System and method for programming an isolated computing environment
First Claim
1. An isolated computing environment for use in a computer, the isolated computing environment executing computer-executable instructions comprising:
- a core service;
an interface for receiving a message, the message comprising at least one of an update code and configuration information;
a cryptographic service for accessing a first key and verifying a digital signature of the message using the first key; and
an update service, wherein the update service updates the core service responsive to the message after verification of the message using the first key.
5 Assignments
0 Petitions
Accused Products
Abstract
A computer is provided with an isolated computing environment. The isolated computing environment is adapted to allow initial programming for use in manufacturing, distribution and sales. The isolated computing environment further allows an authenticated source or authenticated code to update the isolated computing environment with code and configuration data for use in the end-user environment. To encourage final updating, the computer may be placed in a limited-function mode until authorized code is installed and operational. A method and apparatus are disclosed for the sanctioning and secure update of the isolated computing environment.
-
Citations
20 Claims
-
1. An isolated computing environment for use in a computer, the isolated computing environment executing computer-executable instructions comprising:
-
a core service;
an interface for receiving a message, the message comprising at least one of an update code and configuration information;
a cryptographic service for accessing a first key and verifying a digital signature of the message using the first key; and
an update service, wherein the update service updates the core service responsive to the message after verification of the message using the first key. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A computer adapted to operate using an isolated computing environment, the computer comprising:
-
a processor;
a memory coupled to the processor for storing processor-executable instructions; and
an isolated computing environment responsive to signals sent via the application program interface, the isolated computing environment comprising;
a cryptographic circuit;
a processing circuit;
a secure memory for storing an application program interface, a first executable code, and a first configuration; and
a sanction circuit for impeding a function of the computer;
wherein the sanction circuit impedes a function of the computer at least until one of the first executable code and the first configuration are replaced using the application program interface. - View Dependent Claims (9, 10, 11, 12, 13, 14)
-
-
15. A method of programming an isolated computing environment in a computer, the computer having an operating system, the method comprising:
-
providing the computer including an isolated computing environment;
programming provisional functionality into the isolated computing environment;
receiving executable instructions from operating system;
authenticating the executable instructions;
reprogramming the isolated computing environment with updated functionality over the provisional functionality. - View Dependent Claims (16, 17, 18, 19, 20)
-
Specification