Thresholds on scripts executable by unified extensible firmware interface systems
First Claim
Patent Images
1. A system comprising:
- an authentication engine comprising circuitry to determine a source of a script and an integrity level of the script;
a primitives engine comprising circuitry to enable a plurality of primitives to use with the script, the plurality of primitives to define functionalities available via a unified extensible firmware interface (UEFI) system; and
an environment engine comprising circuitry to;
enable execution of the script during initialization of a target device in response to a determination that the script is authenticated based on the source and the integrity level; and
establish execution parameters of the script by the UEFI system based on thresholds defined by a plurality of control programs.
1 Assignment
0 Petitions
Accused Products
Abstract
In an example, an apparatus compatible with a unified extensible firmware interface (UEFI) system includes a processor resource and a computer-readable storage device with a set of instructions stored thereon. In that example, the instructions are executable to cause the UEFI system to verify an integrity status of a script file and an authenticity status of the script file, analyze contents of the script file in response to a determination that the script is authentic, establish a threshold on execution of the script file based on the analysis of the contents, and execute a control program concurrent with execution of the script to implement the threshold.
-
Citations
15 Claims
-
1. A system comprising:
-
an authentication engine comprising circuitry to determine a source of a script and an integrity level of the script; a primitives engine comprising circuitry to enable a plurality of primitives to use with the script, the plurality of primitives to define functionalities available via a unified extensible firmware interface (UEFI) system; and an environment engine comprising circuitry to; enable execution of the script during initialization of a target device in response to a determination that the script is authenticated based on the source and the integrity level; and establish execution parameters of the script by the UEFI system based on thresholds defined by a plurality of control programs. - View Dependent Claims (2, 3, 4, 5, 15)
-
-
6. A non-transitory computer-readable storage medium comprising a set of instructions executable by a processor resource to:
-
authenticate a script source against a digital certificate; interpret a script to run on a set of primitives, the set of primitives to represent functionalities available via a unified extensible firmware interface (UEFI) system; execute the script via the UEFI system according to a plurality of thresholds associated with the set of primitives in response to a determination that the script achieves an integrity level; and check, via the UEFI system, events produced by execution of the script to identify that the script is executing within limits defined by the plurality of thresholds. - View Dependent Claims (7, 8, 9, 10)
-
-
11. An apparatus compatible with a unified extensible firmware interface (UEFI) system comprising:
-
a processor resource; a non-transitory computer readable storage device comprising a set of instructions executable by the processor resource to cause the UEFI system to; verify an integrity status of a script file and authenticity status of the script file using a public encryption key, the script file representing a script executable on the UEFI system; analyze, via a language interpreter, contents of the script file in response to a determination that the script file is authentic; establish a threshold on execution of the script file based on the analysis of the contents; and execute a control program concurrent with execution of the script, the control program to implement the threshold. - View Dependent Claims (12, 13, 14)
-
Specification