes verifying the platform certificate. Verifying the platform certificate includes validating, by the management controller, a signature of the platform certificate; and validating, by the management controller, the information designated to bind the platform certificate to the security processor. Verifying the platform certificate includes comparing, by the management controller, a second inventory of the computer platform to the reference inventory.

公开(公告)号：US20250111028A1

公开(公告)日：2025-04-03

申请号：US18980469

申请日：2024-12-13

Applicant: Hewlett Packard Enterprise Development LP

Inventor： Dilip Kumar Ramakrishna Reddy ,  Kenneth J. Geer ,  Shiva R. Dasari

IPC: G06F21/33 ,  G06F21/10 ,  G06F21/57 ,  G06F21/60 ,  G06F21/64

Abstract: A process includes accessing by a management controller of a computer platform, a platform certificate that is stored in a secure memory. The platform certificate includes data representing a reference inventory for the computer platform. The platform certificate includes data representing information designated to bind the platform certificate to a security processor. The security processor is accessible by the management controller. The security processor is inaccessible by an operating system of the computer platform. The process includes verifying the platform certificate. Verifying the platform certificate includes validating, by the management controller, a signature of the platform certificate; and validating, by the management controller, the information designated to bind the platform certificate to the security processor. Verifying the platform certificate includes comparing, by the management controller, a second inventory of the computer platform to the reference inventory.

公开(公告)号：US12204628B2

公开(公告)日：2025-01-21

申请号：US17660437

申请日：2022-04-25

Applicant: HEWLETT PACKARD ENTERPRISE DEVELOPMENT LP

Inventor： Dilip Kumar Ramakrishna Reddy ,  Kenneth J. Geer ,  Shiva R. Dasari

IPC: G06F21/64 ,  G06F21/33 ,  G06F21/57 ,  G06F21/60 ,  G06F21/10

Abstract: A process includes accessing by a management controller of a computer platform, a platform certificate that is stored in a secure memory. The platform certificate includes data representing a reference inventory for the computer platform. The platform certificate includes data representing information designated to bind the platform certificate to a security processor. The security processor is accessible by the management controller. The security processor is inaccessible by an operating system of the computer platform. The process includes verifying the platform certificate. Verifying the platform certificate includes validating, by the management controller, a signature of the platform certificate; and validating, by the management controller, the information designated to bind the platform certificate to the security processor. Verifying the platform certificate includes comparing, by the management controller, a second inventory of the computer platform to the reference inventory.