Method, system and program product for verifying an attribute of a computing device
First Claim
Patent Images
1. A method of verifying an attribute of a computing device, the method comprising:
- receiving a quoted value that defines the attribute from the computing device;
obtaining a valid value from an attestation server, wherein the valid value has been verified by a certification authority; and
comparing the quoted value to the valid value.
1 Assignment
0 Petitions
Accused Products
Abstract
A solution for verifying an attribute of a computing device. In particular, a computing device can obtain an attribute from another computing device. The attribute can be measure by, for example, a Trusted Platform Module integrated on the other computing device. The computing device can then use an attestation server to determine whether the attribute reflects a desirable value or indicates that the other computing device may have been compromised.
-
Citations
23 Claims
-
1. A method of verifying an attribute of a computing device, the method comprising:
-
receiving a quoted value that defines the attribute from the computing device;
obtaining a valid value from an attestation server, wherein the valid value has been verified by a certification authority; and
comparing the quoted value to the valid value. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. A method of verifying an attribute of a first computing device, the method comprising:
-
obtaining a valid value that has been verified by a certification authority;
receiving a quoted value that defines the attribute from a second computing device; and
comparing the quoted value to the valid value. - View Dependent Claims (8, 9, 10, 11, 12, 13)
-
-
14. A system for verifying an attribute of a computing device, the system comprising:
-
an attestation server for storing a set of valid values, wherein each valid value has been certified by a certification authority;
an assurance system for receiving an attestation identity key (AIK) and a quoted value from the computing device and verifying the quoted value using the AIK; and
a validation system for validating the quoted value using the attestation server. - View Dependent Claims (15, 16, 17)
-
-
18. A program product stored on a recordable medium for verifying an attribute of a computing device, which when executed comprises:
-
program code for receiving a quoted value that defines the attribute from the computing device;
program code for obtaining a valid value from an attestation server, wherein the valid value has been verified by a certification authority; and
program code for comparing the quoted value to the valid value. - View Dependent Claims (19, 20, 21)
-
-
22. A system for deploying an application for verifying an attribute of a first computing device, the system comprising a computer infrastructure being operable to:
-
obtain a valid value that has been verified by a certification authority;
receive a quoted value that defines the attribute from a second computing device;
compare the quoted value to the valid value; and
provide a result of the comparison to the second computing device.
-
-
23. Computer software embodied in a propagated signal for verifying an attribute of a computing device, the computer software comprising instructions to cause a computer system to perform the following functions:
-
receive an attestation identity key (AIK) and a quoted value from the computing device;
verify the quoted value using the AIK; and
validate the quoted value using an attestation server that comprises a set of valid values, wherein each valid value has been certified by a certification authority.
-
Specification