Systems and methods for securely booting a computer with a trusted processing module

US 20060155988A1
Filed: 01/07/2005
Published: 07/13/2006
Est. Priority Date: 01/07/2005
Status: Active Grant

First Claim

Patent Images

1. A computer readable medium bearing instructions for a secure boot process on a computer with a hardware security module (HSM) that contains recorded values, compares submitted values to the recorded values, and releases a secret if the submitted values are correct, said computer readable medium comprising:

instructions for submitting at least one value to the HSM, wherein if said value is correct, the HSM may release a secret;

instructions for retrieving the secret;

instructions for decrypting data using information that is accessible due to retrieving of the secret, wherein the execution of said instructions for decrypting produces decrypted data;

instructions for at least a portion of a computer boot process, wherein said computer boot process cannot complete a normal boot without said decrypted data.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

In a computer with a trusted platform module (TPM), an expected hash value of a boot component may be placed into a platform configuration register (PCR), which allows a TPM to unseal a secret. The secret may then be used to decrypt the boot component. The hash of the decrypted boot component may then be calculated and the result can be placed in a PCR. The PCRs may then be compared. If they do not, access to the an important secret for system operation can be revoked. Also, a first secret may be accessible only when a first plurality of PCR values are extant, while a second secret is accessible only after one or more of the first plurality of PCR values has been replaced with a new value, thereby necessarily revoking further access to the first secret in order to grant access to the second secret.

Citations

20 Claims

1. A computer readable medium bearing instructions for a secure boot process on a computer with a hardware security module (HSM) that contains recorded values, compares submitted values to the recorded values, and releases a secret if the submitted values are correct, said computer readable medium comprising:
- instructions for submitting at least one value to the HSM, wherein if said value is correct, the HSM may release a secret;
  
  instructions for retrieving the secret;
  
  instructions for decrypting data using information that is accessible due to retrieving of the secret, wherein the execution of said instructions for decrypting produces decrypted data;
  
  instructions for at least a portion of a computer boot process, wherein said computer boot process cannot complete a normal boot without said decrypted data.
- View Dependent Claims (2, 3, 4, 5, 6)
- - 2. The computer readable medium of claim 1, wherein the HSM is a trusted platform module (TPM), and the at least one value is placed in at least one platform configuration register (PCR).
  - 3. The computer readable medium of claim 1 wherein the decrypted data comprises a software component used in the computer boot process.
  - 4. The computer readable medium of claim 1 wherein the decrypted data comprises information which a software component used in the computer boot process requires in order to continue the computer process.
  - 5. The computer readable medium of claim 1 wherein the decrypted data comprises information which is required in order to access data stored on a computer readable medium.
  - 6. The computer readable medium of claim 1, further comprising instructions for removing the secret from memory.

7. A computer comprising a hardware security module (HSM) that contains recorded values, compares submitted values to the recorded values, and releases a secret if the submitted values are correct, said computer also comprising:
- means for submitting at least one value to the HSM, wherein if said value is correct, the HSM may release a secret;
  
  means for retrieving the secret;
  
  means for decrypting data using information that is accessible due to retrieving of the secret, wherein the operation of said means for decrypting produces decrypted data;
  
  means comprising at least a portion of a computer boot process, wherein said computer boot process cannot complete a normal boot without said decrypted data.
- View Dependent Claims (8, 9, 10, 11, 12)
- - 8. The computer of claim 7, wherein the HSM is a trusted platform module (TPM) and the at least one value is placed in a platform configuration register (PCR).
  - 9. The computer of claim 7, wherein the decrypted data comprises a software component used in the computer boot process.
  - 10. The computer of claim 7, wherein the decrypted data comprises information which a software component used in the computer boot process requires in order to continue the computer process.
  - 11. The computer of claim 7, wherein the decrypted data comprises information which is required in order to access data stored on a computer readable medium.
  - 12. The computer of claim 7, further comprising means for removing the secret from memory.

13. A computer readable medium bearing instructions for a secure boot process on a computer with a plurality of partitions and a hardware security module (HSM) that contains recorded values, compares submitted values to the recorded values, and releases a secret if the submitted values are correct, said computer readable medium comprising:
- instructions submitting at least one value to the HSM, wherein if said value is correct, the HSM may release a secret;
  
  instructions for retrieving the first secret;
  
  instructions for removing the first secret from a memory location;
  
  instructions for submitting at least one second value to the HSM, wherein if said second value is correct, the HSM may release a second secret and not the first secret.
- View Dependent Claims (14, 15, 16, 17, 18, 19, 20)
- - 14. The computer readable medium of claim 13, wherein the HSM is a trusted platform module (TPM and the at least one value and the at least one second value is placed in a platform configuration register (PCR).
  - 15. The computer readable medium of claim 13, further comprising instructions for at least a portion of a computer boot process, wherein said computer boot process cannot complete a normal boot without the first secret.
  - 16. The computer readable medium of claim 13 wherein the second secret is required in order to access substantially all data stored on at least one partition of a computer readable medium.
  - 17. The computer readable medium of claim 13 wherein the first value comprises a hash of a software component used in a computer boot process.
  - 18. The computer readable medium of claim 13 wherein the second value comprises a hash of a decryption key.
  - 19. The computer readable medium of claim 13 wherein at least one of the first secret and the second secret is a Binary Large Object (BLOB).
  - 20. The computer readable medium of claim 13 wherein at least one of the first secret and the second secret is a decryption key.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Microsoft Technology Licensing LLC (Microsoft Corporation)
Original Assignee
Microsoft Corporation
Inventors
Schwartz, Jonathan, England, Paul, Ray, Kenneth D., Thom, Stefan, Hunter, Jamie, Schwartz, James Anthony Jr., Humphries, Russell

Granted Patent

US 7,725,703 B2
Time in Patent Office

Days
Field of Search
US Class Current

713/164
CPC Class Codes

G06F 21/575 Secure boot

Systems and methods for securely booting a computer with a trusted processing module

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

Systems and methods for securely booting a computer with a trusted processing module

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links