System and Method for Secure Provisioning of an Information Handling System
First Claim
1. An information handling system comprising:
- a processor;
a memory communicatively coupled to the processor; and
an access controller communicatively coupled to the processor, the access controller having stored thereon an enterprise public key associated with an enterprise private key and a platform private key associated with the information handling system, the access controller configured to;
authenticate communications received from a provisioning server communicatively coupled to the access controller based at least on an enterprise public certificate associated with the provisioning server; and
establish an asymmetrically cryptographic communications channel between the access controller and the provisioning server based at least on a platform public key associated with the platform private key, the platform private key, the enterprise public key, and the enterprise private key.
14 Assignments
0 Petitions
Accused Products
Abstract
Systems and methods for reducing problems and disadvantages associated with provisioning of information handling systems, including without limitation those associated with bare metal provisioning of information handling systems, are disclosed. A system may include a processor, and a memory and an access controller each communicatively coupled to the processor. The access controller may store an enterprise public key associated with an enterprise private key and a platform private key associated with the system. The access controller may be configured to: (i) authenticate communications received from a provisioning server communicatively coupled to the access controller based at least on an enterprise public certificate associated with the provisioning server and (ii) establish an asymmetrically cryptographic communications channel between the access controller and the provisioning server based at least on a platform public key associated with the platform private key, the platform private key, the enterprise public key, and the enterprise private key.
-
Citations
20 Claims
-
1. An information handling system comprising:
-
a processor; a memory communicatively coupled to the processor; and an access controller communicatively coupled to the processor, the access controller having stored thereon an enterprise public key associated with an enterprise private key and a platform private key associated with the information handling system, the access controller configured to; authenticate communications received from a provisioning server communicatively coupled to the access controller based at least on an enterprise public certificate associated with the provisioning server; and establish an asymmetrically cryptographic communications channel between the access controller and the provisioning server based at least on a platform public key associated with the platform private key, the platform private key, the enterprise public key, and the enterprise private key. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A method for secure provisioning of an information handling system, comprising:
-
storing an enterprise public key associated with an enterprise private key and a platform private key on an access controller associated with an information handling system; communicating a platform public key associated with the platform private key to an enterprise; and storing a program of instructions on the access controller, the program of instructions configured to, when executed; authenticate communications received from a provisioning server communicatively coupled to the access controller based at least on an enterprise public certificate associated with the provisioning server; and establish an asymmetrically cryptographic communications channel between the access controller and the provisioning server based at least on the platform public key, the platform private key, the enterprise public key, and the enterprise private key. - View Dependent Claims (9, 10, 11, 12, 13, 14)
-
-
15. A method for secure provisioning of an information handling system, comprising:
-
providing a supplier of an information handling system with an enterprise public key associated with an enterprise private key; receiving from the supplier a platform public key associated with a platform private key; storing the enterprise public key and the platform public key on computer-readable media associated with a provisioning server; and storing a program of instructions on the computer-readable media associated with the provisioning server, the program of instructions configured to, when executed; authenticate communications received from an access controller associated with the information handling system and communicatively coupled to the provisioning server based at least on a platform public certificate associated with the information handling system; and establish an asymmetrically cryptographic communications channel between the provisioning server and the access controller based at least on the platform public key, the platform private key, the enterprise public key, and the enterprise private key. - View Dependent Claims (16, 17, 18, 19, 20)
-
Specification