System and method for providing a secure boot architecture

US 20060179308A1
Filed: 02/07/2005
Published: 08/10/2006
Est. Priority Date: 02/07/2005
Status: Abandoned Application

First Claim

Patent Images

1. A processor having a secure boot architecture comprising:

a physically protected storage area for storing a boot-mode object; and

an atomic state machine, coupled to said physically protected storage area, for authenticating said boot-mode object before execution of a first target instruction.

View all claims

3 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A system and method for providing a secure boot architecture, in accordance with one embodiment of the present invention, includes a processor having an atomic state machine and a physically protected storage area. The atomic state machine stores a state of the processor in a state save map upon a boot-mode event. The atomic state machine also authenticates an object of a Pre-BIOS Boot Vector Region (PBBVR) in response to the boot-mode event. The PBBVR may be stored in the physically protected storage area. The atomic state machine loads the PBBVR from the physically protected storage area into an overlay memory if the PBBVR is successfully authenticated. The processor executes the PBBVR from the overlay memory if the PBBVR is successfully authenticated. The atomic state machine may also receive a candidate PBBVR upgrade image, authenticate the candidate PBBVR upgrade image, and replace the current PBBVR with a new PBBVR contained in the candidate PBBVR upgrade image if the new PBBVR in the candidate PBBVR upgrade image is authenticated.

Citations

33 Claims

1. A processor having a secure boot architecture comprising:
- a physically protected storage area for storing a boot-mode object; and
  
  an atomic state machine, coupled to said physically protected storage area, for authenticating said boot-mode object before execution of a first target instruction.
- View Dependent Claims (2, 3, 4, 5)
- - 2. The processor of claim 1, wherein said boot-mode object comprises a header portion and a combined code and data payload portion.
  - 3. The processor of claim 2, wherein said header portion comprises a defined memory size.
  - 4. The processor of claim 3, wherein said header comprises configuration and authentication data.
  - 5. The processor of claim 1, wherein said atomic state machine is operable to:
    - receive a candidate boot-mode upgrade image;
      
      authenticate said candidate boot-mode upgrade image; and
      
      replace said boot-mode object with a new boot-mode object in said candidate boot-mode upgrade image if said candidate boot-mode upgrade image is authenticated.

6. A method for providing a secure boot architecture for a computer system having a processor comprising:
- receiving a boot-mode event;
  
  authenticating a boot-mode object; and
  
  executing a first target instruction if said boot-mode object is authenticated.
- View Dependent Claims (7, 8, 9, 10, 11, 12, 13, 14, 15, 16)
- - 7. The method according to claim 6, further comprising:
    - storing an initialization state;
      
      executing a first instruction in said boot-mode object after storing said initialization state; and
      
      restoring said initialization state after executing said first instruction.
  - 8. The method according to claim 6, further comprising:
    - authenticating a recovery boot-mode object if said boot-mode object is not authenticated;
      
      executing said first instruction if said recovery boot-mode object is authenticated; and
      
      halting execution if said recovery boot-mode object is not authenticated.
  - 9. The method according to claim 6, wherein said authenticating said boot-mode object comprises a digital signature verification process.
  - 10. The method according to claim 6, wherein said authenticating said boot-mode object comprises a checksum verification process.
  - 11. The method according to claim 6, wherein said boot-mode event comprises a non-maskable interrupt.
  - 12. The method according to claim 6, wherein said boot-mode object comprises a header having a defined layout.
  - 13. The method according to claim 12, wherein said header comprises configuration and authentication data.
  - 14. The method according to claim 6, further comprising storing a parameter of said boot-mode event in a boot-mode specific machine state register.
  - 15. The method according to claim 6, further comprising:
    - receiving a candidate boot-mode upgrade image;
      
      authenticating said candidate boot-mode upgrade image; and
      
      replacing said boot-mode object with a new boot-mode object of said candidate boot-mode upgrade image if said candidate boot-mode upgrade image is authenticated.
  - 16. The method according to claim 15, wherein authenticating said candidate boot-mode upgrade image comprises validating a digital signature of said candidate boot-mode upgrade image with respect to a public key of said boot-mode code.

