Pre-boot authentication system
First Claim
1. An adaptive pre-boot authentication process, comprising the steps of:
- providing a device having a BIOS procedure having an interval, the interval having a start and a finish, the device including an adaptive interface module, the adaptive interface module being capable of communicating with a plurality of information modules, each information module having a different format;
starting the BIOS procedure;
interrupting the BIOS procedure during the interval before the finish;
establishing contact with an information module through the adaptive interface module sending corresponding interface signals;
determining by the adaptive interface module, a format for the information module;
transferring the information between the information module and the device according to the format of the information module;
determining by the adaptive interface module, if the transferred information is valid; and
commencing the BIOS procedure if the transferred information is valid.
2 Assignments
0 Petitions
Accused Products
Abstract
Systems are provided for the enhancement of the system BIOS for microprocessor-based devices. Before the end of a BIOS start-up procedure, the BIOS operation is diverted to a BIOS security authentication system which may be a portion of an enhanced system BIOS. The BIOS security authentication system establishes communication with an information module, if the information module is present. The information module is typically a removable or installable card, which may be unique to one or more users. Based upon an information exchange between the security authentication module and the information module, the security authentication module controllably allows or prevents the system BIOS start-up procedure to resume and finish. In a preferred embodiment, the security authentication module is used as a pre-boot authentication system, to prevent a microprocessor-based device from booting up, unless a valid authorized information module is present. In other preferred embodiments, an adaptive security authentication module interface is provided, to allow information exchange with a variety of information modules having one or more information formats. In alternate embodiments, information from the information exchange may be transferred to the main system BIOS (such as to provide system functions to the BIOS, or to provide identity information of the user, based upon the information module).
-
Citations
62 Claims
-
1. An adaptive pre-boot authentication process, comprising the steps of:
-
providing a device having a BIOS procedure having an interval, the interval having a start and a finish, the device including an adaptive interface module, the adaptive interface module being capable of communicating with a plurality of information modules, each information module having a different format; starting the BIOS procedure; interrupting the BIOS procedure during the interval before the finish; establishing contact with an information module through the adaptive interface module sending corresponding interface signals; determining by the adaptive interface module, a format for the information module; transferring the information between the information module and the device according to the format of the information module; determining by the adaptive interface module, if the transferred information is valid; and commencing the BIOS procedure if the transferred information is valid. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15)
-
-
16. A process, comprising the steps of:
-
providing a device having a BIOS procedure having an interval, the interval having a start and a finish; providing a security authentication module associated with the BIOS; providing a library in communication with the security authentication module, the library having a plurality of format modules; providing a removable module having information; starting the BIOS procedure; interrupting the BIOS procedure during the interval before the finish; establishing communication between the security authentication module and the removable module, according to one of the plurality of format modules in the library; determining by the security authentication module, a format for the removable module; transferring the information between the removable module and the security authentication module according to the format of the removable module; determining by the security authentication module, if the transferred information is valid; and recommencing the BIOS procedure if the transferred information is valid. - View Dependent Claims (17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 30)
-
-
31. An adaptive authentication system for a device having a basic input output system (BIOS), the BIOS having a plurality of format modules, the adaptive authentication system being capable of executing a BIOS procedure, the BIOS procedure comprising an interval having a start and a finish, the adaptive authentication system comprising:
-
means for interrupting the BIOS procedure during the interval before the finish; means for determining a format for a removable module; and means in communication with the BIOS means for communicating with the removable module through one of the plurality format modules according to the format of the removable module, means for receiving information from the removable module, means for determining if the received information is valid; and means for allowing the BIOS procedure to recommence if the received information is valid. - View Dependent Claims (32, 33, 34, 35, 36, 37, 38, 39, 40, 41, 42, 43, 44, 45, 46)
-
-
47. An adaptive authentication system for a device having a basic input output system (BIOS), the BIOS having a plurality of format modules, the adaptive authentication system being capable of executing a BIOS procedure, the BIOS procedure comprising an interval having a start and a finish, the adaptive authentication system comprising:
-
means for interrupting the BIOS procedure during the interval before the finish; and an authentication module in communication with the BIOS means for establishing communication with a removable module having information stored in one of a plurality of formats, means for determining a format for the removable module, means for receiving authentication information from the removable module once communication is established according to the format of the removable module, means for determining if the received authentication information is valid, and means for allowing the BIOS procedure to recommence if the received authentication information is valid. - View Dependent Claims (48, 49, 50, 51, 52, 53, 54, 55, 56, 57, 58, 59, 60, 61, 62)
-
Specification