Method and System for Secure Booting Unified Extensible Firmware Interface Executables
First Claim
Patent Images
1. A method comprising:
- generating a platform private key on a computing device, the platform private key identifying the computing device;
receiving a third party credential, the third party credential identifying the third party;
signing the third party credential using the platform private key;
storing the signed third party credential in a database located in a trusted platform module; and
executing a unified extensible firmware interface executable only if a signed third party credential associated with the unified extensible firmware interface executable is stored in the database.
1 Assignment
0 Petitions
Accused Products
Abstract
A method and computing device for secure booting of unified extensible firmware interface executables includes generating a platform private key, signing a third party credential, storing the signed third party credential in a database located in a trusted platform module, and executing a unified extensible firmware interface executable only if an associated signed third party credential is stored in the trusted platform module.
-
Citations
20 Claims
-
1. A method comprising:
-
generating a platform private key on a computing device, the platform private key identifying the computing device; receiving a third party credential, the third party credential identifying the third party; signing the third party credential using the platform private key; storing the signed third party credential in a database located in a trusted platform module; and executing a unified extensible firmware interface executable only if a signed third party credential associated with the unified extensible firmware interface executable is stored in the database. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A machine readable medium comprising a plurality of instructions, that in response to being executed, result in a computing device:
-
verifying the physical presence of a platform administrator of a computing device; prompting for the entering of a password if the physical presence of the platform administrator is verified; clearing a platform public key and a platform private key of the computing device if the password is correct, the platform private key identifying the computing device; generating a new platform public key and a new platform private key; and storing the new platform public key and the new platform private key in a trusted platform module of the computing device. - View Dependent Claims (12, 13, 14, 15, 16, 17)
-
-
18. A computing device comprising:
-
a processor; a trusted platform module; and a memory device having stored therein a plurality of instructions, which when executed by the processor, cause the processor to; generate a platform private key on a computing device, the private key identifying the computing device; sign a third party credential using the platform private key; store the signed third party credential in a database located in a trusted platform module; and execute a unified extensible firmware interface executable only if a signed third party credential associated with the unified extensible firmware interface executable is located in the database. - View Dependent Claims (19)
-
-
20. The computing device of claim 20, wherein the third party credential comprises a third party digital signature certificate including a third party public key and third party data that has been encrypted with a third party private key.
Specification