Operation of trusted state in computing platform
DCFirst Claim
1. A computing entity comprising:
- a computer platform comprising a plurality of physical and logical resources including a first data processor and a first memory;
a monitoring component comprising a second data processor and a second memory;
wherein, said computer platform is capable of operating in a plurality of different states, each said state utilising a corresponding respective set of individual ones of said physical and logical resources;
wherein said monitoring component operates to determine which of said plurality of states is the current operating state of said computer platform.
4 Assignments
Litigations
1 Petition
Accused Products
Abstract
A computing entity comprises a trusted monitoring component having a first processing means and a first memory means, the trusted monitoring component being a self-contained autonomous data processing unit, and a computer platform having a main processing means and a main memory area, along with a plurality of associated physical and logical resources such as peripheral devices including printers, modems, application programs, operating systems and the like. The computer platform is capable of entering a plurality of different states of operation, each state of operation having a different level of security and trustworthiness. Selected ones of the states comprise trusted states in which a user can enter sensitive confidential information with a high degree of certainty that the computer platform has not been compromised by external influences such as viruses, hackers or hostile attacks. To enter a trusted state, references made automatically to the trusted component, and to exit a trusted state reference must be made to the trusted component. On exiting the trusted state, all references to the trusted state are deleted from the computer platform. On entering the trusted state, the state is entered in a reproducible and known manner, having a reproducible and known configuration which is confirmed by the trusted component.
251 Citations
21 Claims
-
1. A computing entity comprising:
-
a computer platform comprising a plurality of physical and logical resources including a first data processor and a first memory; a monitoring component comprising a second data processor and a second memory; wherein, said computer platform is capable of operating in a plurality of different states, each said state utilising a corresponding respective set of individual ones of said physical and logical resources; wherein said monitoring component operates to determine which of said plurality of states is the current operating state of said computer platform. - View Dependent Claims (2, 3, 4, 5)
-
-
6. A method of activating a computing entity comprising a computer platform having a first data processor and a first memory and a monitoring component having a second data processor and a second memory, into an operational state of a plurality of pre-configured operational states into which said computer platform can be activated, said method comprising the steps of:
-
selecting a state of said plurality of pre-configured operational states to activate for said computer platform; activating said selected state for said computer platform according to a set of stored instructions; wherein said monitoring component monitors activation of said selected state by recording data describing which of said plurality of pre-configured states is activated. - View Dependent Claims (7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19)
-
-
20. A method of storing data at a computing entity comprising a computer platform having a first data processor and a first memory and a monitoring component having a second data processor and a second memory, said method comprising the steps of:
-
initiating a session on the computing platform; the monitoring component recording state data describing a current operational state of the computing platform; generating data in the session; and storing the generated data with reference to the state data so that the generated data may be recovered in a future session of the computing platform in the same operational state. - View Dependent Claims (21)
-
Specification