ANTI-THEFT IN FIRMWARE
1 Assignment
0 Petitions
Accused Products
Abstract
Methods, systems and storage media are disclosed for enhanced system boot processing that authenticates boot code based on biometric information of the user before loading the boot code to system memory. For at least some embodiments, the bio -metric authentication augments authentication of boot code based on a unique platform identifier. The enhanced boot code authentication occurs before loading of the operating system, and may be performed during a Unified Extensible Firmware Interface (UEFI) boot sequence. Other embodiments are described and claimed.
13 Citations
96 Claims
-
1-75. -75. (canceled)
-
76. At least one non-transitory machine accessible storage medium including one or more sequences of instructions, the sequences of instructions including instructions which when executed cause a computing device to:
-
receive notification of a reset event; receive, from one or more biometric devices, biometric information associated with a user; encrypt firmware instructions to be executed during a boot sequence, wherein encryption is based on at least three credentials including a unique identifier associated with the computing device, the biometric information, and user-based information, wherein encryption is performed during the boot sequence; and perform additional processing to load the operating system. - View Dependent Claims (77, 78, 79, 80, 81, 82, 83, 84, 85, 86, 87)
-
-
88. At least one non-transitory machine accessible storage medium including one or more sequences of instructions, the sequences of instructions including instructions which when executed cause a computing device to:
-
receive notification of a reset event; receive, from one or more biometric devices, biometric information associated with a user; decrypt firmware instructions to be executed during a boot sequence, said decrypting based on at least three credentials including a unique identifier associated with the computing device, the biometric information, and user-based information, wherein decryption is performed during the boot sequence; and perform additional processing to load the operating system. - View Dependent Claims (89, 90)
-
-
91. A method, comprising:
-
performing initial operations of a boot sequence in a computing system, responsive to receiving notification of a reset event; decrypting boot sequence firmware code during a driver execution environment phase of a boot sequence using at least three credentials including a unique identifier associated with the computing device, the biometric information, and data associated with a user, the biometric information comprises readings from one or more biometric devices; responsive to the decrypting, performing additional operations of the boot sequence, wherein the additional operations include loading of operating system code into system memory of the computing system; and terminating the boot sequence without loading the operating system code if the decrypting is unsuccessful. - View Dependent Claims (92, 93, 94, 95, 96)
-
Specification