17. A system for providing a secure boot architecture comprising:
- a physically protected storage area for storing a primary boot-mode object;
  
  an atomic state machine for;
  
  storing a state of a processor in a state save map upon receipt of a boot-mode event;
  
  authenticating an object of said primary primary boot-mode object upon receipt of said boot-mode event; and
  
  loading said primary primary boot-mode object from said physically protected storage area into an overlay memory if said primary PBBVR is successfully authenticated; and
  
  said processor for executing said primary primary boot-mode object from said overlay memory if said primary primary boot-mode object is successfully authenticated.
- View Dependent Claims (18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 30, 31, 32, 33)
- - 18. The system according to claim 17, wherein said primary boot-mode object comprises a primary Pre-BIOS Boot Vector Region (PBBVR).
  - 19. The system according to claim 18, said atomic state machine for further restoring said state of said processor from said state save map after executing said primary PBBVR.
  - 20. The system according to claim 17, wherein:
    - said physically protected storage area is for further storing a recovery primary boot-mode object;
      
      said atomic state machine is for further;
      
      authenticating an object of said recovery boot-mode object if said primary boot-mode object is not successfully authenticated;
      
      loading said recovery boot-mode object from said physically protected storage area into said overlay memory if said recovery boot-mode object is successfully authenticated; and
      
      restoring said state of said processor from said state save map after executing said recovery boot-mode object; and
      
      halting execution by said processor if said recover boot-mode object is not successfully authenticated; and
      
      said processor is for executing said recovery boot-mode object from said overlay memory if said recovery boot-mode object is successfully authenticated.
  - 21. The system according to claim 20, wherein said recovery boot-mode object comprises a recovery PBBVR.
  - 22. The system according to claim 17, wherein restoring said state of said processor causes execution by said processor to jump to a BIOS boot block.
  - 23. The system according to claim 19, wherein said primary PBBVR comprises a header and a combined code and data payload.
  - 24. The system according to claim 23, wherein said primary PBBVR comprises an integer number of contiguous pages.
  - 25. The system according to claim 23, wherein said primary PBBVR comprises processor configuration and authentication data.
  - 26. The system according to claim 17, wherein said overlay memory is mapped to a predetermined physical memory location.
  - 27. The system according to claim 17, wherein said overlay memory appears to be regular memory.
  - 28. The system according to claim 17, wherein said overlay memory is not visible to direct memory access by an input/output device.
  - 29. The system according to claim 17, wherein said overlay memory is not visible to code executing outside boot-mode.
  - 30. The system according to claim 17, wherein said state save map is stored at the end of said overlay memory.
  - 31. The system according to claim 17, further comprising a boot-mode specific machine state register for capturing a parameter of said boot-mode event.
  - 32. The system according to claim 18, said atomic state machine for further:
    - receiving a candidate PBBVR upgrade image;
      
      authenticating said candidate PBBVR upgrade image; and
      
      replacing said primary PBBVR and said recovery PBBVR with a new PBBVR of said candidate PBBVR upgrade image if said candidate PBBVR upgrade image is authenticated.
  - 33. The system according to claim 18, wherein authenticating said candidate PBBVR upgrade image comprises validating a digital signature of said candidate boot-mode upgrade image with respect to a public key of said primary PBBVR or said recovery PBBVR.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Intellectual Ventures Funding LLC (Intellectual Ventures LLC)
Original Assignee
Intellectual Ventures Funding LLC (Intellectual Ventures LLC)
Inventors
Rozas, Guillermo, Morgan, Andrew, Ludloff, Christian

Application Number

US11/053,081
Publication Number

US 20060179308A1
Time in Patent Office

Days
Field of Search
US Class Current

713/168
CPC Class Codes

G06F 21/575 Secure boot

System and method for providing a secure boot architecture

First Claim

3 Assignments

0 Petitions

Accused Products

Abstract

Citations

33 Claims

Specification

Solutions

Use Cases

Quick Links

System and method for providing a secure boot architecture

First Claim

3 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

33 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links