METHODS AND SYSTEMS FOR UPDATING A SECURE BOOT DEVICE USING CRYPTOGRAPHICALLY SECURED COMMUNICATIONS ACROSS UNSECURED NETWORKS
First Claim
1. A method of updating a virtual terminal associated with a secure network, the method comprising:
- validating at a service enclave an identity of a user of a virtual terminal, the service enclave including an authorization server, and the virtual terminal generated from a trusted set of processing modules executing from a secure boot device at a client computing device;
authorizing the user of the virtual terminal to access a customer enclave and an update enclave based on security credentials received from the virtual terminal; and
while the user of the virtual terminal establishes a secure connection between the client computing device and the customer enclave, transmitting updates from the update enclave to the client computing device, thereby updating the trusted set of processing modules.
5 Assignments
0 Petitions
Accused Products
Abstract
Methods and systems for updating a virtual terminal associated with a secure network are disclosed. One method includes validating at a service enclave an identity of a user of a virtual terminal. The service enclave includes an authorization server, and the virtual terminal is generated from a trusted set of processing modules executing from a secure boot device at a client computing device. The method further includes authorizing the user of the virtual terminal to access a customer enclave and an update enclave based on security credentials received from the virtual terminal. The method also includes, while the user of the virtual terminal establishes a secure connection between the client computing device and the customer enclave, transmitting updates from the update enclave to the client computing device, thereby updating the trusted set of processing modules.
-
Citations
22 Claims
-
1. A method of updating a virtual terminal associated with a secure network, the method comprising:
-
validating at a service enclave an identity of a user of a virtual terminal, the service enclave including an authorization server, and the virtual terminal generated from a trusted set of processing modules executing from a secure boot device at a client computing device; authorizing the user of the virtual terminal to access a customer enclave and an update enclave based on security credentials received from the virtual terminal; and while the user of the virtual terminal establishes a secure connection between the client computing device and the customer enclave, transmitting updates from the update enclave to the client computing device, thereby updating the trusted set of processing modules. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14)
-
-
15. A system for updating one or more trusted software modules in a secure boot device directly connected to a client computing system, the system comprising:
-
a service enclave configured to receive and respond to authentication and authorization requests from a client computing system, and to define one or more communities of interest associated with a secure boot device; a customer enclave configured to, upon authorization of the secure boot device at the service enclave, establish a secure connection to the client computing system and receive transaction information from the client computing system; and an update enclave configured to, while the secure connection is established between the customer enclave and the client computing device, establish a second secure connection between the update enclave and the client computing device and update one or more of the trusted software modules. - View Dependent Claims (16, 17, 18, 19, 20, 21)
-
-
22. A computer-storage medium storing computing instructions which, when executed, implement a computerized method of updating a virtual terminal associated with a secure network, the method comprising:
-
validating at a service enclave an identity of a user of a virtual terminal, the service enclave including an authorization server, and the virtual terminal generated from a trusted set of processing modules executing from a secure boot device at a client computing device; authorizing the user of the virtual terminal to access a customer enclave based on security credentials received from the virtual terminal; and while the user of the virtual terminal establishes a secure connection between the client computing device and the customer enclave, transmitting updates from an update enclave to the client computing device, thereby updating the trusted set of processing modules.
-
Specification